gosa (2.7.4+reloaded2-1+deb8u2) jessie; urgency=medium

  [ Mike Gabriel ]
  * debian/patches:
    + Add 1009_fix-insertDhcp-icon-in-dhcp-section-overview.patch. Fix
      label stripping in GOsa²'s image() function. This fixes displaying the
      insertDhcp* icon in the DHCP service plugin. (Closes: #794117).
    + Add 2009_allow-Debian-blends-to-override-gosa-conf.patch. Allow
      Debian blends to provide their own version of gosa.conf and not get
      bugged by GOsa's notification message on gosa.conf template changes.
      Debian blends using GOsa (e.g., Edu, LAN) must handle gosa.conf
      updates themselves. (Closes: #794118).
    + Add 0004_fix-get-post.patch. Fix transferral of POST variables.
    + Add 1010_fix-entry-removal-in-mail-plugin.patch. Fix entry deletion
      of items in "alternatives addresses" and "forward messages to
      non-group members" for group mail objects. (LP:#1307483).
    + Add 0005_fix-password-expiry-status.patch. Fix expiration status
      for passwords if shadowMax is used in POSIX/shadow accounts.
    + Add 1011_define-isPluginModified.patch. Fix undefined property
      error for non-defined usertags::$isPluginModified. (Closes: #794690).
    + Add 1012_allow-one-level-domains-in-email-addresses.patch. Allow
      one-level domains in email addresses (such as <uid>@intern, as used
      in Debian Edu by default). (Closes: #794738).

  [ Holger Levsen ]
  * Fixup PHP syntax in 1010_fix-entry-removal-in-mail-plugin.patch. See
    #796823 for the details.
  * Cherry-picked from 2.7.4+reloaded2-6 from Mike Gabriel:
    + Add 0006_code-injection-in-samba-hash-generation.patch,
      0007_update-sambaHashHook-description.patch. Fix potential
      code injection issue in Samba hash generation. (CVE-2015-8771)
    + Update 1004_fix-typos-in-man-pages.patch due to cherry-picking
      0007_update-sambaHashHook-description.patch from upstream.

 -- Holger Levsen <holger@debian.org>  Fri, 27 May 2016 20:31:38 +0200

gosa (2.7.4+reloaded2-1+deb8u1) jessie-proposed-updates; urgency=medium

  * debian/patches:
    + Add 2007_gen-uids-like-gosa26.patch. Fix idGenerator for patterns like
      {%sn[3-6}-{%givenName[3-6]}. (Closes: #793455).
    + Add 2008_enable-csv-import-on-clean-installs.patch. Enable CSV / LDIF
      import on (non-Debian-Edu) clean GOsa² installations by default. (Closes:
      #782529)

 -- Mike Gabriel <sunweaver@debian.org>  Fri, 24 Jul 2015 12:36:48 +0200

gosa (2.7.4+reloaded2-1) unstable; urgency=medium

  * Repack gosa src:package in order to drop several subtrees of the source
    code:
    - Smarty3 sources,
    - Smarty Gettext sources,
    - Liberation font, further fonts shipped with pChart,
    - Scriptaculous.js,
    - and upstream's debian/ packaging folder.

  * debian/README.multi-orig-tarball-package:
    + Grammar fix.
  * debian/gosa.postinst:
    + When activating gosa for lighttpd, create /etc/lighttpd/conf-enabled/
      if it does not exist, yet. (Closes: #757558).
  * debian/control:
    + Make sure that all GOsa² component/plugin bin:packages match the exact
      version of the gosa bin:package.
    + Add D (gosa): smarty-gettext.
    + Add D (gosa): libjs-scriptaculous.
  * debian/rules:
    + Rework get-orig-source rule, remove embedded libraries from upstream
      source tree.
    + Stop shipping fonts with gosa src:package in Debian (via
      get-orig-source).
    + Use Debian's version of smarty-gettext (via symlink).
    + Use Debian's version of Scriptaculous.js and Prototype.js (via symlinks).
    + Improve readability. Add some comments.
  * debian/copyright:
    + Update file.
    + Update debian/copyright.in template.
  * lintian:
    + Drop override embedded-php-library for Smarty3. Not shipped in repacked
      sources anymore.
    + Drop override embedded-php-library for Scriptaculous.js and Prototype.js.
      Not shipped in repacked sources anymore.
    + Drop unused overrides.
  * debian/patches:
    + Add 1004_fix-typos-in-man-pages.patch. Fix several typos and
      hyphen-used-as-minus-sign issues in GOsa² man pages.
    + Update 0001_smarty3.patch. The sources of smarty-gettext are not shipped
      with Debian's gosa src:package anymore.
    + Improve trimming in 1002_trim-decrypt.patch. Obtained from latest password
      encryption/decryption tests with FusionDirectory.
    + Provide patch headers with Author: and Description: fields whereever
      possible.

 -- Mike Gabriel <sunweaver@debian.org>  Mon, 11 Aug 2014 18:41:55 +0200

gosa (2.7.4+reloaded1-4) unstable; urgency=medium

  * debian/patches:
    + Add 0004_RequestHeader-no-underscores-apache24.patch. Since Apache2.4:
      Translation of headers to environment variables is more strict than before
      to mitigate some possible cross-site-scripting attacks via header
      injection. Headers containing invalid characters (including underscores)
      are now silently dropped. (Closes: #753419).

 -- Mike Gabriel <sunweaver@debian.org>  Tue, 01 Jul 2014 20:40:05 +0200

gosa (2.7.4+reloaded1-3) unstable; urgency=medium

  * debian/patches:
    + Update patch naming scheme. See debian/patches/README.
    + Unify file name scheme in patch files.
    + Add 1002_trim_decrypt.patch. Fix decryption of LDAP master
      password (which previously got encrypted with gosa-encrypt-password).
      (Closes: #748065).
    + Add 0003_xss-vulnerability-on-login-screen.patch.  Escape html entities
      to fix xss at the login screen. (Closes: #753388).

 -- Mike Gabriel <sunweaver@debian.org>  Tue, 01 Jul 2014 14:19:45 +0200

gosa (2.7.4+reloaded1-2) unstable; urgency=low

  * debian/control:
    + Update Vcs-*: fields. Packaging has been moved to Alioth and is now
      Git based.
    + Bump Standards: to 3.9.5. Fixed DEP-5 compliancy of debian/copyright.
  * debian/copyright:
    + Make file DEP-5 compliant.
    + Add CDBS-autogenerated debian/copyright.in file for later reference.
  * debian/gosa.prerm:
    + Ignore those valid prerm options that nothing has to be done for.
      (Closes: #745045).
  * debian/gosa.postrm:
    + Handle apache2 config symlink removal and Apache2 restarts properly
      on package purging. (Closes: #744151).
  * debian/gosa.postinst:
    + Only create Apache2.2 symlinks if Apache2.4 conf-available folder is
      not present.
  * Remove obsolete packaging files for formerly embedded bin:package smarty3.
  * package scripts: Whitespace clean-up. Use tabs as indentations.

 -- Mike Gabriel <sunweaver@debian.org>  Sun, 18 May 2014 22:44:32 +0200

gosa (2.7.4+reloaded1-1) unstable; urgency=low

  * New maintenance team: Debian Edu Packaging Team.
  * Use upstream tarballs as provided at http://oss.gonicus.de/pub/gosa/
    instead of assembling them from SVN or other source. This makes
    tarballs checksum stable and allows us to plainly keep the
    debian/ folder in Vcs.
  * debian/rules:
    + Add get-orig-source sequence.
    + Symlink default theme's fonts against fonts in
      /usr/share/fonts/truetrype/liberation.
    + Install upstream Changelog into bin:packages.
  * debian/control:
    + Drop deprecated field DM-Upload-Allowed.
    + Break up Depends: field items into multiple lines (makes control file
      diffs easier to read).
    + Depend on fonts-liberation (rather than on transitional package
      ttf-liberation). (Closes: #722358).
    + Bin:package gosa: Alternatively depend on php5-mysqlnd or php-mysql.
      (Closes: #718857).
    + Bin:package gosa: Alternatively depend on libapache2-mod-php5,
      php5-cgi _or_ php5-fpm. (Closes: #718859).
  * debian/gosa-plugin-mail.install, debian/gosa-plugin-mail.<scripts>:
    + Install conffiles to location where they are expected by the
      GOsa² WebGUI. Handle conffile moval in bin:package gracefully.
      (Closes: #714922).
  * debian/gosa.prerm:
    + Add file. Handle removal of symlinks created during postinst.
      (Closes: #715441).
  * debian/gosa.postinst:
    + Enable gosa-apache.conf appropriately with Apache2.4. Thanks to
      Andreas B. Mundt for providing the necessary patch. (Closes: #717743).
  * debian/source.lintian-overrides:
    + Override gosa source: debian-watch-file-is-missing. We actually have
      very many watch.* files (for each of the multiple orig tarballs).

 -- Mike Gabriel <sunweaver@debian.org>  Tue, 01 Apr 2014 19:54:34 +0200

gosa (2.7.4-4.4) unstable; urgency=low

  * Non-maintainer upload.
  * debian/patches/sasl-password-change.patch: New patch, allows for changing
    user passwords as admin for sasl authentication method. (Closes: #698544)

 -- Michael Banck <mbanck@debian.org>  Mon, 02 Dec 2013 12:37:29 +0100

gosa (2.7.4-4.3) unstable; urgency=low

  * Non-maintainer upload.
  * debian/patches/fix-mass-ldapimport.patch: New patch, fixes LDAP mass
    import, by Giorgio Pioda and Petter Reinholdtsen. (Closes: #698840)

 -- Michael Banck <mbanck@debian.org>  Fri, 14 Jun 2013 10:59:37 +0200

gosa (2.7.4-4.2) unstable; urgency=low

  [ Jonathan Wiltshire ]
  * Non-maintainer upload.

  [ Vagrant Cascadian ]
  * debian/gosa.postinst, debian/gosa.postrm: Only restart apache2 or lighttpd
    when binary is present. (Closes: #699616)

 -- Jonathan Wiltshire <jmw@debian.org>  Thu, 07 Feb 2013 20:28:29 +0000

gosa (2.7.4-4.1) unstable; urgency=low

  * Non-maintainer upload.
  * debian/gosa.postinst: add a guard around a2enmod for when
    gosa is installed without Apache2 (Closes: #698635)

 -- Jonathan Wiltshire <jmw@debian.org>  Sun, 27 Jan 2013 14:15:17 +0000

gosa (2.7.4-4) unstable; urgency=low

  * New smarty3 package fixes problems with template loading. This
    release removes the workarounds for that issue.

 -- Cajus Pollmeier <cajus@debian.org>  Tue, 19 Jun 2012 09:36:39 +0200

gosa (2.7.4-3) unstable; urgency=low

  * Reverted Apache2 transition because it has been aborted. Closes: #674357.
  * Checked if the package runs with debian packaged smarty 
    3.1.x. Closes: #672398.

 -- Cajus Pollmeier <cajus@debian.org>  Mon, 18 Jun 2012 14:29:03 +0200

gosa (2.7.4-2) unstable; urgency=low

  * More robustness for the postinst scripts. Closes: #673168.
  * Hide duplicate message of update-gosa.

 -- Cajus Pollmeier <cajus@debian.org>  Thu, 17 May 2012 20:29:09 +0200

gosa (2.7.4-1) unstable; urgency=low

  * New upstream release
  * Apache2 transition to 2.4 (Closes: #669852)
  * Corrected dependency of the netatalk plugin (Closes: #606980)
  * Corrected dependency for deprecated Switch library (Closes: #629336)
  * Made user id editable when applying templates (Closes: #629446)
  * Added a conflict for no longer supported plugins (Closes: #608918, #608920)

 -- Cajus Pollmeier <cajus@debian.org>  Mon, 23 Apr 2012 10:54:39 +0200

gosa (2.7.3-2) unstable; urgency=low

  * Fixed purge in postrm script (Closes: #664852)
  * Brazilian Portuguese debconf templates translation (Closes: #662178)

 -- Cajus Pollmeier <cajus@debian.org>  Thu, 22 Mar 2012 13:58:59 +0100

gosa (2.7.3-1) unstable; urgency=low

  * New upstream release
  * Maintain DHCP information correctly (Closes: #650258)

 -- Cajus Pollmeier <cajus@debian.org>  Mon, 23 Jan 2012 09:07:40 +0100

gosa (2.7.2-1) unstable; urgency=low

  * New upstream release
  * Added danish template translation (Closes: #628223)
  * Removed extra spurious Czech translation file (Closes: #624209)
  * Upstream has followed the whishlist bug (Closes: #629315)
  * Fixed an incorrect warning issue (Closes: #629318)

 -- Cajus Pollmeier <cajus@debian.org>  Tue, 25 Oct 2011 13:48:03 +0200

gosa (2.7.1-2) unstable; urgency=low

  * Updated debconf translation (Closes: #624209)

 -- Cajus Pollmeier <cajus@debian.org>  Wed, 27 Apr 2011 08:32:00 +0200

gosa (2.7.1-1) unstable; urgency=low

  * New upstream release
  * Updated packaging to not include smarty (Closes: #620489)
  * Fixed case of POSIX (Closes: #620486)

 -- Cajus Pollmeier <cajus@debian.org>  Mon, 04 Oct 2010 10:45:44 +0200

gosa (2.6.11-1) unstable; urgency=low

  * Samba schema file is incompatible with Samba shipped with lenny
    (Closes: #582899)
  * package explicitly depends on preform MPM (Closes: #591043)
  * default config refers to missing FCGIWrapper (Closes: #591046)

 -- Benoit Mortier <benoit.mortier@opensides.be>  Fri, 13 Aug 2010 11:00:29 +0200

gosa (2.6.10-2) unstable; urgency=low

  * Removed faulty patch due to 3.0 source conversion
  * Prevented /usr/share/doc/gosa.conf to be compressed
    to make setup configuration file saving work again

 -- Benoit Mortier <benoit.mortier@opensides.be>  Tue, 27 Jul 2010 18:49:07 +0200

gosa (2.6.10-1) unstable; urgency=low

  [ Cajus Pollmeier ]
  * New upstream release

  [ Benoit Mortier ]
  * Switch to dpkg-source 3.0 (quilt) format
  * gosa fails with: "Fatal error: Call to undefined function
    print_array() (Closes: #573220)
  * GOSa fails to add IP and MAC addresses to samba created hosts
    (Closes: #582896)

 -- Benoit Mortier <benoit.mortier@opensides.be>  Tue, 20 Jul 2010 12:48:02 +0200

gosa (2.6.9-1) unstable; urgency=low

  * New upstream release

 -- Cajus Pollmeier <cajus@debian.org>  Mon, 15 Mar 2010 11:28:48 +0100

gosa (2.6.8-1) unstable; urgency=low

  * New upstream release

 -- Cajus Pollmeier <cajus@debian.org>  Mon, 15 Feb 2010 14:19:14 +0100

gosa (2.6.7-1) unstable; urgency=low

  * New upstream release

 -- Cajus Pollmeier <cajus@debian.org>  Wed, 27 Jan 2010 21:53:12 +0100

gosa (2.6.6-1) unstable; urgency=low

  * New upstream release

 -- Cajus Pollmeier <cajus@debian.org>  Mon, 05 Oct 2009 15:03:41 +0200

gosa (2.6.5-1) unstable; urgency=low

  * New upstream release

 -- Cajus Pollmeier <cajus@debian.org>  Wed, 25 Feb 2009 13:36:18 +0100

gosa (2.6.4-1) unstable; urgency=low

  * New upstream release

 -- Cajus Pollmeier <cajus@debian.org>  Fri, 06 Feb 2009 11:35:38 +0100

gosa (2.6.3-1) unstable; urgency=low

  * New upstream release

 -- Cajus Pollmeier <cajus@debian.org>  Thu, 15 Jan 2009 11:43:15 +0100

gosa (2.6.2-1) unstable; urgency=low

  * New upstream release 

 -- Cajus Pollmeier <cajus@debian.org>  Fri, 19 Dec 2008 09:51:32 +0100

gosa (2.6.1-1) unstable; urgency=low

  * New upstream release

 -- Cajus Pollmeier <cajus@debian.org>  Mon, 07 Apr 2008 11:18:53 +0200