Mario Vavti
|
8893d9edc4
|
use urlencode
(cherry picked from commit 2ec3e4a912)
|
2019-03-18 13:31:25 +01:00 |
|
Mario Vavti
|
43753ec113
|
ENT_COMPAT will only take care of double-quotes. Use double-quotes here to prevent XSS
(cherry picked from commit a086745ec0)
|
2019-03-18 13:31:03 +01:00 |
|
Mario Vavti
|
19e509d997
|
escape query string
(cherry picked from commit b3928f3d2a)
|
2018-06-08 08:33:38 +02:00 |
|
Mario Vavti
|
fed61c082c
|
do not overwrite abook flags if we are not owner
|
2018-02-25 13:00:43 +01:00 |
|
Mario Vavti
|
c618bfc607
|
mark connections where we do not have post_comments permissions with an no entry sign.
|
2018-02-24 19:42:39 +01:00 |
|
Mario Vavti
|
41c67fa345
|
more places to use chanlink_hash() instead of chanlink_url() for profile_link
|
2017-02-23 10:36:00 +01:00 |
|
redmatrix
|
715b1667d9
|
readability
|
2016-06-28 20:48:43 -07:00 |
|
redmatrix
|
3035c792dc
|
remove the app $a passed to profile_load, also add profile_load to mod_wiki which should fix issue #431
|
2016-06-26 22:13:59 -07:00 |
|
redmatrix
|
5e0698ba87
|
turn the oft-repeated block_public ... check into a function observer_prohibited()
|
2016-05-22 17:52:30 -07:00 |
|
redmatrix
|
de006771c7
|
renamed include files identity.php (channel.php) and Contact.php (connections.php)
|
2016-05-22 16:54:30 -07:00 |
|
redmatrix
|
019250eff8
|
consolidate include/*_selectors.php (not touching acl_selectors for the moment, as it will likely end up with a different disposition)
|
2016-05-20 22:13:20 -07:00 |
|
redmatrix
|
2a4e8972e0
|
module updates
|
2016-04-18 20:38:38 -07:00 |
|