summaryrefslogtreecommitdiffstats
path: root/system/core
AgeCommit message (Collapse)AuthorFilesLines
2014-12-15Remove output minifierAndrey Andreev1-208/+0
This feature has proven to be problematic and it's not nearly as flexible as a dedicated minifier library like Minify (http://www.minifier.org/, https://github.com/matthiasmullie/minify). The same results in terms of saving traffic can also be achievied via gzip compression (which should also be done on the httpd level, but we also support anyway) and stuff like mod_pagespeed. Reverts PR #965 Related issues as a track record proving how problematic this has been: #2078 #1499 #2163 #2092 #2387 #2637 #2710 #2120 #2171 #2631 #2326 #2795 #2791 #2772 Additionally, the count of contributors suggesting that the only way to fix the minifier problems is to remove it, is around the same as the count of people suggesting the feature to be implemented in the first place. It was experimental anyway ... the experiment failed.
2014-12-08Fix 'Array to string conversion' notice in CSRF validationAndrey Andreev1-2/+2
Rel: #3398
2014-12-05Further changes related to issue #47, PR #3323Andrey Andreev2-10/+12
- Removed a test that was created specifically for the 'convert programmatic characters to entities' feature. - Changed filter_uri() to accept by reference and to not return anything as its only purpose now is to trigger a show_error() call. - Added changelog messages and updated the upgrade instructions.
2014-12-05Merge pull request #3323 from Razican/remove-uri-filterAndrey Andreev1-6/+1
Remove conversion of 'programmatic characters' to HTML entities in CI_URI::filter_uri() Close #47
2014-12-04Add 'cache_query_string' configuration optionAndrey Andreev1-3/+14
Close #2349
2014-12-04Another correction following #3384Andrey Andreev1-2/+1
2014-12-03Some polishing following PR #3384Andrey Andreev1-5/+2
2014-12-03Fixed code style. Update changelog. #2349Stefano Mazzega1-3/+3
2014-12-03add querystring to page caching. #2349Stefano Mazzega1-3/+3
2014-12-03add querystring to page caching. #2349Stefano Mazzega1-0/+9
2014-12-02Fix an error from the previous commitAndrey Andreev1-1/+1
2014-12-02Some optimizations & polishing following PR #3381Andrey Andreev1-14/+5
2014-12-02Added changelog entryAhmad Anbar1-6/+6
updated documentation Fixed code style.
2014-12-02Allow pulling multiple get/post ...etc at onceAhmad Anbar1-0/+12
2014-11-11Fixed return.Razican1-0/+2
Signed-off-by: Razican <admin@razican.com>
2014-11-11Remove URI filter for parenthesis and dollar symbols, as talked in #47.Razican1-7/+0
Signed-off-by: Razican <admin@razican.com>
2014-11-08Really fix #3318Andrey Andreev1-0/+2
2014-11-08Fix #3318Andrey Andreev1-1/+1
2014-11-07Simplify CI_Loader::lang() following #3316Andrey Andreev1-8/+1
2014-11-06Ability to pass array of language files to Language Library similar to ↵Gabriel Potkány1-0/+8
Loader Library
2014-11-04Fix #3310Andrey Andreev1-1/+1
Regression caused by 4b838af40d77684539dd40461bd92e6e453fe675 Quite possibly related to #3308
2014-10-28Add a real exception handlerAndrey Andreev3-9/+77
Close #1590 Close #3200
2014-10-28Close #3292Andrey Andreev1-1/+3
2014-10-27[ci skip] Switch to MIT license; close #3293Andrey Andreev21-294/+525
2014-10-10Fix #3270Andrey Andreev1-5/+2
Related: #3268, 4bdb66759c24c41fefec7952b12a0595a671eaa2
2014-10-07#3253Andrey Andreev1-1/+1
2014-10-07Attempt a better base_url auto-detectionAndrey Andreev1-3/+5
2014-10-06Update a config_item() use case for the new NULL return valueAndrey Andreev1-1/+1
2014-10-06Optimize the composer_autoload checkAndrey Andreev1-1/+1
2014-10-05config_item() to return NULL instead of FALSE for non-existing itemsAndrey Andreev4-11/+15
Close #3001 Close #3232 Related: #3244
2014-10-03fix doc block get_request_header()Adriano Rosa1-1/+1
This method does not return FALSE as said in doc block, the correct return is STRING or NULL.
2014-10-02stream_set_chunk_size() requires PHP 5.4Andrey Andreev2-2/+5
2014-09-30Make sure we don't waste entropyAndrey Andreev2-0/+2
2014-09-28[ci skip] Remove references to 'PHP5' from commentsAndrey Andreev1-1/+1
2014-09-17Fix a defined() checkAndrey Andreev1-1/+1
Close #3233
2014-09-17Don't assume that log_file_permissions existsAndrey Andreev1-1/+1
2014-09-12Fix #3228Andrey Andreev1-2/+0
2014-08-28Fix CI_Security::get_random_bytes() length validationAndrey Andreev1-1/+1
2014-08-27Fix #2963Andrey Andreev2-10/+22
Changed all file permissions settings throught the framework and the documentation. Also added configuration settings for CI_Log and CI_Image_lib
2014-08-27Add CI_Security::get_random_bytes() for CSRF & XSS token generationAndrey Andreev1-7/+54
2014-08-26Upgraded html_escape() - The simplest version.Ivan Tcholakov1-8/+1
2014-08-25Upgrading the function html_escape() - Readability Improvement 2.Ivan Tcholakov1-5/+11
2014-08-25Upgrading the function html_escape() - readability improvement.Ivan Tcholakov1-1/+3
2014-08-25Upgrading the function html_escape() - documentation corrections.Ivan Tcholakov1-4/+3
2014-08-25Upgrading the function html_escape(), escaping twice can be prevented by ↵Ivan Tcholakov1-4/+8
setting the second argument to FALSE.
2014-08-18[ci skip] Polish changes from PR #3176Andrey Andreev1-6/+6
2014-08-18Alter Pull #3176 to follow discussioncaseyh1-4/+4
2014-08-11CSRF whitelist supports regexCasey Hancock1-4/+7
Signed-off-by: Casey Hancock <crh431@gmail.com>
2014-08-05Fix #3123Andrey Andreev1-1/+1
2014-07-14Merge pull request #3134 from kdazzle/patch-1Andrey Andreev1-1/+1
Return 403 instead of 500 if no CSRF token given
generated by cgit v1.2.3-24-g4f1b (git 2.32.0) at 2024-07-08 05:51:36 +0200