Age | Commit message (Collapse) | Author | |
---|---|---|---|
2020-09-14 | - fix multiple vulnerabilities in af_proxy_http | Andrew Dolgov | |
- fix vulnerability in rewrite_relative_url() which prevented some URLs from being properly absolutized - fetch_file_contents: validate all URLs before requesting them - validate URLs: explicitly whitelist http and https scheme, forbid everything else - DiskCache/cached_url: only serve whitelisted content types (images, video) - simplify filename/URL handling code, remove and consolidate some less-used functions | |||
2020-09-11 | order_to_override_query: allow HOOK_HEADLINES_CUSTOM_SORT_OVERRIDE plugins ↵ | Andrew Dolgov | |
to override built-in sorting | |||
2020-08-13 | pluginhost: allow overriding default sort modes via ↵ | Andrew Dolgov | |
HOOK_HEADLINES_CUSTOM_SORT_MAP etc | |||
2020-08-13 | move order_by to SQL override logic into a separate function | Andrew Dolgov | |
2020-08-11 | instead of taking batch timestamp and score (?) into account, make oldest ↵ | Andrew Dolgov | |
first sorting work consistently with newest first - i.e. rely on feed-provided timestamp | |||
2020-06-05 | eslint-related fixes; move a few things from global context to App | Andrew Dolgov | |
2020-04-04 | search: add support for label:XXX search keyword | Andrew Dolgov | |
Labels: enforce case-insensitive lookups when creating/looking for labels | |||
2020-02-20 | properly calculate marked counters for feeds in nested categories | Andrew Dolgov | |
2020-01-25 | getCategoryUnread: return correct unread count for labels category | Andrew Dolgov | |
2020-01-25 | getCategoryChildrenUnread: fix typo | Andrew Dolgov | |
2020-01-25 | getCategoryCounters: properly calculate counters for child subcategory entries | Andrew Dolgov | |
getCategoryUnread: cleanup | |||
2020-01-24 | getCategoryUnread: don't return unread counters for Special category because ↵ | Andrew Dolgov | |
it doesn't make a lot of sense to do so | |||
2020-01-24 | scrap counter cache system; rework counters to sum() booleans instead | Andrew Dolgov | |
2020-01-19 | support night mode in feed debugger | Andrew Dolgov | |
2019-12-12 | show current unread counter on headlines toolbar if sidebar is hidden | Andrew Dolgov | |
2019-12-06 | php 7.4 deprecation-related fixes | Andrew Dolgov | |
2019-08-30 | headline grouping: | Andrew Dolgov | |
1. block grouping for specific feeds where it doesn't make a lot of sense to do so or flat list fits better (archived, recently read) 2. block per-week grouping for feeds where feed-first grouping makes more sense (fresh, starred, published) | |||
2019-08-13 | move rewrite_cached_urls to DiskCache::rewriteUrls() | Andrew Dolgov | |
2019-06-20 | move more globals to more appropriate places | Andrew Dolgov | |
set libxml to always use internal errors | |||
2019-06-20 | move several more global functions to more appropriate classes | Andrew Dolgov | |
2019-06-20 | get_feeds_from_html: remove XML preamble hack | Andrew Dolgov | |
move several related helper functions to Feeds class | |||
2019-06-18 | queryFeedHeadlines: support start_ts when browsing by tag | Andrew Dolgov | |
2019-05-20 | search dialog: display active query if searching already | Andrew Dolgov | |
2019-05-20 | fix search query test statement stopping valid modifiers like unread: from ↵ | Andrew Dolgov | |
working | |||
2019-05-16 | when subscribing, check for valid html content type before checking if ↵ | Andrew Dolgov | |
requested document has HTML doctype/start element | |||
2019-05-07 | catchup_feed: invoke HOOK_SEARCH if necessary | Andrew Dolgov | |
2019-04-30 | better tsquery support: | Andrew Dolgov | |
1. report query syntax errors properly 2. fall back to implicit &-joining only if no joiners are detected in user query, otherwise permit full tsquery syntax | |||
2019-04-29 | prevent a fatal error on an invalid tsquery syntax | Andrew Dolgov | |
2019-04-14 | Fix button focus issues | Michael Kuhn | |
This change introduces derived classes for ComboButton, DropDownButton and Select that make sure that buttons do not remain focused after their menus are closed. This allows using hotkeys after closing them. | |||
2019-04-10 | use DEFAULT_SEARCH_LANGUAGE to generate tsvector index if per-feed language ↵ | Andrew Dolgov | |
is not specified, also use it as default value on search form for convenience | |||
2019-03-08 | css: insensitive -> text-muted | Andrew Dolgov | |
2019-03-06 | remove feedbrowser (other feeds) | Andrew Dolgov | |
2019-02-23 | fill in some missing doctypes; use short doctype where it wasn't | Andrew Dolgov | |
2019-02-22 | add label.inline | Andrew Dolgov | |
2019-02-22 | dialogs: use semantic markup instead of dlgsec stuff | Andrew Dolgov | |
continue unifying quoting style for html strings | |||
2019-02-21 | UI: add some more info links to relevant wiki pages; minor layout updates | Andrew Dolgov | |
2019-02-21 | simplify layout of search and subscribe dialogs | Andrew Dolgov | |
2019-02-20 | search dialog fixes | Andrew Dolgov | |
pgsql: get FTS languages list from the database | |||
2019-02-20 | simplify dlgSec-related markup | Andrew Dolgov | |
2019-02-19 | debugger: use narrow fieldsets for checkboxes | Andrew Dolgov | |
2019-02-19 | feed debugger: dojoify controls | Andrew Dolgov | |
2019-02-19 | utility css updates | Andrew Dolgov | |
2019-01-16 | headlines-frame: set is-vfeed attribute if result is virtual feed | Andrew Dolgov | |
2018-12-25 | queryFeedHeadlines: fix published field not returned when browsing by tag | Andrew Dolgov | |
2018-12-24 | fail better if Feeds.view() data failed encoding to JSON | Andrew Dolgov | |
2018-12-12 | add fallback colors for headline feed titles based on feed name if favicon ↵ | Andrew Dolgov | |
color is not available | |||
2018-12-11 | sync modified scores via mutation observer | Andrew Dolgov | |
2018-12-11 | score: get correct classes for rows/score icons on the client | Andrew Dolgov | |
2018-12-09 | mysql: use date_format() for yyiw part in queryFeedHeadlines() | Andrew Dolgov | |
2018-12-09 | Use IYYY in combination with IW | Michael Kuhn | |
Otherwise, we could end up with a wrong date, see: https://community.oracle.com/thread/997899 |