wbrawner/server
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
server/core
History
Lukas Reschke 27c1409be5 Encode parameters in OC.generateUrl by itself 
This function is often used in a wrong and potential dangerous way... Thus we should escape the URL per default and offer developers to disable the automatic escaping via an option parameter if they really want that behaviour.

Might break some things, however, those things are then easy to fix and we really have a ton of bugs caused by this...

Fixes https://github.com/owncloud/core/issues/14228
2015-02-17 14:41:06 +01:00
..
ajax kill ancient code 2015-01-20 14:14:01 +01:00
avatar Close session for avatar get 2014-10-22 18:12:21 +02:00
command implement php code checker to detect usage of not allowed private APIs - including console command to check local code to be used by developers 2015-02-10 11:51:24 +01:00
css Display user avatar in share dialog 2015-02-12 16:50:14 +01:00
doc fix difference between packaged version and master 2013-08-17 10:33:11 +02:00
fonts make text preview backend use imagettftext, fixes #8087 2014-06-10 17:29:40 +02:00
img replace outdated 'shared' people icon with regular share icon as fallback 2015-01-09 16:18:42 +01:00
js Encode parameters in OC.generateUrl by itself 2015-02-17 14:41:06 +01:00
l10n [tx-robot] updated from transifex 2015-02-17 01:56:23 -05:00
lostpassword Add unit tests for empty token 2015-02-01 17:34:03 +01:00
search adjust paths for search 2015-01-14 15:15:39 +01:00
setup 32-bit typo fix 2015-01-11 13:36:19 +01:00
skeleton add a real examplefile instead of an .gitignore which is a bit stupid here 2013-10-04 10:21:33 +02:00
tags JS version of the OCP\ITags interface 2013-10-04 17:21:52 +02:00
templates Merge pull request #13890 from owncloud/add-no-referrer 2015-02-16 14:36:44 +01:00
user Use AppFramework instead of custom controller 2014-08-25 11:50:19 +02:00
vendor bower update for jquery.strengthify 0.4.1 2015-01-06 14:46:15 +01:00
application.php Warn for password reset when files_encryption is enabled 2014-11-17 17:50:19 +01:00
register_command.php implement php code checker to detect usage of not allowed private APIs - including console command to check local code to be used by developers 2015-02-10 11:51:24 +01:00
routes.php adjust paths for search 2015-01-14 15:15:39 +01:00
strings.php Use public api for getting l10n 2014-08-31 10:08:22 +02:00