Commit Graph

9 Commits (9d611a903a8cb00cdbfc213c321decdd819aa5d4)

Author SHA1 Message Date
andryyy 66e06a0c0c [Web] Sync jobs can be created/viewed/edited by admins/domain admins; Various fixes or improvements 2017-07-29 10:32:17 +02:00
andryyy 9bce8f0501 [Web] Fix session timeout 2017-07-26 23:09:50 +02:00
andryyy 84ad579437 [Web] Initial ratelimit support, more API actions 2017-07-16 11:03:28 +02:00
andryyy 5a95d2062c More changes to the UI, more API... 2017-05-29 21:51:06 +02:00
andryyy 4ffa80a669 Remove ip from session check 2017-05-18 19:45:41 +02:00
Dennis Neufeld 0d3d9b8c15 Fix bug: Session cookie domain
If the web domain is != mail domain, the session cookie is set to the wrong domain.
2017-05-16 19:46:24 +02:00
andryyy e91c6916ab CSRF protection 2017-05-15 11:37:12 +02:00
andryyy 49f28ecaf8 Destroy session when it becomes invalid 2017-05-14 21:53:08 +02:00
andryyy 3c937f75ba Add OWASP CSRF Protector, add more secure session handling 2017-05-07 13:38:31 +02:00