mirror/php-phpbb
1
0
Fork 0
mirror of https://github.com/phpbb/phpbb.git synced 2025-05-29 02:29:21 +02:00
Code Issues Releases Wiki Activity
31,354 Commits 18 Branches 192 Tags
Commit Graph

11056 Commits

Author SHA1 Message Date
Marc Alexander
a7c02304a5
Merge branch '3.2.x' into 3.3.x 2019-09-20 22:23:06 +02:00
Marc Alexander
f0afccb173
Merge branch 'prep-release-3.2.8' into 3.2.x 2019-09-20 22:21:47 +02:00
Marc Alexander
08842e6ba5
[prep-release-3.2.8] Update version numbers for 3.2.8 release 2019-09-08 21:52:42 +02:00
Marc Alexander
a9a44c295f
Merge pull request #5679 from mrgoldy/ticket/16123 
[ticket/16123] Show proper banned email message
 2019-09-08 21:37:54 +02:00
mrgoldy
6e20cd5d22
[ticket/16123] Remove redundant if check 
PHPBB3-16123
 2019-09-07 21:59:06 +02:00
mrgoldy
56e2f1a3f6
[ticket/16123] Check with empty() 
PHPBB3-16123
 2019-09-07 21:58:47 +02:00
mrgoldy
850ea776d9
[ticket/16123] Show proper banned email message 
PHPBB3-16123
 2019-09-07 21:58:42 +02:00
Marc Alexander
d613984660
Merge branch '3.2.x' into 3.3.x 2019-09-01 13:33:05 +02:00
mrgoldy
88ec8cdcc6 [ticket/16084] Remove redundant backup radio button 
PHPBB3-16084
 2019-08-26 00:28:51 +02:00
Marc Alexander
26215517dd
Merge pull request #50 from phpbb/ticket/security/246 
[ticket/security/246] Check form key no matter if submit is set
 2019-08-25 18:27:30 +02:00
Marc Alexander
56477a8f7c
[ticket/security/244] Add form token check to plupload 
SECURTIY-244
 2019-08-24 22:23:38 +02:00
kinerity
54c684051b
[ticket/16134] Exclude group leaders on group member purge 
PHPBB3-16134
 2019-08-22 14:07:45 +02:00
Marc Alexander
9c15594fe4
[3.2.x] Update version numbers to 3.2.9-dev 2019-08-17 21:44:17 +02:00
Marc Alexander
f3d89e0e08
[prep-release-3.2.8] Update version numbers to 3.2.8-RC1 2019-08-17 11:18:05 +02:00
Marc Alexander
7dd822942a
Merge branch '3.2.x' into 3.3.x 2019-08-17 11:02:16 +02:00
Marc Alexander
9a992a4866
Merge pull request #5656 from 3D-I/ticket/16019 
[ticket/16019] Deny prosilver's uninstallation
 2019-08-17 11:02:08 +02:00
Marc Alexander
f5f03d24e9
Merge branch '3.2.x' into 3.3.x 2019-08-15 10:47:34 +02:00
Marc Alexander
93a472f08e
Merge pull request #5654 from 3D-I/ticket/16080 
[ticket/16080] ACP - Provide meaningful error msg for deleted installed style
 2019-08-15 10:47:29 +02:00
3D-I
78f0ec8ea7 [ticket/16080] Remove sprintf() 
PHPBB3-16080
 2019-08-13 20:55:10 +02:00
3D-I
463807fcf0 [ticket/16019] Code's enhancement 
PHPBB3-16019
 2019-08-13 06:39:46 +02:00
3D-I
aec25f24ae [ticket/16019] Get rid of the uninstall link 
PHPBB3-16019
 2019-08-13 06:08:25 +02:00
3D-I
6cc16af75f [ticket/16019] Amend code for the better 
PHPBB3-16019
 2019-08-13 05:32:34 +02:00
3D-I
af84fb71e0 [ticket/16019] Move code to before of confirm box is submitted 
PHPBB3-16019
 2019-08-13 05:01:09 +02:00
3D-I
3fbdb2f345 [ticket/16019] Deny prosilver's uninstallation 
PHPBB3-16019
 2019-08-13 04:31:07 +02:00
Marc Alexander
c0bd3122e0
Merge branch '3.2.x' into 3.3.x 2019-08-12 21:40:17 +02:00
Marc Alexander
89e95941b1
Merge pull request #5650 from 3D-I/ticket/16127 
[ticket/16127] Add UI for email $max_chunk_size
 2019-08-12 21:40:09 +02:00
3D-I
37de0f96d1 [ticket/16080] Use placeholder 
PHPBB3-16080
 2019-08-12 21:15:54 +02:00
3D-I
964c212f03 [ticket/16080] Provide a meaningful error message for deleted installed style 
PHPBB3-16080
 2019-08-12 01:20:33 +02:00
3D-I
1de4a65e58 [ticket/16080] Change location as it should have been. 
PHPBB3-16080
 2019-08-12 00:49:06 +02:00
3D-I
ebd958c728 [ticket/16080] Provide a back-trace for deleted installed style 
That's a very edge case, I am using the same approach done in user.php

PHPBB3-16080
 2019-08-11 23:21:48 +02:00
Marc Alexander
3947970d0b
Merge branch '3.2.x' into 3.3.x 2019-08-11 20:02:16 +02:00
Marc Alexander
38e5913338
Merge pull request #5637 from EA117/ticket/16054 
[ticket/16054] Restore ability to login from any template.
 2019-08-11 20:02:11 +02:00
Marc Alexander
08ee5a608b
Merge branch '3.2.x' into 3.3.x 2019-08-11 17:36:24 +02:00
Marc Alexander
48522fd938
Merge pull request #5643 from dark-1/ticket/16113 
[ticket/16113] Add core.mcp_topic_modify_sql_ary
 2019-08-11 17:36:19 +02:00
Marc Alexander
96335c0402
Merge branch '3.2.x' into 3.3.x 2019-08-11 17:15:50 +02:00
Marc Alexander
0854c7226d
Merge pull request #5651 from 3D-I/ticket/15897 
[ticket/15897] Fix Emojis' SQL Error in Attachment Comment
 2019-08-11 17:15:46 +02:00
Marc Alexander
bf6f1cac8f
Merge branch '3.2.x' into 3.3.x 2019-08-11 17:10:37 +02:00
Marc Alexander
5fe3719f13
Merge pull request #5634 from dark-1/ticket/16111 
[ticket/16111] Add core.message_history_modify_sql_ary
 2019-08-11 17:10:32 +02:00
3D-I
d18e547332 [ticket/15897] Fix Emojis' SQL Error in Attachment Comment 
PHPBB3-15897
 2019-08-10 21:02:45 +02:00
3D-I
f21c5f9fef [ticket/16127] Amend input validation PHP side 
PHPBB3-16127
 2019-08-08 21:38:42 +02:00
3D-I
b6e5a5fca8 [ticket/16127] Minimum 1 and rephrasing. 
PHPBB3-16127
 2019-08-08 01:33:16 +02:00
3D-I
82a04debca [ticket/16127] Add UI for email $max_chunk_size 
PHPBB3-16127
 2019-08-07 22:28:40 +02:00
Derky
2f85fc53dc Merge branch '3.2.x' into 3.3.x 2019-07-30 07:39:16 +02:00
Derky
6ada02b060 Merge pull request #5628 from marc1706/ticket/16101 
[ticket/16101] Add Referrer-Policy header to phpBB's headers
 2019-07-30 07:34:13 +02:00
Marc Alexander
e086d4039e
Merge branch '3.2.x' into 3.3.x 2019-07-29 21:38:18 +02:00
Marc Alexander
51205febe3
Merge pull request #5635 from EA117/ticket/16066 
[ticket/16066] Fix FORM_INVALID always returned for banned user.
 2019-07-29 21:38:13 +02:00
Dark❶
cd75b712d4
[ticket/16113] Add core.mcp_topic_modify_sql_ary 
PHPBB3-16113
 2019-07-29 03:13:29 +05:30
EA117
792882ef63 [ticket/16054] Restore ability to login from any template. 
Moving the login form's add_form_key() work into page_header(), so that the
template variables required for presenting a login form are again available
to any template that chooses to consume them.

PHPBB3-16054
 2019-07-28 15:15:39 -05:00
EA117
636fc7fad7 [ticket/16066] Fix FORM_INVALID always returned for banned user. 
After the introduction of add_form_key() and check_form_key() calls to
login_box() in phpBB 3.2.6 and later, if a banned user attempts to login,
they receive a "The submitted form was invalid. Try submitting again."
Instead of the message indicating that they are banned, and why.

This is happening because check_ban() actually calls into login_box()
recursively, but after the $user->session_id has been switched to a new
session ID for the logging-on user.  Therefore, now that check_form_key()
has been introduced to login_box(), it is impossible for check_form_key()
to succeed during this recursive call.

Fix is to make login_box()'s use of check_form_key() conditional on whether
IN_CHECK_BAN is defined, so that the recursive call does not attempt to
re-validate the form_key again.  Note the form_key has already been
successfully verified by the original call into login_box(), prior to calling
into check_ban() and attempting to recursively call login_box().  So the
protection of why check_form_key() was added is still intact with this change.

PHPBB3-16066
 2019-07-28 12:25:54 -05:00
Marc Alexander
2df9230902
Merge branch '3.2.x' into 3.3.x 2019-07-28 17:18:40 +02:00