Commit Graph

2431 Commits

Author SHA1 Message Date
af36e7a0d9 - Converts template to UTF-8 2016-11-06 20:03:21 -05:00
1db8626e35 - Fixes 'Cannot access self:: when no class scope is active' error in PHP 5.3 2016-11-06 18:55:20 -05:00
61c255564f - Fixes 'Using $this when not in object context' error in PHP 5.3 2016-11-06 18:55:12 -05:00
4698d5a4db - Indirectly invokes hash_equals() functions. This prevents PHP Compatibility sniffer
from complains about the function not present in <5.6. WP provides a shim for older
  PHP versions in wp-includes/compat.php
2016-11-05 19:54:55 -04:00
e45fc0c0a0 - Renames functions that start with underscores (i.e., names reserved by PHP)
- Removes the unused date_format function
2016-11-05 19:54:46 -04:00
67f4c21aa8 Fix coding standard issue - extra space after foreach 2016-11-04 17:00:10 +02:00
5eba0e2731 Fix referencing $this in anonymous function context 2016-11-04 17:00:10 +02:00
c05be7d987 remove useless comment (containing a typo on top of that...) 2016-11-04 14:14:48 +01:00
b8cb1da777 added custom information to HS Beacon 2016-11-04 14:11:37 +01:00
0d32c09df3 - Replaces model arrays with model objects 2016-11-03 20:45:53 -04:00
9f288ae11a - Removes unused classes
- Fixes [newsletter:number] shortcode not working
2016-11-03 20:38:20 -04:00
e87ccd6b92 - Corrects/updates code comments 2016-11-03 18:11:00 -04:00
bdcb7f0e58 Merge pull request #687 from mailpoet/issue_681_670
fixed HTML export of subscription form + updated docs url in settings
2016-11-02 16:15:07 +02:00
069bc95297 fixed HTML export of subscription form + updated docs url in settings 2016-11-02 13:24:55 +01:00
2a961cca01 Eliminate an extra level of indentation 2016-11-02 13:10:23 +02:00
ee275532b1 Merge pull request #679 from mailpoet/secissue_640
XSS in listing sort by
2016-11-02 12:48:40 +02:00
40ca54c447 sort by defaults to 'id' if invalid 2016-11-02 11:17:27 +01:00
e553922eca Update composer.lock and remove leftover comment 2016-11-02 11:30:52 +02:00
f037e1271d - Removes php-simple-html-dom-parser dependency
- Updates CSS inliner to use pQuery DOM parser
2016-10-31 19:01:48 -04:00
f4563e18cd use filter_var instead of regex 2016-10-31 17:36:53 +01:00
feaac5eb54 constrain sort_by to alphanumeric/underscore in order to avoid xss in error notices 2016-10-31 17:36:53 +01:00
c09bcd51ad Merge pull request #675 from mailpoet/amazon_ses_fix
Fixes const value declaration for PHP <5.6
2016-10-28 17:29:57 +03:00
01af4d3401 - Fixes const value declaration for PHP <5.6 2016-10-28 10:13:56 -04:00
7d2e13b9a3 - Updates license check logic
- Updates subscriber limit check logic
- Updates unit tests
- Updates Menu's check for subscriber limit
2016-10-27 12:35:57 -04:00
a4395f2350 - Adds unit tests 2016-10-27 11:16:30 -04:00
411969b3eb - Adds check for premium plugin status
- Bypasses subscriber count enforcement if premium is enabled
2016-10-27 10:20:05 -04:00
217894745d - Updates text strings
- Closes #655
2016-10-25 10:21:23 -04:00
8330bfc884 - Fixes "completed" status update of notification history
newsletters
- Fixes detection of post notification newsletters that do not contain any posts (i.e., blank ALC blocks)
- Updates unit test
2016-10-24 08:55:22 -04:00
ef21a8cca7 - Enables post notification schedule update upon newsletter saving during
step 3
2016-10-24 08:55:22 -04:00
e32c46a755 - Detaches posts_where action after posts are pulled from the database 2016-10-24 08:55:22 -04:00
092f69538a Merge pull request #667 from mailpoet/sending_to_trashed_subscribers_fix
Prevents newsletters from being sent to trashed subscribers
2016-10-24 15:26:55 +03:00
7a75367d75 Merge pull request #666 from mailpoet/export_filename_update
Increases export filename length and randomness
2016-10-24 13:36:36 +03:00
1ac288d286 - Prevents newsletters from being sent to trashed subscribers
- Updates unit tests
- Addresses #629
2016-10-21 14:36:44 -04:00
516bc73092 - Increases export filename length and randomness 2016-10-21 11:42:13 -04:00
202e4b90e1 added unit test for API::checkPermissions 2016-10-21 13:36:41 +02:00
ee89bf0722 refactored API class 2016-10-21 13:36:41 +02:00
876d21300a fixed duplicated lines due to faulty rebase 2016-10-21 13:36:41 +02:00
0ca5b7a79f API Security
- added APIAccess class to define access levels of API Endpoints (permissions)
- use "mailpoet_token" for all nonce (just as before)
- merged setupPublic/setupAdmin methods in API in order to avoid duplication
- check permission if access level is not all
- fixed ABSPATH check in some classes
2016-10-21 13:36:41 +02:00
5d0ee43921 removed checkToken for admin ajax 2016-10-21 13:36:41 +02:00
cc523a3c0b ability to specify action for generateToken() method 2016-10-21 13:36:41 +02:00
38f6c95059 Update newsletter saving to reflect code review comments
- Switch to using full segment objects when saving newsletters
- Fix stale comment in newsletter editor's Newsletter model
- Fix typo in newsletter editor tests
2016-10-20 17:52:05 +03:00
cc03b631ff Allow newsletters.save endpoint to accept segments as list of objects 2016-10-20 16:08:41 +03:00
12a3931b7b Merge pull request #662 from mailpoet/security_issue_634
PHP Object injection in front Router
2016-10-18 16:46:14 +03:00
5e9e53ec41 - Updates router to use json_encode() instead of serialize() for publicly modified data payload
- Updates unit tests
- Fixes #634
2016-10-17 22:39:36 -04:00
98f95f72ad - Adds validation for import data, including column names (fixes #633)
- Prevents nonexistent custom fields from being associated with subscribers
2016-10-17 20:22:25 -04:00
812d138c4e Merge pull request #658 from mailpoet/import_and_mailer_host_restriction
Import and mailer host restriction
2016-10-17 16:19:42 +02:00
07bc35d4cd Merge pull request #625 from mailpoet/unit_tests
Adds unit test for newsletter scheduler
2016-10-17 11:37:17 +02:00
90b95a2c25 fixed 'newletter' typo and replaced integer weekdays by their carbon constant equivalent 2016-10-17 11:35:57 +02:00
8c28dc3d8a - Restricts Amazon SES region to a specific list of hosts
- Updates unit tests
- Closes #647
2016-10-16 12:19:47 -04:00
9197e39fb4 - Restricts MailChimp API key to specific format
- Updates unit test
2016-10-16 11:57:56 -04:00