aboutsummaryrefslogtreecommitdiffstats
path: root/include/security.php
Commit message (Collapse)AuthorAgeFilesLines
* Existing photos could not be used as profile photos anymore - should be ↵Tobias Hößl2012-03-191-8/+12
| | | | fixed now. And some extra logging in the CSRF-Protection to make debugging easier
* CSRF-Protection in the group-related form (creating, renaming and dropping a ↵Tobias Hößl2012-03-181-0/+6
| | | | group, adding/removing members from it)
* Some security against XSRF-attacksTobias Hößl2012-03-121-0/+46
|
* bug in check for private email comment to public conversation prevents ↵friendica2012-03-091-0/+1
| | | | authenticated visitor from seeing comments that should be allowed
* revupfriendica2012-03-071-1/+1
|
* fix photos after permissions_sql changefriendica2012-03-061-4/+76
|
* [privacy] rework latest fixfriendica2012-03-061-1/+3
|
* can_write_wall documentationfriendica2012-03-051-1/+6
|
* logging of manage identitiesfriendica2012-01-271-2/+7
|
* for people whose DB's are not updatingfriendica2012-01-261-1/+1
|
* backend for delegating forumsfriendica2012-01-261-3/+20
|
* add remove_user hook (it looks like dreamhost changed all my file ↵friendica2012-01-181-0/+0
| | | | permissions, this will make a nasty commit)
* modularise successful authenticationfriendica2012-01-121-0/+71
|
* dfrn friendship issueFriendika2011-08-181-1/+1
|
* cleanupFriendika2011-08-071-2/+2
|
* consolidate perrmisions sql, minor duepuntozero validation fixesFriendika2011-06-301-0/+71
|
* user pref -> block remote wall postingFriendika2011-03-201-1/+1
|
* cache result of (expensive) security check for visitor rightsFriendika2010-12-021-12/+28
| | | | begin tightening x-profile security
* refactor outgoing comment ability for off network contactsFriendika2010-11-081-12/+14
|
* participate in public conversationsFriendika2010-11-081-2/+3
|
* eradicate redundant get_uid functionMike Macgirvin2010-10-181-1/+1
|
* wrong type comparison (string, int) which was the cause of the last problem.Mike Macgirvin2010-10-171-1/+1
|
* funny behaviour with post permissions after recent changesMike Macgirvin2010-10-171-1/+5
|
* dash, not underscoreMike Macgirvin2010-10-171-1/+1
|
* celebrity/group/community pages about 75% implementedMike Macgirvin2010-10-171-7/+10
|
* relationship direction was too confusing to work with. instead of ↵Mike Macgirvin2010-09-211-2/+2
| | | | "in,out,both" it's now declared by role e.g. "vip,fan,bud".
* mongo checkin, global directory, redir rework, location basicsMike Macgirvin2010-08-191-2/+5
|
* more bugsMike Macgirvin2010-07-191-1/+1
|
* Initial checkinMike Macgirvin2010-07-011-0/+17