summaryrefslogtreecommitdiff
path: root/roundcubemail/index.php
AgeCommit message (Collapse)Author
2011-03-22Revert r4609 and use stateless request tokens; no need to save them in ↵thomasb
session and thus no keep-alive necessary; fixes #1487829 git-svn-id: https://svn.roundcube.net/trunk@4615 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-03-15Keep session alive while showing login page (request token is stored in ↵thomasb
session data) git-svn-id: https://svn.roundcube.net/trunk@4609 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-03-08- small code cleanupalec
git-svn-id: https://svn.roundcube.net/trunk@4600 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-03-08- Performance improvement: Remove redundant DELETE query (for old session ↵alec
deletion) on login git-svn-id: https://svn.roundcube.net/trunk@4599 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-02-08Also check referer on logout actionthomasb
git-svn-id: https://svn.roundcube.net/trunk@4504 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-02-08Add optional referer check to prevent CSRF in GET requeststhomasb
git-svn-id: https://svn.roundcube.net/trunk@4503 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-02-03protect login form submission from CSRF using a request tokenthomasb
git-svn-id: https://svn.roundcube.net/trunk@4490 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-01-28Improve session validity check with changing auth cookies; reduce writes to ↵thomasb
DB; better phpdoc git-svn-id: https://svn.roundcube.net/trunk@4466 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-01-19Better fix for login redirect, don't force mail taskthomasb
git-svn-id: https://svn.roundcube.net/trunk@4428 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-01-16- Move action files map from index.php to steps' func.inc filesalec
git-svn-id: https://svn.roundcube.net/trunk@4419 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-01-14Fix login redirect issues (#1487686)thomasb
git-svn-id: https://svn.roundcube.net/trunk@4418 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-01-12Bumbed version; Roundcube development is not Switzerland onlythomasb
git-svn-id: https://svn.roundcube.net/trunk@4410 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-01-06Make sure an existing session is killed/replaced when submitting login formthomasb
git-svn-id: https://svn.roundcube.net/trunk@4396 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-12-03- New Folder Manager UIalec
- Fix invalid Request when creating a folder (#1487443) - Add folder size and quota indicator in folder manager (#1485780) - Add possibility to move a subfolder into root folder (#1486791) git-svn-id: https://svn.roundcube.net/trunk@4304 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-11-29- Plugin API: Add 'pass' argument in 'authenticate' hook (#1487134)alec
git-svn-id: https://svn.roundcube.net/trunk@4286 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-11-09- Handle situation when $IMAP object isn't initialized on log inalec
git-svn-id: https://svn.roundcube.net/trunk@4202 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-10-14- Improved IMAP errors handlingalec
git-svn-id: https://svn.roundcube.net/trunk@4088 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-10-01- Fix "Server Error! (Not Found)" when using utils/save-pref action (#1487023)alec
git-svn-id: https://svn.roundcube.net/trunk@4027 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-09-25- s/RoundCube/Roundcube/alec
git-svn-id: https://svn.roundcube.net/trunk@3989 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-09-17- Fix list_cols is not updated after column dragging (#1486999)alec
- Improved save-pref action and moved to separate file in utils task directory - Improved http_post/http_request to support first argument in form 'task/action' git-svn-id: https://svn.roundcube.net/trunk@3971 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-08-07Fix unit tests + update versionthomasb
git-svn-id: https://svn.roundcube.net/trunk@3879 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-06-23- removed PHP closing tagalec
git-svn-id: https://svn.roundcube.net/trunk@3780 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-06-03Allow plugins to register their own tasksthomasb
git-svn-id: https://svn.roundcube.net/trunk@3700 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-04-20- Add HTTP_X_REAL_IP and HTTP_X_FORWARDED_FOR to successful logins log ↵alec
(#1486441) git-svn-id: https://svn.roundcube.net/trunk@3513 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-04-01Add server-side plugin hooks to address group functions + better action namesthomasb
git-svn-id: https://svn.roundcube.net/trunk@3457 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-03-31Asynchronously expand contact groups + skip count queries in autocompletion ↵thomasb
mode + check for the existance of contactgroups table git-svn-id: https://svn.roundcube.net/trunk@3449 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-03-31Implement group renaming/deleting + use more consistent names for commands ↵thomasb
and actions (#1486587) git-svn-id: https://svn.roundcube.net/trunk@3448 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-03-26Added basic contact groups featurethomasb
git-svn-id: https://svn.roundcube.net/trunk@3425 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-03-17Merged devel-threads branch (r3066:3364) back into trunkthomasb
git-svn-id: https://svn.roundcube.net/trunk@3367 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-03-01- Improve performance by avoiding unnecessary updates to the session table ↵alec
(#1486325) git-svn-id: https://svn.roundcube.net/trunk@3296 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-02-25- Password: Make passwords encoding consistent with core, add ↵alec
'password_charset' global option (#1486473) git-svn-id: https://svn.roundcube.net/trunk@3289 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-02-24- don't set task for login_after hookalec
git-svn-id: https://svn.roundcube.net/trunk@3287 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-02-13- Fix imap_init hook broken in r3258 (#1486493)alec
git-svn-id: https://svn.roundcube.net/trunk@3268 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-02-06- Fix setting task name according to auth state. So, any action before useralec
is authenticated is assigned to 'login' task instead of 'mail'. Now binding plugins to 'login' task is possible and realy usefull. It's also possible to bind to all tasks excluding 'login'. git-svn-id: https://svn.roundcube.net/trunk@3258 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-01-28- add file/line definitions to raise_error() callsalec
git-svn-id: https://svn.roundcube.net/trunk@3231 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-01-17- Fix 'force_https' to specified port when URL contains a port number (#1486411)alec
git-svn-id: https://svn.roundcube.net/trunk@3208 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-10-27- Fix $_SERVER['HTTPS'] check for SSL forcing on IIS (#1486243) + fix port checkalec
git-svn-id: https://svn.roundcube.net/trunk@3063 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-10-21Revert r3038 and allow to specify the port as value of force_httpsthomasb
git-svn-id: https://svn.roundcube.net/trunk@3049 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-10-14- fix last commitalec
git-svn-id: https://svn.roundcube.net/trunk@3041 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-10-14- Fix login page loading into an iframe when session expires (#1485952)alec
git-svn-id: https://svn.roundcube.net/trunk@3040 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-10-13- Option 'force_https' replaced by 'force_https' pluginalec
- added option 'force_https_port' in 'force_https' plugin (#1486091) git-svn-id: https://svn.roundcube.net/trunk@3038 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-09-05- Fix wrong headers for IE on servers without $_SERVER['HTTPS'] (#1485926)alec
- Force IE style headers for attachments in non-HTTPS session, 'use_https' option (#1485655) git-svn-id: https://svn.roundcube.net/trunk@2927 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-08-14Add some arguments to the logout_after hookthomasb
git-svn-id: https://svn.roundcube.net/trunk@2859 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-08-14Implemented logout_after plugin hookthomasb
git-svn-id: https://svn.roundcube.net/trunk@2858 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-08-07Fix spell check (#1486036)thomasb
git-svn-id: https://svn.roundcube.net/trunk@2845 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-08-05Allow a plugin to disable the cookie checkthomasb
git-svn-id: https://svn.roundcube.net/trunk@2840 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-07-24Don't check request token on loginthomasb
git-svn-id: https://svn.roundcube.net/trunk@2793 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-07-22- Help pluginalec
- support 'dummy' task (for plugins) git-svn-id: https://svn.roundcube.net/trunk@2783 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-07-21Use global request tokens and automatically protect all POST requeststhomasb
git-svn-id: https://svn.roundcube.net/trunk@2778 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-07-02Add option to enforce https connectionsthomasb
git-svn-id: https://svn.roundcube.net/trunk@2696 208e9e7b-5314-0410-a742-e7e81cd9613c
generated by cgit v1.2.3 (git 2.51.0) at 2026-05-16 12:09:04 +0000