1. 25 Mar, 2012 2 commits
  2. 21 Feb, 2011 1 commit
    • Evan Prodromou's avatar
      Extend authorization framework to cover login and API use · 1525acdc
      Evan Prodromou authored
      I've extended the rights framework (centering on the Right class and Profile::hasRight()) to cover
      Web login and API use. This will make it possible to prevent login and API use by users.
      I added two new Right constants to the Right class: WEBLOGIN and API. I check these rights using
      Profile::hasRight() when initializing users. If the rights check fails, I throw an exception.
      I created a new AuthorizationException class for this particular
      exception, in order to allow a different UI for these kinds of exceptions (or whatever).
  3. 28 Dec, 2010 1 commit
    • Brion Vibber's avatar
      Prevent group creation by silenced users. · d3d97974
      Brion Vibber authored
      * adds Right::CREATEGROUP
      * logic in Profile::hasRight() checks for silencing
      * NewgroupAction checks for the permission before letting you see or process the form in the UI
      * User_group::register() logic does a low-level check on the specified initial group admin, and rejects creation if that user doesn't have the right; guaranteeing that API methods etc will also have this restriction applied sensibly.
  4. 13 Dec, 2010 1 commit
  5. 12 Oct, 2010 1 commit
  6. 03 Mar, 2010 1 commit
  7. 06 Feb, 2010 1 commit
  8. 16 Nov, 2009 4 commits
  9. 15 Nov, 2009 1 commit
  10. 08 Nov, 2009 1 commit
  11. 28 Sep, 2009 1 commit
  12. 26 Aug, 2009 1 commit
  13. 25 Aug, 2009 4 commits
  14. 09 Feb, 2009 1 commit
    • Evan Prodromou's avatar
      First steps to using exceptions for error handling · 9152c0bd
      Evan Prodromou authored
      Added two exception classes: one for client errors (= user can fix) and
      one for server errors (only admin or coder can fix). The web entry point
      now tries to catch exceptions and show them in the browser. The main
      code for showing errors in Action class now throws an exception and lets
      top-level handle it.
  15. 06 Feb, 2009 1 commit
  16. 21 Jan, 2009 1 commit
  17. 15 Jan, 2009 1 commit
  18. 14 Jan, 2009 1 commit
    • Evan Prodromou's avatar
      Modify public stream to use new UI framework · 0093b035
      Evan Prodromou authored
      I modified public.php to use the new UI framework. Since the Action
      class isn't functional yet, I don't know if it works.
      I took some of the functionality, like the public tabs nav and the
      feeds list, and made them widgets.
      I also moved the navigation from common_navigation() to a method of
  19. 23 Dec, 2008 4 commits
    • Evan Prodromou's avatar
      move opening brace of class declaration to next line · b264c03d
      Evan Prodromou authored
      Another gigantor PEAR coding standards patch. Here, I've moved the
      opening curly bracket on a class statement to the following line.
    • Evan Prodromou's avatar
      change function headers to K&R style · 04ef1ba8
      Evan Prodromou authored
      Another huge change, for PEAR code standards compliance. Function
      headers have to be in K&R style (opening brace on its own line),
      instead of having the opening brace on the same line as the function
      and parameters. So, a little perl magic found all the function
      definitions and move the opening brace to the next line (properly
      indented... usually).
    • Evan Prodromou's avatar
      replace NULL with null · eb2f9c98
      Evan Prodromou authored
      Another global search-and-replace update. Here, I've replaced the PHP
      keyword 'NULL' with its lowercase version. This is another PEAR code
      standards change.
    • Evan Prodromou's avatar
      replace all tabs with four spaces · edbc0c66
      Evan Prodromou authored
      The PEAR coding standards decree: no tabs, but indent by four spaces.
      I've done a global search-and-replace on all tabs, replacing them by
      four spaces. This is a huge change, but it will go a long way to
      getting us towards phpcs-compliance. And that means better code
      readability, and that means more participation.
  20. 05 Dec, 2008 1 commit
  21. 14 Nov, 2008 1 commit
  22. 16 Sep, 2008 1 commit
    • Evan Prodromou's avatar
      inbox and outbox for direct messages · 7416e50d
      Evan Prodromou authored
      Added an inbox and outbox for direct messages.
      Factored common code to mailbox.php. Factored common code with
      stream.php to personal.php.