Mirrors/roundcubemail
2
0
Fork 0
mirror of https://github.com/roundcube/roundcubemail.git synced 2026-03-08 00:56:49 +01:00
Code Issues Packages Projects Releases Wiki Activity
9,057 Commits 72 Branches 205 Tags
2aea3a4e85b751bdf329eaaa69a8bee09d70cd49
Commit Graph

113 Commits

Author SHA1 Message Date
Aleksander Machniak
eda23fe6c8 Remove hacks for old Internet Explorer versions 2016-08-04 08:57:48 +02:00
Aleksander Machniak
8a13615e9e Add possibility to preview and download attachments in mail compose (#5053) 2016-07-28 19:08:19 +02:00
Aleksander Machniak
7a7a6795f0 Support WEBP images in mail messages (#5362) 2016-07-21 16:42:45 +02:00
Aleksander Machniak
d125f864ea Message/rfc822 previewer compatibility with Enigma 2016-03-25 13:41:11 +01:00
Aleksander Machniak
323fa20bc8 Message/rfc822 attachment preview (#5054) 2016-03-23 16:54:31 +01:00
Thomas Bruederli
4a408843b0 Protect download urls against CSRF using unique request tokens (#1490642) 
Send X-Frame-Options headers with every HTTP response
 2016-03-06 14:31:07 +01:00
Aleksander Machniak
a1fdb205f8 Extend rcube_washtml with SVG support 2016-01-09 18:26:09 +01:00
Aleksander Machniak
40d7342dd9 Fix XSS issue in SVG images handling (#1490625) 2016-01-06 14:10:05 +01:00
Aleksander Machniak
8271597836 Use ternary operator where applicable 2015-11-16 09:11:47 +01:00
Aleksander Machniak
77be69fa25 Fix issue where Content-Length of some attachments could be set to wrong value causing browser errors (#1490482) 2015-09-10 12:08:49 +02:00
Aleksander Machniak
63e7937d02 Change so rcube_message class does not depend on $_GET parameters 2015-09-10 08:53:11 +02:00
Aleksander Machniak
a958748947 CS fixes 2015-06-07 15:26:33 +02:00
Aleksander Machniak
03aa84f784 Fix bug where some files could have "executable" extension when stored in temp folder (#1490377) 2015-05-17 14:52:24 +02:00
Thomas Bruederli
b1d13e8bd5 Fix redirct URL for attachments loaded in an iframe (#1490191) 2015-03-12 16:27:14 +01:00
Aleksander Machniak
7ff227eb3e get_part_content() -> get_part_body() 2015-03-08 10:48:30 +01:00
Aleksander Machniak
45256e8293 Really fix unwanted warning on BMP attachments (#1490269) 2015-02-20 10:41:39 +01:00
Aleksander Machniak
4a2a62de30 Fix needless security warning on BMP attachments display (#1490282) 2015-02-19 13:43:43 +01:00
Aleksander Machniak
556d288754 Fix false warning when opening attached text/plain files (#1490241) 2015-01-25 17:39:59 +01:00
Aleksander Machniak
c6efcf5e6d Fix blocked.gif image usage with assets_dir set 2015-01-12 05:44:28 -05:00
Aleksander Machniak
c839403c19 More get_folder() -> $MESSAGE->folder 2014-10-30 19:57:30 +01:00
Aleksander Machniak
48ba4414b3 Fix download of attachments that are part of TNEF message (#1490091) 
Rcube_message_part::body content should never be modified by code out of the rcube_message.
Added convenient rcube_message::get_part_body() method, making rcube_message::get_part_content() deprecated.
 2014-10-22 14:29:44 +02:00
Thomas Bruederli
6459944860 Don't read attachment contents from cache when downloading. Cache might have line endings converted 2014-08-14 15:22:05 +02:00
Aleksander Machniak
8968f9543f Support image operations with Imagick extension (#1489734) 2014-05-06 16:18:36 +02:00
Aleksander Machniak
5515dbb970 Remove IE<7 specific code 2014-04-18 11:04:03 +02:00
Aleksander Machniak
c97625e02a CS fixes 2013-12-25 12:11:22 +01:00
Aleksander Machniak
6b2b2eca5f Remove deprecated functions (these listed in bc.php file) usage 2013-12-22 14:12:15 +01:00
Aleksander Machniak
8c5f405587 Set real content-type for file downloads (#1489439) 2013-11-23 13:14:11 +01:00
Aleksander Machniak
d1a17029a3 Better handling of fopen() errors 2013-11-07 14:46:25 +01:00
Aleksander Machniak
ae853367ed Fix downloading binary files with (wrong) text/* content-type (#1489267) 2013-07-30 19:16:52 +02:00
Aleksander Machniak
d59a8d29d6 Validate all text attachments not only text/plain. This fixes invalid 
warning message for a case when pdf attachment is defined as text/html.
See #1489267.
 2013-07-29 11:51:03 +02:00
Aleksander Machniak
ad052b81d8 Fix so filename label is "Name" not "Display name" 2013-06-28 08:43:31 +02:00
Aleksander Machniak
eaf3832e40 Add some displayed attachment info into javascript environment 2013-06-27 09:48:11 +02:00
Aleksander Machniak
0494288999 Improved/unified attachment preview page 
Implemented attachment print button
 2013-06-24 19:05:27 +02:00
Aleksander Machniak
3375a681eb Fix problem where security warning was displayed for valid images with image/jpg type (#1489097) 2013-05-14 09:41:30 +02:00
Aleksander Machniak
d7fcd8ce42 Fix possible collision in generated thumbnail cache key (#1489069) 2013-04-26 14:25:17 +02:00
Thomas Bruederli
a021d6f187 Skip filename suffix check for embedded images; return blocked.gif instead of HTML warning when embedded (#1489029) 2013-04-10 23:12:23 +02:00
Aleksander Machniak
139635f189 Fix thumbnail size when GD extension is used for image resize (#1488985) 2013-03-05 10:25:12 +01:00
Aleksander Machniak
7c851e669e Don't try to print file extension in a warning message if it's not available 2013-02-21 09:38:21 +01:00
Thomas Bruederli
921115ed56 Ignore file extension difference for text/plain attachments (#1488891) 2013-02-07 18:17:25 +01:00
Thomas Bruederli
1730cf8d7b Load a default stylesheet (embed.css) from skin in plain html pages (e.g. attachment warnings and html messages) 2013-01-24 15:32:24 +01:00
Thomas Bruederli
1ef4033b8d Also block remote images in HTML part view (#1488827) 2013-01-19 17:02:48 +01:00
Thomas Bruederli
d9f180adf9 Minor IE7/8 fixes 2012-12-29 16:54:41 +01:00
Aleksander Machniak
be72fb3597 Unified attachments filenames handling for message parts without a filename 2012-12-28 12:40:57 +01:00
Thomas Bruederli
5f0bd1fcb4 Make html button-links work in IE 2012-12-22 16:40:20 +01:00
Thomas Bruederli
31521613e4 Append filename extension if missing 2012-12-10 22:32:46 +01:00
Aleksander Machniak
c7ff6ec2cb Add workaround for IE<=8 bug where Content-Disposition:inline was ignored (#1488844) 2012-12-05 09:46:03 +01:00
Aleksander Machniak
8afbc8aeea Fix attachment Content-Length for in-memory files (#1488844) 2012-11-30 11:13:43 +01:00
Thomas Bruederli
c14b337450 Fix XSS vulnerability using Flash files (#1488828) by comparing mimetypes and filename extensions 2012-11-27 16:25:42 +01:00
Thomas Bruederli
03149131f7 New feature: display attached images as thumbnails below message body 2012-11-10 21:08:14 +01:00
Aleksander Machniak
4fd5b62194 Add Content-Length for attachments where possible (#1485478) 2012-06-08 11:49:12 +02:00