diff options
| author | Aleksander Machniak <alec@alec.pl> | 2014-12-16 13:28:48 +0100 |
|---|---|---|
| committer | Aleksander Machniak <alec@alec.pl> | 2014-12-16 13:28:48 +0100 |
| commit | 681ba6fc3c296cd6cd11050531b8f4e785141786 (patch) | |
| tree | 77cd99edc9536c1e85e5ee057d231aa3aa5e0aba /CHANGELOG | |
| parent | 53b7421d4419ce12c62d47e5b1231240cefdc3d5 (diff) | |
Improve system security by using optional special URL with security token
Allows to define separate server/path for image/js/css files
Fix bugs where CSRF attacks were still possible on some requests
Diffstat (limited to 'CHANGELOG')
| -rw-r--r-- | CHANGELOG | 3 |
1 files changed, 3 insertions, 0 deletions
@@ -1,11 +1,14 @@ CHANGELOG Roundcube Webmail =========================== +- Improve system security by using optional special URL with security token - use_secure_urls +- Allow to define separate server/path for image/js/css files - assets_url/assets_dir - Fix import of multiple contact email addresses from Outlook-csv format (#1490169) - Fix drag-n-drop to folders expanded while dragging (#1490157) - Fix import of multiple contact groups from Google-csv format (#1490159) - Fix import of contacts with multiple email addresses from Google-csv format (#1490178) - Fix generation of Blowfish-based password hashes (#1490184) +- Fix bugs where CSRF attacks were still possible on some requests RELEASE 1.1-beta ---------------- |