a4525d31b2
replace FALSE with false so that static analyzer shuts up about it
4 years ago
daaba66f85
Merge branch 'escape-install-part-two' of JustAMacUser/tt-rss into master
4 years ago
9c3cf60592
More fixes when installer generates config file.
...
* Use single quotes in config.php when when defining database values so PHP doesn't interpret `$` as a variable (mostly for the password constant).
* Use `addcslashes` instead of `addslashes` and only escape backslash and single quotes.
* Do not convert DB_PORT to integer if leaving it blank (the default).
4 years ago
0fb5267d07
During install, HTML encode POST data for forms.
4 years ago
56e16a8d85
Escape user-defined values during installation.
4 years ago
4ab3854aed
don't generate default.css, replace with themes/light.css as a default root CSS file
4 years ago
3cae6fe6ad
Fixed "Using when not in object context" error when installer query fails.
5 years ago
16a9bdc387
make_password: generate longer passwords by default, use better random function if available
5 years ago
54c1b5c611
fill in some missing doctypes; use short doctype where it wasn't
5 years ago
41e88f64b2
installer: use dojo button for config save
5 years ago
5ce55faa3b
installer: reduce margins; misc fixes
5 years ago
7716f82c2a
installer: dojoify
5 years ago
005b90cede
installer CSS tweaks
5 years ago
c11f32ac38
center and rework some utility screens
5 years ago
c4869cd573
if PHP_VERSION check fails, show current version
6 years ago
db4b6b9757
Check for PHP 5.6 minimum everywhere.
6 years ago
52dbd55c7b
Fix undefined index warning in installation.
6 years ago
f8db5bb4db
installer: use PDO, improve wording for some notices
...
PDO wrapper: allow working with blank DB_HOST
7 years ago
09bc54c690
further stylesheet simplification related fixes
7 years ago
9dd336a2c3
generate base css files using lessc
7 years ago
e234ac8dcb
$_SERVER['HTTPS'] can be exists and 'off' for non-https connectios
7 years ago
9f7bd151c6
hopefully unify handling of server HTTPS variables where needed, use scheme based on SELF_URL_PATH otherwise
7 years ago
f6bcb5c606
Merge branch 'subscribe-idn-feed' into 'master'
...
Subscribe to feed with Internationalized Domain Name
Currently you cannot subscribe to feeds on hosts with internationalized domain names (IDNA) within tt-rss. You need to manually convert them to punycode to subscribe to them.
This patch adds code to detect IDNA and convert them to punycode in fix_url() if possible on the system. This requires PHP IDN functions (e.g. on Debian Jessie this needs php5-intl to be installed), so a notice is added to the installer sanity check.
See merge request !37
7 years ago
17a8e61d2a
deprecate encrypted feed passwords because mcrypt is getting removed from php 7.1
...
1. transparent decryption for existing installs stays for the time being
2. new passwords are not going to be encrypted even if FEED_CRYPT_KEY is defined
3. added update.php --decrypt-feeds to bulk decrypt existing encrypted passwords
4. updated install to not auto-generate crypt key
5. added warning to config.php-dist
8 years ago
62958fe9dc
convert to punycode for feed on idn hostname
8 years ago
e54eb40a8c
remove support for legacy mysql driver
8 years ago
bfd902bbcc
sanity_check: enforce minimum php version (5.4)
9 years ago
aa03bac424
allow NO_CURL to disable several CURL-related checks in plugins
...
af_readability: skip http content-type checking when open_basedir is enabled
9 years ago
4c46702672
drop support for (obsolete, removed from recent php versions) php safe_mode setting
...
remove ugly hacks for curl + open_basedir combination breaking support for http redirects
9 years ago
9044e2e062
installer: use dijit styles
9 years ago
6759dde1dd
minor css updates
9 years ago
5d67842961
Removing required attribute from database password field
10 years ago
5a801bd6f0
load stylesheets/scripts using helper functions in a few more places
10 years ago
81c8a93eaf
define define_default() in installer
11 years ago
2f20dd58d2
integrate silk icons by Mark James
11 years ago
3a3aec221a
fixes "undefined index" notice
11 years ago
be9d5df19b
hide warning when checking for tt-rss tables if tables are not present
11 years ago
50d5645b9f
bugfix: DB_PORT was not used in one of db_connect calls
11 years ago
4e46e90ef7
installer: use mysqli_error when using mysqli ( closes #696 )
11 years ago
5bbc4bb4b0
move stylesheets to css/, reference default tt-rss stylesheets from
...
default.css to make custom themes easier
11 years ago
6f7798b643
Fixing bugs found by static analysis
11 years ago
92c9a20cf5
update installer mysqli_connect to only use port if defined
11 years ago
3c200461f8
more notice css tweaks
11 years ago
bbffc43e4f
actually check for DB_PORT in installer, add better hints and use mysqli if available
11 years ago
ae35bb87eb
support mysqli when available
11 years ago
044cff2d74
implement basic feed authentication parameter encryption in the database (FEED_CRYPT_KEY)
11 years ago
3306daecf4
implement upload-related support for open_basedir
11 years ago
196464eef2
installer: remove check for pubsubhubbub which is never defined
11 years ago
1fcb6baa38
installer: remove shorttag
11 years ago
a55857db50
installer: mention lack of curl
11 years ago
Andrew Dolgov