aboutsummaryrefslogtreecommitdiffstats
path: root/include/user.inc.php (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Improve security of sessions: nikrou2006-01-151-47/+16
| | | | | | | - use only cookies to store session id on client side - use default php session system with database handler to store sessions on server side git-svn-id: http://piwigo.org/svn/trunk@1004 68402e56-0260-453c-a942-63ccdbb3a9ee
* - modification : major simplification of admin.php. Titles are managed byplegall2005-08-171-13/+0
| | | | | | | | | | | | | | | | | | | | | | | | included page, localized items are managed directly in the template. - new : sub template admin/double_select is included in templates admin/cat_options, admin/user_perm and admin/group_perm. I haven't been able to use it in admin/picture_modify because it seems impossible to have two instance of the same sub-template without interfering. - modification : bug 99, in profile manager, no auto submit when changing language (useless and generate accessibility problem). - improvement : HTML semantically correct for administration menu, simpler syntax, less tags, correct tags (dl/dt/dd instead of div/div). - modification : number of waiting elements and unvalidated comments are displayed in admin/intro instead of administration menu (with a link to the dedicated pages). - deletion : no link to profile from admin/user_list anymore (no need). git-svn-id: http://piwigo.org/svn/trunk@817 68402e56-0260-453c-a942-63ccdbb3a9ee
* - new : external authentication in another users table. Previous users tableplegall2005-08-081-109/+7
| | | | | | | | | | | | | | | | | | | | | | | | | is divided between users (common properties with any web application) and user_infos (phpwebgallery specific informations). External table and fields can be configured. - modification : profile.php is not reachable through administration anymore (not useful). - modification : in profile.php, current password is mandatory only if user tries to change his password. Username can't be changed. - deletion : of obsolete functions get_user_restrictions, update_user_restrictions, get_user_all_restrictions, is_user_allowed, update_user - modification : $user['forbidden_categories'] equals at least "-1" so that category_id NOT IN ($user['forbidden_categories']) can always be used. - modification : user_forbidden table becomes user_cache so that not only restriction informations can be stored in this table. git-svn-id: http://piwigo.org/svn/trunk@808 68402e56-0260-453c-a942-63ccdbb3a9ee
* - new feature : use Apache authentication. If $conf['apache_authentication']plegall2005-07-171-0/+29
| | | | | | | | | | | | | | | | is set true : if no user matches $_SERVER['REMOTE_USER'] in "users" table, PWG automatically creates one. This way, users can customize the behaviour of the application. - template : new organisation of identification menu (category.php). Simplification is required for Apache authentication (no logout link even if user is externally logged in) - new : usernames can contain quotes (required because Apache authentication authorized quotes in usernames) git-svn-id: http://piwigo.org/svn/trunk@804 68402e56-0260-453c-a942-63ccdbb3a9ee
* - user list : links to profile page and permissions page are represented byplegall2005-05-091-7/+11
| | | | | | | | | | | | | | | | | | | icons (more compact) - user list : ability to associate to a group or to dissociate from a group a list of selected users - user list : ability to set user properties in "batch" mode (a selection of users at once) - user list : alternate background color for each line - (not in ChangeLog) temporary commented code to update current user language if $_POST['language'] is set (see include/user.inc.php for details) git-svn-id: http://piwigo.org/svn/trunk@787 68402e56-0260-453c-a942-63ccdbb3a9ee
* Bug 99 : javascript error in profile.phpgweltas2005-04-261-1/+10
| | | | | | | Enhancement of the radio class under IE git-svn-id: http://piwigo.org/svn/trunk@772 68402e56-0260-453c-a942-63ccdbb3a9ee
* - deletion of calculated permissions when deleting a userplegall2005-01-081-1/+2
| | | | | | | - taking into account locked categories during permissions calculation git-svn-id: http://piwigo.org/svn/trunk@680 68402e56-0260-453c-a942-63ccdbb3a9ee
* all headers adapted to new year 2005, happy new yearplegall2005-01-071-1/+1
| | | | git-svn-id: http://piwigo.org/svn/trunk@675 68402e56-0260-453c-a942-63ccdbb3a9ee
* - user permissions ask update at each admin page generation. Tableplegall2004-12-251-5/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | user_forbidden must be updated only if current user is not in administrative section - bug fixed : category.php, error on page title when non category selected - admin/search : bug on variable $PHP_SELF, replaced by $_SERVER['PHP_SELF'] - admin/user_perm : inheritence management. When a category become authorized, all parent categories become authorized, when a category become forbidden, all child category become forbidden - no more recursivity in delete_categories function - new function get_fs_directories for future new method of synchronization - new function get_uppercat_ids replacing several pieces of code doing the same - new function get_fulldirs used for metadata function get_filelist and future new method of synchronization - new function get_fs for future new method of synchronization - typo correction on lang item "about_message" - no link to category privacy status management on user permission anymore (giving the menu item instead) git-svn-id: http://piwigo.org/svn/trunk@657 68402e56-0260-453c-a942-63ccdbb3a9ee
* - new feature : lock temporary your gallery for maintenanceplegall2004-12-201-0/+21
| | | | | | | - $user keys for guest user are initialized with default values of $conf git-svn-id: http://piwigo.org/svn/trunk@653 68402e56-0260-453c-a942-63ccdbb3a9ee
* - replacement of PREFIX_TABLE constant in delete_user functionplegall2004-12-201-6/+25
| | | | | | | | | | | | | | | | | | | | | - deletion of $isadmin variable, replaced by constant IN_ADMIN - small refactoring - in include/common.inc.php, deletion of useless part "Obtain and encode users IP" and corresponding functions encode_ip and decode_ip - definition of $conf['default_language'] deleted from include/config.inc.php : it is already present in database table config - function init_userprefs deleted (useless), all its content moved to include/user.inc.php - admin.lang.php and faq.lang.php are loaded only if current user is in administrative section git-svn-id: http://piwigo.org/svn/trunk@650 68402e56-0260-453c-a942-63ccdbb3a9ee
* - in picture.php, $user['maxwidth'] and $user['maxheight'] can be unset ifplegall2004-12-201-31/+42
| | | | | | | | | | | | | | | | | | NULL in database - new table user_forbidden {user_id,need_update,forbidden_categories} and deletion of field users.forbidden_categories - new function calculate_permissions to update table user_forbidden when needed - simplification of include/user.inc.php - in footer of each page, use "-" instead of "::" to separate page information git-svn-id: http://piwigo.org/svn/trunk@648 68402e56-0260-453c-a942-63ccdbb3a9ee
* - bug fixed : in admin/cat_list, next_rank cant' be calculted and query toplegall2004-12-181-16/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | count sub-categories per sub-categories became false if no sub-categories - virtual association come back in admin/infos_images (not only in admin/picture_modify) - check_favorites function in admin section becomes check_user_favorites in public section : favorites are checked when user tries to display his favorites. Function was optimized. - in function update_category, wrap of long queries due to many categories to update at the same time - typo fixed in description of paginate_pages_around configuration parameter - bug fixed in new navigation bar : no separation pipe was displayed between next and last when the page displayed was the last - sessions.expiration changed of type from int to datetime (a lot easier to read) - sessions.ip removed : IP address is no longer used to verify session - $lang['cat_options'] was missing in en_UK.iso-8859-1 - typo fixed in language/en_UK.iso-8859-1/admin.lang.php on editcat_lock_info language item git-svn-id: http://piwigo.org/svn/trunk@647 68402e56-0260-453c-a942-63ccdbb3a9ee
* update headers to comply with GPLz0rglub2004-11-061-4/+4
| | | | git-svn-id: http://piwigo.org/svn/trunk@593 68402e56-0260-453c-a942-63ccdbb3a9ee
* - function mysql_query replaced by pwg_query : the same with debuggingz0rglub2004-10-301-3/+3
| | | | | | | | | features - by default, DEBUG is set to 0 (off) git-svn-id: http://piwigo.org/svn/trunk@587 68402e56-0260-453c-a942-63ccdbb3a9ee
* - checkbox for "remember me" are only shown if authorizedz0rglub2004-10-061-15/+5
| | | | | | | | | | | | | | - simplification : each session is created with a cookie and if PhpWebGallery can't read the cookie, it uses the URI id and it will be used in the add_session_id function. - configuration parameter "auth_method" disappeared (didn't lived much...) - only one session id size possible. More comments for configuration in include/config.inc.php git-svn-id: http://piwigo.org/svn/trunk@555 68402e56-0260-453c-a942-63ccdbb3a9ee
* - deletion of session_time and session_id_size as config parameterz0rglub2004-10-021-32/+42
| | | | | | | | | | | | - new feature : "remember me" creates a long time cookie - possibility to set the default authentication method to URI or cookie - really technical parameters (session identifier size, session duration) are set in the config file and not in database + configuration.php git-svn-id: http://piwigo.org/svn/trunk@541 68402e56-0260-453c-a942-63ccdbb3a9ee
* - Delivery of french translation in order to test i18ngweltas2004-09-231-4/+0
| | | | | | | | - Deletion of collapsed & expanded gifs (obsoletes) - Creation of faq language file for further writing of a end user-oriented FAQ git-svn-id: http://piwigo.org/svn/trunk@532 68402e56-0260-453c-a942-63ccdbb3a9ee
* Installation procedure updategweltas2004-07-281-2/+1
| | | | git-svn-id: http://piwigo.org/svn/trunk@463 68402e56-0260-453c-a942-63ccdbb3a9ee
* replacement of short_period and long_period by recent_periodz0rglub2004-07-091-2/+2
| | | | git-svn-id: http://piwigo.org/svn/trunk@452 68402e56-0260-453c-a942-63ccdbb3a9ee
* redirections modification : use of a HTML refresh page instead of header PHPz0rglub2004-03-311-4/+1
| | | | | | | | function. The purpose is to avoid redirections failure when extra characters are found in included PHP files. git-svn-id: http://piwigo.org/svn/trunk@405 68402e56-0260-453c-a942-63ccdbb3a9ee
* refactoringz0rglub2004-03-271-2/+11
| | | | git-svn-id: http://piwigo.org/svn/trunk@397 68402e56-0260-453c-a942-63ccdbb3a9ee
* New default template - User sidegweltas2004-02-261-1/+1
| | | | git-svn-id: http://piwigo.org/svn/trunk@375 68402e56-0260-453c-a942-63ccdbb3a9ee
* Migration of installation proceduregweltas2004-02-201-1/+2
| | | | git-svn-id: http://piwigo.org/svn/trunk@367 68402e56-0260-453c-a942-63ccdbb3a9ee
* header global refactoringz0rglub2004-02-111-18/+26
| | | | git-svn-id: http://piwigo.org/svn/trunk@362 68402e56-0260-453c-a942-63ccdbb3a9ee
* Template modificationgweltas2004-02-071-0/+6
| | | | | | | Split of the french language file git-svn-id: http://piwigo.org/svn/trunk@351 68402e56-0260-453c-a942-63ccdbb3a9ee
* Merge of the 1.3.1 releasegweltas2004-02-021-15/+21
| | | | | | | | | Creation of an unique include file (common.php) Creation of an unique define file (include/constants.php) Modification of the installation procedure git-svn-id: http://piwigo.org/svn/trunk@345 68402e56-0260-453c-a942-63ccdbb3a9ee
* When a page is refresh with an expired session still existing in thez0rglub2003-09-121-1/+1
| | | | | | | database, the first page works -> corrected. git-svn-id: http://piwigo.org/svn/trunk@90 68402e56-0260-453c-a942-63ccdbb3a9ee
* improve the header of each filez0rglub2003-08-241-2/+4
| | | | git-svn-id: http://piwigo.org/svn/trunk@57 68402e56-0260-453c-a942-63ccdbb3a9ee
* optional cookie identificationz0rglub2003-07-271-14/+39
| | | | git-svn-id: http://piwigo.org/svn/trunk@45 68402e56-0260-453c-a942-63ccdbb3a9ee
* *** empty log message ***z0rglub2003-07-211-13/+5
| | | | git-svn-id: http://piwigo.org/svn/trunk@26 68402e56-0260-453c-a942-63ccdbb3a9ee
* *** empty log message ***z0rglub2003-07-011-14/+13
| | | | git-svn-id: http://piwigo.org/svn/trunk@21 68402e56-0260-453c-a942-63ccdbb3a9ee
* *** empty log message ***z0rglub2003-05-171-9/+11
| | | | git-svn-id: http://piwigo.org/svn/trunk@13 68402e56-0260-453c-a942-63ccdbb3a9ee
* 2003.05.13 user_add and user_modify addedz0rglub2003-05-131-6/+6
| | | | git-svn-id: http://piwigo.org/svn/trunk@9 68402e56-0260-453c-a942-63ccdbb3a9ee
* Initial revisionz0rglub2003-05-091-0/+93
git-svn-id: http://piwigo.org/svn/trunk@2 68402e56-0260-453c-a942-63ccdbb3a9ee