Commit graph

237 commits

Author SHA1 Message Date
Tom.C.
4abbb3011b Merge pull request #104 from Aldarone/89-double-dot-in-dir-name
Somewhat more complex protection against directory traversal attacks.
2015-07-25 16:07:19 +02:00
Alda Marteau-Hardi
a60233ecab Somewhat more complex protection against directory traversal attacks.
But hey, we can use symlinks again ! (☞ಠ_ಠ)☞

Really fixes sebsauvage/MinigalNano/#89
2015-07-24 18:46:32 +02:00
Tom.C.
43369d1f32 Merge pull request #103 from Aldarone/89-double-dot-in-dir-name
Allow to use « .. » in directory name.
2015-07-24 13:59:50 +02:00
Nicolas DIDIER
950a741cbd Allow to use « .. » in directory name.
Some people names their directories like this :
(2014-09-01..08)+Super+Party which is a perfectly valid directory name.

But the directory traversal protection was a bit protective and
prevented this.

Now it checks if the requested directory is in the gallery directory by
comparing their real path.

Fixes sebsauvage/MinigalNano/#89
2015-07-24 13:56:54 +02:00
Tom Canac
6a670e1465 version 4 for the tag 2015-07-07 14:03:36 +02:00
Tom Canac
c8a0ee1b32 fix #101 2015-07-07 14:01:47 +02:00
Tom Canac
08cbcbdc5f PSR2 php style 2015-07-02 00:08:46 +02:00
Tom Canac
7466c634f0 add thumbs system check 2015-07-01 23:54:29 +02:00
Tom Canac
6bde4f0e53 doxygen for createthum's functions 2015-06-30 15:32:08 +02:00
Tom Canac
91c06a9e4a fix #88 2015-06-30 15:19:34 +02:00
Tom Canac
f2bbd37ec2 fix #102 ? 2015-06-30 00:51:35 +02:00
Tom Canac
cdac1db064 fix RSS #48 2015-06-30 00:28:57 +02:00
Tom Canac
e11af5e59c visual fixes theme 2015-06-30 00:20:05 +02:00
Tom Canac
53f495c370 better intallation message 2015-06-29 23:48:14 +02:00
Tom Canac
fca4b64910 Merge branch 'master' of github.com:sebsauvage/MinigalNano 2015-06-29 23:47:11 +02:00
Tom Canac
b78f284545 improve the empty screen design 2015-06-29 23:40:58 +02:00
Tom Canac
a73f87e787 improve message display 2015-06-29 23:33:33 +02:00
Tom.C.
32572ff6d8 Merge pull request #100 from jniggemann/master
Reverts "adds lightbox image autorotation (FF >v26)"
2015-06-29 15:48:20 +02:00
Tom Canac
d93f12e825 gitignore for webstorm 2015-06-29 15:45:56 +02:00
Jan
dca1d3d716 Sets mediabox clickBlock to false 2015-06-10 23:51:50 +02:00
Jan Niggemann
2309e9641b Corrects patch to not distort images (#98) 2015-06-10 16:56:28 +02:00
Jan Niggemann
abb4df9382 Reverts "adds lightbox image autorotation (FF >v26)"
This reverts commit 3fc42c02b3.
2015-06-10 13:21:10 +02:00
Tom.C.
fd9a160ccc Merge pull request #99 from Lucas-C/master
Fixing rss.php
2015-06-02 09:15:23 -04:00
Lucas Cimon
e76c886ea7 Fixing rss.php 2015-05-31 16:58:45 +02:00
Tom.C.
2894e1d8cb Merge pull request #93 from jniggemann/ff-patch
resolves #39 for FF-only users: Images displayed in the lightbox are automatically rotated according to EXIF data
2015-03-07 11:28:58 -05:00
Tom.C.
4a88c4d236 Merge pull request #90 from Lucas-C/master
Fixing unescaped . in the file extension detection regex
2015-03-07 09:44:38 -05:00
Tom.C.
34f01b7ad8 Merge pull request #92 from jniggemann/master
This PR fixes the thumbnail orientation regresseion and updates both mootools and mediabox
2015-03-07 09:43:57 -05:00
Jan Niggemann
1392dacc3a adds patch for FF-only users 2015-02-23 17:06:32 +01:00
Jan Niggemann
8c18aa1785 adds patch for FF-only users 2015-02-23 16:50:51 +01:00
Jan Niggemann
7a11265131 fixes spinner filenames 2015-02-23 16:39:33 +01:00
Jan Niggemann
3fc42c02b3 adds lightbox image autorotation (FF >v26)
Firefox respects the CSS3 property "image-rotation". This makes the
lightbox squared and centeres the browser-rotated image therein.
2015-02-23 16:34:25 +01:00
Jan Niggemann
4b7ce9dbec fixes regression in createthumb.php, adds readability 2015-02-23 16:17:21 +01:00
Jan Niggemann
6cf6beb978 updates humans.txt with full name and year 2015-02-23 15:25:03 +01:00
Jan Niggemann
9ce5259461 changes templates to use updated mootools and mediabox 2015-02-23 15:23:32 +01:00
Jan Niggemann
d76ea9bdf6 adds updates of mootools and mediabox 2015-02-23 15:22:05 +01:00
Jan Niggemann
7a3fb20772 removes old mootools and mediabox 2015-02-23 15:18:44 +01:00
nodiscc
6f32ce1202 rss: add guid element for each item
Work on https://github.com/sebsauvage/MinigalNano/issues/48
2015-02-21 11:53:20 +01:00
nodiscc
65c0ce6233 rss: set content-type to xml
* Work on https://github.com/sebsauvage/MinigalNano/issues/48
2015-02-21 11:53:20 +01:00
nodiscc
a108d8da78 rss: declare UTF-8 charset 2015-02-21 11:53:19 +01:00
Tom.C.
5d295b0ac1 Merge pull request #87 from nodiscc/patch-1
rss: declare UTF-8 charset, xml content-type, add guid elements
2015-02-04 13:16:47 -05:00
Lucas Cimon
60cc244595 Fixing unescaped . in the file extension detection regex 2014-12-30 16:05:25 +01:00
nodiscc
61fbcb2114 rss: add guid element for each item
Work on https://github.com/sebsauvage/MinigalNano/issues/48
2014-12-22 08:02:23 +01:00
nodiscc
284a978f67 rss: set content-type to xml
* Work on https://github.com/sebsauvage/MinigalNano/issues/48
2014-12-22 07:54:09 +01:00
nodiscc
fcd6740d57 rss: declare UTF-8 charset 2014-12-22 07:37:38 +01:00
Tom.C.
c5a239a332 Merge pull request #84 from bifek/fixcaptions
parse captions.txt only once per dir, not once per file per dir
2014-12-03 17:34:17 +01:00
Tom.C.
8922b924ce Merge pull request #83 from bifek/moreexif
missing entries in exif data are expected, no need to emit warning for them
2014-12-01 18:56:01 +01:00
Piotr KUCHARSKI
f7c8a3bbdb parse captions.txt only once per dir, not once per file per dir 2014-12-01 18:26:04 +01:00
Piotr KUCHARSKI
8e676da3ff missing entries in exif data are expected, no need to emit warning for them. 2014-12-01 16:50:03 +01:00
Tom.C.
2377300ee4 Merge pull request #82 from bifek/exif
cleanup readEXIF
2014-11-28 07:29:36 +01:00
Piotr KUCHARSKI
f890b15bcc cleanup readEXIF 2014-11-27 16:51:58 +01:00