VirtualTam
cb9b87eb1c
Bump Shaarli version to v0.9.3
...
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2018-01-04 18:13:43 +01:00
VirtualTam
5ec90c7155
Fix XSS vulnerability
...
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2018-01-04 18:06:49 +01:00
ArthurHoaro
ecccb14e2a
Bump Shaarli version to v0.9.2
...
Signed-off-by: ArthurHoaro <arthur@hoa.ro>
2017-10-07 12:23:44 +02:00
ArthurHoaro
80b15f5d2d
Merge branch 'master' into v0.9
2017-10-07 12:22:54 +02:00
ArthurHoaro
a01437f9e1
Merge pull request #988 from ArthurHoaro/changelog-0.9.2
...
Changelog 0.9.2 + AUTHORS
2017-10-07 12:12:34 +02:00
ArthurHoaro
6770135b0a
Update AUTHORS
...
Signed-off-by: ArthurHoaro <arthur@hoa.ro>
2017-10-07 12:10:23 +02:00
ArthurHoaro
6f2c02a0ce
Changelog v0.9.2
2017-10-07 12:05:07 +02:00
ArthurHoaro
be9ddff2fb
Merge pull request #987 from ArthurHoaro/hotfix/security-issue
...
Fix security issue reported by @chb9
2017-10-07 11:33:20 +02:00
ArthurHoaro
d14555a3df
Fix security issue reported by @chbi
...
Vulnerability introduced by 6ccd0b218f
- release with Shaarli v0.9.1.
2017-10-07 11:27:44 +02:00
VirtualTam
c8d96b4729
Merge pull request #979 from ArthurHoaro/feature/assets-cache-version
...
Add a version hash for asset loading to prevent browser's cache issue
2017-10-06 14:32:07 +02:00
VirtualTam
b3e39bf57e
Merge pull request #980 from ArthurHoaro/hotfix/textarea-resize-jumpy
...
Fix jumpy textarea with long content in post edit
2017-10-06 14:31:16 +02:00
VirtualTam
f5bdd8edc8
Merge pull request #983 from bvberkum/pullrequest/shaarli-docker-quickstart
...
Docker quickstart
2017-10-06 14:30:18 +02:00
B. van Berkum
df8becac4f
Minor docker-101 doc updates, typos fixed #983
2017-10-06 00:25:50 +02:00
VirtualTam
2f69b6d04e
Merge pull request #981 from mark-gerarts/default-note-title
...
Allow setting of a default note title, see #963
2017-10-03 19:26:48 +02:00
B. van Berkum
2f65b3dd53
Docker quickstart: one more grammar mistake. Made it a bit more terse.
2017-10-03 01:03:27 +02:00
B. van Berkum
62a8b0ff6e
Docker-101: added working systemd config example
2017-10-03 00:57:46 +02:00
B. van Berkum
60ed9b8f41
Typo's, unified structure a bit.
...
- Fixes inevitable typo that crept in.
- Removed some blank lines, newlines, to match established whitespace use better.
- Minor grammar improvement.
2017-10-03 00:35:27 +02:00
B. van Berkum
22a30602cb
Docker 101: container start and cleanup
2017-10-03 00:24:23 +02:00
B. van Berkum
02ff7897c0
Added docker quickstart example, with user-data volume
2017-10-03 00:23:34 +02:00
Mark Gerarts
722caa2090
Allow setting of a default note title, see #963
2017-10-01 14:19:57 +02:00
ArthurHoaro
9c46b347b8
Fix jumpy textarea with long content in post edit
...
We manually reset the scroll position, to avoid height = 'auto' jump to the top
Fixes #971
2017-10-01 11:49:17 +02:00
ArthurHoaro
b3e1f92e9c
Rename shaarli_version constant to uppercase
2017-10-01 11:11:16 +02:00
ArthurHoaro
bfe4f536bb
Add a version hash for asset loading to prevent browser's cache issue
...
The hash is generated using the same salt as the one used for credentials (1 salt per instance) in order to avoid exposing the instance version.
Fixes #965
2017-10-01 11:10:37 +02:00
ArthurHoaro
3512f44617
Merge pull request #976 from ArthurHoaro/hotfix/url-parentheses
...
Fix parsing for description links with parentheses
2017-09-30 14:25:53 +02:00
VirtualTam
7c670b39a2
Merge pull request #975 from virtualtam/robustness
...
Improve robustness for zlib and file operations
2017-09-30 10:56:56 +02:00
ArthurHoaro
601faf9751
Fix parsing for description links with parentheses
...
With markdown plugin disabled
relates to #966
2017-09-29 18:52:38 +02:00
ArthurHoaro
a59bbf50d7
Merge pull request #947 from thewilli/wildcardsearch
...
wildcard tag search support
2017-09-29 18:38:02 +02:00
VirtualTam
8c322aaba1
Robustness: safer gzinflate/zlib usage
...
Relates to https://github.com/shaarli/Shaarli/pull/846
PHP's `gzinflate()` fails with an error when being passed an empty string
See:
- https://bugs.php.net/bug.php?id=71395
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2017-09-28 21:59:36 +02:00
VirtualTam
e4325b1517
Robustness: safer RainTPL directory handling
...
Relates to https://github.com/shaarli/Shaarli/issues/845
Relates to https://github.com/shaarli/Shaarli/issues/846
Relates to https://github.com/shaarli/Shaarli/pull/909
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2017-09-28 21:57:20 +02:00
VirtualTam
0cba184cf8
Merge pull request #972 from virtualtam/travis/trusty
...
Travis: switch to Ubuntu Trusty build environment
2017-09-19 19:22:33 +02:00
VirtualTam
b5c33d702a
Tests: update localization tests
...
Rely on `mag_IN` (Magahi - INDIA) being unavailable when running localization
test suites, instead of `pt_BR` that is now available from Travis build images.
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2017-09-19 19:17:16 +02:00
VirtualTam
dfc2c3353d
Travis: switch to Ubuntu Trusty build environment
...
Relates to https://github.com/shaarli/Shaarli/issues/970
Relates to https://github.com/shaarli/Shaarli/pull/912
See:
- https://docs.travis-ci.com/user/reference/trusty/
- https://blog.travis-ci.com/2017-07-11-trusty-as-default-linux-is-coming
Added:
- print available locales before running tests
Removed:
- do not install extra language packs
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2017-09-19 19:07:40 +02:00
VirtualTam
6aae4bd0a1
Merge pull request #909 from virtualtam/docker/test-environments
...
docker: add alpine,debian,ubuntu test images
2017-09-19 18:18:35 +02:00
VirtualTam
fc1c1b8869
Merge pull request #961 from thewilli/private-shaarli-login-redirect
...
added option to redirect all anonymous users to login page
2017-09-18 21:25:02 +02:00
VirtualTam
d691604080
docker: add alpine,debian,ubuntu test images
...
Relates to https://github.com/shaarli/Shaarli/issues/843
Added:
- Makefile target to run commands in a Docker test context
- Docker images to run Shaarli test suites:
- Alpine 3.6
- Debian 8
- Debian 9
- Ubuntu 16.04
- Documentation
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2017-09-18 21:13:59 +02:00
nodiscc
ceb738c591
visited links color: same hue as unvisited links, darkened
...
Related to https://github.com/shaarli/Shaarli/issues/877
Plain grey links would lead to think that the link is somehow disabled/inaccessible/private
This slightly improves clarity/usability
2017-09-04 22:36:21 +02:00
Willi Eggeling
27e21231e1
added option to redirect all anonymous users to login page
...
- new setting *force_login* added and documented
- if both, *force_login* and *hide_public_links* are set to true, all requests
(except for the feeds) are redirected to the login page
2017-09-03 11:46:49 +02:00
ArthurHoaro
96a1c79456
Merge pull request #939 from ArthurHoaro/hotfix/firefox-social-title
...
Firefox Social title: Use document.title instead of RainTPL variable
2017-09-02 13:54:38 +02:00
ArthurHoaro
206c45bd05
Firefox Social title: Use document.title instead of RainTPL variable
...
Fixes #929
2017-09-02 13:50:52 +02:00
ArthurHoaro
a3130d2c2f
Make work behind a reverse proxy
...
Without HTTP_X_FORWARDED_PORT check, might be set to false even though the user is using HTTPS, thus disabling Firefox Social block display
2017-09-02 13:50:49 +02:00
VirtualTam
ea71536ed7
Merge pull request #956 from virtualtam/fix/make-authors
...
Documentation+Makefile: update AUTHORS generation
2017-09-02 13:00:45 +02:00
ArthurHoaro
87d019986e
Merge pull request #950 from thewilli/delete-fix
...
fixed link deletion
2017-09-01 18:25:44 +02:00
ArthurHoaro
c5f5365ae6
Merge pull request #951 from thewilli/fix-daily
...
fixed daily links if there are no links
2017-09-01 18:25:09 +02:00
Willi Eggeling
341527bae9
wildcard tag search support
...
- when searching for tags you can now include '*' as wildcard placeholder
- new search reduces overall overhead when filtering for tags
- fixed combination with description tag search ('#' prefix)
- tests added
2017-08-30 13:20:22 +02:00
Willi Eggeling
a74f52a8d2
fixed link deletion
...
When deleting links, the js of the default theme separated ids by an escaped space ('+').
There was a trailing '+' after the ids which led to the php code detecting multiple values
even for single values. In combination with the id '0' this could led to no id found at all
and a resulting php error.
this commit fixes the behavior and adds an additional error handling and trimming to the php code.
2017-08-30 12:54:58 +02:00
Willi Eggeling
5a0045be79
fixed daily links if there are no links
...
- the previous code tried to use links from a previous day if there are no one for the current one
- the new code skips this part if there are no entries (i.e. days) at all
- modified showDaily() to fit PSR-1 and PSR-2
2017-08-30 12:42:58 +02:00
VirtualTam
dc37a482ed
Documentation+Makefile: update AUTHORS generation
...
Fixes https://github.com/shaarli/Shaarli/issues/935
Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2017-08-29 19:46:23 +02:00
VirtualTam
e4ed3a46b7
Merge pull request #944 from thewilli/configure-rememberme
...
new setting: default value for 'remember me' checkbox
2017-08-27 16:36:53 +02:00
Willi Eggeling
2e07e77573
new setting: default value for 'remember me' checkbox
...
- the default state for the login page's 'remember me' checkbox can now be configured
- adapted the default and vintage theme to consider the new setting
- added documentation for the new setting
2017-08-27 16:03:37 +02:00
VirtualTam
fc27141cf6
Merge pull request #940 from ArthurHoaro/hotfix/empty-urls
...
Generates a permalink URL if the URL is set to blank
2017-08-27 13:15:43 +02:00