This project is mirrored from https://:*****@gitlab.archlinux.org/archlinux/aurweb.git. Pull mirroring updated .
  1. 24 Sep, 2012 1 commit
  2. 15 Jul, 2012 1 commit
  3. 06 Jul, 2012 3 commits
  4. 08 Mar, 2012 1 commit
  5. 02 Nov, 2011 1 commit
  6. 25 Oct, 2011 1 commit
    • Lukas Fleischer's avatar
      Wrap mysql_real_escape_string() in a function · 10b6a8ff
      Lukas Fleischer authored
      
      
      Wrap mysql_real_escape_string() in a wrapper function db_escape_string()
      to ease porting to other databases, and as another step to pulling more
      of the database code into a central location.
      
      This is a rebased version of a patch by elij submitted about half a year
      ago.
      
      Thanks-to: elij <elij.mx@gmail.com>
      Signed-off-by: default avatarLukas Fleischer <archlinux@cryptocrack.de>
      
      Conflicts:
      
      	web/lib/aur.inc.php
      10b6a8ff
  7. 24 Oct, 2011 1 commit
  8. 20 Aug, 2011 1 commit
  9. 22 Jun, 2011 1 commit
  10. 27 Apr, 2011 1 commit
  11. 19 Apr, 2011 1 commit
  12. 08 Oct, 2010 1 commit
  13. 17 Apr, 2010 1 commit
  14. 13 Nov, 2009 1 commit
    • Evangelos Foutras's avatar
      Implement 'Password Reset' facility (FS#3061) · 861cbf49
      Evangelos Foutras authored
      This works by adding a new field to the 'Users' table called 'ResetKey',
      which is a 32 characters long, random string. When the user requests a
      password reset, a new 'reset key' is generated and sent to the user's
      e-mail address in the form of a link in the following format:
      
        http://aur.archlinux.org/passreset.php?resetkey=<reset
      
       key>
      
      When the above link is followed, the user is presented with a form to
      verify his/her e-mail address and specify the new desired password. If
      the e-mail address matches the reset key in the database, the new
      password is assigned to the account. If there is an error, a relevant
      message is displayed and the user is prompted to re-enter the required
      information. Upon successful completion of this procedure, the ResetKey
      field in the database is blanked and the specific key cannot be reused.
      
      One SQL query is needed to add the ResetKey field to the 'Users' table:
      
        ALTER TABLE `Users` ADD `ResetKey` CHAR(32) NOT NULL DEFAULT '';
      Signed-off-by: default avatarLoui Chang <louipc.ist@gmail.com>
      861cbf49