| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
|
|
|
|
| |
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This setting allows to escape HTML in markdown rendering or not.
The goal behind it is to avoid XSS issue in shared instances.
More info:
* the setting is set to true by default
* it is set to false for anyone who already have the plugin enabled
(avoid breaking existing entries)
* improve the HTML sanitization when the setting is set to false - but don't consider it XSS proof
* mention the setting in the plugin README
|
|
|
|
| |
Signed-off-by: ArthurHoaro <arthur@hoa.ro>
|
| |
|
|
|
|
| |
Fixes #711
|
|\
| |
| | |
Preparation of v0.8.2
|
| | |
|
| | |
|
|/
|
|
| |
fixes #713
|
|
|
|
| |
Signed-off-by: ArthurHoaro <arthur@hoa.ro>
|
|\
| |
| | |
changelog: add release date for v0.8.1 and add section v0.9.0
|
| | |
|
|\|
| |
| | |
changelog update
|
|/ |
|
|\
| |
| | |
Link ID refactoring
|
| |
| |
| |
| |
| |
| |
| | |
All existing link will keep their permalinks.
New links will have smallhash generated with date+id.
The purpose of this is to avoid collision between links due to their creation date.
|
| | |
|
| | |
|
| |
| |
| |
| |
| | |
creation and update dates are now DateTime objects.
Since this update is very sensitve (changing the whole database), the datastore will be automatically backed up into the file datastore.<datetime>.php.
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Links now use an incremental unique numeric identifier.
This ID is persistent and must never change.
ArrayAccess is used to match the link ID with the array keys (see the comment in LinkDB for more details)
Key 'created' added, with creation date as a DateTime object. 'updated' is now also a DateTime.
|
|\ \
| |/
|/| |
Improve theme dependent plugin placeholders:
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
- buttons_toolbar: now expect links represented by an array instead of HTML content
- fields_toolbar: now expect a form represented by an array instead of HTML content
- action_plugin: now expect links represented by an array instead of HTML content
Default templates updated accordingly
mprove theme dependent plugin placeholders:
|
|\ \
| | |
| | | |
Remove new line between content tag and CDATA in ATOM feed
|
| | |
| | |
| | |
| | | |
Content not starting directly with CDATA can be misinterpreted by some feed parsers.
|
|\ \ \
| | | |
| | | | |
Add latest merged changes to the CHANGELOG
|
|/ / / |
|
|\ \ \
| |/ /
|/| | |
Describe markdown HTML rendering and display a warning
|
| | |
| | |
| | |
| | | |
Fixes #688
|
|\ \ \
| | | |
| | | | |
Markdown: fixes feed rendering with nomarkdown tag
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
* make sure we match exactly `nomarkdown` tag
* pass the whole link data to stripNoMarkdownTag() to:
* strip the noMD tag in taglist (array)
* strip the tag in tags (string)
Fixes #689
tmp
|
|\ \ \ \
| | | | |
| | | | | |
Show page title when sharing via Firefox Social.
|
| | |/ /
| |/| | |
|
|\ \ \ \
| |/ / /
|/| | | |
Disable Firefox Social in the tools section if the page is not loaded using HTTPS.
|
|/ / /
| | |
| | |
| | | |
HTTPS, as Firefox will deny the request.
|
|\ \ \
| | | |
| | | | |
add meta tag to block sending the referrer
|
| | | |
| | | |
| | | |
| | | |
| | | | |
Add a meta tag that tells the browser not to send the referrer header to
external sites.
|
|\ \ \ \
| |/ / /
|/| | | |
.htaccess files: support Apache 2.4+ syntax
|
| | |/
| |/|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
If `mod_version` is enabled, the previous syntax will apply for Apache <2.4.
If not, the new syntax is used by default.
Fixes #676
`mod_version` identifier is `version_module` across all Apache versions. See:
* https://httpd.apache.org/docs/current/mod/mod_version.html
* https://httpd.apache.org/docs/2.2/mod/mod_version.html
* https://serverfault.com/questions/733910/how-do-i-load-mod-version-only-if-it-isnt-built-in-to-apache
Note that version_module comes built-in with Debian (and derivatives) Apache2 packages, see https://wiki.debian.org/Apache/PackagingFor24
|
|\ \ \
| |_|/
|/| | |
Docker: fix & improve nginx+php-fpm configuration
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Relates to https://github.com/shaarli/Shaarli/issues/681
Changed:
- nginx+php-fpm: set maximum upload size to 10 MiB
See:
- https://nginx.org/en/docs/http/ngx_http_core_module.html#client_max_body_size
- https://secure.php.net/manual/en/ini.core.php#ini.post-max-size
- https://secure.php.net/manual/en/ini.core.php#ini.upload-max-filesize
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
|
| |/
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Relates to https://github.com/shaarli/Shaarli/issues/681
Fixed:
- nginx: set the favicon location
See http://serverfault.com/a/352861
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
|
|\ \
| |/
|/| |
Plugins W3C compliance
|
|/
|
|
| |
Add an alt attribute to images
|
|\
| |
| | |
Piwik Plugin
|
|/
|
|
|
|
| |
[PullRequest #677] Change after Review
Fix logic, my bad!
|
|\
| |
| | |
Use Composer for Parsedown and fix an issue with links
|
| |
| |
| |
| |
| |
| | |
Fixes #672
+ Markdown to HTML unit test
|
|/
|
|
| |
Reference #613
|
|\
| |
| | |
LinkDB: code cleanup
|