github-mirror/framework
2
0
Fork 0
mirror of https://github.com/flarum/framework.git synced 2025-01-24 17:38:30 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
1d9e7b0262
framework/views
History
Toby Zerner 9896378b59 Overhaul sessions, tokens, and authentication 
- Use cookies + CSRF token for API authentication in the default client. This mitigates potential XSS attacks by making the token unavailable to JavaScript. The Authorization header is still supported, but not used by default.
- Make sensitive/destructive actions (editing a user, permanently deleting anything, visiting the admin CP) require the user to re-enter their password if they haven't entered it in the last 30 minutes.
- Refactor and clean up the authentication middleware.
- Add an `onhide` hook to the Modal component. (+1 squashed commit)
2015-12-03 15:11:57 +10:30
..
install Implement proper update process 2015-10-19 15:09:54 +10:30
admin.blade.php Show loading indicator for admin client too 2015-11-04 11:51:25 +10:30
app.blade.php Display "Loading..." text while JS is loading 2015-11-02 16:47:36 +10:30
content.blade.php Display "Loading..." text while JS is loading 2015-11-02 16:47:36 +10:30
discussion.blade.php Translate basic HTML views 2015-10-21 11:36:49 +10:30
forum.blade.php Build very rough HTML-only content 2015-08-06 12:21:11 +09:30
index.blade.php Translate basic HTML views 2015-10-21 11:36:49 +10:30
login.blade.php Overhaul sessions, tokens, and authentication 2015-12-03 15:11:57 +10:30
reset.blade.php Add multiple UrlGenerator classes for forum/api/admin 2015-10-02 17:35:29 +09:30