summaryrefslogtreecommitdiffstats
path: root/system/libraries/Security.php
AgeCommit message (Collapse)AuthorFilesLines
2011-02-16Merged CodeIgniter Core changes and integrated rob1's secure cookie change ↵Phil Sturgeon1-32/+37
into my secure cookie change.
2011-02-14Whitespace cleanup in libraries/Pascal Kriete1-1/+1
2011-02-11Doy- forget the session cookie function! Added secure cookie config check ↵Robin Sowell1-1/+2
there too.
2011-01-27Automated merge with https://bitbucket.org/ellislab/codeigniterPhil Sturgeon1-31/+36
2011-01-17Added access scope to security library and added config options for csrf ↵Eric Barnes1-31/+36
protection
2011-01-05Hey look, it's 2011Greg Aker1-1/+1
2010-11-10Changing all class constructors to __construct()Greg Aker1-1/+1
2010-11-10Updating PHP requirements in files 5.1.6Greg Aker1-1/+1
2010-10-07Automated merge with https://bitbucket.org/barrymieny/codeigniterDerek Jones1-3/+7
2010-10-07modified the security helper to assist in preventing directory traversal ↵Derek Jones1-3/+7
when using sanitize_filename() for user input
2010-10-04Cleanup of stray spaces and tabsBarry Mieny1-71/+71
2010-08-31fixed spelling error in Security class property for the CSRF cookieDerek Jones1-8/+8
2010-07-26separated the CSRF cookie name from the token, forced new token on ↵Derek Jones1-14/+15
successful POST
2010-07-22Adding CSRF into configDerek Allard1-5/+11
Adding CSRF token into form open()
2010-04-15Fixing a bug where odbc/mssql/oci8 db drivers would encounter a PHP error ↵Greg Aker1-40/+2
due to a function being moved from the input to security class. Moving remove_invisible_characters() to Common.php so the entire class does not need to be instantiated in those database drivers.
2010-03-30moved entity_decode() to the Security library to handle an issue with HTML ↵Derek Jones1-3/+52
in input when the global XSS filter is enabled
2010-03-03added Security libraryDerek Jones1-0/+710