Igor Scheller
|
944c29b964
|
Require POST for sending forms
* Ensure that the form is submitted with a post request
* Replaced several links with forms
Closes #494 (Security Vulnerability)
|
2018-11-21 19:24:36 +01:00 |
Igor Scheller
|
88f3bafa5e
|
Replaced `Auth()` with `auth()`
|
2018-10-31 13:43:23 +01:00 |
Igor Scheller
|
a2aaba9cab
|
User: Bugfixes & code cleanup
|
2018-10-31 13:43:23 +01:00 |
Igor Scheller
|
d7aea575ff
|
Replaced more sql queries and old data
|
2018-10-31 13:43:23 +01:00 |
Igor Scheller
|
4e09ee3eb2
|
Replaced more user related stuff
(Contains some buggy stuff too...)
|
2018-10-31 13:43:23 +01:00 |
Igor Scheller
|
7c6afc2bfe
|
Removed `User($id)` function 🎉
|
2018-10-31 13:43:23 +01:00 |
Igor Scheller
|
89e62c95a7
|
Changed more functions 🎉
|
2018-10-31 13:43:23 +01:00 |
Igor Scheller
|
b069a938c6
|
Changed user_link and some other user functions to use the user id
|
2018-10-31 13:43:23 +01:00 |
Igor Scheller
|
2dcb7cc2de
|
Replaced some global `$user` variables
|
2018-10-31 13:43:23 +01:00 |
Bot
|
e8f8fc7f5f
|
Replaced gettext translation `_()` with `__()` that uses the Translator class
|
2018-08-29 23:46:32 +02:00 |
Igor Scheller
|
fe58e4f422
|
database: updated checks for selectOne
|
2018-01-14 17:47:26 +01:00 |
msquare
|
c961269bb7
|
better hour formatting
|
2017-12-30 12:07:10 +01:00 |
msquare
|
86a38a3372
|
add user work log entries feature
|
2017-12-29 17:19:27 +01:00 |
msquare
|
3993e553d1
|
small improvements of user view
|
2017-12-29 13:12:56 +01:00 |
msquare
|
b59d17918e
|
small improvements of user view
|
2017-12-29 13:09:35 +01:00 |
msquare
|
c3b8fa892d
|
tshirt-score for forced active
|
2017-12-27 20:30:05 +01:00 |
msquare
|
1e8f0c4845
|
fixes #208, fixes #310: T-Shirt Score™ should be shown on the user view page below your shifts
|
2017-12-27 12:24:55 +01:00 |
Bot
|
952c7892f3
|
Formatting & Docstrings
|
2017-12-25 23:51:15 +01:00 |
msquare
|
50f24271eb
|
fix all redirects to home (because of new urls redirect to ? wont work anymore)
|
2017-11-19 10:45:08 +01:00 |
Igor Scheller
|
d0074cf006
|
Merge remote-tracking branch 'engelsystem/feature-igel-rewrite'
# Conflicts:
# includes/controller/angeltypes_controller.php
# includes/pages/admin_groups.php
# includes/pages/user_settings.php
# includes/sys_page.php
# src/Exceptions/Handler.php
# src/Http/Request.php
|
2017-08-29 23:16:41 +02:00 |
Igor Scheller
|
cc01c906ba
|
#336: Integration of symfony/http-foundation request
|
2017-08-29 21:52:07 +02:00 |
Igor Scheller
|
73175e2b64
|
#337: Added routing
|
2017-08-28 17:34:00 +02:00 |
msquare
|
a0af8d4624
|
further switching to db exceptions instead of return false
|
2017-07-28 19:15:52 +02:00 |
msquare
|
5794c4cab8
|
clear delete queries from false resuls
|
2017-07-28 18:50:00 +02:00 |
msquare
|
a157004f4a
|
handle failed db queries in Db class
|
2017-07-23 11:46:54 +02:00 |
Igor Scheller
|
b7ebb05b8e
|
Passwords should be posted
|
2017-07-20 01:03:59 +02:00 |
Igor Scheller
|
3a1e460249
|
Changed $_GET, $_POST and $_REQUEST to use the Request object
|
2017-07-19 11:44:16 +02:00 |
Igor Scheller
|
8506d6d27e
|
Refactoring: Config cleanup / moved to class
|
2017-01-21 23:07:20 +01:00 |
Igor Scheller
|
9a3ad88834
|
Changed from mysqli to PDO, some refactorings, faster sql queries
|
2017-01-21 13:58:53 +01:00 |
Bot
|
55141154c0
|
Replaced " with '
|
2017-01-03 15:32:59 +01:00 |
Bot
|
356b2582f3
|
PPHDoc, formatting, fixes, cleanup
|
2017-01-03 03:22:48 +01:00 |
Bot
|
d71e7bbfad
|
Formatting
|
2017-01-02 15:49:53 +01:00 |
Bot
|
7313e15ce8
|
PSR-2 formatting
|
2017-01-02 03:57:23 +01:00 |
Igor Scheller
|
1f8d1eb4bb
|
Fixed "Constant already defined" notice
Added more ugly global variables
|
2017-01-01 18:50:53 +01:00 |
msquare
|
b8ebd23f6d
|
bring back filtering by occupancy
|
2016-12-29 15:33:21 +01:00 |
msquare
|
fe5dec73ba
|
bring back filtering by occupancy
|
2016-12-29 14:51:43 +01:00 |
msquare
|
4407604793
|
move data sorting to begin
|
2016-12-28 14:53:35 +01:00 |
msquare
|
34248bb20c
|
show freeload comments to supporters (user shift admin)
|
2016-11-25 14:27:47 +01:00 |
msquare
|
f2630162e9
|
reduce complexity of password recovery controller
|
2016-11-15 22:08:41 +01:00 |
msquare
|
eec10ebfc5
|
reduce complexity of user angeltypes controller
|
2016-10-04 16:50:06 +02:00 |
msquare
|
1debe567f5
|
simplify user_angeltype_add_controller
|
2016-09-30 16:55:47 +02:00 |
msquare
|
f05f1a3cd4
|
rename to
|
2016-09-29 12:08:12 +02:00 |
msquare
|
bd9003f5d5
|
prohibit inline control structures on controllers
|
2016-09-29 09:43:08 +02:00 |
msquare
|
53ad1b5110
|
fix codacy unused code
|
2016-08-21 18:00:39 +02:00 |
Philip Häusler
|
ef60b95555
|
add a more secure way to delete users containing a password request
|
2015-12-30 15:48:41 +01:00 |
Philip Häusler
|
902a5852a4
|
fix user result check on user controller
|
2015-12-05 11:55:35 +01:00 |
Philip Häusler
|
803c0a552f
|
make multiple vouchers possible
|
2015-08-12 23:44:39 +02:00 |
Philip Häusler
|
6bede2fd22
|
harden the sql queries
|
2014-12-28 13:44:56 +01:00 |
Philip Häusler
|
16ce2eb969
|
begin cleanup of user edit
|
2014-12-27 21:55:24 +01:00 |
Philip Häusler
|
8ed077bcec
|
user voucher feature
|
2014-12-26 01:49:59 +01:00 |