michael-e
michael-e
Thanks a lot for this idea, it seems to be the simplest solution by far. I do it like this: ``` php // Begin Symphony proper: ob_start(); symphony('administration'); // If...
The backend process uses the administration "context", this is why it calls `symphony('administration')`. Poor Symphony can't know that it's not a human browser. :-)
Ha, you mean only using it after login? Well, no, even the login form uses the XSRF token.
Yes, in my understanding of XSRF it makes sense to protect the login form. I may be proven wrong though. Still, you are right to a certain degree: Creating a...
Anyway, this scenario has nothing to do with XSRF.
Thank you for your kind words, @cylkee ! Engaging in open source software can be very exhausting. So at a certain point, I had to reduce my engagement. I have...
Well, the setting is not called "use time" but "display time". And this answers a lot of questions IMHO. In the database any timestamp is saved with the same precision,...
Unfortunately I have no time to think about all possible side effects of such a change. But, if it's just a field option that takes effect upon saving, there might...
Honestly, I don't see that this has been dicussed in #2763. But we may discuss it, of course. Here is my two cent: Nowadays, SSL is the de-facto standard, and...