TheRON/core
1
0
Fork 0
mirror of https://framagit.org/hubzilla/core.git synced 2026-06-21 00:52:33 -04:00
Code Issues Packages Projects Releases Wiki Activity
27,727 Commits 3 Branches 151 Tags
fedf60a32c36ab902f25d7a0dc7088b8d9c31bbd
Commit Graph

752 Commits

Author SHA1 Message Date
Harald Eilertsen
8c19ab8f9f Add helper to escape URLs. 
The escaping makes the URL safe for display and for use in HTML element
attributes (such as href="..." etc), but does not guarantee that the URL
itself is valid after conversion. This should be good enough for
mitigating XSS issues caused by injecting html or javascript into a URL.
Also probably good enough for _most_ normal URLs, but there may be
devils hidden in the details somewhere.
 2022-03-20 15:34:24 +01:00
Mario
c0350861ef php8 warnings 2022-02-13 19:31:51 +00:00
Mario
a7ec1805e3 address deprecation warnings 2022-02-13 18:58:12 +00:00
Mario
1740ae2104 more PHP 8.1 deprecated warnings 2022-02-02 17:58:29 +00:00
Mario
d8372f8433 more PHP 8.1 deprecated warnings 2022-02-02 12:44:39 +00:00
Mario
eb20789821 allow zotfinger to recurse through all known hublocs if the one we got does not exist (404) or got removed (410). add functions for updating tables from array and deleting hublocs. 2022-02-01 10:01:56 +00:00
Mario Vavti
6c808abcfc PHP 8.1 band-aid 2022-01-31 09:49:00 +01:00
Mario
b13a9f57af fix for #1659 2022-01-27 21:10:13 +00:00
Mario
7acc775c91 wrong function name 2022-01-21 07:46:12 +00:00
Mario
b5e4c08fc5 fix get_tags() parsing toc bbcodes 2022-01-09 18:25:17 +00:00
Mario
b40e858556 only display connections widget if there are any connections to show 2022-01-04 20:42:07 +00:00
Mario
95a4ed7d6a do not show blocked or ignored contacts in connections 2022-01-04 20:31:42 +00:00
Mario
df8bb0596a port new_token from zap, fixes and more cleanup 2022-01-02 20:45:25 +00:00
Mario
27ebeffad4 update_poll() can be called many times in a row for the same item if a multiple poll is being updated. This could result in the queueworker not processing duplicates. We are now adding the source item mid to the notifier call as the third argument (fragment) so that the queueworker will not think they are duplicates. The fragment is also passed to the deliver_hooks call in the notifier 2021-12-22 09:50:50 +00:00
Mario
bfd3da43ac access token refactor 2021-12-17 19:48:09 +01:00
Mario
2968bf8241 merge branch perms_ng into dev 2021-12-15 12:17:19 +00:00
Mario
06e214e567 more work on responsive aside 2021-11-23 09:17:04 +00:00
Mario
f5f357060b fix alt_pager() 2021-10-06 14:32:49 +00:00
Mario Vavti
4eb8921635 improve item_url_replace() - fixes #1507 2021-09-21 11:07:23 +02:00
Mario
d115e09abc do not process summary in cleanup_bbcode() fixes issue #1612 2021-09-12 17:54:20 +00:00
Mario
5dcf053b4c implement strict mode for base64url_decode() and introduce unpack_link_id() 2021-09-04 07:32:01 +00:00
Mario
cddc021772 Apps drag and drop feature 2021-08-03 07:12:35 +00:00
Mario
faeec0b77b revert ebc84eab3f instead be more picky about the xchan in handle_tag() 2021-07-02 07:23:18 +00:00
Mario
5a474f94e0 fix query logic 2021-06-29 05:45:05 +00:00
Mario
6e91bee0ba some work on streamlining mod photos 2021-06-23 15:52:04 +00:00
Mario
b55676d089 New landing page HQ with separate views for direct messages, public/limited messages and starred messages if the feature is enabled 2021-06-17 07:33:45 +00:00
Mario
f1aace5a22 remove unobscure() 2021-05-28 08:28:32 +00:00
Mario
0718ac514d remove deprecated mail code 2021-05-28 08:11:40 +00:00
Mario
1fa4bc9ac0 remove most legacy zot quirks 2021-05-26 12:18:59 +00:00
Mario
ec02eda113 handle_tag(): only use xchans with xhchan_deleted = 0 2021-05-26 09:36:13 +00:00
Max Kostikov
cd97c32444 more PHP 8 fixes 2021-04-18 21:25:32 +02:00
Mario
f9793e870f use protect_sprintf() on query strings 2021-04-14 11:01:34 +00:00
Mario
16cc695115 fix regression finding bookmarks 2021-04-11 15:47:42 +00:00
Mario
b8abf806ca bbcode: escape img and zmg tags so that it will not be messed with before required (e.g. URL in image description) - issue #1554 2021-04-06 12:12:51 +00:00
Mario
1a15c775f8 php8: fix fatal errors 2021-03-24 09:21:58 +00:00
Mario
3f053611bd Merge branch 'dev' into air 2021-03-12 10:07:15 +00:00
Mario
f980c2e3de php8: daily warning fixes (deriving from mod network) 2021-03-11 13:03:54 +00:00
Max Kostikov
bdae290ec4 Revert "More checks on note decoding" 
This reverts commit 20199f7aee34dbc7a8aebcd459ef6cb84cdb5bd7
 2021-03-09 11:05:43 +00:00
Hilmar R
c26dede97f get dev 2021-03-01 18:48:11 +01:00
Mario
8295ccdda7 a possible fix for #1518 2021-02-25 15:43:01 +00:00
Mario
b4693870ba port Lib/Crypto from zap 2021-02-09 13:50:03 +00:00
Hilmar R
67db1c6e9b melt diff prod fork 4.6.2 air onto 5.2.1 to 5.2.2 DB 1241 2021-01-23 15:24:24 +01:00
Mario
fbbc53838c fix ramsey/uuid exception 2021-01-23 12:35:02 +00:00
Mario
7f51ff0a8d set resource_type = group_item and resource_id = original mid for forum items so we do not need to query the body for the original mid on edit. 2021-01-08 21:27:06 +00:00
Mario
8640e6d1df deprecate ! and !! forum tags 2020-12-18 13:26:51 +00:00
Mario
801583fd07 flag forums where we do not have post permissions and filter them from the acl selector 2020-12-18 12:40:36 +00:00
Mario
2a154f8c9a merge branch files_ng into dev 2020-12-14 11:02:20 +00:00
Mario
f2fd12fbe5 Do away with auto updates except for our own actions. We might consider to re-implement this for single thread view like eg /display. Instead of calculating scroll positions during updates, keep track of expanded items and set the expanded state when updating - this fixes issue #1488 2020-11-18 09:52:44 +00:00
Mario
953c294778 wrong variable name 2020-11-05 08:32:21 +00:00
Mario
7112bcd134 bt_syslog() instead of syslog flag for btlogger 2020-10-25 07:27:07 +00:00