beenull/adminerevo
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
3302 commits 7 branches 55 tags 9.6 MiB
Commit graph

1147 commits

Author SHA1 Message Date
Jakub Vrana cc268428b8 Fix SQL command toggle 2018-01-14 00:10:42 +01:00
Jakub Vrana 80d030f51a Disallow scripts without nonce 2018-01-13 22:19:16 +01:00
Jakub Vrana e23da5da0e Fix wrapping in Create table 2018-01-13 17:40:21 +01:00
Jakub Vrana 9d532fc0a1 Use script_src for <script src> 2018-01-13 16:25:11 +01:00
Jakub Vrana 144c7de27f Fix typo in script() 2018-01-13 15:23:47 +01:00
Jakub Vrana b7fcebfba8 Do not send empty CSP 2018-01-13 14:21:54 +01:00
Jakub Vrana 3fe0d88f98 Editor: Fix Search data in tables 2018-01-12 23:59:04 +01:00
Jakub Vrana 001c37e240 Use <script> instead of inline event handler for skipping original 2018-01-12 23:27:14 +01:00
Jakub Vrana b6cc584f48 Move inline event handlers to <script> 2018-01-12 22:46:16 +01:00
Jakub Vrana af1ad47a64 Return false from editingMoveRow() 2018-01-12 22:35:05 +01:00
Jakub Vrana 2eaac2e94e Move inline event handlers to <script> 2018-01-12 22:25:38 +01:00
Jakub Vrana 40abffe8de Use oninput instead of onchange 2018-01-12 22:18:54 +01:00
Jakub Vrana 259a465125 Move inline event handlers to <script> 2018-01-12 21:57:54 +01:00
Jakub Vrana 6353a89816 Use oninput instead of onkeyup 2018-01-12 18:46:44 +01:00
Jakub Vrana 38aac7ada2 Move inline event handlers to <script> 2018-01-12 18:34:19 +01:00
Jakub Vrana 24245867d7 Use <script> instead of inline event handler in on_help() 2018-01-12 18:11:00 +01:00
Jakub Vrana 1459df56bc Move inline event handlers to <script> 2018-01-12 17:59:46 +01:00
Jakub Vrana 0411495d20 Move inline event handlers to <script> 2018-01-12 17:19:47 +01:00
Jakub Vrana 5e9df49fd1 Move inline event handlers to <script> 2018-01-12 17:11:29 +01:00
Jakub Vrana 068ee71bf7 Return false from editingRemoveRow 2018-01-12 17:11:29 +01:00
Jakub Vrana e645693147 Use script() for <script> 2018-01-12 17:10:33 +01:00
Jakub Vrana 12fbfc9847 Move inline event handlers to <script> 2018-01-12 17:09:41 +01:00
Jakub Vrana 6b2ba65084 Use <script> instead of inline event handler in print_fieldset() 2018-01-12 17:09:41 +01:00
Jakub Vrana a5ee3451ac Use <script> instead of inline event handler in confirm() 2018-01-12 17:09:41 +01:00
Jakub Vrana da671df728 Move inline event handlers to <script> 2018-01-12 17:09:41 +01:00
Jakub Vrana 650221357d Return false from ajaxSetHtml() 2018-01-12 17:09:41 +01:00
Jakub Vrana d996b48cfa Move inline event handlers to <script> 2018-01-12 17:09:41 +01:00
Jakub Vrana 36edd445a6 Move inline event handlers to <script> 2018-01-12 17:09:41 +01:00
Jakub Vrana 7305783c21 Return false from toggle() 2018-01-12 17:09:41 +01:00
Jakub Vrana ee3a88d574 onchange='selectFieldChange 2018-01-12 17:09:41 +01:00
Jakub Vrana e5c52589ec Use @this in selectFieldChange 2018-01-12 17:09:41 +01:00
Jakub Vrana 3b0e1cf289 Move inline event handlers to <script> 2018-01-12 17:09:41 +01:00
Jakub Vrana 813ada6661 Revert using @this in formChecked 2018-01-11 18:58:00 +01:00
Jakub Vrana 4be72a2a0d Allow customizing CSP 2018-01-11 18:39:49 +01:00
Jakub Vrana 541c3c1fed Allow img-src data: common in skins 2018-01-11 18:39:49 +01:00
Jakub Vrana 3408d4ad78 Use JSON.parse if available 2018-01-11 18:39:49 +01:00
Jakub Vrana e614ae08c4 Add Content Security Policy 2018-01-11 18:39:49 +01:00
Jakub Vrana 552d2a6be4 Always send security headers in customization 2018-01-11 18:39:49 +01:00
Jakub Vrana 415253b1b1 Add nosniff header 2018-01-11 18:39:22 +01:00
Jakub Vrana d07b7e3773 Use Referrer-Policy instead of <meta name="referrer"> 
To make securityheaders.io happy.

Also fix a typo in the value (https://lists.w3.org/Archives/Public/public-webappsec/2015May/0059.html).
 2018-01-11 18:38:15 +01:00
Jakub Vrana 14778165a8 Use @this in JavaScript (prepares for removing inline event handlers) 2018-01-11 17:01:29 +01:00
Jakub Vrana 72b199378a Prevent PHP 7.1 warning about non-numeric values 2018-01-11 16:22:29 +01:00
Jakub Vrana 329fa55af5 Unindent doc-comments 2018-01-11 15:14:05 +01:00
Jakub Vrana dc85ba2d86 Delete type="text/javascript" from <script> as it is the default in HTML5 2018-01-11 14:13:43 +01:00
Jakub Vrana 741b76fbd4 Replace getElementsByTagName by shortcut for querySelectorAll 2018-01-11 14:00:04 +01:00
Jakub Vrana 9cb281868f Replace getElementById by shortcut for querySelector (requires IE8) 2018-01-11 13:51:32 +01:00
Jakub Vrana 7bcba262df Editor: Display field comment's text inside [] only in edit form 2017-10-01 08:45:17 -07:00
Jakub Vrana b10e9e127e Add Hebrew translation 2017-09-09 12:06:14 +02:00
Jakub Vrana 70aef8a55a MySQL: Remove dedicated view for replication status 2017-05-19 11:11:44 +02:00
Jakub Vrana c0a3f30060 Add a donate link 2017-04-16 10:42:27 +02:00
Jakub Vrana 7af1ee3702 Release 4.3.1 2017-04-14 09:48:11 +02:00
Jakub Vrana fb7bd02713 Don't overwrite previous cookies (bug #539) 2017-04-09 11:04:57 +02:00
Andre Polykanine A.K.A. Menelion Elensúlë b585ee8261 Updating Russian translation 2017-04-08 19:41:36 +02:00
Jakub Vrana f556f6acb1 PostgreSQL: Fix index size computation in PostgreSQL < 9.0 (reverts 4c78976c) 2017-04-08 19:33:46 +02:00
Jakub Vrana 22d0cf4171 Release 4.3.0 2017-03-15 18:24:12 +01:00
Jakub Vrana 8fd7ff0187 Highlight JSON 2017-03-10 08:56:58 +01:00
Jakub Vrana e040b296c5 Print number of bytes in blob in italics 2017-03-10 08:19:58 +01:00
Jakub Vrana 9d7d30891e Use SameSite cookies (except session cookie) 2017-03-07 18:12:23 +01:00
Jakub Vrana 4cf73abccd Rely on noreferrer in Firefox too 2017-03-01 11:35:01 +01:00
Jakub Vrana 2d6451b99a Improve SQLite login error message 2017-03-01 11:23:20 +01:00
Jakub Vrana 46f39f3cdb Bump version 2017-02-21 12:07:13 +01:00
Jakub Vrana 346353153d Unindent 2017-02-20 19:28:16 +01:00
Jakub Vrana fa6865da6a Use 'Create database' instead of 'Create new database' 2017-02-20 16:47:03 +01:00
Jakub Vrana 63b6b99365 Support high Unicode characters in shorten_utf8 (bug #481) 2017-02-20 16:22:30 +01:00
Jakub Vrana a0a1476e5b Fix where() escaping in MS SQL (bug #496) 2017-02-20 15:23:22 +01:00
Matthew Gamble 2a534798fa Add basic support for MySQL replication 2017-02-20 12:54:40 +01:00
Adam Kuśmierz a062e9cc58 Checkbox for bool in psql 2017-02-20 12:31:36 +01:00
Jonathan Vollebregt 64a49e95e8 Add javascript move for editing 2017-02-19 13:55:50 +01:00
Peter Knut c9801e2e24 Tables list implemented as <ul> 
Encapsulation of list items is necessery for advanced CSS themes.
 2017-02-19 11:39:04 +01:00
Mathieu Rochette 4cfe6263d9 fix logger for SQL commands 2017-02-19 11:00:07 +01:00
Kakysha 4a69059e1b Edit json and jsonb types in textarea 2017-02-19 10:02:51 +01:00
K0n24d 1d0607177d Do not set input type as numeric if field is an array 2017-02-19 09:45:05 +01:00
nafex 47c582acb3 make bytea fields shortable 2017-02-19 09:30:39 +01:00
Matthew Gamble 76612b1e8a Move rendering of table structure and indexes list into plugin system 
This allows the creation of a plugin to extend the display of either or
both of these things.
 2017-02-18 19:15:23 +01:00
Janne Cederberg dedbd01f64 Tabs must also be escaped in JSON strings 
If database table data contains tab characters (0x09) then those
must also be escaped along with newlines and carriage returns for
the resulting JSON file to be valid.
 2017-02-18 17:51:55 +01:00
soleuu 1a6186648c postgresql error with index on hidden columns (ctid) 2017-02-18 17:41:45 +01:00
Charles Wu 73690164b7 Added pdo_dblib as a driver for MSSQL (as native MSSQL driver does not exist for PHP7) 2017-02-18 17:35:36 +01:00
shaununderwood 3a1c251065 Changed 'undefined' to 'null' 
'undefined' is not a valid JSON attribute value and should been 'null'
 2017-02-18 17:32:40 +01:00
soleuu 86e26846a8 postgresql : ERROR: function connection_id() does not exist 2017-02-18 17:32:40 +01:00
Jakub Vrana dc9ae77e2f Fix error found by PHPStan 2017-02-16 19:05:45 +01:00
Jakub Vrana 2cee788ad3 Add accessibility labels to Indexes 2017-01-23 14:29:00 -08:00
Jakub Vrana 9bb75e1230 Add accessibility labels to databases and tables checkboxes 2017-01-23 14:05:47 -08:00
Jakub Vrana 7099560add Escape quote in field name to make it work in Chrome (thanks to zcepenela pani) 2017-01-23 13:30:05 -08:00
Jakub Vrana 949b913d4f Change comment not supported by compile.php 2016-09-27 22:04:44 -07:00
Jakub Vrana 9872229e11 Make maxlength in edit fields a soft limit 2016-09-19 10:12:33 -07:00
Jakub Vrana 682e86d236 Add accessibility labels to Create Table fields 2016-09-19 15:33:12 +02:00
Jakub Vrana f0a5fb56a5 Update Indonesian translation (thanks to Benny) 2016-07-22 17:30:38 +02:00
Jakub Vrana 53dfafd2ea Release 4.2.5 2016-06-01 10:09:29 -07:00
Jakub Vrana 7a33661b72 SQLite: Require credentials to use (thanks to Vincent Waart) 2016-06-01 09:59:20 -07:00
Bernhard J. M. Gruen 3289eca040 improved kill command support for MySQL and initial support for PgSQL 2016-02-28 12:27:45 -08:00
Jakub Vrana 49e2ac4559 Release 4.2.4 2016-02-06 11:10:16 -08:00
Jakub Vrana 0bb5a52dc4 Add Finnish translation 2016-02-06 10:50:57 -08:00
Jakub Vrana 37b9f0ec01 Add Bosnian translation 2016-02-01 09:10:07 -08:00
Jakub Vrana b317fe156a Support PHP 7 2016-01-24 12:02:41 -08:00
Jakub Vrana f83e3f41d2 Release 4.2.3 2015-11-15 10:49:48 -08:00
Jakub Vrana aa40e803e2 Add escaping (not fixing any XSS) 2015-11-08 12:15:45 -08:00
Jakub Vrana 0a31742ee8 Add Bulgarian translation 2015-11-01 11:33:04 -08:00
David Grudl a6ebd4a3e0 uses PHP 5 constructors 2015-11-01 11:08:46 -08:00
Jakub Vrana 79d438ed80 Add Galician translation 2015-09-22 08:29:49 -07:00
Jakub Vrana 35b71f0472 Add Greek translation 2015-09-20 11:09:34 -07:00
Jakub Vrana a01b2efc22 Change links to HTTPS 2015-09-10 09:26:36 -07:00
Jakub Vrana a248f8b008 Change protocol to HTTPS 2015-09-08 11:41:29 -07:00
Jakub Vrana 596f8df373 Fix XSS in alter table (found by HP Fortify) 2015-08-05 18:12:36 -07:00
Jakub Vrana ea0c9d9b5e Release 4.2.1 2015-03-10 09:33:44 -07:00
Jakub Vrana 26dafd9320 Use utf8mb4 only if supported 2015-03-06 11:56:04 -08:00
Jakub Vrana ced05d8a44 Fix going back to search result after edit 2015-03-06 10:20:10 -08:00
Jakub Vrana 8aa420d160 MySQL: Use utf8mb4 in export only if required 2015-03-06 09:36:20 -08:00
Jakub Vrana 6bbc8bc3ea Release 4.2.0 2015-02-07 11:08:21 -08:00
Jakub Vrana c990de3b3e Fix XSS in login form (bug #436) 2015-02-07 10:40:51 -08:00
beerwine 411d198d0d Added support for ILIKE in pgsql. 2015-02-07 10:25:33 -08:00
Jakub Vrana 060c006875 Add referrer: never meta tag 2015-02-06 09:00:48 -08:00
Nima Amini 65f8a87629 Update Persian translation 2015-01-12 09:32:03 -08:00
Jakub Vrana 2e4b8c1d36 Fix version needed for utf8mb4 (thanks to dg) 2015-01-11 10:09:41 -08:00
Jakub Vrana 25329cebf3 Allow limiting number of displayed rows in SQL command (bug #406) 2014-12-06 11:12:51 -08:00
Jakub Vrana 8bd53120df Fix handling of 64 bit numbers in auto_increment 2014-11-24 18:17:43 -08:00
Jakub Vrana 536e9a58ad Improve CSRF message 2014-10-28 09:24:13 -07:00
Jakub Vrana 5dc5bfe7ff SQLite: Support CURRENT_* default values (bug #417) 2014-10-25 16:49:42 -07:00
Jakub Vrana f9d76cea9a Firebird: Alpha version (thanks to Steve Krämer) 2014-09-14 21:10:23 -07:00
Jakub Vrana 37c8a3a123 Report offline and other AJAX errors (bug #419) 2014-09-14 15:47:09 -07:00
Jakub Vrana 594085c6f5 Send 403 for auth error 2014-09-14 14:49:33 -07:00
Jakub Vrana 51986426b7 Fix displaying binary data 2014-09-13 11:00:00 -07:00
Jakub Vrana a3e1cd7bb6 Fix saving NULL value 
This reverts commit ed130065.

Conflicts:
	adminer/drivers/mongo.inc.php
	adminer/include/functions.inc.php
 2014-09-13 10:59:28 -07:00
Jakub Vrana 0e78996fdb Specify encoding for PHP 5.6 with invalid default_charset (fixes #421) 2014-09-11 08:48:26 -07:00
Jarne W. Beutnagel 4ee84efa3e Added Danish language file 2014-09-08 09:16:58 -07:00
Jakub Vrana f80b296a1a Make adminer.key group-readable 2014-06-27 08:17:33 -07:00
Jakub Vrana 52eee61247 Use chmod() instead of umask() 2014-06-27 08:15:15 -07:00
Jakub Vrana 7e3f2d9b1d Fix edit by long non-utf8 string (thanks Robert Vlach) 2014-06-26 14:36:47 +02:00
Jakub Vrana 8bd3dca2f7 Use utf8mb4 on more places 2014-06-26 13:38:50 +02:00
Jakub Vrana b87d43fdcd Make master key unreadable to others (bug #410) 2014-06-26 13:30:02 +02:00
Jakub Vrana 06a2d87e55 Add CSS classes to navigation 2014-06-26 12:59:04 +02:00
Jakub Vrana 50b33db7e2 Change Dump to Export 2014-06-24 15:34:15 +02:00
Jakub Vrana 13f08f7255 Use singular caption 2014-06-24 15:02:08 +02:00
Jakub Vrana e62fc3a07b Preserve null byte in HTML 2014-05-02 10:27:00 -07:00
Jakub Vrana ad96c516ac Rename variable to reduce confusion 2014-04-21 09:45:15 -07:00
Jakub Vrana 0c8cd8e5f7 Fix doc comment 2014-04-18 09:10:17 -07:00
Jakub Vrana 6aed2f510a Release 4.1.0 2014-04-18 08:51:37 -07:00
Jakub Vrana 15ea9bba81 Sort languages 2014-04-13 10:50:27 -07:00
Yuki Hana c2ae381aaf Add Vietnamese language pack 2014-04-13 10:35:11 -07:00
Jakub Vrana 96c8e6fb71 Use rel=noreferrer in WebKit 2014-03-26 09:00:21 -07:00
Jakub Vrana ee124dadb1 Silence error for unwriteable file 2014-03-25 09:35:49 -07:00
Jakub Vrana 06f4346cfe Prevent against brute force login attempts from the same IP address 2014-03-21 22:47:57 -07:00
Jakub Vrana 619b49c3d4 Allow arrays to be ignored in hidden_fields() 2014-03-21 22:45:38 -07:00
Jakub Vrana cd64b707bd Use noreferrer in external links 2014-03-21 22:32:31 -07:00
Jakub Vrana 4d491d704e Translate numbers in ar, bn, fa 2014-03-19 21:56:42 -07:00
Jakub Vrana bbcc8f141d MySQL 5.6.5+: Support ON UPDATE on datatime column (bug #393) 2014-03-15 14:08:34 -07:00
Jakub Vrana 46bb56cab9 SQLite: Support UPDATE OF triggers 2014-03-15 11:02:14 -07:00
Jakub Vrana fc668ea326 Simplify format_time() 2014-03-15 11:02:14 -07:00
Jakub Vrana 95b0237061 Display Schema label in navigation 2014-03-12 15:48:29 -07:00
robertopc fa01efa059 Fixing some typos in the PT-BR translation 2014-03-11 09:26:15 -07:00
Jakub Vrana 6a3ede75f6 Print elapsed time in HTML instead of SQL command comment 2014-03-07 09:33:37 -08:00