Knah-Tsaeb/MyShaarli
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
259 commits 8 branches 1 tag 9.7 MiB
Commit graph

4 commits

Author SHA1 Message Date
ArthurHoaro 5f85fcd863 Working on shaarli/Shaarli#224 
I reviewed character escaping everywhere with the following ideas:

  * use a single common function to escape user data: `escape` using `htmlspecialchars`.
  * sanitize fields in `index.php` after reading them from datastore and before sending them to templates.
  	It means no escaping function in Twig templates.
    2 reasons:
    * it reduces risks of security issue for future user made templates
    * more readable templates
  * sanitize user configuration fields after loading them.
 2015-06-23 16:35:36 +02:00
nda f30aa976e1 login enhance for mobile 2015-06-19 17:37:38 -03:00
VirtualTam c133612f32 CSS: remove hardcoded style from templates 
Fixes shaarli/Shaarli#29

Style elements refactored as follows:
- use existing ids and classes if possible,
- else, define new ones and stick with the existing naming convention,
- remove hardcoded style attributes from RainTPL templates.

Exception:
In tpl/tagcloud.html, the display size of each tag is computed at page
generation.

Signed-off-by: VirtualTam <virtualtam@flibidi.org>
 2014-12-03 19:28:43 +01:00
Sébastien SAUVAGE 450342737c Initial commit (version 0.0.40 beta) 2013-02-26 10:09:41 +01:00