Andrew Dolgov
|
6359259dbb
|
simplify internal authentication code and bump default algo to SSHA-512
|
2021-03-01 15:24:18 +03:00 |
Andrew Dolgov
|
efd196839a
|
stop caching schema version entirely, fix some session_start() related warnings
|
2021-02-25 15:28:27 +03:00 |
Andrew Dolgov
|
8d2e3c2528
|
drop errors.php and simplify error handling
|
2021-02-23 22:26:07 +03:00 |
Andrew Dolgov
|
2ae0b7059f
|
cleanup some defined-stuff
|
2021-02-23 09:01:27 +03:00 |
Andrew Dolgov
|
29ada58b4a
|
move db-prefs shortcut functions to functions.php
|
2021-02-22 23:25:14 +03:00 |
Andrew Dolgov
|
12bcf826e4
|
don't include config.php everywhere
|
2021-02-22 22:39:20 +03:00 |
Andrew Dolgov
|
42173386b3
|
dirname(__FILE__) -> __DIR__
|
2021-02-22 17:38:46 +03:00 |
Andrew Dolgov
|
be4e7b1340
|
fix several issues reported by phpstan
|
2021-02-22 14:41:09 +03:00 |
Andrew Dolgov
|
9d7ba773ec
|
move session-related functions to their own namespace
|
2021-02-16 17:13:16 +03:00 |
Andrew Dolgov
|
9f55454f63
|
remove the rest of db.php; rename some leftover methods in feeds
|
2021-02-15 16:51:35 +03:00 |
Andrew Dolgov
|
6af83e3881
|
drop ENABLE_GZIP_OUTPUT; system prefs: load php info only if needed
|
2021-02-12 21:43:38 +03:00 |
Andrew Dolgov
|
aba028a375
|
api: fix some php8 warnings (3)
|
2021-02-09 08:47:41 +03:00 |
Andrew Dolgov
|
74568df4ff
|
remove a lot of stuff from global context (functions.php), add a few helper classes instead
|
2020-09-22 09:04:33 +03:00 |
Andrew Dolgov
|
68b0380118
|
add placeholder authentication via app passwords if service is passed
forbid logins via regular passwords for services
remove AUTH_DISABLE_OTP
|
2019-11-01 13:03:06 +03:00 |
Andrew Dolgov
|
8064ca3f8c
|
API endpoint: disable session cookies
|
2018-10-15 07:37:07 +03:00 |
Andrew Dolgov
|
ea79a0e033
|
remove some redundant php closing tags
|
2017-04-26 20:24:18 +03:00 |
Andrew Dolgov
|
4afcf63563
|
api host: add session validation
|
2016-07-20 13:55:51 +03:00 |
Andrew Dolgov
|
5d97019d5d
|
api: load user plugins properly
|
2016-07-20 13:52:22 +03:00 |
Raphaël Rochet
|
cd839c9812
|
Enable translation of strings returned by API
|
2015-07-29 17:26:47 +02:00 |
Rasmus Lerdorf
|
6f7798b643
|
Fixing bugs found by static analysis
|
2013-05-07 00:35:10 -07:00 |
Andrew Dolgov
|
4a70edea1a
|
api: remove db_connect stuff
|
2013-04-17 18:58:30 +04:00 |
Andrew Dolgov
|
404e2e3603
|
more work on singleton-based DB
|
2013-04-17 15:36:48 +04:00 |
Andrew Dolgov
|
ba68b6815a
|
db updates, remove init_connection()
|
2013-04-17 14:23:35 +04:00 |
Andrew Dolgov
|
9ce7a5546c
|
implement some tweaks to session handling; properly remove session cookie if invalid/login failed
|
2013-04-04 15:33:14 +04:00 |
Andrew Dolgov
|
0bb5833beb
|
api: add getFeedTree
|
2013-03-28 11:04:27 +04:00 |
Andrew Dolgov
|
3f0094189c
|
api: lower maximum lifetime of api sessions
|
2013-03-28 09:48:14 +04:00 |
Andrew Dolgov
|
5160620c8a
|
only autostart session if login cookie exists
|
2013-03-28 08:06:21 +04:00 |
Andrew Dolgov
|
acfbab375d
|
mute warnings caused by session_start() to deal with potential ps_files_cleanup_dir stuff
|
2013-02-19 16:56:43 +04:00 |
Andrew Dolgov
|
88e8fb3a71
|
modify include path order (closes #514)
|
2012-12-09 13:41:22 +04:00 |
Andrew Dolgov
|
839b065860
|
api: remove unneeded stuff, add special header for android httpurlconnection which seems to be retarded
|
2012-09-19 15:54:55 +04:00 |
Andrew Dolgov
|
964f153371
|
api: use tt-rss session storage
|
2012-09-19 12:45:01 +04:00 |
Andrew Dolgov
|
02cd6de128
|
api: add workaround to disable OTP
|
2012-09-03 22:32:24 +04:00 |
Andrew Dolgov
|
6eaf319320
|
api: disable deprecated HTTP parameter support by default
|
2012-08-17 15:16:13 +04:00 |
Andrew Dolgov
|
f1d65e5089
|
remove api-specific _autoload
|
2012-08-16 18:33:08 +04:00 |
Andrew Dolgov
|
6a79e8afeb
|
only enable ob_gzhandler if it exists
|
2012-03-20 14:45:43 +04:00 |
Andrew Dolgov
|
de8260cb10
|
move API to classes/
|
2011-12-13 15:40:42 +04:00 |
Andrew Dolgov
|
4a0500fbc8
|
fix API includes
|
2011-12-12 00:13:14 +04:00 |
Andrew Dolgov
|
46d60592ad
|
api: implement setting article note through updateArticle
|
2011-11-29 09:54:21 +04:00 |
Andrew Dolgov
|
75b901d929
|
api/getCategories: return virtual categories and Uncategorized
|
2011-11-29 09:22:38 +04:00 |
Andrew Dolgov
|
e9ed9ec844
|
api/getCategories: add TODO
|
2011-11-28 19:41:04 +04:00 |
Andrew Dolgov
|
582f41e2c1
|
implement getApiLevel
|
2011-11-28 09:35:13 +04:00 |
Andrew Dolgov
|
4044a5fa52
|
remove pointless escaping of the password (refs #392)
|
2011-11-22 11:05:12 +04:00 |
Andrew Dolgov
|
8ad4bac0fd
|
api: always chdir() to base directory (refs #375)
|
2011-11-07 10:21:18 +04:00 |
Andrew Dolgov
|
823da71a10
|
api/getArticle: validate id list
|
2011-11-07 10:18:24 +04:00 |
Andrew Dolgov
|
52ebaf93e9
|
api/updateArticle: validate article_ids parameter (refs #375)
|
2011-11-05 15:00:30 +04:00 |
Andrew Dolgov
|
97e5dbb2e7
|
api: add getHeadlines since_id
|
2011-09-09 12:11:56 +04:00 |
Andrew Dolgov
|
9a98fd9bc7
|
api: set content-type
|
2011-09-08 15:11:16 +04:00 |
Andrew Dolgov
|
90e71380ba
|
api: support passing input parameters using JSON in HTTP POST data
|
2011-04-14 21:22:55 +04:00 |
Andrew Dolgov
|
a0e580b0ca
|
api/getHeadlines: add include_attachments parameter
|
2011-04-14 21:00:36 +04:00 |
Andrew Dolgov
|
9fc34a36f1
|
api: remove obsolete getArticles/getNewArticles previously added for tt-rss reader
|
2011-04-13 15:52:31 +04:00 |