summaryrefslogtreecommitdiffstats
path: root/web/lib/acctfuncs.inc.php
AgeCommit message (Expand)AuthorFilesLines
2013-03-24Implement IP banning for user registration and user logincanyonknight1-1/+34
2013-03-21Save last login IP addressLukas Fleischer1-1/+2
2013-03-21process_account_form(): Highlight errorsLukas Fleischer1-1/+1
2013-03-19process_account_form(): Allow using empty passwordsLukas Fleischer1-13/+25
2013-03-19Move reset key submission to a separate functionLukas Fleischer1-0/+26
2013-02-10Remove checks before calling connection methodcanyonknight1-73/+24
2013-02-10Remove documentation references to database parametercanyonknight1-24/+0
2013-02-10Remove unnecessary database connection parameter from all functionscanyonknight1-29/+29
2013-02-10Add database wrapper class and new connection methodcanyonknight1-24/+24
2013-01-30acctfuncs.inc.php: Change wording of account editing messagecanyonknight1-1/+1
2013-01-30Clear a user's active sessions following account suspensioncanyonknight1-0/+19
2013-01-30acctfuncs.inc.php: Change return type of valid_username functioncanyonknight1-6/+5
2012-11-29Fix account privilege escalation vulnerabilitycanyonknight1-2/+2
2012-11-29Fix account editing and hijacking vulnerabilitycanyonknight1-0/+29
2012-10-08Refactor TU voters listLukas Fleischer1-3/+3
2012-09-24Avoid use of "<b>"/"</b>"Lukas Fleischer1-6/+6
2012-09-24acctfuncs.inc.php: Document all functions using PHPDoc formatcanyonknight1-81/+270
2012-09-18Overhaul ability to edit own accountcanyonknight1-18/+0
2012-09-18Use URL rewriting for user info pagecanyonknight1-1/+1
2012-09-18Adjust user directions after registering to reflect new login pagecanyonknight1-1/+1
2012-09-18Migrate all DB code to use PDOcanyonknight1-110/+119
2012-07-15Redirect to the home page after successful loginLukas Fleischer1-1/+1
2012-07-15Use virtual path feature for linksLukas Fleischer1-2/+2
2012-07-14Merge branch 'maint'Lukas Fleischer1-1/+1
2012-07-14acctfuncs.inc.php: Make user_suspended() work correctlycanyonknight1-1/+1
2012-07-08acctfuncs.inc.php: Fix "Undefined variable" noticesLukas Fleischer1-0/+4
2012-07-06acctfuncs.inc.php: Move XHTML to account_details.php templatecanyonknight1-70/+0
2012-07-06acctfuncs.inc.php: Make user_is_privileged() workcanyonknight1-2/+2
2012-07-06acctfuncs.inc.php: Allow functions to take DB handle as argumentcanyonknight1-10/+28
2012-07-06Pull out DB code from trusted user pagecanyonknight1-0/+104
2012-07-06account.php: Pull out DB codecanyonknight1-0/+39
2012-07-06passreset.php: Pull out DB codecanyonknight1-0/+34
2012-07-06logout.php: Pull out DB codecanyonknight1-1/+16
2012-07-06account_search_results.php: Pull out DB codecanyonknight1-0/+6
2012-07-06addvote.php: Pull out DB codecanyonknight1-1/+37
2012-07-06acctfuncs.inc.php: Move XHTML to account_search_results.php templatecanyonknight1-115/+1
2012-07-06acctfuncs.inc.php: Move XHTML to account_edit_form.php templatecanyonknight1-123/+1
2012-06-24Implement token system to fix CSRF vulnerabilitiescanyonknight1-0/+1
2012-03-24Unify function declaration styleLukas Fleischer1-16/+8
2012-03-24Add field for PGP key in profile informationLukas Fleischer1-7/+60
2011-10-25Escape wildcards in "LIKE" patternsLukas Fleischer1-4/+4
2011-10-25Wrap mysql_real_escape_string() in a functionLukas Fleischer1-13/+13
2011-10-24Escape wildcards in "LIKE" patternsLukas Fleischer1-4/+4
2011-10-24Wrap mysql_real_escape_string() in a functionLukas Fleischer1-13/+13
2011-10-24Show last voted date on account details pageDan McGee1-2/+10
2011-10-24Add LastLogin column to Users tableDan McGee1-1/+4
2011-10-24Require DB handle for most user account functionsDan McGee1-24/+14
2011-10-24Remove a boatload of inline table stylesDan McGee1-10/+4
2011-08-20Use "%s" instead of "%h" in format stringsLukas Fleischer1-6/+6
2011-08-12Use secure and httponly session cookiesLukas Fleischer1-1/+1