summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2014-04-30bug 1138: And yet another bunch of missing escapesBenny Baumann
2014-04-30bug 1138: And yet some more sanitizing of database query argumentsBenny Baumann
2014-04-30bug 1138: Add some more mising escaping for values from the databaseBenny Baumann
2014-04-30bug 1138: Add some more mising escaping for values from the databaseBenny Baumann
2014-04-30bug 1138: Add some mising escaping for values from the databaseBenny Baumann
2014-04-30bug 1138: Add quite some instances of mising escapingBenny Baumann
2014-04-30bug 1138: Be more paranoid regarding database query parametersBenny Baumann
2014-04-30bug 1138: Properly bail out to remark on missing ticket numberBenny Baumann
2014-04-29bug 372: `orgdomlink` has no `id` fieldbug-372Michael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-29bug 1275: Fix #1275bug-1275Michael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-29bug 1138: Implement log parameter for output_assurances*() and use it forMichael Tänzer
data summary Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-29bug 1138: Move rendering of the email addresses and such for each assuranceMichael Tänzer
into output_assurances_row() Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-29bug 1138: Store the calculated awarded points in the row array to avoidMichael Tänzer
parameters to the output_assurances_row() Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-29bug 1138: Reduce number of parameters for output_assurances_row()Michael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-29bug 1138: Only revoke assurance if we actually found oneMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-29Merge branch 'bug-1221' into bug-1138Michael Tänzer
Conflicts: includes/account.php includes/general.php includes/loggedin.php includes/notary.inc.php pages/account/43.php pages/account/55.php pages/wot/10.php www/index.php www/wot.php Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-22bug 1221: Adjust the interface of calc_assurances() to be consistent andbug-1221Michael Tänzer
use the `deleted` column for the Thawte revocation Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-22bug 1221: Reduce number of parameters for calc_experience() and document itMichael Tänzer
also respect revoked assurances and use calc_awarded() Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-22bug 1221: Add comments and restrict TTP assurancesMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-22bug 1221: Put the assurance method independent logic in one placeMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-22bug 1221: Rename function to better reflect its useMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-21bug 1221: Move calc_points() up to the other point calculation functionsMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-21Merge branch 'tarballs' into releaseMichael Tänzer
2014-04-21Source code taken from cacert-20140419.tar.bz2Michael Tänzer
2014-04-19bug 1272: Fix for a typobug-1272Benny Baumann
2014-04-19bug 1272: Properly escape the filename passed to OpenSSLBenny Baumann
2014-04-15Merge branch 'bug-1184' into releaseBenny Baumann
2014-04-15Merge branch 'bug-1266' into releaseBenny Baumann
2014-04-15bug 1221: remove redundant lineMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-15bug 1221: properly name the other part of the assuranceMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-14bug 1138: Require number suffix for valid ticket numbersMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Set $oldidMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Always provide a back linkMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: correct colspan for cert tablesMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Only use support engineer mode if not viewing own historyMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Code styleMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: TypoMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Actually output the domain stylingMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Properly call output_log_domains()Michael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: simplify logic for email address output stylingMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Properly display domain tableMichael Tänzer
- Wrong call to get_domains() => deleted domains weren't included - <td> needs to be wrapped in a <tr> Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Always show email address tableMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: more intuitive variable namingMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Inline $colspandefault because it make the code more complex andMichael Tänzer
isn't very useful Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: properly display announcement settings on account historyMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Make testing for support access to account details page moreMichael Tänzer
robust and possibly fix some issues - should check for same userid not whether we come from the SE page - always use the already validated values (not $_REQUEST) - make if clause logic more readable Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: make string more readable for translatorsMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Use CSS styling instead of deprecated attributesMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Source code layoutMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>
2014-04-11bug 1138: Remove double escapingMichael Tänzer
Signed-off-by: Michael Tänzer <neo@nhng.de>