fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-04-05 11:32:12 +09:00
Code Issues Projects Releases Packages Wiki Activity
18570 commits 7 branches 212 tags 119 MiB
Commit graph

10148 commits

Author SHA1 Message Date
Kijin Sung
09abdfa88a Implement safe order of parsing template code and including as PHP 2022-03-15 22:29:07 +09:00
Kijin Sung
d13241ed7c Parse external document as PHP and/or Rhymix template if configured 2022-03-15 21:30:36 +09:00
Kijin Sung
9edd52c328 Add option to control whether to execute external page as PHP and/or Rhymix template 2022-03-15 21:14:55 +09:00
Kijin Sung
0272c5d27a Prevent '_getContent method is not exists' error when page info is improperly cached 2022-03-15 02:00:14 +09:00
Kijin Sung
d4a1be1ef0 Merge duplicate code paths in PageView and PageMobile classes 
보안 체크가 한 곳에서 이루어지도록 중복되는 메소드 제거
 2022-03-15 01:46:47 +09:00
Kijin Sung
9170d9444c Throw SecurityViolation if anyone tries to exploit RVE-2022-2 with GET/POST vars 2022-03-15 01:36:13 +09:00
Kijin Sung
1ab9a2899b Adjust cache paths to prevent loading old cache 2022-03-15 01:28:59 +09:00
Kijin Sung
0c1ee32073 Disable template compilation in external page content 2022-03-14 02:29:18 +09:00
Kijin Sung
a28a8e29e1 More cleanup 2022-03-14 02:17:16 +09:00
Kijin Sung
063d38487e Clean up some dirty code in page.view.php 2022-03-14 02:11:57 +09:00
Kijin Sung
7b46deb973 Fix #1886 clean up incorrect use of getMemberInfo* methods 2022-03-14 01:40:43 +09:00
Kijin Sung
05ac2ec558 Fix #1889 remove unnecessary form field with typo in name 2022-03-11 01:50:09 +09:00
Kijin Sung
7a20ab3692 Fix #1989 remove old limit of 60 chars for temporary password hash 2022-03-11 01:48:19 +09:00
Kijin Sung
9c07104eb2 Reduce file download key expiration to 5 minutes #1890 2022-03-11 01:45:13 +09:00
dewekk
072fd82dd0
Fix typo 
그룹 리스트가  캐시되지 않는 문제 수정
 2022-03-10 17:02:19 +09:00
Kijin Sung
f67568d34c Fix #1895 uninitialized variable in poll.controller.php 2022-03-07 12:00:04 +09:00
dewekk
fd3c75a2a2
getExtraVars()의 return을 항상 array()로 일관되게 수정 
DocumentModel::getExtraVars에서 항상 array()로 반환하고 있음
 2022-02-11 13:23:18 +09:00
Kijin Sung
a840e26b71 Merge branch 'pr/extra-content' into develop 2022-02-09 02:52:26 +09:00
Kijin Sung
f3ac70d3b2 Fix #1874 standalone attribute for device actions 2022-02-08 22:08:23 +09:00
Kijin Sung
fc14a04173 Clean up getMemberMenu() method 2022-02-07 21:43:35 +09:00
Kijin Sung
9e67b5b010 Determine administrator status more accurately #1851 2022-02-07 21:43:14 +09:00
Kijin Sung
4eced6daf0 Merge branch 'develop' into pr/1851 2022-02-07 21:31:45 +09:00
Kijin Sung
024c69390d #1851 보완 2022-02-07 21:31:42 +09:00
Kijin Sung
0970a7d7ad Also separate target actions when auto-inserting CAPTCHA into forms #1815 2022-02-07 21:25:45 +09:00
Kijin Sung
2dc3e5e19b Also add CAPTCHA action conditions to default board skin #1815 2022-02-07 21:07:19 +09:00
Kijin Sung
9aea72b1c3 Separate CAPTCHA actions #1815 2022-02-07 21:04:09 +09:00
Kijin Sung
37aa3dea3b Add target actions to CAPTCHA object #1815 2022-02-07 20:52:54 +09:00
Kijin Sung
dba78c46fe Make CAPTCHA work on act=dispBoardContent 2022-02-07 20:49:10 +09:00
Kijin Sung
ba33e59897 Clean up code concerning multilang document support 2022-02-07 02:22:59 +09:00
Kijin Sung
a30647d988 Fix #1853 move non-BMP character encoding before multilang juggling 2022-02-07 02:15:50 +09:00
Kijin Sung
df1438ea04 Move XSS filtering before multilang juggling 2022-02-07 02:13:59 +09:00
Kijin Sung
5a95f0c3f3 Fix #1853 encode non-BMP characters in multilang document title and content 2022-02-07 02:10:21 +09:00
Kijin Sung
23f7568e74 Separate device-related actions to own class; add procMemberUnregisterDevice 2022-02-06 22:29:14 +09:00
Kijin Sung
c04fa73156 Fix #1873 support mobile header/footer text in default mobile board skins 2022-02-06 21:40:18 +09:00
Kijin Sung
7a838f7588 Fix #1843 add extra data to push messages 2022-02-04 22:51:04 +09:00
Kijin Sung
5ed1b43786 Fix #1847 support logging in with 'email_address' or 'phone_number' input name if they are allowed as identifier 2022-02-04 22:24:03 +09:00
Kijin Sung
e5306e20c7 Fix #1858 delete auth mail if denied by administrator 2022-02-04 22:14:44 +09:00
Kijin Sung
c1e41e87ad Fix #1854 inconsistent use of point name in config screen 2022-02-04 22:08:41 +09:00
Kijin Sung
7e82d37cfa Fix PHP warnings due to unitiated variables #1866 thanks to @Erictoby 2022-02-04 01:41:56 +09:00
Kijin Sung
7e922cf2bc Fix #1867 missing tags column in default columns for document list 2022-02-01 00:24:47 +09:00
Kijin Sung
8d67f80283 Make profile image force aspect ratio setting confugurable 2022-01-28 16:14:44 +09:00
Kijin Sung
6e0b4ab688 Fix login page always redirecting to main or list page if already logged in 2022-01-28 15:31:06 +09:00
Kijin Sung
8310f82a1a Fix #1856 missing IDN support in URL validator 2022-01-27 21:37:19 +09:00
Kijin Sung
d20fd9ca47 Prevent autocomplete of mail, SMS and push API passwords 2022-01-27 21:28:30 +09:00
Kijin Sung
a9821b815d Order table creation by foreign key dependency 2022-01-27 21:20:51 +09:00
Ji Yong, Kim
75978c77fe #1838 관리자 계정의 익명 적용여부 설정 제공 2022-01-12 07:06:15 +09:00
dewekk
80797387a2
사용하지 않는 글쓰기 상태 값 숨김 
메뉴 편집 게시판 상세 설정에서 사용하지 않는 상태 값을 숨김
사이트 메뉴 편집 -> 게시판 -> 상세 설정 - 상태
 2022-01-05 14:33:15 +09:00
Kijin Sung
f334889047 Support installing/updating namespaced modules 
모듈 설치 및 업데이트 메소드를 Rhymix\Modules\모듈명\Install 클래스에
넣을 수 있도록 지원한다. 이 클래스가 있는 경우 모듈명과 동일한 클래스를
찾지 않는다. 이로써 클래스 전체를 네임스페이스화할 수 있게 되었다.
 2022-01-04 01:37:38 +09:00
Kijin Sung
411b8e4656 Only allow image extensions in menu image button 
This is NOT a security problem because this function is only accessible
to the administrator. Changing it anyway to prevent confusion.

cf. xpressengine/xe-core#2434
 2022-01-01 21:40:34 +09:00
Kijin Sung
9ff101f097
Merge pull request #1842 from shydah/fix/member-default-mskin 
default 모바일 스킨에서도 로그인 폼에 referer_url을 활용하도록 개선
 2021-12-31 15:00:24 +09:00