aboutsummaryrefslogtreecommitdiffstats
path: root/phpBB/includes/functions.php
Commit message (Collapse)AuthorAgeFilesLines
* add nils' request and super globals classMeik Sievertsen2008-12-251-454/+23
| | | | | | rename request:: to phpbb_request:: git-svn-id: file:///svn/phpbb/trunk@9230 89ea8834-ac86-4346-8a33-228a782c2dd0
* ok... now i remember. Added more precise commentsMeik Sievertsen2008-12-031-5/+6
| | | | git-svn-id: file:///svn/phpbb/trunk@9159 89ea8834-ac86-4346-8a33-228a782c2dd0
* Add same redirect disable_cd_check parameter to meta_refresh - #38065Meik Sievertsen2008-12-021-2/+7
| | | | git-svn-id: file:///svn/phpbb/trunk@9154 89ea8834-ac86-4346-8a33-228a782c2dd0
* Slight performance increase for common parameter calls to append_sid() (Bug ↵Meik Sievertsen2008-12-021-12/+27
| | | | | | | | #37555 - Patch by BartVB) Unsure if this works with the mysterious, uncommented block in front of it, the parsed_urls thingy... whoever wrote it, please prod me. :) Or add comments. git-svn-id: file:///svn/phpbb/trunk@9151 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge in r9145Chris Smith2008-12-011-5/+5
| | | | git-svn-id: file:///svn/phpbb/trunk@9147 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge in r9144Chris Smith2008-12-011-0/+8
| | | | git-svn-id: file:///svn/phpbb/trunk@9145 89ea8834-ac86-4346-8a33-228a782c2dd0
* Let's face it - the most common setup we see with phpBB is having ↵Meik Sievertsen2008-11-301-2/+5
| | | | | | | | group-specific settings for external users (FTP, whatever). Changed phpbb_chmod() to set the group bit, even if the PHP user is the owner. (somehow this sounds complicated, i hope you get the idea). git-svn-id: file:///svn/phpbb/trunk@9132 89ea8834-ac86-4346-8a33-228a782c2dd0
* Introducing the new request class. All input his handled through this class.Nils Adermann2008-11-231-126/+513
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | "Given a choice between dancing pigs and security, users will pick dancing pigs every time." (Gary McGraw and Edward Felten) What stays the same? - request_var() keeps working as it used to, alternatively you can directly use request::variable() which allows choosing which super global you want to read So what's new? - request::disable_super_globals() which disables super globals. This function causes any direct use of $_POST, $_GET, $_REQUEST or $_COOKIE to result in an E_USER_ERROR. We hope that this will force MOD authors to at least think about validation as they will have to read about how to use the request class. - request::is_set() / request::is_set_post will be used instead of using isset directly on super globals - request_var() now supports arrays with arbitrary depth - request_var() can be used with an array as the variable name to directly access values in mutli dimensional arrays. What's next? - request::disable_super_globals() will be active by default (set in common.php) - all code will be adjusted to use the new class consistently - tests for the request class to make sure it works as designed and will not change behaviour between releases I've also already updated all the code within functions.php to use the request class. git-svn-id: file:///svn/phpbb/trunk@9101 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge revisions i missed... hopefully not breaking things - did not check ↵Meik Sievertsen2008-11-221-3/+0
| | | | | | every change. git-svn-id: file:///svn/phpbb/trunk@9077 89ea8834-ac86-4346-8a33-228a782c2dd0
* - Do not show link to user/group profiles if user has no permission to view ↵Meik Sievertsen2008-10-091-1/+1
| | | | | | | | | the linked page and gets a denied message anyway. (Bug #15088) - Do not display last post link and sort display options for search engines. (Bug #15088) git-svn-id: file:///svn/phpbb/trunk@8988 89ea8834-ac86-4346-8a33-228a782c2dd0
* [Change] Remove NUL-Bytes directly in request_var() for strings and within ↵Meik Sievertsen2008-10-021-1/+1
| | | | | | the custom DBAL sql_escape() functions (MSSQL, Firebird, Oracle) (reported by AdhostMikeSw) git-svn-id: file:///svn/phpbb/trunk@8968 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge r8956, r8957 and r8960Meik Sievertsen2008-09-301-6/+9
| | | | git-svn-id: file:///svn/phpbb/trunk@8961 89ea8834-ac86-4346-8a33-228a782c2dd0
* Okay, that is pretty raw, but better to have it in place than trying to play ↵Henry Sudhof2008-09-191-25/+5
| | | | | | catch-up. Introducing an early stage of CAPTCHA modules. git-svn-id: file:///svn/phpbb/trunk@8889 89ea8834-ac86-4346-8a33-228a782c2dd0
* Set secure cookie for style switcher if required. (Bug #19625)Meik Sievertsen2008-09-181-2/+4
| | | | git-svn-id: file:///svn/phpbb/trunk@8875 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge r8829, r8830, r8831, r8832, r8833, r8834, r8835, r8836, r8837, r8838Chris Smith2008-09-081-1/+1
| | | | git-svn-id: file:///svn/phpbb/trunk@8839 89ea8834-ac86-4346-8a33-228a782c2dd0
* cleanageMeik Sievertsen2008-09-041-8/+15
| | | | git-svn-id: file:///svn/phpbb/trunk@8822 89ea8834-ac86-4346-8a33-228a782c2dd0
* Remove caching of templates from the database completely, themes is cut down ↵Chris Smith2008-09-041-3/+0
| | | | | | ready for a complete chop, and fix the installer :) git-svn-id: file:///svn/phpbb/trunk@8812 89ea8834-ac86-4346-8a33-228a782c2dd0
* Merge of the language-specific custom path change Revision #r8782Meik Sievertsen2008-08-241-2/+2
| | | | git-svn-id: file:///svn/phpbb/trunk@8786 89ea8834-ac86-4346-8a33-228a782c2dd0
* Merge chmod changes into trunkMeik Sievertsen2008-08-221-0/+134
| | | | git-svn-id: file:///svn/phpbb/trunk@8781 89ea8834-ac86-4346-8a33-228a782c2dd0
* commentsHenry Sudhof2008-08-221-5/+3
| | | | git-svn-id: file:///svn/phpbb/trunk@8779 89ea8834-ac86-4346-8a33-228a782c2dd0
* mergeHenry Sudhof2008-08-211-0/+31
| | | | git-svn-id: file:///svn/phpbb/trunk@8776 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge cookie secure detectionMeik Sievertsen2008-08-011-1/+2
| | | | git-svn-id: file:///svn/phpbb/trunk@8738 89ea8834-ac86-4346-8a33-228a782c2dd0
* margeMeik Sievertsen2008-07-281-0/+5
| | | | git-svn-id: file:///svn/phpbb/trunk@8696 89ea8834-ac86-4346-8a33-228a782c2dd0
* mergeMeik Sievertsen2008-07-271-5/+10
| | | | git-svn-id: file:///svn/phpbb/trunk@8684 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge? merge.Meik Sievertsen2008-06-231-1/+1
| | | | git-svn-id: file:///svn/phpbb/trunk@8672 89ea8834-ac86-4346-8a33-228a782c2dd0
* /me slaps himself for being old schoolDavid M2008-06-121-1/+1
| | | | git-svn-id: file:///svn/phpbb/trunk@8650 89ea8834-ac86-4346-8a33-228a782c2dd0
* The beginnings of the destruction of phpBB's greatest bottleneck, dynamic css...David M2008-06-121-1/+1
| | | | | | | | As of phpBB 3.0.x, we take our "generic" CSS for a theme and later on combine it with the imagesets and languages as needed... What we did for 3.0.x involved dynamically resolving the variables in the CSS and then sending it off, caching it at several layers (except the one that mattered). The biggest issue with style.php is that it is one giant str_replace on every page load, no matter what; cache be damned. Instead, the trick is to cache the full compilation earlier on... Further work to do: kill all the old crap and fully integrate the new solution git-svn-id: file:///svn/phpbb/trunk@8649 89ea8834-ac86-4346-8a33-228a782c2dd0
* added two comments to describe the functions use-caseMeik Sievertsen2008-06-101-0/+2
| | | | git-svn-id: file:///svn/phpbb/trunk@8644 89ea8834-ac86-4346-8a33-228a782c2dd0
* Regular expression for email matching in posts will no longer die on long wordsNils Adermann2008-06-091-1/+1
| | | | git-svn-id: file:///svn/phpbb/trunk@8642 89ea8834-ac86-4346-8a33-228a782c2dd0
* #27395Meik Sievertsen2008-06-091-1/+1
| | | | git-svn-id: file:///svn/phpbb/trunk@8637 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge...Meik Sievertsen2008-06-081-7/+7
| | | | git-svn-id: file:///svn/phpbb/trunk@8624 89ea8834-ac86-4346-8a33-228a782c2dd0
* Some xenophobiaHenry Sudhof2008-06-061-3/+9
| | | | git-svn-id: file:///svn/phpbb/trunk@8612 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge...Meik Sievertsen2008-06-051-4/+4
| | | | git-svn-id: file:///svn/phpbb/trunk@8610 89ea8834-ac86-4346-8a33-228a782c2dd0
* fix adm redirectMeik Sievertsen2008-06-041-1/+1
| | | | git-svn-id: file:///svn/phpbb/trunk@8590 89ea8834-ac86-4346-8a33-228a782c2dd0
* mergeHenry Sudhof2008-06-031-12/+46
| | | | git-svn-id: file:///svn/phpbb/trunk@8587 89ea8834-ac86-4346-8a33-228a782c2dd0
* ok... i hope i haven't messed too much with the code and everything is still ↵Meik Sievertsen2008-05-291-78/+94
| | | | | | | | | | working. Changes: - Ascraeus now uses constants for the phpbb root path and the php extension. This ensures more security for external applications and modifications (no more overwriting of root path and extension possible through insecure mods and register globals enabled) as well as no more globalizing needed. - A second change implemented here is an additional short-hand-notation for append_sid(). It is allowed to omit the root path and extension now (for example calling append_sid('memberlist')) - in this case the root path and extension get added automatically. The hook is called after these are added. git-svn-id: file:///svn/phpbb/trunk@8572 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge again, revisions 8516 to 8525Meik Sievertsen2008-04-211-2/+8
| | | | git-svn-id: file:///svn/phpbb/trunk@8526 89ea8834-ac86-4346-8a33-228a782c2dd0
* merged #r8490Meik Sievertsen2008-04-111-1/+4
| | | | git-svn-id: file:///svn/phpbb/trunk@8504 89ea8834-ac86-4346-8a33-228a782c2dd0
* new isset_post function and some better commentsNils Adermann2008-03-241-2/+38
| | | | git-svn-id: file:///svn/phpbb/trunk@8468 89ea8834-ac86-4346-8a33-228a782c2dd0
* - add error_reporting to style.php (merge from r8464)Nils Adermann2008-03-241-1/+3
| | | | | | | - let the error handler deal with E_STRICT (same as E_WARNING/E_NOTICE) and E_RECOVERABLE_ERROR (same as E_USER_ERROR) git-svn-id: file:///svn/phpbb/trunk@8466 89ea8834-ac86-4346-8a33-228a782c2dd0
* merging... againMeik Sievertsen2008-03-181-1/+1
| | | | git-svn-id: file:///svn/phpbb/trunk@8452 89ea8834-ac86-4346-8a33-228a782c2dd0
* git-svn-id: file:///svn/phpbb/trunk@8413 89ea8834-ac86-4346-8a33-228a782c2dd0Henry Sudhof2008-02-271-1/+0
|
* cross-ciHenry Sudhof2008-02-271-6/+2
| | | | git-svn-id: file:///svn/phpbb/trunk@8411 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge revisions #r8384, #r8387, #r8388, #r8389 and #r8390Meik Sievertsen2008-02-231-2/+22
| | | | git-svn-id: file:///svn/phpbb/trunk@8391 89ea8834-ac86-4346-8a33-228a782c2dd0
* Merging revisions #r8352, #r8353, #r8354 and #r8355Meik Sievertsen2008-01-301-133/+148
| | | | git-svn-id: file:///svn/phpbb/trunk@8356 89ea8834-ac86-4346-8a33-228a782c2dd0
* merge with revision #r8350Meik Sievertsen2008-01-301-6/+6
| | | | git-svn-id: file:///svn/phpbb/trunk@8351 89ea8834-ac86-4346-8a33-228a782c2dd0
* Merging revisions #r8346, #r8347 and #r8348Meik Sievertsen2008-01-291-29/+33
| | | | git-svn-id: file:///svn/phpbb/trunk@8349 89ea8834-ac86-4346-8a33-228a782c2dd0
* Fixed a problem caused by "-x-" variations of a translation, such as ↵Vic D'Elfant2008-01-071-1/+8
| | | | | | fr-x-strict and de-x-sie. We're now sending the main language code to the output so it will at least be a valid language code git-svn-id: file:///svn/phpbb/trunk@8311 89ea8834-ac86-4346-8a33-228a782c2dd0
* Ch-ch-ch-changesDavid M2008-01-041-9/+9
| | | | | | | | | | | - Made us more DB independent by making many queries capability based instead of DB specific - Finished PHP5ifying of the acm_file class, now with some (hopefully) enhancements to its performance - Sped up viewforum considerably (also goes towards mcp_forum) I really hope I didn't explode CVS... git-svn-id: file:///svn/phpbb/trunk@8301 89ea8834-ac86-4346-8a33-228a782c2dd0
* oh boy...David M2008-01-031-118/+10
| | | | | | | - Migrate code base to PHP 5.1+ git-svn-id: file:///svn/phpbb/trunk@8295 89ea8834-ac86-4346-8a33-228a782c2dd0
generated by cgit v1.2.1 (git 2.21.0) at 2025-12-26 22:13:09 +0000