Cavemanon/piratepoet
8
Fork 0
Code Pull Requests Actions Releases 16 Activity
2,878 Commits 3 Branches 547 Tags
40a3487d3dbf2ea2092da2a9eea93228ca752c7c
Commit Graph

2878 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Vlad
1ac288d286 - Prevents newsletters from being sent to trashed subscribers 
- Updates unit tests
- Addresses #629
 2016-10-21 14:36:44 -04:00
Vlad
516bc73092 - Increases export filename length and randomness 2016-10-21 11:42:13 -04:00
Jonathan Labreuille
4088abef68 removed useless 'use' in unit test 2016-10-21 13:42:19 +02:00
Jonathan Labreuille
f6cefc3f5c wrong email address in unit test 2016-10-21 13:38:23 +02:00
Jonathan Labreuille
202e4b90e1 added unit test for API::checkPermissions 2016-10-21 13:36:41 +02:00
Jonathan Labreuille
ee89bf0722 refactored API class 2016-10-21 13:36:41 +02:00
Jonathan Labreuille
876d21300a fixed duplicated lines due to faulty rebase 2016-10-21 13:36:41 +02:00
Jonathan Labreuille
0ca5b7a79f API Security 
- added APIAccess class to define access levels of API Endpoints (permissions)
- use "mailpoet_token" for all nonce (just as before)
- merged setupPublic/setupAdmin methods in API in order to avoid duplication
- check permission if access level is not all
- fixed ABSPATH check in some classes
 2016-10-21 13:36:41 +02:00
Jonathan Labreuille
5d0ee43921 removed checkToken for admin ajax 2016-10-21 13:36:41 +02:00
Jonathan Labreuille
cc523a3c0b ability to specify action for generateToken() method 2016-10-21 13:36:41 +02:00
Jonathan Labreuille
2787998d32 Merge pull request #664 from mailpoet/editor_fixes 
Editor fixes
 2016-10-20 17:29:55 +02:00
Tautvidas Sipavičius
38f6c95059 Update newsletter saving to reflect code review comments 
- Switch to using full segment objects when saving newsletters
- Fix stale comment in newsletter editor's Newsletter model
- Fix typo in newsletter editor tests
 2016-10-20 17:52:05 +03:00
Tautvidas Sipavičius
cc03b631ff Allow newsletters.save endpoint to accept segments as list of objects 2016-10-20 16:08:41 +03:00
Tautvidas Sipavičius
a3c77fb685 Fix PHP to JS date format converter to handle escaped symbols 2016-10-20 15:19:04 +03:00
Tautvidas Sipavičius
3817e28960 Change newsletter not found error to a static one in editor 2016-10-20 13:38:07 +03:00
Tautvidas Sipavičius
c3a78b1ea3 Fix newsletter editor to only save properties it changes 2016-10-20 13:37:32 +03:00
mrcasual
42877236c8 Merge pull request #663 from mailpoet/wp_repo_files 
Preparation for plugin repo
 2016-10-19 09:08:54 -04:00
Tautvidas Sipavičius
6e87f3539c Update license.txt, readme.txt and link to plugin's repo page 2016-10-19 13:46:14 +03:00
Tautvidas Sipavičius
7704ea4b68 Bump up release version to 0.0.49 2016-10-19 13:23:00 +03:00
Tautvidas Sipavičius
12a3931b7b Merge pull request #662 from mailpoet/security_issue_634 
PHP Object injection in front Router
0.0.49 		2016-10-18 16:46:14 +03:00
Jonathan Labreuille
25a55dbb67 Merge pull request #661 from mailpoet/security_issue_633 
Import SQL injection
 2016-10-18 14:50:08 +02:00
Jonathan Labreuille
6758f60a81 Merge pull request #659 from mailpoet/import_data_sanitization 
Sanitize import data
 2016-10-18 12:35:52 +02:00
Vlad
5e9e53ec41 - Updates router to use json_encode() instead of serialize() for publicly modified data payload 
- Updates unit tests
- Fixes #634
 2016-10-17 22:39:36 -04:00
Vlad
1285252a8c - Adds unit tests 2016-10-17 20:27:58 -04:00
Vlad
98f95f72ad - Adds validation for import data, including column names (fixes #633) 
- Prevents nonexistent custom fields from being associated with subscribers
 2016-10-17 20:22:25 -04:00
Vlad
09ca788371 - Fixes subscriber count not being shown when new segment is created 2016-10-17 20:12:57 -04:00
Vlad
b48cc5a959 - Updates import UI to escape HTML text 
- Allows mixing of escaped and unescaped HTML text
- Removes server-side text escaping
 2016-10-17 11:01:54 -04:00
Jonathan Labreuille
812d138c4e Merge pull request #658 from mailpoet/import_and_mailer_host_restriction 
Import and mailer host restriction
 2016-10-17 16:19:42 +02:00
Jonathan Labreuille
07bc35d4cd Merge pull request #625 from mailpoet/unit_tests 
Adds unit test for newsletter scheduler
 2016-10-17 11:37:17 +02:00
Jonathan Labreuille
90b95a2c25 fixed 'newletter' typo and replaced integer weekdays by their carbon constant equivalent 2016-10-17 11:35:57 +02:00
Vlad
78c50c41e3 - Fixes unit test 
- Updates code as per code review comments
 2016-10-18 14:29:53 -04:00
mrcasual
7eee7def63 Merge pull request #657 from mailpoet/security_issue_635 
Security issue #635
 2016-10-16 16:42:11 -04:00
Vlad
9ba6e9806f - Adds data sanitization on the client and server side 
- Closes #641
 2016-10-16 13:02:49 -04:00
Vlad
8c28dc3d8a - Restricts Amazon SES region to a specific list of hosts 
- Updates unit tests
- Closes #647
 2016-10-16 12:19:47 -04:00
Vlad
9197e39fb4 - Restricts MailChimp API key to specific format 
- Updates unit test
 2016-10-16 11:57:56 -04:00
Jonathan Labreuille
37f59814e5 removed unused methods in Util/CSS -> fixes security issue #635 2016-10-13 10:34:36 +02:00
Tautvidas Sipavičius
bf894fc26f Bump up release version to 0.0.48, update changelog 0.0.48 2016-10-11 13:02:08 +03:00
Tautvidas Sipavičius
0b2b42cf4d Merge pull request #654 from mailpoet/security_issue_1 
Security issues round 1
 2016-10-11 12:51:11 +03:00
Jonathan Labreuille
542015a4f6 Improved removal of useless files in vendor folder during build process 
- moved sort_order constraining logic to Listing handler's construct
 2016-10-10 14:52:09 +02:00
Jonathan Labreuille
f5a8323f5d removed 'test*' from removed folders in vendor as it was creating issues with Twig 2016-10-07 15:12:58 +02:00
Jonathan Labreuille
55942cd88b prevent odd values for sort_order in listing.jsx 2016-10-07 14:38:25 +02:00
Jonathan Labreuille
f26a2cbd26 fixes issue #651 2016-10-06 13:18:46 +02:00
Jonathan Labreuille
4402f826c3 fixed issue with namespace AND fixed issue #649 2016-10-06 12:54:04 +02:00
Jonathan Labreuille
b9745b555a make sure ABSPATH is defined before using it - fixes issue #648 2016-10-06 12:52:53 +02:00
Jonathan Labreuille
f923a8063b cleanup useless files in vendor folder when building release (fixes issue #637) 2016-10-06 11:24:18 +02:00
Jonathan Labreuille
f4367b9146 optimized the composer install a bit 2016-10-06 09:52:42 +02:00
Jonathan Labreuille
a3395e41c9 fixes issue #632 2016-10-06 09:25:09 +02:00
Tautvidas Sipavičius
be61135daf Merge pull request #627 from mailpoet/translations 
Translations
 2016-10-05 12:26:03 +03:00
Jonathan Labreuille
21b4187a11 added missing text domains in _e functions 2016-10-05 10:26:59 +02:00
Jonathan Labreuille
1c3c1e35e7 added 'lang' to gitignore 2016-10-05 10:08:24 +02:00