Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | SessionManager+LoginManager: fix checkLoginState logic | VirtualTam | 2018-06-02 | 3 | -7/+15 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Add test coverage for LoginManager methods | VirtualTam | 2018-06-02 | 4 | -11/+161 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | SessionManager: remove unused UID token | VirtualTam | 2018-06-02 | 2 | -19/+0 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | There already are dedicated tokens for: - CSRF protection - user stay-signed-in feature, via cookie This token was most likely intended as a randomly generated, server-side, secret key to be used when generating hashes. See http://sebsauvage.net/wiki/doku.php?id=php:session [FR] Relevant section: Une clé secrète unique aléatoire est générée côté serveur (et jamais envoyée). Elle peut servir pour signer les formulaires (HMAC) ou générer des token de formulaires (protection contre XSRF). Voir $_SESSION['uid']. Translation: A unique, server-side secret key is randomly generated (and never transmitted). It can be used to sign forms (HMAC) or generate form tokens (protection against XSRF). See $_SESSION['uid'] Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Refactor LoginManager stay-signed-in token management | VirtualTam | 2018-06-02 | 4 | -14/+69 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Refactor session and cookie timeout control | VirtualTam | 2018-06-02 | 4 | -57/+224 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Move LoginManager and SessionManager to the Security namespace | VirtualTam | 2018-06-02 | 6 | -7/+8 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | LoginManager: remove unused parameter | VirtualTam | 2018-06-02 | 2 | -3/+2 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Login: update PageBuilder and default/vintage templates | VirtualTam | 2018-06-02 | 12 | -30/+38 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Pass the client IP ID to LoginManager | VirtualTam | 2018-06-02 | 2 | -17/+16 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Delegate session operations to SessionManager | VirtualTam | 2018-06-02 | 2 | -24/+69 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Document LoginManager properties | VirtualTam | 2018-05-29 | 1 | -0/+11 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Refactor user credential validation at login time | VirtualTam | 2018-05-29 | 3 | -111/+146 |
| | | | | | | | | Changed: - move login/password verification to LoginManager - code cleanup Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Refactor PHP session handling during login/logout | VirtualTam | 2018-05-29 | 2 | -36/+53 |
| | | | | | | | | Changed: - move $_SESSION handling to SessionManager - code cleanup Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Refactor SessionManager::$INACTIVITY_TIMEOUT | VirtualTam | 2018-05-29 | 2 | -24/+28 |
| | | | | | | | | | | | | Changed: - move INACTIVITY_TIMEOUT to SessionManager - inject a dependency to a SessionManager instance in: - fillSessionInfo() - setup_login_state() - check_auth() - cleanup related code and comments Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Refactor client session hijacking protection | VirtualTam | 2018-05-29 | 3 | -13/+86 |
| | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Merge pull request #1135 from ArthurHoaro/ci/csslint | ArthurHoaro | 2018-05-29 | 20 | -958/+1444 |
|\ | | | | | Reformat SCSS to SASS format and run SASSLint in CI | ||||
| * | Add SASSLint makefile target, and run it in CI | ArthurHoaro | 2018-05-10 | 8 | -14/+312 |
| | | | | | | | | Also move ESLint and SASSLint config files to a dedicated .dev folder | ||||
| * | Add classes to default template to avoid using IDs in SCSS | ArthurHoaro | 2018-05-10 | 11 | -15/+15 |
| | | |||||
| * | Reformat default theme SCSS to match SASS rules | ArthurHoaro | 2018-05-10 | 1 | -929/+1117 |
| | | |||||
* | | Merge pull request #1140 from ArthurHoaro/hotfix/markdown-rss-permalink | ArthurHoaro | 2018-05-29 | 2 | -0/+63 |
|\ \ | | | | | | | Fix feed permalink rendering with markdown escape set to true | ||||
| * | | Fix feed permalink rendering with markdown escape set to true | ArthurHoaro | 2018-05-19 | 2 | -0/+63 |
|/ / | | | | | | | Fixes #1134 | ||||
* | | Merge pull request #1138 from ArthurHoaro/stakali | ArthurHoaro | 2018-05-17 | 2 | -3/+11 |
|\ \ | |/ |/| | Adds Stakali Android app to 3rd party lists | ||||
| * | Adds Stakali Android app to 3rd party lists | ArthurHoaro | 2018-05-13 | 2 | -3/+11 |
|/ | |||||
* | Merge pull request #1116 from ArthurHoaro/ci/eslint | ArthurHoaro | 2018-05-06 | 2 | -11/+32 |
|\ | | | | | Use Travis stages to run JS tests separately | ||||
| * | Use Travis stages to run JS tests separately | ArthurHoaro | 2018-05-05 | 2 | -11/+32 |
|/ | |||||
* | Merge pull request #1133 from ArthurHoaro/hotfix/title-dl | ArthurHoaro | 2018-05-02 | 2 | -5/+14 |
|\ | | | | | Title retrieval fixes | ||||
| * | Support redirection in cURL download callback | ArthurHoaro | 2018-05-01 | 1 | -4/+13 |
| | | |||||
| * | Fix parameter order which was preventing max_dl parameter to work properly | ArthurHoaro | 2018-05-01 | 1 | -1/+1 |
|/ | |||||
* | Merge pull request #1081 from nodiscc/doc-merge-sharing | nodiscc | 2018-04-18 | 12 | -63/+98 |
|\ | | | | | doc: merge all sharing methods under a single "Sharing content" page | ||||
| * | remove duplicate translation | nodiscc | 2018-04-14 | 1 | -6/+0 |
| | | |||||
| * | doc: sharing: add link to REST API documentation | nodiscc | 2018-04-14 | 1 | -1/+1 |
| | | |||||
| * | doc: optimize PNGs with pngcrush | nodiscc | 2018-04-14 | 6 | -0/+0 |
| | | | | | | | | 164k -> 156k | ||||
| * | doc: add edit_icon.png to git repository | nodiscc | 2018-04-14 | 2 | -1/+1 |
| | | | | | | | | optimize icon with optipng/pngcrush (3.30%) | ||||
| * | update PO strings for Edit/New Shaare | nodiscc | 2018-04-14 | 1 | -3/+14 |
| | | | | | | | | update french translation | ||||
| * | default/editlink.tpl: title: Shaare -> New Shaare | nodiscc | 2018-04-14 | 1 | -2/+1 |
| | | |||||
| * | doc: merge all sharing methods under a single "Sharing content" page | nodiscc | 2018-04-14 | 5 | -58/+89 |
| | | | | | | | | | | | | | | | | | | * formatting, wording, reordering, general improvements * move blog/pastebin/notepad item from index.md to this page * add TODOs * add the new page to mkdocs TOC Part of https://github.com/shaarli/Shaarli/issues/598 | ||||
* | | German language created (#1114) | Buster One | 2018-04-15 | 2 | -0/+1314 |
|/ | | | | | | | | | | | | * Added german language selection * German language file created * typo * extra space removed and typo corrected * lines 1314 through 1408 removed as suggested | ||||
* | Merge pull request #1126 from kramred/master | ArthurHoaro | 2018-04-14 | 2 | -4/+4 |
|\ | | | | | load user css at last, after plugin css to enable changing plugin styles | ||||
| * | add loading user css at last to vintage tpl | Mark Schmitz | 2018-04-13 | 1 | -1/+1 |
| | | |||||
| * | load user css at last, after plugin css to enable changing plugin styles | Mark Schmitz | 2018-04-13 | 1 | -3/+3 |
|/ | |||||
* | Merge pull request #1121 from virtualtam/node/packaging-metadata | VirtualTam | 2018-04-08 | 12 | -22/+28 |
|\ | | | | | Update frontend metadata and COPYING | ||||
| * | Cleanup unused asset resources | VirtualTam | 2018-04-05 | 5 | -0/+0 |
| | | | | | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
| * | Update documentation and Doxygen icon location | VirtualTam | 2018-04-05 | 4 | -3/+3 |
| | | | | | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
| * | Update COPYING | VirtualTam | 2018-04-05 | 2 | -19/+21 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | Relates to https://github.com/shaarli/Shaarli/pull/1072 Changed: - update paths to resource files (assets, images) Removed: - references to resources now resolved through NPM - licenses corresponding to the aforementioned resources Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
| * | Update NPM frontend metadata | VirtualTam | 2018-04-04 | 1 | -0/+4 |
| | | | | | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
| * | Update EditorConfig for frontend resources | VirtualTam | 2018-04-03 | 1 | -1/+1 |
|/ | | | | Signed-off-by: VirtualTam <virtualtam@flibidi.net> | ||||
* | Merge pull request #1115 from ArthurHoaro/parsedown-version | ArthurHoaro | 2018-03-31 | 3 | -60/+71 |
|\ | | | | | Update parsedown to its latest version instead of fixed 1.6 | ||||
| * | Update parsedown to its latest version instead of fixed 1.6 | ArthurHoaro | 2018-03-31 | 3 | -60/+71 |
|/ | |||||
* | Remove minified JS libs | ArthurHoaro | 2018-03-31 | 2 | -9/+0 |
| | |||||
* | Merge pull request #1113 from ArthurHoaro/docker/node-yarn-webpack | ArthurHoaro | 2018-03-28 | 1 | -1/+10 |
|\ | | | | | Docker: build frontend dependencies with node and yarn |