Age | Commit message (Collapse) | Author |
|
|
|
|
|
it instead of going through PDO
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
implement exception handling for both
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- remove code to manually archive/unarchive articles
- remove ttrss_archived_feeds/orig_feed_id handling - the whole thing was implemented for
this data to be kept indefinitely; it doesn't make a lot of sense to deal with this stuff
now that it is expired after one month anyway (same reasons as feed browser being removed - privacy)
- remove "originally from"-related stuff because of the above
- also remove unused remaining frontend/backend code related to feed browser (rip)
|
|
private)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Also a minor tweak to getting the search filter.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
classes instead
|
|
|
|
|
|
|
|
parameter
use type-strict comparison when validating CSRF token on the backend
|
|
|
|
silently stripped on save because of clean())
|
|
- fix vulnerability in rewrite_relative_url() which prevented some URLs from being properly absolutized
- fetch_file_contents: validate all URLs before requesting them
- validate URLs: explicitly whitelist http and https scheme, forbid everything else
- DiskCache/cached_url: only serve whitelisted content types (images, video)
- simplify filename/URL handling code, remove and consolidate some less-used functions
|
|
|
|
|
|
|