28e3da2325
Disable Print button for pdf attachments in Firefox ( #5125 )
...
Mozilla's PDF.js viewer does not allow printing from host page.
We try to detect such situation and disable the button to minimize
user confusion.
9 years ago
699af1e520
Protect download urls against CSRF using unique request tokens ( #1490642 )
...
Send X-Frame-Options headers with every HTTP response
Conflicts:
plugins/enigma/enigma.js
plugins/enigma/lib/enigma_ui.php
program/lib/Roundcube/rcube_message.php
10 years ago
3e4b7cd19d
Extend rcube_washtml with SVG support
10 years ago
7bbefdb63b
Fix XSS issue in SVG images handling ( #1490625 )
...
Conflicts:
CHANGELOG
10 years ago
357cd5103d
Fix issue where Content-Length of some attachments could be set to wrong value causing browser errors ( #1490482 )
10 years ago
84af0db103
Fix bug where some files could have "executable" extension when stored in temp folder ( #1490377 )
11 years ago
c14c21472e
Fix redirct URL for attachments loaded in an iframe ( #1490191 )
11 years ago
26c9930103
get_part_content() -> get_part_body()
11 years ago
c8468c2960
Really fix unwanted warning on BMP attachments ( #1490269 )
11 years ago
afd5e4f8a9
Fix needless security warning on BMP attachments display ( #1490282 )
11 years ago
556d288754
Fix false warning when opening attached text/plain files ( #1490241 )
11 years ago
c6efcf5e6d
Fix blocked.gif image usage with assets_dir set
11 years ago
c839403c19
More get_folder() -> $MESSAGE->folder
11 years ago
48ba4414b3
Fix download of attachments that are part of TNEF message ( #1490091 )
...
Rcube_message_part::body content should never be modified by code out of the rcube_message.
Added convenient rcube_message::get_part_body() method, making rcube_message::get_part_content() deprecated.
11 years ago
6459944860
Don't read attachment contents from cache when downloading. Cache might have line endings converted
12 years ago
8968f9543f
Support image operations with Imagick extension ( #1489734 )
12 years ago
5515dbb970
Remove IE<7 specific code
12 years ago
c97625e02a
CS fixes
12 years ago
6b2b2eca5f
Remove deprecated functions (these listed in bc.php file) usage
12 years ago
8c5f405587
Set real content-type for file downloads ( #1489439 )
12 years ago
d1a17029a3
Better handling of fopen() errors
12 years ago
ae853367ed
Fix downloading binary files with (wrong) text/* content-type ( #1489267 )
13 years ago
d59a8d29d6
Validate all text attachments not only text/plain. This fixes invalid
...
warning message for a case when pdf attachment is defined as text/html.
See #1489267 .
13 years ago
ad052b81d8
Fix so filename label is "Name" not "Display name"
13 years ago
eaf3832e40
Add some displayed attachment info into javascript environment
13 years ago
0494288999
Improved/unified attachment preview page
...
Implemented attachment print button
13 years ago
3375a681eb
Fix problem where security warning was displayed for valid images with image/jpg type ( #1489097 )
13 years ago
d7fcd8ce42
Fix possible collision in generated thumbnail cache key ( #1489069 )
13 years ago
a021d6f187
Skip filename suffix check for embedded images; return blocked.gif instead of HTML warning when embedded ( #1489029 )
13 years ago
139635f189
Fix thumbnail size when GD extension is used for image resize ( #1488985 )
13 years ago
7c851e669e
Don't try to print file extension in a warning message if it's not available
13 years ago
921115ed56
Ignore file extension difference for text/plain attachments ( #1488891 )
13 years ago
1730cf8d7b
Load a default stylesheet (embed.css) from skin in plain html pages (e.g. attachment warnings and html messages)
13 years ago
1ef4033b8d
Also block remote images in HTML part view ( #1488827 )
13 years ago
d9f180adf9
Minor IE7/8 fixes
13 years ago
be72fb3597
Unified attachments filenames handling for message parts without a filename
13 years ago
5f0bd1fcb4
Make html button-links work in IE
13 years ago
31521613e4
Append filename extension if missing
13 years ago
c7ff6ec2cb
Add workaround for IE<=8 bug where Content-Disposition:inline was ignored ( #1488844 )
13 years ago
8afbc8aeea
Fix attachment Content-Length for in-memory files ( #1488844 )
13 years ago
c14b337450
Fix XSS vulnerability using Flash files ( #1488828 ) by comparing mimetypes and filename extensions
13 years ago
03149131f7
New feature: display attached images as thumbnails below message body
13 years ago
4fd5b62194
Add Content-Length for attachments where possible ( #1485478 )
14 years ago
19cc5b91c9
Display Tiff as Jpeg in browsers without Tiff support ( #1488452 )
14 years ago
041c93ce0b
Removed $Id$
14 years ago
4bfe4ec22a
Remove last instance of storage_connect() with possible performance
...
improvement when a message part body is in cache
14 years ago
b4f95a9387
- Fix attachment name regression ( #1488446 )
14 years ago
0c259682f6
- Merge devel-framework branch, resolved conflicts
14 years ago
d1e3430bfa
Pass message UID to 'message_part_get' hook
14 years ago
7fe3811c65
Changed license to GNU GPLv3+ with exceptions for skins and plugins
14 years ago
Aleksander Machniak