aboutsummaryrefslogtreecommitdiffhomepage
path: root/server.ts
Commit message (Collapse)AuthorAgeFilesLines
* Playlist server APIChocobozzz2019-03-181-1/+1
|
* BREAKING: update CSP configurationChocobozzz2019-02-211-7/+9
| | | | Disable it by default and add ability to specify a custom report uri
* Add user notification base codeChocobozzz2019-01-091-4/+7
|
* Optimize actor follow scores modificationsChocobozzz2018-12-201-2/+2
|
* add Content Security Policy (#1252)Rigel Kent2018-12-131-0/+3
| | | | | | | | | | | | | | | | | | | | | | * add Content Security Policy * remove reflect-metadata on production builds to get rid of unsafe-eval * fix baseCSP usage * add SRI to CSP * add blob: to media-src * remove SRI * CSP set to reportOnly * adding data: to connect-src CSP * remove block-all-mixed-content * add report-uri support
* Add sitemapChocobozzz2018-12-051-1/+2
|
* Speedup peertube startupChocobozzz2018-11-191-2/+4
|
* Add compatibility with other Linked Signature algorithmsChocobozzz2018-11-141-2/+7
|
* add cli option to run without clientRigel Kent2018-11-141-1/+6
|
* Improve redundancy: add 'min_lifetime' configurationChocobozzz2018-09-241-6/+6
|
* Basic video redundancy implementationChocobozzz2018-09-131-0/+2
|
* make HSTS opt-in and leave it to the reverse-proxyRigel Kent2018-09-091-1/+2
|
* Add sql trace in error log on sequelize errorChocobozzz2018-08-311-1/+4
|
* advertising PeerTube's rather simple DNT policyRigel Kent2018-08-081-2/+16
|
* Add ability to list video importsChocobozzz2018-08-061-1/+1
|
* Auto update youtube-dlChocobozzz2018-08-061-0/+2
|
* Graceful job queue shutdownChocobozzz2018-07-301-0/+6
|
* Fix peertube on chromeChocobozzz2018-07-261-31/+0
|
* Begin advanced searchChocobozzz2018-07-241-1/+1
|
* Fix CSPChocobozzz2018-07-171-4/+4
|
* (quickfix) loosening CSPRigel Kent2018-07-171-3/+16
|
* Add cors for static paths tooChocobozzz2018-07-171-16/+5
|
* adding CSP, no-referrer policies and allow dns prefetchingRigel Kent2018-07-171-1/+19
|
* selective route permission to use embeds with x-frame-denyRigel Kent2018-07-171-0/+8
|
* Handle .srt subtitlesChocobozzz2018-07-161-3/+3
|
* Implement captions/subtitlesChocobozzz2018-07-161-0/+3
|
* Do not enable cors twice on /api in test modeChocobozzz2018-06-291-1/+2
|
* move CORS allowance to the REST API routerWilliam Lahti2018-06-291-16/+18
|
* fix lint error on travis [let it be known, I disagree with this rule]William Lahti2018-06-291-1/+1
|
* open CORS to allow in-browser apps to communicate w/ PeerTube instancesWilliam Lahti2018-06-291-18/+16
|
* Add ability to choose the languageChocobozzz2018-06-281-0/+3
|
* Add tracker rate limiterChocobozzz2018-06-261-33/+6
|
* Improve update host script and add warning if AP urls are invalidChocobozzz2018-06-211-3/+8
|
* Add ability for uploaders to schedule video updateChocobozzz2018-06-141-1/+5
|
* Prepare i18n filesChocobozzz2018-06-051-12/+2
|
* Client E2E tests first stepChocobozzz2018-05-171-1/+1
|
* Process broadcast requests in parallelChocobozzz2018-04-181-3/+4
|
* Support hostname binding in configPierre-Alain TORET2018-04-171-2/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | * Add basic support for hostname binding Signed-off-by: Pierre-Alain TORET <pierre-alain.toret@protonmail.com> * Make production example a bit more secure Signed-off-by: Pierre-Alain TORET <pierre-alain.toret@protonmail.com> * Make example config files compatible with hostname binding modification Signed-off-by: Pierre-Alain TORET <pierre-alain.toret@protonmail.com> * Fix typo Signed-off-by: Pierre-Alain TORET <pierre-alain.toret@protonmail.com> * Bind on 127.0.0.1 by default Signed-off-by: Pierre-Alain TORET <pierre-alain.toret@protonmail.com> * Update Docker configuration with hostname binding Signed-off-by: Pierre-Alain TORET <pierre-alain.toret@protonmail.com>
* feature: initial syndication feeds supportRigel Kent2018-04-171-2/+11
| | | | | | | | | | | | | | | | | | Provides rss 2.0, atom 1.0 and json 1.0 feeds for videos (instance and account-wide) on listings and video-watch views. * still lacks redis caching * still lacks lastBuildDate support * still lacks channel-wide support * still lacks semantic annotation (for licenses, NSFW warnings, etc.) * still lacks love ( ˘ ³˘) * RSS: has MRSS support for torrent lists! * RSS: includes the first torrent in an enclosure * JSON: lists all torrents in the 'attachments' object * ATOM: lacking torrent listing support Advances #23 Partial implementation for the accountId generation in the client, which will need a hotfix to add a way to get the proper account id.
* Don't start application until all components were initializedChocobozzz2018-04-041-25/+28
|
* Prevent brute force login attackChocobozzz2018-03-291-0/+4
|
* Fix error loggingChocobozzz2018-03-261-4/+10
|
* Fix log in with special password character (+)Chocobozzz2018-03-261-1/+1
|
* Handle thumbnail updateChocobozzz2018-02-141-2/+7
|
* Add ability to set video thumbnail/previewChocobozzz2018-02-141-1/+1
|
* Fix crash with websocket trackerChocobozzz2018-02-091-3/+2
|
* Handle error on websocket errorChocobozzz2018-02-091-0/+1
|
* Add ability to reset our passwordChocobozzz2018-01-301-1/+13
|
* Move job queue to redisChocobozzz2018-01-251-4/+4
| | | | | | | We'll use it as cache in the future. /!\ You'll loose your old jobs (pending jobs too) so upgrade only when you don't have pending job anymore.
* Add ability to configure log levelChocobozzz2018-01-191-1/+1
|