785 Commits

Author	SHA1	Message	Date
Benjamin Sonntag	6581c7d6c4	[doc] misc doc translation fr>en	2017-10-06 22:48:22 +02:00
Benjamin Sonntag	cc64e7745f	[fix] not using debug_backtrace, please, [doc] doc to english	2017-10-06 19:34:50 +02:00
Benjamin Sonntag	1f4ea5d132	no usage in admin/ of the panel. Useless anyway since is_it_my_mail() check it already	2017-10-06 19:12:00 +02:00
Benjamin Sonntag	d25486213e	[fix] uppercase by default for known has_msgs() calls	2017-10-06 18:12:41 +02:00
Benjamin Sonntag	33f8e78885	[fix] class m_messages fixed to use 'level' instead of 'type' or 'cat' + force CAP on levels + merge OK and INFO	2017-10-06 18:04:36 +02:00
quenenni	f6f5a15ded	le mdp des comptes mails étaient changés dans certains cas où il ne fallait pas	2017-09-12 14:49:33 +02:00
quenenni	7dce491b10	petite correction d'affichage de msgs	2017-08-21 17:50:57 +02:00
quenenni	f92f92d34e	suppresion des textes 'à traduire' + corr de 2 bugs	2017-08-18 15:32:16 +02:00
quenenni	5e0d4e8dc7	système de quota - quota Vs du.pl + affichage des quotas pour les utilisateurs	2017-08-17 21:32:21 +02:00
quenenni	7d993ea51d	bug - n'acceptait pas un mdp vide quand on éditait un mail	2017-08-17 16:38:09 +02:00
quenenni	956f6fc2c6	fonction generate_password dans alternc.js	2017-08-17 04:35:51 +02:00
quenenni	6b7d5e7d90	le reste des fichiers & style.css	2017-08-17 03:32:18 +02:00
quenenni	8479d79bde	classe quota & fichiers section admin associés	2017-08-16 19:46:53 +02:00
quenenni	991b4b48e3	classe hta & fichiers section admin associés	2017-08-16 19:34:32 +02:00
quenenni	6f30c8bac4	classe piwik & fichiers section admin associés	2017-08-16 18:29:25 +02:00
quenenni	b4588c870a	classe browser (m_bro) & fichiers section admin associés	2017-08-16 02:44:54 +02:00
quenenni	31d024c5a1	classe dom & fichiers section admin associés	2017-08-16 02:23:22 +02:00
quenenni	8d5953f1c4	classe ftp + fichiers section admin associés	2017-08-15 20:05:02 +02:00
quenenni	6c40d19bbd	classe mysql & fichiers section admin associés	2017-08-15 19:51:04 +02:00
quenenni	b16c3ac69a	classe admin / fichiers section admin associés	2017-08-15 17:03:56 +02:00
quenenni	0d5caada2f	class mail & roundcube + fichiers admins associés	2017-08-15 16:11:57 +02:00
quenenni	2f830d7e4f	Modifs dans le classe membre et la section membre d'admin	2017-08-15 03:19:52 +02:00
Benjamin Sonntag	71980d06a8	removing IP stability check in the panel: it's unenforceable as of 2017 :/ Fixes #173	2017-08-14 10:12:47 +02:00
Benjamin Sonntag	41ad8b3632	fixing a branching issue in mail_doedit, fixes #164	2017-08-12 16:56:06 +02:00
Benjamin Sonntag	46ab94707a	adding mandatory fields to the account creation form, Fixes #132	2017-06-18 18:51:11 +02:00
Benjamin Sonntag	cd310b355a	adding mandatory fields to the account creation form, Fixes #132	2017-06-18 18:45:57 +02:00
Benjamin Sonntag	957098327c	Merge pull request #146 from soul9/fix_pma_sso ... latest security update of phpmyadmin (on wheezy) seems to have disabled the index.php, forcing the browser to go there directly	2017-06-07 15:15:07 +02:00
Remi	611e41a31b	bug fix: set success class to alert-success insted of alert-error after successful mailbox parameters update	2017-02-07 10:20:33 +01:00
Remi	4a2d1dcbdf	bug fix undelete mail	2017-01-24 18:29:13 +01:00
John Soros	bec836f87b	latest security update of phpmyadmin seems to have disabled the indexes so we need to explicitely redirect to .../index.php	2017-01-20 17:41:52 +01:00
Benjamin Sonntag	1dc41d5530	[fix] missing csrf on mail_manage_catchall.php	2016-10-27 16:32:49 +02:00
Benjamin Sonntag	fc068bc938	[fix] invalid token at login time	2016-08-29 16:55:05 +02:00
Benjamin Sonntag	a35288b91e	[fix] the file editor allows an invalid token. Tell the user and give a new one to re-submit. Fixes #111	2016-08-09 16:40:11 +02:00
Remi	0c840f9f2e	bug fix: remove old references to unknown 'bw_web' quota values linking to not existing stats_show_per_month.php page and menu gadget ... (anyone aiming to display custom menu gadget or size based quota could return in_menu=1 and type=size array values in hook_quota_get() function)	2016-07-15 18:40:29 +02:00
Benjamin Sonntag	3ffa78aa5f	[fix] fixing db issue when creating a DB + post/request for SQLRESTORE	2016-07-12 15:54:21 +02:00
Benjamin Sonntag	e381692cbd	[fix] deleting a domain didn't work (post/request check)	2016-05-31 12:13:57 +02:00
Benjamin Sonntag	e806446945	[wip] fixing most found bug during big test at https://pad.lqdn.fr/p/alternc-tests-secu201605	2016-05-26 18:32:17 +02:00
Benjamin Sonntag	93ce8ffd0f	htmlentities in sql_getparams + check if db not found	2016-05-23 16:37:32 +02:00
Benjamin Sonntag	aef4f58e8a	[wip] fixing errors brought by the big security changes... update browser preferences fix + some post/get/request messup + zip not working properly	2016-05-23 16:08:23 +02:00
Benjamin Sonntag	d9d73d204c	fixing most GET/REQUEST to POST if needed	2016-05-23 15:03:13 +02:00
Benjamin Sonntag	b205d6bf8a	[wip] CSRF check should work better now...	2016-05-23 13:59:16 +02:00
Benjamin Sonntag	aaa3d68697	[wip] adding missing ehe() and eue() for htmlentities or urlencode in form fields	2016-05-23 08:27:58 +02:00
Benjamin Sonntag	a956b38c00	[wip] adding missing ehe() and eue() for htmlentities or urlencode in form fields	2016-05-22 20:14:26 +02:00
Benjamin Sonntag	6043e9c3d7	[wip] securing *all* forms through CSRF management (requires a new table)	2016-05-20 14:21:47 +02:00
Benjamin Sonntag	8392c1d84f	fixing quote + doms + roundcube & squirrelmail's quoting using PDO	2016-05-18 15:39:41 +02:00
Benjamin Sonntag	0c505e8b6c	[security] using prepared query in the panel	2016-05-17 18:47:09 +02:00
root	b28b73e913	issue #75: defines length of sql user and database names depending of the local configuration.	2016-04-27 19:04:49 +02:00
Remi	911250a73f	fixes #7: show alert-info instead of alert-error when successfully changins sql users rights	2016-03-03 14:35:57 +01:00
Remi	c18e3ca9f3	fixes #37 #68	2016-03-03 13:47:08 +01:00
Remi	5ab6a47862	fixes some PHP warnings	2016-03-03 12:07:38 +01:00