GNUsocial/gnu-social
4
0
Fork 1
Code Issues Releases Wiki Activity
gnu-social/actions
History
Evan Prodromou 4272da4e9e CSRF protection for subscription/unsubscription 
darcs-hash:20080829051104-84dde-9bd23c28c2c8a720046060a33ff3e5f246c47116.gz
2008-08-29 01:11:04 -04:00
..
accesstoken.php
Merge conflicts and kill a whole lot of trailing whitespace on lines.
2008-07-09 18:46:30 -04:00
all.php
lost the nickname changing from profile to user
2008-07-22 13:36:13 -04:00
allrss.php
don't get a count anywhere
2008-07-22 12:32:00 -04:00
api.php
Twitter-compatible API - Added /statuses/followers to methods that
2008-08-19 15:54:31 -04:00
avatar.php
add CSRF protection to avatar
2008-08-28 22:39:19 -04:00
avatarbynickname.php
Colapse a lot of strings to make like easier for translators and more consisitant for users
2008-07-13 01:37:48 -04:00
confirmaddress.php
base class is_readonly() now returns false by default
2008-07-22 17:20:56 -04:00
deletenotice.php
show error in delete notice
2008-08-28 22:55:59 -04:00
doc.php
Convert _t() to _() for gettext.
2008-07-08 05:45:31 -04:00
emailsettings.php
Resolve conflicts after pull from evan
2008-07-21 09:56:37 -04:00
finishaddopenid.php
base class is_readonly() now returns false by default
2008-07-22 17:20:56 -04:00
finishimmediate.php
Merge conflicts and kill a whole lot of trailing whitespace on lines.
2008-07-09 18:46:30 -04:00
finishopenidlogin.php
add a token for CSRF avoidance
2008-08-28 23:48:54 -04:00
finishremotesubscribe.php
notify user of remote subscriptions
2008-08-24 16:05:17 -04:00
foaf.php
base class is_readonly() now returns false by default
2008-07-22 17:20:56 -04:00
imsettings.php
CSRF protection in imsettings.php
2008-08-28 23:57:07 -04:00
login.php
base class is_readonly() now returns false by default
2008-07-22 17:20:56 -04:00
logout.php
base class is_readonly() now returns false by default
2008-07-22 17:20:56 -04:00
newnotice.php
debug for content too long
2008-08-17 11:24:19 -04:00
noticesearch.php
emergency fixup for bad notices in notice search
2008-08-11 13:53:18 -04:00
noticesearchrss.php
Sort notices by date then id so they are in the correct order when there are multiple in the same second
2008-07-13 02:50:09 -04:00
openidlogin.php
swap around some stuff to show the form correctly on a CSRF error in openidlogin
2008-08-29 00:09:25 -04:00
openidsettings.php
CSRF protection in openidsettings
2008-08-29 00:29:08 -04:00
opensearch.php
Get text wrappers around strings so they can be in the native language of the site and use fancy urls if appropriate
2008-07-21 05:01:10 -04:00
password.php
return after failed token
2008-08-28 22:37:31 -04:00
peoplesearch.php
A couple more notice errors
2008-07-19 22:55:46 -04:00
postnotice.php
fix error storing uris of remote notices
2008-08-26 17:11:08 -04:00
profilesettings.php
add csrf protection to profile settings
2008-08-29 00:39:09 -04:00
public.php
local-only is optional on public timeline
2008-08-22 17:03:07 -04:00
publicrss.php
local-only is optional on public timeline
2008-08-22 17:03:07 -04:00
publicxrds.php
base class is_readonly() now returns false by default
2008-07-22 17:20:56 -04:00
recoverpassword.php
typo in forgotten password string
2008-08-17 12:33:24 -04:00
register.php
move user registration to a single static method
2008-08-13 20:20:38 -04:00
remotesubscribe.php
be a little more liberal for sites that accidentally put whitespace before the xml decl
2008-08-23 21:38:03 -04:00
replies.php
no such user in replies.
2008-07-17 08:42:15 -04:00
repliesrss.php
Colapse a lot of strings to make like easier for translators and more consisitant for users
2008-07-13 01:37:48 -04:00
requesttoken.php
request token is not readonly
2008-08-23 21:17:06 -04:00
shownotice.php
Publish MicroIDs for email and mpp on profile and notice pages.
2008-07-21 08:00:36 -04:00
showstream.php
CSRF protection for subscription/unsubscription
2008-08-29 01:11:04 -04:00
smssettings.php
CSRF protection in smssettings.php
2008-08-28 23:51:18 -04:00
subscribe.php
CSRF protection for subscription/unsubscription
2008-08-29 01:11:04 -04:00
subscribers.php
every user is subscribed to themselves
2008-07-22 10:41:54 -04:00
subscriptions.php
every user is subscribed to themselves
2008-07-22 10:41:54 -04:00
tag.php
make tag dropoff configurable
2008-08-11 13:58:20 -04:00
twitapiaccount.php
Twitter-compatible API - RESTfulness checks as per Twitter
2008-08-19 17:49:23 -04:00
twitapiblocks.php
Twitter-compatible API - running all strings through gettext() now
2008-08-18 20:29:03 -04:00
twitapidirect_messages.php
Twitter-compatible API - running all strings through gettext() now
2008-08-18 20:29:03 -04:00
twitapifavorites.php
Twitter-compatible API - running all strings through gettext() now
2008-08-18 20:29:03 -04:00
twitapifriendships.php
Twitter-compatible API - RESTfulness checks as per Twitter
2008-08-19 17:49:23 -04:00
twitapihelp.php
Twitter-compatible API - running all strings through gettext() now
2008-08-18 20:29:03 -04:00
twitapinotifications.php
Twitter-compatible API - running all strings through gettext() now
2008-08-18 20:29:03 -04:00
twitapistatuses.php
local-only is optional on public timeline
2008-08-22 17:03:07 -04:00
twitapiusers.php
Twitter-compatible API - running all strings through gettext() now
2008-08-18 20:29:03 -04:00
unsubscribe.php
CSRF protection for subscription/unsubscription
2008-08-29 01:11:04 -04:00
updateprofile.php
base class is_readonly() now returns false by default
2008-07-22 17:20:56 -04:00
userauthorization.php
better error reporting in user authorization action
2008-08-22 17:21:11 -04:00
userbyid.php
added conneg for action/userbyid so that foaf can be delivered to clients that want application/rdf+xml
2008-08-01 12:46:23 -04:00
userrss.php
Sort notices by date then id so they are in the correct order when there are multiple in the same second
2008-07-13 02:50:09 -04:00
xrds.php
base class is_readonly() now returns false by default
2008-07-22 17:20:56 -04:00