6196 Commits

Author	SHA1	Message	Date
James Buncle	fd0244dabf	Ensure roundcube doesn't render contact names as blank (when the name is whitespace)	2016-01-07 16:21:22 +00:00
Aleksander Machniak	4e1aa60c16	Make possible to disable authentication via rcube_smtp::connect() arguments (#1490621)	2016-01-07 09:48:18 +01:00
Aleksander Machniak	40d7342dd9	Fix XSS issue in SVG images handling (#1490625)	2016-01-06 14:10:05 +01:00
Aleksander Machniak	39137fe292	CS fixes	2016-01-05 09:04:59 +01:00
Aleksander Machniak	d72e5afb47	Fix PHP7 warning "session_start(): Session callback expects true/false return value" (#1490624)	2015-12-28 17:07:53 +01:00
Aleksander Machniak	d08dc5bfc5	Fix so drag-n-drop of text (e.g. recipient addresses) on compose page actually works (#1490619)	2015-12-22 13:09:54 +01:00
Aleksander Machniak	10e5192a2b	Fix path traversal vulnerability in setting a skin (#1490620)	2015-12-22 12:40:36 +01:00
Aleksander Machniak	6521c20768	Add INBOX to the list of folders only if no filter and no prefix was specified	2015-12-22 12:01:47 +01:00
Aleksander Machniak	3b36bcfb68	Cleanup	2015-12-18 11:46:25 +01:00
Aleksander Machniak	0d9fa7f3dc	Remove redundant code	2015-12-18 11:45:20 +01:00
Aleksander Machniak	cd219a45dd	Fix regression where some message attachments could be missing on edit/forward (#1490608)	2015-12-18 11:42:05 +01:00
Aleksander Machniak	c3be175ce7	Fix PDF support detection in Firefox > 19 (#1490610)	2015-12-17 15:27:17 +01:00
Aleksander Machniak	be346095a0	Fix handling of message/rfc822 attachments on replies and forwards (#1490607)	2015-12-17 09:12:06 +01:00
Aleksander Machniak	bb6002f1a8	Fix also charset encoding of message/rfc822 part bodies (#1490606)	2015-12-14 12:17:03 +01:00
Aleksander Machniak	3296965f41	Force arg_separator in http_build_query()	2015-12-14 11:23:57 +01:00
Aleksander Machniak	87cb24d873	Don't add redundant URL arguments to logged error messages	2015-12-14 11:17:17 +01:00
Aleksander Machniak	f51145572a	Merge branch 'master' of github.com:roundcube/roundcubemail	2015-12-14 10:32:26 +01:00
Aleksander Machniak	6463b662ca	Fix regression in displaying contents of message/rfc822 parts (#1490606)	2015-12-14 10:11:46 +01:00
Aleksander Machniak	97aa984b29	Optionally throw 404 error when contact photo wasn't found	2015-12-03 16:07:28 +01:00
Aleksander Machniak	69a1e4f7b1	rcube_parse_host() -> rcube_utils::parse_host()	2015-11-25 08:52:59 +01:00
Aleksander Machniak	cbe701ac4a	Fix rcube_utils::words_match() to work with mixed/invalid/binary content (T844)	2015-11-18 13:27:00 +01:00
Aleksander Machniak	7476410a04	Add missing deprecation warning	2015-11-17 09:36:43 +01:00
Thomas Bruederli	458a6b26e8	Load bc.inc in script startup	2015-11-16 22:47:28 +01:00
Thomas Bruederli	32695c333c	Restore bc.inc which now logs a warning when calling deprecated functions	2015-11-16 22:43:15 +01:00
Thomas Bruederli	310d4939ba	Tweak recently added encryption functions to not violate ECMASCRIPT3 syntax	2015-11-16 22:06:09 +01:00
Aleksander Machniak	8271597836	Use ternary operator where applicable	2015-11-16 09:11:47 +01:00
Thomas Bruederli	648963afda	Added Talossan language to index	2015-11-15 21:23:12 +01:00
Thomas Bruederli	e257b830a1	Synchronize localizations from Transifex	2015-11-15 21:19:44 +01:00
Aleksander Machniak	7e3298753a	Use ternary operator where aplicable	2015-11-14 10:08:07 +01:00
Aleksander Machniak	a15d877ba8	Added brute-force attack prevention via login rate limit (#1490566)	2015-11-11 18:53:43 +01:00
Aleksander Machniak	7caa9f5f50	Fix error on dragging when search in treelist is active	2015-11-05 15:40:10 +01:00
Aleksander Machniak	454b0b1ca9	Remove deprecated rcmail and rcube_imap methods	2015-11-05 09:17:28 +01:00
Aleksander Machniak	9234903287	Fix HTML sanitizer to skip <!-- node type X --> in output (#1490583)	2015-11-05 08:46:43 +01:00
Aleksander Machniak	3b0318ca3e	Fix race-condition in setting current page between list and getunread requests	2015-10-31 09:26:33 +01:00
Aleksander Machniak	bcd3799954	Fix redundant blank lines when using HTML and top posting (#1490576)	2015-10-28 09:39:26 +01:00
Aleksander Machniak	2aa9ee56fd	Fix so disabling emoticons plugin really removes emoticons button from HTML editor	2015-10-27 17:18:23 +01:00
Aleksander Machniak	eb721e35b2	Update to TinyMCE 4.2	2015-10-27 16:59:58 +01:00
Aleksander Machniak	bc3518577d	Fix some more Q -> rcube::Q	2015-10-26 17:20:19 +01:00
dsoares	234fd19505	Replace deprecated call to Q within array_map()	2015-10-26 16:13:14 +00:00
Aleksander Machniak	74ce01efc7	Q() -> rcube::Q()	2015-10-23 08:02:57 +02:00
Aleksander Machniak	eca19d65b5	Optimized some regular expressions	2015-10-22 09:45:47 +02:00
Aleksander Machniak	8f8beafd56	Use .get_label() consistently (instead of .gettext())	2015-10-20 10:08:50 +02:00
Aleksander Machniak	5d84dd6de5	Deduplicate code of http_post() and http_request(), add http_get() alias	2015-10-20 09:14:38 +02:00
Aleksander Machniak	2ff3385788	Fix warning when enchant_broker_list_dicts() does not return an array	2015-10-18 09:45:33 +02:00
Aleksander Machniak	a5c03db798	Security: Added options to validate username/password on logon (#1490500)	2015-10-18 09:37:46 +02:00
Aleksander Machniak	c1bbf0d0b6	After failed login wait a second to slow down brute-force attacks (#1490549)	2015-10-17 13:37:11 +02:00
Aleksander Machniak	fddfd8e6d7	Remove backward compatibility "layer" of bc.php (#1490534)	2015-10-16 19:51:28 +02:00
Aleksander Machniak	91dc7fabbc	Small improvements in HTML to text conversion. ... Better handling of <body> and trailing spaces, and </p><div> or <br><div>.	2015-10-15 12:23:23 +02:00
Aleksander Machniak	92bcb940d4	Fix bug where HTML messages with invalid/excessive css styles couldn't be displayed (#1490539) ... Technically speaking we remove the whole CSS content when it has more than 5k lines.	2015-10-15 09:09:31 +02:00
Aleksander Machniak	fe8ff85d7e	Move skin-specific code for compose encryption button to the skin	2015-10-15 08:58:06 +02:00