Mirrors/roundcubemail
2
0
Fork 0
mirror of https://github.com/roundcube/roundcubemail.git synced 2026-03-03 14:54:01 +01:00
Code Issues Packages Projects Releases Wiki Activity
10,592 Commits 72 Branches 205 Tags
0716d499bc591f43a7eabc19da672bbbee41b976
Commit Graph

2303 Commits

Author SHA1 Message Date
Aleksander Machniak
35a3abd3de Fix skin extending for assets (#5115) - take two 2018-04-24 06:32:16 +00:00
Aleksander Machniak
8355ba62fb Revert "Fix skin extending for assets (#5115)" 2018-04-23 19:53:45 +02:00
Aleksander Machniak
acfd335f14 Simplify code to set/change a skin 
When changing skin in Preferences we do not use the new skin immediately,
we do this after redirect.
 2018-04-20 09:14:44 +02:00
Aleksander Machniak
3e0e12227e Use default skin on login page, also after logout 
Before we stored user skin in session to keep user skin on logon after logout.
After more thinking... imho it's better to always present the same logon look.
 2018-04-20 08:52:19 +02:00
Aleksander Machniak
3f53acb64a Fix regression in skin extending for assets (commit ecde98729b) 
It could have been possible that core template loaded plugin files
by mistake (if file with the same name existed), we don't want that.
 2018-04-18 09:34:37 +00:00
Aleksander Machniak
c1774b6e1d Put additional footer content before "footer scripts" (for Elastic) 2018-04-16 12:59:00 +02:00
Aleksander Machniak
ecde98729b Fix skin extending for assets (#5115) 
Remove redundant is_file() calls.
 2018-04-15 12:21:56 +02:00
Aleksander Machniak
418c72137e Improve search_form() for external use 2018-04-11 09:08:18 +02:00
Aleksander Machniak
b2bebe531a Fix bug where usernames without domain part could be malformed or converted to lower-case on logon (#6224) 2018-04-10 09:24:29 +02:00
Aleksander Machniak
8e543f843e Fix check_request() bypass in places using get_uids() [CVE-2018-9846] (#6238) 2018-04-09 09:07:27 +02:00
Aleksander Machniak
5832eca405 RCMAIL_CHARSET -> RCUBE_CHARSET (#6236) 2018-04-06 08:10:11 +02:00
Aleksander Machniak
73ea8f94d0 Use htmlspecialchars() with charset argument, simplify some code 2018-04-03 15:29:59 +02:00
Aleksander Machniak
a451ad6599 Fix handling encoding of HTML tags in "inline" JSON output (#6207) 2018-03-07 17:40:12 +01:00
Aleksander Machniak
4f6079833a Fix PHP 7.2 warning: count(): Parameter must be an array or an object that implements Countable 2018-01-22 08:20:23 +01:00
Aleksander Machniak
b00d5c3836 Automatically localize data-label-* attributes of a template object 2018-01-18 11:33:11 +01:00
Aleksander Machniak
83bd85677b Remove x_frame_options env 2018-01-07 08:55:46 +01:00
Aleksander Machniak
b172fb505c Improve trusted_host_patterns code 2018-01-01 11:10:53 +01:00
Aleksander Machniak
55a1d6ef1b Make search form's aria label to also support plugin localization (via label-domain property) 2017-12-21 11:43:41 +01:00
Aleksander Machniak
38d275445d Plugin API: Add 'write' argument to 'render_page' hook 2017-12-18 12:04:42 +01:00
Aleksander Machniak
8e2f6275a4 Prevent from empty 'class' attribute in generated html 2017-12-06 20:13:50 +01:00
Aleksander Machniak
00cb440a07 Inline warnings can contain HTML code (regression fix) 2017-12-06 19:40:27 +01:00
Aleksander Machniak
db382fa19c Change remote images to remote resources warning also in html attachment preview 2017-12-06 19:33:03 +01:00
Aleksander Machniak
46e2e7e16c CS fix 2017-12-06 15:50:58 +01:00
Aleksander Machniak
758044d69e Add skin config options to dont_override list 
... so e.g. options in user preferences will be hidden.
 2017-11-28 16:32:01 +01:00
Aleksander Machniak
1cf72fa2b6 Allow plugins to include Less files (#6051) 2017-11-20 13:48:07 +01:00
PhilW
26f1b0770c use skinned alert boxes 2017-11-16 20:54:40 +00:00
PhilW
b897fe9349 use skined confirmation boxes where possible 2017-11-16 20:54:24 +00:00
Aleksander Machniak
910c735b87 Merge branch 'master' into dev-elastic 2017-11-08 15:00:53 +01:00
Aleksander Machniak
2a32f51c91 Fix file disclosure vulnerability caused by insuficient input validation in relation with attachment plugins (#6026) 2017-11-08 11:03:19 +01:00
Aleksander Machniak
ef0982f1b8 Merge branch 'master' into dev-elastic 2017-10-28 18:24:54 +02:00
JohnDoh
a8f0d35ebc Extend disabled_actions config so it accepts also button names (#5903) 2017-10-21 08:48:34 +02:00
Aleksander Machniak
d815525c6a Merge branch 'master' into dev-elastic 2017-10-20 13:34:25 +02:00
Aleksander Machniak
22b30de5d9 Fix bug where assets_path wasn't added to some watermark frames 2017-10-04 09:27:23 +02:00
Aleksander Machniak
3a77c906a1 Merge branch 'master' into dev-elastic 2017-09-10 13:28:47 +02:00
Aleksander Machniak
6ecf87b5bd Support 'class' attribute in ComposeFormHead object 2017-09-08 11:55:17 +02:00
Aleksander Machniak
b77cce8d3e Fix sending message with "Too many public recipients" dialog buttons (#5924) 2017-08-28 09:28:32 +02:00
Aleksander Machniak
13d203303e Refactored Help plugin to use frames, added Elastic skin support 2017-08-02 19:13:19 +02:00
Aleksander Machniak
5d398d4d00 Add version number to the client environment 2017-07-30 10:09:50 +00:00
Aleksander Machniak
040a71e76c Make public class rcmail_bounce_mail (now rcmail_resend_mail) (#5861) 2017-07-20 12:16:24 +02:00
Aleksander Machniak
cfed954a46 Fix bug where Chrome could not upload the same file that was selected before (#5854) 
... and removed the cancel hack that is not needed anymore.
 2017-07-14 08:44:49 +02:00
Aleksander Machniak
1b2d3c0ac2 Email Resent (Bounce) feature (#4985) 2017-07-12 11:56:41 +02:00
Aleksander Machniak
4b2f2b6b3b Use about:blank instead of blank.gif for empty iframes 2017-07-05 13:58:53 +02:00
Aleksander Machniak
84a79ee8db Move common mail composing/sending code to new rcmail_sendmail class 
This is needed to make simpler an implementation of e.g.
- Mail Bounce feature (#4985),
- Direct Draft sending (#4998),
- Fast reply from mail preview (#5129).
 2017-07-05 13:18:08 +02:00
Aleksander Machniak
86a4d78369 Merge branch 'dev-elastic' 2017-07-02 16:47:54 +02:00
Aleksander Machniak
05ea5a5548 Add ignore_errors option to rcube_db, so error logging can be disabled temporarily 
Use ignore_errors to make sure the DDL upgrade errors are printed only once.
 2017-07-02 11:51:05 +02:00
Aleksander Machniak
7b4b36b16c Plugin API: Added 'show_bytes' hook (#5001) 2017-06-25 12:56:22 +02:00
Aleksander Machniak
8fff21deb5 Fix POST parameter reflection in default_charset selector (#5768) 2017-05-26 08:46:59 +02:00
Aleksander Machniak
5101cfc67a Bump version to 1.4-git 2017-05-15 11:34:43 +02:00
Aleksander Machniak
9858c2a294 Merge branch 'master' into dev-elastic 2017-05-14 13:32:35 +02:00
Aleksander Machniak
cc0defce86 Fix failing database schema check in all engines except mysql (#5730) 2017-04-21 09:48:46 +02:00