Commit Graph

233 Commits

Author SHA1 Message Date
ryan 4a662f1776 Precompute the hash of the unknown avatar user to save an md5 call. Props Viper007Bond. see #5775
git-svn-id: http://svn.automattic.com/wordpress/trunk@6756 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-08 07:09:01 +00:00
ryan 596f6b0583 Gonna serve default avatars from gravatar. see #5775
git-svn-id: http://svn.automattic.com/wordpress/trunk@6749 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-07 06:58:38 +00:00
ryan 36a651ef92 get_avatar(). see #5775
git-svn-id: http://svn.automattic.com/wordpress/trunk@6748 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-07 06:07:12 +00:00
ryan 7b946b9007 Remove cookie checking from check_ajax_referer(). Check nonces instead. Props mdawaffe. fixes #5782
git-svn-id: http://svn.automattic.com/wordpress/trunk@6739 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-06 21:19:47 +00:00
ryan d88983793b Trailing whitespace cleanup
git-svn-id: http://svn.automattic.com/wordpress/trunk@6726 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-05 06:47:27 +00:00
ryan 8263948a96 Some notice fixes from Nazgul. fixes #3155
git-svn-id: http://svn.automattic.com/wordpress/trunk@6711 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-02 18:42:09 +00:00
ryan 19de78b638 Add wp_authenticate_user filter
git-svn-id: http://svn.automattic.com/wordpress/trunk@6685 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-29 20:17:11 +00:00
westi 520d17d7f0 Switch from abs(intval()) to absint(). See #4762.
git-svn-id: http://svn.automattic.com/wordpress/trunk@6682 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-29 18:48:38 +00:00
ryan 35bd1677a1 check_ajax_referer() should look for *only* the auth_cookie, not others that look like they match. Autosave should know that an ajax response of -1 or 0 is a failure. Props mdawaffe
git-svn-id: http://svn.automattic.com/wordpress/trunk@6649 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-24 21:19:42 +00:00
ryan f21535a6b1 Add check_password filter
git-svn-id: http://svn.automattic.com/wordpress/trunk@6648 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-24 18:36:45 +00:00
ryan a99e7c0cee Add wp_login_failed action
git-svn-id: http://svn.automattic.com/wordpress/trunk@6647 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-24 18:32:21 +00:00
ryan 6afab28342 Refactor login. see #5405
git-svn-id: http://svn.automattic.com/wordpress/trunk@6643 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-22 19:35:19 +00:00
ryan c12cc74bae phpdoc for pluggable.php from darkdragon. fixes #5509
git-svn-id: http://svn.automattic.com/wordpress/trunk@6637 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-20 06:53:42 +00:00
ryan 106df879c6 phpdoc for pluggable from darkdragon. fixes #5509
git-svn-id: http://svn.automattic.com/wordpress/trunk@6600 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-11 20:51:39 +00:00
westi 8c45b3a029 Revert #5007 as it causes more trouble than it solves. Fixes #5273 for trunk.
git-svn-id: http://svn.automattic.com/wordpress/trunk@6599 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-11 18:44:44 +00:00
ryan a4f050e486 Concat secret key with salt. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6583 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-09 16:37:43 +00:00
ryan 1ae1811dd0 Unused var cleanup. Props DD32. see #5418
git-svn-id: http://svn.automattic.com/wordpress/trunk@6551 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-04 19:36:34 +00:00
ryan 6aafd77e36 Remove unneeded get_userdata call. Props DD32. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6531 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-31 23:39:02 +00:00
ryan bed1da2844 Separate cookie generation from cookie set. Introduce wp_generate_auth_cookie(). see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6529 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-31 17:50:32 +00:00
ryan 63790db707 set_auth_cookie action. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6486 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-24 08:01:55 +00:00
ryan 42d83376c9 Allow DB salt to be overridden by SECRET_SALT. Add a filter to wp_salt(). see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6478 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-24 06:34:12 +00:00
ryan 03a9269b11 Don't fallback to DB info for secret key. Allow expiration grace period for AJAX requests. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6471 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-23 00:58:06 +00:00
ryan 7f722d1f90 Use __ngettext() for plurals. Props darkdragon. see #4865
git-svn-id: http://svn.automattic.com/wordpress/trunk@6430 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-20 17:05:06 +00:00
ryan 8a556e5e48 Fix AJAX cookie validation. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6400 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-17 21:12:28 +00:00
ryan 9572687394 wp_set_password(). see #2394
git-svn-id: http://svn.automattic.com/wordpress/trunk@6396 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-17 06:02:45 +00:00
ryan 29ef8b6f5f New secure cookie protocol. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6387 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-16 17:41:59 +00:00
ryan 7b16e3616c Pluggable random password generator from pishmishy. fixes #5401
git-svn-id: http://svn.automattic.com/wordpress/trunk@6385 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-15 05:31:16 +00:00
ryan 028a159440 Remove unused vars. Props DD32. see #5418
git-svn-id: http://svn.automattic.com/wordpress/trunk@6364 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-06 19:49:33 +00:00
ryan 07e337adcf Hash passwords with phpass. Add wp_check_pasword() and wp_hash_password() functions. Props pishmishy. see #2394
git-svn-id: http://svn.automattic.com/wordpress/trunk@6350 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-02 05:14:11 +00:00
ryan 43b7cd700f get_user_by_email() and some user caching cleanups. fixes #5392
git-svn-id: http://svn.automattic.com/wordpress/trunk@6346 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-11-27 22:14:53 +00:00
ryan df08604882 Remove unused variable. Props epper. fixes #5339
git-svn-id: http://svn.automattic.com/wordpress/trunk@6330 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-11-12 19:31:49 +00:00
westi 9ef11d81bd Set the Sender on emails as well as from. Fixes #5007 for trunk props mattyrob
git-svn-id: http://svn.automattic.com/wordpress/trunk@6265 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-10-17 20:17:01 +00:00
markjaquith dec5db7586 check for a match against a lowercase host in wp_safe_redirect(). props BoltClock. fixes #5114 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@6219 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-10-10 19:25:23 +00:00
ryan f8afc0b75d jquery for list manipulation. Round one, fight. Props mdawaffe. fixes #4805
git-svn-id: http://svn.automattic.com/wordpress/trunk@6213 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-10-09 22:49:42 +00:00
markjaquith 21c25b5566 prepare() for wp-includes/ link-template.php, post.php, general-template.php, pluggable.php, functions.php. see #4553
git-svn-id: http://svn.automattic.com/wordpress/trunk@6180 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-10-02 18:45:47 +00:00
markjaquith 5177c0e5c7 Pass the attempted redirect host as a second parameter in the allowed_redirect_hosts filter. props mdawaffe.
git-svn-id: http://svn.automattic.com/wordpress/trunk@6145 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-20 21:53:42 +00:00
ryan 9eb6351d24 Extra protection in check_ajax_referer from mdawaffe. fixes #4939
git-svn-id: http://svn.automattic.com/wordpress/trunk@6138 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-19 19:32:34 +00:00
markjaquith f25f33c4ba Put a filter in wp_safe_redirect() so people can whitelist other domains. see #4606
git-svn-id: http://svn.automattic.com/wordpress/trunk@6136 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-19 04:14:53 +00:00
markjaquith 3c89a5c5d7 More robust wp_safe_redirect(). Introducing wp_sanitize_redirect() for use in wp_redirect() and wp_safe_redirect(). fixes #4606
git-svn-id: http://svn.automattic.com/wordpress/trunk@6134 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-19 03:47:37 +00:00
markjaquith dbd3d07274 Introducing wp_safe_redirect(). fixes #4606 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@6131 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-18 22:23:16 +00:00
westi 2f44508e9b Consolidate shared code in get_userdata and get_userdatabylogin. Fixes #2134 props johnjosephbachir
git-svn-id: http://svn.automattic.com/wordpress/trunk@6094 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-12 17:15:17 +00:00
westi ca4ddf50f8 Allow the wp_mail filter to change the passed data. Fixes #4511 props ryan.
git-svn-id: http://svn.automattic.com/wordpress/trunk@6084 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-11 20:49:28 +00:00
ryan 321c310717 Remove trailing whitespace
git-svn-id: http://svn.automattic.com/wordpress/trunk@6026 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-03 23:32:58 +00:00
markjaquith bacbca924f Roll back [5986], [5988], [5989]. We are in a char class, so no escaping needed. Props mdawaffe. see #4873
git-svn-id: http://svn.automattic.com/wordpress/trunk@5993 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-08-30 18:13:48 +00:00
markjaquith f0b39c1b5c Better %0d/%0a sanitization for wp_redirect() from hakre. fixes #4819 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@5990 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-08-30 17:46:09 +00:00
ryan 5a997f588b Escape special chars in regex. Props eightize and Otto42. fixes #4873
git-svn-id: http://svn.automattic.com/wordpress/trunk@5986 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-08-30 15:42:26 +00:00
markjaquith 64ef1ed841 Correctly grab Content-Type from old-school headers, skip blank headers. fixes #4296
git-svn-id: http://svn.automattic.com/wordpress/trunk@5764 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-06-26 20:18:56 +00:00
markjaquith 9a91481a2b Don't add MIME-Version header twice (PHPMailer already adds it). see #4296
git-svn-id: http://svn.automattic.com/wordpress/trunk@5763 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-06-26 19:11:23 +00:00
markjaquith d9d5fde1e7 compare mail headers case-insensitively and actually use the Content-Type specified. Props Nazgul. see: #4296
git-svn-id: http://svn.automattic.com/wordpress/trunk@5762 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-06-26 18:28:56 +00:00
markjaquith 829ace3e68 strpos() is "haystack,needle", not "needle,haystack" Props pishmishy. fixes #4520
git-svn-id: http://svn.automattic.com/wordpress/trunk@5761 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-06-26 18:06:17 +00:00
ryan 9d3d20f063 Use EXTR_SKIP when extracting. see #4468
git-svn-id: http://svn.automattic.com/wordpress/trunk@5708 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-06-14 22:45:40 +00:00
ryan 2f09416258 Trim empty lines. Nothing but newline.
git-svn-id: http://svn.automattic.com/wordpress/trunk@5700 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-06-14 02:25:30 +00:00
ryan 21dff0640c Add a prophylactic sanitize_user()
git-svn-id: http://svn.automattic.com/wordpress/trunk@5683 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-06-12 18:11:06 +00:00
rob1n 64820ed1ae wp_mail() rewrite that handles HTML mail. fixes #4296
git-svn-id: http://svn.automattic.com/wordpress/trunk@5639 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-06-02 03:18:24 +00:00
ryan 70c17cc871 Escapage
git-svn-id: http://svn.automattic.com/wordpress/trunk@5441 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-05-11 00:56:12 +00:00
matt 7602d17899 (int)er the dragon.
git-svn-id: http://svn.automattic.com/wordpress/trunk@5087 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-03-23 00:59:21 +00:00
ryan 2e2832dc85 Add wp_mail_from filter. Props rob1n. fixes #2053
git-svn-id: http://svn.automattic.com/wordpress/trunk@5061 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-03-18 23:16:14 +00:00
markjaquith 2008fdcbd7 Another typo in [4990]. fixes #3920
git-svn-id: http://svn.automattic.com/wordpress/trunk@4996 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-03-07 06:17:15 +00:00
markjaquith 3320dd1380 Use strpos instead of strstr where ever possible, for speed. Props rob1n. fixes #3920
git-svn-id: http://svn.automattic.com/wordpress/trunk@4990 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-03-07 05:29:15 +00:00
markjaquith d0f79bb3f2 trailing tabs and whitespace cleanup.
git-svn-id: http://svn.automattic.com/wordpress/trunk@4953 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-02-27 15:24:54 +00:00
ryan f199d3658a Remove debug.
git-svn-id: http://svn.automattic.com/wordpress/trunk@4947 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-02-26 03:42:25 +00:00
ryan 7effafd4ee Trying out phpmailer for wp_mail(). fixes #3862
git-svn-id: http://svn.automattic.com/wordpress/trunk@4946 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-02-25 20:23:25 +00:00
markjaquith f639cbcd24 Consistently use "Spam it:" and "Delete it:" in e-mails. fixes #3304
git-svn-id: http://svn.automattic.com/wordpress/trunk@4885 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-02-15 05:51:59 +00:00
ryan af10b7443f Cache user id instead of full user object in the userlogins cache. Props charleshooper. fixes #3716
git-svn-id: http://svn.automattic.com/wordpress/trunk@4859 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-02-02 00:00:36 +00:00
matt 384ec6e6c5 Let's be a little less verbose here
git-svn-id: http://svn.automattic.com/wordpress/trunk@4516 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-11-23 00:10:30 +00:00
markjaquith 16998c6bb3 trying Ryan's suggestion for #3215
git-svn-id: http://svn.automattic.com/wordpress/trunk@4513 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-11-22 04:58:31 +00:00
ryan 9f534ebae6 Remove trailing spaces and convert spaces to tabs. Props Nazgul. fixes #986
git-svn-id: http://svn.automattic.com/wordpress/trunk@4495 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-11-19 07:56:05 +00:00
matt b6a531917e Make these links shorter and remove unneeded vars
git-svn-id: http://svn.automattic.com/wordpress/trunk@4432 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-10-30 19:27:24 +00:00
markjaquith 5d42dae380 Add wp_redirect filter, with cancel ability. fixes #3250
git-svn-id: http://svn.automattic.com/wordpress/trunk@4407 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-10-18 22:02:30 +00:00
markjaquith 854cf56a7d Prevent users from entering strings that will be interpreted as serialized arrays/objects on the way out. fixes #2591
git-svn-id: http://svn.automattic.com/wordpress/trunk@4382 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-10-12 23:54:36 +00:00
ryan 00326bd9ef Improved login from Viper007Bond. fixes #3123
git-svn-id: http://svn.automattic.com/wordpress/trunk@4339 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-10-04 16:47:50 +00:00
ryan 0947d74004 Silence gethostbyaddr(). Props MarkJaquith. fixes #2759
git-svn-id: http://svn.automattic.com/wordpress/trunk@4288 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-10-04 03:05:54 +00:00
ryan f1f2928770 Don't do status_header for IIS. Props Mark Jaquith. fixes #3190
git-svn-id: http://svn.automattic.com/wordpress/trunk@4273 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-10-03 00:28:06 +00:00
ryan 6d3a4429f3 Send 302 on redirect. Props leflo. fixes #3166
git-svn-id: http://svn.automattic.com/wordpress/trunk@4252 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-09-26 00:55:21 +00:00
ryan 849a0d29d7 Use get_option instead of get_settings. Just 'cause.
git-svn-id: http://svn.automattic.com/wordpress/trunk@4144 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-08-30 21:46:31 +00:00
ryan efcb63ad21 s/URI/URL/. Props Nazgul. fixes #2666
git-svn-id: http://svn.automattic.com/wordpress/trunk@4133 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-08-30 16:40:17 +00:00
ryan 6a2bf58f78 wp_kses_no_null() redirect location for extra protection.
git-svn-id: http://svn.automattic.com/wordpress/trunk@3992 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-07-06 00:28:37 +00:00
ryan 435d479ec9 Allow % so entities such as slashes don't break.
git-svn-id: http://svn.automattic.com/wordpress/trunk@3939 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-06-30 00:43:23 +00:00
ryan e316dab0c2 wp_explain_nonce() and wp_nonce_ays(). Props mdawaffe. #2734
git-svn-id: http://svn.automattic.com/wordpress/trunk@3934 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-06-27 08:06:00 +00:00
ryan ff19f4b5a5 Use wp_redirect().
git-svn-id: http://svn.automattic.com/wordpress/trunk@3928 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-06-27 05:38:56 +00:00
ryan 9b8a99e398 More thorough URI sanitizer in wp_redirect().
git-svn-id: http://svn.automattic.com/wordpress/trunk@3926 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-06-27 01:42:52 +00:00
ryan 9876a3606f wp_get_referer() and friends from robmiller and markjaquith. fixes #2800
git-svn-id: http://svn.automattic.com/wordpress/trunk@3908 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-06-24 05:38:37 +00:00
ryan c93efa866e Include file renames. #2525
git-svn-id: http://svn.automattic.com/wordpress/trunk@3862 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-06-11 06:43:54 +00:00