|
From: David G. <no...@gi...> - 2026-02-28 20:14:04
|
Branch: refs/heads/csrf-multiple-tokens Home: https://github.com/postfixadmin/postfixadmin Commit: 09bc9f69b6eb6f9f1ea6323cdf4394fa445e4248 https://github.com/postfixadmin/postfixadmin/commit/09bc9f69b6eb6f9f1ea6323cdf4394fa445e4248 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M functions.inc.php A model/CsrfToken.php M model/PFASmarty.php M public/broadcast-message.php M public/delete.php M public/edit.php M public/editactive.php M public/list.php M public/login-mfa.php M public/login.php M public/sendmail.php M public/users/app-passwords.php M public/users/edit-alias.php M public/users/login-mfa.php M public/users/login.php M public/users/password.php M public/users/totp-exceptions.php M public/users/totp.php M public/vacation.php M templates/app-passwords.tpl M templates/backupwarning.tpl M templates/broadcast-message.tpl M templates/editform.tpl M templates/list-virtual_mailbox.tpl M templates/list.tpl M templates/login-mfa.tpl M templates/login.tpl M templates/password-change.tpl M templates/password.tpl M templates/sendmail.tpl M templates/totp-exceptions.tpl M templates/totp.tpl M templates/users_edit-alias.tpl M templates/vacation.tpl Log Message: ----------- initial attempt at supporting multiple concurrent tabs open (have a list of csrf tokens in $_SESSION, add a smarty function {CSRF_Token} ... and CsrfToken class to try and uniify behaviour; needs testing! Commit: 2fd10aa015013f1a711979a1b0354df87a6b513e https://github.com/postfixadmin/postfixadmin/commit/2fd10aa015013f1a711979a1b0354df87a6b513e Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/PFASmarty.php Log Message: ----------- psalm fix for closure return type Commit: af9974ba6555446c47cc07972a53040f5c2067e4 https://github.com/postfixadmin/postfixadmin/commit/af9974ba6555446c47cc07972a53040f5c2067e4 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M functions.inc.php M model/CsrfToken.php Log Message: ----------- formatting Commit: bcbf5d8a25b02099c27e14bcd8fbc53e9a92f3ea https://github.com/postfixadmin/postfixadmin/commit/bcbf5d8a25b02099c27e14bcd8fbc53e9a92f3ea Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/CsrfToken.php M model/PFASmarty.php M public/broadcast-message.php M public/delete.php M public/edit.php M public/editactive.php M public/login-mfa.php M public/login.php M public/sendmail.php M public/users/app-passwords.php M public/users/edit-alias.php M public/users/login-mfa.php M public/users/login.php M public/users/password.php M public/users/totp-exceptions.php M public/users/totp.php M public/vacation.php Log Message: ----------- CsrfToken -> make methods static, refactor code a little Commit: b7c2b85a93dec51dcd9f8d568404b2f94e1e4601 https://github.com/postfixadmin/postfixadmin/commit/b7c2b85a93dec51dcd9f8d568404b2f94e1e4601 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M public/backup.php Log Message: ----------- fix bugs in backup (table ordering, missing ";"), try and improve formatting Commit: f517983e9ad0e43dbbabf3e0b033a628ce7d2f1a https://github.com/postfixadmin/postfixadmin/commit/f517983e9ad0e43dbbabf3e0b033a628ce7d2f1a Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M common.php A model/CsrfInvalidException.php M model/Languages.php A tests/CsrfTokenTest.php Log Message: ----------- remove unwanted namespace on Languages class Commit: e8bfc7b11e3c28464de9e33641b54c2267fb1cc9 https://github.com/postfixadmin/postfixadmin/commit/e8bfc7b11e3c28464de9e33641b54c2267fb1cc9 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/AdminpasswordHandler.php M public/backup.php M public/delete.php M public/edit.php M public/editactive.php M public/list-virtual.php M public/list.php M public/users/edit-alias.php M public/users/password-change.php M public/users/password-recover.php M public/vacation.php M public/viewlog.php Log Message: ----------- remove calls to die(), throw an Exception instead. Commit: 39162b0a68dd3d28bb2ba94c508649e8107c4964 https://github.com/postfixadmin/postfixadmin/commit/39162b0a68dd3d28bb2ba94c508649e8107c4964 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/CsrfToken.php M public/delete.php M public/login-mfa.php Log Message: ----------- fix issues copilot found (wrong variable names, make sure $_SESSION['PFA_Tokens'] is an array etc) Commit: 0bbf8a32fc350cdc3d50dce5729e65c9baf54571 https://github.com/postfixadmin/postfixadmin/commit/0bbf8a32fc350cdc3d50dce5729e65c9baf54571 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/CsrfToken.php M tests/CsrfTokenTest.php Log Message: ----------- add unit test for CsrfToken class Commit: 0fe968aaabb858dae7aeb99b79851ce2439c26d5 https://github.com/postfixadmin/postfixadmin/commit/0fe968aaabb858dae7aeb99b79851ce2439c26d5 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M public/common.php Log Message: ----------- add a generic exception handler in public/common.php, so we can try and output something friendly if something goes wrong Commit: dd46b6b4b676e91a655c850c7527ba6021001ab6 https://github.com/postfixadmin/postfixadmin/commit/dd46b6b4b676e91a655c850c7527ba6021001ab6 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/CsrfInvalidException.php Log Message: ----------- fix CsrfInvalidIException class Commit: ba6cc7bd51aef22a23ff8dc82c59a83c64b3990c https://github.com/postfixadmin/postfixadmin/commit/ba6cc7bd51aef22a23ff8dc82c59a83c64b3990c Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M composer.json Log Message: ----------- stop phpunit caching results Commit: 0d9113bba0bd8433f310c2071393b9d338ec08d7 https://github.com/postfixadmin/postfixadmin/commit/0d9113bba0bd8433f310c2071393b9d338ec08d7 Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M psalm.xml Log Message: ----------- fix psalm - suppress ParadoxialCondition Commit: 3b36db6523cc3274b4183300ff6484c95ef2804c https://github.com/postfixadmin/postfixadmin/commit/3b36db6523cc3274b4183300ff6484c95ef2804c Author: David Goodwin <da...@co...> Date: 2026-02-28 (Sat, 28 Feb 2026) Changed paths: M model/Login.php M public/common.php M public/login.php M public/viewlog.php M templates/list-virtual_mailbox.tpl M tests/CsrfTokenTest.php Log Message: ----------- formatting Compare: https://github.com/postfixadmin/postfixadmin/compare/7fce39baf34f...3b36db6523cc To unsubscribe from these emails, change your notification settings at https://github.com/postfixadmin/postfixadmin/settings/notifications |
