php-mpos

Author	SHA1	Message	Date
xisi	76a67cb71a	Changed the config options for CSRF/disabling forms * Now an array to disable with granularity * Fixed all CSRF tokens back to 1 min * Added CSRF protection for unlock account * Unified error message for all csrf tokens * Fixed a few issues with last commit	2014-01-20 04:41:13 -05:00
xisi	8756036646	cleaned up account edit csrf slightly added csrf protection to workers under sitewide config added csrf protection to notifications under sitewide config added csrf protection to invitations under sitewide config cleaned up login page csrf cleaned up contactform/contactform page cleaned up register/register page moved config->csrf->forms->register to sitewide added login ip/user/time to notification on login	2014-01-20 04:29:45 -05:00
xisi	e5c9720174	Finished cleanup of account edit page added csrf protection to account edit page under sitewide config escaped all instances of CTOKEN for csrf in smarty templates	2014-01-20 04:29:13 -05:00
xisi	58529547e0	Cleaned up logic of login page csrf protection added csrf protection to register page	2014-01-20 04:27:22 -05:00
Sebastian Grewe	2b3a3edf3c	[FIX] Do not filter reCaptcha HTML	2014-01-14 11:15:16 +01:00
Sebastian Grewe	f98d08df83	[SECURITY] Fixing XSS in PHP_SELF Fixes #1364 once merged.	2014-01-11 19:01:14 +01:00
Sebastian Grewe	146cf94a5e	[CLEANUP] Registration page	2014-01-08 09:23:42 +01:00
Sebastian Grewe	727b082059	[FIX] Registration password lenght, API class default time	2014-01-07 09:39:43 +01:00
nrpatten	6df340c1ef	Update default.tpl Add Tac Popup Center Captcha align Tac Image	2013-12-19 21:11:51 +11:00
Sebastian Grewe	f465bda350	[ADDED] Accept TaC during registration	2013-12-12 10:11:44 +01:00
Sebastian Grewe	02c9be54ed	[MAJOR] Changing project name to MPOS * Adjusted mmcfe-ng occurences in code * Adjusted Database strucutre to only supply the full structure * Adjusted default template to MPOS Addresses #643	2013-10-07 10:10:49 +02:00

11 Commits