silverstripe-framework/core/control
Sam Minnee 51e34da550 BUGFIX Don't delete index.php after successful installation - in ContentController->deleteinstallfiles(). URL routing might rely on it without mod_rewrite.
BUGFIX Require ADMIN permissions for ContentController->deleteinstallfiles() - together with retaining index.php this removed a vulnerability where unauthenticated users can disrupt mod_rewrite-less URL routing. (from r101227)

git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@111974 467b73ca-7a2a-4603-9d3b-597d59a354a9
2010-10-12 21:56:06 +00:00
..
ContentController.php BUGFIX Don't delete index.php after successful installation - in ContentController->deleteinstallfiles(). URL routing might rely on it without mod_rewrite. 2010-10-12 21:56:06 +00:00
ContentNegotiator.php MINOR Removed calls to ContentNegotiator::disable() since it's disabled by default (from r93682) 2009-11-27 01:46:16 +00:00
Controller.php BUGFIX Cookies set to a value other than NULL (effectively unsetting the cookie) will now use the httpOnly parameter by default for better XSS protection (from r101045) (from r101046) 2010-10-04 04:40:50 +00:00
Director.php MINOR: Director::currentPage() is deprecated but shouldn't throw a notice-level error until the next major release. (from r100670) 2010-08-02 00:43:51 +00:00
FormResponse.php MINOR Removed ContentNegoitator::disable() from FormResponse - it's disabled already (from r93659) 2009-11-27 01:45:06 +00:00
HTTPRequest.php BUGFIX Checking that URL controller in HTTPRequest->match() is a subclass of Controller, not RequestHandler (which would include nested controllers like Form or FormField subclasses that shouldn't be accessible on their own toplevel URL namespace) (from r97881) 2010-04-13 01:30:43 +00:00
HTTPResponse.php API CHANGE: Renamed conflicting classes to have an "SS_" namespace, and renamed existing "SS" namespace to "SS_". The affected classes are: HTTPRequest, HTTPResponse, Query, Database, SSBacktrace, SSCli, SSDatetime, SSDatetimeTest, SSLog, SSLogTest, SSLogEmailWriter, SSLogErrorEmailFormatter, SSLogErrorFileFormatter, SSLogFileWriter and SSZendLog. 2009-10-26 03:06:31 +00:00
ModelAsController.php ENHANCEMENT Redirecting to translated page when original is requested with a 'locale' GET parameter (e.g. 'about-us/?locale=de_DE' will redirect to 'ueber-uns' with a 301 HTTP response). Implemented in ContentController->handleRequest(). (see #5001) (from r100937) 2010-10-04 04:24:01 +00:00
NestedController.php MINOR Unified @package PHPdoc (added where missing, removed duplicates) 2008-06-15 13:33:53 +00:00
RequestHandler.php BUGFIX RequestHandler::handleRequest is now compatible with Controller::handleRequest in that SS_HTTPRequest is the type hint for the $request parameter (from r100919) 2010-10-04 04:20:49 +00:00
RootURLController.php API CHANGE Removed deprecated function RootURLController::get_homepage_urlsegment(), please use RootURLController::get_homepage_link() instead! (from r100493) 2010-05-25 03:58:22 +00:00
SilverStripeNavigatorItem.php BUGFIX: Only show live link when page has been published (from r97839) (from r99089) 2010-04-14 04:07:26 +00:00