]>
git.mxchange.org Git - quix0rs-gnu-social.git/log
Zach Copley [Fri, 29 Aug 2008 05:40:38 +0000 (01:40 -0400)]
CSRF protection in remotesubscribe
darcs-hash:
20080829054038 -7b5ce-
d0503a8eb7f89a9d2de4aadd4550f4342b943b09 .gz
Zach Copley [Fri, 29 Aug 2008 05:33:37 +0000 (01:33 -0400)]
CSRF protection in emailsettings
darcs-hash:
20080829053337 -7b5ce-
6d94638c57d185e5d44e02ad458593a3f4de36d9 .gz
Evan Prodromou [Fri, 29 Aug 2008 05:40:17 +0000 (01:40 -0400)]
CSRF protection in user registration
darcs-hash:
20080829054017 -84dde-
c9268e5c815934dcbca2451dd6c9016f2ac4a03a .gz
Zach Copley [Fri, 29 Aug 2008 05:28:24 +0000 (01:28 -0400)]
CSRF protection in recoverpassword
darcs-hash:
20080829052824 -7b5ce-
39a8fd299b7a85793ad7a19fe00c93813ca882b6 .gz
Evan Prodromou [Fri, 29 Aug 2008 05:28:47 +0000 (01:28 -0400)]
session token in userauthorization form
darcs-hash:
20080829052847 -84dde-
a64918a75f8300ec8fb230202881691066147652 .gz
Evan Prodromou [Fri, 29 Aug 2008 05:27:32 +0000 (01:27 -0400)]
csrf protection in userauthorization
darcs-hash:
20080829052732 -84dde-
0ebb7e32236b480cc3aa2eb7a4bb2b41ff6177d6 .gz
Evan Prodromou [Fri, 29 Aug 2008 05:16:28 +0000 (01:16 -0400)]
better client error on CSRF problem with subscribe/unsubscribe
darcs-hash:
20080829051628 -84dde-
2a339a35c422afb9ec04f757771764ed43b2c28b .gz
Evan Prodromou [Fri, 29 Aug 2008 05:11:04 +0000 (01:11 -0400)]
CSRF protection for subscription/unsubscription
darcs-hash:
20080829051104 -84dde-
9bd23c28c2c8a720046060a33ff3e5f246c47116 .gz
Zach Copley [Fri, 29 Aug 2008 03:57:07 +0000 (23:57 -0400)]
CSRF protection in imsettings.php
darcs-hash:
20080829035707 -7b5ce-
69a9ff98390ff8b9671ede948d78fdb37371aac6 .gz
Zach Copley [Fri, 29 Aug 2008 03:51:18 +0000 (23:51 -0400)]
CSRF protection in smssettings.php
darcs-hash:
20080829035118 -7b5ce-
57613e88b29617ea422c7f7003e81ef885e3debb .gz
Evan Prodromou [Fri, 29 Aug 2008 04:39:09 +0000 (00:39 -0400)]
add csrf protection to profile settings
darcs-hash:
20080829043909 -84dde-
c70a633c93ab89560bc300817bda66eebf6176cf .gz
Evan Prodromou [Fri, 29 Aug 2008 04:29:08 +0000 (00:29 -0400)]
CSRF protection in openidsettings
darcs-hash:
20080829042908 -84dde-
1d1a22dfd3d89c5521aeb9069dc64c5f6dad3a27 .gz
Evan Prodromou [Fri, 29 Aug 2008 04:09:25 +0000 (00:09 -0400)]
swap around some stuff to show the form correctly on a CSRF error in openidlogin
darcs-hash:
20080829040925 -84dde-
7195734eeb3df6439c099c1139caf77e2c2ea3c1 .gz
Evan Prodromou [Fri, 29 Aug 2008 03:59:34 +0000 (23:59 -0400)]
Evan Prodromou [Fri, 29 Aug 2008 03:48:54 +0000 (23:48 -0400)]
Evan Prodromou [Fri, 29 Aug 2008 02:55:59 +0000 (22:55 -0400)]
Evan Prodromou [Fri, 29 Aug 2008 02:51:27 +0000 (22:51 -0400)]
Evan Prodromou [Fri, 29 Aug 2008 02:39:19 +0000 (22:39 -0400)]
Evan Prodromou [Fri, 29 Aug 2008 02:37:31 +0000 (22:37 -0400)]
Evan Prodromou [Fri, 29 Aug 2008 02:18:54 +0000 (22:18 -0400)]
Evan Prodromou [Fri, 29 Aug 2008 01:53:04 +0000 (21:53 -0400)]
Evan Prodromou [Fri, 29 Aug 2008 01:45:15 +0000 (21:45 -0400)]
add session token check to password change
darcs-hash:
20080829014515 -84dde-
bce51f66ba0b3b4347a55a70b2b266b72c242304 .gz
Evan Prodromou [Thu, 28 Aug 2008 00:53:23 +0000 (20:53 -0400)]
Evan Prodromou [Wed, 27 Aug 2008 14:23:36 +0000 (10:23 -0400)]
don't do too many broadcasts or confirms before checking the message queue
darcs-hash:
20080827142336 -84dde-
2bec2149d86900fd0291f8c00f85aa756842bbe1 .gz
Evan Prodromou [Wed, 27 Aug 2008 13:54:22 +0000 (09:54 -0400)]
add back in a session start handler
darcs-hash:
20080827135422 -84dde-
857d6e980e18803186d080a60eea60f1362bb348 .gz
Evan Prodromou [Wed, 27 Aug 2008 13:30:48 +0000 (09:30 -0400)]
restoring upstream XMLStream.php after pulling ciarang's patch
darcs-hash:
20080827133048 -84dde-
cb99ac89c65008a8832395684386518718247887 .gz
CiaranG [Tue, 26 Aug 2008 20:00:57 +0000 (16:00 -0400)]
XMPP daemon that doesn't eat messages - note change to XMPPHP as well (Ticket #551)
darcs-hash:
20080826200057 -f6e2c-
fb9a88251d034824218d20b3fefcde96ddaef827 .gz
Evan Prodromou [Wed, 27 Aug 2008 13:23:46 +0000 (09:23 -0400)]
don't show unknown (debug) errors
darcs-hash:
20080827132346 -84dde-
c5499ac960fbb28bced28ff9355846f7183fcb5c .gz
Evan Prodromou [Wed, 27 Aug 2008 13:16:03 +0000 (09:16 -0400)]
Evan Prodromou [Wed, 27 Aug 2008 12:44:30 +0000 (08:44 -0400)]
import upstream XMPPHP with @ciarang's fix
darcs-hash:
20080827124430 -84dde-
654751781702f5518153a01aa3dae4a8580b7f35 .gz
Evan Prodromou [Tue, 26 Aug 2008 21:11:08 +0000 (17:11 -0400)]
fix error storing uris of remote notices
darcs-hash:
20080826211108 -84dde-
b277bdb1476b9cec0c0d93fa8d565c4642ba16c8 .gz
Evan Prodromou [Tue, 26 Aug 2008 21:03:14 +0000 (17:03 -0400)]
use notice URI if it's not local and it's an HTTP URL
darcs-hash:
20080826210314 -84dde-
34d4eb71c7d74b65c0c4b486f345ed7d9301af15 .gz
Evan Prodromou [Tue, 26 Aug 2008 20:53:41 +0000 (16:53 -0400)]
only send local messages to public XMPP stream
darcs-hash:
20080826205341 -84dde-
04c1641f4b9c5aa5318b76512664ee9df170d779 .gz
Evan Prodromou [Tue, 26 Aug 2008 13:18:14 +0000 (09:18 -0400)]
optionally turn encryption on or off in the XMPP connection
For identi.ca, we had some problems with the XMPP daemon getting
"stuck" in I/O through the encrypted (by default) XMPP socket. Turning
off encryption helped. So, now it's an option.
darcs-hash:
20080826131814 -84dde-
2c4a809c6fb666dfb4b96d0d61205fe418f4e4b4 .gz
Evan Prodromou [Mon, 25 Aug 2008 18:52:45 +0000 (14:52 -0400)]
Evan Prodromou [Mon, 25 Aug 2008 18:41:04 +0000 (14:41 -0400)]
use better SQL date, fix security problem with OpenID logins
darcs-hash:
20080825184104 -84dde-
5735c1791002a12c3417603dc85da31ea868f263 .gz
Evan Prodromou [Mon, 25 Aug 2008 18:30:05 +0000 (14:30 -0400)]
change DataObject_Cast to use sql_now
darcs-hash:
20080825183005 -84dde-
c1d24a057d9545cc6d1f0dc21c5af4ea7316d8e9 .gz
Evan Prodromou [Mon, 25 Aug 2008 18:23:38 +0000 (14:23 -0400)]
use common_sql_now() instead of DB_DataObject_Cast
darcs-hash:
20080825182338 -84dde-
ec0edef9469b294b7e23945f1bc7d810da988ed7 .gz
Evan Prodromou [Mon, 25 Aug 2008 17:31:05 +0000 (13:31 -0400)]
use mb_strlen instead of strlen in xmpp daemon
darcs-hash:
20080825173105 -84dde-
ea607521c78694fe558514b423f1c6dc0e70241e .gz
Evan Prodromou [Sun, 24 Aug 2008 20:05:17 +0000 (16:05 -0400)]
notify user of remote subscriptions
darcs-hash:
20080824200517 -84dde-
9662d89dbcd948e3ef7b7f8d4e82d90b4891c684 .gz
Evan Prodromou [Sun, 24 Aug 2008 17:12:02 +0000 (13:12 -0400)]
big scarygram warning in config.php.sample about using DB_DataObject's debug mode
darcs-hash:
20080824171202 -84dde-
fd3ed2b9645f2c2ec5439824dbc6f6a765c0a622 .gz
Evan Prodromou [Sun, 24 Aug 2008 11:37:19 +0000 (07:37 -0400)]
Evan Prodromou [Sun, 24 Aug 2008 01:38:03 +0000 (21:38 -0400)]
be a little more liberal for sites that accidentally put whitespace before the xml decl
darcs-hash:
20080824013803 -84dde-
9c5d9ce9c588cfb9baddae64366e3417f0a5fee9 .gz
Evan Prodromou [Sun, 24 Aug 2008 01:17:06 +0000 (21:17 -0400)]
CiaranG [Sat, 23 Aug 2008 05:35:48 +0000 (01:35 -0400)]
Prevent jabber.php error by checking key exists
darcs-hash:
20080823053548 -f6e2c-
dfc8a0acd9fb8589ed37e54c7d0d3d38afff34f5 .gz
CiaranG [Sat, 23 Aug 2008 05:25:34 +0000 (01:25 -0400)]
Escape profile url in xmpp in case fancy urls off (Ticket #521)
darcs-hash:
20080823052534 -f6e2c-
aa452a8c2c6ee33399f4079d0bf2224847e1450a .gz
CiaranG [Fri, 22 Aug 2008 19:17:51 +0000 (15:17 -0400)]
Fixed attempt to read nonexistent match in JID regex
darcs-hash:
20080822191751 -f6e2c-
578869b8524e3238c461872981a5dd8c285937e3 .gz
CiaranG [Fri, 22 Aug 2008 19:10:32 +0000 (15:10 -0400)]
XMPP sub/unsub and help commands
darcs-hash:
20080822191032 -f6e2c-
a3a7efbbaad1ec7c48ef132a8ba34fc8b8651969 .gz
CiaranG [Fri, 22 Aug 2008 18:59:55 +0000 (14:59 -0400)]
Define xmpp daemon claim timeout time
darcs-hash:
20080822185955 -f6e2c-
569bc9d304e904fd26e3cc976e8246e3eb7f93bd .gz
CiaranG [Tue, 19 Aug 2008 07:13:21 +0000 (03:13 -0400)]
Fix bug in xmpp on/off (ticket #528)
darcs-hash:
20080819071321 -f6e2c-
a7ee326669eba917fff8dd37c85c13db46c93f19 .gz
CiaranG [Mon, 18 Aug 2008 21:30:31 +0000 (17:30 -0400)]
XMPP bounce message when too long (ticket #112)
darcs-hash:
20080818213031 -f6e2c-
760cbb6f91485bbb8b29156c06a16e9ad6cd0acf .gz
Evan Prodromou [Fri, 22 Aug 2008 21:21:11 +0000 (17:21 -0400)]
better error reporting in user authorization action
darcs-hash:
20080822212111 -84dde-
2770093fcfaa6fe03abb1143d3828f0622382b45 .gz
Evan Prodromou [Fri, 22 Aug 2008 21:06:54 +0000 (17:06 -0400)]
Evan Prodromou [Fri, 22 Aug 2008 21:04:15 +0000 (17:04 -0400)]
add note to config.php.sample about localonly
darcs-hash:
20080822210415 -84dde-
1a00e3090d52bbeeb5f40b0640cb561992ff0d1e .gz
Evan Prodromou [Fri, 22 Aug 2008 21:03:07 +0000 (17:03 -0400)]
local-only is optional on public timeline
darcs-hash:
20080822210307 -84dde-
c90f6e7953d11c5b12c7a084ac23e5578412932c .gz
Evan Prodromou [Fri, 22 Aug 2008 13:17:14 +0000 (09:17 -0400)]
include external libs in a subdir to make install easier
darcs-hash:
20080822131714 -84dde-
6978424ded2ed1041a65142a25560654ac717fcd .gz
Evan Prodromou [Thu, 21 Aug 2008 12:53:06 +0000 (08:53 -0400)]
zach [Tue, 19 Aug 2008 21:49:23 +0000 (17:49 -0400)]
Twitter-compatible API - RESTfulness checks as per Twitter
darcs-hash:
20080819214923 -462f3-
83ab492cb93c1ba643beb70853578cbd7ac35d61 .gz
zach [Tue, 19 Aug 2008 20:23:18 +0000 (16:23 -0400)]
Twitter-compatible API - /statuses/show - better err msg if notice doesn't exist
darcs-hash:
20080819202318 -462f3-
bc08a105c6b41b6a89a2358962440f68a9a79c7f .gz
zach [Tue, 19 Aug 2008 19:54:31 +0000 (15:54 -0400)]
Twitter-compatible API - Added /statuses/followers to methods that
require bareauth only if no nickname/id is supplied.
darcs-hash:
20080819195431 -462f3-
93d27cf980fd09aeb30ea741639c1650baecad60 .gz
zach [Tue, 19 Aug 2008 19:46:10 +0000 (15:46 -0400)]
Twitter-compatible API - /statuses/destroy method implemented
darcs-hash:
20080819194610 -462f3-
eb736e4cfc817b479e1e8e52db03b5f44cdb3d2a .gz
zach [Tue, 19 Aug 2008 00:39:31 +0000 (20:39 -0400)]
Twitter-compatible API - moved show() to the right file
darcs-hash:
20080819003931 -462f3-
4b5b838a2fc5f872391581a189d33abdd8eeb744 .gz
zach [Tue, 19 Aug 2008 00:29:03 +0000 (20:29 -0400)]
Twitter-compatible API - running all strings through gettext() now
darcs-hash:
20080819002903 -462f3-
94e62891db9b9de049a918034742e545f663e840 .gz
Evan Prodromou [Tue, 19 Aug 2008 22:12:14 +0000 (18:12 -0400)]
add database tables for foreign services
darcs-hash:
20080819221214 -84dde-
15683b1e146b9e29064aa8ae04bc7daebfaf2e92 .gz
Evan Prodromou [Tue, 19 Aug 2008 18:28:24 +0000 (14:28 -0400)]
add remote flag to broadcast of notices
darcs-hash:
20080819182824 -84dde-
84d93fae2c4b0d6acee646999bad8e8bb9752c7b .gz
Evan Prodromou [Tue, 19 Aug 2008 18:27:24 +0000 (14:27 -0400)]
Evan Prodromou [Mon, 18 Aug 2008 03:30:49 +0000 (23:30 -0400)]
set internal encoding in XMPP daemon
darcs-hash:
20080818033049 -84dde-
eb6098e0ae84d081418536ceb6964a65bcbf4953 .gz
Evan Prodromou [Sun, 17 Aug 2008 15:21:33 +0000 (11:21 -0400)]
Evan Prodromou [Sun, 17 Aug 2008 15:21:08 +0000 (11:21 -0400)]
restore fave table lost when doing utf8 upgrade
darcs-hash:
20080817152108 -84dde-
9ca19fbe374ad021771f175f587f19902b3f927b .gz
Evan Prodromou [Sun, 17 Aug 2008 15:17:28 +0000 (11:17 -0400)]
Evan Prodromou [Wed, 13 Aug 2008 14:26:37 +0000 (10:26 -0400)]
first step towards adding favorites to the system
darcs-hash:
20080813142637 -84dde-
9530d153eceb6bbedbb692755aa5c96d65d8e071 .gz
Evan Prodromou [Mon, 18 Aug 2008 02:55:49 +0000 (22:55 -0400)]
use mb_substr for xmpp daemon check
darcs-hash:
20080818025549 -84dde-
0277e3c0b58a6d223f892376cfc9f5aa9df9714b .gz
Evan Prodromou [Sun, 17 Aug 2008 19:27:10 +0000 (15:27 -0400)]
Evan Prodromou [Sun, 17 Aug 2008 16:33:24 +0000 (12:33 -0400)]
typo in forgotten password string
darcs-hash:
20080817163324 -84dde-
0b7f3449b7f6e96704518340351ada9ec0e56bbb .gz
Evan Prodromou [Sun, 17 Aug 2008 15:31:43 +0000 (11:31 -0400)]
remove hack to count bytes, not chars, in JS, since we now use chars
darcs-hash:
20080817153143 -84dde-
1ff56e4066c0905e8846876bc9de22eca999f826 .gz
Evan Prodromou [Sun, 17 Aug 2008 15:30:24 +0000 (11:30 -0400)]
use UTF-8 as the internal encoding
darcs-hash:
20080817153024 -84dde-
ca566d665fff08d52f1f9796e2731417585d4c6f .gz
Evan Prodromou [Sun, 17 Aug 2008 15:24:19 +0000 (11:24 -0400)]
Evan Prodromou [Sun, 17 Aug 2008 15:17:51 +0000 (11:17 -0400)]
accept 140-character UTF-8 strings to content
darcs-hash:
20080817151751 -84dde-
b3fc3ee57872f53a465fd9b45f4255e5e3be3450 .gz
Evan Prodromou [Wed, 13 Aug 2008 15:46:03 +0000 (11:46 -0400)]
move command-line scripts to their own dir
darcs-hash:
20080813154603 -84dde-
fc1cf32ab5617c11b6cbe9ad084dac32b0db315a .gz
Evan Prodromou [Sun, 17 Aug 2008 15:02:44 +0000 (11:02 -0400)]
make settings and search menus localisable
darcs-hash:
20080817150244 -84dde-
7f2e4dec226aa9754dfc970386e62076f952db72 .gz
Evan Prodromou [Sat, 16 Aug 2008 15:10:57 +0000 (11:10 -0400)]
name omb_listener param so we can refer to it in error msg
darcs-hash:
20080816151057 -84dde-
e9df2c91a2711b235aa936a28e250715fc7c6d50 .gz
zach [Fri, 15 Aug 2008 18:53:17 +0000 (14:53 -0400)]
Twitter-compatible API: support for new in_reply_to_status_id in statuses/update
darcs-hash:
20080815185317 -ca946-
11c3f9f7255180d5d6ea7b115b3e33b2abb7fe93 .gz
zach [Wed, 13 Aug 2008 19:33:27 +0000 (15:33 -0400)]
Twitter-compatible API: removed redundant decoding step; already taken care of by util.php's common_render_content()
darcs-hash:
20080813193327 -ca946-
c0160fbcc04771e39e303470d3418e84973a8189 .gz
Evan Prodromou [Thu, 14 Aug 2008 00:20:38 +0000 (20:20 -0400)]
move user registration to a single static method
darcs-hash:
20080814002038 -84dde-
8505d4e083056b770db128129a95be639d8e7f0a .gz
Evan Prodromou [Wed, 13 Aug 2008 19:54:08 +0000 (15:54 -0400)]
Evan Prodromou [Wed, 13 Aug 2008 18:02:39 +0000 (14:02 -0400)]
get rid of dataobject.ini -- again
darcs-hash:
20080813180239 -84dde-
535ac9147c988e3617a68e4638367bdcef8fe5be .gz
Evan Prodromou [Tue, 12 Aug 2008 12:18:32 +0000 (08:18 -0400)]
correctly show URL for rare notice without an URI
darcs-hash:
20080812121832 -84dde-
dad220ddc4c67e017aa10e47e3aed85392d606ca .gz
Evan Prodromou [Tue, 12 Aug 2008 01:16:00 +0000 (21:16 -0400)]
fix some errors in sitemaps
Only show notices that don't have a remote URL. That should include
only local notices.
Also, don't do an avatar sitemap; apparently nobody indexes these
anyways.
darcs-hash:
20080812011600 -84dde-
680d39ef8379605febd16ed52c529711e8e1ccc9 .gz
Evan Prodromou [Mon, 11 Aug 2008 20:00:58 +0000 (16:00 -0400)]
Evan Prodromou [Mon, 11 Aug 2008 18:11:58 +0000 (14:11 -0400)]
zach [Sat, 9 Aug 2008 00:12:40 +0000 (20:12 -0400)]
Twitter-compatible API: filled in the source attr for notices accessed via API
darcs-hash:
20080809001240 -ca946-
0a8ec8b965876e1da90c675ad596b32906a21d93 .gz
zach [Thu, 31 Jul 2008 22:49:11 +0000 (18:49 -0400)]
Twitter-compatible API - /statuses/update.format now decodes HTML chars, such as &
darcs-hash:
20080731224911 -ca946-
1cb52c7592d48174437c1896c41a4dd853a9e5c7 .gz
Evan Prodromou [Mon, 11 Aug 2008 17:58:20 +0000 (13:58 -0400)]
Evan Prodromou [Mon, 11 Aug 2008 17:53:18 +0000 (13:53 -0400)]
emergency fixup for bad notices in notice search
darcs-hash:
20080811175318 -84dde-
080db6e81589e794761daab868706704d39e2f1b .gz
Evan Prodromou [Thu, 7 Aug 2008 23:42:27 +0000 (19:42 -0400)]
Evan Prodromou [Wed, 6 Aug 2008 16:17:48 +0000 (12:17 -0400)]
update French translation with msgmerge
darcs-hash:
20080806161748 -84dde-
2d2e6a3ed224abfc440fa6dd2533dd6c4b8231d0 .gz
Evan Prodromou [Wed, 6 Aug 2008 12:21:19 +0000 (08:21 -0400)]
Evan Prodromou [Wed, 6 Aug 2008 04:04:33 +0000 (00:04 -0400)]
Mike Cochrane [Tue, 5 Aug 2008 02:05:20 +0000 (22:05 -0400)]
Add other languages to drop down
darcs-hash:
20080805020520 -533db-
774b253ac10ae71e7d8d9b48e654736039fa5ae3 .gz
mikec [Mon, 4 Aug 2008 13:37:27 +0000 (09:37 -0400)]
Set the C locate to avoid tr_TR php bug see http://www.topolis.lt/php/#35050
darcs-hash:
20080804133727 -edabd-
4bd34431d0ab8519ec512b59be354720925da9a0 .gz