Got initial CSRF token framework implemented and sample implementation added in Special:Logout; removing Javascript compression engine from aggressive_optimize_html() and instead calling JavascriptCompressor class from js-compressor.php
-- Enano CMS
-- Upgrade schema: 1.1.2 - 1.1.3
-- Storing obscenely huge integers as strings since that's how php processes them.
CREATE TABLE {{TABLE_PREFIX}}diffiehellman (
key_id SERIAL,
private_key text,
public_key text,
PRIMARY KEY ( key_id )
);
ALTER TABLE {{TABLE_PREFIX}}session_keys MODIFY COLUMN source_ip varchar(39) NOT NULL DEFAULT '127.0.0.1';
ALTER TABLE {{TABLE_PREFIX}}themes DROP group_policy, ADD COLUMN group_policy varchar(9) NOT NULL DEFAULT 'allow_all', ADD CHECK ( group_policy IN ('allow_all', 'whitelist', 'blacklist') );