kevinowino869/mitrobill
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,793 Commits 1 Branch 73 Tags
Commit Graph

980 Commits

Author SHA1 Message Date
iBNu Maksum
25d9524f53
fix header 2024-10-16 11:35:24 +07:00
iBNu Maksum
577ed31f57
## 2024.10.15 
- CSRF Security
- Admin can only have 1 active session
- Move Miscellaneous Settings to new page
- Fix Customer Online
- Count Shared user online for Radius REST
- Fix Invoice Print
 2024-10-15 16:19:43 +07:00
iBNu Maksum
064e4c80ed
code to code 2024-10-15 16:10:34 +07:00
iBNu Maksum
70bcff7679
Merge pull request #317 from gerandonk/Development 
($plan['is_radius'] == '1')
 2024-10-11 22:53:03 +07:00
Focuslinkstech
696b2e4789
move miscellaneous to settings sub-menu for quick access 
add csrf token check for settings and its environments
 2024-10-11 16:11:03 +01:00
gerandonk
0f0929db2a ($plan['is_radius'] == '1') 2024-10-11 18:59:38 +07:00
iBNu Maksum
7267bd082a
Api always Valid 2024-10-11 11:42:38 +07:00
iBNu Maksum
d5cba4b3c1
add option for check is customer online 2024-10-11 11:37:45 +07:00
iBNu Maksum
155b2959b5
fix api-get-text 2024-10-11 11:29:57 +07:00
iBNu Maksum
a35137b7ab
fix logic Session Admin especially isApi 2024-10-11 11:09:27 +07:00
iBNu Maksum
83dd564e53
fix position Admin::_info(); 2024-10-11 11:07:47 +07:00
iBNu Maksum
8e8a52d807
login_token VARCHAR(40) 2024-10-11 11:07:23 +07:00
iBNu Maksum
5bc273a9dd
session_destroy(); inside removeCookie() 2024-10-11 10:38:24 +07:00
iBNu Maksum
f9fe261e55
session_destroy(); 2024-10-11 10:37:35 +07:00
iBNu Maksum
0dc79cd5c4
->select('login_token') 2024-10-11 10:37:23 +07:00
Focuslinkstech
f77d7051c1
remove unused variable 2024-10-10 17:02:04 +01:00
Focuslinkstech
60e1eacc59
fix login loop 2024-10-10 16:24:36 +01:00
Focuslinkstech
6e5450d104
CSRF added to customer acounts update 2024-10-10 15:48:32 +01:00
Focuslinkstech
6be0da383c
fixed template issue 2024-10-10 15:13:29 +01:00
Focuslinkstech
534886f8f3
Fix app stage issue 2024-10-10 15:04:12 +01:00
Focuslinkstech
c9b9808112
Fight Against Insecurity : Prevent Admin multiple Login Sessions, its a security threat to phpnuxbill. 
plase note: if you are running nuxbill on localhost please set app_stage to something else e.g.
$_app_stage = 'Demo';
its very important
 2024-10-10 14:33:27 +01:00
iBNu Maksum
e737ae9d29
$routes['2'] = 0; 2024-10-10 17:25:21 +07:00
Ibnu Maksum
78e3f2e8fb
Merge 2024-10-10 10:52:13 +07:00
Focuslinkstech
3eaa302128
add CSRF Token on customer login 2024-10-10 10:50:48 +07:00
Focuslinkstech
9bc3ccc02b
Added token expiration: 30 minutes by default 2024-10-10 10:50:48 +07:00
Focuslinkstech
99e8b20bb3
Testing CSRF from admin login, if works well then we will make it official 2024-10-10 10:50:48 +07:00
Focuslinkstech
bd30261e84
move the CSRF Function to global function for easy access 2024-10-10 10:50:48 +07:00
Focuslinkstech
96365eef2a
Added more security flags to prevent XSS attack from cookie. 2024-10-10 10:50:48 +07:00
Focuslinkstech
c08c069479
Critical Updates, Fight Against Insecurity 2024-10-10 10:50:48 +07:00
iBNu Maksum
71d653f3d1
Merge pull request #314 from gerandonk/Development 
fix send plan radius
 2024-10-10 10:48:23 +07:00
Ibnu Maksum
b1919555e5
Fix Lang function again 2024-10-10 10:24:01 +07:00
Ibnu Maksum
2522f3112e
Spanish Lang by @ORConsulTech 2024-10-10 10:23:47 +07:00
Ibnu Maksum
ba63face92
change folder ui/ui/user-ui to ui/ui/customer 2024-10-10 10:19:01 +07:00
Ibnu Maksum
8f78f5184e
maybe fix buy plan for friend 2024-10-10 10:18:35 +07:00
gerandonk
e9ae2e04ce
Merge branch 'hotspotbilling:Development' into Development 2024-10-10 08:18:12 +07:00
gerandonk
56c69122e4 fix send plan radius 
tolong di koreksi siapa tau ada kesalahan ambil code nya
 2024-10-10 08:11:53 +07:00
Ibnu Maksum
695b3c7a6f
Fix radius rest for shared user online, check user online by count Start status. 2024-10-09 16:01:32 +07:00
Ibnu Maksum
f7cb6c196f
Merge branch 'Development' 2024-10-08 11:22:39 +07:00
Ibnu Maksum
4f3647beae
Show is Customer Online in the customer list 2024-10-08 10:19:59 +07:00
Ibnu Maksum
9016ecbb98
Fix Invoice Print 2024-10-08 10:19:59 +07:00
Ibnu Maksum
5b51af1b6e
change variable user to name to check pppoe online customer 2024-10-08 09:50:23 +07:00
Ibnu Maksum
3407571474
Show is Customer Online in the customer list 2024-10-07 15:05:22 +07:00
Ibnu Maksum
da1341d971
Fix Invoice Print 2024-10-07 15:05:22 +07:00
iBNu Maksum
d2db2bef79
Remove debug die() 2024-09-26 17:27:45 +07:00
Ibnu Maksum
44af731c4c
PPPOE don't set IP for expired Plan 2024-09-26 09:43:12 +07:00
Ibnu Maksum
0a9733b0b3
Fix Unset IP 2024-09-25 17:14:50 +07:00
Ibnu Maksum
e4d3aff618
Fix Bug email 2024-09-25 15:02:51 +07:00
Ibnu Maksum
6462572fb8
show bandwidth plan 2024-09-25 15:00:13 +07:00
Ibnu Maksum
a51462ef1a
show remaining bill 2024-09-24 10:55:07 +07:00
gerandonk
3a2c55e0d8 if exist remote ip on pppoe, it will reset on expired 
fix bugs expired user not going expired pool if remote-ip exist
 2024-09-23 20:25:48 +07:00