Andrew Dolgov
d4fef36237
rewrite per-feed/global strip images to strip media
2018-09-07 10:24:46 +03:00
Andrew Dolgov
310c18e6bb
move OTPHP to vendor/; additionally move Base32 class to OTPHP namespace
2018-06-20 18:27:34 +03:00
tsia
551f3c2c85
fixed "reset to defaults" in preferences
2018-03-15 16:26:50 +00:00
Francesco Turco
1a7277570b
fix two-factor authenticaton
2017-12-22 12:29:25 +01:00
Andrew Dolgov
d0cce0c7a4
isdefaultpassword: use method_exists() to check for check_password
2017-12-15 12:15:15 +03:00
simonp
5f19596651
Fix typo from previous pull request
2017-12-14 18:43:42 +01:00
Benjamin Collet
44c6a04b61
Check if the auth module supports check_password() method before using it
2017-12-14 18:02:37 +01:00
Andrew Dolgov
9390ddeae2
fix single user mode login failing because of isdefaultpassword()
2017-12-14 19:27:55 +03:00
Andrew Dolgov
1bf468ba1a
pref-prefs: set button classes
2017-12-11 18:50:00 +03:00
Andrew Dolgov
e6532439d6
force strip_tags() on all user input unless explicitly allowed
2017-12-03 23:35:38 +03:00
Andrew Dolgov
7c6f7bb0aa
fix some minor issues found by code analyzer
2017-12-03 23:08:04 +03:00
Andrew Dolgov
7c0eb1b621
add defaultPasswordWarning nag dialog
2017-12-03 20:46:27 +03:00
Andrew Dolgov
187abfe732
main classes: remove sql_bool_to_bool() kludge
2017-12-03 09:35:59 +03:00
Andrew Dolgov
e4291ba12f
otpenable: use pdo prepare()
2017-12-03 09:10:14 +03:00
Andrew Dolgov
7039370368
pref-prefs: PDO
2017-12-02 12:01:56 +03:00
Andrew Dolgov
667d32fd26
remove obsolete forum plugin links
...
mention how to enable system plugins in the UI
2017-07-04 16:28:45 +03:00
Andrew Dolgov
e130b283a7
db prefs: ignore cache when preference requested for specified UID (in case cached value of a different profile is stored)
...
prefs: show (and set) enabled plugins for default profile only
2017-06-24 14:29:07 +03:00
Andrew Dolgov
ea79a0e033
remove some redundant php closing tags
2017-04-26 20:24:18 +03:00
Andrew Dolgov
1bfe1d7b31
simplify error handling
...
* less convoluted exception dialogs
* use window.onerror for the majority of exception catching/reporting
* remove most of now useless try/catch blocks
* report stacktrace instead of manually specified error locations
2017-03-04 14:34:44 +03:00
Jérémy DECOOL
ba2853caac
Prevent target='_blank' vulnerability on dynamic link
2017-02-12 11:01:36 +01:00
Andrew Dolgov
328118d12e
use print_hidden() for hidden dojo form fields
2017-02-10 14:36:21 +03:00
Andrew Dolgov
22387de225
preferences: set themes dropdown to default if selected theme is missing
2017-01-26 22:37:22 +03:00
Andrew Dolgov
e432b8fbe2
implement cache-busting for default theme.css
...
night theme: small fixes
2017-01-25 12:17:41 +03:00
Andrew Dolgov
312742db6e
updates: auto-disable CURL if open_basedir is enabled, notify possible issues w/ plugins
2016-01-13 18:12:31 +03:00
Andrew Dolgov
5bdcb8fd78
remove option ALLOW_DUPLICATE_POSTS as confusing/useless
2016-01-07 22:01:35 +03:00
Andrew Dolgov
583f163f40
don't init plugins when loading everything to make a list, duh
2015-10-08 17:02:32 +03:00
Andrew Dolgov
b87744534a
add plugin-based filter actions (see example plugin in attic)
...
bump schema
2015-08-11 23:28:42 +03:00
Andrew Dolgov
fb8a032a6b
minor textarea fixes
2015-08-11 18:44:07 +03:00
Andrew Dolgov
e79e274fc8
add styles for several other dijit elements
2015-08-11 16:41:05 +03:00
Andrew Dolgov
5956f312b7
add a bit more visible separate infobox for password change results
2015-07-06 12:10:15 +03:00
Andrew Dolgov
415a3b50c9
fix some minor typos and stuff
2015-06-07 18:41:18 +03:00
Andrew Dolgov
b9634eb8b8
support loading themes from themes.local
2015-06-05 18:08:19 +03:00
Andrew Dolgov
e6c826fa2f
remove AUTO_ASSIGN_LABELS (confusing, idiots keep enable it and complain of the results)
2015-02-21 13:08:50 +03:00
Andrew Dolgov
f6cbe9a5a0
require version information in all additional themes
2014-12-09 15:16:53 +03:00
Andrew Dolgov
78744d48d7
add FEEDS_SORT_BY_UNREAD to blacklist (removed)
2014-06-10 08:54:18 +04:00
Andrew Dolgov
4a80c57c50
remove some unused code reported by phpmd
2014-02-19 15:42:52 +04:00
Andrew Dolgov
ab85ad89b3
otp: use application name in provisioning uri
2014-01-19 00:29:42 +04:00
Andrew Dolgov
06a39024dd
plugin list: fix system plugins image position
2013-07-10 13:11:40 +04:00
Andrew Dolgov
2f20dd58d2
integrate silk icons by Mark James
2013-07-10 13:09:12 +04:00
Andrew Dolgov
5bbc4bb4b0
move stylesheets to css/, reference default tt-rss stylesheets from
...
default.css to make custom themes easier
2013-05-19 21:22:01 +04:00
Andrew Dolgov
8429af52be
adjust previous patch phrasing a bit
2013-05-19 11:27:17 +04:00
Mike Frysinger
5bac322258
document the date format string
...
I assumed the format string was related to strftime except all of the
fields looked really weird. After digging in the code, this string is
actually used with php's date(). Add a note for this so other people
can jump quickly to the relevant documentation (which is useful for
non-php peeps who have no idea what this is).
2013-05-19 03:19:55 -04:00
Andrew Dolgov
11334fdf6c
make appearance of some preference panes more similar
2013-05-12 12:36:25 +04:00
Rasmus Lerdorf
6f7798b643
Fixing bugs found by static analysis
2013-05-07 00:35:10 -07:00
Andrew Dolgov
8d090a910b
use css nth-child instead of old even/odd class hacks for normal mode
2013-05-04 12:01:53 +04:00
Andrew Dolgov
bd02d29e1b
prefs: update some descriptions to be more consistent
2013-04-29 15:58:15 +04:00
Andrew Dolgov
7b149552cb
remove language selector from the login form, store language in the database per-user
2013-04-29 15:54:23 +04:00
Andrew Dolgov
e57a1507ae
do not use session cookie lifetime for additional cookies
2013-04-29 13:03:28 +04:00
Andrew Dolgov
a845a3d5e5
otp: display notice if GD is missing
2013-04-29 09:20:30 +04:00
Andrew Dolgov
48ed517e8d
pref_prefs: remove second argument from the constructor
2013-04-19 08:40:19 +04:00