Friendica/friendica-github
1
0
Fork 1
mirror of https://github.com/friendica/friendica synced 2025-02-08 02:58:50 +00:00
Code Issues Projects Releases Packages Wiki Activity
40425 commits 2 branches 67 tags 247 MiB
Commit graph

88 commits

Author SHA1 Message Date
Art4
fca8de40a1 Remove dependency for twitter addon 2024-11-16 10:37:48 +00:00
Art4
ee2cdc7763 replace method with anonymous function 2024-11-13 07:49:29 +00:00
Art4
71add60f59 remove unused code 
this code was never called because $body is never declared
and hence the if could never be true
 2024-11-04 15:04:06 +00:00
Art4
4a9c7d2f30 Remove call of non-existing functions 
This functions were removed in commit a97b3f690c9e4476ba638236897507100f77af6f

- twitter_statuses_show()
- twitter_media_entities()
- twitter_expand_entities()

see a97b3f690c
 2024-11-04 13:56:08 +01:00
Art4
b5c2cbc597 Refactor Friendica\Module\Debug\ItemBody class 2024-11-04 13:36:57 +01:00
Art4
3a8058ec09 Extract visible_whitespace() into separate method in ActivityPubConversion 2024-11-03 15:54:37 +01:00
Art4
e984057ceb Extract visible_whitespace() into separate method 2024-11-03 15:52:46 +01:00
Tobias Diekershoff
30a5ef33b0 REUSE src directory 2024-08-24 15:27:00 +02:00
Michael
1a6e381206 Issue 14312: fix uimport path / restore POST endpoints 2024-08-03 12:20:56 +00:00
Michael
5751e024c0 Request type set for all HTTP requests 2024-05-12 17:53:21 +00:00
Hypolite Petovan
5c5d7eb04f
Fix several vulnerabilities (#13927) 
* Escape HTML in the location field of a calendar event post

- This allowed script tags to be interpreted in the post display of an event.

* Add form security token check to /admin/phpinfo module

- This prevents basic XSS attacks against /admin/phpinfo

* Add form security token check to /babel module

- This prevents basic XSS attacks against /babel

* Prevent pass-through for attachments

- This addresses a straightforward Reflected XSS vulnerability if a malicious HTML/Javascript file is attached to a post through upload

* Prevent overwriting cid on event edit

- This allowed to share an event as any other user after zeroing the cid field of an existing event
 2024-02-22 06:53:52 +01:00
Michael
89e7420237 Friendica copyright changed from 2023 to 2034 2024-01-02 20:57:26 +00:00
Michael
8bb33dccd1 Unified BBCode conversion, improved proxy functionality 2023-07-15 20:12:08 +00:00
Philipp
544168244c Apply suggestions from code review 
Co-authored-by: Hypolite Petovan <hypolite@mrpetovan.com>
 2023-02-19 11:12:48 +01:00
Philipp
f0c29edcde
Adapt BaseURL calls to new UriInterface 2023-02-18 21:12:21 +01:00
Hypolite Petovan
1874a32728 Happy New Year 2023! 2023-01-01 09:36:24 -05:00
Philipp
bf39b5a948
Fix messages.po issue 2022-10-21 10:19:13 +02:00
Philipp
eecc456e0c
UserSession class [5] - Refactor src/Module/ files with DI 2022-10-20 22:59:39 +02:00
Michael
c9f17e1ef5 old boot.php functions replaced in src/module (2) 2022-10-19 09:06:09 -04:00
Michael
fdfa1f8630 The notice and info have been moved 2022-10-17 18:55:22 +00:00
Michael
87a945b295 More prevention of double processing of the same content 2022-08-06 17:06:55 +00:00
Michael
1d13574225 Fetching of missing posts is reworked 2022-07-21 05:16:14 +00:00
Hypolite Petovan
da32fa8fa6 Create ActivityPub\FetchQueue and ActivityPub\FetchQueueItem classes 
- These classes are used to flatten the recursive missing activity fetch that can hit PHP's maximum function nesting limit
- The original caller is responsible for processing the remaining queue once the original activity has been fetched
 2022-06-25 12:40:54 -04:00
Michael
f6167b4cfd New function to exit the program 2022-05-18 02:13:54 +00:00
Michael
4016a576d5 Log the execution time 2022-05-17 20:47:23 +00:00
Philipp
e299fc67c8
Introduce "accept_header" as specific argument to the http client 2022-04-02 21:16:53 +02:00
Philipp
73c3b21665
Move ACCEPT constants to own "enum" class 2022-04-02 20:26:11 +02:00
Michael
1fae0123ec Some more "accept" parameters are added 2022-03-29 06:24:20 +00:00
Michael
8c778ca02e Improved completion check for AP 2022-03-12 11:17:33 +00:00
Balázs Úr
e56a53647b Update copyright 2022-01-02 08:27:47 +01:00
Philipp
2e4d654c0a Make $_REQUEST processing independent of sub-calls 
- Move HTTPInputData::process() into App::runFrontend()
- Pass $_REQUEST (including processed Input) to every Module method
- Delete $_POST parameters at Module post() calls because of $_REQUEST
 2021-11-30 01:07:58 -05:00
Philipp
561aba18e3
Introduce Response for Modules to create a testable way for module responses 2021-11-27 12:40:38 +01:00
Philipp
8bdd90066f
Make BaseModule a real entity 
- Add all dependencies, necessary to run the content (baseUrl, Arguments)
- Encapsulate all POST/GET/DELETE/PATCH/PUT methods as protected methods inside the BaseModule
- Return Module content ONLY per `BaseModule::run()` (including the Hook logic there as well)
 2021-11-27 12:40:36 +01:00
Philipp
645e4edc63
Revert "Revert "Replace Module::init() with Constructors"" 
This reverts commit 89d6c89b67.
 2021-11-19 20:18:48 +01:00
Hypolite Petovan
89d6c89b67
Revert "Replace Module::init() with Constructors" 2021-11-19 07:23:23 -05:00
Philipp
dab9e13c69
Replace $this->l10n->t() with $this->t() for Modules 2021-11-18 23:23:58 +01:00
Philipp
ce578a7745
Replace Module::init() with Constructors 2021-11-17 22:14:33 +01:00
Philipp
5879535822
Switch static::$parameters to $this->parameters 2021-11-14 23:49:07 +01:00
Philipp
489cd0884a
Make BaseModule methods dynamic 2021-11-14 23:49:06 +01:00
Philipp
714f0febc4
Replace $parameters argument per method with static::$parameters 2021-11-14 23:49:05 +01:00
Michael
57353eb9b0 Changed scope 2021-10-31 04:54:24 +00:00
Philipp
13a91e63aa
Rename DI::httpRequest() into DI::httpClient() 2021-08-25 21:54:54 +02:00
Hypolite Petovan
7a8d800024 Add probe support to @user@domain.tld search string format 2021-08-24 12:46:01 -04:00
Hypolite Petovan
a04944d443 Allow contact creation in Module\Debug\Feed 
- This module only allowed existing contact feeeds to be debugged
 2021-08-17 08:20:58 -04:00
Michael
df558d4056 Completely removed argc/argv 2021-07-25 15:23:37 +00:00
Michael
2502a9192d Many more app-variables removed 2021-07-24 10:09:39 +00:00
Balázs Úr
054c301ef0 Update copyright 2021-03-29 08:40:20 +02:00
Hypolite Petovan
93823ecef5 Move HTML purification to own method in Content\Text\HTML 2021-03-14 14:19:33 -04:00
Michael
972c9f7bc0 Issue 9743: Added translatable texts 2021-03-08 21:17:27 +00:00
Michael
312c01a517 Several speed improvements (magiclink, caching, indexes) 2021-02-17 18:59:19 +00:00