tt-rss.git - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author
2021-02-05	initial WIP for php8; bump php version requirement to 7.0	Andrew Dolgov

2020-12-15	purge_intervals global: set '1 week old' to mean 7 days instead of 5 (???)	Andrew Dolgov

2020-09-22	router: only allow functions without required parameters as handler methods	Andrew Dolgov

2020-09-22	remove a lot of stuff from global context (functions.php), add a few helper ↵	Andrew Dolgov
	classes instead
2020-09-15	public/logout: require valid CSRF token	Andrew Dolgov

2020-09-15	- backend: require CSRF token to be passed via POST	Andrew Dolgov
	- do not leak CSRF token via GET request in feed debugger - rework Article/redirect to use POST
2019-12-20	backend: load invoked classes via reflection so object constructor is called ↵	Andrew Dolgov
	after it has been verified as an IHandler implementation. this should prevent a potential router vulnerability if non-IHandler autoloader-enabled class is requested by malicious authorized user and invoked class object does something insecurely in its constructor.
2019-12-06	remove testing for get_magic_quotes_gpc: deprecated in php7.4, apparently ↵	Andrew Dolgov
	not working since php 5.4
2015-07-15	update intervals: use less broken english for a change	Andrew Dolgov

2015-03-30	add a wrapper for standard error codes returned by backend, also add ↵	Andrew Dolgov
	explanation to the error object if possible
2013-04-18	fix missing DB object when instantiated to import opml	Andrew Dolgov

2013-04-18	make pluginhost a singleton	Andrew Dolgov

2013-04-17	remove db_connect, db_close; CLI fixes	Andrew Dolgov

2013-04-17	remove $link	Andrew Dolgov

2013-04-17	more work on singleton-based DB	Andrew Dolgov

2013-04-17	db updates, remove init_connection()	Andrew Dolgov

2013-04-11	backend: add session validation check	Andrew Dolgov

2013-04-01	generated feeds: support if-modified-since	Andrew Dolgov

2013-02-27	replace getmicrotime() wrapper with microtime(true) (2)	Andrew Dolgov

2013-01-12	use text/json content-type in a few more places	Andrew Dolgov

2013-01-05	modify includes to init session before translations are applied	Andrew Dolgov

2012-12-25	experimental support for per-user plugins (bump schema)	Andrew Dolgov

2012-12-24	remove magpie, fix article filter plugins	Andrew Dolgov

2012-12-23	implement plugin routing masks, add example plugin	Andrew Dolgov

2012-12-23	experimental new plugin system	Andrew Dolgov

2012-12-09	modify include path order (closes #514)	Andrew Dolgov

2012-09-10	rework login form	Andrew Dolgov

2012-09-10	login system fixes	Andrew Dolgov
	remove old-style session checking from backend.php move outside subscription endpoint to public.php, change subscription bookmarklet
2012-09-07	remove twitter-specific code	Andrew Dolgov

2012-08-21	remove hook-based plugins	Andrew Dolgov

2012-08-17	rework class system to use subdirectories	Andrew Dolgov
	add placeholder plugin/hook system
2012-08-16	routing: check if created handler is a subclass of Handler	Andrew Dolgov

2012-08-16	split authentication to separate modules	Andrew Dolgov

2012-07-10	do not perform sanity checks on each backend request	Andrew Dolgov

2012-03-20	only enable ob_gzhandler if it exists	Andrew Dolgov

2012-01-08	do not generate warning on csrf_token being unassigned	Andrew Dolgov

2011-12-26	disable csrf logging	Andrew Dolgov

2011-12-26	experimental CSRF protection	Andrew Dolgov

2011-12-15	include path fix for lighttpd	Andrew Dolgov

2011-12-13	move API to classes/	Andrew Dolgov

2011-12-13	add Public_Handler	Andrew Dolgov
	misc code cleanup
2011-12-13	add Pref_Filters	Andrew Dolgov

2011-12-13	add Pref_Users class	Andrew Dolgov

2011-12-13	add pref_labels class	Andrew Dolgov

2011-12-13	compat fix for old-style backend methods	Andrew Dolgov

2011-12-13	move help to backend class	Andrew Dolgov

2011-12-13	add catchall backend class	Andrew Dolgov

2011-12-13	add pref_prefs class	Andrew Dolgov

2011-12-13	add pref_feeds class	Andrew Dolgov

2011-12-13	implement tiny-OOP routing	Andrew Dolgov