summaryrefslogtreecommitdiffstats
path: root/system/core/Security.php
AgeCommit message (Expand)AuthorFilesLines
2012-12-10Removed boundary from regexpbrian9781-1/+1
2012-12-10Fixed bug with regexp that matched tagsbrian9781-1/+1
2012-12-08All the HEX code must be replaced or else some XSS attacks can be successfulbrian9781-3/+11
2012-12-03Added small improvement to the _remove_evil_attributes functionbrian9781-6/+5
2012-12-03[ci skip] Cleaned some spacesAndrey Andreev1-2/+1
2012-11-01Manually apply PR #1594 (fixing phpdoc page-level generation/warnings)Andrey Andreev1-1/+2
2012-10-28[ci skip] DocBlock improvements for Security libraryAndrey Andreev1-77/+100
2012-10-24[ci skip] Document get_csrf_token_name(), get_csrf_hash() (issue #715)Andrey Andreev1-1/+1
2012-10-22Add is_https() as a common functionAndrey Andreev1-1/+1
2012-07-02Clean up regexes in Security->xss_clean()vlakoff1-7/+7
2012-06-26Fix issue #427Andrey Andreev1-0/+13
2012-06-12Change file permissions for system/core/*.php and system/database/DB.php so t...Andrey Andreev1-0/+0
2012-06-04Revert/optimize some changes from ed944a3c70a0bad158cd5a6ca5ce1f2e717aff5dAndrey Andreev1-1/+1
2012-06-02Replaced `==` with `===` and `!=` with `!==` in /system/coreAlex Bilbie1-4/+4
2012-05-27Continuation for Security and Table code-coverage, add coverage report to travisTaufan Aditya1-0/+1
2012-05-17Merge branch 'develop' of github.com:EllisLab/CodeIgniter into developPhil Sturgeon1-7/+9
2012-05-17Fixed conflicts from merging in 2.1.1.Phil Sturgeon1-1/+1
2012-05-17Cleanup the core classesAndrey Andreev1-8/+10
2012-05-17Check cookie against md5 regex.Alexander Hofstede1-1/+1
2012-05-07Merge branch 'develop' of github.com:EllisLab/CodeIgniter into developWes Baker1-48/+52
2012-04-24Updating XSS cleaning to better handle base64 encoded attributes.Wes Baker1-6/+8
2012-04-23Use tabs to separate class propertiesTimothy Warren1-7/+7
2012-04-19Additional formatting fixesTimothy Warren1-42/+42
2012-04-19Normalize comments in core filesTimothy Warren1-4/+7
2012-03-18add support for httponly cookiesfreewil1-1/+9
2012-03-09Merge branch 'develop' of github.com:EllisLab/CodeIgniter into developPhil Sturgeon1-2/+2
2012-03-09Bumped CodeIgniter's PHP requirement to 5.2.4.Phil Sturgeon1-1/+1
2012-03-08Fix issue #940Andrey Andreev1-2/+2
2012-02-29Add strtolower to the HTTPS checkAndrey Andreev1-1/+1
2012-02-27Do not create a CSRF cookie if CSRF protection is not enabledAndrey Andreev1-19/+20
2012-01-09Some more stuff ...Andrey Andreev1-17/+6
2012-01-08Remove some tabsAndrey Andreev1-1/+1
2012-01-08Merge remote-tracking branch 'upstream/develop' into develop-core-securityAndrey Andreev1-3/+8
2012-01-08Merge pull request #850 from RS71/developPhil Sturgeon1-3/+8
2012-01-07Improve the core Security libraryAndrey Andreev1-155/+99
2012-01-02Updating copyright date to 2012Greg Aker1-1/+1
2011-12-31Update system/core/Security.phpRS711-3/+8
2011-12-25Fixing soft tabs in a few files.Greg Aker1-1/+1
2011-11-22Merge master (2.1.0) and fixed conflicts.Phil Sturgeon1-25/+39
2011-11-14Tweaking the xss filter for IE <comment> tags, parameter injection, and weird...Pascal Kriete1-50/+41
2011-10-20adding new license file (OSL 3.0) and updating readme to ReSTDerek Jones1-4/+16
2011-10-05Fix location file Security Class to core folderpurwandi1-1/+1
2011-10-04Clean up core Security classAndrey Andreev1-50/+19
2011-09-25Fix #484 - Hash is never set to the cookieChris Berthe1-1/+2
2011-09-23fixed issue #192Rommel Castro A1-0/+1
2011-08-28always use charset config itemfreewil1-2/+9
2011-08-28always use charset config itemfreewil1-1/+2
2011-08-25Merge remote-tracking branch 'alexbilbie/csrf-override' into feature/csrf-verifyEric Barnes1-6/+20
2011-08-21Added new config parameter "csrf_exclude_uris" which allows for URIs to be wh...Alex Bilbie1-1/+11
2011-08-15Added some docs to CI core filesDavid Behler1-44/+87