Qiang Xue
f4cbadb37b
Merge pull request #896 from wicaksono/development
...
Use str_replace() rather than implode-explode
11 years ago
Niko Wicaksono
2765bcccf8
Use str_replace() rather than implode-explode
11 years ago
Larry Ullman
dde7d731a5
Doing more editing...
11 years ago
Qiang Xue
463ff43b4f
test break fix.
11 years ago
Qiang Xue
ae39324e54
Support ajax redirection.
11 years ago
Qiang Xue
3acca93ad3
Enable CSRF validation by default.
11 years ago
Qiang Xue
41f7a7d243
Supports more elements to use data-confirm and data-method attributes.
11 years ago
Qiang Xue
1aeb86df78
refactored Request::validateCsrfToken().
11 years ago
Qiang Xue
4f555a5751
Fixed CSRF validation bug.
11 years ago
Qiang Xue
f9b957554f
Added Controller::enableCsrfValidation to support turning on/off CSRF validation for particular actions.
11 years ago
Qiang Xue
0fc423c74a
Added support for data-method and data-confirm.
11 years ago
Carsten Brandt
1f8ab8106d
updated classmap
11 years ago
Carsten Brandt
df6176edb6
added unit test for Model::load()
11 years ago
Carsten Brandt
128ee07b78
100% test coverage for CacheSession
11 years ago
Carsten Brandt
bd2404f1c6
added simple unit test for CacheSession
11 years ago
Carsten Brandt
b8ffee6559
moved CacheSession::init() parent call after init of cache component
...
session autostart would fail otherwise.
fixes #887
11 years ago
Qiang Xue
c2a3aa3d99
Fixes #885 : removed NULLs from filtering by models.
11 years ago
Alexander Makarov
bb6d0f1b47
Merge pull request #888 from sergon/patch-5
...
Update passwordResetToken.php
11 years ago
Alexander Makarov
2426ae5f7d
Merge pull request #889 from sergon/patch-6
...
Update SiteController.php
11 years ago
gsd
41e2c41002
Update SiteController.php
11 years ago
gsd
29394758ba
Update passwordResetToken.php
11 years ago
Carsten Brandt
3a347c3587
added property docs to AR test classes
11 years ago
Carsten Brandt
ef13a11f66
moved getPDOType() back to Command to avoid dependency on Schema
...
fixes #854
11 years ago
Carsten Brandt
cc09ef56b9
updated @property annotations of web\Request
11 years ago
Carsten Brandt
0e261fba5a
moved redis out of yii\db namespace
11 years ago
Carsten Brandt
9c3a488d75
Merge pull request #883 from pmoust/travis-yaml
...
Added Memcached for Travis
11 years ago
Qiang Xue
9836b28ed3
Fixes #884 .
11 years ago
Qiang Xue
2deff126cf
Supports sending CSRF token via HTTP header.
11 years ago
Qiang Xue
2db91187db
Use .prop() instead .attr().
11 years ago
Qiang Xue
1aa836ffc7
use meta tags to pass CSRF token.
11 years ago
Panagiotis Moustafellos
315af43e84
Merge branch 'hotfix/travis-memcached' into develop
11 years ago
Panagiotis Moustafellos
f38c516ac5
Added memcached service in Travis YAML
11 years ago
Alexander Makarov
240b42aa0c
fixed typo
11 years ago
Carsten Brandt
43d15155c6
cleanup db `use` statements
11 years ago
Qiang Xue
dd59dd1db7
doc fix.
11 years ago
Alexander Makarov
bc9a6f3e16
Better strtr arguments format
11 years ago
Qiang Xue
ad479dd7f6
Modified js registration position.
11 years ago
Qiang Xue
51c29e444d
renamed Request::csrfTokenName to csrfVar.
...
added version, csrfVar and csrfToken to yii js module.
11 years ago
Alexander Makarov
f5778b6bf0
Advanced application enhancements.
...
- Turned on CSRF validation by default.
- Added access control for login, signup and logout for frontend application.
- Added access control for login, logout and index for backend application.
- YII_ENV is now defined for all applications.
- No trace is writted to logs if debug is turned off.
- Added default error view for frontend and backend.
- In frontend application captcha will always ask for "testme" if YII_ENV is defined as "test".
11 years ago
Alexander Makarov
325f83f66b
Basic application enhancements.
...
- Turned on CSRF validation by default.
- Application params are now readed before config is defined to be able to use values from params when configuring.
- Added access control for login and logout.
11 years ago
Alexander Makarov
f34d7064ea
Better phpdoc for AccessControl
11 years ago
Alexander Makarov
a8d21805f5
Security::generateRandomKey enhancements:
...
- Equals sign is now replaced with dot.
- Slash is now replaced with dash.
- Better phpdoc.
11 years ago
Alexander Makarov
0284bc4a45
Fixes #875 : Security::generateRandomKey() can now be safely used in URLs
11 years ago
Alexander Makarov
4a9efc9e75
Corrected schema used for MySQL
11 years ago
Alexander Makarov
523a63f576
Added TYPE_BIGPK to Schema
11 years ago
Qiang Xue
a2b4ef0f82
Fixes #876 .
11 years ago
Carsten Brandt
0a5b1a935e
simplified memcache installation on travis
11 years ago
Carsten Brandt
a1af321d38
fixed typo in apc install script
11 years ago
Carsten Brandt
34ebe65cf5
added apc,redis and memcache(d) to travis
11 years ago
Carsten Brandt
949dda5fdb
tagged tests with @group tags
11 years ago