Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2015-09-22 | [ci skip] Remove an example from DB docs | Andrey Andreev | 1 | -17/+0 | |
Users shouldn't be encouraged to use num_rows() that way ... We had already decided on this awhile ago, this example just slipped through. | |||||
2015-09-22 | Added optional parameter to reset_validation() | zoaked | 1 | -4/+2 | |
2015-09-22 | Added optional parameter to reset_validation() in form_validation library | zoaked | 1 | -1/+1 | |
2015-09-22 | Styling changes | zoaked | 1 | -3/+5 | |
2015-09-21 | Merge pull request #4130 from jim-parry/fix/pulldown-nav | Andrey Andreev | 1 | -85/+117 | |
Fixed the pulldown menu in docs Close #4043 | |||||
2015-09-21 | Removed mention of the fix in the changelog - not a framework issue. | Master Yoda | 1 | -1/+0 | |
Signed-off-by:Master Yoda <jim_parry@bcit.ca> | |||||
2015-09-21 | Changes suggested by Andrey | Master Yoda | 2 | -3/+4 | |
Signed-off-by:Master Yoda <jim_parry@bcit.ca> | |||||
2015-09-21 | Fixed the pulldown nav | Master Yoda | 2 | -85/+118 | |
Signed-off-by:Master Yoda <jim_parry@bcit.ca> | |||||
2015-09-21 | More XSS stuff | Andrey Andreev | 2 | -3/+19 | |
2015-09-21 | Merge branch 'fix/lang_test' of https://github.com/jim-parry/CodeIgniter ↵ | Master Yoda | 2 | -4/+21 | |
into fix/lang_test | |||||
2015-09-21 | Update form_validation.rst | zoaked | 1 | -2/+5 | |
2015-09-21 | Update changelog.rst | zoaked | 1 | -0/+1 | |
2015-09-21 | Switch from saving copy of config to reset method parameter | zoaked | 1 | -4/+5 | |
2015-09-20 | Persist config file settings when resetting form_validation | zoaked | 1 | -2/+3 | |
When checking multiple arrays using form_validation you have to call reset_validation between each separate check due to the instance of the library being a singleton. The issue comes in when the settings are loaded from a config file as they are initially loaded from a parameter in the constructor, but are set to an empty array when resetting the class. To get around this issue a copy of the config parameter is made and then the copy is used to reset the rules when clearing. | |||||
2015-09-20 | The Lang unit testing claimed to be testing for non-alpha idioms, but wasn't. | Master Yoda | 1 | -94/+99 | |
Setup a new test method to isolate this. Signed-off-by:Master Yoda <jim_parry@bcit.ca> | |||||
2015-09-20 | Revert "Revert "The Lang unit testing claimed to be testing for non-alpha ↵ | Master Yoda | 1 | -6/+12 | |
idioms, but wasn't. Setup a new test method to isolate this. Signed-off-by:Master Yoda <jim_parry@bcit.ca>"" This reverts commit 5f8fa02b9e386dfc474d8a6f2302e32674f2b55a. | |||||
2015-09-20 | Revert "The Lang unit testing claimed to be testing for non-alpha idioms, ↵ | Master Yoda | 1 | -12/+6 | |
but wasn't. Setup a new test method to isolate this. Signed-off-by:Master Yoda <jim_parry@bcit.ca>" This reverts commit 1adf834231dae85e55c1bf2d19f3f4b28324f356. | |||||
2015-09-20 | The Lang unit testing claimed to be testing for non-alpha idioms, but wasn't. | Master Yoda | 1 | -6/+12 | |
Setup a new test method to isolate this. Signed-off-by:Master Yoda <jim_parry@bcit.ca> | |||||
2015-09-20 | The Lang unit testing claimed to be testing for non-alpha idioms, but wasn't. | Master Yoda | 1 | -84/+89 | |
Setup a new test method to isolate this. Signed-off-by:Master Yoda <jim_parry@bcit.ca> | |||||
2015-09-20 | The Lang unit testing claimed to be testing for non-alpha idioms, but wasn't. | Master Yoda | 1 | -0/+1 | |
Setup a new test method to isolate this. Signed-off-by:Master Yoda <jim_parry@bcit.ca> | |||||
2015-09-17 | Don't allow open-ended tags to pass through xss_clean() | Andrey Andreev | 2 | -4/+10 | |
This was a regression caused by the previous commit | |||||
2015-09-17 | Refactor 'evil attributes' sanitization logic | Andrey Andreev | 2 | -115/+100 | |
Turned out pretty much impossible to do remove 'evil attributes' with just one pattern - it either breaks something else, hits pcre.backtrack_limit or causes PHP to segfault. No benchmarks made, but there shouldn't be any performance regressions since we're now trying to strip attributes only after it is determined that they are inside a tag; up until now this was done seprately for _sanitize_naughty_html() and _remove_evil_attributes(). | |||||
2015-09-16 | [ci skip] Add missing changelog entry | Andrey Andreev | 1 | -0/+1 | |
2015-09-16 | Fix #4116 | Andrey Andreev | 2 | -6/+7 | |
Close #4117 | |||||
2015-09-16 | Fix typo | kenjis | 1 | -1/+1 | |
Signed-off-by: Kenji Suzuki <kenji.uui@gmail.com> | |||||
2015-09-16 | Fix #4120 | Andrey Andreev | 2 | -3/+14 | |
2015-09-16 | Merge pull request #4119 from kenjis/fix-tutorial | Andrey Andreev | 1 | -1/+1 | |
[ci skip] Fix a typo in the tutorial | |||||
2015-09-16 | Fix typo | kenjis | 1 | -1/+1 | |
Signed-off-by: Kenji Suzuki <kenji.uui@gmail.com> | |||||
2015-09-15 | Missing character in the evil attributes pattern | Andrey Andreev | 1 | -1/+1 | |
2015-09-14 | Another addition to tag detection patterns in xss_clean() | Andrey Andreev | 2 | -1/+9 | |
2015-09-14 | Close #4098 | Andrey Andreev | 2 | -2/+19 | |
2015-09-14 | Fix #4032 | Andrey Andreev | 2 | -7/+10 | |
2015-09-14 | Fix #4044 | Andrey Andreev | 2 | -5/+6 | |
2015-09-14 | Fix #4109 | Andrey Andreev | 2 | -20/+23 | |
2015-09-14 | Add 'eval' to a JS blacklist in xss_clean() | Andrey Andreev | 1 | -7/+10 | |
2015-09-14 | Move _remove_evil_attributes() call | Andrey Andreev | 2 | -4/+17 | |
2015-09-11 | Harden xss_clean() more | Andrey Andreev | 2 | -7/+44 | |
This time eliminate false positives for the 'naughty html' logic. | |||||
2015-09-11 | Improve on previous commit | Andrey Andreev | 2 | -1/+6 | |
2015-09-11 | Replace the latest XSS patches | Andrey Andreev | 2 | -10/+27 | |
This one fixes yet another issue, is cleaner and faster. | |||||
2015-09-10 | Last commit didn't adjust a RE index | Andrey Andreev | 2 | -1/+6 | |
2015-09-10 | Fix & extend 700619cebf75c4e4fcda6a2d7bea1afb84a029e4 | Andrey Andreev | 2 | -6/+6 | |
2015-09-10 | Fix a broken unit test from 700619cebf75c4e4fcda6a2d7bea1afb84a029e4 | Andrey Andreev | 1 | -1/+1 | |
2015-09-10 | [ci skip] Add changelog entry for #4105 | Andrey Andreev | 1 | -0/+1 | |
2015-09-10 | Change form validation library to allow the pipe character within square ↵ | rich | 1 | -1/+1 | |
brackets | |||||
2015-09-10 | Merge pull request #4105 from rjbrooksjr/develop | Andrey Andreev | 1 | -1/+1 | |
FV library to allow the pipe character within brackets | |||||
2015-09-10 | Fix #4106 | Andrey Andreev | 2 | -2/+10 | |
2015-09-09 | Change form validation library to allow the pipe character within square ↵ | rich | 1 | -1/+1 | |
brackets | |||||
2015-09-07 | Remove unnecessary count() calls from _sanitize_globals() | Andrey Andreev | 1 | -3/+3 | |
foreach() just won't execute for an empty array, it does that check internally. | |||||
2015-09-07 | Move csrf_verify() call out of _sanitize_globals() | Andrey Andreev | 1 | -6/+6 | |
It doesn't belong in there. | |||||
2015-09-03 | Fix #4096 | Andrey Andreev | 2 | -1/+2 | |