Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | remove checkjs and nojs | zotlabs | 2018-11-15 | 1 | -50/+0 |
| | |||||
* | encrypted header issue | zotlabs | 2018-11-14 | 1 | -1/+1 |
| | |||||
* | extra logging | zotlabs | 2018-11-14 | 1 | -0/+4 |
| | |||||
* | verify some edge case http signatures | zotlabs | 2018-10-11 | 1 | -4/+2 |
| | |||||
* | SECURITY: signature issue | zotlabs | 2018-10-09 | 1 | -0/+15 |
| | |||||
* | Page meta properties | M. Dent | 2018-09-22 | 1 | -2/+13 |
| | |||||
* | prepare submodule to interact with route | Mario Vavti | 2018-09-17 | 1 | -0/+17 |
| | |||||
* | checkjs fix ($page not bin-hex in all cases) | zotlabs | 2018-07-19 | 1 | -2/+2 |
| | |||||
* | mangled urls on redirects | zotlabs | 2018-07-18 | 1 | -1/+1 |
| | |||||
* | functions to support module and widget registration by plugins. These have ↵ | zotlabs | 2018-07-12 | 1 | -7/+25 |
| | | | | identical construction to core modules and widgets and are registered just like hooks during addon load. Also additional Apps functions addon_app_installed() and system_app_installed() which will eventually replace feature_installed() for features which are converted to apps. The convention being used is that the module associated with the app calls the appropriate *_app_installed() function and if not present emits descriptive text about the app and exits. This allows one to click on an 'available' app and learn about it. Once installed, the app module behaves normally and may offer functionality or what once were addon settings on the settings/featured page. Refer to zap-addons in the zap repository for examples of how this is being used to eliminate the 'additional features' and 'addon settings' pages. | ||||
* | as_fetch depends on the pubcrawl plugin, but is referenced in core. Ensure ↵ | zotlabs | 2018-04-22 | 1 | -1/+3 |
| | | | | that it doesn't chuck a wobbly if the function isn't found. This is undergoing significant revision for zot6 so this action is considered a short-term workaround until that work work stabilises. | ||||
* | draft-cavage issues | zotlabs | 2018-04-15 | 1 | -3/+9 |
| | |||||
* | accept system_language through either get or post | zotlabs | 2018-04-12 | 1 | -3/+3 |
| | |||||
* | :white_check_mark: Unit Test for HTTPSig. | Klaus Weidenbach | 2018-02-28 | 1 | -30/+87 |
| | |||||
* | zot6 testing | zotlabs | 2018-02-08 | 1 | -6/+1 |
| | |||||
* | missing quote | zotlabs | 2018-02-08 | 1 | -1/+1 |
| | |||||
* | logging | zotlabs | 2018-02-08 | 1 | -1/+3 |
| | |||||
* | z6 testing | zotlabs | 2018-02-08 | 1 | -1/+1 |
| | |||||
* | debug the crypto function | zotlabs | 2018-02-07 | 1 | -0/+3 |
| | |||||
* | Merge branch 'master' into z6 | zotlabs | 2018-02-05 | 2 | -34/+47 |
|\ | |||||
| * | simplify webserver logic flow, remove obsolete $a from router | zotlabs | 2018-01-18 | 2 | -34/+47 |
| | | |||||
* | | z6 deliver | zotlabs | 2018-01-16 | 1 | -0/+15 |
|/ | |||||
* | cleanup of last fix | zotlabs | 2018-01-13 | 1 | -1/+1 |
| | |||||
* | unexpected openssl result | zotlabs | 2018-01-13 | 1 | -1/+1 |
| | |||||
* | Fix whitespace formatting | Matthew Dent | 2017-12-23 | 1 | -14/+14 |
| | |||||
* | fix dupe bug in content hooks | M.Dent | 2017-12-23 | 1 | -15/+15 |
| | |||||
* | fix typo in HTTPSig | Mario Vavti | 2017-12-04 | 1 | -1/+1 |
| | |||||
* | :bulb: Improving Doxygen documentation. | Klaus Weidenbach | 2017-11-03 | 1 | -15/+25 |
| | | | | | Fix some Doxygen parsing errors. Improve hooks documentation. | ||||
* | sort out the notification ids | zotlabs | 2017-10-12 | 1 | -1/+2 |
| | |||||
* | experimental new notifications - needs pconfig experimental_notif set to 1 ↵ | Mario Vavti | 2017-10-08 | 1 | -1/+1 |
| | | | | for your channel to work. | ||||
* | Merge pull request #862 from waitman/patch-4 | git-marijus | 2017-09-28 | 1 | -1/+5 |
|\ | | | | | prevent 'my_address' being set with bogus info | ||||
| * | prevent 'my_address' being set with bogus info | Waitman Gobble | 2017-09-18 | 1 | -1/+5 |
| | | | | | | After a user has authenticated, it is possible to set my_address in $_SESSION to 'anything' using zid= parameter in URL - if user is authenticated then zid is never set. This change kills the authenticated switch if a person sends a new zid through for processing, which will trigger remote authentication. | ||||
* | | move the Link header initialisation from Router (where it does not really ↵ | zotlabs | 2017-09-25 | 2 | -18/+28 |
| | | | | | | | | belong) to Webserver, where we do similar module specific initialisations prior to calling Router->Dispatch() | ||||
* | | typo | zotlabs | 2017-09-24 | 1 | -1/+1 |
| | | |||||
* | | For zot6, allow HTTP Signatures to be encrypted, as they may contain ↵ | zotlabs | 2017-09-24 | 1 | -6/+46 |
| | | | | | | | | sensitive (envelope, metadata) information. | ||||
* | | log the lack of http sig info | zotlabs | 2017-09-21 | 1 | -1/+3 |
| | | |||||
* | | provide a space between link header params | zotlabs | 2017-09-20 | 1 | -1/+1 |
| | | |||||
* | | add more signature logging | zotlabs | 2017-09-20 | 1 | -1/+7 |
| | | |||||
* | | add HTTP link header to channel page, making it pluggable | zotlabs | 2017-09-20 | 1 | -0/+19 |
|/ | |||||
* | more zot6 | zotlabs | 2017-09-13 | 1 | -1/+6 |
| | |||||
* | owa - first commit | zotlabs | 2017-09-07 | 2 | -0/+14 |
| | |||||
* | some more prep work for Zot VI - some of this will need to be undone or at ↵ | zotlabs | 2017-09-04 | 1 | -3/+10 |
| | | | | least re-arranged later but we need to bootstrap a test environment. | ||||
* | Merge branch 'dev' of https://github.com/redmatrix/hubzilla into xdev_merge | zotlabs | 2017-09-03 | 1 | -1/+1 |
|\ | |||||
| * | add combined index for item.uid and item.item_unseen. this speeds up ↵ | Mario Vavti | 2017-09-01 | 1 | -1/+1 |
| | | | | | | | | notifications by a magnitude. | ||||
* | | only validate headers that aren't "spoofable", which will be somewhat ↵ | zotlabs | 2017-09-03 | 1 | -3/+8 |
|/ | | | | implementation dependent. | ||||
* | some changes after testing server-to-server magic auth | zotlabs | 2017-08-31 | 1 | -2/+8 |
| | |||||
* | now letsencrypt is creating a .htaccess file with re-write rules which kills ↵ | zotlabs | 2017-08-31 | 1 | -0/+12 |
| | | | | most of our .well-known routes | ||||
* | some issues with mod_display on very first anonymous page visit (prior to ↵ | zotlabs | 2017-08-30 | 1 | -3/+3 |
| | | | | any browser cookies being set) | ||||
* | httpsig - return an array with all the different signing possibilities ↵ | zotlabs | 2017-08-20 | 1 | -8/+21 |
| | | | | enumerated | ||||
* | mv HTTPSig to core - so we can use it as an auth method | zotlabs | 2017-08-17 | 1 | -0/+220 |
| |