Thomas Bruederli
|
699af1e520
|
Protect download urls against CSRF using unique request tokens (#1490642)
Send X-Frame-Options headers with every HTTP response
Conflicts:
plugins/enigma/enigma.js
plugins/enigma/lib/enigma_ui.php
program/lib/Roundcube/rcube_message.php
|
10 years ago |
|
Aleksander Machniak
|
3e55a2d9cb
|
Fix bug in long recipients list parsing for cases where recipient name contained @-char (#1490653)
|
10 years ago |
|
Aleksander Machniak
|
4de4438340
|
Fix regression where xml mode could be used to parse xhtml messages causing empty result
|
10 years ago |
|
Aleksander Machniak
|
768e3e1b09
|
Improved SVG cleanup code
|
10 years ago |
|
Aleksander Machniak
|
847c771d9e
|
Refactor wash_attribs() - fix regressions
|
10 years ago |
|
Aleksander Machniak
|
3e4b7cd19d
|
Extend rcube_washtml with SVG support
|
10 years ago |
|
Aleksander Machniak
|
3f6fbdcc6d
|
Fix random "access to this resource is secured against CSRF" message at logout (#1490641)
- this is when openssl module is not installed
|
10 years ago |
|
Francis Russell
|
8a53588940
|
Make TLS method for IMAP parameterisable.
|
10 years ago |
|
Francis Russell
|
f8911c2a7f
|
Enable use of TLSv1.1 and TLSv1.2 for IMAP.
|
10 years ago |
|
Thomas Bruederli
|
f2ff464002
|
Bump version to 1.1.4; update Changelog
|
10 years ago |
|
Aleksander Machniak
|
9fbabc4668
|
Add INBOX to the list of folders only if no filter and no prefix was specified
|
10 years ago |
|
Aleksander Machniak
|
c82d09a052
|
Fix handling of message/rfc822 attachments on replies and forwards (#1490607)
Conflicts:
CHANGELOG
program/lib/Roundcube/rcube_message.php
program/steps/mail/compose.inc
|
10 years ago |
|
Aleksander Machniak
|
5143c47e0f
|
Fix rcube_utils::words_match() to work with mixed/invalid/binary content (T844)
|
10 years ago |
|
Aleksander Machniak
|
9953d5c10c
|
Add workaround for https://bugs.php.net/bug.php?id=70757 (#1490582)
|
10 years ago |
|
Aleksander Machniak
|
c7c09f85d9
|
Fix HTML sanitizer to skip <!-- node type X --> in output (#1490583)
|
10 years ago |
|
Aleksander Machniak
|
8e7f32fddc
|
Small improvements in HTML to text conversion.
Better handling of <body> and trailing spaces, and </p><div> or <br><div>.
|
10 years ago |
|
Aleksander Machniak
|
a04a16c285
|
Make sure list page is never set to 0 (#1490458)
This should fix the issue where after message move wrong message was
added to the list and the list counter was invalid.
|
10 years ago |
|
Aleksander Machniak
|
3d9798da1f
|
Make brute force attacks harder by re-generating security token on every failed login (#1490549)
Or more precissely use the same we did in git-master, i.e. do not base the token on
session ID, but use random bytes instead.
|
10 years ago |
|
Thomas Bruederli
|
106d47992b
|
Bump version and update changelog
|
11 years ago |
|
Aleksander Machniak
|
6564cf8a4b
|
Change code so versions of Mail_mime before and after 1.9.0 are supported
Conflicts:
program/lib/Roundcube/rcube.php
|
11 years ago |
|
Aleksander Machniak
|
dddc985ce2
|
Make Mail_mime>=1.9.0 a requirement, fix compat. errors
Conflicts:
composer.json-dist
|
11 years ago |
|
Aleksander Machniak
|
ca7fc75bec
|
Fix "washing" of style elements wrapped into many lines
|
11 years ago |
|
Aleksander Machniak
|
f3c12bf7ef
|
Get rid of Mail_mimeDecode package dependency (#1490416)
Conflicts:
CHANGELOG
composer.json-dist
|
11 years ago |
|
Aleksander Machniak
|
0e647e4aa0
|
Don't use private properties of Net_SMTP object
|
11 years ago |
|
Aleksander Machniak
|
fe82e213c3
|
Fix so E_DEPRECATED errors from PEAR libs are ignored by error_reporting change (#1490281)
|
11 years ago |
|
Aleksander Machniak
|
424c25e5bc
|
Fix bug where new messages weren't added to the list in search mode
|
11 years ago |
|
Aleksander Machniak
|
844ee296a8
|
Revert create_folder() behaviour change where the method didn't fail if folder already existed.
This should not be the default behaviour. It could likely
become an optional functionality, however we should keep the method simple.
|
11 years ago |
|
Aleksander Machniak
|
19a61851ae
|
Fix so imap folder attribute comparisons are case-insensitive (#1490466)
+ make in_array_nocase() much faster for ASCII strings
|
11 years ago |
|
Aleksander Machniak
|
612b04ac30
|
Reset internal cache index in close()
Conflicts:
program/lib/Roundcube/rcube_cache.php
program/lib/Roundcube/rcube_cache_shared.php
|
11 years ago |
|
Aleksander Machniak
|
f7dd463174
|
Fix multi-folder search result sorting by arrival date (#1490450)
|
11 years ago |
|
Aleksander Machniak
|
8cc6b18bcd
|
Get rid of array_walk() when simple foreach() can be used
|
11 years ago |
|
Aleksander Machniak
|
70422cd7a2
|
Fix Fatal error after last commit
|
11 years ago |
|
Aleksander Machniak
|
947c4dc30b
|
Fix issue when first search() argument is not an array
|
11 years ago |
|
Aleksander Machniak
|
8e68430749
|
Fix handling of non-break spaces in html to text conversion (#1490436)
|
11 years ago |
|
Aleksander Machniak
|
3a428d9571
|
Make has_(html|text)_part and first_(html|text)_part methods consistent in arguments and functionality
|
11 years ago |
|
Aleksander Machniak
|
25c457dc68
|
Modify rcube_smtp::send_mail() so it is possible to send message by
specifying only the message stream no headers, it's for cases when
the stream already contains a complete message.
|
11 years ago |
|
Aleksander Machniak
|
fec877f038
|
Fix so links with href == content aren't added to links list on html to text conversion (#1490434)
|
11 years ago |
|
Aleksander Machniak
|
92e36f6839
|
Fix race-condition in saving user preferences and loading plugin config (#1490431)
|
11 years ago |
|
Aleksander Machniak
|
cb0e0777ce
|
Fix "PHP Fatal error: Using $this when not in object context"
|
11 years ago |
|
Aleksander Machniak
|
d438147ddc
|
Fix SQL error on logout when using session_storage=php (#1490421)
|
11 years ago |
|
Aleksander Machniak
|
5529d94ed7
|
Installer: Use openssl_random_pseudo_bytes() (if available) to generate des_key (#1490402)
Conflicts:
CHANGELOG
|
11 years ago |
|
Thomas Bruederli
|
f1ae19dc6b
|
Bump version
|
11 years ago |
|
Aleksander Machniak
|
d5694ef84f
|
Fix issues when using moduserprefs.sh without --user argument (#1490399)
Conflicts:
program/include/rcmail_utils.php
|
11 years ago |
|
Aleksander Machniak
|
4d97838ed9
|
Fix font artifacts in text2html conversion (#1490353)
Use white-space:nowrap elements instead of unicode word-joiner character
|
11 years ago |
|
Aleksander Machniak
|
244a46fdea
|
Fix missing index update after write() call
|
11 years ago |
|
Aleksander Machniak
|
92459da0e2
|
Fix possible memcache/apc cache data consistency issues (#1490390)
And removed unused code
Conflicts:
program/lib/Roundcube/rcube_cache.php
program/lib/Roundcube/rcube_cache_shared.php
|
11 years ago |
|
Aleksander Machniak
|
a7d269253f
|
Workaround possible issue where some keys were ignored when deleting cached entries
by key name prefix and keys index is in inconsistent state (does not contain all keys)
|
11 years ago |
|
Aleksander Machniak
|
1d024f37cc
|
Fix mb_substitute_character() use
|
11 years ago |
|
Aleksander Machniak
|
c084a6ab8b
|
Fix rcube_charset::clean() for case when mbstring and iconv are not installed
|
11 years ago |
|
Thomas Bruederli
|
b765160fd5
|
Improve LDAP search by ignoring words order in fuzzy substring matching mode
|
11 years ago |