librenms-librenms

mirror/librenms-librenms

Fork 0

mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00

Commit Graph

Author	SHA1	Message	Date
Tony Murray	3ead462549	Enable CSRF protection (#10447 ) * Enable CSRF protection * fix style issues	2019-07-17 07:20:26 -05:00
PipoCanaja	55f67f42fe	Refactor Api transport to use Guzzle (and new variables syntax) (#10070 ) * Allow new {{ $xxxx }} syntax * Properly handle urlencode on variable values without braking the URL, and uses Blades * Doc Doc typo * use Guzzle for HTTP requests * Add Basic auth support * Doc update * clean * Revert Blades, but keep the {{ $xxxx }} syntax * Revert Blades, but keep the {{ $xxxx }} syntax * Init Vars and comments * Notifications * api-options are not required * Update notifications.rss	2019-07-04 16:55:29 +01:00
Tony Murray	36431dd296	Security fix: unauthorized access (#10091 ) * Security fix: unauthorized access Affects nginx users: Moved php files outside of public html directory (Apache was protected by .htaccess) Affects all users: Some files did not check for authentication and could disclose some info. Better checks before including files from user input * git mv html/includes/ includes/html git mv html/pages/ includes/html/	2019-04-11 23:26:42 -05:00

Author

SHA1

Message

Date

Tony Murray

3ead462549

Enable CSRF protection (#10447 )

* Enable CSRF protection

* fix style issues

2019-07-17 07:20:26 -05:00

PipoCanaja

55f67f42fe

Refactor Api transport to use Guzzle (and new variables syntax) (#10070 )

* Allow new {{ $xxxx }} syntax

* Properly handle urlencode on variable values without braking the URL, and uses Blades

* Doc
Doc typo

* use Guzzle for HTTP requests

* Add Basic auth support

* Doc update

* clean

* Revert Blades, but keep the {{ $xxxx }} syntax

* Revert Blades, but keep the {{ $xxxx }} syntax

* Init Vars and comments

* Notifications

* api-options are not required

* Update notifications.rss

2019-07-04 16:55:29 +01:00

Tony Murray

36431dd296

Security fix: unauthorized access (#10091 )

* Security fix: unauthorized access
Affects nginx users:
Moved php files outside of public html directory (Apache was protected by .htaccess)

Affects all users:
Some files did not check for authentication and could disclose some info.
Better checks before including files from user input

* git mv html/includes/ includes/html
git mv html/pages/ includes/html/

2019-04-11 23:26:42 -05:00

3 Commits