Commit graph

78 commits

Author SHA1 Message Date
Tobias Hößl
453b5b46a3 CSRF-Protection in the group-related form (creating, renaming and dropping a group, adding/removing members from it) 2012-03-18 15:44:33 +00:00
Tobias Hößl
59766b944c Some security against XSRF-attacks 2012-03-12 20:17:37 +00:00
friendica
312c175045 bug in check for private email comment to public conversation prevents authenticated visitor from seeing comments that should be allowed 2012-03-09 00:31:17 -08:00
friendica
dd3b3c2454 revup 2012-03-07 15:54:37 -08:00
friendica
7ad2dd6565 fix photos after permissions_sql change 2012-03-06 17:52:00 -08:00
friendica
88cd5800cf [privacy] rework latest fix 2012-03-06 17:21:14 -08:00
friendica
c37ffd2999 can_write_wall documentation 2012-03-05 15:04:43 -08:00
friendica
5161be67e9 logging of manage identities 2012-01-27 12:56:36 -08:00
friendica
94b9e9ce6d for people whose DB's are not updating 2012-01-26 23:08:51 -08:00
friendica
167ab537b5 backend for delegating forums 2012-01-26 16:52:12 -08:00
friendica
8aa2552372 add remove_user hook (it looks like dreamhost changed all my file permissions, this will make a nasty commit) 2012-01-18 16:21:30 -08:00
friendica
4b6990e1ff modularise successful authentication 2012-01-12 15:46:39 -08:00
Friendika
bc5935061b dfrn friendship issue 2011-08-18 16:47:45 -07:00
Friendika
48ffa880f0 cleanup 2011-08-07 16:15:54 -07:00
Friendika
53653f6a4d consolidate perrmisions sql, minor duepuntozero validation fixes 2011-06-30 17:35:35 -07:00
Friendika
b7292bc673 user pref -> block remote wall posting 2011-03-20 17:54:50 -07:00
Friendika
4d84a87ce4 cache result of (expensive) security check for visitor rights
begin tightening x-profile security
2010-12-02 21:09:55 -08:00
Friendika
e521dfd5e6 refactor outgoing comment ability for off network contacts 2010-11-08 20:43:58 -08:00
Friendika
188b1d2d6f participate in public conversations 2010-11-08 20:15:42 -08:00
Mike Macgirvin
ac824fe83e eradicate redundant get_uid function 2010-10-18 14:34:59 -07:00
Mike Macgirvin
be981a4f8a wrong type comparison (string, int) which was the cause of the last problem. 2010-10-17 20:27:27 -07:00
Mike Macgirvin
1d2fdb259e funny behaviour with post permissions after recent changes 2010-10-17 20:24:58 -07:00
Mike Macgirvin
3789c288a7 dash, not underscore 2010-10-17 20:13:45 -07:00
Mike Macgirvin
0f47ac282c celebrity/group/community pages about 75% implemented 2010-10-17 20:04:17 -07:00
Mike Macgirvin
188dc1fcf8 relationship direction was too confusing to work with. instead of "in,out,both" it's now declared by role e.g. "vip,fan,bud". 2010-09-21 19:51:08 -07:00
Mike Macgirvin
e0045a43e2 mongo checkin, global directory, redir rework, location basics 2010-08-19 04:59:31 -07:00
Mike Macgirvin
6695b4a203 more bugs 2010-07-19 06:58:03 -07:00
Mike Macgirvin
6348e70daa Initial checkin 2010-07-01 16:48:07 -07:00