Friendica/friendica-github
1
0
Fork 0
mirror of https://github.com/friendica/friendica synced 2025-01-25 16:59:47 +00:00
Code Issues Projects Releases Packages Wiki Activity
39188 commits 2 branches 67 tags 252 MiB
Commit graph

3553 commits

Author SHA1 Message Date
Michael
567292533e Issue 11963: Set Permissions for attachments 2024-05-11 19:19:18 +00:00
Michael Vogel
0be622e049
Merge pull request #14139 from MrPetovan/bug/apexrabbit-vulns 
Fix a couple of stored XSS vulnerabilities
 2024-05-11 14:03:24 +02:00
Hypolite Petovan
40949483f3 Fix wrong return value in Item::gettopLevelParent() 
- Address https://github.com/friendica/friendica/issues/14025#issuecomment-2105033182
 2024-05-10 21:54:19 -04:00
Hypolite Petovan
c19a68dc64 Remove DI dependency from PermissionTooltip module 
- Update PHPDoc of APContact::getByURL
 2024-05-10 11:25:27 -04:00
Michael
afff2b949f Improved user agent string 2024-05-10 09:01:43 +00:00
Michael
e7b861388d Issue 14132: Title for videos 2024-05-10 05:42:45 +00:00
Michael
c82a1ed467 Performance improvements when displaying local posts 2024-04-17 19:16:47 +00:00
Tobias Diekershoff
9626a76b18
Merge pull request #14083 from annando/issue-13812 
Issue 13812: Public groups with manual request approval
 2024-04-09 18:46:44 +02:00
Michael
69fc2c04e4 Issue 13812: Public groups with manual request approval 2024-04-08 07:58:45 +00:00
Michael
d7e8ee51ae Use similar values for generator and system actor 2024-04-08 06:33:03 +00:00
Michael
a2da42640c Issue 14055: Set link to group server for group posts 2024-04-07 15:46:55 +00:00
Michael
50b1de5959 Menu option to display the search text 2024-04-05 07:35:21 +00:00
Michael
0d4f956fba Avoid exception "Unable to retrieve the host in URL" in the search 2024-04-03 07:51:02 +00:00
Michael
c041c65c1d Comstants for features 2024-03-24 14:48:23 +00:00
Michael
b72e32a842 Add a link to the post if "no preview" is selected 2024-03-24 06:46:48 +00:00
Michael
7a0c5d141e Issue 13714: Support for "commentsEnabled" and "capabilities" 2024-03-21 17:11:20 +00:00
Michael
3d267c7b8f Possibility to mark contacts as "channel only" 2024-03-21 13:20:52 +00:00
Michael Vogel
e6c23e69cc
Apply suggestions from code review 
Co-authored-by: Hypolite Petovan <hypolite@mrpetovan.com>
 2024-03-16 09:19:57 +01:00
Michael
b75fdbbd32 Fix handling of relais contact updates 2024-03-16 05:30:21 +00:00
Michael
eaddf5318a Fix: "unsearchable" is now stored 2024-03-15 06:07:47 +00:00
Hypolite Petovan
57187f26ae
Merge pull request #13978 from annando/issue-13972 
Default behaviour for adding media types
 2024-03-12 20:06:24 +00:00
Michael
fda832cd83 "network/group" fragments are removed 2024-03-12 08:02:00 +00:00
Michael
00b325d521 Default behaviour for adding media types 2024-03-09 15:45:38 +00:00
Michael
d9bedbb473 Centralized logging for a wrong JSON content-type 2024-03-08 13:48:21 +00:00
Michael
435b30be11 Check for the content type before fetching the content 2024-03-07 22:16:52 +00:00
Michael
67696d08da Set default value for max video height 2024-03-07 14:22:40 +00:00
Michael
68c2bdb98e Change the last activity for delegation parents and siblings as well 2024-03-07 06:12:36 +00:00
Hypolite Petovan
111df607bc Don't call mb_strlen() on $body if it isn't set in Model\Post\Counts 
- Address https://github.com/friendica/friendica/issues/13761#issuecomment-1978354153
 2024-03-06 12:01:25 -05:00
Michael
31b92b16ed Reduce the height of portrait videos 2024-03-05 21:25:00 +00:00
Michael
ba07172a65 Compare with the utc value 2024-03-05 14:24:40 +00:00
Michael
72e045e744 Improved assigning of "last-activity" and "login_date" 2024-03-05 14:06:26 +00:00
Michael
52cc8ab73b Issue 13765: Fixed creation of self user contact for approval 2024-03-04 07:30:04 +00:00
Michael
ae37c44cc0 Oembed: Some more cleanup 2024-03-03 18:06:25 +00:00
Michael
bae7644d6f Issue 13955: Check for publish date upon receival 2024-03-02 19:21:14 +00:00
Michael
5df1ead001 Issue 13953: Fix warning during postupdate 2024-03-01 08:41:12 +00:00
Michael
20fd25258a Accidentally changes are reverted 2024-02-24 11:35:32 +00:00
Michael
00bb538fd0 Merge branch '2024.03-rc' of https://github.com/friendica/friendica into 2024.03-rc 2024-02-24 11:01:44 +00:00
Michael
12bdbaaba8 OEmbed: Complete cleanup 2024-02-24 11:01:34 +00:00
Hypolite Petovan
5c5d7eb04f
Fix several vulnerabilities (#13927) 
* Escape HTML in the location field of a calendar event post

- This allowed script tags to be interpreted in the post display of an event.

* Add form security token check to /admin/phpinfo module

- This prevents basic XSS attacks against /admin/phpinfo

* Add form security token check to /babel module

- This prevents basic XSS attacks against /babel

* Prevent pass-through for attachments

- This addresses a straightforward Reflected XSS vulnerability if a malicious HTML/Javascript file is attached to a post through upload

* Prevent overwriting cid on event edit

- This allowed to share an event as any other user after zeroing the cid field of an existing event
 2024-02-22 06:53:52 +01:00
Michael Vogel
71384e6f39
Issue 13909: Filter channels by network (#13924) 2024-02-20 07:11:26 +01:00
Michael
892e0a5623 Check for activity pub mime types 2024-02-19 07:11:56 +00:00
Michael Vogel
bcec6c5ab2
Issue #13899: Fix error on postupdate (#13915) 2024-02-18 20:09:56 +01:00
Michael
0d2ea97eb1 Fix comtact-relation follower calculation 2024-02-17 21:32:17 +00:00
Michael Vogel
14e5b06029
Image handling reworked, new image formats added (#13900) 
* Image handling reworked, new image formats added

* Updated messages.po

* The dot is now part of the file extension

* Added WebP in install documentation

* Handle unhandled mime types

* Fixed animated picture detected
 2024-02-17 07:45:41 +01:00
Michael Vogel
fad55e0948
Prevent users from following relay accounts (#13894) 2024-02-13 06:50:46 +01:00
Hypolite Petovan
686d0b6dbb
Merge pull request #13892 from annando/no-preview-on-sensitive 
Don't display preview images for links, when the post is marked as sensitive
 2024-02-12 22:30:31 -05:00
Michael
e2cbe0983a Don't display preview images for links, when the post is marked as sensitive 2024-02-12 06:01:07 +00:00
Michael
061f43788c Sanitize links before storing them 2024-02-12 05:21:13 +00:00
Michael
fe00a3893d urlencode for tags / fix smiley replacement 2024-02-12 04:46:20 +00:00
Michael Vogel
52825cb4c4
User setting to disable blurring of sensitive pictures (#13883) 2024-02-10 09:50:49 +01:00