- May 01, 2017
-
-
Carsten Rose authored
-
Carsten Rose authored
-
- Apr 30, 2017
-
-
Carsten Rose authored
-
Carsten Rose authored
Html2Pdf.php: Add SIP support wkhtmltopdf URLs. Move cookies for wkhtmltopdf from commandline arguments to filebased.
-
Carsten Rose authored
-
Carsten Rose authored
-
Carsten Rose authored
-
Carsten Rose authored
-
Carsten Rose authored
-
Carsten Rose authored
-
Carsten Rose authored
Session.php: introduced close(). This will unlock the current session. Take care on subsequent calls to reopen primary session again.
-
Carsten Rose authored
-
Carsten Rose authored
-
Carsten Rose authored
-
- Apr 28, 2017
-
-
Carsten Rose authored
-
Rafael Ostertag authored
-
- Apr 27, 2017
-
-
Rafael Ostertag authored
-
Rafael Ostertag authored
-
Rafael Ostertag authored
- Apr 26, 2017
-
-
Rafael Ostertag authored
-
Carsten Rose authored
-
Carsten Rose authored
-
Carsten Rose authored
# Conflicts: # mockup/inputmodeswitcher.html
-
Rafael Ostertag authored
-
Rafael Ostertag authored
# Conflicts: # mockup/inputmodeswitcher.html
-
Carsten Rose authored
-
Carsten Rose authored
-
Rafael Ostertag authored
-
Rafael Ostertag authored
-
Rafael Ostertag authored
-
Rafael Ostertag authored
-
Carsten Rose authored
-
Carsten Rose authored
Renamed two bat files - makes trouble if they are send by email - will be blocked, even if they are inside of a zip.
-
- Apr 24, 2017
-
-
Carsten Rose authored
-
Carsten Rose authored
Implemented defaultEscapeType. configurable via config.qfq.ini (global) and per Form. Implemented max GET parameter lenght. Default: 50. BTW: in phpunit test there have been a parameter 'file' which exceeds the limit of 32. Config.qfq: Skip empty variable names - happens in phpunit tests. Read new `systemEscapeTypeDefault`. Constants.php: renamed TOKEN_LDAP_ESCAPE_* to TOKEN_ESCAPE_LDAP_*. Add TOKEN_ESCAPE_MYSQL, TOKEN_ESCAPE_NONE Database.php: Set charset to real_escape_string() functions properly. Proxy for mysqli::real_escape_string() Evaluate.php: Respect global escapeTypeDefault. Implement formEditor.sql: add column `escapeTypeDefault`. Add FormElement 'escapeTypeDefault'.
-
Carsten Rose authored
-
Carsten Rose authored
-
Carsten Rose authored
Manual.rst: small abstract about implemented security enhancements in QFQ. Sanatize.php: New function urlDecodeArr(). Decode all _GET vars. AbstractBuildForm.php, BuildFormBootstrap.php: form head now contains the honeypot vars.
-
bbaer authored
-