thomascube
44a352b7b8
Backport r5375 to release branch
13 years ago
thomascube
831fde154d
Set version strings to 0.7-beta1
13 years ago
alecpl
3703021713
- Plugin API: added 'ready' hook ( #1488073 )
13 years ago
thomascube
502436dad0
We're on the road towards 0.7 now
13 years ago
alecpl
9e54e6fd45
- Make the whole PHP output non-cacheable ( #1487797 )
13 years ago
thomascube
6354da5b8c
Fix r5117: don't show error on default login page
13 years ago
thomascube
886aafe167
Don't rely on rcmail->task for session error check; use _REQUEST data instead
13 years ago
thomascube
94c0743cba
Don't show session error message on logout
13 years ago
thomascube
fcc7f861b1
Log session validation errors; keep error message when redirecting to login after session error
13 years ago
thomascube
28ac5cada2
Let plugins hook into keep-alive requests
14 years ago
thomascube
87e58c7a92
Default action for plugin tasks is 'index'
14 years ago
alecpl
4351f7cd66
- Improve performance by including files with absolute path ( #1487849 )
14 years ago
thomascube
ec045b0a24
Revert r4609 and use stateless request tokens; no need to save them in session and thus no keep-alive necessary; fixes #1487829
14 years ago
thomascube
32b11d325e
Keep session alive while showing login page (request token is stored in session data)
14 years ago
alecpl
4cfe66f42f
- small code cleanup
14 years ago
alecpl
c294eaa3f2
- Performance improvement: Remove redundant DELETE query (for old session deletion) on login
14 years ago
thomascube
de62f02eed
Also check referer on logout action
14 years ago
thomascube
a77cf2292b
Add optional referer check to prevent CSRF in GET requests
14 years ago
thomascube
784a425e07
protect login form submission from CSRF using a request token
14 years ago
thomascube
cf2da2f9aa
Improve session validity check with changing auth cookies; reduce writes to DB; better phpdoc
14 years ago
thomascube
32234d71d3
Better fix for login redirect, don't force mail task
14 years ago
alecpl
68d2d54100
- Move action files map from index.php to steps' func.inc files
14 years ago
thomascube
88007cf060
Fix login redirect issues ( #1487686 )
14 years ago
thomascube
f5e7b35307
Bumbed version; Roundcube development is not Switzerland only
14 years ago
thomascube
c3be8ed64c
Make sure an existing session is killed/replaced when submitting login form
14 years ago
alecpl
af3c045ecf
- New Folder Manager UI
...
- Fix invalid Request when creating a folder (#1487443 )
- Add folder size and quota indicator in folder manager (#1485780 )
- Add possibility to move a subfolder into root folder (#1486791 )
14 years ago
alecpl
5f560ee7a0
- Plugin API: Add 'pass' argument in 'authenticate' hook ( #1487134 )
14 years ago
alecpl
6d99f99576
- Handle situation when $IMAP object isn't initialized on log in
14 years ago
alecpl
8fcc3e1ad6
- Improved IMAP errors handling
14 years ago
alecpl
249db18585
- Fix "Server Error! (Not Found)" when using utils/save-pref action ( #1487023 )
14 years ago
alecpl
e019f2d0f2
- s/RoundCube/Roundcube/
14 years ago
alecpl
614c642a4b
- Fix list_cols is not updated after column dragging ( #1486999 )
...
- Improved save-pref action and moved to separate file in utils task directory
- Improved http_post/http_request to support first argument in form 'task/action'
14 years ago
thomascube
4859fedb92
Fix unit tests + update version
14 years ago
alecpl
b25dfd0913
- removed PHP closing tag
15 years ago
thomascube
05a631a43c
Allow plugins to register their own tasks
15 years ago
alecpl
3544558f2d
- Add HTTP_X_REAL_IP and HTTP_X_FORWARDED_FOR to successful logins log ( #1486441 )
15 years ago
thomascube
aa12df20e4
Add server-side plugin hooks to address group functions + better action names
15 years ago
thomascube
c0297f4172
Asynchronously expand contact groups + skip count queries in autocompletion mode + check for the existance of contactgroups table
15 years ago
thomascube
3baa72a62f
Implement group renaming/deleting + use more consistent names for commands and actions ( #1486587 )
15 years ago
thomascube
a61bbb24aa
Added basic contact groups feature
15 years ago
thomascube
f52c936f4d
Merged devel-threads branch (r3066:3364) back into trunk
15 years ago
alecpl
929a508d80
- Improve performance by avoiding unnecessary updates to the session table ( #1486325 )
15 years ago
alecpl
64608bf2ef
- Password: Make passwords encoding consistent with core, add 'password_charset' global option ( #1486473 )
15 years ago
alecpl
7481dd903e
- don't set task for login_after hook
15 years ago
alecpl
48bc52e835
- Fix imap_init hook broken in r3258 ( #1486493 )
15 years ago
alecpl
9b94eb6415
- Fix setting task name according to auth state. So, any action before user
...
is authenticated is assigned to 'login' task instead of 'mail'. Now binding
plugins to 'login' task is possible and realy usefull. It's also possible
to bind to all tasks excluding 'login'.
15 years ago
alecpl
10eedbe75a
- add file/line definitions to raise_error() calls
15 years ago
alecpl
76c94b6ba8
- Fix 'force_https' to specified port when URL contains a port number ( #1486411 )
15 years ago
alecpl
5818e44345
- Fix $_SERVER['HTTPS'] check for SSL forcing on IIS ( #1486243 ) + fix port check
15 years ago
thomascube
f5d61d845f
Revert r3038 and allow to specify the port as value of force_https
15 years ago