Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2012-03-27 | Fixed typo. | Iban Eguia | 1 | -1/+1 | |
2012-03-27 | Changed Date helper to return time() based on the timezone parameter. | Iban Eguia | 1 | -9/+7 | |
2012-03-26 | Clear some spaces and fix some inconsistencies in application/ php files | Andrey Andreev | 1 | -3/+3 | |
2012-03-18 | add support for httponly cookies | freewil | 1 | -0/+2 | |
2012-03-09 | Bumped CodeIgniter's PHP requirement to 5.2.4. | Phil Sturgeon | 1 | -1/+1 | |
Yes I know PHP 5.4 just came out, and yes I know PHP 5.3 has lovely features, but there are plenty of corporate systems running on CodeIgniter and PHP 5.3 still is not widely supported enough. CodeIgniter is great for distributed applications, and this is the highest we can reasonably go without breaking support. PHP 5.3 will most likely happen in another year or so. Fingers crossed on that one anyway... | |||||
2012-01-08 | Merge pull request #850 from RS71/develop | Phil Sturgeon | 1 | -0/+2 | |
CSRF optional token regeneration | |||||
2012-01-02 | Updating copyright date to 2012 | Greg Aker | 1 | -1/+1 | |
2011-12-31 | Update application/config/config.php | RS71 | 1 | -0/+2 | |
2011-10-27 | Added links to the user guide for Encryption class and Session class. | Kyle Ridolfo | 1 | -0/+3 | |
2011-10-21 | fixing typo in attribution block | Derek Jones | 1 | -1/+1 | |
2011-10-20 | adding new license file (OSL 3.0) and updating readme to ReST | Derek Jones | 1 | -0/+25 | |
added notice of license to all source files. OSL to all except the few files we ship inside of the application folder, those are AFL. Updated license in user guide. incrementing next dev version to 3.0 due to licensing change | |||||
2011-08-28 | always use charset config item | freewil | 1 | -0/+2 | |
2011-08-25 | Merge remote-tracking branch 'alexbilbie/csrf-override' into feature/csrf-verify | Eric Barnes | 1 | -0/+2 | |
Conflicts: system/core/Security.php | |||||
2011-08-21 | added ability to log certain error types, not all under a threshold | Nithin | 1 | -0/+4 | |
2011-08-21 | Added new config parameter "csrf_exclude_uris" which allows for URIs to be ↵ | Alex Bilbie | 1 | -0/+2 | |
whitelisted from CSRF verification. Fixes #149 | |||||
2011-07-02 | backed out 648b42a75739, which was a NON-trivial whitespace commit. It ↵ | Derek Jones | 1 | -20/+20 | |
broke the Typography class's string replacements, for instance | |||||
2011-04-25 | Fixed double-space typo. | Razican | 1 | -20/+20 | |
2011-02-16 | Merged CodeIgniter Core changes and integrated rob1's secure cookie change ↵ | Phil Sturgeon | 1 | -17/+30 | |
into my secure cookie change. | |||||
2011-02-11 | Adding config option to require 'secure' setting for all cookies- requires ↵ | Robin Sowell | 1 | -0/+2 | |
https. | |||||
2011-01-17 | Accidentally left csrf to turned on in last commit | Eric Barnes | 1 | -1/+1 | |
2011-01-17 | Added access scope to security library and added config options for csrf ↵ | Eric Barnes | 1 | -2/+8 | |
protection | |||||
2011-01-12 | Changed instructions for location of log path. Fixes #305 | Eric Barnes | 1 | -1/+1 | |
2010-12-27 | Implemented GET string support from Dan Horrigan and modified it slightly. ↵ | Phil Sturgeon | 1 | -18/+21 | |
Also tweaked his regex_match changes. | |||||
2010-12-15 | <kbd>['base_url']</kbd> is now empty by default and will guess what it ↵ | Phil Sturgeon | 1 | -17/+20 | |
should be. | |||||
2010-12-15 | Added full Query String and $_GET array support. This is enabled by ↵ | Dan Horrigan | 1 | -0/+4 | |
default. Added a seperate config option to enable/disable the $_GET array. | |||||
2010-10-07 | Automated merge with https://bitbucket.org/barrymieny/codeigniter | Derek Jones | 1 | -2/+2 | |
2010-10-07 | Fixed CSRF comments to avoid confusion. | Shane Pearson | 1 | -2/+2 | |
2010-10-04 | Cleanup of stray spaces and tabs | Barry Mieny | 1 | -6/+6 | |
2010-09-27 | added sess_expire_on_close to config file, corrected comment block for ↵ | Derek Jones | 1 | -5/+12 | |
session config vars. Fixes #149 | |||||
2010-08-31 | Added fatal error to Session class when no encryption key is set in the ↵ | Derek Jones | 1 | -2/+2 | |
config file, for additional assurance that session manipulation can be prevented | |||||
2010-07-22 | Adding CSRF into config | Derek Allard | 1 | -0/+11 | |
Adding CSRF token into form open() | |||||
2010-03-25 | moved application folder outside of the system folder | Derek Jones | 1 | -0/+329 | |