AS1024/Kanboard-Prod
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
4b76bc5b32b27e3a6a810be4d535cde53c268671
Kanboard-Prod/app
History
irdc 4b76bc5b32 Use a HMAC to sign and validate CSRF tokens, instead of generating random ones and storing them in the session data 
* Use a HMAC to sign and validate CSRF tokens, instead of generating random
ones and storing them in the session data. Reduces number of writes to
sessions table and fixes kanboard issue #4942.
* Added missing CSRF check for starting/stopping subtask timers.

Co-authored-by: Willemijn Coene <willemijn@irdc.nl>
2022-09-17 17:23:41 -07:00
..
Action
Update TaskAssignDueDateOnMoveColumn.php
2022-09-15 21:08:59 -07:00
Analytic
Add new analytic component "Estimated vs actual time per column"
2021-02-21 20:22:45 -08:00
Api
Position parameter for Subtask Api proc. update
2021-07-17 10:30:47 -07:00
Auth
Allow email to be retrieve by SSO ReverseProxy
2020-08-28 22:59:59 -07:00
Console
Update jQuery to latest stable version
2022-09-04 15:08:20 -07:00
Controller
Use a HMAC to sign and validate CSRF tokens, instead of generating random ones and storing them in the session data
2022-09-17 17:23:41 -07:00
Core
Use a HMAC to sign and validate CSRF tokens, instead of generating random ones and storing them in the session data
2022-09-17 17:23:41 -07:00
Decorator
Add cache decorator for UserModel
2016-12-17 13:39:03 -05:00
Event
PHP 8 Compatibility
2022-02-05 11:49:03 -08:00
EventBuilder
PHP 8 Compatibility
2022-02-05 11:49:03 -08:00
Export
Translate subtask status on demand
2022-07-11 20:45:06 -07:00
ExternalLink
Update regex to detect external links with attachments
2020-02-05 18:46:13 -08:00
Filter
PHP 8 Compatibility
2022-02-05 11:49:03 -08:00
Formatter
Remove project_id from task URLs
2022-02-04 20:59:33 -08:00
Group
Rename all models
2016-05-28 19:48:22 -04:00
Helper
Use a HMAC to sign and validate CSRF tokens, instead of generating random ones and storing them in the session data
2022-09-17 17:23:41 -07:00
Import
Increase text fields length in several tables
2018-04-11 13:48:13 -07:00
Job
PHP 8 Compatibility
2022-02-05 11:49:03 -08:00
Locale
More precise zh_CN translations
2022-09-15 20:30:50 -07:00
Middleware
Check if user role has changed while the session is open
2019-01-30 20:59:25 -08:00
Model
Translate subtask status on demand
2022-07-11 20:45:06 -07:00
Notification
Send event author in webhook notification
2018-01-02 11:12:19 -08:00
Pagination
Improve dashboard pagination
2018-05-09 11:21:57 -07:00
Schema
Fix General error: 1 no such table: main.task_has_subtasks
2022-03-17 18:10:52 -07:00
ServiceProvider
Remove project_id from task URLs
2022-02-04 20:59:33 -08:00
Subscriber
Write RememberMe cookie only after 2FA has been validated
2021-04-04 17:57:47 -07:00
Template
Translate subtask status on demand
2022-07-11 20:45:06 -07:00
User
Fix various compatibility issues with PHP 8
2022-02-08 22:20:20 -08:00
Validator
Invalidate captcha after it is used
2021-06-05 15:30:03 -07:00
.htaccess
.htaccess: Add compatibility for apache 2.4
2015-10-05 22:46:30 +02:00
check_setup.php
Change minimum requirement to PHP 7.4
2022-02-18 20:28:23 -08:00
common.php
fix config overrides in docker
2018-06-06 15:15:02 -07:00
constants.php
Enable external group synchronization deactivation.
2021-09-24 13:38:41 -07:00
functions.php
Rename default branch from master to main
2022-08-11 21:57:19 -07:00