summaryrefslogtreecommitdiffstats
path: root/web
AgeCommit message (Expand)AuthorFilesLines
2013-03-26Release 2.2.0v2.2.0Lukas Fleischer1-1/+1
2013-03-26Use minified typeahead JS from archwebLukas Fleischer4-313/+3
2013-03-25Show hint if password is empty during loginLukas Fleischer1-2/+31
2013-03-24Implement IP banning for user registration and user logincanyonknight1-1/+34
2013-03-21Return 404 error page if invalid package ID is usedLukas Fleischer1-0/+6
2013-03-21Save last login IP addressLukas Fleischer1-1/+2
2013-03-21process_account_form(): Highlight errorsLukas Fleischer1-1/+1
2013-03-19Enforce e-mail validation during registrationLukas Fleischer2-4/+4
2013-03-19process_account_form(): Allow using empty passwordsLukas Fleischer1-13/+25
2013-03-19Move reset key submission to a separate functionLukas Fleischer2-17/+31
2013-03-19Fix typo in delete permission warningConnor Behan1-1/+1
2013-03-18Release 2.1.0v2.1.0Lukas Fleischer1-1/+1
2013-03-09pkgsubmit.php: Parse .AURINFO metadataLukas Fleischer1-4/+33
2013-03-05pkgsubmit.php: Move URL protocol check downLukas Fleischer1-14/+12
2013-03-05pkgsubmit.php: Simplify package name validationLukas Fleischer1-12/+6
2013-02-10Fix default selection on the account edit pageLukas Fleischer2-4/+4
2013-02-10Remove unneeded database connection callscanyonknight4-5/+0
2013-02-10Remove checks before calling connection methodcanyonknight4-229/+76
2013-02-10Remove documentation references to database parametercanyonknight4-71/+0
2013-02-10Remove unnecessary database connection parameter from all functionscanyonknight8-131/+132
2013-02-10Add database wrapper class and new connection methodcanyonknight10-102/+112
2013-01-30Merge branch 'maint'Lukas Fleischer4-15/+30
2013-01-30acctfuncs.inc.php: Change wording of account editing messagecanyonknight1-1/+1
2013-01-30Clear a user's active sessions following account suspensioncanyonknight1-0/+19
2013-01-30Replace permission check code with can_edit_account()canyonknight1-5/+2
2013-01-30acctfuncs.inc.php: Change return type of valid_username functioncanyonknight1-6/+5
2013-01-30aur.inc.php: Fix PHP undefined index notice for AURSIDcanyonknight1-1/+1
2013-01-30pkg_details.php: Add missing translatable stringcanyonknight1-2/+2
2013-01-19Merge branch 'maint'Lukas Fleischer4-7/+2
2013-01-19stats.inc.php: Remove unnecessary account type lookupcanyonknight1-3/+0
2013-01-19user_table.php: Remove unused link parametercanyonknight1-1/+1
2013-01-19Remove double htmlspecialcharsMarcel Korpel1-2/+0
2013-01-19We live in 2013 nowMarcel Korpel1-1/+1
2013-01-19Add description meta-element to package pagesMarcel Korpel4-35/+62
2013-01-19Implemented typeahead suggestMarcel Korpel4-2/+354
2012-12-22Merge branch 'maint'Lukas Fleischer1-1/+1
2012-12-22Changed 'Dutch' to 'Nederlands'Marcel Korpel1-1/+1
2012-12-07Merge branch 'maint'Lukas Fleischer2-5/+39
2012-12-07Split package flagging and unflagging into separate functionscanyonknight@gmail.com2-33/+45
2012-11-29Fix account privilege escalation vulnerabilitycanyonknight1-2/+2
2012-11-29Fix account editing and hijacking vulnerabilitycanyonknight2-3/+37
2012-11-24index.php: Move voter page token check to switch control structurecanyonknight1-6/+4
2012-11-24login.php: Properly link to logout page when already logged incanyonknight1-1/+1
2012-11-15pkgfuncs.inc.php: Rework query to avoid "Required by" duplicatescanyonknight1-1/+1
2012-11-07Release 2.0.1v2.0.1Lukas Fleischer1-1/+1
2012-11-07pkg_details.php: Fix potential XSS for package names and dep conditionscanyonknight1-3/+3
2012-11-04Avoid use of "$_SERVER['REQUEST_URI']"Lukas Fleischer2-3/+3
2012-11-04Avoid double slashes in notificationsLukas Fleischer1-3/+3
2012-11-04routing.inc.php: Return proper (non-virtual) URIsLukas Fleischer1-2/+2
2012-11-04pkgsubmit.php: Show a warning for split packagesLukas Fleischer1-0/+4