59ece2e39d
- Patch #325665 by chx, Damien Tournoud, justinrandell et al: improved the cache registry lookups.
2008-11-11 22:39:59 +00:00
0762f60073
#315798 by Rob Loach, mfer, Grugnog2, and sun: Add weighting to drupal_add_js().
2008-11-10 05:23:01 +00:00
54a03ca95d
- Patch #329646 by Damien Tournoud: properly reset user_access().
2008-11-05 14:12:34 +00:00
df2cf40d2c
- Patch #266358 by Rob Loach, mfer: use array in drupal_add_css().
2008-10-26 18:06:39 +00:00
b4ab2ac2ce
- Patch #199870 by alpritt et al: beter password strength checker. Really cool.
2008-10-19 20:55:07 +00:00
f76acb2d9d
#282405 by Damien Tournoud, lilou, Dave Reid: Enforce coding standard on elseif.
2008-10-12 04:30:09 +00:00
d59ba41f65
#313213 by maartenvg, Gábor Hojtsy: Add a 'title' attribute for permissions to allow for localization of permission names
2008-10-09 15:15:55 +00:00
f841d1a764
#142995 by dopry, drewish, quicksketch, jpetso, and flobruit: Adding hook_file_X(). This is an enabler of lots and lots of goodies. See CHANGELOG.txt for more. Awesome work, guys. :)
2008-10-09 00:02:29 +00:00
026af5df34
- Patch #310212 by justinrandell, catch, et all: killed in _user hook, as well as two small kittens.
2008-10-06 11:30:12 +00:00
19329548f9
- Patch #305236 by crell: made OpenID work again. We need tests for this.
2008-09-21 15:08:39 +00:00
a3bb66e4e8
#259623 by dopry and Damien Tournoud: Convert includes/requires to use absolute paths.
2008-09-20 20:22:25 +00:00
7f29b14277
- Patch #305645 by pwolanin: ['REQUEST_TIME'] -> REQUEST_TIME. Improved developer experience.
2008-09-17 07:11:59 +00:00
312b97e9e9
- Patch #253702 by Damien Tournoud et al: further clean-up of the session handling code.
2008-09-15 15:18:59 +00:00
e7ac5c58fd
#308434 by drewish, dopry, quicksketch, aaron, jhedstrom, and friends: Massive file.inc cleanup aaaaaand... tests! Yay! :D
2008-09-15 09:28:50 +00:00
763b11c8c7
#259679 by Damien Tournoud: Fix user/X/edit tab on user tracker page.
2008-09-08 15:44:57 +00:00
e5b0e5f76c
- Patch #302763 by Dave Reid, Rob Loach: replace time() by ['REQUEST_TIME'] as per Rasmus' suggestion. Removed drupal_referrer() for consistency.
2008-09-06 08:36:22 +00:00
69e6f411a9
- Patch #225450 by Crell, chx, bjaspan, catch, swentel, recidive et al: next generation database layer for Drupal 7.
2008-08-21 19:36:39 +00:00
0b9e7c07e8
- Patch #265899 by mfb: uri_brief mail token did not support https URLs.
2008-08-17 10:46:30 +00:00
dbdda5471e
- Patch #237381 by beeradb, flobruit: renamed () parameter from user_save() to .
2008-08-14 19:37:22 +00:00
9db1abf5aa
- Patch #165642 by Damien Tournoud et al: fixed SQL error.
2008-08-08 19:48:43 +00:00
e1dd1e3482
- Patch #218189 by Arancaytar, fago, et al: invoke hook_user before deleting user from database.
2008-08-02 20:08:24 +00:00
57fe5103da
- Patch #252013 by Eaton, pwolanin, Susurrus et al: drupal_render() now printes #markup, not #value.
2008-07-16 21:59:29 +00:00
32afb32935
- Patch #266488 by Damien Tournoud: cleanup for user_validate_name().
2008-06-27 07:25:11 +00:00
6e2358b232
- Patch #270045 by drewish, Susurrus: clean up return values.
2008-06-18 03:36:24 +00:00
c529e4afbe
- Patch #101543 by webchick: document all constants.
2008-05-26 17:12:55 +00:00
21000956a2
- Patch #259463 by dmitrig01: notification e-mail for pending user registrations had blank subject line.
2008-05-17 17:02:56 +00:00
b9f1018ea4
- Patch #73874 by pwolanin: normalize the permissions table and wrote simpletests for the (new) permission handling. At last.
2008-05-07 19:34:24 +00:00
2e18cb8924
- Patch #221964 by chx, dopry, webernet, moshe, webchick, justinrandall, flobruit
...
et al. Can you say 'registry'? Drupal now maintains an internal registry of
all functions or classes in the system, allowing it to lazy-load code files as
needed (reducing the amount of code that must be parsed on each request). The
list of included files is cached per menu callback for subsequent loading by
the menu router. This way, a given page request will have all the code it needs
but little else, minimizing time spent parsing unneeded code.
2008-05-06 12:18:54 +00:00
d1bc889242
- Patch #227830 by JohnAlbin: link attributes added to l() incorrectly.
2008-05-02 15:11:05 +00:00
21576021bf
- Patch #249546 by pwolanin: rip menu access inheritance -- was already committed to D6.
2008-04-23 20:01:56 +00:00
9feab1f2ea
- Patch #228594 by catch and flobruit: some code clean-up.
2008-04-19 17:10:50 +00:00
56d2664a90
- Patch #245115 by kkaefer, John Morahan, JohnAlbin et al: after a long discussion we've decided to make the concatenation operator consistent with the other operators.
2008-04-14 17:48:46 +00:00
79b016d915
- Patch #216072 by recidive, David Rothstein, ptalindstrom et al: switched from numeric block IDs to string IDs.
...
The short explanation is that Drupal uses a lot of numeric deltas in the block system; blocks are identified by the 'module' and the 'delta'. In early Drupal, delta was numeric, but somewhere along the line it was changed to be possibly a string. In modern Drupal, block overrides are easily done via block-MODULE-DELTA.tpl.php. The primary motivation to switch to string IDs everywhere is to make these deltas friendlier to themers:
block-user-0.tpl.php --> block-user-navigation.tpl.php
block-user-1.tpl.php --> block-user-login.tpl.php
You get the picture.
2008-04-10 10:28:23 +00:00
1dc36aa3d3
- Patch #244597 by drumm: remove login form text as this can now be accomplished using hook form_alter.
2008-04-10 01:35:31 +00:00
08aa23227e
- Patch #228594 by catch et al: removed access rule functionality from core.
...
The access rules capability of user module has been stripped down to a
simple method for blocking IP addresses. E-mail and username restrictions
are now available in a contributed module. IP address range blocking is
no longer supported and should be done at the server level.
This patch is partly motiviated by the fact that at the usability testing,
it frequently came up that users went to "access rules" when trying to
configure their site settings.
2008-04-08 22:50:55 +00:00
ed59911f9e
- Patch #29706 by pwolanin, solardiz, et al: more secure password hashing.
...
This is a big and important patch for Drupal's security. We are switching
to much stronger password hashes that are also compatible with the Portable
PHP password hashing framework.
The new password hashes defeat a number of attacks, including:
- The ability to try candidate passwords against multiple hashes at once.
- The ability to use pre-hashed lists of candidate passwords.
- The ability to determine whether two users have the same (or different)
password without actually having to guess one of the passwords.
Also implemented a pluggable password hashing API (similar to how an alternate
cache mechanism can be used) to allow developers to readily substitute an
alternative hashing and authentication scheme.
Thanks all!
2008-03-31 20:50:05 +00:00
e89ead0ae2
- Patch #226501 by webchick: permission descriptions were used incorrectly at admin/user/user.
2008-03-19 07:35:15 +00:00
584f3e886a
- Patch #30984 by webchick, keith.smith, kkaefer, Crell et al: provide descriptions for permissions on the permission administration page.
2008-02-20 13:46:43 +00:00
38e0ab1f62
- Patch #181578 by Moshe: removed distributed authentication code from user_save(). Factored the relevant code out to a separate function.
2008-02-18 19:34:08 +00:00
60688d68db
- Patch #181411 by Moshe: use schema API for saving and updating user records.
2008-02-18 16:53:37 +00:00
b8a1eab1fb
- Patch #210131 by dvessel, catch, John, et al: updated jQuery library.
2008-02-06 19:38:28 +00:00
c306d56a74
#216858 by jvandyk, moshe weitzman: fix plain wrong and misleading user module phpdoc blocks
2008-02-03 19:23:01 +00:00
7747e1e8e0
#215335 by jvandyk: fix user_login_submit() phpdoc
2008-01-29 18:56:56 +00:00
a44341a822
#208888 by jvandyk: set access time when externally authenticated user first logs in
2008-01-27 20:00:46 +00:00
ba5468e508
#119038 by ximo, Pancho: user role editing usability: include disabled checkbox for authenticated role
2008-01-22 07:51:56 +00:00
5ecb68806b
#210211 by chx, theborg: removing the broken admin user search, which would provide the same as the public facing user search anyway
2008-01-16 22:54:41 +00:00
b17cd3b613
#18954 by kkaefer, Pancho: built-in role names were not translated and some user_roles() call cleanups
2008-01-10 20:22:57 +00:00
a816feaddf
#206078 by Pancho, traxer: order roles with system roles first (usability)
2008-01-10 16:00:44 +00:00
c5aa55b38e
#204705 by pwolanin: abort user_save on SQL errors, to avoid data corruption
2008-01-10 15:03:53 +00:00
b78a990270
#207569 by ScoutBaker (minor code style): clean up @see usage in phpdoc blocks
2008-01-08 10:35:43 +00:00
a88c178b91
- Patch #204221 by webernet: code style fixes.
2007-12-28 12:02:52 +00:00
79d927f7aa
#152497 by bjaspan, with more docs from myself: user_external_login() was not updated to latest login process
2007-12-27 16:00:09 +00:00
34afaf8f28
#176748 follow up by pwolanin: fix bad breadcrumbs and missing/wrong titles
2007-12-27 14:03:37 +00:00
a8e1fb4351
#191914 by chx: admin check was missing from menu user_register_access()
2007-12-27 12:21:58 +00:00
2a1e980cdd
- Patch #203509 by pwolanin, chx, cwgordon7 et al: fixed menu inheritenace.
2007-12-26 19:02:24 +00:00
ac4c8f7ab0
#203274 by Pasqualle: remove excessive witespace from our code (minor)
2007-12-22 23:24:26 +00:00
374a452738
#172993 by drewish, Lynn: remove old user picture even when the newly uploaded one uses a different format
2007-12-20 21:59:17 +00:00
100329ad03
- Patch #201894 by David Rothstein: fixed typo in user output.
2007-12-18 19:20:01 +00:00
81ecb970bc
#199387 by Pancho: revert user login/register/request password page titles to 'User account' as it was in Drupal 5, instead of the bugos 'Log in'
2007-12-17 13:46:36 +00:00
7bcd7429df
#110474 by dww and keith.smith: passwords are not sent in welcome mails, so do not mislead our users
2007-12-14 18:29:59 +00:00
b6532a4fdb
#200069 by keith.smith: new standard for 'more information' links in module help texts, as the handbook we referred to before was renamed
2007-12-14 18:08:50 +00:00
7b52f8d52e
#131493 by spatz4000, ChrisKennedy, keith.smith: consistent username field description wording in installer and runtime interface
2007-12-14 16:07:42 +00:00
ce3542d8ab
#152497 by JohnAlbin, bdragon, moshe weitzman, chx and myself: several user login tasks, such as session id regeneration were not performed in all cases, so centralize this
2007-12-13 12:53:47 +00:00
c6d841c096
#197297 by DanW (as GHOP 17), and keith.smith: clean up lots of help texts, update to drag and drop functionality, drupal.module removal, etc
2007-12-13 09:34:40 +00:00
5622bce2d5
#198579 by webernet and hswong3i: a huge set of coding style fixes, including:
...
- whitespaces at end of lines
- indentation
- control structure usage
- whitespace in empty lines
- phpdoc comment formatting
2007-12-08 14:06:23 +00:00
9a96837b89
- Patch #163246 by keith smith, freso, O Govinda, catch, webchick et al: fixed minor spelling issues and fixed spacing issues.
2007-11-26 16:36:44 +00:00
045002e25c
#111481 by chx and pwolanin: profile categories may contain slashes, but this was not yet supported by the user object menu loader
2007-11-26 08:15:32 +00:00
a1e5ac031e
- Patch #192110 by profix898: fixed hook_profile_alter API.
2007-11-20 13:44:38 +00:00
b0676c8f27
#192692 by jrbeeman and mfer: (security) protect profile category page menu items with the visibility settings already available
2007-11-19 11:24:11 +00:00
8ebc345b9d
- Patch #191914 by chx: you cannot add user/register to a menu. Also removed some whitespace.
2007-11-17 14:25:23 +00:00
2d8259c764
#25605 by Rob Loach et al: disallow editing user data of uid 0
2007-11-14 16:01:30 +00:00
69da830ced
#171117 by JirkaRybka: set access time for admin created or edited accounts so they are exempt from the spam protection we have for accounts never logged in
2007-11-06 12:20:14 +00:00
235621a072
#185209 by ChrisKennedy: only provide picture deletion option if there is an actual user picture present
2007-11-06 08:53:52 +00:00
856ae39d35
#186903 by marcingy, Rob Loach and chx: (regression) restore my recent posts functionality in tracker
2007-11-06 08:51:23 +00:00
207e6f145f
#184729 by hazexp: remove duplicate wording about the username in mail sent out to new users
2007-11-04 16:02:32 +00:00
0d58aae221
#176342 by dmhouse, spatz4000 and Wim Leers: add reset parameter to user_access()
2007-11-04 15:42:52 +00:00
8dcb5ab976
#182528 by RobRoy: move drupal_set_message() out of user deletion API function to UI function
2007-10-27 14:01:12 +00:00
13f9882979
#179276 by JirkaRybka: (regression) fix profile field sections to order properly by weight.
2007-10-25 10:30:40 +00:00
8903cda5ca
#179519 by chx, webchick and Desbeers: fix blog/[uid] to only display posts for that user and also set proper title
2007-10-24 11:17:01 +00:00
b94f2716cf
#184867 by deekayen, catch and keith.smith: fix some spelling errors in our source code and messages printed
2007-10-21 18:59:02 +00:00
09e2701892
#181088 by fajerstarter, catch and JirkaRybka: rename 'access control' to 'permissions' for usability reasons
2007-10-12 10:41:48 +00:00
0313d80108
- Patch #181284 by killes and chx: performance improvements for user_access().
2007-10-07 19:27:40 +00:00
35c0e44330
#179695 by chx: only anonymous users should have permission to visit user/login, so this menu item is automatically hidden when a user is logged in
2007-10-03 13:01:04 +00:00
74def328c8
#167284 by Heine and pwolanin: proper field type placeholders in IN() queries, setting a best practice to avoid vulnerabilities
2007-09-27 16:52:00 +00:00
310dbd432e
#172765 follow up patch by pwolanin: fix user path access, which was broken by the user module split
2007-09-19 18:00:52 +00:00
439942db98
#168261 by mvc: redirect registered users back to the front page if admin approval is required, so their user account page is not directly accessible after registration
2007-09-14 17:38:08 +00:00
6bb5c304f3
#174440 by kkaefer: properly translatable filter dropdown elements on user admin page
2007-09-13 09:51:11 +00:00
ac7637bc9b
#172773 by numerous contributors: Make the actions interface usable by mere mortals (including rename of actions.module to trigger, but keeping the actions themselfs).
...
Complete previous history of actions module:
- #148410 by jvandyk: added rewrite of the actions module!
- #155986 by Uwe: fixed typos.
- #155828 by Eaton, pwolanin and jvandyk: let actions live even if actions.module is not turned on
2007-09-11 14:50:05 +00:00
e3daf88ec7
#166742 by Crell and dvessel: split user module (for performance reasons)
2007-09-10 13:14:38 +00:00
ea0f102c21
#174224 by kkaefer: send user notification email after the user object is updated
2007-09-09 20:21:02 +00:00
4a347be7ed
#173225 corrective fix: there were two uses of the ip variable, so revert to the original patch
2007-09-08 13:57:22 +00:00
15b52931a2
- Patch #173225 by killes: missing ip_address(). Slightly modified by me.
2007-09-08 08:57:26 +00:00
9307321817
#148677 by pwolanin: set active menu item on 403/404 pages (and on the user page)
2007-09-06 12:47:20 +00:00
957997516d
- Patch #172765 by webchick and chx: path 'user' returns 403
2007-09-04 14:37:48 +00:00
1e04b134f4
#172453 by webchick: proper default value for user roles (radios need an int, not an array)
2007-09-02 12:46:21 +00:00
3d6b273206
#172455 by chx: a notice and missing form API conversions in user module
2007-09-02 12:24:49 +00:00
118e91cc40
#155828 by Eaton, pwolanin and jvandyk: let actions live even if actions.module is not turned on
2007-08-29 14:57:50 +00:00
7531f956aa
- Patch #169627 by JirkaRybka: improved logging of mail problems.
2007-08-26 08:00:49 +00:00
5e73b66f3a
- Patch #168028 by dvessler, merlinofchaos, pwolanin et al: both theme functions and templates may need include files. Flush your caches.
2007-08-26 07:46:11 +00:00
74292cd062
- Patch #80951 by killes, yched et al: block caching.
2007-08-19 08:08:45 +00:00
Dries Buytaert
Angie Byron
Gábor Hojtsy