Mirrors/roundcubemail
2
0
Fork 0
mirror of https://github.com/roundcube/roundcubemail.git synced 2026-03-03 06:44:03 +01:00
Code Issues Packages Projects Releases Wiki Activity
13,344 Commits 72 Branches 205 Tags
editorconfig-javascript
Commit Graph

239 Commits

Author SHA1 Message Date
Aleksander Machniak
8fff21deb5 Fix POST parameter reflection in default_charset selector (#5768) 2017-05-26 08:46:59 +02:00
Aleksander Machniak
9858c2a294 Merge branch 'master' into dev-elastic 2017-05-14 13:32:35 +02:00
Aleksander Machniak
51fb3bfa58 Support including files with path relative to templates dir 2017-04-20 16:09:56 +02:00
Aleksander Machniak
559254d6ee Use <button> instead of <input> for submit button on logon screen 2017-04-04 15:00:12 +02:00
Aleksander Machniak
51dffcda86 Skip <script> element if it has no content 2017-03-26 19:17:38 +02:00
Aleksander Machniak
f03839b24b Add support for 'link' objects in templates (with conditions) 
.. to simplify conditional <link> tags injection while nested 'if' objects do not work
 2017-03-22 12:15:39 +01:00
Aleksander Machniak
71ff264b02 Support conditional include 2017-03-20 11:47:38 +01:00
ka7
9a35768c26 spelling fixes (#5690) 2017-03-12 12:14:19 +01:00
Aleksander Machniak
38067f61da Get rid of data-popup-pos 2017-03-06 16:49:37 +01:00
Aleksander Machniak
adbab9d3e2 Merge branch 'master' into dev-elastic 2017-03-03 09:14:44 +01:00
Aleksander Machniak
e2d80479d6 Make possible to set (some) config options from a skin 2017-02-26 15:31:06 +01:00
Aleksander Machniak
f29fd706cf Get back to eval() 
We used create_function() before but it's deprecated in PHP 7.2
and really it was just a wrapper on eval().
 2017-02-06 15:13:41 +01:00
Aleksander Machniak
8131629c6e Extended unified searchform object for templates engine 2017-01-14 10:35:44 +01:00
Aleksander Machniak
cc10cbe039 Make button object to be a <button> by default 2017-01-13 11:17:05 +01:00
Aleksander Machniak
369b44d94a Fix unsetting template objects 
Fixes compatibility with some plugins e.g. kolab_addressbook which
call parse() method (for sub-templates) while parsing the main template
 2016-12-27 04:46:36 -05:00
Aleksander Machniak
e17fcf1649 Support ALLOW-FROM in x_frame_options (#5122) 2016-11-11 12:56:38 +01:00
Aleksander Machniak
d02e6ea45e Fix so templating system does not mess with external (e.g. email) content (#5499) 2016-11-07 13:39:43 +01:00
Aleksander Machniak
edea8732a6 Fix regression where UI object could be not created on some pages (#5484) 2016-10-20 15:48:42 +02:00
Aleksander Machniak
f43f5bf93f Use JSON_PRETTY_PRINT in devel_mode 
This effectively makes PHP 5.4 a real requirement
 2016-10-18 10:42:49 +02:00
Aleksander Machniak
638afafbd2 Make so rcmail.log() depends on devel_mode (#5193) 2016-10-04 17:19:45 +02:00
Victor Benincasa
daeb66ee99 Fix login form 
Fix a small bug introduced on commit 43f3c5f that breaks the login form ($attrib['form'] is checked at line 1899, so it cannot be unset).
 2016-08-26 05:31:28 -03:00
Aleksander Machniak
43f3c5fb2a Implement "one click" attachment upload (#5024) 2016-08-20 19:38:48 +02:00
Aleksander Machniak
184de7735c CS fixes (mostly phpdoc) 2016-08-18 08:50:59 +02:00
Thomas Bruederli
4a408843b0 Protect download urls against CSRF using unique request tokens (#1490642) 
Send X-Frame-Options headers with every HTTP response
 2016-03-06 14:31:07 +01:00
Aleksander Machniak
10e5192a2b Fix path traversal vulnerability in setting a skin (#1490620) 2015-12-22 12:40:36 +01:00
dsoares
234fd19505 Replace deprecated call to Q within array_map() 2015-10-26 16:13:14 +00:00
Aleksander Machniak
93e64008a6 Small code improvements 2015-08-05 09:30:51 +02:00
Aleksander Machniak
252cc4c4ac Password: Allow temporarily disabling the plugin functionality with a notice 2015-07-27 10:47:34 +02:00
Aleksander Machniak
a958748947 CS fixes 2015-06-07 15:26:33 +02:00
Thomas Bruederli
0bd99db08d Localize common error messages; improve explanation for CSRF check failures 2015-03-23 18:33:40 +01:00
Aleksander Machniak
681ba6fc3c Improve system security by using optional special URL with security token 
Allows to define separate server/path for image/js/css files
Fix bugs where CSRF attacks were still possible on some requests
 2014-12-16 13:28:48 +01:00
Thomas Bruederli
8d526c4938 Fix skin path handling in plugin context (#1488967): 
The plugin skin directories are removed again from the search path after parsing of a plugin template has finished.
 2014-11-03 16:15:44 +01:00
Aleksander Machniak
1ffab0ad4a Fix possible issues in skin/skin_path config handling (#1490125) 2014-10-30 12:34:16 +01:00
Thomas Bruederli
8ef203827f Make noshow attribute for roundcube:label tags actually work as supposed 2014-09-18 09:01:30 +02:00
Aleksander Machniak
d01f9fc7f5 Add option (disabled_actions) to disable UI elements/actions (#1489638) 2014-08-04 19:03:27 +02:00
Aleksander Machniak
ef51ae6d19 Reset also page header/footer on "dummy frames" - to prevent js error e.g. if some script depends on jQuery 2014-07-02 18:20:19 +02:00
Aleksander Machniak
19138ef7a9 Make sure set_env and add_label commands are always sent first - other commands might depend on them. 
Fixes loading message in managesieve filters frame.
 2014-06-09 10:35:32 +02:00
Thomas Bruederli
99cdca46b7 Merge branch 'dev-accessibility' 
Conflicts:
	program/include/rcmail_output_html.php
	program/js/app.js
	program/js/treelist.js
	program/lib/Roundcube/html.php
	skins/larry/styles.css
	skins/larry/templates/compose.html
 2014-06-05 09:18:07 +02:00
Thomas Bruederli
d58c39126f Some more improvemements on content structure, text representation and keyboard navigation within the mail view 2014-06-02 16:35:12 +02:00
Thomas Bruederli
22a2c5e0ee Localize title and summary attributes; make message count display box a live area 2014-06-02 12:57:28 +02:00
Aleksander Machniak
2441264d00 Improved folders sorting by name - use Intl.Collator if supported 2014-05-28 10:37:24 +02:00
Aleksander Machniak
ffc74814c1 Optimize "empty" framed pages size (#1489792) 2014-05-12 15:53:47 +02:00
Aleksander Machniak
8f57ce136b Code improvements 2014-05-12 13:32:40 +02:00
Aleksander Machniak
7079110c61 Allow data-* attributes (#1489860) 2014-05-08 15:08:45 +02:00
Thomas Bruederli
ea0866a1ad Improve keyboard navigation on compose screen: define tabindex groups + enable keyboard controls of contacts list widget 2014-05-07 20:04:13 +02:00
Thomas Bruederli
184ed2efe2 Declare content language for proper text-to-speech support 2014-05-07 17:27:05 +02:00
Thomas Bruederli
b0ce5c62af Make skin meta/hierarchy information accessible for plugins (#1488831) 2014-05-01 09:05:29 +02:00
Thomas Bruederli
e8bcf08c72 1. Prepare core and Larry skin for improved accessibility 
2. Implement full keyboard navigation in main mail view
 2014-04-30 16:21:29 +02:00
Thomas Bruederli
b34d679075 Specify licenses in all javascript files and blocks to please LibreJS 2014-04-27 15:35:07 +02:00
Aleksander Machniak
5be6dcf0e2 Remove useless debug_level=8 and javascripts's rcube_console 2014-04-15 19:19:56 +02:00