5b7622ce90
[cosm] many cosmetic comment fixes, + ensure license and copyright everywhere
2017-10-08 19:31:34 +02:00
8ba0fbf88c
[fix] error message not appearing in main.php (in case of CSRF failure)
2017-10-07 17:49:19 +02:00
3de55aca37
[cosm] reindent, check language of comments, ensure /** phpdoc style comments, simplify file header (license only) etc.
2017-10-06 23:42:39 +02:00
ff154144e5
fonctions + local + db
2017-08-15 03:39:37 +02:00
5421c05aae
Error on isset for X_FORWARDED_PROTO
...
Should be `isset($_SERVER["HTTP_X_FORWARDED_PROTO"])` and not `!isset($_SERVER["HTTP_X_FORWARDED_PROTO"])`
Avoid a notice :
`PHP Notice: Undefined index: HTTP_X_FORWARDED_PROTO in /usr/share/alternc/panel/class/config.php on line 170`
2017-08-06 23:31:22 +02:00
6d72cc522b
adding x-forwarded-proto = https management to detet https too
2017-06-07 14:31:30 +02:00
5ef516e0ba
Merge branch 'stable-3.1' of github.com:AlternC/AlternC into stable-3.1
2016-08-09 16:44:34 +02:00
16bd8278a4
[fix] allow HTTPS on any panel (you'd better use letsencrypt then, but that's a valid choice. Fixes #106
2016-08-09 16:44:30 +02:00
04c36baa77
Update config.php
...
See Issue #106
AlternC should allow HTTPS panel access for different host names
2016-07-13 12:19:33 +02:00
b205d6bf8a
[wip] CSRF check should work better now...
2016-05-23 13:59:16 +02:00
23a438de99
[wip] csrf check: moving the check to the right place: before authentication
2016-05-23 08:33:32 +02:00
de5837750e
same random system everywhere : mt_rand()
2016-05-22 17:40:57 +02:00
6043e9c3d7
[wip] securing *all* forms through CSRF management (requires a new table)
2016-05-20 14:21:47 +02:00
06076b6fe0
moving https check down to AFTER hook/err initialization
2016-05-18 15:04:19 +02:00
bc5c8f7e34
Merge branch 'pdo_migration' into 20160515-secu
...
Conflicts:
bureau/class/config.php
bureau/class/db_mysql.php
bureau/class/m_action.php
bureau/class/m_variables.php
2016-05-17 15:10:37 +02:00
28f09e31e1
More explicit message for sql names length limit
2016-04-28 12:54:53 +02:00
b28b73e913
issue #75 : defines length of sql user and database names depending of the local configuration.
2016-04-27 19:04:49 +02:00
06fdadbcd0
bug fix: rediction to https was called inside shell call
2016-03-03 16:20:41 +01:00
d041bcbeca
fix test if variables is set
2016-03-03 16:06:38 +01:00
2bf3f45466
bug fix #40 : force_https variable was disabled by commit bbd913e6e6
...
now redirects peacefully a client when connecting to non SSL panel.
2016-03-03 15:08:27 +01:00
c18e3ca9f3
fixes #37 #68
2016-03-03 13:47:08 +01:00
3e42567048
REFACTORING: code formatting of the panel + braces on if/while/for + fixe some missing or too many Globals in functions
2015-09-25 00:01:04 +02:00
06f77b057f
fixing HTTP AUTH (was in test, now in production)
2015-06-16 14:38:00 +02:00
2014abb1e5
[ROLLBACK] rolling back the old way of working on variables. new using 'strata' is undocumented and not working
2014-11-27 15:30:49 +01:00
0301409dbf
adding changelog, fixing srand() not properly called by php itself
2014-11-25 11:38:55 +01:00
c96f928056
fixing alternc_shutdown bug
2014-08-27 11:20:54 +02:00
824151f216
restored the DB_System for compatibility issues
2014-07-04 23:39:50 +02:00
0c88edaf0f
restored the db_system extends db_sql for backward compatibility, $db remains a db_sql()
2014-06-26 09:48:22 +00:00
3352babbf3
toward PDO and beyond!
2014-06-26 09:40:04 +00:00
d2e69b4975
Corrige des variables
2014-03-28 11:37:36 +00:00
8dbec8e243
Enleve les derniere declaration de var de mysql.sql et les range dans config.
2014-03-27 16:40:30 +00:00
02f735ecdf
Some cosmetic
2014-03-26 14:36:36 +00:00
6adef177c9
[fix] code documentation, comments and cosmetic changes
2014-03-26 14:29:08 +01:00
ed3ab589dd
Coding style
2014-03-26 11:22:32 +00:00
df35ae1b74
Facepalm.
2014-02-27 17:12:02 +00:00
b04ea5c362
Update domain en PHP
...
NOrmalement, tout roule.
2014-02-27 16:43:11 +00:00
7af68b7979
Chemin absolu pour xhprof
2014-02-05 13:51:27 +00:00
f91898b537
Patch pour XHPRof
2014-01-30 17:33:52 +00:00
2583bc73f2
Permet d'activer xhprof
2014-01-21 08:45:25 +00:00
8f67797f3b
Variables deviens une classe
2014-01-20 13:44:25 +00:00
48248cf5c9
R.I.P. semaphore 18577
2014-01-14 10:24:29 +00:00
7d50c398c7
Améliore la génération de la conf apache
...
* hooks
* retrocompatibilité
2014-01-03 09:30:35 +00:00
bb9f8b111f
Premier jet pour generation de la conf apache (update_domains -> function_hosting) en php
2014-01-02 15:17:40 +00:00
ed34d3bc3c
Maintenant on peux désactiver le login pour tout le monde SAUF l'admin.
...
Pratique lors des mise à jour.
2013-09-12 13:17:04 +00:00
2902601157
Fix #1066
...
Permet de locker tout les jobs
2013-09-12 09:28:31 +00:00
714c26033d
fixing mysql_real_escape_string issue (deprecated)
2013-07-09 21:59:13 +00:00
cab8cc17d3
Remove WEBSERVERS_LOG var
2013-05-13 07:37:29 +00:00
60432b77a9
Allow to have a custom dir for apache logs
2013-04-24 15:26:09 +00:00
785f7afbaf
Panel's logs and webservers' logs can't be separated
2013-04-02 13:17:12 +00:00
52cda8789e
SSO avec PhpMyAdmin sans cookie, avec le SSO officiel
...
PhpMyAdmin sait gérer X serveurs MySQL
Le SSO depuis le panel permet de se loguer sur le bon serveur de l'utilisateur
Tentative de login sur le serveur SSO renvoie sur le meme form, mais avec le serveur suivant
2013-03-01 10:31:23 +00:00
Benjamin Sonntag