- Jun 04, 2017
-
-
Osoitz authored
-
- Jun 02, 2017
-
-
Osoitz authored
-
- May 26, 2017
-
-
Andreas Gohr authored
the new version of the validator is static. But it makes sense to use a single point of entry anyway, so instead of adjusting the use of the new class, prefer the function.
-
Andreas Gohr authored
-
- May 25, 2017
-
-
Andreas Gohr authored
Various plugins access the form members directly currently.
-
- May 21, 2017
-
-
LarsDW223 authored
Adjusted pattern for matching media links to properly handle a single '}' in the link text. Fixes #1587.
-
- May 18, 2017
-
-
Andreas Gohr authored
-
- May 15, 2017
-
-
Andreas Gohr authored
-
- May 13, 2017
-
-
Gerry Weißbach authored
If an entry in the loop at `_tpl_metaheaders_action` has no content, skip this entry.
-
- May 12, 2017
-
-
Andreas Gohr authored
There are still some left in the DifferenceEngine code
-
Andreas Gohr authored
-
Andreas Gohr authored
-
Andreas Gohr authored
This should fix some tests on PHP 7.1. The work is far from done, we still have a lot of variables without proper accessibility defined.
-
- Apr 24, 2017
-
-
Elchin authored
-
- Apr 19, 2017
-
-
Max-Julian Pogner authored
This change breaks compatibility with php 5.3.7, but a standing requirement for at least php 5.6 is declared in composer.json. If the php documentation is to be believed, this change increases security against pass-the-hash type attacks. (I do not have the knowledge to assess the security differences between $2a$ and $2y$). As a Sidenote: htpasswd shipped with apache2 2.4.10 (and probably, other versions), when used with the -B (=bcrypt) option, produces hashes marked with $2y$. Nonewithstanding the actual support or non-support of $2a$ by the apache2 'AuthUserFile' directive, the apache 2.4 documentation only asserts support for the $2y$ bcrypt variant. Therefore, this commit would make it possible for dokuwiki and apache2 basic authentication to share the same password file, in the case when bcrypt is used.
-
David Surroca authored
-
- Apr 05, 2017
-
-
Kris Charatonik authored
-
Pavel Krupička authored
-
- Apr 04, 2017
-
-
Zacharias Sdregas authored
-
Andreas Gohr authored
-
- Mar 31, 2017
-
-
Andreas Gohr authored
-
Andreas Gohr authored
-
Takamura authored
I supplemented the existing comments on the methods in which there was not enough information to the standard phpDoc.
-
Takamura authored
I supplemented the existing comments on the methods in which there was not enough information to the standard phpDoc.
-
Takamura authored
I supplemented the existing comments on the methods in which there was not enough information to the standard phpDoc.
-
Takamura authored
I supplemented the existing comments on the methods in which there was not enough information to the standard phpDoc.
-
Andreas Gohr authored
-
- Mar 16, 2017
-
-
Szymon Olewniczak authored
-
CeeKay authored
-
Àngel Pérez Beroy authored
-
Martin Růžička authored
squashed a whole bunch of PRs closes #1907 closes #1908 closes #1909 closes #1910 closes #1911 closes #1912 closes #1913 closes #1914 closes #1915 closes #1916 closes #1917 closes #1918 closes #1919 closes #1920 closes #1921 closes #1922
-
- Mar 14, 2017
-
-
Felix authored
-
- Mar 08, 2017
-
-
Alfons Rovira authored
-
- Mar 07, 2017
-
-
controlonline.net authored
-
- Mar 02, 2017
-
-
Schplurtz le Déboulonné authored
-
- Mar 01, 2017
-
-
Andreas Gohr authored
-
Andreas Gohr authored
The documentation says sessionIDs are between 22 and 256 chars long. A quick test only showed 26 chars in common configurations, but this should cover all possibilities.
-
Andreas Gohr authored
When an invalid session ID is passed to PHP a warning is thrown, but the session is still initialized with this invalid ID (throwing additional warnings on save). This makes sure such invalid IDs are removed from the cookie array before initializing the session. PHP bug references: https://bugs.php.net/bug.php?id=68063 https://bugs.php.net/bug.php?id=73860
-
Andreas Gohr authored
This partly fixes #1883
-
- Feb 28, 2017
-
-
錢政維 authored
-
