aboutsummaryrefslogtreecommitdiffhomepage
path: root/application
Commit message (Collapse)AuthorAgeFilesLines
...
* Refactor login / ban authentication stepsVirtualTam2018-02-051-0/+134
| | | | | | | | | | | | | | | | | Relates to https://github.com/shaarli/Shaarli/issues/324 Added: - Add the `LoginManager` class to manage logins and bans Changed: - Refactor IP ban management - Simplify logic - Avoid using globals, inject dependencies Fixed: - Use `ban_duration` instead of `ban_after` when setting a new ban Signed-off-by: VirtualTam <virtualtam@flibidi.net>
* Merge pull request #1038 from ArthurHoaro/feature/public-only-filterArthurHoaro2018-02-022-1/+14
|\ | | | | Add a filter to only display public links
| * Public/private filter: use two separate buttonsArthurHoaro2018-01-241-21/+0
| | | | | | | | #1038
| * Add a filter to only display public linksArthurHoaro2017-12-162-1/+35
| | | | | | | | | | | | When the key filter is clicked once, it only displays private link. When it is clicked on again, it becomes red and only public links are displayed. Another click and all links are displayed. The current visibility status is shown in the search banner Fixes #1030
* | INTL_IDNA_VARIANT_2003 is deprecatedArthurHoaro2018-02-021-1/+1
| | | | | | | | See https://wiki.php.net/rfc/deprecate-and-remove-intl_idna_variant_2003
* | Use LC_COLLATE instead of LC_MESSAGES if php-intl is not installedArthurHoaro2018-01-311-0/+2
| | | | | | | | | | | | | | | | As stated in the docs: > LC_MESSAGES for system responses (available if PHP was compiled with libintl) Fixes #1067
* | Fix warnings when upgrading from legacy SebSauvage versionArthurHoaro2018-01-251-3/+3
| | | | | | | | Fixes #1040
* | Merge pull request #977 from ArthurHoaro/feature/dl-filterArthurHoaro2018-01-232-38/+65
|\ \ | | | | | | Extract the title/charset during page download, and check content type
| * | Extract the title/charset during page download, and check content typeArthurHoaro2017-10-282-38/+65
| | | | | | | | | | | | | | | | | | | | | Use CURLOPT_WRITEFUNCTION to check the response code and content type (only allow HTML). Also extract the title and charset during downloading chunk of data, and stop it when everything has been extracted. Closes #579
* | | Merge pull request #1025 from ArthurHoaro/hotfix/proxy-443ArthurHoaro2017-12-031-0/+7
|\ \ \ | |_|/ |/| | Force HTTPS if the original port is 443 behind a reverse proxy
| * | Force HTTPS if the original port is 443 behind a reverse proxyArthurHoaro2017-12-021-0/+7
| | | | | | | | | | | | Fixes #1022
* | | Merge pull request #1020 from ArthurHoaro/feature/curl-chunkArthurHoaro2017-11-261-1/+1
|\ \ \ | | | | | | | | Increase buffer size for cURL download
| * | | Increase buffer size for cURL downloadArthurHoaro2017-11-111-1/+1
| | | | | | | | | | | | | | | | 1kB chunk size has caused me a lot of trouble with Travis which wasn't completing the download
* | | | Merge pull request #1016 from virtualtam/refactor/sessionVirtualTam2017-11-241-3/+3
|\ \ \ \ | |_|/ / |/| | | Improve SessionManager constructor and tests
| * | | Improve SessionManager constructor and testsVirtualTam2017-11-081-3/+3
| |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Relates to https://github.com/shaarli/Shaarli/pull/1005 Changed: - pass a copy of the ConfigManager instance instead of a reference - move FakeConfigManager to a dedicated file - update tests Signed-off-by: VirtualTam <virtualtam@flibidi.net>
* / / Return true after update ReorderDatastore to complete itArthurHoaro2017-11-111-0/+1
|/ /
* | Don't URL encode description links if parameter 'redirector.encode_url' is ↵ArthurHoaro2017-11-072-7/+10
| | | | | | | | set to false
* | Merge pull request #962 from ArthurHoaro/feature/perfs2ArthurHoaro2017-10-282-9/+16
|\ \ | | | | | | Performances: reorder links when they're written instead of read
| * | Performances: reorder links when they're written instead of readArthurHoaro2017-09-022-9/+16
| | | | | | | | | | | | relates to #891
* | | Move session ID check to SessionManagerVirtualTam2017-10-222-30/+30
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Relates to https://github.com/shaarli/Shaarli/issues/324 Changed: - `is_session_id_valid()` -> `SessionManager::checkId()` - update tests Signed-off-by: VirtualTam <virtualtam@flibidi.net>
* | | Refactor session token managementVirtualTam2017-10-222-2/+57
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Relates to https://github.com/shaarli/Shaarli/issues/324 Added: - `SessionManager` class to group session-related features - unit tests Changed: - `getToken()` -> `SessionManager->generateToken()` - `tokenOk()` -> `SessionManager->checkToken()` - inject a `$token` parameter to `PageBuilder`'s constructor Signed-off-by: VirtualTam <virtualtam@flibidi.net>
* | | Translations : Working demo example of translation extensionArthurHoaro2017-10-221-1/+1
| | |
* | | Add language selection in the configure page of the default themeArthurHoaro2017-10-222-2/+15
| | |
* | | Shaarli's translationArthurHoaro2017-10-2219-66/+232
| | | | | | | | | | | | | | | | | | | | | | | | | | | * translation system and unit tests * Translations everywhere Dont use translation merge It is not available with PHP builtin gettext, so it would have lead to inconsistency.
* | | Don't write History for link importArthurHoaro2017-10-072-5/+27
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | With large imports it has a large impact on performances and isn't really useful. Instead, write an IMPORT event, which let client using the history service resync its DB. -> 15k link import done in 6 seconds. Fixes #985
* | | Merge pull request #979 from ArthurHoaro/feature/assets-cache-versionVirtualTam2017-10-063-4/+24
|\ \ \ | | | | | | | | Add a version hash for asset loading to prevent browser's cache issue
| * | | Rename shaarli_version constant to uppercaseArthurHoaro2017-10-012-4/+4
| | | |
| * | | Add a version hash for asset loading to prevent browser's cache issueArthurHoaro2017-10-012-0/+20
| | |/ | |/| | | | | | | | | | | | | The hash is generated using the same salt as the one used for credentials (1 salt per instance) in order to avoid exposing the instance version. Fixes #965
* | | Allow setting of a default note title, see #963Mark Gerarts2017-10-011-0/+1
| | |
* | | Merge pull request #976 from ArthurHoaro/hotfix/url-parenthesesArthurHoaro2017-09-301-1/+1
|\ \ \ | | | | | | | | Fix parsing for description links with parentheses
| * | | Fix parsing for description links with parenthesesArthurHoaro2017-09-291-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | With markdown plugin disabled relates to #966
* | | | Merge pull request #975 from virtualtam/robustnessVirtualTam2017-09-303-12/+20
|\ \ \ \ | |_|/ / |/| | | Improve robustness for zlib and file operations
| * | | Robustness: safer gzinflate/zlib usageVirtualTam2017-09-281-10/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Relates to https://github.com/shaarli/Shaarli/pull/846 PHP's `gzinflate()` fails with an error when being passed an empty string See: - https://bugs.php.net/bug.php?id=71395 Signed-off-by: VirtualTam <virtualtam@flibidi.net>
| * | | Robustness: safer RainTPL directory handlingVirtualTam2017-09-282-2/+4
| |/ / | | | | | | | | | | | | | | | | | | | | | Relates to https://github.com/shaarli/Shaarli/issues/845 Relates to https://github.com/shaarli/Shaarli/issues/846 Relates to https://github.com/shaarli/Shaarli/pull/909 Signed-off-by: VirtualTam <virtualtam@flibidi.net>
* | | Merge pull request #947 from thewilli/wildcardsearchArthurHoaro2017-09-291-47/+84
|\ \ \ | |/ / |/| | wildcard tag search support
| * | wildcard tag search supportWilli Eggeling2017-08-301-47/+84
| | | | | | | | | | | | | | | | | | | | | - when searching for tags you can now include '*' as wildcard placeholder - new search reduces overall overhead when filtering for tags - fixed combination with description tag search ('#' prefix) - tests added
* | | added option to redirect all anonymous users to login pageWilli Eggeling2017-09-031-0/+1
| |/ |/| | | | | | | | | - new setting *force_login* added and documented - if both, *force_login* and *hide_public_links* are set to true, all requests (except for the feeds) are redirected to the login page
* | Merge pull request #939 from ArthurHoaro/hotfix/firefox-social-titleArthurHoaro2017-09-021-0/+28
|\ \ | | | | | | Firefox Social title: Use document.title instead of RainTPL variable
| * | Make work behind a reverse proxyArthurHoaro2017-09-021-0/+28
| | | | | | | | | | | | Without HTTP_X_FORWARDED_PORT check, might be set to false even though the user is using HTTPS, thus disabling Firefox Social block display
* | | Merge pull request #944 from thewilli/configure-remembermeVirtualTam2017-08-271-0/+2
|\ \ \ | |_|/ |/| | new setting: default value for 'remember me' checkbox
| * | new setting: default value for 'remember me' checkboxWilli Eggeling2017-08-271-0/+2
| |/ | | | | | | | | | | - the default state for the login page's 'remember me' checkbox can now be configured - adapted the default and vintage theme to consider the new setting - added documentation for the new setting
* / migrated Github wiki links to readthedocsWilli Eggeling2017-08-262-3/+3
|/
* Merge pull request #887 from ArthurHoaro/hotfix/dash-tag-renameArthurHoaro2017-08-051-0/+33
|\ | | | | Make sure that the tag exists before altering/removing it
| * Move tag renaming code to LinkDB and unit test itArthurHoaro2017-08-051-0/+33
| |
* | Merge pull request #889 from Lucas-C/masterVirtualTam2017-08-033-19/+30
|\ \ | | | | | | Using only one form in linklist.html - fix #885
| * | Using only one form in linklist.html + adding untaggedonly filter - fix #885Lucas Cimon2017-07-303-19/+30
| |/
* / Respect HTTP_X_FORWARDED_HOSTStephen Muth2017-07-081-1/+13
|/ | | | | alongside _PORT and _PROTO Fixes #879
* Merge pull request #880 from ArthurHoaro/hotfix/allowed-protocolsArthurHoaro2017-05-312-0/+25
|\ | | | | Add a whitelist of protocols for URLs
| * Add a whitelist of protocols for URLsArthurHoaro2017-05-252-0/+25
| | | | | | | | | | | | | | - for Shaare - for markdown description links and images Not whitelisted protocols will be replaced by `http://`
* | Merge pull request #841 from ArthurHoaro/feature/search-no-tagArthurHoaro2017-05-254-22/+44
|\ \ | | | | | | Empty tag search will look for not tagged links