rt 4.0.7

[freeside.git] / rt / etc / RT_Config.pm.in

diff --git a/rt/etc/RT_Config.pm.in b/rt/etc/RT_Config.pm.in
index 925f0ca..1691820 100644 (file)
--- a/rt/etc/RT_Config.pm.in
+++ b/rt/etc/RT_Config.pm.in
@@ -350,13 +350,8 @@ Set($StoreLoops, undef);
 C<$MaxAttachmentSize> sets the maximum size (in bytes) of attachments
 stored in the database.
 
 C<$MaxAttachmentSize> sets the maximum size (in bytes) of attachments
 stored in the database.
 

-For MySQL and Oracle, we set this size to 10 megabytes.  If you're
-running a PostgreSQL version earlier than 7.1, you will need to drop
-this to 8192. (8k)
-

 =cut
 
 =cut
 

-

 Set($MaxAttachmentSize, 10_000_000);
 
 =item C<$TruncateLongAttachments>
 Set($MaxAttachmentSize, 10_000_000);
 
 =item C<$TruncateLongAttachments>


@@ -513,7 +508,8 @@ so you can extract mail from it afterward.
 
 =cut
 
 
 =cut
 

-Set($MailCommand, "sendmailpipe");
+#Set($MailCommand, "sendmailpipe");
+Set($MailCommand, "sendmail");

 
 =item C<$SetOutgoingMailFrom>
 
 
 =item C<$SetOutgoingMailFrom>
 


@@ -644,6 +640,9 @@ Set($NotifyActor, 0);
 By default, RT records each message it sends out to its own internal
 database.  To change this behavior, set C<$RecordOutgoingEmail> to 0
 
 By default, RT records each message it sends out to its own internal
 database.  To change this behavior, set C<$RecordOutgoingEmail> to 0
 

+If this is disabled, users' digest mail delivery preferences
+(i.e. EmailFrequency) will also be ignored.
+

 =cut
 
 Set($RecordOutgoingEmail, 1);
 =cut
 
 Set($RecordOutgoingEmail, 1);


@@ -734,7 +733,8 @@ C<Set($SendmailArguments,"-oi -t -ODeliveryMode=b -OErrorMode=m");>
 
 =cut
 
 
 =cut
 

-Set($SendmailArguments, "-oi -t");
+#Set($SendmailArguments, "-oi -t");
+Set($SendmailArguments, "-oi");

 
 
 =item C<$SendmailBounceArguments>
 
 
 =item C<$SendmailBounceArguments>


@@ -892,14 +892,16 @@ Set($CanonicalizeRedirectURLs, 0);
 A list of JavaScript files to be included in head.  Removing any of
 the default entries is not suggested.
 
 A list of JavaScript files to be included in head.  Removing any of
 the default entries is not suggested.
 

+If you're a plugin author, refer to RT->AddJavaScript.
+

 =cut
 
 Set(@JSFiles, qw/
     jquery-1.4.2.min.js
     jquery_noconflict.js
     jquery-ui-1.8.4.custom.min.js
 =cut
 
 Set(@JSFiles, qw/
     jquery-1.4.2.min.js
     jquery_noconflict.js
     jquery-ui-1.8.4.custom.min.js

+    jquery-ui-timepicker-addon.js

     jquery-ui-patch-datepicker.js
     jquery-ui-patch-datepicker.js

-    ui.timepickr.js

     titlebox-state.js
     util.js
     userautocomplete.js
     titlebox-state.js
     util.js
     userautocomplete.js


@@ -928,6 +930,8 @@ directory, or from http://www.crockford.com/javascript/jsmin.html
 
 A list of additional CSS files to be included in head.
 
 
 A list of additional CSS files to be included in head.
 

+If you're a plugin author, refer to RT->AddStyleSheets.
+

 =cut
 
 Set(@CSSFiles, qw//);
 =cut
 
 Set(@CSSFiles, qw//);


@@ -1789,8 +1793,60 @@ This disables RT's clickjacking protection.
 
 Set($Framebusting, 1);
 
 
 Set($Framebusting, 1);
 

+=item C<$RestrictReferrer>
+
+If set to a false value, the HTTP C<Referer> (sic) header will not be
+checked to ensure that requests come from RT's own domain.  As RT allows
+for GET requests to alter state, disabling this opens RT up to
+cross-site request forgery (CSRF) attacks.
+
+=cut
+
+Set($RestrictReferrer, 1);
+
+=item C<$RestrictLoginReferrer>
+
+If set to a false value, RT will allow the user to log in from any link
+or request, merely by passing in C<user> and C<pass> parameters; setting
+it to a true value forces all logins to come from the login box, so the
+user is aware that they are being logged in.  The default is off, for
+backwards compatability.
+
+=cut
+
+Set($RestrictLoginReferrer, 0);
+
+=item C<$ReferrerWhitelist>
+
+This is a list of hostname:port combinations that RT will treat as being
+part of RT's domain. This is particularly useful if you access RT as
+multiple hostnames or have an external auth system that needs to
+redirect back to RT once authentication is complete.
+
+ Set(@ReferrerWhitelist, qw(www.example.com:443  www3.example.com:80));
+
+If the "RT has detected a possible cross-site request forgery" error is triggered
+by a host:port sent by your browser that you believe should be valid, you can copy
+the host:port from the error message into this list.
+
+Simple wildcards, similar to SSL certificates, are allowed.  For example:
+
+    *.example.com:80    # matches foo.example.com
+                        # but not example.com
+                        #      or foo.bar.example.com
+
+    www*.example.com:80 # matches www3.example.com
+                        #     and www-test.example.com
+                        #     and www.example.com
+
+=cut
+
+Set(@ReferrerWhitelist, qw());
+

 =back
 
 =back
 

+
+

 =head1 Authorization and user configuration
 
 =over 4
 =head1 Authorization and user configuration
 
 =over 4


@@ -1856,10 +1912,9 @@ Set($AutoCreate, undef);
 
 =item C<$WebSessionClass>
 
 
 =item C<$WebSessionClass>
 

-C<$WebSessionClass> is the class you wish to use for managing
-Sessions.  It defaults to use your SQL database, but if you are using
-MySQL 3.x and plans to use non-ascii Queue names, uncomment and add
-this line to F<RT_SiteConfig.pm> to prevent session corruption.
+C<$WebSessionClass> is the class you wish to use for managing sessions.
+It defaults to use your SQL database, except on Oracle, where it
+defaults to files on disk.

 
 =cut
 
 
 =cut
 


@@ -2206,6 +2261,14 @@ be changed to this value.
 When an approval is denied, the status of depending tickets will
 be changed to this value.
 
 When an approval is denied, the status of depending tickets will
 be changed to this value.
 

+=item reminder_on_open
+
+When a reminder is opened, the status will be changed to this value.
+
+=item reminder_on_resolve
+
+When a reminder is resolved, the status will be changed to this value.
+

 =back
 
 =head2 Transitions between statuses and UI actions
 =back
 
 =head2 Transitions between statuses and UI actions


@@ -2229,10 +2292,11 @@ all possible transitions in each lifecycle using the following format:
 
 =head3 Statuses available during ticket creation
 
 
 =head3 Statuses available during ticket creation
 

-By default users can create tickets with any status, except
-deleted. If you want to restrict statuses available during creation
-then describe transition from '' (empty string), like in the example
-above.
+By default users can create tickets with a status of new,
+open, or resolved, but cannot create tickets with a status of
+rejected, stalled, or deleted. If you want to change the statuses
+available during creation, update the transition from '' (empty
+string), like in the example above.

 
 =head3 Protecting status changes with rights
 
 
 =head3 Protecting status changes with rights
 


@@ -2352,6 +2416,8 @@ Set(%Lifecycles,
             on_merge  => 'resolved',
             approved  => 'open',
             denied    => 'rejected',
             on_merge  => 'resolved',
             approved  => 'open',
             denied    => 'rejected',

+            reminder_on_open     => 'open',
+            reminder_on_resolve  => 'resolved',

         },
 
         transitions => {
         },
 
         transitions => {


@@ -2425,6 +2491,8 @@ Set(%Lifecycles,
         defaults => {
             on_create => 'new',
             on_merge => 'resolved',
         defaults => {
             on_create => 'new',
             on_merge => 'resolved',

+            reminder_on_open     => 'open',
+            reminder_on_resolve  => 'resolved',

         },
 
         transitions => {
         },
 
         transitions => {


@@ -2529,7 +2597,7 @@ Set(%AdminSearchResultFormat,
     Queues =>
         q{'<a href="__WebPath__/Admin/Queues/Modify.html?id=__id__">__id__</a>/TITLE:#'}
         .q{,'<a href="__WebPath__/Admin/Queues/Modify.html?id=__id__">__Name__</a>/TITLE:Name'}
     Queues =>
         q{'<a href="__WebPath__/Admin/Queues/Modify.html?id=__id__">__id__</a>/TITLE:#'}
         .q{,'<a href="__WebPath__/Admin/Queues/Modify.html?id=__id__">__Name__</a>/TITLE:Name'}

-        .q{,__Description__,__Address__,__Priority__,__DefaultDueIn__,__Disabled__},
+        .q{,__Description__,__Address__,__Priority__,__DefaultDueIn__,'__Disabled__,__Lifecycle__},

 
     Groups =>
         q{'<a href="__WebPath__/Admin/Groups/Modify.html?id=__id__">__id__</a>/TITLE:#'}
 
     Groups =>
         q{'<a href="__WebPath__/Admin/Groups/Modify.html?id=__id__">__id__</a>/TITLE:#'}