1001 Commits

Author	SHA1	Message	Date
iBNu Maksum	cd5f9101f2	only admin can edit customer	2024-10-23 14:13:32 +07:00
iBNu Maksum	dc55957a53	Refill Balance with Custom Amount Requested by Javi Tech	2024-10-23 14:04:11 +07:00
iBNu Maksum	8086802bf6	tawkto bring customer data	2024-10-22 10:34:44 +07:00
iBNu Maksum	7685323bd6	phone_otp_type forgot to add	2024-10-21 14:15:39 +07:00
AGSTR	0428d9620e	Update cron.php ... voucher expired tidak terhapus dari mikrotik sebab tidak menemukan data pada tabel customer $c untuk di eksekusi ke device.php	2024-10-20 21:47:08 +07:00
gerandonk	a4e8ae8c5c	make sync button not remove active hotspot user ... make sync button not remove active hotspot user	2024-10-20 01:07:00 +07:00
iBNu Maksum	3febb60253	fix variable sms_otp_registration	2024-10-18 12:57:59 +07:00
iBNu Maksum	f0da633808	Single session Admin can be set in the misc settings	2024-10-18 10:59:52 +07:00
iBNu Maksum	49f194a7f2	Admin can Login as Customer	2024-10-17 15:14:39 +07:00
iBNu Maksum	b3744a5007	fix Customer view to view tbl_payment_gateway	2024-10-17 14:09:11 +07:00
iBNu Maksum	234e5e3967	add try catch to handle invalid value	2024-10-17 13:38:50 +07:00
iBNu Maksum	97296abf06	fix unpaid expired check	2024-10-17 13:14:53 +07:00
iBNu Maksum	a7232e2b92	fix unpaid logic	2024-10-17 11:39:15 +07:00
iBNu Maksum	7c0bdeea41	CREATE TABLE IF NOT EXISTS tbl_meta	2024-10-17 11:32:39 +07:00
iBNu Maksum	5566a7ebb5	Add Meta class for meta data attributes	2024-10-17 11:28:52 +07:00
iBNu Maksum	de49a9992f	Price Before Discount unrequired	2024-10-17 09:54:06 +07:00
iBNu Maksum	0cf5483353	check expired payments	2024-10-17 09:44:21 +07:00
iBNu Maksum	b15fdf1d6a	Setting sAllow Registration = Yes/Voucher/No Registration	2024-10-17 09:35:26 +07:00
iBNu Maksum	5ccb8520d3	change logic username field	2024-10-16 13:41:12 +07:00
iBNu Maksum	1b7e5c7510	Setting for registration using OTP or not	2024-10-16 11:40:52 +07:00
iBNu Maksum	084cc0e0fb	miscellaneous.tpl to app-miscellaneous.tpl	2024-10-16 11:36:25 +07:00
iBNu Maksum	25d9524f53	fix header	2024-10-16 11:35:24 +07:00
iBNu Maksum	577ed31f57	## 2024.10.15 ... - CSRF Security - Admin can only have 1 active session - Move Miscellaneous Settings to new page - Fix Customer Online - Count Shared user online for Radius REST - Fix Invoice Print	2024-10-15 16:19:43 +07:00
iBNu Maksum	064e4c80ed	code to code	2024-10-15 16:10:34 +07:00
iBNu Maksum	70bcff7679	Merge pull request #317 from gerandonk/Development ... ($plan['is_radius'] == '1')	2024-10-11 22:53:03 +07:00
Focuslinkstech	696b2e4789	move miscellaneous to settings sub-menu for quick access ... add csrf token check for settings and its environments	2024-10-11 16:11:03 +01:00
gerandonk	0f0929db2a	($plan['is_radius'] == '1')	2024-10-11 18:59:38 +07:00
iBNu Maksum	7267bd082a	Api always Valid	2024-10-11 11:42:38 +07:00
iBNu Maksum	d5cba4b3c1	add option for check is customer online	2024-10-11 11:37:45 +07:00
iBNu Maksum	155b2959b5	fix api-get-text	2024-10-11 11:29:57 +07:00
iBNu Maksum	a35137b7ab	fix logic Session Admin especially isApi	2024-10-11 11:09:27 +07:00
iBNu Maksum	83dd564e53	fix position Admin::_info();	2024-10-11 11:07:47 +07:00
iBNu Maksum	8e8a52d807	login_token VARCHAR(40)	2024-10-11 11:07:23 +07:00
iBNu Maksum	5bc273a9dd	session_destroy(); inside removeCookie()	2024-10-11 10:38:24 +07:00
iBNu Maksum	f9fe261e55	session_destroy();	2024-10-11 10:37:35 +07:00
iBNu Maksum	0dc79cd5c4	->select('login_token')	2024-10-11 10:37:23 +07:00
Focuslinkstech	f77d7051c1	remove unused variable	2024-10-10 17:02:04 +01:00
Focuslinkstech	60e1eacc59	fix login loop	2024-10-10 16:24:36 +01:00
Focuslinkstech	6e5450d104	CSRF added to customer acounts update	2024-10-10 15:48:32 +01:00
Focuslinkstech	6be0da383c	fixed template issue	2024-10-10 15:13:29 +01:00
Focuslinkstech	534886f8f3	Fix app stage issue	2024-10-10 15:04:12 +01:00
Focuslinkstech	c9b9808112	Fight Against Insecurity : Prevent Admin multiple Login Sessions, its a security threat to phpnuxbill. ... plase note: if you are running nuxbill on localhost please set app_stage to something else e.g. $_app_stage = 'Demo'; its very important	2024-10-10 14:33:27 +01:00
iBNu Maksum	e737ae9d29	$routes['2'] = 0;	2024-10-10 17:25:21 +07:00
Ibnu Maksum	78e3f2e8fb	Merge	2024-10-10 10:52:13 +07:00
Focuslinkstech	3eaa302128	add CSRF Token on customer login	2024-10-10 10:50:48 +07:00
Focuslinkstech	9bc3ccc02b	Added token expiration: 30 minutes by default	2024-10-10 10:50:48 +07:00
Focuslinkstech	99e8b20bb3	Testing CSRF from admin login, if works well then we will make it official	2024-10-10 10:50:48 +07:00
Focuslinkstech	bd30261e84	move the CSRF Function to global function for easy access	2024-10-10 10:50:48 +07:00
Focuslinkstech	96365eef2a	Added more security flags to prevent XSS attack from cookie.	2024-10-10 10:50:48 +07:00
Focuslinkstech	c08c069479	Critical Updates, Fight Against Insecurity	2024-10-10 10:50:48 +07:00