aboutsummaryrefslogtreecommitdiffstats
path: root/include/functions_user.inc.php (unfollow)
Commit message (Collapse)AuthorFilesLines
2013-06-06bug 2907 fixed (only on 2.5, rvelices did a deeper rewrite for 2.6): wrong ↵plegall1-0/+28
number of sub-albums git-svn-id: http://piwigo.org/svn/branches/2.5@23075 68402e56-0260-453c-a942-63ccdbb3a9ee
2013-03-06bug 2861: avoid "invalid password" with manual upgrade and admin session expiredplegall1-1/+6
git-svn-id: http://piwigo.org/svn/branches/2.5@21236 68402e56-0260-453c-a942-63ccdbb3a9ee
2013-02-04feature 65: fetch_assoc behaves different with mysql and mysqli. When no rowplegall1-4/+12
is returned, mysql returns bool:false, while mysqli returns null and it was breaking completely the installation process. I have faked the old mysql behavior with mysqli (just for get_default_user_infos function) git-svn-id: http://piwigo.org/svn/trunk@20545 68402e56-0260-453c-a942-63ccdbb3a9ee
2013-01-20feature:2823 Add triggers for login system mistic1001-0/+16
git-svn-id: http://piwigo.org/svn/trunk@20282 68402e56-0260-453c-a942-63ccdbb3a9ee
2013-01-01 update Piwigo headers to 2013 (the end of the world didn't occur as ↵plegall1-1/+1
expected on r12922) git-svn-id: http://piwigo.org/svn/trunk@19703 68402e56-0260-453c-a942-63ccdbb3a9ee
2012-12-08make sure get_sql_condition_FandF() doesn't generate corrupted SQL codemistic1001-1/+1
git-svn-id: http://piwigo.org/svn/trunk@19333 68402e56-0260-453c-a942-63ccdbb3a9ee
2012-11-02feature 2727: improved backward compatibility with ['pass_convert']plegall1-3/+10
git-svn-id: http://piwigo.org/svn/trunk@18890 68402e56-0260-453c-a942-63ccdbb3a9ee
2012-11-02feature 2727: improve password security with the use of PasswordHash class.plegall1-2/+72
This class performs salt and multiple iterations. Already used in Wordpress, Drupal, phpBB and many other web applications. $conf['pass_convert'] is replaced by $conf['password_hash'] + $conf['password_verify'] git-svn-id: http://piwigo.org/svn/trunk@18889 68402e56-0260-453c-a942-63ccdbb3a9ee
2012-10-12- remove unsed code; shorten existing code and improve readability ...rvelices1-25/+19
git-svn-id: http://piwigo.org/svn/trunk@18629 68402e56-0260-453c-a942-63ccdbb3a9ee
2012-09-23feature 2754: Add "Email" field for user comments + mandatory "Author" mistic1001-9/+5
git-svn-id: http://piwigo.org/svn/trunk@18164 68402e56-0260-453c-a942-63ccdbb3a9ee
2012-02-18- multisize thumb longest side can be smaller than the square sizervelices1-23/+0
- remove unused css, shorten/optimize php called very often (at least theoretically should be faster) git-svn-id: http://piwigo.org/svn/trunk@13240 68402e56-0260-453c-a942-63ccdbb3a9ee
2012-02-09- remove square/thumb from choices on picture rvelices1-47/+24
- fix content margin on password register - purge derivative cache by type of derivative - session saved infos/messages are not given to the page on html redirections - shorter/faster code in functions_xxx git-svn-id: http://piwigo.org/svn/trunk@13074 68402e56-0260-453c-a942-63ccdbb3a9ee
2012-01-17update Piwigo headers to 2012, last change before the expected (or not) ↵mistic1001-1/+1
apocalypse git-svn-id: http://piwigo.org/svn/trunk@12922 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-12-16merge r12747 from branch 2.3 to trunkplegall1-2/+8
bug 2534 fixed: clean (as clean as possible with MySQL+MyISAM) handle of concurrency on user cache refresh. No more error when regenerating several thumbnails at once. git-svn-id: http://piwigo.org/svn/trunk@12748 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-11-29removed unused css rules rvelices1-4/+1
git-svn-id: http://piwigo.org/svn/trunk@12670 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-10-04postpone warning on is_adviser to Piwigo 2.4 to avoid breaking compatibility ↵plegall1-2/+4
with plugins git-svn-id: http://piwigo.org/svn/trunk@12339 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-08-24feature 2027 implemented: the "lost password" feature was rewritten.plegall1-0/+48
The algorithm is highly inspired from WordPress : 1) in a single field, you give a username or an email 2) Piwigo sends an email with the activation key 3) the user clicks on the link in the email (with the activation key) and is able to set a new password The "lost password" feature is no longer limited to "classic" users: administrators and webmasters can use it too (no need to tell webmasters that they can only change their password in the database) git-svn-id: http://piwigo.org/svn/trunk@11992 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-07-25- simplify calculation of auto login key (no need to concatenate 2 hashes)rvelices1-5/+2
git-svn-id: http://piwigo.org/svn/trunk@11826 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-07-15- removed admin never used function cat_admin_accessrvelices1-0/+1
- removed obsolete known_script template block - added a warning on usage of is_adviser function git-svn-id: http://piwigo.org/svn/trunk@11753 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-07-13merge r11736 from branch 2.2 to trunkplegall1-0/+3
bug 2338 fixed: force purge on sessions table (each time a user gets connected) git-svn-id: http://piwigo.org/svn/trunk@11737 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-06-14merge r11355 from branch 2.2 to trunkplegall1-20/+18
bug 2340 fixed: external authentication was broken, error in SQL syntax and wrong PHP variable name was used. git-svn-id: http://piwigo.org/svn/trunk@11356 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-05-12feature:1835flop251-0/+32
better managment if $conf['insensitive_case_logon'] is true, for identification git-svn-id: http://piwigo.org/svn/trunk@10860 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-04-09bug:2224 one parameter for change thumnails number (needs some translations)mistic1001-3/+0
git-svn-id: http://piwigo.org/svn/trunk@10198 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-03-29bug:2234patdenice1-0/+4
HTML characters are allowed in username git-svn-id: http://piwigo.org/svn/trunk@9923 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-02-03bug 1684 fixed: the fix for bug:1683 was an "automatic repair" but it addsplegall1-41/+0
useless code. We couldn't create a migration task on the stable branch, but on trunk this is possible. git-svn-id: http://piwigo.org/svn/trunk@9074 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-01-22- fix icon display on index page (calendar by post date)rvelices1-5/+0
- remove unnecessary include_once - mysql functions simplification git-svn-id: http://piwigo.org/svn/trunk@8844 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-01-18Happy new year 2011plegall1-2/+2
Change "Piwigo - a PHP based picture gallery" into "Piwigo - a PHP based photo gallery" git-svn-id: http://piwigo.org/svn/trunk@8728 68402e56-0260-453c-a942-63ccdbb3a9ee
2011-01-12lang remove 'Mail address' - use existing 'Email address'rvelices1-1/+1
lang remove unused 'return to homepage' lang change key 'a user use already this mail address' to 'this email address is already in use' git-svn-id: http://piwigo.org/svn/trunk@8635 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-12-14feature 2060: Remove adviser mode.patdenice1-13/+4
First commit: only php files. git-svn-id: http://piwigo.org/svn/trunk@8126 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-07-05Bug 1760 fixed : Avoid session fixationnikrou1-1/+1
After connection, session id is changed using session_regenerate_id but without removing old session. Passing param true makes the job. git-svn-id: http://piwigo.org/svn/trunk@6660 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-07-03Bug 1754 fixed : The keyword AS is mandatory for alias in PostgreSQL queriesnikrou1-2/+2
git-svn-id: http://piwigo.org/svn/trunk@6652 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-06-09Fix bug 1722 : PosgtreSQL wants all fields in select to be in Group by clausenikrou1-8/+22
or agregate function Fix issue for lambda function (incorrect number of params) git-svn-id: http://piwigo.org/svn/trunk@6510 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-05-24merge r6321 from branch 2.1 to trunkplegall1-1/+2
bug 1682: r6312 was producing a MySQL error (depending on the MySQL server version) because a count() implies a group by. This code change was checked against MySQL 5.0.75, MySQL 5.0.51 (where the error occured) and SQLite 3.6.22. git-svn-id: http://piwigo.org/svn/trunk@6322 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-05-23merge r6312 from branch 2.1 to trunkplegall1-14/+18
bug 1684 fixed: the test to check availability of the user_infos line was wrong. I had changed the old db_num_rows > 0 because it was not working with SQLite. As suggested by nicolas, let's use a simpler trick "count(1)" in the query itself, this way it should work with any database engine. I've also removed the while (true) (ugly infinite loop, with a condition for exit) that was producing an infinite loop for Piwigo installations with 2.0 database model and 2.1 code (before launching upgrade.php) git-svn-id: http://piwigo.org/svn/trunk@6315 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-05-23merge r6311 from branch 2.1 to trunkplegall1-0/+41
bug 1683 fixed: as soon as an admin modifies the admin>conf>options>guest settings, registration is broken. This is because user_infos.theme/language are emptied (while they should not). I have also added an "automatic repair" piece of code in get_default_user_info function. This piece of code should be removed for 2.2 with the appropriate migration task. git-svn-id: http://piwigo.org/svn/trunk@6314 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-05-07bug 1648 fixed: add the pwg_db_check_version functions for pdo-sqlite, sqliteplegall1-1/+1
and pgsql, also make the $pwg_db_link global in the install_db_connect function so that it can be used in SQLite functions. bug fixed: with pdo-sqlite, pwg_db_num_rows always returns 0, so when initializing user data, it tries to insert the same row twice. git-svn-id: http://piwigo.org/svn/trunk@6090 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-04-28feature 1630: upgrade to Piwigo 2.1 :-)plegall1-1/+15
bug 1604: only activate core themes not all themes. git-svn-id: http://piwigo.org/svn/trunk@5982 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-03-23Add function is_webmaster (like is_admin function)rub1-0/+9
Add on ignore list the directory local/personal git-svn-id: http://piwigo.org/svn/trunk@5272 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-03-22bug fixed: if the theme for guest is empty (I don't know how this could be,plegall1-1/+1
but it has been reported), the fallback on constant PHPWG_DEFAULT_TEMPLATE was not working. git-svn-id: http://piwigo.org/svn/trunk@5271 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-03-22feature 1514: improvement, if a user has a theme that is (maybe temporary)plegall1-5/+6
unactive, we fallback on default theme (the real default theme, the one set for default user) git-svn-id: http://piwigo.org/svn/trunk@5264 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-03-19increase copyright year to 2010plegall1-1/+1
git-svn-id: http://piwigo.org/svn/trunk@5196 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-03-19bug 1328: backport the pwg_token on trunkplegall1-7/+32
bug 1329: backport the check_input_parameter on trunk feature 1026: add pwg_token feature for edit/delete comment. Heavy refactoring on this feature to make the code simpler and easier to maintain (I hope). git-svn-id: http://piwigo.org/svn/trunk@5195 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-03-13feature 1502: based on Dotclear model, P@t has reorganized the way Piwigoplegall1-3/+7
manages template/theme in a simpler "theme only level" architecture. It supports multiple level inheritance. git-svn-id: http://piwigo.org/svn/trunk@5123 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-03-06Renaming $conf['no_case_sensitive_for_login'] to ↵Eric1-1/+1
$conf['insensitive_case_logon'] according with VDigital's proposal git-svn-id: http://piwigo.org/svn/trunk@5060 68402e56-0260-453c-a942-63ccdbb3a9ee
2010-03-02Feature 1451 : localization with gettextnikrou1-7/+7
Use php-gettext (developpement version rev43, because of php5.3) as fallback Use native language (english) instead of key for translation Keep directory en_UK for english customization Need some refactoring for plurals Todo : managing plugins in the same way git-svn-id: http://piwigo.org/svn/trunk@5021 68402e56-0260-453c-a942-63ccdbb3a9ee
2009-12-05Feature 0000796 fixed : Strengthen login handlingEric1-0/+34
git-svn-id: http://piwigo.org/svn/trunk@4429 68402e56-0260-453c-a942-63ccdbb3a9ee
2009-11-29Feature_1255 :nikrou1-1/+1
- single quotes in queries - start using $conf['dblayer'] git-svn-id: http://piwigo.org/svn/trunk@4385 68402e56-0260-453c-a942-63ccdbb3a9ee
2009-11-25Feature 1255: modification in sql queriesnikrou1-4/+4
- manage random function - manage regex syntax - manage quote (single instead of double) - manage interval git-svn-id: http://piwigo.org/svn/trunk@4367 68402e56-0260-453c-a942-63ccdbb3a9ee
2009-11-20Feature 1244 resolvednikrou1-22/+22
Replace all mysql functions in core code by ones independant of database engine Fix small php code synxtax : hash must be accessed with [ ] and not { }. git-svn-id: http://piwigo.org/svn/trunk@4325 68402e56-0260-453c-a942-63ccdbb3a9ee
2009-11-18Escape all login and username characters in databaseEric1-8/+8
Display correctly usernames (I hope not to have made mistakes) git-svn-id: http://piwigo.org/svn/trunk@4304 68402e56-0260-453c-a942-63ccdbb3a9ee