Commit graph

78 commits

Author SHA1 Message Date
Tobias Hößl 453b5b46a3 CSRF-Protection in the group-related form (creating, renaming and dropping a group, adding/removing members from it) 2012-03-18 15:44:33 +00:00
Tobias Hößl 59766b944c Some security against XSRF-attacks 2012-03-12 20:17:37 +00:00
friendica 312c175045 bug in check for private email comment to public conversation prevents authenticated visitor from seeing comments that should be allowed 2012-03-09 00:31:17 -08:00
friendica dd3b3c2454 revup 2012-03-07 15:54:37 -08:00
friendica 7ad2dd6565 fix photos after permissions_sql change 2012-03-06 17:52:00 -08:00
friendica 88cd5800cf [privacy] rework latest fix 2012-03-06 17:21:14 -08:00
friendica c37ffd2999 can_write_wall documentation 2012-03-05 15:04:43 -08:00
friendica 5161be67e9 logging of manage identities 2012-01-27 12:56:36 -08:00
friendica 94b9e9ce6d for people whose DB's are not updating 2012-01-26 23:08:51 -08:00
friendica 167ab537b5 backend for delegating forums 2012-01-26 16:52:12 -08:00
friendica 8aa2552372 add remove_user hook (it looks like dreamhost changed all my file permissions, this will make a nasty commit) 2012-01-18 16:21:30 -08:00
friendica 4b6990e1ff modularise successful authentication 2012-01-12 15:46:39 -08:00
Friendika bc5935061b dfrn friendship issue 2011-08-18 16:47:45 -07:00
Friendika 48ffa880f0 cleanup 2011-08-07 16:15:54 -07:00
Friendika 53653f6a4d consolidate perrmisions sql, minor duepuntozero validation fixes 2011-06-30 17:35:35 -07:00
Friendika b7292bc673 user pref -> block remote wall posting 2011-03-20 17:54:50 -07:00
Friendika 4d84a87ce4 cache result of (expensive) security check for visitor rights
begin tightening x-profile security
2010-12-02 21:09:55 -08:00
Friendika e521dfd5e6 refactor outgoing comment ability for off network contacts 2010-11-08 20:43:58 -08:00
Friendika 188b1d2d6f participate in public conversations 2010-11-08 20:15:42 -08:00
Mike Macgirvin ac824fe83e eradicate redundant get_uid function 2010-10-18 14:34:59 -07:00
Mike Macgirvin be981a4f8a wrong type comparison (string, int) which was the cause of the last problem. 2010-10-17 20:27:27 -07:00
Mike Macgirvin 1d2fdb259e funny behaviour with post permissions after recent changes 2010-10-17 20:24:58 -07:00
Mike Macgirvin 3789c288a7 dash, not underscore 2010-10-17 20:13:45 -07:00
Mike Macgirvin 0f47ac282c celebrity/group/community pages about 75% implemented 2010-10-17 20:04:17 -07:00
Mike Macgirvin 188dc1fcf8 relationship direction was too confusing to work with. instead of "in,out,both" it's now declared by role e.g. "vip,fan,bud". 2010-09-21 19:51:08 -07:00
Mike Macgirvin e0045a43e2 mongo checkin, global directory, redir rework, location basics 2010-08-19 04:59:31 -07:00
Mike Macgirvin 6695b4a203 more bugs 2010-07-19 06:58:03 -07:00
Mike Macgirvin 6348e70daa Initial checkin 2010-07-01 16:48:07 -07:00