aboutsummaryrefslogtreecommitdiffhomepage
path: root/application/front/controller/visitor
Commit message (Collapse)AuthorAgeFilesLines
* Security: fix multiple XSS vulnerabilities + fix search tags with special charsArthurHoaro2020-10-062-5/+14
| | | | | | XSS vulnerabilities fixed in editlink, linklist, tag.cloud and tag.list. Also fixed tag search with special characters: urlencode function needs to be applied on raw data, before espaping, otherwise the rendered URL is wrong.
* Fix invalid redirection using the path of an external domainArthurHoaro2020-09-221-0/+7
| | | | Fixes #1554
* Merge pull request #1539 from ArthurHoaro/feature/manual-root-urlArthurHoaro2020-09-221-1/+1
|\
| * Fix subfolder configuration in unit testsArthurHoaro2020-09-121-1/+1
| |
* | Properly handle 404 errorsArthurHoaro2020-09-121-0/+29
|/ | | | | | Use 404 template instead of default Slim error page if the route is not found. Fixes #827
* Merge pull request #1538 from ArthurHoaro/feature/plugins-bookmark-serviceArthurHoaro2020-09-061-12/+14
|\ | | | | Inject BookmarkServiceInterface in plugins data
| * Inject BookmarkServiceInterface in plugins dataArthurHoaro2020-09-031-12/+14
| | | | | | | | Related discussion: ilesinge/shaarli-related#7
* | Improve backward compatibility for LegacyRouterArthurHoaro2020-09-031-2/+2
|/ | | | | | | LegacyRouter is no longer used for routing, only in existing plugins to match the _PAGE_ parameter. So we change a few of its values there, to match the new ones defined in TemplatePage. @see discussion in shaarli/Shaarli#1537
* Better handling of plugin incompatibilityArthurHoaro2020-08-271-1/+2
| | | | | If a PHP is raised while executing plugin hook, Shaarli will display an error instead of rendering the error page (or just ending in fatal error for default hooks). Also added phpErrorHandler which is handled differently that regular errorHandler by Slim.:
* Move error handling to dedicated controller instead of middlewareArthurHoaro2020-08-211-0/+45
|
* Move all admin controller into a dedicated groupArthurHoaro2020-08-131-0/+13
| | | | Also handle authentication check in a new middleware for the admin group.
* Remove anonymous permission and initialize bookmarks on loginArthurHoaro2020-08-011-5/+0
|
* Better support for notes permalinkArthurHoaro2020-07-282-1/+6
|
* Fix redirection after post install loginArthurHoaro2020-07-271-1/+1
|
* New basePath: fix officiel plugin paths and vintage templateArthurHoaro2020-07-266-110/+29
|
* Fix: visitor are allowed to chose nb of links per pageArthurHoaro2020-07-241-0/+33
|
* Fix default link and redirection in install controllerArthurHoaro2020-07-241-2/+2
|
* Multiple small fixesArthurHoaro2020-07-232-10/+5
|
* Process login through Slim controllerArthurHoaro2020-07-231-10/+117
|
* Process Shaarli install through Slim controllerArthurHoaro2020-07-231-0/+173
|
* Process main page (linklist) through Slim controllerArthurHoaro2020-07-235-5/+257
| | | | | Including a bunch of improvements on the container, and helper used across new controllers.
* Use multi-level routes for existing controllers instead of 1 level everywhereArthurHoaro2020-07-233-4/+19
| | | | Also prefix most admin routes with /admin/
* Explicitly define base and asset path in templatesArthurHoaro2020-07-231-1/+14
| | | | | | | With the new routes, all pages are not all at the same folder level anymore (e.g. /shaare and /shaare/123), so we can't just use './' everywhere. The most consistent way to handle this is to prefix all path with the proper variable, and handle the actual path in controllers.
* Handle shaare creation/edition/deletion through Slim controllersArthurHoaro2020-07-233-8/+10
|
* Process password change controller through SlimArthurHoaro2020-07-231-0/+8
|
* Initialize admin Slim controllersArthurHoaro2020-07-238-0/+807
- Reorganize visitor controllers - Fix redirection with Slim's requests base path - Fix daily links