fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-06 18:21:39 +09:00
Code Issues Projects Releases Packages Wiki Activity
20770 commits 3 branches 212 tags 117 MiB
Commit graph

1492 commits

Author SHA1 Message Date
Kijin Sung
6b956d2e5b Allow admin to report (declare) even if it's the same IP 2021-02-10 15:56:47 +09:00
Kijin Sung
e8e6546067 Fix #1608 leave copy of notice in board manager's message box 2021-02-10 00:49:52 +09:00
Kijin Sung
9c77f9593d Fix warning in PHP 8.0 2021-02-09 23:53:00 +09:00
Kijin Sung
958c7a7ce0 Don't join document_extra_vars again if not sorting by extra_vars 2021-02-09 22:00:40 +09:00
Kijin Sung
ebe806f7a5 Fix warnings in PHP 8.0 2021-02-07 15:29:28 +09:00
BJRambo
04147e7606 Fix #1599 카테고리 권한을 검사하지 않던 문제 고침 2021-02-03 20:05:45 +09:00
Kijin Sung
2270cf2729 Fix #1593 always include ORDER BY column in the list of columns to select 2021-01-31 21:57:59 +09:00
Kijin Sung
2ac747bf70 Fix #1592 include extra_sort.value in column list 2021-01-31 17:32:36 +09:00
Kijin Sung
0873b371a1 Change some other instances of problematic GROUP BY into SELECT DISTINCT 2021-01-31 16:27:37 +09:00
Kijin Sung
b43fbc0ace Use DISTINCT instead of GROUP BY in extra vars query #1592 2021-01-31 16:14:36 +09:00
Kijin Sung
2d7a4069b0 Fix warning in PHP 8.0 2021-01-31 01:44:57 +09:00
Kijin Sung
41ed1d7bec Fix importer module not saving documents/comments with empty password fields 2021-01-29 15:01:26 +09:00
Kijin Sung
96eae68105 Reapply "Merge pull request #1580 from YJSoft/patch-1" 
This reverts commit 9e55447045.
 2021-01-29 10:40:05 +09:00
BJRambo
9e55447045 Revert "Merge pull request #1580 from YJSoft/patch-1" 
This reverts commit 73822f385b, reversing
changes made to 1ec6e1ec7a.
 2021-01-25 10:57:16 +09:00
YJSoft
8affaba53b
Fix #1579 remove unnecessary $is_admin set 2021-01-25 09:55:45 +09:00
Kijin Sung
069ac6f679 Shorten indexed varchar columns, remove meaningless size on some integer columns 2021-01-19 21:46:44 +09:00
Kijin Sung
71d71a886c Set 'fill' as default thumbnail method 2021-01-19 17:42:00 +09:00
Kijin Sung
68ecf64a6b Add user-configurable index hints to getComment/DocumentListByMemberSrl 2021-01-15 00:40:39 +09:00
Kijin Sung
88907fa9df Fix #1505 duration limit to combined boards 
- 통합게시판 글을 모을 기간을 설정할 수 있도록 함
- 통합게시판 소속이 아니거나 기간을 벗어나는 글 발견시 실제 게시판 주소로 redirect
 2021-01-08 20:03:33 +09:00
Kijin Sung
4dcdb9e4bd Fix various warnings in PHP 8.0 2021-01-08 00:27:00 +09:00
Kijin Sung
53c296d1a1 Fix unmatched %s in sprintf() 2021-01-05 23:17:09 +09:00
BJRambo
9467dc817a
Merge pull request #1514 from shydah/fix/declared-popup 
신고 내역을 세션에 기록하는 방식 개선
 2020-12-25 00:51:54 +09:00
BJRambo
df08a976fc Change obj to args variable for notice query 2020-12-24 19:10:50 +09:00
BJRambo
dab51ba48e Add to trigger for notice list 2020-12-24 18:43:15 +09:00
Chanyoung Oh
5fa290aaf1 Fix #1513 while taking advantage of session cache 2020-12-23 13:48:08 +00:00
Chanyoung Oh
3e7f2e291c Fix #1513 2020-12-22 14:02:11 +00:00
Kijin Sung
49ea6700b3 Fix warnings in PHP 8.0 2020-12-22 22:42:31 +09:00
Kijin Sung
9732290515 Fix warnings in PHP 8.0 2020-12-22 22:37:20 +09:00
Kijin Sung
fbc06808ed Fix missing page_navigation on first page of saved document list 2020-12-19 22:53:41 +09:00
Kijin Sung
b0f66a36c5 Convert all instances of _XE_PATH_, __XE_VERSION__, etc. to Rhymix constants 
_XE_PATH_ -> RX_BASEDIR
__XE_VERSION__ -> RX_VERSION
 2020-12-18 15:21:23 +09:00
Kijin Sung
0b265cde21 Make all addons, modules, and widgets follow RX_VERSION 2020-12-18 00:20:33 +09:00
Kijin Sung
6dbf2b4ebb Fix #734 use exact search for tag 2020-12-16 21:44:29 +09:00
Kijin Sung
bfce45e611 Fix #1490 error in PHP 8.0 2020-12-16 20:37:23 +09:00
Kijin Sung
367635d21b Fix #1341 calculate point difference accurately when files are deleted and re-attached 2020-12-15 23:31:00 +09:00
Kijin Sung
2a5d99b2df Fix #1487 incorrect search parameter when member_srl is 0 2020-12-15 18:17:43 +09:00
Kijin Sung
49923844b2 Various fixes to remove warnings in PHP 8.0 2020-12-15 00:18:42 +09:00
Kijin Sung
e2c7a3eefe Exclude scripts and styles from document summary 
관리자 권한으로 문서에 스크립트나 스타일을 넣어 놓은 경우
getSummary()에서 해당 내용이 표시되는 문제 수정

<style>CSS</style> 구조로 입력되므로 strip_tags() 사용시
앞뒤의 태그만 삭제되고 중간에 있는 CSS가 그대로 노출될 수 있음.
 2020-11-30 21:39:34 +09:00
Kijin Sung
2d6a175b19 Fix #1468 inconsistent use of REMOTE_ADDR vs. RX_CLIENT_IP 2020-11-18 00:17:49 +09:00
BJRambo
b675813de2
Merge pull request #1462 from bjrambo/pr/attechfile 
게시글과 댓글을  작성 및 수정시 대기된 파일을 공개하는 방식을 변경
 2020-11-11 21:28:42 +09:00
BJRambo
2cb477fd55 게시글과 댓글을 작성 및 수정시 대기된 파일을 공개하는 방식을 변경 
파일이 대기모드에서 공개할때 트리거에서 직접 호출 하는 방식으로 변경
 2020-11-11 15:06:00 +09:00
Ji Yong, Kim
730d43d215 Fix #1453 2020-11-01 16:56:41 +09:00
Kijin Sung
b354d8af49 Revert 61f6456b and add a warning instead 2020-10-30 15:57:18 +09:00
Kijin Sung
52729cf7ee Provide DocumentController::clearDocumentCache() 2020-10-30 01:24:29 +09:00
Kijin Sung
61f6456b6c Remove support for $is_admin in getDocument(), getDocuments(), getComment() 
단순히 문서나 댓글을 불러오는 동작에서는 $is_admin 변수를 무시하도록 합니다.
서드파티 자료에서 사용할 경우 해당 문서나 댓글에 관리자 권한이 부여되어 버려서
보안취약점이 발생할 수 있기 때문입니다.

실제로 많은 서드파티 자료들이 이 변수가 왜 필요한지, 어떤 기능을 하는지
이해하지 못하는 상태로 무작정 복붙하여 사용하고 있습니다.
이러한 서드파티 자료에서 이 패치로 인해 오작동이 발생할 경우에는
그 때 가서 적절한 조치를 취하도록 하겠습니다.

getDocumentListByMemberSrl(), getCommentListByMemberSrl(), getCommentList() 등
일부 메소드에서는 이미 $is_admin 변수를 무시하도록 되어 있습니다.
 2020-10-28 00:30:39 +09:00
Kijin Sung
5c99a23e68 Remove unnecessary check using undeclared variable $is_admin 2020-10-28 00:25:35 +09:00
Kijin Sung
c3cc12008e Always display document and comment at top, in that order, in additions setup screen 2020-10-27 21:46:08 +09:00
Kijin Sung
4765919d1f Fix #1444 duplicate id attribute in extra settings 2020-10-27 21:43:27 +09:00
Kijin Sung
88a5193523 Fix new documents being marked as notice 2020-10-05 20:49:31 +09:00
Kijin Sung
0177ee3abe Fix #1411 placeholders and descriptions on extra_vars fields 2020-10-02 20:31:33 +09:00
Kijin Sung
a25497c567 Add caching to ModuleModel::getModuleInfoByDocumentSrl() 2020-10-02 01:52:31 +09:00