675 Commits (993dc633a95084e02cf55e0e1725016ba9d56078)
 

Author SHA1 Message Date
glaszig 993dc633a9 load wifi stations via ajax, cache the scan result 3 years ago
Bill Zimmerman 7dd80f6098
Merge pull request #370 from glaszig/fix/csrf 3 years ago
glaszig 56097d5629 send proper csrf header 3 years ago
glaszig 1fddad190f fix require paths 3 years ago
billz b5f875cce7 Updated CSRFTokenFieldTag 3 years ago
Bill Zimmerman f6f85d1c11
Merge pull request #356 from glaszig/security/always-verify-csrf-token 3 years ago
billz e4757a06ae Minor: use install_log for raspap.service 3 years ago
billz 10e0aaf1ab Update .gitignore 3 years ago
Bill Zimmerman d4d6dbd79b
Merge pull request #360 from glaszig/installer/cp-instead-of-mv 3 years ago
glaszig 47cc1bdc33 cleaner jquery ready callback 3 years ago
glaszig 752e8ccf66 improve global ajax event handling 3 years ago
glaszig c70433585a move all other favicon-types into dist/icons folder, 3 years ago
glaszig 2104ccb91a favicons and sorts can stay in subdirectories 3 years ago
glaszig 748348f407 during installation copy files from the git working tree 3 years ago
glaszig da69d3d768 send CSRF token in a response header, 3 years ago
glaszig 8f3489cd4a remove id attribute from csrf token field due to obsolescence 3 years ago
glaszig f36b08c10a rename CSRFToken() to the more apt CSRFTokenFieldTag() 3 years ago
glaszig 0a255e8b49 don't write the csrf token field to the output buffer 3 years ago
glaszig 6f1ae104f3 improve CSRFToken() implementation 3 years ago
glaszig 2f6dc2cc05 remove superfluous semi-colon 3 years ago
glaszig 964dc00fab generate a new csrf token for each request 3 years ago
glaszig 7898dc24c8 mcrypt_create_iv is deprecated, openssl_random_pseudo_bytes 3 years ago
glaszig 490cb14acd removing superfluous call to CSRFToken() which 3 years ago
glaszig b38dbb82ab do net send csrf tokens individually with post xhr 3 years ago
glaszig b9e9b7fe39 move csrf token initialization into function 3 years ago
glaszig d53517a34a removed useless line of code 3 years ago
glaszig 0967a53152 validate token value from csrf token header 3 years ago
glaszig ce3ec131a6 add csrf token header to all resource-modifying xhr 3 years ago
glaszig 20bb9fe42f add csrf meta tag (for use with xhr, for example) 3 years ago
glaszig 87fe8948b8 remove splattered, duplicated csrf validation code 3 years ago
glaszig f989b8060b always verify csrf token for resource-modifying requests, 3 years ago
Bill Zimmerman 93b458197a
Merge pull request #365 from glaszig/feature/connect-hidden-ssid 3 years ago
Bill Zimmerman 9b66c2cd03
Merge pull request #363 from glaszig/fix/hostapd-wmm 3 years ago
billz c0cfcfa117 Bugfix, resolves #367 3 years ago
Bill Zimmerman 02c3703392
Merge pull request #355 from glaszig/ui/escape-interface-settings 3 years ago
Bill Zimmerman ff21343751
Merge branch 'master' into ui/escape-interface-settings 3 years ago
Bill Zimmerman fe35742519
Merge pull request #361 from glaszig/feature/static-dhcp-hosts 3 years ago
glaszig 493269e061
enable wifi client to connect to hidden ssid 3 years ago
Bill Zimmerman 2ded7be76b
Merge pull request #364 from glaszig/feature/improved-hostapd-hw-mode-select-labeling 3 years ago
glaszig b52f290020 improved 802.11 standard select option labels in hostapd ui 3 years ago
glaszig ab7f990d13
properly enable wmm by fixing a typo 3 years ago
glaszig afbc50d1ee click the "add" button on the static dhcp lease form 3 years ago
glaszig d18dbd7def add ui to manage static dhcp leases 3 years ago
glaszig e02557af3a add pre.unstyled css rule 3 years ago
glaszig 3db99c7d21 * escape html entities in network interface settings 3 years ago
Bill Zimmerman 1b32ed53d6
Merge pull request #358 from glaszig/fix/dashboard-ipv6-addresses 3 years ago
Bill Zimmerman 809051165b
Merge pull request #357 from glaszig/security/command-injection 3 years ago
glaszig c2ed6c6e02 fix display of multiple ipv4 addresses, netmasks on dashboard 3 years ago
glaszig 4a5a39c2bc fix display of ipv6 addresses 3 years ago
glaszig 81a67c0121 better filename 3 years ago