| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2010-01-31 | Force all non-guest users to have an email address since that's | Bharat Mediratta | |
| required in model validation. Without this, any save on a user without email will fail which means that you can't log in. Bump user module to version 3. | |||
| 2010-01-31 | Update the install version to 2 to match module.info. | Bharat Mediratta | |
| 2010-01-31 | return a location method so the page reloads properly if the edit was ↵ | Tim Almdal | |
| successful. | |||
| 2010-01-31 | Fix lots of warnings that pop up when we're in E_STRICT mode. They're | Bharat Mediratta | |
| mostly issues around uninitialized variables, calling non-static functions in a static context, calling Session functions directly instead of on its singleton, passing non-variables by reference, and subclasses not using the same interface as the parent class. | |||
| 2010-01-31 | Remove obsolete call to _force_block_adder() which has been broken for over ↵ | Bharat Mediratta | |
| a year. | |||
| 2010-01-31 | Remove debug code. | Bharat Mediratta | |
| 2010-01-31 | Add a comment about error_reporting() | Bharat Mediratta | |
| 2010-01-31 | htaccess_works() can't use var/tmp anymore because that's locked down. | Bharat Mediratta | |
| So just create var/security_test and delete it when we're done. | |||
| 2010-01-31 | Elide data that isn't useful from the REST array. | Bharat Mediratta | |
| 2010-01-31 | Second attempt to fix the timezone issue. If the timezone is not set | Bharat Mediratta | |
| in phpinfo(), then force it to America/Los_Angeles for now. | |||
| 2010-01-31 | Update the timezone field to match the setting in | Bharat Mediratta | |
| system/config/locale.php. This fixes the "date_default_timezone_set() [function.date-default-timezone-set]: Timezone ID '' is invalid" error. | |||
| 2010-01-30 | Remove edit permissions across the board. | Bharat Mediratta | |
| 2010-01-30 | Use Item_Model::as_restful_array() to simplify tests. | Bharat Mediratta | |
| 2010-01-30 | Add Item_Model::as_restful_array() for convenience. | Bharat Mediratta | |
| 2010-01-30 | Verified | Bharat Mediratta | |
| 2010-01-30 | Refactory auth::too_many_failed_logins() out of | Bharat Mediratta | |
| auth::validate_too_many_failed_logins() to conceptually separate the two. | |||
| 2010-01-30 | Protect REST login controller from brute force attacks too. | Andy Staudacher | |
| And make the REST auth token less predictable by using a better source for randomness. | |||
| 2010-01-30 | Update install.sql -- gallery version jumps from 23 to 25 due to a mistake | Bharat Mediratta | |
| in the version 24 upgrade code. Update packager to serialize files so that we can serialize the new .htaccess files Update init_var.php to include the newly serialized .htaccess files. Fixes ticket #587. | |||
| 2010-01-30 | Lock down web access to var/uploads, var/tmp and var/logs using .htaccess | Bharat Mediratta | |
| Fixes ticket #587. | |||
| 2010-01-30 | Don't override the password in the database if it's empty in the form. | Bharat Mediratta | |
| Fixes ticket #995. | |||
| 2010-01-30 | Gallery module version 23, with the failed_logins table. | Bharat Mediratta | |
| 2010-01-30 | Prevent brute force login attacks by reducing login attempts to 1 per | Bharat Mediratta | |
| minute after there have been 5 consecutive failed login attempts. Fix for ticket #589. | |||
| 2010-01-30 | Make url::merge() function use the same exact definition as url_Core::merge() | Bharat Mediratta | |
| 2010-01-30 | Fix the valid_admin code -- it was considering all non-admins invalid. | Bharat Mediratta | |
| Fixes ticket #997 (highest prime under 1000!) | |||
| 2010-01-30 | Dump out validation errors so that we have some extra information in the logs. | Bharat Mediratta | |
| 2010-01-30 | Fix #992: Digibug pops up a blank page and doesn't allow printing | Bharat Mediratta | |
| form::hidden() changed in K24 breaking this. Also fixed the spelling of "$order_params" | |||
| 2010-01-30 | Remap parent_id and album_cover_item_id to and from RESTful urls. | Bharat Mediratta | |
| 2010-01-30 | The user must have some edit permission somewhere to create a tag | Bharat Mediratta | |
| 2010-01-30 | Make the error page more robust in the case where there's a failure | Bharat Mediratta | |
| early on in the framework code before we can load Gallery_I18n.php | |||
| 2010-01-29 | Use ? or & as appropriate when appending output=html. | Bharat Mediratta | |
| 2010-01-29 | Add missing permission checks. | Bharat Mediratta | |
| Make the tag relationship an associative array. | |||
| 2010-01-29 | Use var_export instead of print_r for better clarity. | Bharat Mediratta | |
| 2010-01-29 | Don't forget to flush the relative_url_cache when updating the slug. | Bharat Mediratta | |
| 2010-01-29 | Go through all slugs and make them legal values. | Bharat Mediratta | |
| Upgrade gallery3 module to version 23 | |||
| 2010-01-29 | Oops, forgot to bump the version to 2 in install(). | Bharat Mediratta | |
| 2010-01-29 | Merge branch 'master' of git@github.com:gallery/gallery3 | Bharat Mediratta | |
| 2010-01-29 | Oops, somebody (me?) forgot to update the gallery module version | Bharat Mediratta | |
| number in gallery_installer::install() so the install.sql was out of sync. | |||
| 2010-01-29 | Strongly type the argument list to the model::validate method. | Tim Almdal | |
| 2010-01-29 | Merge branch 'master' of git@github.com:gallery/gallery3 | Tim Almdal | |
| Conflicts: modules/gallery/views/in_place_edit.html.php | |||
| 2010-01-29 | Replace <?= form::close() ?> with </form>. Also add a call to ↵ | Tim Almdal | |
| access::csrf_form_field in the form template. Fixes ticket #996. | |||
| 2010-01-29 | Work around a weirdness where empty() doesn't work on input values. | Bharat Mediratta | |
| 2010-01-29 | Clean up form validation code. | Bharat Mediratta | |
| 2010-01-29 | Clean up form validation code. | Bharat Mediratta | |
| 2010-01-29 | Stop using obsolete form::close() | Bharat Mediratta | |
| Update the way we include the hidden CSRF field for InPlaceEdit. | |||
| 2010-01-28 | Add page_type to the rotate and delete context menu items so that the | Bharat Mediratta | |
| quick menu knows where to send you after the action is done. | |||
| 2010-01-28 | Add @todo. | Bharat Mediratta | |
| 2010-01-28 | Use identity::set_active_user() instead of auth::login() when we | Bharat Mediratta | |
| change providers otherwise the user_installer code is going to be calling auth::login() which causes all kinds of unexpected weirdness, like it triggers the handler in gallery_event which detects graphics toolkits, and that's only supposed to run on the first admin login. | |||
| 2010-01-28 | In auth::login() make the user active before trying to save it, else | Bharat Mediratta | |
| the validation code fails because it expects there to be an active user. | |||
| 2010-01-28 | Use auth::login() when we initially log in the admin user. | Bharat Mediratta | |
| 2010-01-28 | Updated for model based validation. We must now provide a placeholder | Bharat Mediratta | |
| email address for the admin user, since one is required for all users. | |||
 |
index : gallery3.git | |
| A clone of the Gallery3 code for testing and development. | root |
| summaryrefslogtreecommitdiff |