Knah-Tsaeb/MyShaarli
Knah-Tsaeb/MyShaarli
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
MyShaarly is a fork of https://github.com/shaarli/Shaarli. It build for my usage, feel free to try.
1347 commits 8 branches 1 tag 12 MiB
PHP 72.5%
HTML 16%
JavaScript 5.2%
CSS 3.3%
SCSS 2.5%
Other 0.5%
Find a file
VirtualTam ebf6151738 SessionManager: remove unused UID token 
There already are dedicated tokens for:
- CSRF protection
- user stay-signed-in feature, via cookie

This token was most likely intended as a randomly generated,
server-side, secret key to be used when generating hashes.

See http://sebsauvage.net/wiki/doku.php?id=php:session [FR]

Relevant section:

  Une clé secrète unique aléatoire est générée côté serveur (et jamais
  envoyée). Elle peut servir pour signer les formulaires (HMAC) ou
  générer des token de formulaires (protection contre XSRF).
  Voir $_SESSION['uid'].

Translation:

  A unique, server-side secret key is randomly generated (and never
  transmitted). It can be used to sign forms (HMAC) or generate form
  tokens (protection against XSRF).
  See $_SESSION['uid']

Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2018-06-02 16:46:06 +02:00
.dev Add SASSLint makefile target, and run it in CI 2018-05-10 13:29:47 +02:00
.github Update AUTHORS and contributor mailmap 2018-01-04 18:52:52 +01:00
application SessionManager: remove unused UID token 2018-06-02 16:46:06 +02:00
assets Reformat default theme SCSS to match SASS rules 2018-05-10 13:25:07 +02:00
cache .htaccess files: support Apache 2.4+ syntax 2016-11-08 11:38:14 +01:00
data Fix: enable access to data/user.css (Apache 2.2 & 2.4) 2017-10-16 19:41:22 +02:00
doc/md Adds Stakali Android app to 3rd party lists 2018-05-13 12:35:30 +02:00
docker Docker: build frontend dependencies with node and yarn 2018-03-27 19:05:19 +02:00
inc Merge pull request #1081 from nodiscc/doc-merge-sharing 2018-04-18 19:57:36 +02:00
pagecache .htaccess files: support Apache 2.4+ syntax 2016-11-08 11:38:14 +01:00
plugins Fix feed permalink rendering with markdown escape set to true 2018-05-19 12:55:43 +02:00
tests SessionManager: remove unused UID token 2018-06-02 16:46:06 +02:00
tmp .htaccess files: support Apache 2.4+ syntax 2016-11-08 11:38:14 +01:00
tpl Login: update PageBuilder and default/vintage templates 2018-06-02 16:46:06 +02:00
.editorconfig Add SASSLint makefile target, and run it in CI 2018-05-10 13:29:47 +02:00
.gitattributes Add SASSLint makefile target, and run it in CI 2018-05-10 13:29:47 +02:00
.gitignore Webpack / Configure webpack, ESLint, Travis, Makefile, npm/yarn and git 2018-03-28 19:04:40 +02:00
.htaccess httpd: always forward the 'Authorization' header 2018-03-22 22:23:41 +01:00
.travis.yml Add SASSLint makefile target, and run it in CI 2018-05-10 13:29:47 +02:00
AUTHORS CHANGELOG + AUTHORS 2018-02-02 18:59:55 +01:00
CHANGELOG.md Documentation: release v0.9.6 2018-03-25 20:11:10 +02:00
composer.json Move LoginManager and SessionManager to the Security namespace 2018-06-02 16:46:06 +02:00
composer.lock Update parsedown to its latest version instead of fixed 1.6 2018-03-31 13:00:13 +02:00
CONTRIBUTING.md migrated Github wiki links to readthedocs 2017-08-26 09:40:57 +02:00
COPYING Update COPYING 2018-04-05 20:30:00 +02:00
Doxyfile Update documentation and Doxygen icon location 2018-04-05 20:54:23 +02:00
index.php Refactor LoginManager stay-signed-in token management 2018-06-02 16:46:06 +02:00
Makefile Add SASSLint makefile target, and run it in CI 2018-05-10 13:29:47 +02:00
mkdocs.yml doc: merge all sharing methods under a single "Sharing content" page 2018-04-14 14:14:59 +02:00
package.json Add SASSLint makefile target, and run it in CI 2018-05-10 13:29:47 +02:00
phpunit.xml Run languages tests using PHPUnit test suites 2017-03-06 21:11:18 +01:00
README.md Documentation: release v0.9.6 2018-03-25 20:11:10 +02:00
shaarli_version.php Use 'dev' version on the master branch 2017-03-12 15:05:59 +01:00
webpack.config.js Webpack / Configure webpack, ESLint, Travis, Makefile, npm/yarn and git 2018-03-28 19:04:40 +02:00
yarn.lock Add SASSLint makefile target, and run it in CI 2018-05-10 13:29:47 +02:00

README.md

Shaarli logo

The personal, minimalist, super-fast, database free, bookmarking service.

Do you want to share the links you discover? Shaarli is a minimalist link sharing service that you can install on your own server. It is designed to be personal (single-user), fast and handy.

Join the chat at https://gitter.im/shaarli/Shaarli Bountysource Docker repository

Quickstart

Demo

You can use this public demo instance of Shaarli. It runs the latest development version of Shaarli and is updated/reset daily.

Login: demo; Password: demo

License

Shaarli is Free Software. See COPYING for a detail of the contributors and licenses for each individual component.