Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | more theme fixes | Mario | 2023-09-13 | 1 | -2/+3 |
| | |||||
* | text | Mario | 2023-06-28 | 1 | -1/+1 |
| | |||||
* | implement optional moderation of unsolicited comments, minor css fixes and ↵ | Mario | 2023-06-23 | 1 | -0/+5 |
| | | | | some more work on ocap | ||||
* | even more adjust text | Mario | 2023-06-02 | 1 | -1/+1 |
| | |||||
* | more adjust text | Mario | 2023-06-02 | 1 | -1/+1 |
| | |||||
* | adjust text | Mario | 2023-06-02 | 1 | -1/+1 |
| | |||||
* | ocap initial checkin | Mario | 2023-06-02 | 1 | -0/+5 |
| | |||||
* | initial check in to allow all mentions option | Mario | 2023-03-23 | 1 | -1/+6 |
| | |||||
* | more strings and provide mfa feedback via jgrowl | Mario | 2023-03-11 | 1 | -4/+4 |
| | |||||
* | check form security token and require password to enable/diable mfa | Mario | 2023-03-11 | 1 | -0/+15 |
| | |||||
* | mfa strings update | Mario | 2023-03-09 | 2 | -6/+6 |
| | |||||
* | more mfa cleanup, set the value in session if mfa is enabled and only allow ↵ | Mario | 2023-03-08 | 1 | -2/+6 |
| | | | | enabling mfa after a test passed | ||||
* | port totp mfa from streams with some adjustions | Mario | 2023-03-08 | 1 | -0/+72 |
| | |||||
* | fix issue #1717 | Mario | 2023-01-04 | 1 | -28/+29 |
| | |||||
* | fix php warnings | Mario Vavti | 2022-10-23 | 2 | -9/+10 |
| | |||||
* | CVE-2022-27256: Open redirect via rpath query param. | Harald Eilertsen | 2022-03-20 | 10 | -27/+27 |
| | | | | | | | | Don't follow urls to external sites when submitting forms from the settings modules. This mitigates an Open Redirect vulnerability where an attacker could trick a user to go to an attacker controlled destination. Fixes part of https://framagit.org/hubzilla/core/-/issues/1666 | ||||
* | CVE-2022-27258: XSS via rpath query param. | Harald Eilertsen | 2022-03-20 | 10 | -20/+20 |
| | | | | | | | | | | Escape URLs provided by the rpath query param in settings modules. This prevents a possible Cross-Site scripting vulnerability, where an attacker could inject web scripts and html into the settings form via the rpath query parameter, and have a user execute the script by tricking them to clicking a link. Fixes part of https://framagit.org/hubzilla/core/-/issues/1666 | ||||
* | enhanced content filters | Mario | 2022-03-01 | 2 | -1/+7 |
| | |||||
* | ux improvements | Mario | 2022-01-12 | 1 | -4/+4 |
| | |||||
* | string change | Mario | 2021-12-21 | 1 | -1/+1 |
| | |||||
* | string change | Mario | 2021-12-21 | 1 | -1/+1 |
| | |||||
* | missing label | Mario | 2021-12-21 | 1 | -1/+1 |
| | |||||
* | nag channel owners to select achannel role if they have not yet done so yet | Mario | 2021-12-15 | 1 | -4/+10 |
| | |||||
* | merge branch perms_ng into dev | Mario | 2021-12-15 | 2 | -523/+318 |
| | |||||
* | add option to mark all notices of a thread read if a notice of the thread is ↵ | Mario | 2021-09-18 | 1 | -2/+7 |
| | | | | clicked (default 1) and fix a php error in find_parent() if $act->obj is not an array | ||||
* | channel_menu is not used anymore | Mario | 2021-08-24 | 1 | -3/+0 |
| | |||||
* | more work on notifications | Mario | 2021-06-25 | 1 | -108/+109 |
| | |||||
* | melt diff prod fork 4.6.2 air onto 5.2.1 to 5.2.2 DB 1241 | Hilmar R | 2021-01-23 | 1 | -15/+19 |
| | |||||
* | Do away with auto updates except for our own actions. We might consider to ↵ | Mario | 2020-11-18 | 1 | -3/+0 |
| | | | | re-implement this for single thread view like eg /display. Instead of calculating scroll positions during updates, keep track of expanded items and set the expanded state when updating - this fixes issue #1488 | ||||
* | apply channel name changes to all associated xchans | nobody | 2020-09-21 | 1 | -2/+3 |
| | | | (cherry picked from commit f2ac1e4b7d2aa4854ed08ded49b2ed2dd10fab59) | ||||
* | more itemspage work | Mario | 2020-07-16 | 1 | -5/+5 |
| | |||||
* | move from build_sync_packet() to Libsync::build_sync_packet() | Mario | 2020-04-09 | 15 | -15/+34 |
| | |||||
* | calendar merge: implement channel calendar import in cdav/calendar | Mario Vavti | 2019-05-10 | 1 | -1/+1 |
| | |||||
* | affinity tool fixes | Mario Vavti | 2019-02-14 | 1 | -42/+0 |
| | |||||
* | Make Affinity Slider (optionally) 'sticky' across page loads. (default is ↵ | DM42.Net (Matt Dent) | 2018-12-14 | 1 | -0/+8 |
| | | | | current behavior: reset slider with each page load) | ||||
* | move profile assign selector to profile settings and personal menu selector ↵ | Mario Vavti | 2018-10-06 | 3 | -29/+41 |
| | | | | to channel_home settings and get rid of misc channel settings section. | ||||
* | rename grid to network (for consistency) and activity to stream (as seen in ↵ | Mario Vavti | 2018-10-06 | 2 | -2/+2 |
| | | | | osada) because it makes much more sense. | ||||
* | pubstream app | Mario Vavti | 2018-10-06 | 1 | -1/+1 |
| | |||||
* | fix displaying of perm cats selector | Mario Vavti | 2018-10-04 | 1 | -2/+4 |
| | |||||
* | whitespace | Mario Vavti | 2018-10-04 | 1 | -1/+0 |
| | |||||
* | move *_divmore_height setting to the module extra_settings, and fix issue ↵ | Mario Vavti | 2018-10-04 | 11 | -13/+83 |
| | | | | where feature settings were not synced if rpath was provided | ||||
* | move *_list_mode to features | Mario Vavti | 2018-10-04 | 1 | -6/+0 |
| | |||||
* | indicate locked features | Mario Vavti | 2018-10-01 | 1 | -1/+1 |
| | |||||
* | Remove servicelevel logic | M. Dent | 2018-09-29 | 2 | -21/+1 |
| | |||||
* | settings for channel home | Mario Vavti | 2018-09-28 | 1 | -0/+43 |
| | |||||
* | Update Channel.php | Max Kostikov | 2018-09-28 | 1 | -2/+2 |
| | |||||
* | implement conversation tools (settings/conversation), remove additional ↵ | Mario Vavti | 2018-09-27 | 2 | -34/+61 |
| | | | | features from the settings menu and get rid of skill levels | ||||
* | guest access app | Mario Vavti | 2018-09-26 | 1 | -173/+0 |
| | |||||
* | permcats app | Mario Vavti | 2018-09-26 | 1 | -120/+0 |
| | |||||
* | oauth and oauth2 apps manager | Mario Vavti | 2018-09-26 | 2 | -345/+0 |
| |