summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2010-11-09Normalizing package paths to include a single trailing slash.Pascal Kriete1-0/+4
2010-11-09Removed the validation library deprectation warning. It's no longer valid ↵Pascal Kriete1-3/+0
for 2.0.
2010-11-09Fixed a bug where silently failed to override if set_time_limit was in ↵Pascal Kriete1-6/+10
Suhosin's function blacklist. Simply moved the set_time_limit call down a bit.
2010-11-04Automated merge with http://hg.ellislab.com/CodeIgniter2Pascal Kriete175-4181/+4331
2010-11-04Fixing the docblock on the unicode class.Pascal Kriete1-3/+3
2010-11-01Fix #220 -- Missing semi-colon in captcha helper userguide on SQL command.Greg Aker1-2/+2
2010-10-12Automated merge with http://hg.ellislab.com/CodeIgniter2Derek Jones3-1/+16
2010-10-12Fix #83 where multiple libraries could not be loaded at once by passing an ↵Greg Aker3-0/+15
array to the load->library() function.
2010-10-11Fix #120 -- Wording of Cross Site Request Forgery in config.phpGreg Aker1-1/+1
2010-10-11Fixed a bug where CI_Model is always loaded in core/Loader.php, regardless ↵Greg Aker1-1/+1
of if the class is instantiated or not.
2010-10-07added elements() to the Array Helper to return elements from an array with ↵Derek Jones3-0/+92
specified keys only. Differs from array_intersect_assoc() in that a default value can be provided for keys that do not exist in the supplied array
2010-10-07Automated merge with https://bitbucket.org/barrymieny/codeigniterDerek Jones7-10/+19
2010-10-07merging changesDerek Jones2-3/+3
2010-10-07modified the security helper to assist in preventing directory traversal ↵Derek Jones2-3/+12
when using sanitize_filename() for user input
2010-10-07fixed a security issue which in certain cases could result in directory ↵Derek Jones1-2/+2
traversal
2010-10-07Fixed CSRF comments to avoid confusion.Shane Pearson1-2/+2
2010-10-06added suggested value to index.php for error_reporting() when a site goes ↵Derek Jones1-1/+1
live, closes #177
2010-10-05fixed bug where sess_expire_on_close was not being set from a config file, ↵Derek Jones1-1/+1
fixes #173
2010-10-04Cleanup of stray spaces and tabsBarry Mieny171-4153/+4153
2010-10-04Fixed linkfesplugas1-1/+1
2010-10-01fixed code sampleDerek Jones1-1/+1
2010-10-01tweak to typography. Better aesthetic to placement of paragraph tagsDerek Jones1-3/+15
2010-09-28fixed a bug where the Output class would send incorrect cached data for ↵Derek Jones3-9/+24
controllers implementing their own _output() methods
2010-09-27fixed some grammar errors in the Views documentation. Fixes #154Derek Jones1-2/+2
2010-09-27Automated merge with http://hg.ellislab.com/CodeIgniter2Derek Jones1-5/+12
2010-09-27added sess_expire_on_close to config file, corrected comment block for ↵Derek Jones1-5/+12
session config vars. Fixes #149
2010-09-16branch mergeRobin Sowell1-2/+4
2010-09-16Added $ar_keys clearing out to _reset_write().Robin Sowell1-2/+4
2010-09-15Update to form_open() in form helper to drop hidden elements passed to the ↵Greg Aker1-8/+5
function into div class="hidden" (thanks Dan)
2010-09-15Fix #96 html validation failure on csrf hidden input on form_open() in the ↵Greg Aker1-1/+4
form helper. Added <div class="hidden"> around the hidden form input.
2010-09-15Fixed ↵Greg Aker1-1/+1
http://bitbucket.org/ellislab/codeigniter/issue/38/slight-bug-with-profilerphp Slight tweak to SQL query display in output profiler.
2010-09-15Updates to output profiler html validation. ↵Greg Aker1-6/+6
http://bitbucket.org/ellislab/codeigniter/issue/111/profiler-output-does-not-validate
2010-09-15Added a log message in core/output if the cache directory config value was ↵Greg Aker2-0/+2
not found.
2010-09-14Fixed a bug in the URL Helper where prep_url() could cause a PHP error on ↵Robin Sowell2-1/+4
PHP versions < 5.1.2.
2010-09-14Fixed a bug #129 where Model documentation referenced parent::Model instead ↵Greg Aker1-6/+6
of parent::CI_Model.
2010-09-07typo fixDerek Allard1-1/+1
2010-09-03user guide typo fixes #128Derek Jones1-1/+1
2010-09-02fixed a spot where the encryption mode was still a hard coded constant ↵Derek Jones1-1/+1
instead of the fetched variable
2010-09-02Added a new config item to the Session class (sess_expire_on_close) to allow ↵Derek Jones3-2/+12
sessions to auto-expire when the browser window is closed.
2010-09-02added a teeny bit stronger wording to encourage use of database for sessions ↵Derek Jones1-1/+3
where validation is necessary or undesirable actions could occur by a user manipulating their cookies
2010-09-01fixes issue #109 where cc and bcc recipients were not reset when using the ↵Derek Jones2-0/+3
clear() method in the Email lib
2010-08-31Significant changes to the Encryption libraryDerek Jones4-12/+126
- Removed double-encoding with XOR scheme when Mcrypt is available. Additional obfuscation was not significantly aiding security, and came at a very high performance cost. - Changed the default encryption mode from ECB to CBC for much improved security - Added an encode_from_legacy() method to allow re-encoding of permanent data that was originally encoded with the older methods.
2010-08-31Automated merge with http://hg.ellislab.com/CodeIgniter2Derek Jones6-4/+33
2010-08-31fixed spelling error in Security class property for the CSRF cookieDerek Jones1-8/+8
2010-08-31changed key comparison to be loosely typed, so an error would be triggered ↵Derek Jones2-1/+2
when an empty string is attempted to be used as an encryption key
2010-08-31changelog note for Session class change in rev f2660eeaab8dDerek Jones1-1/+2
2010-08-31added link for encryption key in Session class to the explanation in the ↵Derek Jones1-1/+1
Encryption lib
2010-08-31Added fatal error to Session class when no encryption key is set in the ↵Derek Jones3-2/+10
config file, for additional assurance that session manipulation can be prevented
2010-08-25Modified the database driver's display_error() method to show the filename ↵Pascal Kriete2-0/+19
and line number of the failed query.
2010-08-20Added ability in the Image Library to handle PNG transparency for resize ↵Derek Jones2-0/+8
operations when using the GD lib.