mirror of https://codeberg.org/PostERG/xamxam.git synced 2026-06-25 16:19:19 +02:00

Files

Pontoporeia 053f09b181 fix(migration): deduplicate languages before LOWER() in 025_lowercase_languages.sql

Two rows (Néerlandais id=5, néerlandais id=3) collided when lowercased,
violating the UNIQUE constraint on languages.name.

Added DELETE to keep the lowest-ID row per LOWER(name) group before
the UPDATE SET name = LOWER(name).

2026-06-08 10:17:00 +02:00

628 B

Raw Blame History

TODO

Fix account.php: replace !== CSRF token check with hash_equals (constant-time comparison)
Fix ShareLink::setPassword(): also encrypt and store plain-text password, matching create() behavior
Audit: confirm all remaining credential comparison sites use constant-time hash_equals or password_verify
Fix .gitignore: anchor vendor/ to root (/vendor/) so app/public/assets/js/vendor/ (htmx, OverType, FilePond) is tracked
Fix migration 025_lowercase_languages.sql: deduplicate languages before LOWER() to avoid UNIQUE constraint violation (Néerlandais/néerlandais)

628 B Raw Blame History

TODO

628 B

Raw Blame History