1. 16 Mar, 2017 1 commit
    • noplanman's avatar
      Use Redbean as DBAL (#118) · 7abdd377
      noplanman authored
      * Add doctrine/dbal to the mix.
      
      * Change main pages to use new DB connection with doctrine DBAL.
      Rename some variables to improve readability.
      
      * Use function arguments instead of array.
      
      * Use doctrine DBAL for db scripts.
      
      * Use DBAL for pull.php.
      
      * Use DBAL for go.php.
      
      * Use DBAL for rate.php.
      
      * Use DBAL for podstat.php.
      
      * Use DBAL for api.php and api-more.php.
      
      * Convert all pod fields to string.
      
      * Move from Doctrine DBAL to RedBeans.
      
      * Add temporary fix for boolean property in pull.php
      
      * Add dedicated migration script for adding id column as unique primary key.
      7abdd377
  2. 01 Feb, 2017 1 commit
  3. 20 Jan, 2017 1 commit
  4. 15 Jan, 2017 1 commit
  5. 14 Jan, 2017 1 commit
  6. 13 Jan, 2017 2 commits
  7. 12 Jan, 2017 6 commits
  8. 03 Jan, 2017 1 commit
  9. 23 Dec, 2016 1 commit
  10. 22 Dec, 2016 2 commits
  11. 21 Dec, 2016 5 commits
  12. 17 Dec, 2016 2 commits
  13. 27 Nov, 2016 1 commit
  14. 17 Jan, 2016 1 commit
    • Marcel Müller's avatar
      Fix XSS in all messages using the pod's name. · 26e27e6b
      Marcel Müller authored
      This commit fixes a Persistent XSS. The problem was that at no point the output
      was sanitized, allowing each pod to control the column 'name' in the database.
      Since this can be set to anything one wants it can be malicious.
      Using htmlentities(name, ENT_QUOTES) should be sufficient to ward this off.
      26e27e6b
  15. 10 Feb, 2015 1 commit
  16. 01 Feb, 2015 1 commit
  17. 03 Jul, 2014 1 commit
  18. 26 Apr, 2014 1 commit
  19. 07 Mar, 2014 1 commit
  20. 01 Aug, 2013 1 commit
    • arlo gn's avatar
      Cross-domain communication with JSONP · 6ec1789f
      arlo gn authored
      Enable cors for all domains isn't a good practice. Maybe in this case is better use jsonp. I added a new param to get response with this method.
      6ec1789f
  21. 06 Jul, 2013 1 commit
  22. 04 Jun, 2013 1 commit
  23. 27 May, 2013 1 commit
  24. 14 Feb, 2013 1 commit
  25. 08 Oct, 2012 1 commit