tonyair/silverstripe-framework
1
0
Fork 0
mirror of https://github.com/silverstripe/silverstripe-framework synced 2024-10-22 12:05:37 +00:00
Code Issues Projects Releases Wiki Activity
silverstripe-framework/core
History
Ingo Schommer ac4c207846 ENHANCEMENT Session::start() forces PHPSESSID cookies to be httpOnly (no access by JS) to improve clientside security (from r114567) 
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/branches/2.4@114571 467b73ca-7a2a-4603-9d3b-597d59a354a9
2011-02-02 14:20:04 +13:00
..
control
BUGFIX Don't allow HTML formatting in RequestHandler->httpError() by sending "Content-Type: text/plain" response headers. (from r114444)
2011-02-02 14:20:03 +13:00
model
BUGFIX Escaping $locale values in Translatable->augmentSQL() in addition to the i18n::validate_locale() input validation (from r114515)
2011-02-02 14:20:04 +13:00
ArrayData.php
ENHANCEMENT: added getter to get array back out of an ArrayData instance. MINOR: updated docblocks in ArrayData
2011-02-02 14:19:39 +13:00
ArrayLib.php
ENHANCEMENT Use array_combine() instead of custom logic for ArrayLib::valuekey() (thanks paradigmincarnate!)
2011-02-02 14:19:35 +13:00
ClassInfo.php
ENHANCEMENT #5977 Added optional argument to ClassInfo::getValidSubClasses() and removed harcoded SiteTree
2011-02-02 14:19:49 +13:00
Convert.php
ENHANCEMENT: html2raw now properly replace strong tag with asterix #5494
2011-02-02 14:19:37 +13:00
Cookie.php
BUGFIX Cookies set to a value other than NULL (effectively unsetting the cookie) will now use the httpOnly parameter by default for better XSS protection (from r101045)
2011-02-02 14:19:00 +13:00
Core.php
BUGFIX #6201 Use of set_include_path() did not always include sapphire paths in some environments
2011-02-02 14:20:02 +13:00
Extension.php
API CHANGE: Extension no longer inherits from Object.
2009-08-11 08:35:14 +00:00
HTTP.php
BUGFIX: added optional separator for http_build_query in HTTP:setGetVar(). this fixes sorting columns in ModelAdmin (ticket #5325).
2011-02-02 14:19:12 +13:00
i18n.php
BUGFIX Check for valid locale in i18n::set_locale()/set_default_locale()/include_locale_file()/include_by_locale() (as defined in i18n::$allowed_locales). Implicitly sanitizes the data for usage in controllers. (from r114469)
2011-02-02 14:20:03 +13:00
i18nEntityProvider.php
Merged changes from 2.3 branch
2009-02-01 23:49:53 +00:00
i18nTextCollector.php
ENHANCEMENT Allowing i18nTextCollector to discover entities in templates stored in themes/ directory (thanks nlou) (from r113918)
2011-02-02 14:20:01 +13:00
i18nTextCollectorTask.php
MINOR Unified permission control for i18nTextCollectorTask, TaskRunner, TestRunner, ModelViewer, DevelopmentAdmin, TestViewer, MigrateTranslatableTask
2009-09-10 01:49:56 +00:00
ManifestBuilder.php
MINOR Moved class-specific documentation from doc.silverstripe.org back into class-level PHPDoc
2011-02-02 14:19:38 +13:00
Object.php
BUGFIX #5337: Allow decoration of DataObject
2011-02-02 14:19:11 +13:00
Requirements.php
ENHANCEMENT: in referencing a file in combine_files() it should fall back to standard requirement tags if combining has been disabled eg dev mode
2011-02-02 14:19:33 +13:00
Session.php
ENHANCEMENT Session::start() forces PHPSESSID cookies to be httpOnly (no access by JS) to improve clientside security (from r114567)
2011-02-02 14:20:04 +13:00
SSViewer.php
ENHANCEMENT #6023 Shorten SSViewer cached template path for readability of the filenames, and also so Windows doesn't break on long paths
2011-02-02 14:19:52 +13:00
TokenisedRegularExpression.php
Merged in parent::__construct() additions from branches/2.3 - r83580 and r83587
2009-09-18 03:02:19 +00:00
ValidationException.php
MINOR phpdoc documentation
2009-03-22 22:59:14 +00:00
ValidationResult.php
MINOR Removed message alteration from ValidationResult->error() to make it more predictable for string matching in unit tests like SecurityTest
2011-02-02 14:18:25 +13:00
ViewableData.php
MINOR Using SecurityToken in ViewableData->getSecurityID()
2011-02-02 14:19:58 +13:00