Permalink
Switch branches/tags
Commits on Jun 20, 2015
  1. remove unwanted user endpoints

    lornajane committed Jun 20, 2015
Commits on Apr 3, 2015
Commits on Apr 2, 2015
  1. Prevent automatic registration from Facebook login

    akrabat committed Apr 2, 2015
    If the Facebook email address is unknown to us, then redirect to the registration page
    and display an error message asking the user to register.
  2. Prevent automatic registration from Twitter login

    akrabat committed Apr 2, 2015
    If the Twitter username is unknown to us, then redirect to the registration page
    and display an error message asking the user to register.
Commits on Feb 24, 2015
Commits on Feb 23, 2015
  1. JIRA-551 #close Closed loophole allowing non-authenticated and non-ev…

    choult committed Feb 23, 2015
    …ent-admin users to delete their comments
Commits on Feb 13, 2015
Commits on Feb 4, 2015
  1. Only display private comments on user's page if user is logged in

    akrabat committed Feb 4, 2015
    JOINDIN-539 #close Fixed.
Commits on Feb 1, 2015
Commits on Jan 30, 2015
  1. Fix adding of required rule

    akrabat committed Jan 30, 2015
Commits on Jan 19, 2015
Commits on Jan 2, 2015
  1. Fixes #JOINDIN-533

    heiglandreas committed Jan 2, 2015
Commits on Dec 15, 2014
Commits on Nov 28, 2014
  1. Merge branch 'disable-spamcheck-in-dev'

    David Stockton committed Nov 28, 2014
  2. Merge branch 'comment-validation'

    David Stockton committed Nov 28, 2014
  3. Only enable the spamcheck service if $params['api_key'] has something…

    akrabat committed Nov 28, 2014
    … in it.
    
    The config.php.dist file sets $config['akismet_key']  = '', which passes
    the isset() test, but then isCommentAcceptable() will always return
    false.
Commits on Nov 27, 2014
  1. Add comment validation rules.

    akrabat committed Nov 27, 2014
    * rating_check: Rating must be between 0 and 5
    * duplicate_comment_check: Comment may not be a duplicate
    
    Note that duplicate_comment_check is inefficient as it works the same
    way as the logic for $already_rated (foreach loop over all user comments).
Commits on Nov 26, 2014
Commits on Nov 23, 2014
  1. set users as verified when they register, we don't have a way of offe…

    lornajane committed Nov 23, 2014
    …ring verification on this platform
Commits on Nov 19, 2014
Commits on Nov 18, 2014
  1. Merge pull request #819 from mgdm/patch-1

    akrabat committed Nov 18, 2014
    Add note about the site being in maintenance mode
  2. Add bold text

    mgdm committed Nov 18, 2014
Commits on Nov 8, 2014
  1. Allow changing the global_xss_filtering config setting to false

    akrabat committed Nov 8, 2014
    This assumed that global_xss_filtering is turned off. Firstly we do
    a password check for the password. If it fails, we then run the
    xss_clean() method on the password and try again. If this then
    succeeds, we update the password in the database so that it's
    we don't need to do this again.
Commits on Oct 25, 2014
Commits on Oct 24, 2014
  1. Use CURL_SSLVERSION_TLSv1 for outbound ssl connections

    ssx committed Oct 24, 2014
    This corrects the issues with Twitter disabling SSLv3 in their API due to POODLE.