fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-03 16:51:40 +09:00
Code Issues Projects Releases Packages Wiki Activity
20894 commits 3 branches 212 tags 117 MiB
Commit graph

61 commits

Author SHA1 Message Date
Lastorder
e051ae079a
add isReallyFromMobilePhone 2024-07-01 18:46:23 +09:00
Kijin Sung
80e50d41f5 Change default Cookie path to "/" for compatibility with JS function setCookie() 2023-10-24 23:17:01 +09:00
Kijin Sung
5005a09f06 Add Rhymix\Framework\Cookie class with sane defaults 2023-10-24 22:37:27 +09:00
Kijin Sung
20fedd2810 Mark most methods of Mobile class as deprecated 2023-10-04 01:15:39 +09:00
Kijin Sung
180ed429cf Fix deprecation error in PHP 8.x when path or domain is null in setcookie() 2023-06-16 15:34:48 +09:00
Kijin Sung
dfa1e93c79 Remove unnecessary header and footer from class files 
- 아래에 이미 author 언급이 있으므로 중복되는 저작권 표기는 제거
- 클래스 하단에 불필요한 end of file 표시 제거 (파일 하나에 클래스 하나씩이므로
  파일이 중간에 끊겼다면 클래스가 닫히지 않아 쉽게 알 수 있음)
 2023-01-30 23:52:23 +09:00
Kijin Sung
c881e73c1d Remove trailing whitespace in legacy class files 2023-01-17 21:07:55 +09:00
Kijin Sung
e1f1de8e49 Fix warning in PHP 8.0 if user-agent header is missing 2021-01-28 23:14:48 +09:00
Kijin Sung
8c161bc28d Various fixes to improve PHP 8.0 compatibility 
- XmlParser 클래스가 PHP 내장 클래스가 되어버려서 XeXmlParser로 변경
- 함수나 파라미터의 형태가 맞지 않아서 치명적인 오류 나는 곳 수정
- undefined 변수 및 배열 키 다수 수정 (치명적인 오류는 아님)
- 계속 수정중...
 2020-10-31 00:25:26 +09:00
Kijin Sung
efc0d55f98 Restrict UA and lang_type cookies to RX_BASEURL 2020-04-04 23:17:04 +09:00
Kijin Sung
a49f2f5f06 Change Context::isAlwaysSSL() to config('session.use_ssl_cookies') 
- Main session cookie is httpOnly if use_ssl is true
- SSO cookie is always httpOnly
 2018-08-06 01:23:22 +09:00
Min-Soo Kim
25d2e4892a Revert "Example of the cookie option" 
This reverts commit 93a35c251b.
 2018-08-02 00:35:52 +09:00
Min-Soo Kim
93a35c251b Example of the cookie option 2018-08-02 00:35:27 +09:00
Min-Soo Kim
30fd0c428c Improve cookie security; Secure flag 
SSL 항상 사용 옵션인 경우 쿠키도 이에 맞추어 SSL 인 경우에만 사용되도록 secure flag 를 추가합니다.
선택적 SSL 인 경우 SSL 이 적용되지 않은 구간에서도 쿠키를 읽을 수 있어야 하므로, 적용하지 않습니다.

이 PR 로 변경되는 내용

- Context 클래스에 checkSslEnforce 메소드 추가
- SSL 항상 사용 옵션일 경우, 가능한 secure 플래그를 달아서 쿠기 굽기
- SSO 쿠키의 경우 javascript 접근이 필요 없을 것으로 예상 ( https://github.com/rhymix/rhymix/pull/1034 ) 되어서 `httpOnly` 플래그도 추가.

안드로이드 웹뷰의 경우 StackOverFlow 의 Reading secure cookies in android WebView 라는 글을 참고하면, 읽어오는 것이 가능하다고 합니다. 주소에 프로토콜을 적지 않을 경우 secure flag 가 달린 쿠키는 정상적으로 읽어오지 않는 듯 하니 안드로이드 웹뷰를 사용하시는 분들은 대응이 필요할 것으로 보입니다.

https: //github.com/rhymix/rhymix/pull/1034 를 실수로 merge 하여서 다시 올립니다.
Co-Authored-By: Kijin Sung <kijin@kijinsung.com>
 2018-07-29 12:15:24 +09:00
Min-Soo Kim
b62a1322c9 Revert "Merge branch 'develop' into develop" 
This reverts commit ec54bbd415, reversing
changes made to 9b12e0a71c.
 2018-07-29 11:54:14 +09:00
Min-Soo Kim
f8edfacde2 Refine secure cookie flag 
_use_ssl 대신 site_module_info 를 직접 참조하도록 수정.
함수 이름을 조금 더 자연스럽게 수정.
 2018-04-28 11:25:15 +09:00
Min-Soo Kim
c1c9a94623 Improve cookie security; Secure flag 
SSL 항상 사용 옵션인 경우 쿠키도 이에 맞추어 SSL 인 경우에만 사용되도록 `secure` flag 를 추가합니다.
선택적 SSL 인 경우 SSL 이 적용되지 않은 구간에서도 쿠키를 읽을 수 있어야 하므로, 적용하지 않습니다.
 2018-04-24 19:30:38 +09:00
Kijin Sung
591e9cb270 Revert "Improve cookie secure setting values" 
This reverts commit 73da2af393.
 2018-04-23 00:43:24 +09:00
Kijin Sung
cfca05c897 Revert "Fix httpOnly flag by mistake.... (#1032)" 
This reverts commit 0347bb7053.
 2018-04-23 00:42:12 +09:00
Min-Soo Kim
0347bb7053
Fix httpOnly flag by mistake.... (#1032) 
73da2af393 fix.
 2018-04-23 00:17:26 +09:00
Min-Soo Kim
73da2af393 Improve cookie secure setting values 
HTTPS 를 사용하는 상황에 대한 판단을 할 수 있는 상황에서 쿠키의 secure flag 를 달아준다.
 2018-04-22 23:58:13 +09:00
Kijin Sung
780034d4ee Do not explicitly set the domain for session cookies 2017-02-17 19:33:05 +09:00
Kijin Sung
ba925150a3 Quash www subdomain to prevent duplicate sessions 2017-02-13 13:55:47 +09:00
Kijin Sung
db7b613d03 Prevent Mobile class from adding data to session 2016-10-05 17:55:25 +09:00
Kijin Sung
3d8b7755ee Fix manual mobile setting not working 2016-07-09 23:00:16 +09:00
Kijin Sung
c58c905a93 Don't trust mobile cookie if the user agent has changed 2016-05-11 00:23:13 +09:00
Kijin Sung
ad8a07096c Allow tablets to be treated as mobile or not depending on configuration 2016-05-10 23:33:12 +09:00
Kijin Sung
37bce0343d Update core classes to refer to UA class for robot detection 2016-03-19 23:32:35 +09:00
Kijin Sung
4ea9ab02ec Migrate miscellaneous config to new format 2016-02-05 11:26:35 +09:00
Kijin Sung
ee585b651a Clean up method signatures in Mobile class 2016-01-22 14:51:57 +09:00
conory
18f66db3a3 remove end tag 2015-12-22 22:56:58 +09:00
Won-Kyu Park
be25911b72 do not always set mobile/user-agent cookies 2015-07-10 19:40:47 +09:00
BJRambo
4b1025e8c5 모바일 뷰어 사용중일 경우 모바일 최적화 화면 문구 뜨도록 개선 2015-01-13 17:28:44 +09:00
akasima
bce0a0b6d4 copyright add to php files 
git-svn-id: http://xe-core.googlecode.com/svn/branches/maserati@13186 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2013-11-08 05:52:51 +00:00
ngleader
dbc18a4f99 change author 
git-svn-id: http://xe-core.googlecode.com/svn/branches/maserati@13180 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2013-11-07 02:42:42 +00:00
flyskyko
9aa87c343f issue 2119. supporting php 5.4. mail and mobile classes. 
git-svn-id: http://xe-core.googlecode.com/svn/branches/maserati@12690 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2013-02-05 01:49:13 +00:00
misol
e01a412e36 User-Agent string checker update in Mobile class for PHP5 
git-svn-id: http://xe-core.googlecode.com/svn/branches/maserati@12644 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2013-01-31 07:39:30 +00:00
misol
7557e8d84d Add 'Tizen' as mobile OS User-Agent string. 
git-svn-id: http://xe-core.googlecode.com/svn/branches/maserati@12622 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2013-01-30 14:00:09 +00:00
flyskyko
262928157c adds comments for phpDoc 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10735 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-05-24 07:02:11 +00:00
misol
40a2b98b6c Delete Telecom corps UA value from Mobile class. (some value make error, as 'skt' in 'AskTbDSGOH') 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10647 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-05-01 06:36:53 +00:00
misol
890c10dd2e Remove PHP5 only function from Mobile class. 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10606 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-04-24 05:26:12 +00:00
misol
7d9a33b6ce Issue 1774, Mobile class fix. Add Opera Mobile browser for exception. (It does not contain the information whether it is a tablet or not.) 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10592 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-04-22 04:39:43 +00:00
misol
e92c448c54 Issue 1774, Mobile class fix. Not case sensitive string check for Mobile. 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10591 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-04-21 17:11:09 +00:00
misol
442ad51d8f Issue 1774, fix for Android Opera Mini. reported by '하늘종' http://www.xpressengine.com/freeboard/20708676 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10590 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-04-21 16:54:03 +00:00
misol
2a62a0c3c5 Issue 1774, remove android tablet check. (There is no significant check value.) 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10589 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-04-21 16:28:33 +00:00
misol
532a6a0645 Additional patch for Issue 1774 and r10539. Return same value of UA check for a request. 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10540 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-04-08 14:30:13 +00:00
misol
d4babffdef #1774 Mobile class is updated for more mobile devices. Tablet PC would see PC version website and it can select also mobile site. And some enhancements. 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10539 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-04-07 09:13:02 +00:00
ngleader
ab394f96a9 Issue 1709 remove ipad on checking mobile device 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10449 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-03-21 01:14:54 +00:00
ngleader
b5d4bfe9dc Issue 1227 Change Mobile User-Agent Check Logic and Add Mobile Agent. 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@10197 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2012-02-27 02:22:52 +00:00
ovclas
186a6b640c issue 83 added patch for mobile check 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.0@9817 201d5d3c-b55e-5fd7-737f-ddc643e51545
 2011-11-16 06:56:49 +00:00