summaryrefslogtreecommitdiff
path: root/core/helpers/access.php
AgeCommit message (Expand)Author
2009-01-14Make sure that helper functions are all static. Add newBharat Mediratta
2009-01-01Allow admins to do anythingBharat Mediratta
2008-12-31Extend permissions interface to allow resetting to the parental default.Bharat Mediratta
2008-12-31Preliminary "Edit Permissions" dialog. You can't change permissionsBharat Mediratta
2008-12-31Fix a bug where we were accidentally allowing view permissions whenBharat Mediratta
2008-12-31Fully implement the view_full permission.Bharat Mediratta
2008-12-30Oops, remove some debug code.Bharat Mediratta
2008-12-30Fix a bug. Unit tests ftw!Bharat Mediratta
2008-12-30Refactor _create_htaccess_files and _delete_htaccess_files intoBharat Mediratta
2008-12-30Fix typo.Bharat Mediratta
2008-12-28Expand on the maintenance code to make it more robust and give theBharat Mediratta
2008-12-24Lots of deltas rolled up into a bigger change. Sorry for the mess.Bharat Mediratta
2008-12-22Normalize CSRF handling into the access helper. Probably not the bestBharat Mediratta
2008-12-19Add access::forbidden()Bharat Mediratta
2008-12-19Delete the var/thumbs .htaccess files, too.Bharat Mediratta
2008-12-17Add initialization to the user module to put the user and group_idsBharat Mediratta
2008-12-17Separate thumbnails out into var/thumbs. This clears up some ambiguity in I...Bharat Mediratta
2008-12-16Add file_proxy. This is controller gets triggered by .htaccessBharat Mediratta
2008-12-16Change htaccess rules to use mod_rewriteBharat Mediratta
2008-12-16Various optimizations:Bharat Mediratta
2008-12-16Fix a bug where we were not deleting the .htaccess file on access::reset()Bharat Mediratta
2008-12-16Create and delete .htaccess files based on the view permissions forBharat Mediratta
2008-12-16phpdoc cleanupBharat Mediratta
2008-12-16Permission only function on albums.Bharat Mediratta
2008-12-13Fix a bug where parent permissions were not getting inherited to newlyBharat Mediratta
2008-12-13Make sure that access::can fails if the item is not loadedBharat Mediratta
2008-12-12Move the view permission cache directly into the item table for efficiency. ...Bharat Mediratta
2008-12-12Get rid of all pseudo users and pseudo groups, while preserving allBharat Mediratta
2008-12-11Split _update_access_cache into two functions separating view fromBharat Mediratta
2008-12-10Fix problem with access::can, where the $item->id was being passed to the acc...Tim Almdal
2008-12-10Change all access API methods to take ORMs instead of ids. This willBharat Mediratta
2008-12-09Check view permissions before allowing view access to albums/photos.Bharat Mediratta
2008-12-09Move code to delete users and add/remove users from groups into theBharat Mediratta
2008-12-09Add access::can() which verifies that the user belongs to a group that has theBharat Mediratta
2008-12-08Rename access::can() to access::group_can()Bharat Mediratta
2008-12-07Finish writing unit tests for Access. No bugs found!Bharat Mediratta
2008-12-04Change the startup code to only put installed modules on the autoloadBharat Mediratta
2008-12-04Improvements to access helper.Bharat Mediratta
2008-12-03Fix a bug where we weren't actually deleting permissions (hooray for unit tes...Bharat Mediratta
2008-12-03Re-enable access_cache propagation now that we've patched the MySQL driver.Bharat Mediratta
2008-12-03get rid of a stray space that was breaking the File_Structure_TestBharat Mediratta
2008-12-03Temporarily disable some code to get tests to pass.Bharat Mediratta
2008-12-03Fix a bad copy/pasted commentBharat Mediratta
2008-12-02Oops, this was missing from the last fix.Bharat Mediratta
2008-12-02Fix a problem in _update_access_cache() where if the intent isBharat Mediratta
2008-12-01Add access::reset() so that you can specify your intent to use theBharat Mediratta
2008-12-01Add @todosBharat Mediratta
2008-12-01Prototype access control model. There's much left to do, but it's aBharat Mediratta
generated by cgit v1.2.3 (git 2.46.0) at 2025-10-17 16:57:58 +0000