4 Commits

Author	SHA1	Message	Date
Slawomir Boczek	790d85a88a	CSRF Protection (#235) ... * Fix alert class name * feature: csrf protection * Cosmetics * Fix token generate * Admin Panel: changelogs csrf protection * news/id route * Refactor admin newses + add csrf * Use admin.links instead * Admin panel: Pages csrf * Menus: better csrf + add success message on reset colors * Plugins csrf * Move definitions * add info function, same as note($message) * Update mailer.php * Fix new page/news links * clear_cache & maintenance csrf * Formatting * Fix news type * Fix changelog link * Add new changelog link * More info to confirm dialog * This is always true	2023-11-11 10:57:57 +01:00
slawkens	e45d27b5c7	* moved most of guilds html-in-php code to twig ... * moved buttons to separate templates * moved online search for to twig	2017-10-18 16:08:15 +02:00
slawkens	7b234ad41f	* moved .htaccess rules to plain php (index.php) ... Its a salut to nginx and other web server nutzer (not apache), as they can now simply redirect all requests with simple rule to index.php, and php will take care of all redirects. .htaccess just now redirects everything to index.php with simple 3 lines. * change accountmanagement links to use friendly_urls * fixed creating new forum thread * some fixes in account changecomment action * show info when account name/number or password is empty on login * fixed showing account login errors * added new twig function getLink that convert link taking into account config.friendly_urls * internalLayoutLink -> getLink	2017-10-06 17:11:06 +02:00
slawkens	c504588993	* added option to add/edit/delete/hide/move forum boards ... * now whole account management page is moved to Twig * renamed table forum_sections to forum_boards * fixed some rare error when user is logged in for longer than 15 minutes and tries to login again	2017-09-12 15:55:23 +02:00