Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-02-12 | * OPML import: don't reload everything, just feed tree | Andrew Dolgov | |
* dialogs: use auto-destroying dialog for almost all dialogs instead of destroying them manually * some general dialog-related cleanup | |||
2021-02-12 | * customizeCSS: client dialog | Andrew Dolgov | |
* remove hardcoded width from most dialogs (move to css) * add helper to easily get dialog from its widget * rework some dialog buttons to use current object instead of calling dialog by name | |||
2021-02-11 | authentication: make logins case-insensitive (force lowercase) | Andrew Dolgov | |
2021-02-10 | close_button: fix warning | Andrew Dolgov | |
2021-02-08 | remove PHPMD.UnusedFormalParameter | Andrew Dolgov | |
2021-02-08 | fix hierarchy of authentication modules, make everything extend Auth_Base ↵ | Andrew Dolgov | |
and implement hook_auth_user() for pluginhost | |||
2021-02-08 | rewrite a few more hooks | Andrew Dolgov | |
2021-02-08 | af_psql_trgm: fix warning | Andrew Dolgov | |
2021-02-08 | fix several warnings related to feed editor | Andrew Dolgov | |
2021-02-07 | bookmarklet: encode URL properly so special characters won't get lost | Andrew Dolgov | |
2021-02-06 | af_redditimgur: don't try to load empty html; fix a warning in update debugger | Andrew Dolgov | |
2021-02-06 | fix a few more warnings | Andrew Dolgov | |
2021-02-06 | check a few more php8 warnings | Andrew Dolgov | |
2021-02-06 | more php8 fixes mostly related to login | Andrew Dolgov | |
2021-02-05 | initial WIP for php8; bump php version requirement to 7.0 | Andrew Dolgov | |
2021-01-23 | af_redditimgur: handle youtube /embed/ URLs | Andrew Dolgov | |
2021-01-22 | af_redditimgur: add some last minute handling for generic preview media URLs ↵ | Andrew Dolgov | |
provided in JSON | |||
2021-01-21 | af_redditimgur: | Andrew Dolgov | |
* draw a basic form for testurl() if no url is given * only process specific JSON media files/child elements until something is found * handle generic preview images for self posts (not link posts because link is handled afterwards) | |||
2021-01-19 | af_redditimgur: cleanup, rework to embed stuff from reddit-provided JSON first | Andrew Dolgov | |
2021-01-18 | af_redditimgur: add basic support for reddit galleries | Andrew Dolgov | |
2021-01-18 | af_redditimgur: shorten href stuff | Andrew Dolgov | |
2021-01-17 | scored_oldest_first: update sort caption | Andrew Dolgov | |
2021-01-17 | add plugins/scored_oldest_first | Andrew Dolgov | |
2021-01-11 | af_psql_trgm: | Andrew Dolgov | |
1. better debugging output 2. fix incorrect default values being used sometimes 3. remove special workaround for equal titles because trgm extension seems to be working properly for those now (tested on postgres 11) 4. code cleanup | |||
2021-01-07 | auth_remote: use empty() instead of isset() while checking headers | Andrew Dolgov | |
2021-01-05 | fix auth_remote broken by previous commit | Andrew Dolgov | |
2021-01-05 | auth_remote: rewrite header checking to be more readable | Andrew Dolgov | |
2021-01-03 | af_redditimgur: also blacklist in-content links | Andrew Dolgov | |
2020-12-21 | Add support for HTTP_REMOTE_USER variable for user authentication | Tony | |
2020-12-20 | af_redditimgur: also rewrite in the API handler | Andrew Dolgov | |
2020-12-20 | af_redditimgur: add option to rewrite reddit URLs to teddit.net | Andrew Dolgov | |
2020-12-18 | redditimgur: blacklist github because it usually resolves to a huge profile ↵ | Andrew Dolgov | |
photo of someone | |||
2020-12-12 | Address param order deprecation warning for 'af_redditimgur'. | wn | |
2020-12-11 | - move sphinx plugin to a separate repo | Andrew Dolgov | |
- regenerate config checks without sphinx-related variables | |||
2020-12-11 | shorten_expanded: remove loading=lazy from images if enabled | Andrew Dolgov | |
2020-11-26 | af_readability: allow appending to original summary instead of always | Andrew Dolgov | |
replacing it, some minor code cleanup | |||
2020-10-11 | Ensure proxy_all setting is saved in database. | JustAMacUser | |
2020-10-01 | hide uninteresting errors in several DOMDocument->loadHTML() invocations | Andrew Dolgov | |
2020-09-23 | move timestamp-related stuff to a separate class | Andrew Dolgov | |
2020-09-22 | remove a lot of stuff from global context (functions.php), add a few helper ↵ | Andrew Dolgov | |
classes instead | |||
2020-09-17 | replace FALSE with false so that static analyzer shuts up about it | Andrew Dolgov | |
2020-09-17 | auth_internal: cast OTP code to integer before trying to check it | Andrew Dolgov | |
2020-09-17 | * use get_random_bytes() for CSRF token | Andrew Dolgov | |
* get_random_bytes: use PHP7 random_bytes() if it is available * validate CSRF token using hash_equals | |||
2020-09-17 | auth_internal: use type-strict comparison when checking OTP code | Andrew Dolgov | |
2020-09-15 | af_proxy_http: require separate token to access imgproxy | Andrew Dolgov | |
2020-09-15 | af_proxy_http: never print received data directly, always redirect to cached_url | Andrew Dolgov | |
cache/getUrl: basename() passed filename just in case | |||
2020-09-15 | af_redditimgur: don't add embedded blank gif image for rewritten videos | Andrew Dolgov | |
2020-09-14 | - fix multiple vulnerabilities in af_proxy_http | Andrew Dolgov | |
- fix vulnerability in rewrite_relative_url() which prevented some URLs from being properly absolutized - fetch_file_contents: validate all URLs before requesting them - validate URLs: explicitly whitelist http and https scheme, forbid everything else - DiskCache/cached_url: only serve whitelisted content types (images, video) - simplify filename/URL handling code, remove and consolidate some less-used functions | |||
2020-06-24 | core: pass found enclosures to HOOK_ARTICLE_FILTER | Andrew Dolgov | |
af_redditimgur: remove enclosures if we found something to embed because it's going to be a low-res thumbnail | |||
2020-05-30 | Created hotkeys_force_top plugin | Nathan Warner | |
Renamed swap_jk to match new naming scheme. |