Permalink
Commits on May 11, 2012
  1. removed deprecation warnings

    Michael Berkovich committed May 11, 2012
  2. various fixes for remote server

    Michael Berkovich committed May 11, 2012
Commits on May 10, 2012
  1. fixes for remote server access

    Michael Berkovich committed May 10, 2012
Commits on May 4, 2012
  1. complete javascript reworking

    Michael Berkovich committed May 4, 2012
Commits on Apr 20, 2012
  1. local server improvements

    Michael Berkovich committed Apr 20, 2012
Commits on Apr 14, 2012
  1. fixed local server for remote access

    Michael Berkovich committed Apr 14, 2012
  2. major enhancements and fixes

    Michael Berkovich committed Apr 14, 2012
Commits on Apr 12, 2012
  1. added tml support preference

    Michael Berkovich committed Apr 12, 2012
Commits on Apr 10, 2012
  1. updated version

    berk committed Apr 10, 2012
  2. incremented version

    berk committed Apr 10, 2012
  3. moved javascripts to main folder

    berk committed Apr 10, 2012
  4. incremented version

    berk committed Apr 10, 2012
  5. add attr_accessible to models

    berk committed Apr 10, 2012
Commits on Apr 9, 2012
  1. fixed key verification issue

    Michael Berkovich committed Apr 9, 2012
  2. Merge branch 'master' of github.com:berk/tr8n

    Michael Berkovich committed Apr 9, 2012
    Conflicts:
    	app/models/tr8n/translation_key.rb
  3. moved key verification into its own property

    Michael Berkovich committed Apr 6, 2012
    Conflicts:
    
    	app/models/tr8n/translation_key.rb
    	lib/tr8n/config.rb
  4. Merge pull request #33 from plerohellec/patch-2

    berk committed Apr 9, 2012
    Prevent (unlikely) SQL injection. It's really nit-picking but automated ...
  5. Merge pull request #32 from plerohellec/patch-1

    berk committed Apr 9, 2012
    There could be a redirect vulnerability here or even XSS. For example if...
Commits on Apr 6, 2012
  1. added table annotations

    berk committed Apr 6, 2012
Commits on Apr 5, 2012
  1. Prevent (unlikely) SQL injection. It's really nit-picking but automat…

    plerohellec committed Apr 5, 2012
    …ed penetration test tools raise an alarm on this.
  2. There could be a redirect vulnerability here or even XSS. For example…

    plerohellec committed Apr 5, 2012
    … if source url is set to "%64%61%74%61%3a%74%65%78%74%2f%68%74%6d%6c%3b%62%61%73%65%36%34%2c%50%48%4e%6a%63%6d%6c%77%64%44%35%68%62%47%56%79%64%43%67%6e%57%46%4e%54%4a%79%6b%38%4c%33%4e%6a%63%6d%6c%77%64%44%34%4b", javascript could get executed.
    
    Prevent that by making sure protocol and hostname in the redirected url match the current protocol and host.
  3. fixed instructions

    berk committed Apr 5, 2012
  4. fixed doc link

    berk committed Apr 5, 2012
  5. updated documentation

    berk committed Apr 5, 2012
  6. updated gem file

    berk committed Apr 5, 2012
  7. incremented version

    berk committed Apr 5, 2012
  8. added comments

    berk committed Apr 5, 2012
Commits on Apr 3, 2012
  1. added inflector to JS SDK

    berk committed Apr 3, 2012
Commits on Apr 2, 2012
  1. refactored api verification

    berk committed Apr 2, 2012
  2. key source tracking should only be performed if it is enabled in the …

    berk committed Apr 2, 2012
    …config for creating a sitemap or if the request came from an API through a JavaScript flush