Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | use absolute namespace | zotlabs | 2017-03-15 | 1 | -1/+2 |
| | |||||
* | Comanche: allow widgets to be class based and stored appropriately in Zotlabs | zotlabs | 2017-03-15 | 2 | -0/+37 |
| | |||||
* | more work related to attach/photo and os_path, display_path and general code ↵ | zotlabs | 2017-03-15 | 2 | -36/+40 |
| | | | | cleanup | ||||
* | input filter updates | zotlabs | 2017-03-14 | 4 | -46/+9 |
| | |||||
* | class MarkdownSoap to safely store markdown by purifying and preserving ↵ | zotlabs | 2017-03-14 | 1 | -0/+86 |
| | | | | (escaped) what may be unsafe code in codeblocks. The stored item needs to be unescaped just prior to calling the markdown-to-html processor | ||||
* | code_allowed is a real mess. Start the cleanup by remving the account level ↵ | zotlabs | 2017-03-13 | 2 | -24/+4 |
| | | | | code allow and limiting to specific channels only. This reduces the possibility of cross channel security issues coming into play. Then provide a single function for checking the code permission. This is only partially done as we often need to check against the observer or logged in channel as well as the resource owner to ensure that this only returns true for local channels which also own the requested resource. | ||||
* | better handling of mimetype security | zotlabs | 2017-03-12 | 3 | -20/+7 |
| | |||||
* | grrr. stop making branding assumptions. | zotlabs | 2017-03-12 | 2 | -2/+2 |
| | |||||
* | Merge branch 'dev' into red | zotlabs | 2017-03-11 | 1 | -1/+1 |
|\ | |||||
| * | Monday is a proper name and should be capitalised (except in private ↵ | zotlabs | 2017-03-08 | 1 | -1/+1 |
| | | | | | | | | conversation amongst unix geeks). | ||||
* | | one role. | zotlabs | 2017-03-09 | 2 | -15/+3 |
|/ | |||||
* | add public_policy to the nwiki container also. This should not affect the ↵ | zotlabs | 2017-03-06 | 1 | -0/+2 |
| | | | | recent bug as presented, but is being added for consistency. | ||||
* | correct fix for wiki anonymous read issue (items_permissions_sql checks ↵ | zotlabs | 2017-03-06 | 1 | -8/+4 |
| | | | | item.public_policy which was set for posts, not wikis) | ||||
* | allow unauthenticated access to public wiki pages | Mario Vavti | 2017-03-06 | 1 | -2/+10 |
| | |||||
* | we need item edited for wiki page history, not item created | Mario Vavti | 2017-03-04 | 1 | -1/+1 |
| | |||||
* | Merge branch 'dev' of https://github.com/redmatrix/hubzilla into dev_merge | zotlabs | 2017-03-02 | 1 | -1/+1 |
|\ | |||||
| * | reset schema value after we empty and repopulate it. second half of fix for #624 | Mario Vavti | 2017-03-02 | 1 | -1/+1 |
| | | |||||
* | | activity widget - like the forum widget but represents unseen activity by ↵ | zotlabs | 2017-03-02 | 6 | -4/+29 |
| | | | | | | | | author. Still experimental until it can be tested with diaspora xchans, which may require additional urlencoding. | ||||
* | | make system.expire_delivery_reports default setting consistent (10 days) | zotlabs | 2017-03-01 | 1 | -1/+1 |
|/ | |||||
* | expire unread system notifications after a year. It would provide a better ↵ | zotlabs | 2017-02-28 | 1 | -0/+7 |
| | | | | experience for infrequent visitors if we didn't expire them at all, but at some point we need to draw a line so as not to degrade system performance searching through old notifications that it's highly unlikely will ever be viewed again. | ||||
* | Merge pull request #686 from dawnbreak/markdown | zotlabs | 2017-03-01 | 3 | -87/+86 |
|\ | | | | | Upgrade PHP Markdown library. | ||||
| * | :arrow_up: :hammer: Upgrade PHP Markdown library. | Klaus Weidenbach | 2017-02-27 | 3 | -87/+86 |
| | | | | | | | | | | | | The current version throws deprecated warning with PHP7.1 and PHPUnit. Upgrade the Markdown library to the current PHP Markdown Lib 1.7.0. Used composer to manage this library. | ||||
* | | provide 'session' option to z_fetch_url to assist with remote fetches ↵ | zotlabs | 2017-02-27 | 1 | -1/+1 |
| | | | | | | | | requiring magic auth | ||||
* | | make magic-auth work with profile vcard fetch | zotlabs | 2017-02-27 | 1 | -1/+2 |
| | | |||||
* | | fetch profile vcard for connection | zotlabs | 2017-02-27 | 1 | -0/+45 |
| | | |||||
* | | add file size notes to /cloud actions panel | zotlabs | 2017-02-27 | 1 | -0/+4 |
| | | |||||
* | | prep work | zotlabs | 2017-02-27 | 2 | -1/+2 |
|/ | |||||
* | fix js issue in markdown mimetype wikis if content contains quotes | Mario Vavti | 2017-02-27 | 1 | -5/+3 |
| | |||||
* | whitespace | Mario Vavti | 2017-02-27 | 1 | -2/+0 |
| | |||||
* | do not mess up schemas | Mario Vavti | 2017-02-27 | 1 | -4/+6 |
| | |||||
* | set minversion and maxversion for themes in ↵ | Mario Vavti | 2017-02-27 | 3 | -6/+9 |
| | | | | view/theme/themename/php/theme.php instead of separate file. | ||||
* | add a minversion to the theme and fallback to default if requirement is not ↵ | Mario Vavti | 2017-02-26 | 4 | -6/+24 |
| | | | | met. mark incompatible themes in the theme selector | ||||
* | move admin permission decision out of the router - it is already provided in ↵ | zotlabs | 2017-02-25 | 1 | -6/+0 |
| | | | | the module and the higher level check is causing some oembed redirect issues. | ||||
* | send sync packet on profile photo permissions change | zotlabs | 2017-02-25 | 1 | -0/+9 |
| | |||||
* | escape tags on viewsrc output in case it is not text/bbcode. | zotlabs | 2017-02-25 | 1 | -1/+3 |
| | |||||
* | Merge branch 'dev' of https://github.com/redmatrix/hubzilla into dev_merge | zotlabs | 2017-02-24 | 1 | -1/+1 |
|\ | |||||
| * | use chanlink_url() in directory since the xchan might not yet be available ↵ | Mario Vavti | 2017-02-24 | 1 | -1/+1 |
| | | | | | | | | on our server | ||||
* | | We've passed the deadline for allowing unsigned zot finger tokens. It is now ↵ | zotlabs | 2017-02-24 | 1 | -3/+1 |
|/ | | | | a protocol requirement. | ||||
* | deleting profile vcard entries was pretty well borked | zotlabs | 2017-02-23 | 1 | -2/+4 |
| | |||||
* | more work on profile vcards - still a lot of work to go | zotlabs | 2017-02-23 | 1 | -9/+27 |
| | |||||
* | nativewiki: only apply markdown filter to markdown input | zotlabs | 2017-02-23 | 1 | -4/+12 |
| | |||||
* | one more place to use chanlink_hash() instead of chanlink_url() | Mario Vavti | 2017-02-23 | 1 | -1/+1 |
| | |||||
* | more places to use chanlink_hash() instead of chanlink_url() for profile_link | Mario Vavti | 2017-02-23 | 3 | -3/+3 |
| | |||||
* | use chanlink_hash() instead of chanlink_url() for $profile_link | Mario Vavti | 2017-02-23 | 1 | -1/+1 |
| | |||||
* | apps improvements | Mario Vavti | 2017-02-22 | 3 | -4/+10 |
| | |||||
* | use head_add_link() for feed discovery | zotlabs | 2017-02-21 | 6 | -30/+44 |
| | |||||
* | display page not updating after comment | zotlabs | 2017-02-21 | 1 | -23/+22 |
| | |||||
* | do not lock out channels with only read perms from all post actions. we ↵ | Mario Vavti | 2017-02-21 | 1 | -5/+0 |
| | | | | check read/write permissions for each command later in the process | ||||
* | fix find_folder_hash_by_path() which was not safe against multiple attach ↵ | zotlabs | 2017-02-20 | 1 | -1/+7 |
| | | | | structures with the same filename but in different directories | ||||
* | update fr translation | zotlabs | 2017-02-20 | 1 | -2/+0 |
| |