silverstripe-framework/core
Ingo Schommer 1222b4d146 ENHANCEMENT 'bypassStaticCache' cookie set in Versioned is limited to httpOnly flag (no access by JS) to improve clientside security
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@114568 467b73ca-7a2a-4603-9d3b-597d59a354a9
2010-12-06 00:29:20 +00:00
..
control BUGFIX Don't allow HTML formatting in RequestHandler->httpError() by sending "Content-Type: text/plain" response headers. 2010-12-02 08:03:17 +00:00
model ENHANCEMENT 'bypassStaticCache' cookie set in Versioned is limited to httpOnly flag (no access by JS) to improve clientside security 2010-12-06 00:29:20 +00:00
ArrayData.php ENHANCEMENT: added getter to get array back out of an ArrayData instance. MINOR: updated docblocks in ArrayData (from r108012) 2010-10-18 22:39:19 +00:00
ArrayLib.php ENHANCEMENT Use array_combine() instead of custom logic for ArrayLib::valuekey() (thanks paradigmincarnate!) (from r107380) 2010-10-15 03:24:32 +00:00
ClassInfo.php ENHANCEMENT #5977 Added optional argument to ClassInfo::getValidSubClasses() and removed harcoded SiteTree (from r110467) 2010-10-19 01:31:56 +00:00
Convert.php ENHANCEMENT: html2raw now properly replace strong tag with asterix #5494 (from r107443) 2010-10-15 03:51:55 +00:00
Cookie.php BUGFIX Cookies set to a value other than NULL (effectively unsetting the cookie) will now use the httpOnly parameter by default for better XSS protection (from r101045) (from r101046) 2010-10-04 04:40:50 +00:00
Core.php BUGFIX #6201 Use of set_include_path() did not always include sapphire paths in some environments (from r113976) 2010-12-05 08:40:28 +00:00
Extension.php API CHANGE: Extension no longer inherits from Object. 2009-08-11 08:35:14 +00:00
HTTP.php BUGFIX: added optional separator for http_build_query in HTTP:setGetVar(). this fixes sorting columns in ModelAdmin (ticket #5325). (from r103012) 2010-10-13 01:48:24 +00:00
i18n.php BUGFIX Including template /lang folders in i18n::include_by_locale() (implementation started in r113919) (from r114208) 2010-12-05 08:43:38 +00:00
i18nEntityProvider.php Merged changes from 2.3 branch 2009-02-01 23:49:53 +00:00
i18nTextCollector.php ENHANCEMENT Allowing i18nTextCollector to discover entities in templates stored in themes/ directory (thanks nlou) 2010-11-18 19:00:13 +00:00
i18nTextCollectorTask.php MINOR Unified permission control for i18nTextCollectorTask, TaskRunner, TestRunner, ModelViewer, DevelopmentAdmin, TestViewer, MigrateTranslatableTask 2009-09-10 01:49:56 +00:00
ManifestBuilder.php MINOR Moved class-specific documentation from doc.silverstripe.org back into class-level PHPDoc (from r107725) 2010-10-15 03:55:22 +00:00
Object.php MINOR: Several changes merged from branches/2.4 2010-10-13 01:35:19 +00:00
Requirements.php ENHANCEMENT: in referencing a file in combine_files() it should fall back to standard requirement tags if combining has been disabled eg dev mode (from r107091) 2010-10-15 03:09:15 +00:00
Session.php ENHANCEMENT Session::start() forces PHPSESSID cookies to be httpOnly (no access by JS) to improve clientside security 2010-12-06 00:28:27 +00:00
SSViewer.php ENHANCEMENT #6023 Shorten SSViewer cached template path for readability of the filenames, and also so Windows doesn't break on long paths (from r111086) 2010-10-19 03:44:37 +00:00
TokenisedRegularExpression.php Merged in parent::__construct() additions from branches/2.3 - r83580 and r83587 2009-09-18 03:02:19 +00:00
ValidationException.php MINOR phpdoc documentation 2009-03-22 22:59:14 +00:00
ValidationResult.php MINOR Removed message alteration from ValidationResult->error() to make it more predictable for string matching in unit tests like SecurityTest (merged from r98275) 2010-02-23 04:31:47 +00:00
ViewableData.php MINOR Using SecurityToken in ViewableData->getSecurityID() (from r113274) 2010-12-05 08:24:37 +00:00