c91d4975ff
Make sure an email address is valid when replacing it with mailto: link
10 years ago
d54eb6c951
CS fixes
10 years ago
55d90b2f62
mailbox/listing: Make server response for large mailbox listing faster when using threaded view
...
Symptom
=======
When using roundcube with mailboxes with over 60k messages, list
view was way faster than viewing in threaded view.
Mailbox index view timing: ~360 ms
Mailbox threaded view timing: ~800 ms
Resolution
==========
Use native PHP array manipulation functions instead of rolling custom
string data reversal implementation using strpos() and substr() in a
'while' loop.
This optimization is already present in index view handler, but was missing
from threaded view.
Results after optimization
==========================
Both average out around ~360 ms response time.
10 years ago
473dc0b86d
Fix so SPECIAL-USE assignments are forced only until user sets special folders ( #4782 )
...
The old behaviour where SPECIAL-USE has always a prio can be bringed back
by setting lock_special_folders=false and adding it to dont_override.
10 years ago
86bc1f95ea
Require Net_Socket >= 1.0.12 (because of timeout=0 bugfix)
...
Conflicts:
INSTALL
10 years ago
2bfce1ae20
Refer to Github issues instead of Trac
10 years ago
7c04110698
Fix so contactlist_fields option can be set via config file
10 years ago
126d099e83
Fix PHP warning when defaults.inc.php is not readable
10 years ago
699af1e520
Protect download urls against CSRF using unique request tokens ( #1490642 )
...
Send X-Frame-Options headers with every HTTP response
Conflicts:
plugins/enigma/enigma.js
plugins/enigma/lib/enigma_ui.php
program/lib/Roundcube/rcube_message.php
10 years ago
b01689caf8
Hide DSN option in Preferences when smtp_server is not used ( #1490666 )
10 years ago
7a73635214
Fix unicode-awareness of Base64 encoding implementation in javascript
10 years ago
58c03846e7
Fix list row selection when provided uid is number not a string
10 years ago
d66793f0af
Fix missing emoticons on html-to-text conversion
10 years ago
8d047c668f
Plugin API: Added addressbook_export hook
10 years ago
3e55a2d9cb
Fix bug in long recipients list parsing for cases where recipient name contained @-char ( #1490653 )
10 years ago
a2d5db0a98
Fix bug where Archive/Junk buttons were not active after page jump with select=all mode ( #1490647 )
10 years ago
4de4438340
Fix regression where xml mode could be used to parse xhtml messages causing empty result
10 years ago
768e3e1b09
Improved SVG cleanup code
10 years ago
847c771d9e
Refactor wash_attribs() - fix regressions
10 years ago
3e4b7cd19d
Extend rcube_washtml with SVG support
10 years ago
7bbefdb63b
Fix XSS issue in SVG images handling ( #1490625 )
...
Conflicts:
CHANGELOG
10 years ago
3f6fbdcc6d
Fix random "access to this resource is secured against CSRF" message at logout ( #1490641 )
...
- this is when openssl module is not installed
10 years ago
8a53588940
Make TLS method for IMAP parameterisable.
10 years ago
f8911c2a7f
Enable use of TLSv1.1 and TLSv1.2 for IMAP.
10 years ago
fc5befff0f
Fix missing language name in "Add to Dictionary" request in HTML mode ( #1490634 )
...
Conflicts:
CHANGELOG
10 years ago
f2ff464002
Bump version to 1.1.4; update Changelog
10 years ago
7d0099f28e
Fix so drag-n-drop of text (e.g. recipient addresses) on compose page actually works ( #1490619 )
...
Conflicts:
CHANGELOG
10 years ago
89a5dcb946
Fix path traversal vulnerability in setting a skin ( #1490620 )
...
Conflicts:
CHANGELOG
10 years ago
9fbabc4668
Add INBOX to the list of folders only if no filter and no prefix was specified
10 years ago
c67e7e8f85
Fix PDF support detection in Firefox > 19 ( #1490610 )
...
Conflicts:
CHANGELOG
10 years ago
c82d09a052
Fix handling of message/rfc822 attachments on replies and forwards ( #1490607 )
...
Conflicts:
CHANGELOG
program/lib/Roundcube/rcube_message.php
program/steps/mail/compose.inc
10 years ago
6e71c958fc
Fix also charset encoding of message/rfc822 part bodies ( #1490606 )
10 years ago
2382c6e822
Fix regression in displaying contents of message/rfc822 parts ( #1490606 )
...
Conflicts:
CHANGELOG
10 years ago
b6b92c0ddd
Optionally throw 404 error when contact photo wasn't found
10 years ago
5143c47e0f
Fix rcube_utils::words_match() to work with mixed/invalid/binary content (T844)
10 years ago
9953d5c10c
Add workaround for https://bugs.php.net/bug.php?id=70757 ( #1490582 )
10 years ago
c7c09f85d9
Fix HTML sanitizer to skip <!-- node type X --> in output ( #1490583 )
10 years ago
8e7f32fddc
Small improvements in HTML to text conversion.
...
Better handling of <body> and trailing spaces, and </p><div> or <br><div>.
10 years ago
a04a16c285
Make sure list page is never set to 0 ( #1490458 )
...
This should fix the issue where after message move wrong message was
added to the list and the list counter was invalid.
10 years ago
72be74508f
Fix redundant blank lines when using HTML and top posting ( #1490576 )
10 years ago
70942083ce
After failed login wait a second to slow down brute-force attacks ( #1490549 )
10 years ago
280395a544
Fix bug where HTML messages with invalid/excessive css styles couldn't be displayed ( #1490539 )
...
Technically speaking we remove the whole CSS content when it has more than 5k lines.
10 years ago
c5acbc6c94
Fix bug where message preview was unintentionally reset on check-recent action ( #1490563 )
10 years ago
5e6f6ac539
Fix responses list update issue after response name change ( #1490555 )
10 years ago
3d9798da1f
Make brute force attacks harder by re-generating security token on every failed login ( #1490549 )
...
Or more precissely use the same we did in git-master, i.e. do not base the token on
session ID, but use random bytes instead.
10 years ago
357cd5103d
Fix issue where Content-Length of some attachments could be set to wrong value causing browser errors ( #1490482 )
10 years ago
6731d2116c
Fix XSS issue in drag-n-drop file uploads ( #1490530 )
10 years ago
73d98c4766
Fix missing HTTP_X_FORWARDED_FOR address in generated Received header
10 years ago
9f98332240
Fix so In-Reply-To header is set also for MDN receipts ( #1490523 )
10 years ago
bbef212b0e
Fallback to C locale
10 years ago
Aleksander Machniak