Mirrors/roundcubemail
2
0
Fork 0
mirror of https://github.com/roundcube/roundcubemail.git synced 2026-03-04 15:24:02 +01:00
Code Issues Packages Projects Releases Wiki Activity
8,219 Commits 72 Branches 205 Tags
496972bf95e2ddbf01cb5e50a6a594615744d942
Commit Graph

53 Commits

Author SHA1 Message Date
Aleksander Machniak
681ba6fc3c Improve system security by using optional special URL with security token 
Allows to define separate server/path for image/js/css files
Fix bugs where CSRF attacks were still possible on some requests
 2014-12-16 13:28:48 +01:00
Thomas Bruederli
2e713d00f5 Set comm_path env variable after reset 2014-09-26 19:23:38 +02:00
Aleksander Machniak
34a0902089 Use consistent column/table quoting in sql queries 2014-09-12 14:37:51 +02:00
Aleksander Machniak
731d190fec Merge branch 'tinymce4' 
Conflicts:
	program/js/app.js
	program/js/editor.js
	program/js/tiny_mce/tiny_mce.js
	program/steps/utils/spell_html.inc
 2014-05-28 15:52:30 +02:00
Aleksander Machniak
2f1a81fa40 Bring back "Add To Dictionary" feature 2014-05-28 13:56:25 +02:00
Aleksander Machniak
efc470f0ac Merge branch 'dev-text2html' 
Conflicts:
	program/js/app.js

Fix handling magic_quotes in rcube_text2html and rcube_html2text - move
stripslashes from these classes to action files
 2014-05-17 09:27:17 +02:00
Aleksander Machniak
eda92ed4c0 Improved display of plain text messages and text to HTML conversion (#1488937) 
Now instead of <pre> we use <div class="pre"> styled with monospace
font. We replace whitespace characters with non-breaking spaces where
needed. I.e. plain text is always unwrappable, until it uses format=flowed,
in such a case only flowed paragraphs are wrappable.

Also conversion of text to HTML in compose editor was modified in the same way.
 2014-05-11 11:03:45 +02:00
Aleksander Machniak
60a67f52ad Don't use $HTTP_RAW_POST_DATA deprecated in PHP 5.6 2014-05-08 09:44:03 +02:00
Aleksander Machniak
f41912e4cb Allow <> characters in spellchecking text 2014-05-06 08:38:19 +02:00
Aleksander Machniak
89d6ce6846 Update to TinyMCE 4.x 2014-05-01 11:48:29 +02:00
Aleksander Machniak
a54cff4c56 Fix error when spell-checking an empty text (#1489831) 2014-04-25 09:55:00 +02:00
Aleksander Machniak
fbe5bc9ba2 CS fixes 2014-03-22 13:25:08 +01:00
Steffen185
6446d0ac97 modcss.inc: Fixed CS 2014-02-11 17:40:09 +01:00
Steffen185
add515bc74 Make modcss.inc work with allow_url_fopen = Off 
Alternatively use the PHP cURL extension
 2014-02-11 14:40:33 +01:00
Aleksander Machniak
c97625e02a CS fixes 2013-12-25 12:11:22 +01:00
Aleksander Machniak
6b2b2eca5f Remove deprecated functions (these listed in bc.php file) usage 2013-12-22 14:12:15 +01:00
Thomas Bruederli
e46d060a4a Fix errors in error page :-) 2013-11-10 13:29:48 +01:00
Thomas Bruederli
c344b64f13 Get supported spell-check languages from the configured backend; replace suspended google spell service with our new service at spell.roundcube.net 2013-10-18 12:50:25 +02:00
Aleksander Machniak
70c7df8faa Fix vulnerability in handling _session argument of utils/save-prefs (#1489382) 2013-10-17 10:17:32 +02:00
Thomas Bruederli
c58cb8aa95 Strip spell checker error message for logging; remove unused sprintf() 2013-08-25 13:20:46 +02:00
Aleksander Machniak
cfe2fc8b30 Log spellchecker error also in html mode 2013-05-03 12:33:02 +02:00
Thomas Bruederli
b15cc7d6f4 Check Google spell check service response for errors and report them accordingly 2013-05-03 12:09:57 +02:00
Aleksander Machniak
648fcf5709 Whitelist configuration options (user preferences) that can be changed using save-pref command 2013-03-27 16:32:51 +01:00
Aleksander Machniak
66afd70b75 Framework'ize html2text class 2012-12-26 12:14:34 +01:00
Thomas Bruederli
c72a96144d Improve line wrapping behavior where message charset is changed by plugins (including html2plaintext conversion) 2012-11-19 11:02:13 +01:00
Thomas Bruederli
95d2892686 Fix HTTP User-Agent XSS vulnerability (#1488737) 2012-10-04 16:59:37 +02:00
Aleksander Machniak
cd482ebce6 Fix SQL errors handling 2012-08-08 09:53:22 +02:00
Aleksander Machniak
2b992c5683 Remove unused variable 2012-08-08 08:56:48 +02:00
Aleksander Machniak
2b21b97ef0 Use file_get_contents() to make code simpler and to fix possible infinite loop 2012-07-10 10:07:21 +02:00
Aleksander Machniak
b97d0e11b5 Fix empty user agent string on error page for "incompatible browser" error 2012-06-28 19:13:49 +02:00
Aleksander Machniak
041c93ce0b Removed $Id$ 2012-05-22 12:31:37 +02:00
alecpl
0c259682f6 - Merge devel-framework branch, resolved conflicts 2012-04-13 08:52:02 +00:00
thomascube
1e09cd0811 Slighlty increase minimum browser requirements 2012-02-25 14:48:30 +00:00
thomascube
7fe3811c65 Changed license to GNU GPLv3+ with exceptions for skins and plugins 2012-01-18 11:10:46 +00:00
alecpl
6807865d76 - Update killcache with new cache tables 2011-12-08 19:21:25 +00:00
alecpl
66df084203 - Merge devel-spellcheck branch: 
- Added spellchecker exceptions dictionary (shared or per-user)
  - Added possibility to ignore words containing caps, numbers, symbols (spellcheck_ignore_* options)
 2011-09-06 13:39:45 +00:00
alecpl
b4edf78e4b - Provided rcube_spellchecker class, simplified code in utils task (less spell* files) 2011-05-30 15:08:26 +00:00
alecpl
d7b35c22af - Fix usage of non-standard HTTP error codes (#1487797) 2011-04-22 17:48:58 +00:00
alecpl
8b2c23d603 - Use \n as a word separator to workaround some strange Google spellchecker issue 2011-03-17 19:50:13 +00:00
thomascube
a77cf2292b Add optional referer check to prevent CSRF in GET requests 2011-02-08 08:13:06 +00:00
thomascube
3e0e9148ef Prevent from relaying arbitrary requests through modcss.inc (security issue) 2011-02-03 21:12:35 +00:00
thomascube
f5e7b35307 Bumbed version; Roundcube development is not Switzerland only 2011-01-12 18:25:02 +00:00
alecpl
7472893512 - Fix plaintext versions of HTML messages don't contain placeholders for emotions (#1485206) 2010-12-06 11:13:55 +00:00
alecpl
11bcac5802 - Fix HTML to plain text conversion doesn't handle citation blocks (#1486921) 2010-09-29 13:32:41 +00:00
alecpl
e019f2d0f2 - s/RoundCube/Roundcube/ 2010-09-25 13:03:53 +00:00
alecpl
ffc040bf9e - update ID keyword 2010-09-17 12:25:46 +00:00
alecpl
614c642a4b - Fix list_cols is not updated after column dragging (#1486999) 
- Improved save-pref action and moved to separate file in utils task directory
- Improved http_post/http_request to support first argument in form 'task/action'
 2010-09-17 09:14:13 +00:00
thomascube
52c0f7626c Strip protocol from hostname in HTTP headers (#1486868) 2010-07-25 20:09:36 +00:00
alecpl
9ed374bbe1 - fix for empty suggestions result 2010-06-30 10:14:41 +00:00
alecpl
f4f6291ec1 - Use built-in spellchecker instead of a PHP files of spellchecker plugin in TinyMCE 2010-06-24 13:27:43 +00:00