summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2014-02-09back to originaldarwinel1-2/+2
2014-02-09change back to originaldarwinel1-4/+4
2014-02-09Style Guidedarwinel1-1/+1
Logical Operators Use of || is discouraged as its clarity on some output devices is low (looking like the number 11 for instance). && is preferred over AND but either are acceptable, and a space should always precede and follow !
2014-02-09CodeIgniter support some basic web security by default!darwinel1-4/+4
I think its better to enable this basic security options by default. It’s more likely that users who build a new website or application from ground up, and use CodeIgniter can get used to this and eventually turn this off. From a web security perspective, we can support a more secure web, by default! Who agrees?
2014-02-08Small Style fixdarwinel1-1/+1
General Style and Syntax
2014-02-07[ci skip] Really fix wrong doc referencesAndrey Andreev1-2/+2
2014-02-07[ci skip] Fix a wrong reference in the docsAndrey Andreev1-1/+1
2014-02-07Use is_really_writable() in captcha helperAndrey Andreev1-1/+1
2014-02-07Fix conflictsAndrey Andreev0-0/+0
2014-02-07Use is_really_writable() in get_file_info()Andrey Andreev1-2/+1
2014-02-07Merge pull request #2859 from vivekdinesh/typo-fixAndrey Andreev1-1/+1
Typo Fix
2014-02-07Typo FixVivek Dinesh1-1/+1
Signed-off-by: Vivek Dinesh <vivekdinesh5@gmail.com>
2014-02-06Merge pull request #2857 from vivekdinesh/typo-fixAndrey Andreev1-1/+1
Typo Fix
2014-02-06Typo FixVivek Dinesh1-1/+1
Signed-off-by: Vivek Dinesh <vivekdinesh5@gmail.com>
2014-02-06Make CI_Session's HMAC comparison time-attack-safeAndrey Andreev1-1/+9
2014-02-05Fix #2856Andrey Andreev2-2/+3
2014-02-03[ci skip] Update info on function_usableAndrey Andreev3-2/+12
2014-02-03Merge pull request #2852 from noskov/developAndrey Andreev1-0/+10
Add index.html to /application/language
2014-02-03Add index.html to /application/languageSerge Noskov1-0/+10
2014-01-30Previous 2 commits were just dumbAndrey Andreev2-3/+3
2014-01-30Fix a syntax error from last commitAndrey Andreev1-1/+1
2014-01-30Some fail-safe pdo_pgsql adjustmentsAndrey Andreev2-2/+7
2014-01-29[ci skip] Fix broken linksAndrey Andreev4-7/+7
2014-01-29[ci skip] Fix /readme.rst linksAndrey Andreev1-2/+2
2014-01-28Fix #2845Andrey Andreev1-1/+1
2014-01-28Fix #2844Andrey Andreev1-1/+1
2014-01-25Add <math> to 'naughty' HTML elementsAndrey Andreev1-1/+1
2014-01-25Previous commit caused side effects ...Andrey Andreev1-2/+2
2014-01-25Fix CI_Security::_remove_evil_attributes() being way too aggressiveAndrey Andreev1-2/+2
2014-01-25Re-add 'on\w*' to evil attributes (rel #2667)Andrey Andreev1-2/+1
2014-01-25Partially fix #2667Andrey Andreev1-2/+8
2014-01-24[ci skip] Add a link to PHP bug 54709 in is_really_writable()'s docblockAndrey Andreev1-0/+1
2014-01-24CI_Security: Also add <svg> to 'naughty' HTML elementsAndrey Andreev1-1/+1
2014-01-24CI_Security: Add <select> and <keygen> tags to the list of 'naughty' HTML ↵Andrey Andreev1-1/+1
elements
2014-01-24Fix syntax errorsAndrey Andreev1-2/+2
2014-01-24CI_Security: Add 'form' and 'xlink:href' to evil attributesAndrey Andreev1-1/+1
2014-01-24Add &newline; and &tab; to CI_Security::Andrey Andreev1-1/+3
2014-01-24Righting a wrong in the Session libraryAndrey Andreev6-69/+90
- Change userdata(), flashdata(), tempdata() to return all the respective data when no parameter is passed. - Revert the addition of all_flashdata(). - Deprecate all_userdata(). - Fix related changelog entries that were all inconsistent.
2014-01-24[ci skip] AND -> &&Andrey Andreev1-1/+1
2014-01-23Fix #2836Andrey Andreev1-1/+1
2014-01-22CI_Security::_decode_entity() to replace dangerous HTML5 entitiesAndrey Andreev2-2/+21
Related to issue #2771
2014-01-21Add <button> to the list of 'naugthy' html elements in CI_Security::xss_clean()Andrey Andreev1-2/+2
2014-01-21Merge branch 'feature/dbforge_table_attributes' into developAndrey Andreev6-24/+114
2014-01-21SQLSRV improvementsAndrey Andreev3-3/+69
Mainly for performance (issue #2474), but also added a 'scrollable' configuration flag and auto-detection for SQLSRV_CURSOR_CLIENT_BUFFERED (only available since SQLSRV 3).
2014-01-20Add support for optional table attributes to CI_DB_forge::create_table()Andrey Andreev6-24/+114
Supersedes PRs #989, #2776 Related issue: #41
2014-01-20Fix #2729Andrey Andreev2-2/+4
2014-01-20Fix #2737Andrey Andreev2-21/+28
2014-01-20Merge branch 'develop' into feature/output_compressed_cacheAndrey Andreev5-19/+33
2014-01-20Polish changes from PR #2830Andrey Andreev4-24/+29
2014-01-20Merge pull request #2830 from abdmaster/fix/config/database_save_queriesAndrey Andreev2-0/+9
Added [save_queries] config in config/database.php