aboutsummaryrefslogtreecommitdiffstats
path: root/include/security.php
Commit message (Collapse)AuthorAgeFilesLines
* fixing permissions_sql - may need more tweaksfriendica2012-12-161-85/+46
|
* start to whip the permissions into shape, also got rid of the mce drop ↵friendica2012-12-091-66/+0
| | | | shadow until we can figure out how to do it without the ugly black bars. I tend to prefer "outy" shadows over "inny" shadows anyway, but maybe that's just me.
* a bit of e_all cleanupfriendica2012-12-081-1/+1
|
* start implementing zot-idfriendica2012-11-081-0/+3
|
* "profile url" e.g. the wall/stream is now "channel url". "Profile URL" goes ↵friendica2012-10-291-1/+1
| | | | to the profile details.
* Now have a solid permissions model. Create a few functions to enumerate them ↵friendica2012-10-281-2/+4
| | | | and then we're off to the races.
* upstream fixesfriendica2012-10-211-0/+21
|
* more work on profile changes - the notify activity is still stuffed as we ↵friendica2012-10-191-1/+1
| | | | finalise the json structure for activitystream meta-data
* provide auto admin registration as before, but allow the current admin to ↵friendica2012-10-041-2/+2
| | | | create other admins
* Can't see any posts currently - after the big shakeup, but we can now post ↵friendica2012-10-031-26/+14
| | | | top level activities and store them.
* use hash for channel idfriendica2012-10-011-0/+21
|
* here's where the heavy lifting begins - everything is likely to be broken ↵friendica2012-10-011-1/+11
| | | | for quite some time as we add location and db independence to items and conversations and work through the rest of the permissions and how to federate the buggers.
* moving a lot of structure around. 'entity' is now 'channel'friendica2012-09-251-11/+11
|
* updatesfriendica2012-09-091-1/+15
|
* bring back "this is you" comment photofriendica2012-09-041-2/+11
|
* trim a bit of fatfriendica2012-08-291-5/+3
|
* have to do something about that return_url - but let's just plunge forward ↵friendica2012-08-281-2/+2
| | | | without it.
* solve endless redirectfriendica2012-08-271-3/+5
|
* Now logging in with Red zaccount/zentity instead of Friendica user. Yay. ↵friendica2012-08-271-70/+122
| | | | Most existing Friendica functionality is now stuffed since the Red structures are quite different.
* Merge branch 'master' of git://github.com/friendica/friendicaVasudev Kamath2012-06-041-1/+1
|\
| * rename get_language() to get_browser_language()friendica2012-05-131-1/+1
| |
* | Few more files with unnecessary executable permissionsVasudev Kamath2012-04-211-0/+0
|/
* Some Bugfixes, and variable checksTobias Hößl2012-04-171-0/+1
|
* string fix: typo. slow down scroll to top in dispysSimon L'nu2012-04-141-2/+2
| | | | Signed-off-by: Simon L'nu <simon.lnu@gmail.com>
* Merge branch 'master' of https://github.com/friendica/friendicaAlexander Kampmann2012-04-051-0/+1
|\ | | | | | | | | | | Conflicts: include/config.php update.php
| * use zrl to get home againfriendica2012-03-291-0/+1
|/
* Existing photos could not be used as profile photos anymore - should be ↵Tobias Hößl2012-03-191-8/+12
| | | | fixed now. And some extra logging in the CSRF-Protection to make debugging easier
* CSRF-Protection in the group-related form (creating, renaming and dropping a ↵Tobias Hößl2012-03-181-0/+6
| | | | group, adding/removing members from it)
* Some security against XSRF-attacksTobias Hößl2012-03-121-0/+46
|
* bug in check for private email comment to public conversation prevents ↵friendica2012-03-091-0/+1
| | | | authenticated visitor from seeing comments that should be allowed
* revupfriendica2012-03-071-1/+1
|
* fix photos after permissions_sql changefriendica2012-03-061-4/+76
|
* [privacy] rework latest fixfriendica2012-03-061-1/+3
|
* can_write_wall documentationfriendica2012-03-051-1/+6
|
* logging of manage identitiesfriendica2012-01-271-2/+7
|
* for people whose DB's are not updatingfriendica2012-01-261-1/+1
|
* backend for delegating forumsfriendica2012-01-261-3/+20
|
* add remove_user hook (it looks like dreamhost changed all my file ↵friendica2012-01-181-0/+0
| | | | permissions, this will make a nasty commit)
* modularise successful authenticationfriendica2012-01-121-0/+71
|
* dfrn friendship issueFriendika2011-08-181-1/+1
|
* cleanupFriendika2011-08-071-2/+2
|
* consolidate perrmisions sql, minor duepuntozero validation fixesFriendika2011-06-301-0/+71
|
* user pref -> block remote wall postingFriendika2011-03-201-1/+1
|
* cache result of (expensive) security check for visitor rightsFriendika2010-12-021-12/+28
| | | | begin tightening x-profile security
* refactor outgoing comment ability for off network contactsFriendika2010-11-081-12/+14
|
* participate in public conversationsFriendika2010-11-081-2/+3
|
* eradicate redundant get_uid functionMike Macgirvin2010-10-181-1/+1
|
* wrong type comparison (string, int) which was the cause of the last problem.Mike Macgirvin2010-10-171-1/+1
|
* funny behaviour with post permissions after recent changesMike Macgirvin2010-10-171-1/+5
|
* dash, not underscoreMike Macgirvin2010-10-171-1/+1
|