fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-13 16:34:52 +09:00
Code Issues Projects Releases Packages Wiki Activity
15513 commits 4 branches 212 tags 117 MiB
Commit graph

303 commits

Author SHA1 Message Date
Kijin Sung
cbae2c374e Use meta refresh instead of 302 redirect on new session 
Attempting to fix missing session cookie in some versions of Android webview and Chrome.
This may or may not be of any use, but why not try?

See https://bugs.chromium.org/p/chromium/issues/detail?id=150066
 2017-02-16 11:53:27 +09:00
Kijin Sung
6b0dd6c192 Standardize password hashing work factor to 10 by default 2017-02-15 11:34:39 +09:00
Kijin Sung
b43c653186 Add options to control session keys and SSL-only attribute 2017-02-14 13:37:30 +09:00
Kijin Sung
dea757cfb7 Do not refresh session keys over POST 2017-02-13 17:49:27 +09:00
Kijin Sung
a6fee16b68 Extend detection of buggy user agents that cannot handle session keys 2017-02-13 17:28:04 +09:00
Kijin Sung
9c96dc04bc Remove debugging code 2017-02-13 16:54:25 +09:00
Kijin Sung
aeb42891b0 Do not check security keys if session was started on Android webview 2017-02-13 16:53:30 +09:00
Kijin Sung
ba925150a3 Quash www subdomain to prevent duplicate sessions 2017-02-13 13:55:47 +09:00
Kijin Sung
4a4612938a Show warning when a session is discarded due to invalid keys 2017-02-12 23:12:53 +09:00
Kijin Sung
1a0e49dcfb Change method for storing and caching session validity information 2017-02-12 23:00:53 +09:00
Kijin Sung
9884bbb3b8 Fix inconsistent whitespace 2017-02-11 21:55:01 +09:00
Kijin Sung
31623842ba Fix logout bug in admin module 2017-02-11 21:41:21 +09:00
Kijin Sung
1e532c51a4 Restore member_srl if it was changed by a third-party program 2017-02-11 21:13:18 +09:00
Kijin Sung
fd02fa968c Fix #702 Punycode error on attempting to handle long URLs 2017-02-11 17:48:52 +09:00
Kijin Sung
b32ae03396 Fix session variables being reset to an empty string 2017-02-11 14:15:38 +09:00
Kijin Sung
5f7b4837dc Add more safeguards for the possibility of an empty member_srl 2017-02-10 20:59:17 +09:00
Kijin Sung
57ab94187e Remove static keyword 2017-02-10 20:53:38 +09:00
Kijin Sung
dfdbc1db85 Add session helper class and move remainder of session validation logic to Session class 2017-02-10 20:50:38 +09:00
Kijin Sung
4b26db9932 Fix unit tests, and add tests for Session::isValid() 2017-02-09 00:42:34 +09:00
Kijin Sung
3be0e79abb Improve session invalidation routines 2017-02-09 00:34:01 +09:00
Kijin Sung
c7d8d84500 Add option to invalidate other sessions on password change 
Feature request in https://www.xetown.com/lakepark/345786
 2017-02-09 00:06:32 +09:00
Kijin Sung
bdb10d57c5 Miscellaneous fixes to session handling 2017-02-08 21:35:00 +09:00
Kijin Sung
59c3fa1381 Fix unexpected cast to int 2017-02-08 18:06:26 +09:00
Kijin Sung
2af90c8e1d Implement autologin in the Session class 2017-02-08 17:08:31 +09:00
Kijin Sung
af41f36bf7 Move checkSSO() from Context class to Session class 2017-02-07 23:26:43 +09:00
Kijin Sung
483ac84796 Merge branch 'develop' into pr/session-class 2017-02-07 22:13:08 +09:00
Kijin Sung
e1ffe39a2e Use Rhymix Framework to decide whether a file can be directly downloaded 
xpressengine/xe-core#1997
 2017-02-06 15:58:10 +09:00
Kijin Sung
607e9357c2 Merge pull request #686 from kijin/pr/delete-empty-folders 
빈 폴더 자동 삭제 및 일괄 삭제
 2017-02-05 22:57:02 +09:00
Kijin Sung
b54171f8bf Display error when Rhymix cannot update system configuration file 
Possible cause of https://www.xetown.com/qna/491349
 2017-02-02 19:59:22 +09:00
Kijin Sung
2cb5c460f9 Merge branch 'develop' into pr/delete-empty-folders 2017-01-31 13:54:38 +09:00
Kijin Sung
0f9b8cc3d6 Allow controlling allowed classes in HTMLPurifier 2017-01-31 11:45:46 +09:00
Kijin Sung
30cdf63b77 Refactor Storage::recommendUmask() into Storage::getServerUID() 2017-01-26 21:29:01 +09:00
Kijin Sung
5f83192e5d Remove slashes before trying to delete empty directories 2017-01-26 18:30:09 +09:00
Kijin Sung
3dc736817d Add Storage::deleteEmptyDirectory() to recursively clear empty directories 2017-01-26 18:01:27 +09:00
Kijin Sung
61a6c01d26 Do not remove @, #, & from attached file names 2017-01-18 00:01:49 +09:00
Kijin Sung
14f6db25b3 Allow customizing the allowed class list, editor components, and widgets 2016-12-15 21:06:29 +09:00
Kijin Sung
f46d6a542a Fix #641 improve reliability of SQLite cache driver 
- Disable on Windows
- Explicitly set busy timeout to 0.25 second
- Return appropriate error result on query error
- Use transaction on incr/decr
 2016-12-15 00:22:15 +09:00
Kijin Sung
2db14c1ea9 Show query errors in debug panel and error log 2016-12-13 14:09:51 +09:00
Kijin Sung
e9bfb0e298 Disallow classes in user-submitted content 2016-12-08 17:45:03 +09:00
Kijin Sung
f4c4ec5ec6 Allow adding arbitrary extra vars to SMS 2016-12-03 16:41:02 +09:00
BJRambo
5075e9d875 샌더키값이 있을경우 친구톡 우선발송하도록 고침. 2016-11-15 18:17:45 +09:00
Kijin Sung
0c76837641 Add SRK for CoolSMS driver 2016-11-12 21:24:26 +09:00
Kijin Sung
39757ea3db Implement force sender for SMS 2016-11-12 16:21:58 +09:00
Kijin Sung
ddc0da173a Minor adjustments to make configuration easier 2016-11-12 15:17:32 +09:00
Kijin Sung
270555d982 Fix missing trim while splitting content 2016-11-06 21:55:35 +09:00
Kijin Sung
d321a3e1c9 Fix missing subject when forced to send via SMS 2016-11-06 21:31:56 +09:00
Kijin Sung
aab6bd6d48 Minor changes to support unit testing via dummy 2016-11-06 20:54:46 +09:00
Kijin Sung
a92c77655f Improve error handling 2016-11-04 20:48:31 +09:00
Kijin Sung
50e3dc4574 Add dummy SMS driver and use it as the default 2016-11-04 20:34:50 +09:00
Kijin Sung
582374295d Refactor SMS classes to use a common spec format 2016-11-04 20:26:12 +09:00