Friendica/friendica-github
1
0
Fork 0
mirror of https://github.com/friendica/friendica synced 2025-01-10 16:44:42 +00:00
Code Issues Projects Releases Packages Wiki Activity
39696 commits 2 branches 67 tags 247 MiB
Commit graph

3329 commits

Author SHA1 Message Date
Michael
f537d7a64f Simplified admin frontend for features 2024-03-25 21:55:42 +00:00
Michael
67e0b6357e The visibility of network widgets can now be locked 2024-03-25 08:00:46 +00:00
Michael
200cf29a8d Configuration for widgets 2024-03-25 07:38:36 +00:00
Michael Vogel
f78b0e7c51
Merge pull request #14037 from MrPetovan/bug/warnings 
Add expected field 'uri-id' in Mastodon\Statuses\Bookmark
 2024-03-24 20:57:20 +01:00
Hypolite Petovan
b21604a720
Merge pull request #14038 from annando/feature-constants 
Constants for features
 2024-03-24 19:37:39 +00:00
Hypolite Petovan
c67225c62d Add expected field 'uri-id' in Mastodon\Statuses\Bookmark 
- Address https://github.com/friendica/friendica/issues/14026#issuecomment-2016469896
 2024-03-24 15:30:44 -04:00
Michael
c041c65c1d Comstants for features 2024-03-24 14:48:23 +00:00
Hypolite Petovan
e293de04f5 Add '$VERSION' template variable to make Friendica version available in templates 
- constant() Smarty function is deprecated
- Remove unused site-wide template variable '$APP'
- Address https://github.com/friendica/friendica/issues/14027#issuecomment-2016469408
 2024-03-24 09:20:58 -04:00
Hypolite Petovan
b4d71f1855 Remove duplicated '$baseurl' template variable declarations 
- This variable is declared for all templates in Renderer
 2024-03-24 09:11:46 -04:00
Michael
618a3153ab Issue 13910: Display the unseen counter based on the channel 2024-03-23 17:17:56 +00:00
Michael
4b695e361c Automatically close the registration when the admin is inactive 2024-03-22 04:19:40 +00:00
Michael
3d267c7b8f Possibility to mark contacts as "channel only" 2024-03-21 13:20:52 +00:00
Michael
3b419cae1e Issue 13787: Filter in circles editor by contact relation 2024-03-21 12:58:54 +00:00
Michael
11a16589da Improved Content-Type check on incoming requests 2024-03-21 09:02:25 +00:00
Michael
1ffdb19c8e Fix accounttype/nosharer url 2024-03-16 16:44:25 +00:00
Tobias Diekershoff
49b79d0457
Merge pull request #13993 from annando/statistics 
Systems added to the federation statistics
 2024-03-14 07:35:23 +01:00
Michael
8ce1797480 Systems added to the federation statistics 2024-03-14 04:33:19 +00:00
Hypolite Petovan
aac5d41fd6
Escape HTML characters in profile RSS titles 
Thanks to @r1pu5u for the tip left through the `security.txt` contact address!
 2024-03-12 20:42:00 +00:00
Michael
30f31828ae Fixes API-Issues #13985 and #13986 2024-03-12 03:12:36 +00:00
Michael
7471513269 Issue 13940: handle posts that can't be found in contexts 2024-03-03 18:32:26 +00:00
Michael
dd55ba2d77 Issue 13949: Block access via OAuth 2024-02-29 22:03:57 +00:00
Michael
821a135033 Unused OEmbed functionality is removed 2024-02-24 10:58:18 +00:00
Hypolite Petovan
a25dbf839a Remove photo user id fallback from 2021 
- Remove deprecated /photos/{nickname} fallback routes
- The contact id fallback is a lie, there's no replacement feature
 2024-02-23 22:41:18 -05:00
Hypolite Petovan
e16b6ee6e1
Check form security token in /settings/userexport module (#13929) 
* Escape HTML in the location field of a calendar event post

- This allowed script tags to be interpreted in the post display of an event.

* Add form security token check to /admin/phpinfo module

- This prevents basic XSS attacks against /admin/phpinfo

* Add form security token check to /babel module

- This prevents basic XSS attacks against /babel

* Prevent pass-through for attachments

- This addresses a straightforward Reflected XSS vulnerability if a malicious HTML/Javascript file is attached to a post through upload

* Prevent overwriting cid on event edit

- This allowed to share an event as any other user after zeroing the cid field of an existing event

* Check form security token in /settings/userexport module

- Prevents basic XSS attacks against /settings/userexport/*
 2024-02-22 21:08:32 +01:00
Hypolite Petovan
5c5d7eb04f
Fix several vulnerabilities (#13927) 
* Escape HTML in the location field of a calendar event post

- This allowed script tags to be interpreted in the post display of an event.

* Add form security token check to /admin/phpinfo module

- This prevents basic XSS attacks against /admin/phpinfo

* Add form security token check to /babel module

- This prevents basic XSS attacks against /babel

* Prevent pass-through for attachments

- This addresses a straightforward Reflected XSS vulnerability if a malicious HTML/Javascript file is attached to a post through upload

* Prevent overwriting cid on event edit

- This allowed to share an event as any other user after zeroing the cid field of an existing event
 2024-02-22 06:53:52 +01:00
Michael Vogel
71384e6f39
Issue 13909: Filter channels by network (#13924) 2024-02-20 07:11:26 +01:00
Michael Vogel
d95c9d28a8
Issue 13922: "voted" must not be null (#13923) 2024-02-20 07:09:55 +01:00
Michael Vogel
d5c0f086bd
Disallow mail addresses for registration (#13920) 
* Disallow mail addresses for registration

* Order for allow/disallow has been changed
 2024-02-19 09:33:20 +01:00
Michael Vogel
cb294cf411
Avoid problems with an empty domain in the blocklist (#13919) 
* Avoid problems with an empty domain in the blocklist

* Test code removed
 2024-02-19 07:22:19 +01:00
Hypolite Petovan
623a5be8a6 Clarify condition on offset in Mastodon\Search->searchStatuses 2024-02-18 18:48:37 -05:00
Hypolite Petovan
d1cd9a016e Move Api\Mastodon\Instance\Extended to ExtendedDescription 
- Add reference to Mastodon documentation
 2024-02-18 18:47:59 -05:00
Michael Vogel
7d5d3b3c29
Issue 13293: Endpoint /api/v1/accounts/lookup implemented (#13917) 2024-02-18 20:17:06 +01:00
Michael Vogel
6384265cbd
Issue #13823: Fix "Mutes" endpoint (#13916) 2024-02-18 20:07:51 +01:00
Michael Vogel
f12276eff8
New channel "quiet sharers" for posts from lesser frequent posters (#13913) 2024-02-18 15:54:21 +01:00
Michael Vogel
c6160a1c38
Fix API issues #13887, #13886, #13863, #13809, #13897 (#13911) 2024-02-18 15:52:30 +01:00
Michael Vogel
08fa51d0bb
Fix the handling of unhandled image types and of animations (#13904) 
* Fix the handling of unhandled image types and of animations

* Avoid warnings
 2024-02-17 15:46:48 +01:00
Michael
7d10518e94 Revert "Fix unhandled image detection" 
This reverts commit 1069cfb570.
 2024-02-17 10:50:09 +00:00
Michael
1069cfb570 Fix unhandled image detection 2024-02-17 10:46:48 +00:00
Michael Vogel
14e5b06029
Image handling reworked, new image formats added (#13900) 
* Image handling reworked, new image formats added

* Updated messages.po

* The dot is now part of the file extension

* Added WebP in install documentation

* Handle unhandled mime types

* Fixed animated picture detected
 2024-02-17 07:45:41 +01:00
Michael
fe00a3893d urlencode for tags / fix smiley replacement 2024-02-12 04:46:20 +00:00
Michael Vogel
2cc8fcc4aa
Merge pull request #13880 from MrPetovan/bug/13878-deprecate-star-list 
Deprecate use of [*] BBCode tag for list items in favor of [li]
 2024-02-11 03:13:28 +01:00
Michael Vogel
52825cb4c4
User setting to disable blurring of sensitive pictures (#13883) 2024-02-10 09:50:49 +01:00
Hypolite Petovan
5b5c9ddc74 Deprecate use of [*] BBCode tag for list items in favor of [li] 
- It is conflicting with Markdown syntax
 2024-02-09 20:33:42 -05:00
Michael
caa7b6f326 "sensitive" is added to the API 2024-02-06 16:30:46 +00:00
Michael
0a6dff0618 Sensitive previews are now blurred 2024-02-06 16:15:58 +00:00
Michael
7924085c94 Issue 13844: User defined channels based on the network 2024-02-04 07:14:57 +00:00
Michael
672186e549 Additional revert 2024-02-03 11:06:05 +00:00
Michael
053dfb3e2b Revert test changes / added saving of languages 2024-02-03 11:04:42 +00:00
Michael
f1efb8d277 Fix: Saving of channel languages 2024-02-03 11:01:17 +00:00
Michael
885b3a12b9 Search for tags and media in full text when doing full text searches 2024-02-02 16:05:24 +00:00
Michael
7faa42882b language field renamed to "language" 2024-02-02 07:05:39 +00:00
Michael
fc22a3e83f Unify searchindex table with engagement table 2024-02-01 23:08:53 +00:00
Michael Vogel
6a6e2cd2a2
Avoid duplicated post button on the contact conversation page (#13867) 
* Avoid duplicated post button on the contact conversation page

* Updated messages.po
 2024-02-01 19:47:43 +01:00
Michael Vogel
665316c14d
Issue 13859: Posts to a group in "Vier" is now possible (#13864) 2024-01-31 19:09:57 +01:00
Michael
c8087a7827 Merge remote-tracking branch 'upstream/develop' into size 2024-01-30 15:24:38 +00:00
Raroun
ed30d888fa
Update src/Module/Register.php 
Co-authored-by: Hypolite Petovan <hypolite@mrpetovan.com>
 2024-01-30 15:28:49 +01:00
Raroun
606bd0be60
Check if nickname contains only US-ASCII and do not start with a digit 
Update Register.php
 2024-01-30 15:18:11 +01:00
Michael
3fe4991fcf Filter user defined channels by size 2024-01-30 10:05:05 +00:00
Michael
d2702dfe9c Use centralized functions for tag string handling 2024-01-28 06:32:55 +00:00
Michael
f1173853f3 Merge remote-tracking branch 'upstream/develop' into discover 2024-01-26 13:54:25 +00:00
Michael
ef8461733b The "nosharer" widget is added to the network 2024-01-26 13:51:20 +00:00
Michael Vogel
09edf251ee
Anti spam measures against hashtag spam (#13855) 2024-01-25 19:41:07 +01:00
Michael
08ee1e1f63 New channel option "discover" 2024-01-25 10:50:28 +00:00
Michael
dc8b87e008 The account overview is now grouped by the account type 2024-01-23 22:05:14 +00:00
Michael
6389133575 Expiry post search index entries 2024-01-21 16:24:59 +00:00
Michael
ee9a68e40c New table "post-searchindex" 2024-01-17 19:46:22 +00:00
Michael
23b247d1c3 Merge remote-tracking branch 'upstream/develop' into channel-relay 2024-01-15 19:41:26 +00:00
Michael
f83f61f7ac "ANY_VALUE" is removed 2024-01-15 16:45:24 +00:00
Michael
7a13d8b8ac Merge remote-tracking branch 'upstream/develop' into channel-relay 2024-01-15 06:14:55 +00:00
Hypolite Petovan
e8c256bcff [Composer] Bump guzzlehttp/guzzle to version 7 to suppress deprecation notices 
- Bump divineomega/password_exposed to version 3 to remove dependency on Guzzle version 6
- Add new ICanHandleHttpResponses->getBodyString method to solve inheritance mismatch with GuzzleHttp\Psr7\ResponseInterface->getBody return type
 2024-01-12 08:42:46 -05:00
Dr. Tobias Quathamer
5cd5fa8403 Fix Undefined array key. 
- Address https://github.com/friendica/friendica/issues/13761#issuecomment-1878806230
 2024-01-11 23:38:29 +01:00
Michael
ad15b7b256 Fix warning: E_WARNING: Undefined array key "publish" 2024-01-10 22:04:02 +00:00
Michael
d2a74d1936 New option to disallow 2024-01-07 19:22:56 +00:00
Michael
c4b85ef25a New field "publish" for channels 2024-01-07 18:36:47 +00:00
Michael
6e830f7774 Improved handling for undeterminded languages 2024-01-07 10:11:52 +00:00
Michael
4aedf7f650 Improved code / updated messages.po 2024-01-06 22:04:30 +00:00
Michael
aba4a482f0 Limited settings for the relay account type 2024-01-06 21:52:28 +00:00
Michael
811a9f01bc New user account type "Channel Relay" 2024-01-06 17:27:42 +00:00
Michael
31b88da9d5 Merge remote-tracking branch 'upstream/develop' into channel-languages 2024-01-03 19:17:58 +00:00
Michael
da3d390187 User defined channels can now have got individual language definitions 2024-01-03 19:17:14 +00:00
Michael
7ecf143e4c The "unkmail" functionality is removed 2024-01-03 10:23:11 +00:00
Hypolite Petovan
21b16ef822
Merge pull request #13795 from annando/copyright 
Friendica copyright changed from 2023 to 2034
 2024-01-02 21:28:02 -05:00
Michael
89e7420237 Friendica copyright changed from 2023 to 2034 2024-01-02 20:57:26 +00:00
Michael
16d0d17169 There is now a single way to display group postings 2024-01-02 20:45:02 +00:00
Michael Vogel
9592292dba
Improved server detection / new servers added to federation statistics (#13793) 
* Improved server detection / new servers added to federation statistics

* Fix wrong color code
 2024-01-02 20:12:37 +01:00
Michael Vogel
8fc96477e7
Use the post-counts table to display content (#13781) 
* Use the post-counts table to display content

* Use verb instead of vid

* Use verb

* Update counter on delete
 2023-12-31 12:50:07 +01:00
Michael
ba760bb340 Unneeded logging removed 2023-12-28 10:25:22 +00:00
Michael Vogel
f23ecaff6a
Posts per author/server on the community pages (#13764) 
* Posts per author/server on the community pages

* Updated database.sql
 2023-12-25 12:39:15 +01:00
Michael
8de58aa39d open channel settings when empty 2023-12-17 06:41:19 +00:00
Michael
0a0d2c98e8 Channel definition now stays open after edit 2023-12-17 06:16:26 +00:00
Michael
62386e4c9e Frio: Improved user defined channel page 2023-12-16 21:43:01 +00:00
Michael
0a4f0d616a Allow longer avatar URLs / the system outbox is now handled 2023-12-15 10:39:41 +00:00
Michael
1cd729531d Sorting changed to "created" 2023-12-14 06:18:17 +00:00
Michael
f81192b4c3 Fix uddate issues and improve speed when displaying contact posts 2023-12-14 04:58:43 +00:00
Michael
14266a1ca4 Only use posts with wanted languages for subscribed tags 2023-12-11 22:07:01 +00:00
Hypolite Petovan
67f57a7f90 Avoid passing null value to number_format() in Module\Admin\Federation 
- Address part of https://github.com/friendica/friendica/issues/13699#issuecomment-1848363608
 2023-12-09 07:32:24 -05:00
Michael
5a844cd31e The value of "cron interval" wasn't displayed correctly 2023-12-06 21:19:38 +00:00
Michael
5e27b5790c Some site configuration descriptions are improved 2023-12-04 22:19:57 +00:00
Michael
cb91800088 "worker_fetch_limit" is moved as well 2023-12-03 22:49:35 +00:00
Michael
8386768708 Merge remote-tracking branch 'upstream/2023.09-rc' into channel-settings 2023-12-03 14:41:58 +00:00
Michael Vogel
3b96690d0c
Merge pull request #13689 from MrPetovan/bug/warnings 
Fix a few warning messages
 2023-12-03 15:37:40 +01:00
Michael
5cd85d9bb7 "items per page" is now in the site settings as well 2023-12-03 14:30:40 +00:00
Hypolite Petovan
6c7dee4bcd Check media_attributes keys before using them in Mastodon\Statuses 
- Address https://github.com/friendica/friendica/issues/13157#issuecomment-1832575517
 2023-12-03 09:13:34 -05:00
Michael
e99c916df1 Some more settings moved to the admin frontend 2023-12-03 13:43:48 +00:00
Michael
7bf7744efb The "cron_interval" is now reachable via the admin site settings 2023-12-03 11:20:37 +00:00
Michael
e87c79780a "min_poll_interval" moved as well 2023-12-03 11:08:21 +00:00
Michael
6e523beec3 The option "community_no_sharer" is now always enabled 2023-12-03 10:26:58 +00:00
Michael
f93192bc28 The channel settings are now available on the site settings 2023-12-03 09:45:13 +00:00
Michael
752172ab54 Merge remote-tracking branch 'upstream/2023.09-rc' into site-settings 2023-11-28 16:08:22 +00:00
Michael
405db86750 Don't display additional content when the output mode is "raw" 2023-11-28 15:21:20 +00:00
Michael
62f3598c25 Merge remote-tracking branch 'upstream/2023.09-rc' into site-settings 2023-11-28 01:12:40 +00:00
Michael
46b1b66dbf Several settings can now be reached via the site settings 2023-11-28 00:57:51 +00:00
Hypolite Petovan
cbe4b60a90 Change return value to stdClass of Module\Api\Mastodon\Markers->fetchTimelines 
- This ensures the JSON serialization of timeline markers is an object even when no markers are set
 2023-11-27 16:10:15 -05:00
Michael
67f727e3b3 Merge remote-tracking branch 'upstream/2023.09-rc' into server-discovery 2023-11-27 19:28:13 +00:00
Michael
077c9ff0c9 Improved control about the contact/server updates 2023-11-27 19:00:12 +00:00
Hypolite Petovan
fb19176201 Remove DI dependency in Object\Api\Mastodon\Instance 
- Address part of https://github.com/friendica/friendica/issues/12011#issuecomment-1826792949
 2023-11-26 09:48:46 -05:00
Michael
3f971f6dec Fix exceptions in the channel check 2023-11-25 16:17:26 +00:00
Hypolite Petovan
c649230982
Merge pull request #13668 from annando/issue-8542 
Issue 8542: User option to display the event list/birthday notification
 2023-11-25 10:26:34 -05:00
Michael
4a5014eab5 Function is renamed 2023-11-25 15:14:06 +00:00
Michael
b3d7dfb9a5 Issue 8542: User option to display the event list/birthday notification 2023-11-25 14:57:24 +00:00
Michael
ca366e5437 Issue 12743: Allow editing of media in posts 2023-11-25 12:22:25 +00:00
Hank Grabowski
379c84b7ab Fix call order of Mastodon Top level search on accounts 2023-11-24 17:06:41 -05:00
Michael
199ac64202 Issue 12530: Align the instance endpoint to the latest changes 2023-11-24 13:25:39 +00:00
Michael
ffbab95c20 Channels can now be based on the "network" feed as well 2023-11-21 23:13:26 +00:00
Michael
c8a3fea091 "browser_update" is integer, not boolean 2023-11-18 11:24:29 +00:00
Michael
6adf76c689 Fix the preview mode setting 2023-11-17 23:30:28 +00:00
Michael
170998da1a Allow to upload pictures up to the allowed system upload size 2023-11-17 12:19:01 +00:00
Michael Vogel
cad4b2f7b8
Update src/Module/Settings/Display.php 
Co-authored-by: Hypolite Petovan <hypolite@mrpetovan.com>
 2023-11-16 15:48:25 +01:00
Michael
581b96c32f New user option to hide the page drop checkbox 2023-11-15 21:55:54 +00:00
Michael
43f9be367f Check for user defined channel matches before storing them 2023-11-15 16:19:05 +00:00
Hank Grabowski
35a726a961 Use strtok to find QP's in Uri for OAuth redirect processing 2023-11-06 11:25:13 -05:00
Michael
3f2b0b9422 Use ISO-639-1 for the language detection 2023-11-02 22:49:25 +00:00
Raroun
1ede164450
Merge branch 'friendica:2023.09-rc' into Leftovers-from-PR-#13339 2023-11-01 08:21:50 +01:00
Raroun
67a6bc3ea9
Update Site.php 
Co-authored-by: Hypolite Petovan <hypolite@mrpetovan.com>
 2023-11-01 07:30:34 +01:00
Michael
7371070cde Issue 13511: Ensure stattic community user settings 2023-10-29 19:43:44 +00:00
Michael
8e05c282b1 Post permissions are now copied from the thread parent 2023-10-29 08:49:24 +00:00
Raroun
30d2d93494 added missing apostrophe 2023-10-27 11:54:11 +02:00
Raroun
5b8f307d4c Removed Full name from Register.php 2023-10-27 11:23:07 +02:00
Raroun
4e5041af13 Updated source string in Site.php 2023-10-27 11:18:09 +02:00
Hypolite Petovan
7ebf4d51ca Fix redirections in two-factor authentication settings index page 
- FoundException are used to redirect users
 2023-10-24 20:26:34 -04:00
Hypolite Petovan
4a90394c38 Remove DI and superglobals dependency from two-factor settings modules 2023-10-24 19:44:53 -04:00
Michael
e4a37f344e Individual callstacks are removed from the logger 2023-10-18 19:55:15 +00:00
Michael
1c67be8db0 Improve the performance of API timeline calls 2023-10-18 08:11:36 +00:00
Michael Vogel
e99fcfddb5
Merge pull request #13541 from MrPetovan/bug/13534-image-blurred 
Drop using the proxy large size for image preview
 2023-10-14 23:40:18 +02:00
Hypolite Petovan
938b2bae23 Align proxy sizes to photo preview sizes 
- PIXEL_SMALL goes from 300 to 320
- PIXEL_MEDIUM goes from 600 to 640
- Use Proxy pixel constants where we used hard-coded pixel values
 2023-10-14 16:05:01 -04:00
Michael
fce82deabc Merge remote-tracking branch 'upstream/2023.09-rc' into channel-improvements 2023-10-14 19:06:35 +00:00
Michael
be394b573d Channels: Larger fields, better error handling 2023-10-14 18:39:35 +00:00
Hypolite Petovan
b29a68d467 Add exception when authentication returns different user id than logged in in Settings\RemoveMe 2023-10-14 14:15:42 -04:00
Hypolite Petovan
3a42849759 Add current user's hovercard to removeme page 
- Extract Hovercard generation to Content\Widget
 2023-10-14 14:15:41 -04:00
Hypolite Petovan
e6855d3125 Refactor Delegation modules 
- Remove dependency on DI
- Group translation labels in template variables
- Reformat tempate code
 2023-10-14 14:15:40 -04:00