summaryrefslogtreecommitdiffstats
path: root/application/config/config.php
AgeCommit message (Collapse)AuthorFilesLines
2011-10-27Added links to the user guide for Encryption class and Session class.Kyle Ridolfo1-0/+3
2011-10-21fixing typo in attribution blockDerek Jones1-1/+1
2011-10-20adding new license file (OSL 3.0) and updating readme to ReSTDerek Jones1-0/+25
added notice of license to all source files. OSL to all except the few files we ship inside of the application folder, those are AFL. Updated license in user guide. incrementing next dev version to 3.0 due to licensing change
2011-08-28always use charset config itemfreewil1-0/+2
2011-08-25Merge remote-tracking branch 'alexbilbie/csrf-override' into feature/csrf-verifyEric Barnes1-0/+2
Conflicts: system/core/Security.php
2011-08-21added ability to log certain error types, not all under a thresholdNithin1-0/+4
2011-08-21Added new config parameter "csrf_exclude_uris" which allows for URIs to be ↵Alex Bilbie1-0/+2
whitelisted from CSRF verification. Fixes #149
2011-07-02backed out 648b42a75739, which was a NON-trivial whitespace commit. It ↵Derek Jones1-20/+20
broke the Typography class's string replacements, for instance
2011-04-25Fixed double-space typo.Razican1-20/+20
2011-02-16Merged CodeIgniter Core changes and integrated rob1's secure cookie change ↵Phil Sturgeon1-17/+30
into my secure cookie change.
2011-02-11Adding config option to require 'secure' setting for all cookies- requires ↵Robin Sowell1-0/+2
https.
2011-01-17Accidentally left csrf to turned on in last commitEric Barnes1-1/+1
2011-01-17Added access scope to security library and added config options for csrf ↵Eric Barnes1-2/+8
protection
2011-01-12Changed instructions for location of log path. Fixes #305Eric Barnes1-1/+1
2010-12-27Implemented GET string support from Dan Horrigan and modified it slightly. ↵Phil Sturgeon1-18/+21
Also tweaked his regex_match changes.
2010-12-15<kbd>['base_url']</kbd> is now empty by default and will guess what it ↵Phil Sturgeon1-17/+20
should be.
2010-12-15Added full Query String and $_GET array support. This is enabled by ↵Dan Horrigan1-0/+4
default. Added a seperate config option to enable/disable the $_GET array.
2010-10-07Automated merge with https://bitbucket.org/barrymieny/codeigniterDerek Jones1-2/+2
2010-10-07Fixed CSRF comments to avoid confusion.Shane Pearson1-2/+2
2010-10-04Cleanup of stray spaces and tabsBarry Mieny1-6/+6
2010-09-27added sess_expire_on_close to config file, corrected comment block for ↵Derek Jones1-5/+12
session config vars. Fixes #149
2010-08-31Added fatal error to Session class when no encryption key is set in the ↵Derek Jones1-2/+2
config file, for additional assurance that session manipulation can be prevented
2010-07-22Adding CSRF into configDerek Allard1-0/+11
Adding CSRF token into form open()
2010-03-25moved application folder outside of the system folderDerek Jones1-0/+329