Commit Graph

57 Commits

Author SHA1 Message Date
David Anderson d6315c7112 - fix various XSS vulnerabilities reported by the
Acunetix Web Vulnerability Scanner (free edition)


svn path=/trunk/boinc/; revision=22315
2010-09-04 22:13:27 +00:00
David Anderson fe156c945c - user web: translation fixes
svn path=/trunk/boinc/; revision=21938
2010-07-14 19:20:31 +00:00
David Anderson 9f9d98fff1 - client: write daily net history on shutdown
- client: remove extraneous calls to calShutdown()
    in ATIs available-RAM code.


svn path=/trunk/boinc/; revision=21304
2010-04-27 17:54:29 +00:00
David Anderson 575cec858c - admin web: a project must provide an .htaccess file
or an auth_ops() function (not necessarily both).
    New projects are given an .htaccess file with no .htpasswd,
    so they must either create a .htpasswd file
    or define auth_ops() in order to use admin web pages.

svn path=/trunk/boinc/; revision=20671
2010-02-21 04:45:52 +00:00
David Anderson 21a18b7045 - web: more translations, from Christian. fixes #982
svn path=/trunk/boinc/; revision=20582
2010-02-16 01:06:03 +00:00
David Anderson f10384af43 - client: add <stderr_head> config option;
sends the first rather than last 64KB of stderr to server.
    This doesn't belong here; this choice should come from the server.
    I may take this out later.
- user web: when add a private message, always add a notification

svn path=/trunk/boinc/; revision=20141
2010-01-12 18:39:59 +00:00
David Anderson e1bdfc0ee8 - web: change the way project news is stored.
Old: in a flat file (html/project/project_news.inc)
    New: in a forum (called "News" by default)
    The script html/ops/news_convert.php copies news from
    old to new format.
    You'll also need to edit your index.php and use
    "show_news(0, 5)" to show news.
- web: added a "message of the day" mechanism.
    Edit html/user/motd.php to show a message.
    This will be shown as the first news item,
    but it's not archived (i.e., it's not a forum post)


svn path=/trunk/boinc/; revision=19949
2009-12-16 22:35:08 +00:00
David Anderson 71c7e7a74b - client/scheduler/web: add per-project preferences for whether
to accept CPU, NVIDIA and ATI jobs.
    These prefs are shown only where relevant:
    e.g., only for processor types for which the project has app versions,
    and if it has versions for only one type, no pref is shown.

    These prefs affect both client and scheduler.
    The client won't ask for work for a device blocked by prefs,
    and the scheduler won't send it.

    This replaces earlier optional project-specific prefs for
    "no CPU jobs" and "no GPU jobs".
    (However, these prefs continue to be honored on the server side).

- client: if NVIDIA driver is unknown, say that rather than 0


svn path=/trunk/boinc/; revision=19194
2009-09-28 04:24:18 +00:00
David Anderson 0f9cda3ea3 - admin web: finished the above.
Got rid of auth_ops_cmdline() (not needed).
    auth_ops() is now called in util_ops.inc;
    every script in html/ops/ must include util_ops.inc.

Note: for existing projects, the admin web interface
    will now show "access denied".
    Projects must think about what access control policy they want,
    and specify it in project.inc


svn path=/trunk/boinc/; revision=19053
2009-09-15 18:14:37 +00:00
David Anderson 17802a2a90 - admin web: add a notion of login to a project's admin pages
(this is separate from login to user pages,
    since the cookie path is different).
- admin web: added a framework for project-specified
    access control to admin pages.
    Can be on the basis of user ID, user flags, etc.
    To do this, define functions auth_ops() and auth_ops_cmdline()
    in html/project/project.inc
    (see the one in project.samples/ for an example)
    This is in addition to .htaccess protection.


svn path=/trunk/boinc/; revision=19052
2009-09-15 04:48:08 +00:00
David Anderson 6c4cc20aa1 - API: don't try to unlock lockfile if we failed to lock it
- API: more detailed message if failed to lock

svn path=/trunk/boinc/; revision=17645
2009-03-23 17:00:34 +00:00
David Anderson 04cdfe9cab - scheduler and web: add a project preference for whether to use the CPU.
This complements the "use GPU?" pref.
    Neither should be necessary, but what the heck.

svn path=/trunk/boinc/; revision=17628
2009-03-18 21:14:44 +00:00
Janus B. Kristensen 57964aaa2b Q&A is not merged with the Message Boards by default but this define enables admins to merge it.
svn path=/trunk/boinc/; revision=17014
2009-01-25 12:22:11 +00:00
David Anderson 5495ec64df - web/scheduler: add a project-specific preferences for
whether to accept GPU jobs

svn path=/trunk/boinc/; revision=16723
2008-12-18 21:25:51 +00:00
David Anderson c8c0e06d2e - web: rename Bossa functions to avoid name conflict
- web: bug fix in example core for app selection

svn path=/trunk/boinc/; revision=16546
2008-11-24 20:27:18 +00:00
David Anderson 760cd90c7b - client: restore support for max_ncpus preference.
This and max_ncpus_pct can both be specified.
    If both are specified, we take the min.

svn path=/trunk/boinc/; revision=16268
2008-10-22 21:25:26 +00:00
David Anderson 7a3996aba0 - web: add optional $project_http_proxy to project.inc;
if project is behind an HTTP proxy,
    this fixes the SVN fetch in ops/index.php

svn path=/trunk/boinc/; revision=16243
2008-10-21 18:55:17 +00:00
David Anderson 65a1bdab39 - lib: change XML_PARSER to handle attributes and spaces in tags.
e.g. it handles <foo /> correctly,
    and handles <foo attr="x">
    (it doesn't return the attributes, but it doesn't choke on them).
- GUI RPC client lib:
    use XML_PARSER to process authorization replies,
    e.g. so that it handles <authorized />

    TODO: use XML_PARSER to parse all GUI RPC requests and replies

- web: add a CSS entry for news item titles
- web (news items): add an optional "category" field to news items:
    suggested values: "server status", "news", "emergency".
    These are not used to display the items,
    but are passed in the RSS feed and could be used by news aggregators.
- manager: replace "BOINC-based account managers" with "account managers"


svn path=/trunk/boinc/; revision=16028
2008-09-19 18:08:17 +00:00
David Anderson 0ed39fcd5e - web: improve sample project_specific_prefs.inc
to add "allow_non_preferred_apps pref
    and remove frame rate pref

svn path=/trunk/boinc/; revision=15810
2008-08-12 22:09:28 +00:00
David Anderson 9baf78fe5f - web: added copyright and license info to PHP files
svn path=/trunk/boinc/; revision=15758
2008-08-05 22:43:14 +00:00
David Anderson e70273774a - scheduler: in matchmaker scheduler, if find a "locked" array slot,
which whether we're the process that locked it (from Artyom Sharov)

svn path=/trunk/boinc/; revision=15635
2008-07-18 20:59:59 +00:00
David Anderson aaa60334be - web: add $prefix arg to sample project_header(), project_footer()
(fix links on profile-index pages)
- web: use cache-control "no-store" only for home.php.
    This makes it so that, e.g. if you scroll to the middle of a long page,
    follow a link, then click Back,
    you'll go back the original scroll position rather than top of page.

svn path=/trunk/boinc/; revision=15391
2008-06-12 04:50:10 +00:00
David Anderson a463661f6b - web: add "max CPU % for graphics" project-specific preference.
Projects should copy or merge
    project.sample/project_specific_prefs.inc
- screensaver: change
        Running research for PROJECT
        Workunit: X
    to
        Computing for PROJECT
        Task: X

svn path=/trunk/boinc/; revision=14637
2008-01-29 20:04:38 +00:00
David Anderson d47c5c1e2f - API, Unix: fix bug where boinc_sleep() hangs forever.
This was because SIGALRM always interrupts sleep()
    and keeps boinc_sleep() stuck in its while loop.
    Solution: change boinc_sleep() so that it works even if
    rapid signals (e.g. interval timer) are happening
- API: remove deprecated graphics files from Makefile.
    Old-style graphics are no longer supported.
- web: add empty show_user_donations_private() to donations.inc

svn path=/trunk/boinc/; revision=14513
2008-01-09 17:32:02 +00:00
David Anderson f183b6f47f - web: add general-purpose notification mechanism.
Users can choose whether to get 1 email per notification,
    a daily "digest" email, or no email.
    (All notifications are shown on the Account page).
    Currently used for:
    - Friend requests and confirmations
    - Posts to subscribed threads
    - Private messages

    NOTE: To implement the "daily digest" feature, projects must add
    a periodic task for html/ops/notify.php to config.xml
- web: have project_footer() generate links for
    Account Page and Message Boards as well as Home
    NOTE: projects that want this change
    will have to modify their own project.inc.

svn path=/trunk/boinc/; revision=14447
2007-12-30 22:02:16 +00:00
David Anderson f125e7e2de - web: don't require login for show_user.php
- web: add app selection to example project-specific prefs
    (commented out by default)
- web: in prefs, flag too-low numeric values as errors,
    rather than just setting to min value
- web: fix bug when add new venue from "columns" view

svn path=/trunk/boinc/; revision=14442
2007-12-24 21:34:21 +00:00
David Anderson 11dac5e80c - make_project: add --web_only option.
This lets you create a project for Bossa or Bolt
    without compiling the C++ stuff, which is not used by Bossa or Bolt.
- DB schema: change type= to engine= to avoid MySQL warning messages

svn path=/trunk/boinc/; revision=14437
2007-12-21 23:39:25 +00:00
Eric J. Korpela 2ca04c07e0 Added function to project.inc, project_forum_post_rules() which returns
additional project specific posting rules.


svn path=/trunk/boinc/; revision=14315
2007-11-28 17:40:08 +00:00
Rytis Slatkevičius 4b28e7c183 User web: add HTML DOCTYPE (4.01 Transitional) to all pages, make some HTML validity changes.
svn path=/trunk/boinc/; revision=13928
2007-10-22 19:36:01 +00:00
Rytis Slatkevičius 04fdafc548 Add example donations.inc and donor.png
svn path=/trunk/boinc/; revision=12797
2007-06-01 13:05:18 +00:00
David Anderson 375ba7fdaa *** empty log message ***
svn path=/trunk/boinc/; revision=11838
2007-01-11 17:39:23 +00:00
Matt Lebofsky ae5748636c *** empty log message ***
svn path=/trunk/boinc/; revision=11762
2007-01-03 19:12:53 +00:00
Rytis Slatkevičius 4a74e82f16 *** empty log message ***
svn path=/trunk/boinc/; revision=11760
2007-01-03 16:18:43 +00:00
Rytis Slatkevičius f18d253948 Enable multiple moderation emails on post report (new defined value in project.inc!)
svn path=/trunk/boinc/; revision=11469
2006-11-04 19:21:05 +00:00
David Anderson e12f6efa55 *** empty log message ***
svn path=/trunk/boinc/; revision=11340
2006-10-23 14:08:20 +00:00
David Anderson aef50da4f1 *** empty log message ***
svn path=/trunk/boinc/; revision=11154
2006-09-14 00:18:13 +00:00
David Anderson 2c15b67153 *** empty log message ***
svn path=/trunk/boinc/; revision=11095
2006-09-05 01:27:54 +00:00
David Anderson 6c8c7477e8 *** empty log message ***
svn path=/trunk/boinc/; revision=10904
2006-08-13 21:51:15 +00:00
David Anderson 5617df5f47 *** empty log message ***
svn path=/trunk/boinc/; revision=10118
2006-05-09 18:25:15 +00:00
Janus B. Kristensen 0ebf1c17ff Email to moderators about reported posts
svn path=/trunk/boinc/; revision=8387
2005-10-01 11:11:53 +00:00
David Anderson c27cb008f4 *** empty log message ***
svn path=/trunk/boinc/; revision=5599
2005-03-09 01:02:36 +00:00
Janus B. Kristensen 4f45622c91 Project specific callback functions added
svn path=/trunk/boinc/; revision=5562
2005-03-04 10:09:25 +00:00
David Anderson 3cbe6cebe5 *** empty log message ***
svn path=/trunk/boinc/; revision=5207
2005-01-25 19:21:35 +00:00
Bruce Allen 3017533fde From Christian Beer -- restore missing project_footer() function.
svn path=/trunk/boinc/; revision=5193
2005-01-24 14:45:51 +00:00
Eric J. Korpela 1ca61ba699 *** empty log message ***
svn path=/trunk/boinc/; revision=3946
2004-07-23 04:04:21 +00:00
Eric J. Korpela a7a656299d *** empty log message ***
svn path=/trunk/boinc/; revision=3943
2004-07-22 23:42:50 +00:00
Karl Chen 44a08e765b *** empty log message ***
svn path=/trunk/boinc/; revision=3920
2004-07-21 21:42:30 +00:00
Daniel Hsu b87634c90f *** empty log message ***
svn path=/trunk/boinc/; revision=3579
2004-06-15 18:50:57 +00:00
David Anderson 56c08a7f95 *** empty log message ***
svn path=/trunk/boinc/; revision=3538
2004-06-11 18:50:15 +00:00
David Anderson e3026a1ddc *** empty log message ***
svn path=/trunk/boinc/; revision=3488
2004-06-01 18:55:59 +00:00