| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2009-10-22 | move the direct orm test to the users module. | Tim Almdal | |
| 2009-10-22 | Rename No_Direct_access_Test and change the require_once to fully qualify ↵ | Tim Almdal | |
| the path to Gallery_Filters.php | |||
| 2009-10-22 | Change the modifier on activate and deactivate methods to static as they are ↵ | Tim Almdal | |
| in a helper class. | |||
| 2009-10-22 | Change the name of identity library from Identity to IdentityProvider. ↵ | Tim Almdal | |
| Create a helper class called identity to simplify call the Identity Provider. Move the contents of MY_Session.php to the new helper class and remove the MY_Session class | |||
| 2009-10-21 | use the appropriate API's | Tim Almdal | |
| 2009-10-21 | Add the Gallery File Filters and a test to check that the user/group table ↵ | Tim Almdal | |
| is only accessed from the user module. | |||
| 2009-10-21 | Create a No_Direct_Access test which initially checks to insure there is no ↵ | Tim Almdal | |
| direct access to the users and groups table defined by the user module. | |||
| 2009-10-19 | Simplify the user interface by moving the password reset functionality into ↵ | Tim Almdal | |
| the user module Bagging the User_Definition and Group_Definition abstract classes and replacing them with interfaces with the same names. Make sure all the unit tests work. | |||
| 2009-10-16 | Remove all non Identity API methods from Identity.php. Created an ↵ | Tim Almdal | |
| MY_Session class to provide the user state changes in the session and a login.php helper that has the login form. | |||
| 2009-10-16 | Start simplifying the interface by moving the static methods from user.php ↵ | Tim Almdal | |
| and group.php. Tried creating a identity helper, but the helper identity.php was confused with the library Identity.php. So got around this by making the methods on Identity static and calling the instance within the static methods. Also temporarily moved the user.php and group.php back into the user module. | |||
| 2009-10-09 | update the Access_Helper_Test to use the user::lookup_by_name API method. | Tim Almdal | |
| 2009-10-04 | Renamed more CSS selectors from gName to g-name. | Chad Kieffer | |
| 2009-10-04 | Renamed most, if not all css selectors from gName to g-name. Moved a few ↵ | Chad Kieffer | |
| shared images from wind to lib. Deleted unused images in the admin_wind. This will likely break a few ajax features. | |||
| 2009-10-03 | Renamed and moved gOdd/gEven CSS classes. | Chad Kieffer | |
| 2009-09-24 | Fix unit tests by updating the xss golden file and declaring ↵ | Tim Almdal | |
| gallery_error::error_handler as static | |||
| 2009-09-23 | Rename the default themes to wind and admin_wind. Change xss_data.txt file ↵ | Tim Almdal | |
| to reflect this move. Not completely moved yet, but the git st is rather large so lets commit this now as a base for the cleanup. | |||
| 2009-09-23 | Correct indentation | Tim Almdal | |
| 2009-09-17 | - Add theme->movie_menu() to whitelisted methods. | Andy Staudacher | |
| - xss_data checkpoint | |||
| 2009-09-15 | Also check for rss feeds in controller auth check | Andy Staudacher | |
| 2009-09-15 | Controller auth / CSRF fixes | Andy Staudacher | |
| 2009-09-15 | Add exception for REST controllers (no fixes necessary). | Andy Staudacher | |
| 2009-09-15 | CSRF / auth fixes, golden data file checkpoint | Andy Staudacher | |
| 2009-09-15 | First functional version of Controller_Auth_Test | Andy Staudacher | |
| 2009-09-15 | Initial skeleton of Controller_Auth code audit test (non functional). | Andy Staudacher | |
| 2009-09-15 | Improve language preference (Acccept-Language header matching): Boost ↵ | Andy Staudacher | |
| same-language match over exact locale match for lower qvalue. | |||
| 2009-09-12 | Updated for url format changes applied in ↵ | Bharat Mediratta | |
| 2aad580f53dbc06bb170c710467b47a5a532c6c8. | |||
| 2009-09-11 | rawurlencode() path components in relative_path_cache and | Bharat Mediratta | |
| relative_url_cache so that they're safe for browser use. | |||
| 2009-09-10 | Rename ORM_MPTT::is_descendant() to ORM_MPTT::contains() to make the | Bharat Mediratta | |
| API a little clearer. Write a test for it, too. | |||
| 2009-09-08 | Fix a thinko-- of course we want urls to be the path to the file itself. | Bharat Mediratta | |
| 2009-09-08 | Change $this->_photo to just $photo | Bharat Mediratta | |
| 2009-09-08 | Fix test to support new slug code. | Bharat Mediratta | |
| 2009-09-08 | Update item::convert_filename_to_slug() to eliminate leading and | Bharat Mediratta | |
| trailing hyphens. | |||
| 2009-09-07 | Add item::validate_url_safe() with a test. | Bharat Mediratta | |
| 2009-09-07 | Update golden file. | Bharat Mediratta | |
| 2009-09-07 | Add support for a per-item "slug" which will be the user-visible url | Bharat Mediratta | |
| component for that given item. Album hierarchies are represented by nested slugs. By default, we convert the filename to a slug when you create an album, photo or movie. | |||
| 2009-09-05 | Bugfixes for locales::locale_from_http_request(), and adding tests. | Andy Staudacher | |
| (And the tests should illustrate that kohana 2.4's API doesn't quite fit our purpose of simply getting the best match between the accepted (client) and the installed (g3) locales.) | |||
| 2009-09-05 | Update XSS test golden data file. | Andy Staudacher | |
| 2009-09-04 | XSS test golden data file update | Andy Staudacher | |
| 2009-09-04 | Simplifying SafeString a bit: From a XSS HTML security point of view, treat ↵ | Andy Staudacher | |
| clean() and purify() the same. No longer run a safe HTML string through the HTML purifier (since it's already marked as safe). This also addresses the issue of calling purify() when no purifier is installed. In that case, we'd run clean() on a clean string (double HTML encoding). If this approach doesn't work out, we can still modify the fallback code of purify() to check if the string is already clean before calling clean() instead of purify(). | |||
| 2009-09-03 | Checkpoint. | Bharat Mediratta | |
| 2009-09-03 | Fix tests for new purifier API. | Bharat Mediratta | |
| 2009-09-03 | Fix test for new purifier API. | Bharat Mediratta | |
| 2009-09-03 | Ensure that purify isn't applied twice for an already purified SafeString | Andy Staudacher | |
| 2009-09-03 | Merge branch 'master' into talmdal | Tim Almdal | |
| 2009-09-03 | fix the expected return value of photos controller | Tim Almdal | |
| 2009-09-03 | fix the expected return value of album controller | Tim Almdal | |
| 2009-09-03 | Change the Html_Helper and SafeString tests to change the expeced results ↵ | Tim Almdal | |
| based on whether HtmlPurifier module is installed or not | |||
| 2009-09-02 | Fix formatting, and use a properly named file in | Bharat Mediratta | |
| change_photo_no_csrf_fails_test() so that GD doesn't bomb. | |||
| 2009-09-01 | Update XSS scanner golden file | Andy Staudacher | |
| 2009-09-01 | Remove debugging code | Andy Staudacher | |
 |
index : gallery3.git | |
| A clone of the Gallery3 code for testing and development. | root |
| summaryrefslogtreecommitdiff |