Commit Graph

290 Commits

Author SHA1 Message Date
Ryan Boren
04d12df410 No HTTPOnly for Safari
git-svn-id: https://develop.svn.wordpress.org/trunk@8810 602fd350-edb4-49c9-b593-d223f7449a82
2008-09-05 00:10:34 +00:00
Ryan Boren
4705e219df HttpOnly for PHP < 5.2. Props _ck_. see #7677
git-svn-id: https://develop.svn.wordpress.org/trunk@8808 602fd350-edb4-49c9-b593-d223f7449a82
2008-09-04 19:55:30 +00:00
Ryan Boren
45b9a95b0d Try out httponly for auth cookies. see #7677
git-svn-id: https://develop.svn.wordpress.org/trunk@8798 602fd350-edb4-49c9-b593-d223f7449a82
2008-09-03 18:24:28 +00:00
Ryan Boren
5725b0ae44 Don't ignore scheme when cookie value is empty. Props bendalton. fixes #7521
git-svn-id: https://develop.svn.wordpress.org/trunk@8731 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-25 21:09:26 +00:00
Ryan Boren
00e2cd0917 Do secure redirect only for admin destinations. see #7561
git-svn-id: https://develop.svn.wordpress.org/trunk@8730 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-25 20:40:34 +00:00
Ryan Boren
835b51ff59 wp_rand() - more randy rands
git-svn-id: https://develop.svn.wordpress.org/trunk@8728 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-25 17:52:28 +00:00
Ryan Boren
c7cd726bf1 Option to force SSL. see #7561
git-svn-id: https://develop.svn.wordpress.org/trunk@8701 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-21 17:40:38 +00:00
Ryan Boren
78a2c0f781 Some cookie validation hooks. fixes #7440
git-svn-id: https://develop.svn.wordpress.org/trunk@8696 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-21 00:08:25 +00:00
Peter Westwood
73bcc94ddf alt attibutes for get_avatar(). Fixes #7523 props Speedboxer.
git-svn-id: https://develop.svn.wordpress.org/trunk@8661 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-17 11:23:49 +00:00
Ryan Boren
2272a1a950 Trailing whitespace cleanup
git-svn-id: https://develop.svn.wordpress.org/trunk@8600 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-09 05:36:14 +00:00
Ryan Boren
ea522c10c9 Fix Text/Diff includes. Props codestyling. fixes #7391 for trunk
git-svn-id: https://develop.svn.wordpress.org/trunk@8581 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-07 21:02:07 +00:00
Mark Jaquith
3cab99fbd2 Cast to array when using foreach(). Props santosj (and thanks for your perseverance!). fixes #2784
git-svn-id: https://develop.svn.wordpress.org/trunk@8572 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-06 20:31:54 +00:00
Andrew Ozz
c4d5fd7ce9 Revert 8562
git-svn-id: https://develop.svn.wordpress.org/trunk@8564 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-06 00:44:40 +00:00
Andrew Ozz
b07aca4429 Stop fatal error in post revisions when setting the include path is disabled. Props santosj, for 2.7
git-svn-id: https://develop.svn.wordpress.org/trunk@8562 602fd350-edb4-49c9-b593-d223f7449a82
2008-08-05 23:56:52 +00:00
Peter Westwood
0737fd60d5 Make lost password admin notification pluggable. Fixes #7430 props error.
git-svn-id: https://develop.svn.wordpress.org/trunk@8489 602fd350-edb4-49c9-b593-d223f7449a82
2008-07-29 20:21:34 +00:00
Ryan Boren
20611718e2 Workaround PHP parse_url() bug. Props azaozz. fixes #7288
git-svn-id: https://develop.svn.wordpress.org/trunk@8324 602fd350-edb4-49c9-b593-d223f7449a82
2008-07-13 05:16:54 +00:00
Ryan Boren
b980b3f310 Set auth cookie for plugins directory to support direct load plugin files that call auth_redirect(). see #7001
git-svn-id: https://develop.svn.wordpress.org/trunk@8209 602fd350-edb4-49c9-b593-d223f7449a82
2008-06-27 22:54:21 +00:00
Ryan Boren
1d3ec18c2d Only use SSL for login POST links if SSL logins are forced. Clear old cookies. see #7001
git-svn-id: https://develop.svn.wordpress.org/trunk@8197 602fd350-edb4-49c9-b593-d223f7449a82
2008-06-26 16:40:04 +00:00
Ryan Boren
3f0d3c8055 SSL fixes. see #7001
git-svn-id: https://develop.svn.wordpress.org/trunk@8190 602fd350-edb4-49c9-b593-d223f7449a82
2008-06-24 22:19:27 +00:00
Ryan Boren
ef20031e40 phpdoc updates from jacobsantos. see #7038
git-svn-id: https://develop.svn.wordpress.org/trunk@8164 602fd350-edb4-49c9-b593-d223f7449a82
2008-06-22 20:23:23 +00:00
Ryan Boren
f6ee577705 Handle cc and bcc. Props MattyRob. fixes #6899
git-svn-id: https://develop.svn.wordpress.org/trunk@8098 602fd350-edb4-49c9-b593-d223f7449a82
2008-06-16 20:02:10 +00:00
Ryan Boren
bab6fa872c Introduce logged_in cookie. Deliver auth cookies only to wp-admin. see #7001
git-svn-id: https://develop.svn.wordpress.org/trunk@8069 602fd350-edb4-49c9-b593-d223f7449a82
2008-06-11 17:25:55 +00:00
Ryan Boren
5d786d179c More use of site_url(), admin_url(), and site_url(). Force login and admin links to be https if FORCE_SSL_LOGIN. see #7001
git-svn-id: https://develop.svn.wordpress.org/trunk@8058 602fd350-edb4-49c9-b593-d223f7449a82
2008-06-06 07:39:11 +00:00
Ryan Boren
f213f87d59 First cut and better admin SSL support. see #7001
git-svn-id: https://develop.svn.wordpress.org/trunk@7998 602fd350-edb4-49c9-b593-d223f7449a82
2008-05-27 17:46:01 +00:00
Ryan Boren
b3a5f219ee gettext fix from thenlich. fixes #6993 for trunk
git-svn-id: https://develop.svn.wordpress.org/trunk@7996 602fd350-edb4-49c9-b593-d223f7449a82
2008-05-27 11:42:32 +00:00
Ryan Boren
a1be16cf86 Move autosave to post revisions. Props mdawaffe. see #6775
git-svn-id: https://develop.svn.wordpress.org/trunk@7907 602fd350-edb4-49c9-b593-d223f7449a82
2008-05-08 17:25:07 +00:00
Ryan Boren
1288013605 Add blank to default avatars. Rename default to Mystery Man. see #6802
git-svn-id: https://develop.svn.wordpress.org/trunk@7886 602fd350-edb4-49c9-b593-d223f7449a82
2008-05-04 18:05:20 +00:00
Ryan Boren
9e1c1c303a Default avatar selector. Props Viper007Bond. see #6802
git-svn-id: https://develop.svn.wordpress.org/trunk@7879 602fd350-edb4-49c9-b593-d223f7449a82
2008-05-03 00:56:16 +00:00
Ryan Boren
dcfa61678b Add arg to make special chars optional when generating passwords. fixes #6842 for trunk
git-svn-id: https://develop.svn.wordpress.org/trunk@7836 602fd350-edb4-49c9-b593-d223f7449a82
2008-04-25 17:12:25 +00:00
Ryan Boren
0a9b5ade89 Add some sanity checks
git-svn-id: https://develop.svn.wordpress.org/trunk@7821 602fd350-edb4-49c9-b593-d223f7449a82
2008-04-25 06:20:18 +00:00
Ryan Boren
f6f110f7de strlen - 1. Props mdawaffe. see #6146
git-svn-id: https://develop.svn.wordpress.org/trunk@7802 602fd350-edb4-49c9-b593-d223f7449a82
2008-04-24 01:13:35 +00:00
Ryan Boren
8bc2920aae hash_hmac is always available. Drop function_exists check
git-svn-id: https://develop.svn.wordpress.org/trunk@7797 602fd350-edb4-49c9-b593-d223f7449a82
2008-04-24 00:30:49 +00:00
Ryan Boren
07b72e6dd9 Add length arg to wp_generate_password() and lengthen secret. Props tellyworth. fixes #6146 for trunk
git-svn-id: https://develop.svn.wordpress.org/trunk@7796 602fd350-edb4-49c9-b593-d223f7449a82
2008-04-24 00:19:09 +00:00
Ryan Boren
c72fd439c6 Post revisions from mdawaffe. see #6775
git-svn-id: https://develop.svn.wordpress.org/trunk@7747 602fd350-edb4-49c9-b593-d223f7449a82
2008-04-18 23:38:21 +00:00
Ryan Boren
763a6d5537 phpdoc typo fix from filosofo. fixes #6712 for trunk
git-svn-id: https://develop.svn.wordpress.org/trunk@7642 602fd350-edb4-49c9-b593-d223f7449a82
2008-04-14 15:53:09 +00:00
Ryan Boren
243ff8e889 Rehash old md5 hashes inside of wp_check_password() to make hashing more pluggable.
git-svn-id: https://develop.svn.wordpress.org/trunk@7555 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-27 22:44:47 +00:00
Ryan Boren
a991442f83 Close img tag. Props Otto42. fixes #6339
git-svn-id: https://develop.svn.wordpress.org/trunk@7461 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-21 21:39:28 +00:00
Mark Jaquith
8b6ba65861 moderation.php is no more. All hail edit-comments.php?comment_status=moderated
git-svn-id: https://develop.svn.wordpress.org/trunk@7391 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-18 23:24:04 +00:00
Ryan Boren
33d0588565 More nonce renewals from andy. fixes #6266
git-svn-id: https://develop.svn.wordpress.org/trunk@7376 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-18 04:59:54 +00:00
Ryan Boren
29cc2b5b9c Renew autosave nonce. Props andy. fixes #6266
git-svn-id: https://develop.svn.wordpress.org/trunk@7375 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-18 02:43:20 +00:00
Peter Westwood
3b749d6178 Give the default avatar some class.
git-svn-id: https://develop.svn.wordpress.org/trunk@7333 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-16 16:55:31 +00:00
Peter Westwood
ea02c0e417 Allow plugins to filter the redirect status as well as the location. See #4790.
git-svn-id: https://develop.svn.wordpress.org/trunk@7319 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-15 20:50:49 +00:00
Peter Westwood
c3f4c6a97b Change the default size avatar back to 96 now we are using the new gravatar.com api which supports bigger sizes.
git-svn-id: https://develop.svn.wordpress.org/trunk@7308 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-15 08:27:28 +00:00
Mark Jaquith
8316b8535a Use newer Gravatar URL style. props link2caro. fixes #6229
git-svn-id: https://develop.svn.wordpress.org/trunk@7306 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-15 02:23:27 +00:00
Ryan Boren
2290c2ab2c Update get_avatar() phpdoc
git-svn-id: https://develop.svn.wordpress.org/trunk@7158 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-04 22:52:36 +00:00
Ryan Boren
fc8d871335 Make sure avatar size is numeric. Props Martin2006. fixes #6069
git-svn-id: https://develop.svn.wordpress.org/trunk@7132 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-02 21:41:35 +00:00
Ryan Boren
6d7441c26e Remove trailing whites.
git-svn-id: https://develop.svn.wordpress.org/trunk@7130 602fd350-edb4-49c9-b593-d223f7449a82
2008-03-02 20:17:30 +00:00
Ryan Boren
c542e9f9d0 urlencode only when needed. Props spikeyslam. see #5775
git-svn-id: https://develop.svn.wordpress.org/trunk@7096 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-28 22:01:56 +00:00
Peter Westwood
41fe914d9e Use a default size that gravatar supports rather than one it doesn't. Fixes #6033 props josephscott.
git-svn-id: https://develop.svn.wordpress.org/trunk@7091 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-28 21:11:47 +00:00
Peter Westwood
f36ec751be Ensure email address is lower case in get_avatar(). Fixes #6028 props josephscott.
git-svn-id: https://develop.svn.wordpress.org/trunk@7087 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-28 16:34:59 +00:00
Ryan Boren
da19acbc4b Allow overriding the default secret key. Proy. Props nbachiyski. fixes #5960
git-svn-id: https://develop.svn.wordpress.org/trunk@6982 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-22 17:36:09 +00:00
Ryan Boren
66f1454a22 Allow comment object to be passed to get_avatar() for convenience. see #5775
git-svn-id: https://develop.svn.wordpress.org/trunk@6946 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-20 20:58:58 +00:00
Ryan Boren
641818a02b Allow comment object to be passed to get_avatar() for convenience. see #5775
git-svn-id: https://develop.svn.wordpress.org/trunk@6945 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-20 20:57:21 +00:00
Ryan Boren
4e50a6d3e2 Lose caching of user DB misses. Wasn't working out that well.
git-svn-id: https://develop.svn.wordpress.org/trunk@6929 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-20 05:34:51 +00:00
Ryan Boren
4611376ba5 Typo fix from rnt. fixes #5894
git-svn-id: https://develop.svn.wordpress.org/trunk@6895 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-18 17:13:21 +00:00
Peter Westwood
bca9509fa0 More specific moderation emails for {ping|track}backs. Fixes #4986 props Otto42.
git-svn-id: https://develop.svn.wordpress.org/trunk@6873 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-16 17:03:05 +00:00
Ryan Boren
d99739dac9 s/2.4/2.5/. Props ffemtcj. fixes #5810
git-svn-id: https://develop.svn.wordpress.org/trunk@6777 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-10 07:59:34 +00:00
Ryan Boren
c179702074 Precompute the hash of the unknown avatar user to save an md5 call. Props Viper007Bond. see #5775
git-svn-id: https://develop.svn.wordpress.org/trunk@6756 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-08 07:09:01 +00:00
Ryan Boren
a132f8d9a6 Gonna serve default avatars from gravatar. see #5775
git-svn-id: https://develop.svn.wordpress.org/trunk@6749 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-07 06:58:38 +00:00
Ryan Boren
b0a8da663d get_avatar(). see #5775
git-svn-id: https://develop.svn.wordpress.org/trunk@6748 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-07 06:07:12 +00:00
Ryan Boren
c2083047a8 Remove cookie checking from check_ajax_referer(). Check nonces instead. Props mdawaffe. fixes #5782
git-svn-id: https://develop.svn.wordpress.org/trunk@6739 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-06 21:19:47 +00:00
Ryan Boren
3a18b96c9b Trailing whitespace cleanup
git-svn-id: https://develop.svn.wordpress.org/trunk@6726 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-05 06:47:27 +00:00
Ryan Boren
60b802e55d Some notice fixes from Nazgul. fixes #3155
git-svn-id: https://develop.svn.wordpress.org/trunk@6711 602fd350-edb4-49c9-b593-d223f7449a82
2008-02-02 18:42:09 +00:00
Ryan Boren
70bd86e708 Add wp_authenticate_user filter
git-svn-id: https://develop.svn.wordpress.org/trunk@6685 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-29 20:17:11 +00:00
Peter Westwood
4f1971cfdb Switch from abs(intval()) to absint(). See #4762.
git-svn-id: https://develop.svn.wordpress.org/trunk@6682 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-29 18:48:38 +00:00
Ryan Boren
c1b80c091e check_ajax_referer() should look for *only* the auth_cookie, not others that look like they match. Autosave should know that an ajax response of -1 or 0 is a failure. Props mdawaffe
git-svn-id: https://develop.svn.wordpress.org/trunk@6649 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-24 21:19:42 +00:00
Ryan Boren
0883db3afb Add check_password filter
git-svn-id: https://develop.svn.wordpress.org/trunk@6648 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-24 18:36:45 +00:00
Ryan Boren
b58ed9e123 Add wp_login_failed action
git-svn-id: https://develop.svn.wordpress.org/trunk@6647 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-24 18:32:21 +00:00
Ryan Boren
9ecb360c81 Refactor login. see #5405
git-svn-id: https://develop.svn.wordpress.org/trunk@6643 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-22 19:35:19 +00:00
Ryan Boren
1bac3dd255 phpdoc for pluggable.php from darkdragon. fixes #5509
git-svn-id: https://develop.svn.wordpress.org/trunk@6637 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-20 06:53:42 +00:00
Ryan Boren
f9d48f276c phpdoc for pluggable from darkdragon. fixes #5509
git-svn-id: https://develop.svn.wordpress.org/trunk@6600 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-11 20:51:39 +00:00
Peter Westwood
98055b2cc0 Revert #5007 as it causes more trouble than it solves. Fixes #5273 for trunk.
git-svn-id: https://develop.svn.wordpress.org/trunk@6599 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-11 18:44:44 +00:00
Ryan Boren
6445622ec2 Concat secret key with salt. see #5367
git-svn-id: https://develop.svn.wordpress.org/trunk@6583 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-09 16:37:43 +00:00
Ryan Boren
791a7d7191 Unused var cleanup. Props DD32. see #5418
git-svn-id: https://develop.svn.wordpress.org/trunk@6551 602fd350-edb4-49c9-b593-d223f7449a82
2008-01-04 19:36:34 +00:00
Ryan Boren
cdbb434e6a Remove unneeded get_userdata call. Props DD32. see #5367
git-svn-id: https://develop.svn.wordpress.org/trunk@6531 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-31 23:39:02 +00:00
Ryan Boren
d9cfccddc1 Separate cookie generation from cookie set. Introduce wp_generate_auth_cookie(). see #5367
git-svn-id: https://develop.svn.wordpress.org/trunk@6529 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-31 17:50:32 +00:00
Ryan Boren
1a4f8fd617 set_auth_cookie action. see #5367
git-svn-id: https://develop.svn.wordpress.org/trunk@6486 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-24 08:01:55 +00:00
Ryan Boren
4436a01316 Allow DB salt to be overridden by SECRET_SALT. Add a filter to wp_salt(). see #5367
git-svn-id: https://develop.svn.wordpress.org/trunk@6478 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-24 06:34:12 +00:00
Ryan Boren
976dc65a9b Don't fallback to DB info for secret key. Allow expiration grace period for AJAX requests. see #5367
git-svn-id: https://develop.svn.wordpress.org/trunk@6471 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-23 00:58:06 +00:00
Ryan Boren
d20eeb048b Use __ngettext() for plurals. Props darkdragon. see #4865
git-svn-id: https://develop.svn.wordpress.org/trunk@6430 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-20 17:05:06 +00:00
Ryan Boren
894db1ba91 Fix AJAX cookie validation. see #5367
git-svn-id: https://develop.svn.wordpress.org/trunk@6400 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-17 21:12:28 +00:00
Ryan Boren
5b1f4e739c wp_set_password(). see #2394
git-svn-id: https://develop.svn.wordpress.org/trunk@6396 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-17 06:02:45 +00:00
Ryan Boren
bb7922cd42 New secure cookie protocol. see #5367
git-svn-id: https://develop.svn.wordpress.org/trunk@6387 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-16 17:41:59 +00:00
Ryan Boren
5918e8cf1c Pluggable random password generator from pishmishy. fixes #5401
git-svn-id: https://develop.svn.wordpress.org/trunk@6385 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-15 05:31:16 +00:00
Ryan Boren
3a8b2fcca3 Remove unused vars. Props DD32. see #5418
git-svn-id: https://develop.svn.wordpress.org/trunk@6364 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-06 19:49:33 +00:00
Ryan Boren
26d056a4dd Hash passwords with phpass. Add wp_check_pasword() and wp_hash_password() functions. Props pishmishy. see #2394
git-svn-id: https://develop.svn.wordpress.org/trunk@6350 602fd350-edb4-49c9-b593-d223f7449a82
2007-12-02 05:14:11 +00:00
Ryan Boren
2c8864821d get_user_by_email() and some user caching cleanups. fixes #5392
git-svn-id: https://develop.svn.wordpress.org/trunk@6346 602fd350-edb4-49c9-b593-d223f7449a82
2007-11-27 22:14:53 +00:00
Ryan Boren
7a432a2ae9 Remove unused variable. Props epper. fixes #5339
git-svn-id: https://develop.svn.wordpress.org/trunk@6330 602fd350-edb4-49c9-b593-d223f7449a82
2007-11-12 19:31:49 +00:00
Peter Westwood
c4dc37ef75 Set the Sender on emails as well as from. Fixes #5007 for trunk props mattyrob
git-svn-id: https://develop.svn.wordpress.org/trunk@6265 602fd350-edb4-49c9-b593-d223f7449a82
2007-10-17 20:17:01 +00:00
Mark Jaquith
000bbba87b check for a match against a lowercase host in wp_safe_redirect(). props BoltClock. fixes #5114 for trunk
git-svn-id: https://develop.svn.wordpress.org/trunk@6219 602fd350-edb4-49c9-b593-d223f7449a82
2007-10-10 19:25:23 +00:00
Ryan Boren
490789554f jquery for list manipulation. Round one, fight. Props mdawaffe. fixes #4805
git-svn-id: https://develop.svn.wordpress.org/trunk@6213 602fd350-edb4-49c9-b593-d223f7449a82
2007-10-09 22:49:42 +00:00
Mark Jaquith
11e69b6820 prepare() for wp-includes/ link-template.php, post.php, general-template.php, pluggable.php, functions.php. see #4553
git-svn-id: https://develop.svn.wordpress.org/trunk@6180 602fd350-edb4-49c9-b593-d223f7449a82
2007-10-02 18:45:47 +00:00
Mark Jaquith
a6b8fe6c3a Pass the attempted redirect host as a second parameter in the allowed_redirect_hosts filter. props mdawaffe.
git-svn-id: https://develop.svn.wordpress.org/trunk@6145 602fd350-edb4-49c9-b593-d223f7449a82
2007-09-20 21:53:42 +00:00
Ryan Boren
6406e9bbeb Extra protection in check_ajax_referer from mdawaffe. fixes #4939
git-svn-id: https://develop.svn.wordpress.org/trunk@6138 602fd350-edb4-49c9-b593-d223f7449a82
2007-09-19 19:32:34 +00:00
Mark Jaquith
38a6848169 Put a filter in wp_safe_redirect() so people can whitelist other domains. see #4606
git-svn-id: https://develop.svn.wordpress.org/trunk@6136 602fd350-edb4-49c9-b593-d223f7449a82
2007-09-19 04:14:53 +00:00
Mark Jaquith
9b5fd1b17c More robust wp_safe_redirect(). Introducing wp_sanitize_redirect() for use in wp_redirect() and wp_safe_redirect(). fixes #4606
git-svn-id: https://develop.svn.wordpress.org/trunk@6134 602fd350-edb4-49c9-b593-d223f7449a82
2007-09-19 03:47:37 +00:00
Mark Jaquith
421356b6b8 Introducing wp_safe_redirect(). fixes #4606 for trunk
git-svn-id: https://develop.svn.wordpress.org/trunk@6131 602fd350-edb4-49c9-b593-d223f7449a82
2007-09-18 22:23:16 +00:00
Peter Westwood
6eaa87a9a9 Consolidate shared code in get_userdata and get_userdatabylogin. Fixes #2134 props johnjosephbachir
git-svn-id: https://develop.svn.wordpress.org/trunk@6094 602fd350-edb4-49c9-b593-d223f7449a82
2007-09-12 17:15:17 +00:00
Peter Westwood
e0a59804ee Allow the wp_mail filter to change the passed data. Fixes #4511 props ryan.
git-svn-id: https://develop.svn.wordpress.org/trunk@6084 602fd350-edb4-49c9-b593-d223f7449a82
2007-09-11 20:49:28 +00:00
Ryan Boren
7a43c01e08 Remove trailing whitespace
git-svn-id: https://develop.svn.wordpress.org/trunk@6026 602fd350-edb4-49c9-b593-d223f7449a82
2007-09-03 23:32:58 +00:00
Mark Jaquith
2cbc2f0e87 Roll back [5986], [5988], [5989]. We are in a char class, so no escaping needed. Props mdawaffe. see #4873
git-svn-id: https://develop.svn.wordpress.org/trunk@5993 602fd350-edb4-49c9-b593-d223f7449a82
2007-08-30 18:13:48 +00:00
Mark Jaquith
00f5e9555d Better %0d/%0a sanitization for wp_redirect() from hakre. fixes #4819 for trunk
git-svn-id: https://develop.svn.wordpress.org/trunk@5990 602fd350-edb4-49c9-b593-d223f7449a82
2007-08-30 17:46:09 +00:00
Ryan Boren
effcdff92b Escape special chars in regex. Props eightize and Otto42. fixes #4873
git-svn-id: https://develop.svn.wordpress.org/trunk@5986 602fd350-edb4-49c9-b593-d223f7449a82
2007-08-30 15:42:26 +00:00
Mark Jaquith
94563d9f33 Correctly grab Content-Type from old-school headers, skip blank headers. fixes #4296
git-svn-id: https://develop.svn.wordpress.org/trunk@5764 602fd350-edb4-49c9-b593-d223f7449a82
2007-06-26 20:18:56 +00:00
Mark Jaquith
b614486625 Don't add MIME-Version header twice (PHPMailer already adds it). see #4296
git-svn-id: https://develop.svn.wordpress.org/trunk@5763 602fd350-edb4-49c9-b593-d223f7449a82
2007-06-26 19:11:23 +00:00
Mark Jaquith
e51152beb3 compare mail headers case-insensitively and actually use the Content-Type specified. Props Nazgul. see: #4296
git-svn-id: https://develop.svn.wordpress.org/trunk@5762 602fd350-edb4-49c9-b593-d223f7449a82
2007-06-26 18:28:56 +00:00
Mark Jaquith
d0bb265782 strpos() is "haystack,needle", not "needle,haystack" Props pishmishy. fixes #4520
git-svn-id: https://develop.svn.wordpress.org/trunk@5761 602fd350-edb4-49c9-b593-d223f7449a82
2007-06-26 18:06:17 +00:00
Ryan Boren
09da00f7fe Use EXTR_SKIP when extracting. see #4468
git-svn-id: https://develop.svn.wordpress.org/trunk@5708 602fd350-edb4-49c9-b593-d223f7449a82
2007-06-14 22:45:40 +00:00
Ryan Boren
b046d67f41 Trim empty lines. Nothing but newline.
git-svn-id: https://develop.svn.wordpress.org/trunk@5700 602fd350-edb4-49c9-b593-d223f7449a82
2007-06-14 02:25:30 +00:00
Ryan Boren
d993430968 Add a prophylactic sanitize_user()
git-svn-id: https://develop.svn.wordpress.org/trunk@5683 602fd350-edb4-49c9-b593-d223f7449a82
2007-06-12 18:11:06 +00:00
rob1n
8998b56e76 wp_mail() rewrite that handles HTML mail. fixes #4296
git-svn-id: https://develop.svn.wordpress.org/trunk@5639 602fd350-edb4-49c9-b593-d223f7449a82
2007-06-02 03:18:24 +00:00
Ryan Boren
90cd098abe Escapage
git-svn-id: https://develop.svn.wordpress.org/trunk@5441 602fd350-edb4-49c9-b593-d223f7449a82
2007-05-11 00:56:12 +00:00
Matt Mullenweg
b1f6f9a6a8 (int)er the dragon.
git-svn-id: https://develop.svn.wordpress.org/trunk@5087 602fd350-edb4-49c9-b593-d223f7449a82
2007-03-23 00:59:21 +00:00
Ryan Boren
58200c8ac8 Add wp_mail_from filter. Props rob1n. fixes #2053
git-svn-id: https://develop.svn.wordpress.org/trunk@5061 602fd350-edb4-49c9-b593-d223f7449a82
2007-03-18 23:16:14 +00:00
Mark Jaquith
09131bb5e8 Another typo in [4990]. fixes #3920
git-svn-id: https://develop.svn.wordpress.org/trunk@4996 602fd350-edb4-49c9-b593-d223f7449a82
2007-03-07 06:17:15 +00:00
Mark Jaquith
56368548ad Use strpos instead of strstr where ever possible, for speed. Props rob1n. fixes #3920
git-svn-id: https://develop.svn.wordpress.org/trunk@4990 602fd350-edb4-49c9-b593-d223f7449a82
2007-03-07 05:29:15 +00:00
Mark Jaquith
5acfcd9fea trailing tabs and whitespace cleanup.
git-svn-id: https://develop.svn.wordpress.org/trunk@4953 602fd350-edb4-49c9-b593-d223f7449a82
2007-02-27 15:24:54 +00:00
Ryan Boren
11611e96a8 Remove debug.
git-svn-id: https://develop.svn.wordpress.org/trunk@4947 602fd350-edb4-49c9-b593-d223f7449a82
2007-02-26 03:42:25 +00:00
Ryan Boren
3b56c04035 Trying out phpmailer for wp_mail(). fixes #3862
git-svn-id: https://develop.svn.wordpress.org/trunk@4946 602fd350-edb4-49c9-b593-d223f7449a82
2007-02-25 20:23:25 +00:00
Mark Jaquith
d38a3f7777 Consistently use "Spam it:" and "Delete it:" in e-mails. fixes #3304
git-svn-id: https://develop.svn.wordpress.org/trunk@4885 602fd350-edb4-49c9-b593-d223f7449a82
2007-02-15 05:51:59 +00:00
Ryan Boren
609db68a78 Cache user id instead of full user object in the userlogins cache. Props charleshooper. fixes #3716
git-svn-id: https://develop.svn.wordpress.org/trunk@4859 602fd350-edb4-49c9-b593-d223f7449a82
2007-02-02 00:00:36 +00:00
Matt Mullenweg
3a6dd43506 Let's be a little less verbose here
git-svn-id: https://develop.svn.wordpress.org/trunk@4516 602fd350-edb4-49c9-b593-d223f7449a82
2006-11-23 00:10:30 +00:00
Mark Jaquith
608fd4e44f trying Ryan's suggestion for #3215
git-svn-id: https://develop.svn.wordpress.org/trunk@4513 602fd350-edb4-49c9-b593-d223f7449a82
2006-11-22 04:58:31 +00:00
Ryan Boren
e44ea1ff93 Remove trailing spaces and convert spaces to tabs. Props Nazgul. fixes #986
git-svn-id: https://develop.svn.wordpress.org/trunk@4495 602fd350-edb4-49c9-b593-d223f7449a82
2006-11-19 07:56:05 +00:00
Matt Mullenweg
d3eee351ce Make these links shorter and remove unneeded vars
git-svn-id: https://develop.svn.wordpress.org/trunk@4432 602fd350-edb4-49c9-b593-d223f7449a82
2006-10-30 19:27:24 +00:00
Mark Jaquith
8d76f3f702 Add wp_redirect filter, with cancel ability. fixes #3250
git-svn-id: https://develop.svn.wordpress.org/trunk@4407 602fd350-edb4-49c9-b593-d223f7449a82
2006-10-18 22:02:30 +00:00
Mark Jaquith
41ace9de74 Prevent users from entering strings that will be interpreted as serialized arrays/objects on the way out. fixes #2591
git-svn-id: https://develop.svn.wordpress.org/trunk@4382 602fd350-edb4-49c9-b593-d223f7449a82
2006-10-12 23:54:36 +00:00
Ryan Boren
29b992e902 Improved login from Viper007Bond. fixes #3123
git-svn-id: https://develop.svn.wordpress.org/trunk@4339 602fd350-edb4-49c9-b593-d223f7449a82
2006-10-04 16:47:50 +00:00
Ryan Boren
7704ddd684 Silence gethostbyaddr(). Props MarkJaquith. fixes #2759
git-svn-id: https://develop.svn.wordpress.org/trunk@4288 602fd350-edb4-49c9-b593-d223f7449a82
2006-10-04 03:05:54 +00:00
Ryan Boren
76f6cf50c9 Don't do status_header for IIS. Props Mark Jaquith. fixes #3190
git-svn-id: https://develop.svn.wordpress.org/trunk@4273 602fd350-edb4-49c9-b593-d223f7449a82
2006-10-03 00:28:06 +00:00
Ryan Boren
52a2f4a6e1 Send 302 on redirect. Props leflo. fixes #3166
git-svn-id: https://develop.svn.wordpress.org/trunk@4252 602fd350-edb4-49c9-b593-d223f7449a82
2006-09-26 00:55:21 +00:00
Ryan Boren
7e82eef627 Use get_option instead of get_settings. Just 'cause.
git-svn-id: https://develop.svn.wordpress.org/trunk@4144 602fd350-edb4-49c9-b593-d223f7449a82
2006-08-30 21:46:31 +00:00
Ryan Boren
cd766e57e9 s/URI/URL/. Props Nazgul. fixes #2666
git-svn-id: https://develop.svn.wordpress.org/trunk@4133 602fd350-edb4-49c9-b593-d223f7449a82
2006-08-30 16:40:17 +00:00
Ryan Boren
6fd01856c7 wp_kses_no_null() redirect location for extra protection.
git-svn-id: https://develop.svn.wordpress.org/trunk@3992 602fd350-edb4-49c9-b593-d223f7449a82
2006-07-06 00:28:37 +00:00
Ryan Boren
8b1e622739 Allow % so entities such as slashes don't break.
git-svn-id: https://develop.svn.wordpress.org/trunk@3939 602fd350-edb4-49c9-b593-d223f7449a82
2006-06-30 00:43:23 +00:00
Ryan Boren
dd6aa45584 wp_explain_nonce() and wp_nonce_ays(). Props mdawaffe. #2734
git-svn-id: https://develop.svn.wordpress.org/trunk@3934 602fd350-edb4-49c9-b593-d223f7449a82
2006-06-27 08:06:00 +00:00
Ryan Boren
23e2a0a25f Use wp_redirect().
git-svn-id: https://develop.svn.wordpress.org/trunk@3928 602fd350-edb4-49c9-b593-d223f7449a82
2006-06-27 05:38:56 +00:00
Ryan Boren
7028e093b6 More thorough URI sanitizer in wp_redirect().
git-svn-id: https://develop.svn.wordpress.org/trunk@3926 602fd350-edb4-49c9-b593-d223f7449a82
2006-06-27 01:42:52 +00:00
Ryan Boren
dbbb1802b6 wp_get_referer() and friends from robmiller and markjaquith. fixes #2800
git-svn-id: https://develop.svn.wordpress.org/trunk@3908 602fd350-edb4-49c9-b593-d223f7449a82
2006-06-24 05:38:37 +00:00
Ryan Boren
216546a0b8 Include file renames. #2525
git-svn-id: https://develop.svn.wordpress.org/trunk@3862 602fd350-edb4-49c9-b593-d223f7449a82
2006-06-11 06:43:54 +00:00