Abel Hoogeveen
416d3895d0
- CSRF Verification is now functional again - CSRF throws CSRFException - XSS clean can now be disabled in the config globally. Once disabled, this can't be overridden - X-Powered-By header is now always suppressed - WebComponent now assigns global variables to the LayoutEngine. - CSRF Exceptions can be handled by a view, if this one implements the securityExceptionHandler() method - Error403 page added |
||
---|---|---|
.. | ||
Exception | ||
Input.php | ||
Output.php | ||
Security.php | ||
URI.php | ||
UTF8.php | ||
WebComponent.php | ||
WebController.php | ||
WebModel.php | ||
WebView.php |