banananetwork
/
roundcubemail
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
8,444 Commits
14 Branches
151 Tags
76 MiB
bnet/additions
master
release-1.4
release-1.3
release-1.2
release-1.1
dev/push
release-1.0
dev-fontawesome
dev-zenmode
release-0.9
release-0.8
release-0.7
release-0.6
release-2020-06-30-13-12
1.3.13
1.4.6
1.3.12
1.4.5
1.4.4
1.3.11
1.2.10
1.4.3
1.4.2
1.4.1
1.4.0
1.4-rc2
1.3.10
1.3.9
1.4-rc1
1.3.8
1.4-beta
1.3.7
1.2.9
1.1.12
1.1.11
1.2.8
1.3.6
1.3.5
1.3.4
1.3.3
1.2.7
1.1.10
1.0.12
1.3.2
1.2.6
1.3.1
1.3.0
1.0.11
1.1.9
1.2.5
1.3-rc
1.0.10
1.1.8
1.2.4
1.3-beta
1.1.7
1.2.3
1.1.6
1.2.2
1.2.1
1.2.0
1.0.9
1.1.5
1.2-rc
1.1.2
1.0.6
v0.9.5
v0.8.7
v0.9.4
v0.9.3
v0.9.2
v0.9.1
v0.9.0
0.7.4
v0.7.4
0.8.6
v0.8.6
0.9-rc2
v0.9-rc2
v0.9-rc
v0.8.5
v0.9-beta
v0.8.4
v0.8.3
v0.8.2
v0.8.1
v0.7.3
v0.8.0
v0.8-rc
v0.7.2
v0.8-beta
v0.7.1
v0.7
v0.7-beta2
v0.7-beta1
v0.6
v0.6-rc
v0.6-beta
v0.5.4
v0.5.4@5065
v0.5.4@5062
v0.5.3
v0.5.3@4832
v0.5.2
v0.5.2@4679
v0.5.1
v0.5.1@4518
v0.5
v0.5@4408
v0.5-rc
v0.5-rc@4349
v0.5-beta
v0.5-beta@4347
v0.4.2
v0.4.2@4050
v0.4.1
v0.4.1@4045
v0.4-beta
v0.4-beta@3548
v0.3.1
v0.3.1@3081
v0.3-stable
v0.3-stable@2921
v0.3-rc1
v0.3-beta
v0.3-beta@2799
v0.2.2
v0.2.2@2495
v0.2.1
v0.2.1@2348
v0.2.2@2481
v0.2-stable
v0.2-stable@2204
v0.2-beta
v0.2-beta@1878
v0.2-beta@1877
v0.2-alpha
v0.2-alpha@1499
v0.1.1
v0.1.1@1258
v0.1-stable
v0.1-stable@1183
v0.1-rc2
v0.1-rc2@900
v0.1-rc1
v0.1-rc1@582
v0.1-beta2
1.0.0
1.0.1
1.0.2
1.0.3
1.0.4
1.0.5
1.0.7
1.0.8
1.1-beta
1.1-rc
1.1.0
1.1.1
1.1.3
1.1.4
1.2-beta
v1.0-beta
v1.0-rc
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '2a2b04eb2a'
${ noResults }
Commit Graph

1146 Commits (2a2b04eb2acc156a7812a417d2a03efccd883471)

Author SHA1 Message Date
Aleksander Machniak 2a2b04eb2a Remove redundant spaces from generated contact names 8 years ago
Thomas Bruederli f1483204c7 Bump version to 1.1.8 8 years ago
Thomas Bruederli d6ddd31a1b Better fix for XSS in style tags (9b5eee294) 8 years ago
Aleksander Machniak 9b5eee2946 Fix XSS issue in handling of a style tag inside of an svg element 8 years ago
Aleksander Machniak 11b65a905f Make sure date_create_from_format() exists 
Only for Roundcube 1.1 (this function does not exist on PHP < 5.3)
 8 years ago
Aleksander Machniak 7536739c7a Fix bug where microsecond format in logged date didn't work in some cases 8 years ago
Aleksander Machniak 6c6b299d2a Fix so microseconds macro (u) in log_date_format works (#1490446) 8 years ago
Thomas Bruederli 4c1394cf2d Bump version to 1.1.7 8 years ago
Aleksander Machniak 45a3e81653 Fix vulnerability in handling of mail()'s 5th argument 8 years ago
Thomas Bruederli 802d119153 Bump version to 1.1.6 8 years ago
Aleksander Machniak 93cb7b1fea Support contact+group searches in all relevant places (T1360) 
Before the search worked only in Addressbook, not also in Compose.
The point of the change is also to align group searches with contact searches
in that it now uses the same set of attributes. Previously groups
in Compose were searched by name only.

Conflicts:

	program/lib/Roundcube/rcube_addressbook.php
	program/lib/Roundcube/rcube_contacts.php
	program/steps/mail/search_contacts.inc
 8 years ago
Aleksander Machniak 3f10f9a2e6 Fix regression where LDAP results could be counted incorrectly when using VLV 
... broken by d08bd0a51f where we added searching in users+groups in one request
 8 years ago
Aleksander Machniak 425e31dc27 Wash position:fixed style in HTML mail for better security (#5264) 8 years ago
Aleksander Machniak 4fa70856b9 Fix handling of blockquote tags with mixed case on html2text conversion (#5363) 
Conflicts:
	CHANGELOG
 9 years ago
Aleksander Machniak d10c591a61 Merge pull request #5330 from urc/patch-1 
Do not mask fatal error when unable to load PEAR class
 9 years ago
dsoares f85227358a Avoid PHP fatal error 
After last change to file `rcube_ldap.php`, my roundcube instance was getting this error:
```
PHP Fatal error:  Cannot use object of type Net_LDAP3_Result as array in ...
```
In
```php
protected function extended_search($count = false)
```
`$result = $this->ldap->search()` returns a LDAP object (whatever package we use).
If the search returns no results (and if `$is_extended_search` is false), then it gets to line 971 trying to do a `usort()` and then a `count()` on an object, instead of an array.
 9 years ago
Aleksander Machniak ac592fd169 Searching in both contacts and groups when LDAP addressbook with group_filters option is used 
Conflicts:

	CHANGELOG
	program/steps/addressbook/search.inc
 9 years ago
urc 3e508e9587 Do not mask fatal error 
A failure to load PEAR consistutes a fatal PHP error, and @-loading it prevents that error from being logged, making debugging problems with loading the PEAR class really difficult. It should therefore be loaded without the @ sign, allowing the fatal error to end up in the logs, if it occurs.
 9 years ago
Aleksander Machniak 7d14065baa Fix XSS issue in href attribute on area tag (#5240, #5241) 
Conflicts:

	CHANGELOG
 9 years ago
Thomas Bruederli 25bc871ee7 Bump version to 1.1.5 9 years ago
Aleksander Machniak 848410042c Fix converting mail addresses with @www. into mailto links (#5197) 9 years ago
Aleksander Machniak c91d4975ff Make sure an email address is valid when replacing it with mailto: link 9 years ago
Aleksander Machniak d54eb6c951 CS fixes 9 years ago
Bostjan Skufca 55d90b2f62 mailbox/listing: Make server response for large mailbox listing faster when using threaded view 
Symptom
=======
When using roundcube with mailboxes with over 60k messages, list
view was way faster than viewing in threaded view.

Mailbox index view timing:    ~360 ms
Mailbox threaded view timing: ~800 ms

Resolution
==========
Use native PHP array manipulation functions instead of rolling custom
string data reversal implementation using strpos() and substr() in a
'while' loop.

This optimization is already present in index view handler, but was missing
from threaded view.

Results after optimization
==========================
Both average out around ~360 ms response time.
 9 years ago
Aleksander Machniak 473dc0b86d Fix so SPECIAL-USE assignments are forced only until user sets special folders (#4782) 
The old behaviour where SPECIAL-USE has always a prio can be bringed back
by setting lock_special_folders=false and adding it to dont_override.
 9 years ago
Aleksander Machniak 86bc1f95ea Require Net_Socket >= 1.0.12 (because of timeout=0 bugfix) 
Conflicts:
	INSTALL
 9 years ago
Aleksander Machniak 2bfce1ae20 Refer to Github issues instead of Trac 9 years ago
Aleksander Machniak 7c04110698 Fix so contactlist_fields option can be set via config file 9 years ago
Thomas Bruederli 699af1e520 Protect download urls against CSRF using unique request tokens (#1490642) 
Send X-Frame-Options headers with every HTTP response

Conflicts:
	plugins/enigma/enigma.js
	plugins/enigma/lib/enigma_ui.php
	program/lib/Roundcube/rcube_message.php
 9 years ago
Aleksander Machniak 3e55a2d9cb Fix bug in long recipients list parsing for cases where recipient name contained @-char (#1490653) 9 years ago
Aleksander Machniak 4de4438340 Fix regression where xml mode could be used to parse xhtml messages causing empty result 9 years ago
Aleksander Machniak 768e3e1b09 Improved SVG cleanup code 9 years ago
Aleksander Machniak 847c771d9e Refactor wash_attribs() - fix regressions 9 years ago
Aleksander Machniak 3e4b7cd19d Extend rcube_washtml with SVG support 9 years ago
Aleksander Machniak 3f6fbdcc6d Fix random "access to this resource is secured against CSRF" message at logout (#1490641) 
- this is when openssl module is not installed
 9 years ago
Francis Russell 8a53588940 Make TLS method for IMAP parameterisable. 9 years ago
Francis Russell f8911c2a7f Enable use of TLSv1.1 and TLSv1.2 for IMAP. 9 years ago
Thomas Bruederli f2ff464002 Bump version to 1.1.4; update Changelog 9 years ago
Aleksander Machniak 9fbabc4668 Add INBOX to the list of folders only if no filter and no prefix was specified 9 years ago
Aleksander Machniak c82d09a052 Fix handling of message/rfc822 attachments on replies and forwards (#1490607) 
Conflicts:

	CHANGELOG
	program/lib/Roundcube/rcube_message.php
	program/steps/mail/compose.inc
 9 years ago
Aleksander Machniak 5143c47e0f Fix rcube_utils::words_match() to work with mixed/invalid/binary content (T844) 9 years ago
Aleksander Machniak 9953d5c10c Add workaround for https://bugs.php.net/bug.php?id=70757 (#1490582) 9 years ago
Aleksander Machniak c7c09f85d9 Fix HTML sanitizer to skip <!-- node type X --> in output (#1490583) 9 years ago
Aleksander Machniak 8e7f32fddc Small improvements in HTML to text conversion. 
Better handling of <body> and trailing spaces, and </p><div> or <br><div>.
 9 years ago
Aleksander Machniak a04a16c285 Make sure list page is never set to 0 (#1490458) 
This should fix the issue where after message move wrong message was
added to the list and the list counter was invalid.
 9 years ago
Aleksander Machniak 3d9798da1f Make brute force attacks harder by re-generating security token on every failed login (#1490549) 
Or more precissely use the same we did in git-master, i.e. do not base the token on
session ID, but use random bytes instead.
 9 years ago
Thomas Bruederli 106d47992b Bump version and update changelog 9 years ago
Aleksander Machniak 6564cf8a4b Change code so versions of Mail_mime before and after 1.9.0 are supported 
Conflicts:
	program/lib/Roundcube/rcube.php
 9 years ago
Aleksander Machniak dddc985ce2 Make Mail_mime>=1.9.0 a requirement, fix compat. errors 
Conflicts:
	composer.json-dist
 9 years ago
Aleksander Machniak ca7fc75bec Fix "washing" of style elements wrapped into many lines 9 years ago