AS1024/Kanboard-Prod
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
4b76bc5b32b27e3a6a810be4d535cde53c268671
Kanboard-Prod/app/Core
History
irdc 4b76bc5b32 Use a HMAC to sign and validate CSRF tokens, instead of generating random ones and storing them in the session data 
* Use a HMAC to sign and validate CSRF tokens, instead of generating random
ones and storing them in the session data. Reduces number of writes to
sessions table and fixes kanboard issue #4942.
* Added missing CSRF check for starting/stopping subtask timers.

Co-authored-by: Willemijn Coene <willemijn@irdc.nl>
2022-09-17 17:23:41 -07:00
..
Action
Allow people to remove missing automatic actions
2017-02-19 12:00:35 -05:00
Cache
Fix some php doc
2016-09-19 20:58:44 -04:00
Controller
Define only what is allowed for column restrictions
2016-09-10 23:12:38 -04:00
Event
Add new event subtask.create_update
2020-04-05 14:50:11 -07:00
ExternalLink
Remove t() from PHPdoc example to avoid confusion
2018-02-05 14:36:43 -08:00
ExternalTask
Add project ID to ExternalTaskProviderInterface::fetch()
2019-07-30 12:58:36 -07:00
Filter
Improve iCalendar feed to include tasks with start/end date and due date with a time
2017-11-08 14:50:02 -08:00
Group
Add user backend provider system
2017-11-09 15:09:54 -08:00
Http
Fix various compatibility issues with PHP 8
2022-02-08 22:20:20 -08:00
Ldap
PHP 8 Compatibility
2022-02-05 11:49:03 -08:00
Log
Add system log driver and use it by default
2018-03-05 13:34:04 -08:00
Mail
Added an option to send a copy of all generated e-mails to a BCC address
2020-12-07 19:49:41 -08:00
Notification
Improve notification classes and move interface to core
2016-05-28 17:36:55 -04:00
ObjectStorage
Remove all attachments when removing a project
2018-04-27 14:32:58 -07:00
Plugin
Rename default branch from master to main
2022-08-11 21:57:19 -07:00
Queue
Store PHP sessions in the database
2017-12-12 15:04:28 -08:00
Security
Use a HMAC to sign and validate CSRF tokens, instead of generating random ones and storing them in the session data
2022-09-17 17:23:41 -07:00
Session
PHP 8 Compatibility
2022-02-05 11:49:03 -08:00
User
Enable external group synchronization deactivation.
2021-09-24 13:38:41 -07:00
Base.php
Add new analytic component "Estimated vs actual time per column"
2021-02-21 20:22:45 -08:00
Csv.php
Change string indexing from {0} to [0] (deprecated in PHP 7.4)
2019-11-09 11:46:53 -08:00
DateParser.php
PHP 8 Compatibility
2022-02-05 11:49:03 -08:00
Helper.php
Improve iCalendar feed to include tasks with start/end date and due date with a time
2017-11-08 14:50:02 -08:00
Markdown.php
Add aria-label to user mention
2020-10-04 10:43:18 -07:00
Paginator.php
Avoid XSS in pagination ordering
2019-01-30 22:05:43 -08:00
Template.php
Use PLUGINS_DIR constant to load plugin templates
2016-04-24 14:46:18 -04:00
Thumbnail.php
Save thumbnails as PNG to allow transparency
2019-07-10 13:12:02 -07:00
Tool.php
Offer the possibility to override internal formatter objects from plugins
2016-12-20 20:06:39 -05:00
Translator.php
PHP 8 Compatibility
2022-02-05 11:49:03 -08:00