aboutsummaryrefslogtreecommitdiffstats
path: root/include/functions_user.inc.php (follow)
Commit message (Collapse)AuthorAgeFilesLines
* feature:2823 Add triggers for login system mistic1002013-01-201-0/+16
| | | | git-svn-id: http://piwigo.org/svn/trunk@20282 68402e56-0260-453c-a942-63ccdbb3a9ee
* update Piwigo headers to 2013 (the end of the world didn't occur as ↵plegall2013-01-011-1/+1
| | | | | | expected on r12922) git-svn-id: http://piwigo.org/svn/trunk@19703 68402e56-0260-453c-a942-63ccdbb3a9ee
* make sure get_sql_condition_FandF() doesn't generate corrupted SQL codemistic1002012-12-081-1/+1
| | | | git-svn-id: http://piwigo.org/svn/trunk@19333 68402e56-0260-453c-a942-63ccdbb3a9ee
* feature 2727: improved backward compatibility with ['pass_convert']plegall2012-11-021-3/+10
| | | | git-svn-id: http://piwigo.org/svn/trunk@18890 68402e56-0260-453c-a942-63ccdbb3a9ee
* feature 2727: improve password security with the use of PasswordHash class.plegall2012-11-021-2/+72
| | | | | | | | | | This class performs salt and multiple iterations. Already used in Wordpress, Drupal, phpBB and many other web applications. $conf['pass_convert'] is replaced by $conf['password_hash'] + $conf['password_verify'] git-svn-id: http://piwigo.org/svn/trunk@18889 68402e56-0260-453c-a942-63ccdbb3a9ee
* - remove unsed code; shorten existing code and improve readability ...rvelices2012-10-121-25/+19
| | | | git-svn-id: http://piwigo.org/svn/trunk@18629 68402e56-0260-453c-a942-63ccdbb3a9ee
* feature 2754: Add "Email" field for user comments + mandatory "Author" mistic1002012-09-231-9/+5
| | | | git-svn-id: http://piwigo.org/svn/trunk@18164 68402e56-0260-453c-a942-63ccdbb3a9ee
* - multisize thumb longest side can be smaller than the square sizervelices2012-02-181-23/+0
| | | | | | - remove unused css, shorten/optimize php called very often (at least theoretically should be faster) git-svn-id: http://piwigo.org/svn/trunk@13240 68402e56-0260-453c-a942-63ccdbb3a9ee
* - remove square/thumb from choices on picture rvelices2012-02-091-47/+24
| | | | | | | | | - fix content margin on password register - purge derivative cache by type of derivative - session saved infos/messages are not given to the page on html redirections - shorter/faster code in functions_xxx git-svn-id: http://piwigo.org/svn/trunk@13074 68402e56-0260-453c-a942-63ccdbb3a9ee
* update Piwigo headers to 2012, last change before the expected (or not) ↵mistic1002012-01-171-1/+1
| | | | | | apocalypse git-svn-id: http://piwigo.org/svn/trunk@12922 68402e56-0260-453c-a942-63ccdbb3a9ee
* merge r12747 from branch 2.3 to trunkplegall2011-12-161-2/+8
| | | | | | | | | | bug 2534 fixed: clean (as clean as possible with MySQL+MyISAM) handle of concurrency on user cache refresh. No more error when regenerating several thumbnails at once. git-svn-id: http://piwigo.org/svn/trunk@12748 68402e56-0260-453c-a942-63ccdbb3a9ee
* removed unused css rules rvelices2011-11-291-4/+1
| | | | git-svn-id: http://piwigo.org/svn/trunk@12670 68402e56-0260-453c-a942-63ccdbb3a9ee
* postpone warning on is_adviser to Piwigo 2.4 to avoid breaking compatibility ↵plegall2011-10-041-2/+4
| | | | | | with plugins git-svn-id: http://piwigo.org/svn/trunk@12339 68402e56-0260-453c-a942-63ccdbb3a9ee
* feature 2027 implemented: the "lost password" feature was rewritten.plegall2011-08-241-0/+48
| | | | | | | | | | | | | | | The algorithm is highly inspired from WordPress : 1) in a single field, you give a username or an email 2) Piwigo sends an email with the activation key 3) the user clicks on the link in the email (with the activation key) and is able to set a new password The "lost password" feature is no longer limited to "classic" users: administrators and webmasters can use it too (no need to tell webmasters that they can only change their password in the database) git-svn-id: http://piwigo.org/svn/trunk@11992 68402e56-0260-453c-a942-63ccdbb3a9ee
* - simplify calculation of auto login key (no need to concatenate 2 hashes)rvelices2011-07-251-5/+2
| | | | git-svn-id: http://piwigo.org/svn/trunk@11826 68402e56-0260-453c-a942-63ccdbb3a9ee
* - removed admin never used function cat_admin_accessrvelices2011-07-151-0/+1
| | | | | | | - removed obsolete known_script template block - added a warning on usage of is_adviser function git-svn-id: http://piwigo.org/svn/trunk@11753 68402e56-0260-453c-a942-63ccdbb3a9ee
* merge r11736 from branch 2.2 to trunkplegall2011-07-131-0/+3
| | | | | | | bug 2338 fixed: force purge on sessions table (each time a user gets connected) git-svn-id: http://piwigo.org/svn/trunk@11737 68402e56-0260-453c-a942-63ccdbb3a9ee
* merge r11355 from branch 2.2 to trunkplegall2011-06-141-20/+18
| | | | | | | | bug 2340 fixed: external authentication was broken, error in SQL syntax and wrong PHP variable name was used. git-svn-id: http://piwigo.org/svn/trunk@11356 68402e56-0260-453c-a942-63ccdbb3a9ee
* feature:1835flop252011-05-121-0/+32
| | | | | | better managment if $conf['insensitive_case_logon'] is true, for identification git-svn-id: http://piwigo.org/svn/trunk@10860 68402e56-0260-453c-a942-63ccdbb3a9ee
* bug:2224 one parameter for change thumnails number (needs some translations)mistic1002011-04-091-3/+0
| | | | git-svn-id: http://piwigo.org/svn/trunk@10198 68402e56-0260-453c-a942-63ccdbb3a9ee
* bug:2234patdenice2011-03-291-0/+4
| | | | | | HTML characters are allowed in username git-svn-id: http://piwigo.org/svn/trunk@9923 68402e56-0260-453c-a942-63ccdbb3a9ee
* bug 1684 fixed: the fix for bug:1683 was an "automatic repair" but it addsplegall2011-02-031-41/+0
| | | | | | | | useless code. We couldn't create a migration task on the stable branch, but on trunk this is possible. git-svn-id: http://piwigo.org/svn/trunk@9074 68402e56-0260-453c-a942-63ccdbb3a9ee
* - fix icon display on index page (calendar by post date)rvelices2011-01-221-5/+0
| | | | | | | - remove unnecessary include_once - mysql functions simplification git-svn-id: http://piwigo.org/svn/trunk@8844 68402e56-0260-453c-a942-63ccdbb3a9ee
* Happy new year 2011plegall2011-01-181-2/+2
| | | | | | | Change "Piwigo - a PHP based picture gallery" into "Piwigo - a PHP based photo gallery" git-svn-id: http://piwigo.org/svn/trunk@8728 68402e56-0260-453c-a942-63ccdbb3a9ee
* lang remove 'Mail address' - use existing 'Email address'rvelices2011-01-121-1/+1
| | | | | | | lang remove unused 'return to homepage' lang change key 'a user use already this mail address' to 'this email address is already in use' git-svn-id: http://piwigo.org/svn/trunk@8635 68402e56-0260-453c-a942-63ccdbb3a9ee
* feature 2060: Remove adviser mode.patdenice2010-12-141-13/+4
| | | | | | First commit: only php files. git-svn-id: http://piwigo.org/svn/trunk@8126 68402e56-0260-453c-a942-63ccdbb3a9ee
* Bug 1760 fixed : Avoid session fixationnikrou2010-07-051-1/+1
| | | | | | | After connection, session id is changed using session_regenerate_id but without removing old session. Passing param true makes the job. git-svn-id: http://piwigo.org/svn/trunk@6660 68402e56-0260-453c-a942-63ccdbb3a9ee
* Bug 1754 fixed : The keyword AS is mandatory for alias in PostgreSQL queriesnikrou2010-07-031-2/+2
| | | | git-svn-id: http://piwigo.org/svn/trunk@6652 68402e56-0260-453c-a942-63ccdbb3a9ee
* Fix bug 1722 : PosgtreSQL wants all fields in select to be in Group by clausenikrou2010-06-091-8/+22
| | | | | | | or agregate function Fix issue for lambda function (incorrect number of params) git-svn-id: http://piwigo.org/svn/trunk@6510 68402e56-0260-453c-a942-63ccdbb3a9ee
* merge r6321 from branch 2.1 to trunkplegall2010-05-241-1/+2
| | | | | | | | | | | bug 1682: r6312 was producing a MySQL error (depending on the MySQL server version) because a count() implies a group by. This code change was checked against MySQL 5.0.75, MySQL 5.0.51 (where the error occured) and SQLite 3.6.22. git-svn-id: http://piwigo.org/svn/trunk@6322 68402e56-0260-453c-a942-63ccdbb3a9ee
* merge r6312 from branch 2.1 to trunkplegall2010-05-231-14/+18
| | | | | | | | | | | | | | bug 1684 fixed: the test to check availability of the user_infos line was wrong. I had changed the old db_num_rows > 0 because it was not working with SQLite. As suggested by nicolas, let's use a simpler trick "count(1)" in the query itself, this way it should work with any database engine. I've also removed the while (true) (ugly infinite loop, with a condition for exit) that was producing an infinite loop for Piwigo installations with 2.0 database model and 2.1 code (before launching upgrade.php) git-svn-id: http://piwigo.org/svn/trunk@6315 68402e56-0260-453c-a942-63ccdbb3a9ee
* merge r6311 from branch 2.1 to trunkplegall2010-05-231-0/+41
| | | | | | | | | bug 1683 fixed: as soon as an admin modifies the admin>conf>options>guest settings, registration is broken. This is because user_infos.theme/language are emptied (while they should not). I have also added an "automatic repair" piece of code in get_default_user_info function. This piece of code should be removed for 2.2 with the appropriate migration task. git-svn-id: http://piwigo.org/svn/trunk@6314 68402e56-0260-453c-a942-63ccdbb3a9ee
* bug 1648 fixed: add the pwg_db_check_version functions for pdo-sqlite, sqliteplegall2010-05-071-1/+1
| | | | | | | | | | and pgsql, also make the $pwg_db_link global in the install_db_connect function so that it can be used in SQLite functions. bug fixed: with pdo-sqlite, pwg_db_num_rows always returns 0, so when initializing user data, it tries to insert the same row twice. git-svn-id: http://piwigo.org/svn/trunk@6090 68402e56-0260-453c-a942-63ccdbb3a9ee
* feature 1630: upgrade to Piwigo 2.1 :-)plegall2010-04-281-1/+15
| | | | | | bug 1604: only activate core themes not all themes. git-svn-id: http://piwigo.org/svn/trunk@5982 68402e56-0260-453c-a942-63ccdbb3a9ee
* Add function is_webmaster (like is_admin function)rub2010-03-231-0/+9
| | | | | | Add on ignore list the directory local/personal git-svn-id: http://piwigo.org/svn/trunk@5272 68402e56-0260-453c-a942-63ccdbb3a9ee
* bug fixed: if the theme for guest is empty (I don't know how this could be,plegall2010-03-221-1/+1
| | | | | | | but it has been reported), the fallback on constant PHPWG_DEFAULT_TEMPLATE was not working. git-svn-id: http://piwigo.org/svn/trunk@5271 68402e56-0260-453c-a942-63ccdbb3a9ee
* feature 1514: improvement, if a user has a theme that is (maybe temporary)plegall2010-03-221-5/+6
| | | | | | | unactive, we fallback on default theme (the real default theme, the one set for default user) git-svn-id: http://piwigo.org/svn/trunk@5264 68402e56-0260-453c-a942-63ccdbb3a9ee
* increase copyright year to 2010plegall2010-03-191-1/+1
| | | | git-svn-id: http://piwigo.org/svn/trunk@5196 68402e56-0260-453c-a942-63ccdbb3a9ee
* bug 1328: backport the pwg_token on trunkplegall2010-03-191-7/+32
| | | | | | | | | bug 1329: backport the check_input_parameter on trunk feature 1026: add pwg_token feature for edit/delete comment. Heavy refactoring on this feature to make the code simpler and easier to maintain (I hope). git-svn-id: http://piwigo.org/svn/trunk@5195 68402e56-0260-453c-a942-63ccdbb3a9ee
* feature 1502: based on Dotclear model, P@t has reorganized the way Piwigoplegall2010-03-131-3/+7
| | | | | | | manages template/theme in a simpler "theme only level" architecture. It supports multiple level inheritance. git-svn-id: http://piwigo.org/svn/trunk@5123 68402e56-0260-453c-a942-63ccdbb3a9ee
* Renaming $conf['no_case_sensitive_for_login'] to ↵Eric2010-03-061-1/+1
| | | | | | $conf['insensitive_case_logon'] according with VDigital's proposal git-svn-id: http://piwigo.org/svn/trunk@5060 68402e56-0260-453c-a942-63ccdbb3a9ee
* Feature 1451 : localization with gettextnikrou2010-03-021-7/+7
| | | | | | | | | | | Use php-gettext (developpement version rev43, because of php5.3) as fallback Use native language (english) instead of key for translation Keep directory en_UK for english customization Need some refactoring for plurals Todo : managing plugins in the same way git-svn-id: http://piwigo.org/svn/trunk@5021 68402e56-0260-453c-a942-63ccdbb3a9ee
* Feature 0000796 fixed : Strengthen login handlingEric2009-12-051-0/+34
| | | | git-svn-id: http://piwigo.org/svn/trunk@4429 68402e56-0260-453c-a942-63ccdbb3a9ee
* Feature_1255 :nikrou2009-11-291-1/+1
| | | | | | | - single quotes in queries - start using $conf['dblayer'] git-svn-id: http://piwigo.org/svn/trunk@4385 68402e56-0260-453c-a942-63ccdbb3a9ee
* Feature 1255: modification in sql queriesnikrou2009-11-251-4/+4
| | | | | | | | | - manage random function - manage regex syntax - manage quote (single instead of double) - manage interval git-svn-id: http://piwigo.org/svn/trunk@4367 68402e56-0260-453c-a942-63ccdbb3a9ee
* Feature 1244 resolvednikrou2009-11-201-22/+22
| | | | | | | | Replace all mysql functions in core code by ones independant of database engine Fix small php code synxtax : hash must be accessed with [ ] and not { }. git-svn-id: http://piwigo.org/svn/trunk@4325 68402e56-0260-453c-a942-63ccdbb3a9ee
* Escape all login and username characters in databaseEric2009-11-181-8/+8
| | | | | | | | Display correctly usernames (I hope not to have made mistakes) git-svn-id: http://piwigo.org/svn/trunk@4304 68402e56-0260-453c-a942-63ccdbb3a9ee
* Feature 1241 resolved. replace mysql_fetch_array by mysql_fetch_assoc for ↵nikrou2009-11-151-10/+10
| | | | | | small php code improvements git-svn-id: http://piwigo.org/svn/trunk@4265 68402e56-0260-453c-a942-63ccdbb3a9ee
* PHP 5.3 compatibility - Deprecated functions were replace as follows :Eric2009-08-171-2/+2
| | | | | | | | | | ereg() -> preg_match() ereg_replace() -> preg_replace() eregi() -> preg_match() with the 'i' modifier eregi_replace() -> preg_replace() with the 'i' modifier set_magic_quotes_runtime() -> No more usefull. Fixed it by adding "@" prefix. git-svn-id: http://piwigo.org/svn/trunk@3747 68402e56-0260-453c-a942-63ccdbb3a9ee
* - bug fix (use uasort for computed categories instead of usort) - I think ↵rvelices2009-07-201-1/+1
| | | | | | this is an old bug and somehow it worked before) git-svn-id: http://piwigo.org/svn/trunk@3642 68402e56-0260-453c-a942-63ccdbb3a9ee