|
From: David G. <no...@gi...> - 2026-02-28 10:52:21
|
Branch: refs/heads/csrf-multiple-tokens Home: https://github.com/postfixadmin/postfixadmin Commit: 439714b259e4b9aa1d35f6314c4f20c379adfee8 https://github.com/postfixadmin/postfixadmin/commit/439714b259e4b9aa1d35f6314c4f20c379adfee8 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M functions.inc.php A model/CsrfToken.php M model/PFASmarty.php M public/broadcast-message.php M public/delete.php M public/edit.php M public/editactive.php M public/list.php M public/login-mfa.php M public/login.php M public/sendmail.php M public/users/app-passwords.php M public/users/edit-alias.php M public/users/login-mfa.php M public/users/login.php M public/users/password.php M public/users/totp-exceptions.php M public/users/totp.php M public/vacation.php M templates/app-passwords.tpl M templates/backupwarning.tpl M templates/broadcast-message.tpl M templates/editform.tpl M templates/list-virtual_mailbox.tpl M templates/list.tpl M templates/login-mfa.tpl M templates/login.tpl M templates/password-change.tpl M templates/password.tpl M templates/sendmail.tpl M templates/totp-exceptions.tpl M templates/totp.tpl M templates/users_edit-alias.tpl M templates/vacation.tpl Log Message: ----------- initial attempt at supporting multiple concurrent tabs open (have a list of csrf tokens in $_SESSION, add a smarty function {CSRF_Token} ... and CsrfToken class to try and uniify behaviour; needs testing! Commit: 4d47a0c2489e278b8004b07e5d3229516d3068e1 https://github.com/postfixadmin/postfixadmin/commit/4d47a0c2489e278b8004b07e5d3229516d3068e1 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/PFASmarty.php Log Message: ----------- psalm fix for closure return type Commit: 84d281e9a62a193b97f361f61f8011afe34cb809 https://github.com/postfixadmin/postfixadmin/commit/84d281e9a62a193b97f361f61f8011afe34cb809 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M functions.inc.php M model/CsrfToken.php Log Message: ----------- formatting Commit: 4100a15962e5cda6d5d2b56c17768fa407aa0d11 https://github.com/postfixadmin/postfixadmin/commit/4100a15962e5cda6d5d2b56c17768fa407aa0d11 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/CsrfToken.php M model/PFASmarty.php M public/broadcast-message.php M public/delete.php M public/edit.php M public/editactive.php M public/login-mfa.php M public/login.php M public/sendmail.php M public/users/app-passwords.php M public/users/edit-alias.php M public/users/login-mfa.php M public/users/login.php M public/users/password.php M public/users/totp-exceptions.php M public/users/totp.php M public/vacation.php Log Message: ----------- CsrfToken -> make methods static, refactor code a little Commit: bf7b13708e062fba4193194b2f8b582da5470994 https://github.com/postfixadmin/postfixadmin/commit/bf7b13708e062fba4193194b2f8b582da5470994 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M public/backup.php Log Message: ----------- fix bugs in backup (table ordering, missing ";"), try and improve formatting Commit: 256116aa5dff406d0c9495ed3048ab4bbbf1979d https://github.com/postfixadmin/postfixadmin/commit/256116aa5dff406d0c9495ed3048ab4bbbf1979d Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M common.php M functions.inc.php A model/CsrfInvalidException.php M model/Languages.php M public/login.php M public/users/login.php A tests/CsrfTokenTest.php Log Message: ----------- remove unwanted namespace on Languages class Commit: f29ffaa22989f63989b8044b53f84b4fa928d692 https://github.com/postfixadmin/postfixadmin/commit/f29ffaa22989f63989b8044b53f84b4fa928d692 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/AdminpasswordHandler.php M public/backup.php M public/delete.php M public/edit.php M public/editactive.php M public/list-virtual.php M public/list.php M public/users/edit-alias.php M public/users/password-change.php M public/users/password-recover.php M public/vacation.php M public/viewlog.php Log Message: ----------- remove calls to die(), throw an Exception instead. Commit: 3d3075e4979cf72bb6d22e3f310bac0114965507 https://github.com/postfixadmin/postfixadmin/commit/3d3075e4979cf72bb6d22e3f310bac0114965507 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/CsrfToken.php M public/delete.php M public/login-mfa.php Log Message: ----------- fix issues copilot found (wrong variable names, make sure $_SESSION['PFA_Tokens'] is an array etc) Commit: 7b38f10a123551272f4bfdc96d1f354950e6d60a https://github.com/postfixadmin/postfixadmin/commit/7b38f10a123551272f4bfdc96d1f354950e6d60a Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/CsrfToken.php M tests/CsrfTokenTest.php Log Message: ----------- add unit test for CsrfToken class Commit: 6f6c84bd46deea7d2846f749e48e4f70e12d2430 https://github.com/postfixadmin/postfixadmin/commit/6f6c84bd46deea7d2846f749e48e4f70e12d2430 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M public/common.php Log Message: ----------- add a generic exception handler in public/common.php, so we can try and output something friendly if something goes wrong Commit: 222f0ca446c37ecb4c0888a1327a7621f0c39ede https://github.com/postfixadmin/postfixadmin/commit/222f0ca446c37ecb4c0888a1327a7621f0c39ede Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/CsrfInvalidException.php Log Message: ----------- fix CsrfInvalidIException class Commit: 1acb9a9d3df387618a822a041428cb9f27d85f61 https://github.com/postfixadmin/postfixadmin/commit/1acb9a9d3df387618a822a041428cb9f27d85f61 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/Login.php M psalm.xml M public/common.php M public/editactive.php M public/login.php M public/viewlog.php M tests/CsrfTokenTest.php Log Message: ----------- token reformatting Commit: 79a38154017d8aadb1005bf46efc08b667026057 https://github.com/postfixadmin/postfixadmin/commit/79a38154017d8aadb1005bf46efc08b667026057 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M tests/CheckLanguageTest.php Log Message: ----------- fix test (removal of invalid namespace) Commit: 313b809229a1f7c849355791cb1fbc2b73859367 https://github.com/postfixadmin/postfixadmin/commit/313b809229a1f7c849355791cb1fbc2b73859367 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M templates/editform.tpl M templates/list-virtual.tpl M templates/list-virtual_mailbox.tpl Log Message: ----------- make the list-virtual_mailbox.tpl be a self contained table, tidy up inclusion in list-virtual.tpl Compare: https://github.com/postfixadmin/postfixadmin/compare/dacbbf998ee2...313b809229a1 To unsubscribe from these emails, change your notification settings at https://github.com/postfixadmin/postfixadmin/settings/notifications |
