kontakt
/
engelsystem
Archived
3
0
Fork 0
Code Issues 12 Pull Requests Projects Releases Wiki Activity
1,880 Commits
2 Branches
0 Tags
19 MiB
Commit Graph

51 Commits (1801a8446413e8cda54393f23162fb951bcacc0a)

Author SHA1 Message Date
Igor Scheller c33940f64a Moved permission checks to Authenticator class
Igor Scheller 944c29b964 Require POST for sending forms 
* Ensure that the form is submitted with a post request
* Replaced several links with forms

Closes  (Security Vulnerability)
Igor Scheller 88f3bafa5e Replaced `Auth()` with `auth()`
Igor Scheller a2aaba9cab User: Bugfixes & code cleanup
Igor Scheller 4e09ee3eb2 Replaced more user related stuff 
(Contains some buggy stuff too...)
Igor Scheller 7c6afc2bfe Removed `User($id)` function 🎉
Igor Scheller 89e62c95a7 Changed more functions 🎉
Igor Scheller b069a938c6 Changed user_link and some other user functions to use the user id
Igor Scheller 2dcb7cc2de Replaced some global `$user` variables
Bot e8f8fc7f5f Replaced gettext translation `_()` with `__()` that uses the Translator class
Igor Scheller fe58e4f422 database: updated checks for selectOne
Bot b00743d6d3 Formatting
msquare abf4b1da30 check if logged in before sign up
Igor Scheller f8d0a7c5b0 Updated translation / Formatting / Test
Igor Scheller 75eea1681e Removed dead function call
Bot 952c7892f3 Formatting & Docstrings
klemens a6cf4c9ce9 spelling fixes
msquare 2c04e35bed introduce new shift signup state for not arrived angels
msquare 7a3bdda483 rewrite controller for creating shift entries
msquare 1289101f6e rewrite controller for creating shift entries
msquare afd7c59d1d fix shift entry delete
msquare fd85034e7f redo shift signoff and icons for delete/confirm/acknowledgment questions
msquare 567ed9ebd2 remove flags since they do not belong to language selection
MichiK 32d14f493b Fix sign-up to shifts by supporter 
Any user with the `shiftentry_edit_angeltype_supporter` privilege was
able to sign up any users of the correct angeltype to any shift that
they could sign up themselves because the shift entry controller only
checks for the global privilege an not the fact that the user is indeed
supporter for the angeltype in question.
msquare deae2a1721 fix removing users from shift, fixes
msquare db8b6b2520 change shift renderer global add user link
Igor Scheller 96f1d9fd54 Bugfixes
Igor Scheller d0074cf006 Merge remote-tracking branch 'engelsystem/feature-igel-rewrite' 
# Conflicts:
#	includes/controller/angeltypes_controller.php
#	includes/pages/admin_groups.php
#	includes/pages/user_settings.php
#	includes/sys_page.php
#	src/Exceptions/Handler.php
#	src/Http/Request.php
Igor Scheller cc01c906ba : Integration of symfony/http-foundation request
msquare f82e5456d2 dried code by introducing selectOne for select queries with only one result line expected
msquare 5794c4cab8 clear delete queries from false resuls
msquare a157004f4a handle failed db queries in Db class
Igor Scheller 3a1e460249 Changed $_GET, $_POST and $_REQUEST to use the Request object
Bot 740026a9de Replaced [0-9] with \d
Bot 915ce28fee Replaced " with '
Igor Scheller 9a3ad88834 Changed from mysqli to PDO, some refactorings, faster sql queries
Bot 55141154c0 Replaced " with '
Bot 356b2582f3 PPHDoc, formatting, fixes, cleanup
Bot d71e7bbfad Formatting
Bot 7313e15ce8 PSR-2 formatting
msquare 46528fe1d8 shift view performance improvements
msquare 2f2d08c574 fix edit user bug deleting emails
msquare 99c7e8ce1a fixes allow a shift supporter to remove a user from shift
msquare 0c15964e6b hide freeload form from angeltype supporters
msquare e86d75b4d9 begin add privilege and add users to shifts by angeltype supporter
jwacalex 1324260e0f forgot to remove if-statement -.-
jwacalex f4f6dfefcb fixed broken logic in controller (cf. to mail to @msquare)
msquare 1a3b4e2a33 redone shift coloring and shift signup state
msquare 27c9650dc4 reduce complexity of shifts controller
msquare 09c931dcf5 fix missing variables