Age | Commit message (Collapse) | Author |
|
Allows to define separate server/path for image/js/css files
Fix bugs where CSRF attacks were still possible on some requests
|
|
|
|
|
|
|
|
|
|
localStorage copy if page was left intentionally but not on session errors (#1489818)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
behavioral improvements and encrytion are still to be added
|
|
query parameters of http requests
|
|
|
|
(non-default) filename in URLs throughout the webmail app
|
|
|
|
|
|
|
|
|
|
|
|
Consider action whitelist also for ajax requests
|
|
|
|
|
|
|
|
|
|
|
|
|
|
rcube,rcmail,rcube_ui -> rcube,rcmail,rcube_utils
renamed main.inc into rcube_bc.inc
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
after session error
|
|
|
|
|
|
|
|
session and thus no keep-alive necessary; fixes #1487829
|
|
session data)
|
|
|
|
deletion) on login
|