101 Commits

Author SHA1 Message Date
Andrew Dolgov
8aac6f2d3d
return standard Content-Length header for API responses in addition to nonstandard Api-Content-Length 2025-05-16 22:02:25 +03:00
wn_
ae5394f6f9 Address 'method.resultUnused' in 'api/index.php'. 2025-04-27 14:50:02 +00:00
wn_
c7cc3c92ba Add and use the 'Sessions' class. 2024-07-11 12:16:00 +00:00
wn_
16b89cc293 Move 'include/functions.php' require into Composer autoloader.
Autoloader regenerated with 'composer dump-autoload --optimize'.
2024-04-20 16:25:33 +00:00
Andrew Dolgov
1e3b7f7a43
Revert "add a self url path hack to strip request path directories (needed for /api/index.php)"
This reverts commit 9826d2f07527e3259957628030adc87bde391b0c.
2023-10-23 23:39:28 +03:00
Andrew Dolgov
9826d2f075
add a self url path hack to strip request path directories (needed for /api/index.php) 2023-10-23 23:10:17 +03:00
Andrew Dolgov
6359259dbb simplify internal authentication code and bump default algo to SSHA-512 2021-03-01 15:24:18 +03:00
Andrew Dolgov
efd196839a stop caching schema version entirely, fix some session_start() related warnings 2021-02-25 15:28:27 +03:00
Andrew Dolgov
8d2e3c2528 drop errors.php and simplify error handling 2021-02-23 22:26:07 +03:00
Andrew Dolgov
2ae0b7059f cleanup some defined-stuff 2021-02-23 09:01:27 +03:00
Andrew Dolgov
29ada58b4a move db-prefs shortcut functions to functions.php 2021-02-22 23:25:14 +03:00
Andrew Dolgov
12bcf826e4 don't include config.php everywhere 2021-02-22 22:39:20 +03:00
Andrew Dolgov
42173386b3 dirname(__FILE__) -> __DIR__ 2021-02-22 17:38:46 +03:00
Andrew Dolgov
be4e7b1340 fix several issues reported by phpstan 2021-02-22 14:41:09 +03:00
Andrew Dolgov
9d7ba773ec move session-related functions to their own namespace 2021-02-16 17:13:16 +03:00
Andrew Dolgov
9f55454f63 remove the rest of db.php; rename some leftover methods in feeds 2021-02-15 16:51:35 +03:00
Andrew Dolgov
6af83e3881 drop ENABLE_GZIP_OUTPUT; system prefs: load php info only if needed 2021-02-12 21:43:38 +03:00
Andrew Dolgov
aba028a375 api: fix some php8 warnings (3) 2021-02-09 08:47:41 +03:00
Andrew Dolgov
74568df4ff remove a lot of stuff from global context (functions.php), add a few helper classes instead 2020-09-22 09:04:33 +03:00
Andrew Dolgov
68b0380118 add placeholder authentication via app passwords if service is passed
forbid logins via regular passwords for services
remove AUTH_DISABLE_OTP
2019-11-01 13:03:06 +03:00
Andrew Dolgov
8064ca3f8c API endpoint: disable session cookies 2018-10-15 07:37:07 +03:00
Andrew Dolgov
ea79a0e033 remove some redundant php closing tags 2017-04-26 20:24:18 +03:00
Andrew Dolgov
4afcf63563 api host: add session validation 2016-07-20 13:55:51 +03:00
Andrew Dolgov
5d97019d5d api: load user plugins properly 2016-07-20 13:52:22 +03:00
Raphaël Rochet
cd839c9812 Enable translation of strings returned by API 2015-07-29 17:26:47 +02:00
Rasmus Lerdorf
6f7798b643 Fixing bugs found by static analysis 2013-05-07 00:35:10 -07:00
Andrew Dolgov
4a70edea1a api: remove db_connect stuff 2013-04-17 18:58:30 +04:00
Andrew Dolgov
404e2e3603 more work on singleton-based DB 2013-04-17 15:36:48 +04:00
Andrew Dolgov
ba68b6815a db updates, remove init_connection() 2013-04-17 14:23:35 +04:00
Andrew Dolgov
9ce7a5546c implement some tweaks to session handling; properly remove session cookie if invalid/login failed 2013-04-04 15:33:14 +04:00
Andrew Dolgov
0bb5833beb api: add getFeedTree 2013-03-28 11:04:27 +04:00
Andrew Dolgov
3f0094189c api: lower maximum lifetime of api sessions 2013-03-28 09:48:14 +04:00
Andrew Dolgov
5160620c8a only autostart session if login cookie exists 2013-03-28 08:06:21 +04:00
Andrew Dolgov
acfbab375d mute warnings caused by session_start() to deal with potential ps_files_cleanup_dir stuff 2013-02-19 16:56:43 +04:00
Andrew Dolgov
88e8fb3a71 modify include path order (closes #514) 2012-12-09 13:41:22 +04:00
Andrew Dolgov
839b065860 api: remove unneeded stuff, add special header for android httpurlconnection which seems to be retarded 2012-09-19 15:54:55 +04:00
Andrew Dolgov
964f153371 api: use tt-rss session storage 2012-09-19 12:45:01 +04:00
Andrew Dolgov
02cd6de128 api: add workaround to disable OTP 2012-09-03 22:32:24 +04:00
Andrew Dolgov
6eaf319320 api: disable deprecated HTTP parameter support by default 2012-08-17 15:16:13 +04:00
Andrew Dolgov
f1d65e5089 remove api-specific _autoload 2012-08-16 18:33:08 +04:00
Andrew Dolgov
6a79e8afeb only enable ob_gzhandler if it exists 2012-03-20 14:45:43 +04:00
Andrew Dolgov
de8260cb10 move API to classes/ 2011-12-13 15:40:42 +04:00
Andrew Dolgov
4a0500fbc8 fix API includes 2011-12-12 00:13:14 +04:00
Andrew Dolgov
46d60592ad api: implement setting article note through updateArticle 2011-11-29 09:54:21 +04:00
Andrew Dolgov
75b901d929 api/getCategories: return virtual categories and Uncategorized 2011-11-29 09:22:38 +04:00
Andrew Dolgov
e9ed9ec844 api/getCategories: add TODO 2011-11-28 19:41:04 +04:00
Andrew Dolgov
582f41e2c1 implement getApiLevel 2011-11-28 09:35:13 +04:00
Andrew Dolgov
4044a5fa52 remove pointless escaping of the password (refs #392) 2011-11-22 11:05:12 +04:00
Andrew Dolgov
8ad4bac0fd api: always chdir() to base directory (refs #375) 2011-11-07 10:21:18 +04:00
Andrew Dolgov
823da71a10 api/getArticle: validate id list 2011-11-07 10:18:24 +04:00