Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-09-02 | fixed a spot where the encryption mode was still a hard coded constant ↵ | Derek Jones | 1 | -1/+1 | |
instead of the fetched variable | |||||
2010-09-02 | Added a new config item to the Session class (sess_expire_on_close) to allow ↵ | Derek Jones | 1 | -2/+5 | |
sessions to auto-expire when the browser window is closed. | |||||
2010-09-01 | fixes issue #109 where cc and bcc recipients were not reset when using the ↵ | Derek Jones | 1 | -0/+2 | |
clear() method in the Email lib | |||||
2010-08-31 | Significant changes to the Encryption library | Derek Jones | 1 | -6/+69 | |
- Removed double-encoding with XOR scheme when Mcrypt is available. Additional obfuscation was not significantly aiding security, and came at a very high performance cost. - Changed the default encryption mode from ECB to CBC for much improved security - Added an encode_from_legacy() method to allow re-encoding of permanent data that was originally encoded with the older methods. | |||||
2010-08-31 | Automated merge with http://hg.ellislab.com/CodeIgniter2 | Derek Jones | 3 | -1/+24 | |
2010-08-31 | fixed spelling error in Security class property for the CSRF cookie | Derek Jones | 1 | -8/+8 | |
2010-08-31 | changed key comparison to be loosely typed, so an error would be triggered ↵ | Derek Jones | 1 | -1/+1 | |
when an empty string is attempted to be used as an encryption key | |||||
2010-08-31 | Added fatal error to Session class when no encryption key is set in the ↵ | Derek Jones | 1 | -0/+5 | |
config file, for additional assurance that session manipulation can be prevented | |||||
2010-08-25 | Modified the database driver's display_error() method to show the filename ↵ | Pascal Kriete | 1 | -0/+18 | |
and line number of the failed query. | |||||
2010-08-20 | Added ability in the Image Library to handle PNG transparency for resize ↵ | Derek Jones | 1 | -0/+7 | |
operations when using the GD lib. | |||||
2010-08-11 | undoing mistaken changes in rev 8c54b3b0402f | Derek Jones | 1 | -3/+0 | |
2010-08-11 | removed redundant upload lang file, after lang name changs, it was blocking ↵ | Derek Jones | 1 | -0/+3 | |
the CI lang file from loading. Fixes #473 | |||||
2010-08-06 | Removed deprecated _drop_database() and _create_database() functions from db ↵ | Greg Aker | 7 | -267/+0 | |
utility drivers. | |||||
2010-08-06 | Removing the following deprecated database methods: orwhere, orlike, ↵ | Greg Aker | 1 | -73/+1 | |
groupby, orhaving, orderby, getwhere. | |||||
2010-08-05 | moving code comment in text helper | Greg Aker | 1 | -11/+11 | |
2010-08-05 | Adding an ellipsize function to the text helper, and associated ↵ | Greg Aker | 1 | -0/+42 | |
documentation to the user guide. | |||||
2010-08-05 | Added an optional second parameter to <kbd>show_404()</kbd> to disable logging. | Derek Allard | 2 | -4/+9 | |
2010-07-26 | separated the CSRF cookie name from the token, forced new token on ↵ | Derek Jones | 1 | -14/+15 | |
successful POST | |||||
2010-07-23 | adding sanitize_filename() into the security helper | Derek Allard | 1 | -0/+18 | |
2010-07-22 | Adding CSRF into config | Derek Allard | 2 | -5/+17 | |
Adding CSRF token into form open() | |||||
2010-07-22 | Fixed a bug in the Upload class where a PHP error could occur when wildcards ↵ | Greg Aker | 1 | -2/+2 | |
were used as the allowed_types. | |||||
2010-07-16 | Removing validation_lang.php file that was missed when removing the ↵ | Greg Aker | 1 | -21/+0 | |
Validation library. | |||||
2010-07-12 | 201007 file upload bug fix | Derek Jones | 1 | -85/+109 | |
2010-07-05 | suppress page list | Derek Allard | 1 | -16/+21 | |
2010-07-05 | Added the ability to suppress first, previous, next and last links by ↵ | Derek Allard | 1 | -11/+17 | |
setting their values to FALSE in the pagination library. | |||||
2010-07-05 | img() will now generate an empty string as an alt attribute if one is not ↵ | Derek Allard | 1 | -0/+6 | |
provided. | |||||
2010-06-09 | Fixed an undefined variable PHP error in the do_xss_clean() method of the ↵ | Greg Aker | 1 | -7/+7 | |
Upload library. | |||||
2010-05-24 | Added $prefix, $suffix and $first_url properties to Pagination library. | Robin Sowell | 1 | -6/+30 | |
2010-05-21 | fixed a bug in the Parser where the regex would not correctly match pair ↵ | Derek Jones | 1 | -1/+1 | |
variables, fixes #42 | |||||
2010-05-13 | added htmlspecialchars to config item output, fixes #41 | Derek Jones | 1 | -2/+2 | |
2010-05-11 | fixed whitespace, massaged Zip read_dir() docs | Derek Jones | 1 | -2/+2 | |
2010-05-11 | Added an option to remove the preceding trail of empty folders when creating ↵ | Phil Sturgeon | 1 | -14/+35 | |
a Zip archive. | |||||
2010-04-29 | Changing order of available sections in the output profiler. | Greg Aker | 1 | -4/+9 | |
2010-04-26 | fixed errant syntax in changeset 53ace78c4b45, fixes #37 | Derek Jones | 1 | -1/+1 | |
2010-04-26 | fixed errant syntax in changeset 53ace78c4b45, fixes #37 | Derek Jones | 3 | -8/+8 | |
2010-04-25 | Simple change to comment line 21: the=>that. | Roger Simms | 1 | -1/+1 | |
2010-04-23 | ensured the security lib was loaded in a few calls to xss_clean() in other ↵ | Derek Jones | 3 | -2/+22 | |
libraries. Fixes #35 | |||||
2010-04-22 | reapplied strtolower() to ->file_type from philsturgeon's changeset ↵ | Derek Jones | 1 | -1/+1 | |
5fe3b04bdf44 to standardize input | |||||
2010-04-22 | Some mime types are wrapped with " which breaks file type checking. This ↵ | Phil Sturgeon | 1 | -1/+1 | |
will remove any wrapping \ and " | |||||
2010-04-22 | tiny modification to whitespace from philsturgeon's bugfix to match CI style ↵ | Derek Jones | 1 | -1/+1 | |
guidelines | |||||
2010-04-22 | Fixed Upload bug that would break when files and images were both included ↵ | Phil Sturgeon | 1 | -1/+1 | |
on an allowed filetype list in the wrong order: http://codeigniter.com/bug_tracker/bug/11552/ | |||||
2010-04-20 | Modifying smiley_js() in the smiley helper to add optional third parameter ↵ | Greg Aker | 1 | -2/+9 | |
to return only the javascript with no script tags. | |||||
2010-04-16 | Added class var xss_clean to the XML_RPC_Response class to prevent php ↵ | Robin Sowell | 1 | -0/+1 | |
error. Not noted in changelog, as I figure it's covered by the original note about adding xss clean at all. | |||||
2010-04-15 | Update to File Upload library to return boolean on do_xss_clean(). | Greg Aker | 1 | -13/+48 | |
2010-04-15 | Fixing a bug where odbc/mssql/oci8 db drivers would encounter a PHP error ↵ | Greg Aker | 5 | -52/+42 | |
due to a function being moved from the input to security class. Moving remove_invisible_characters() to Common.php so the entire class does not need to be instantiated in those database drivers. | |||||
2010-04-15 | Automated merge with http://hg.ellislab.com/CodeIgniter2/ | Greg Aker | 1 | -875/+0 | |
2010-04-15 | Removing deprecated Validation class. | Greg Aker | 1 | -875/+0 | |
Form_validation going forward! Removed references to the validation classes documentation page in the changelog as well. | |||||
2010-04-09 | Adding output library exceptions for servers with zlib.output_compression ↵ | Pascal Kriete | 1 | -1/+14 | |
enabled. | |||||
2010-04-09 | Modified get_file_info in the file helper, changing filectime() to ↵ | Robin Sowell | 1 | -1/+1 | |
filemtime() for dates. | |||||
2010-04-07 | Fixing typo in XMLRpc error message: | Greg Aker | 1 | -1/+1 | |
http://codeigniter.com/bug_tracker/bug/11556/ |