Mirrors/roundcubemail
2
0
Fork 0
mirror of https://github.com/roundcube/roundcubemail.git synced 2026-03-10 01:56:48 +01:00
Code Issues Packages Projects Releases Wiki Activity
5,368 Commits 72 Branches 205 Tags
2ac00a258b9aa859ea78da25cd906e1709df5b75
Commit Graph

190 Commits

Author SHA1 Message Date
Aleksander Machniak
b807084a6b - Fix (disable) request validation for spell and spell_html actions 
Consider action whitelist also for ajax requests
 2012-08-08 08:55:46 +02:00
Aleksander Machniak
2bbc3da52a - Check request tokens also in devel_mode 2012-08-08 08:44:46 +02:00
Aleksander Machniak
1c0ce1fe52 Plugin API: Add 'unauthenticated' hook (#1488138) 2012-07-05 15:42:33 +02:00
Aleksander Machniak
7c8fd80310 Show explicit error message when provided hostname is invalid (#1488550) 2012-06-30 18:41:18 +02:00
Aleksander Machniak
041c93ce0b Removed $Id$ 2012-05-22 12:31:37 +02:00
Brian Ronald
b546b0dcfd Also, the license comments 2012-05-09 10:34:48 +01:00
alecpl
d2191c619f - Fix redirect to mail/compose on re-login (1488226) 2012-04-26 12:23:41 +00:00
alecpl
1aceb9cec8 - Framework refactoring (I hope it's the last one): 
rcube,rcmail,rcube_ui -> rcube,rcmail,rcube_utils
  renamed main.inc into rcube_bc.inc
 2012-04-16 11:02:21 +00:00
alecpl
0c259682f6 - Merge devel-framework branch, resolved conflicts 2012-04-13 08:52:02 +00:00
thomascube
7fe3811c65 Changed license to GNU GPLv3+ with exceptions for skins and plugins 2012-01-18 11:10:46 +00:00
thomascube
c321a955a7 Merged devel-framework branch (r5746:5779) back into trunk 2012-01-16 15:14:41 +00:00
alecpl
fdff34093d - Move some checks into login() method 2012-01-03 09:56:19 +00:00
alecpl
b6da0b76af - Remove deprecated global $IMAP variable usage (#1488148) 2011-12-07 10:41:15 +00:00
alecpl
80216d0b79 - Change version number to 0.8-svn 2011-11-24 07:41:37 +00:00
thomascube
abdf31486a Allow cross-task ajax requests 2011-10-30 11:34:31 +00:00
alecpl
3703021713 - Plugin API: added 'ready' hook (#1488073) 2011-10-07 10:25:23 +00:00
thomascube
502436dad0 We're on the road towards 0.7 now 2011-09-29 07:00:34 +00:00
alecpl
9e54e6fd45 - Make the whole PHP output non-cacheable (#1487797) 2011-09-23 10:11:27 +00:00
thomascube
6354da5b8c Fix r5117: don't show error on default login page 2011-08-24 16:18:54 +00:00
thomascube
886aafe167 Don't rely on rcmail->task for session error check; use _REQUEST data instead 2011-08-24 08:39:23 +00:00
thomascube
94c0743cba Don't show session error message on logout 2011-07-30 15:38:29 +00:00
thomascube
fcc7f861b1 Log session validation errors; keep error message when redirecting to login after session error 2011-07-30 15:32:13 +00:00
thomascube
28ac5cada2 Let plugins hook into keep-alive requests 2011-05-24 19:58:12 +00:00
thomascube
87e58c7a92 Default action for plugin tasks is 'index' 2011-05-02 09:03:52 +00:00
alecpl
4351f7cd66 - Improve performance by including files with absolute path (#1487849) 2011-04-20 13:58:21 +00:00
thomascube
ec045b0a24 Revert r4609 and use stateless request tokens; no need to save them in session and thus no keep-alive necessary; fixes #1487829 2011-03-22 07:49:43 +00:00
thomascube
32b11d325e Keep session alive while showing login page (request token is stored in session data) 2011-03-15 22:27:01 +00:00
alecpl
4cfe66f42f - small code cleanup 2011-03-08 08:48:47 +00:00
alecpl
c294eaa3f2 - Performance improvement: Remove redundant DELETE query (for old session deletion) on login 2011-03-08 08:40:47 +00:00
thomascube
de62f02eed Also check referer on logout action 2011-02-08 08:19:18 +00:00
thomascube
a77cf2292b Add optional referer check to prevent CSRF in GET requests 2011-02-08 08:13:06 +00:00
thomascube
784a425e07 protect login form submission from CSRF using a request token 2011-02-03 22:08:03 +00:00
thomascube
cf2da2f9aa Improve session validity check with changing auth cookies; reduce writes to DB; better phpdoc 2011-01-28 16:44:22 +00:00
thomascube
32234d71d3 Better fix for login redirect, don't force mail task 2011-01-19 13:11:47 +00:00
alecpl
68d2d54100 - Move action files map from index.php to steps' func.inc files 2011-01-16 19:42:40 +00:00
thomascube
88007cf060 Fix login redirect issues (#1487686) 2011-01-14 17:03:33 +00:00
thomascube
f5e7b35307 Bumbed version; Roundcube development is not Switzerland only 2011-01-12 18:25:02 +00:00
thomascube
c3be8ed64c Make sure an existing session is killed/replaced when submitting login form 2011-01-06 12:41:16 +00:00
alecpl
af3c045ecf - New Folder Manager UI 
- Fix invalid Request when creating a folder (#1487443)
- Add folder size and quota indicator in folder manager (#1485780)
- Add possibility to move a subfolder into root folder (#1486791)
 2010-12-03 10:58:40 +00:00
alecpl
5f560ee7a0 - Plugin API: Add 'pass' argument in 'authenticate' hook (#1487134) 2010-11-29 08:23:53 +00:00
alecpl
6d99f99576 - Handle situation when $IMAP object isn't initialized on log in 2010-11-09 13:21:02 +00:00
alecpl
8fcc3e1ad6 - Improved IMAP errors handling 2010-10-14 10:22:25 +00:00
alecpl
249db18585 - Fix "Server Error! (Not Found)" when using utils/save-pref action (#1487023) 2010-10-01 07:49:54 +00:00
alecpl
e019f2d0f2 - s/RoundCube/Roundcube/ 2010-09-25 13:03:53 +00:00
alecpl
614c642a4b - Fix list_cols is not updated after column dragging (#1486999) 
- Improved save-pref action and moved to separate file in utils task directory
- Improved http_post/http_request to support first argument in form 'task/action'
 2010-09-17 09:14:13 +00:00
thomascube
4859fedb92 Fix unit tests + update version 2010-08-07 12:04:39 +00:00
alecpl
b25dfd0913 - removed PHP closing tag 2010-06-23 09:55:08 +00:00
thomascube
05a631a43c Allow plugins to register their own tasks 2010-06-03 06:40:06 +00:00
alecpl
3544558f2d - Add HTTP_X_REAL_IP and HTTP_X_FORWARDED_FOR to successful logins log (#1486441) 2010-04-20 16:04:33 +00:00
thomascube
aa12df20e4 Add server-side plugin hooks to address group functions + better action names 2010-04-01 06:39:06 +00:00