Friendica/friendica-github
1
0
Fork 0
mirror of https://github.com/friendica/friendica synced 2025-01-10 14:04:47 +00:00
Code Issues Projects Releases Packages Wiki Activity
39126 commits 2 branches 67 tags 247 MiB
Commit graph

3238 commits

Author SHA1 Message Date
Michael
a440619769 Prevent concurring ping requests 2024-04-10 22:25:14 +00:00
Michael
69fc2c04e4 Issue 13812: Public groups with manual request approval 2024-04-08 07:58:45 +00:00
Michael
8b75aab4ad Don't display the "follow/unfollow" vcard-link on pages meant for follow/unfollow 2024-04-07 21:30:39 +00:00
Michael
b40687081e The data for the language display is now fetched on demand 2024-04-05 10:29:27 +00:00
Michael
50b1de5959 Menu option to display the search text 2024-04-05 07:35:21 +00:00
Michael
626ab7cb54 Don't set posts to seen on channel ping 2024-04-02 21:31:57 +00:00
Éibhear Ó hAnluain
1d86146f64
Show next_try only for the deferred worker job. 2024-03-29 20:27:10 +00:00
Éibhear Ó hAnluain
751ffe6bc6
Add the next_try field to the worker job queue list 2024-03-29 20:27:10 +00:00
Michael
0fde21ff28 Improvements for channel counter 2024-03-27 11:12:44 +00:00
Michael
f537d7a64f Simplified admin frontend for features 2024-03-25 21:55:42 +00:00
Michael
67e0b6357e The visibility of network widgets can now be locked 2024-03-25 08:00:46 +00:00
Michael
200cf29a8d Configuration for widgets 2024-03-25 07:38:36 +00:00
Michael Vogel
f78b0e7c51
Merge pull request #14037 from MrPetovan/bug/warnings 
Add expected field 'uri-id' in Mastodon\Statuses\Bookmark
 2024-03-24 20:57:20 +01:00
Hypolite Petovan
b21604a720
Merge pull request #14038 from annando/feature-constants 
Constants for features
 2024-03-24 19:37:39 +00:00
Hypolite Petovan
c67225c62d Add expected field 'uri-id' in Mastodon\Statuses\Bookmark 
- Address https://github.com/friendica/friendica/issues/14026#issuecomment-2016469896
 2024-03-24 15:30:44 -04:00
Michael
c041c65c1d Comstants for features 2024-03-24 14:48:23 +00:00
Hypolite Petovan
e293de04f5 Add '$VERSION' template variable to make Friendica version available in templates 
- constant() Smarty function is deprecated
- Remove unused site-wide template variable '$APP'
- Address https://github.com/friendica/friendica/issues/14027#issuecomment-2016469408
 2024-03-24 09:20:58 -04:00
Hypolite Petovan
b4d71f1855 Remove duplicated '$baseurl' template variable declarations 
- This variable is declared for all templates in Renderer
 2024-03-24 09:11:46 -04:00
Michael
618a3153ab Issue 13910: Display the unseen counter based on the channel 2024-03-23 17:17:56 +00:00
Michael
4b695e361c Automatically close the registration when the admin is inactive 2024-03-22 04:19:40 +00:00
Michael
3d267c7b8f Possibility to mark contacts as "channel only" 2024-03-21 13:20:52 +00:00
Michael
3b419cae1e Issue 13787: Filter in circles editor by contact relation 2024-03-21 12:58:54 +00:00
Michael
11a16589da Improved Content-Type check on incoming requests 2024-03-21 09:02:25 +00:00
Michael
1ffdb19c8e Fix accounttype/nosharer url 2024-03-16 16:44:25 +00:00
Tobias Diekershoff
49b79d0457
Merge pull request #13993 from annando/statistics 
Systems added to the federation statistics
 2024-03-14 07:35:23 +01:00
Michael
8ce1797480 Systems added to the federation statistics 2024-03-14 04:33:19 +00:00
Hypolite Petovan
aac5d41fd6
Escape HTML characters in profile RSS titles 
Thanks to @r1pu5u for the tip left through the `security.txt` contact address!
 2024-03-12 20:42:00 +00:00
Michael
30f31828ae Fixes API-Issues #13985 and #13986 2024-03-12 03:12:36 +00:00
Michael
7471513269 Issue 13940: handle posts that can't be found in contexts 2024-03-03 18:32:26 +00:00
Michael
dd55ba2d77 Issue 13949: Block access via OAuth 2024-02-29 22:03:57 +00:00
Michael
821a135033 Unused OEmbed functionality is removed 2024-02-24 10:58:18 +00:00
Hypolite Petovan
a25dbf839a Remove photo user id fallback from 2021 
- Remove deprecated /photos/{nickname} fallback routes
- The contact id fallback is a lie, there's no replacement feature
 2024-02-23 22:41:18 -05:00
Hypolite Petovan
e16b6ee6e1
Check form security token in /settings/userexport module (#13929) 
* Escape HTML in the location field of a calendar event post

- This allowed script tags to be interpreted in the post display of an event.

* Add form security token check to /admin/phpinfo module

- This prevents basic XSS attacks against /admin/phpinfo

* Add form security token check to /babel module

- This prevents basic XSS attacks against /babel

* Prevent pass-through for attachments

- This addresses a straightforward Reflected XSS vulnerability if a malicious HTML/Javascript file is attached to a post through upload

* Prevent overwriting cid on event edit

- This allowed to share an event as any other user after zeroing the cid field of an existing event

* Check form security token in /settings/userexport module

- Prevents basic XSS attacks against /settings/userexport/*
 2024-02-22 21:08:32 +01:00
Hypolite Petovan
5c5d7eb04f
Fix several vulnerabilities (#13927) 
* Escape HTML in the location field of a calendar event post

- This allowed script tags to be interpreted in the post display of an event.

* Add form security token check to /admin/phpinfo module

- This prevents basic XSS attacks against /admin/phpinfo

* Add form security token check to /babel module

- This prevents basic XSS attacks against /babel

* Prevent pass-through for attachments

- This addresses a straightforward Reflected XSS vulnerability if a malicious HTML/Javascript file is attached to a post through upload

* Prevent overwriting cid on event edit

- This allowed to share an event as any other user after zeroing the cid field of an existing event
 2024-02-22 06:53:52 +01:00
Michael Vogel
71384e6f39
Issue 13909: Filter channels by network (#13924) 2024-02-20 07:11:26 +01:00
Michael Vogel
d95c9d28a8
Issue 13922: "voted" must not be null (#13923) 2024-02-20 07:09:55 +01:00
Michael Vogel
d5c0f086bd
Disallow mail addresses for registration (#13920) 
* Disallow mail addresses for registration

* Order for allow/disallow has been changed
 2024-02-19 09:33:20 +01:00
Michael Vogel
cb294cf411
Avoid problems with an empty domain in the blocklist (#13919) 
* Avoid problems with an empty domain in the blocklist

* Test code removed
 2024-02-19 07:22:19 +01:00
Hypolite Petovan
623a5be8a6 Clarify condition on offset in Mastodon\Search->searchStatuses 2024-02-18 18:48:37 -05:00
Hypolite Petovan
d1cd9a016e Move Api\Mastodon\Instance\Extended to ExtendedDescription 
- Add reference to Mastodon documentation
 2024-02-18 18:47:59 -05:00
Michael Vogel
7d5d3b3c29
Issue 13293: Endpoint /api/v1/accounts/lookup implemented (#13917) 2024-02-18 20:17:06 +01:00
Michael Vogel
6384265cbd
Issue #13823: Fix "Mutes" endpoint (#13916) 2024-02-18 20:07:51 +01:00
Michael Vogel
f12276eff8
New channel "quiet sharers" for posts from lesser frequent posters (#13913) 2024-02-18 15:54:21 +01:00
Michael Vogel
c6160a1c38
Fix API issues #13887, #13886, #13863, #13809, #13897 (#13911) 2024-02-18 15:52:30 +01:00
Michael Vogel
08fa51d0bb
Fix the handling of unhandled image types and of animations (#13904) 
* Fix the handling of unhandled image types and of animations

* Avoid warnings
 2024-02-17 15:46:48 +01:00
Michael
7d10518e94 Revert "Fix unhandled image detection" 
This reverts commit 1069cfb570.
 2024-02-17 10:50:09 +00:00
Michael
1069cfb570 Fix unhandled image detection 2024-02-17 10:46:48 +00:00
Michael Vogel
14e5b06029
Image handling reworked, new image formats added (#13900) 
* Image handling reworked, new image formats added

* Updated messages.po

* The dot is now part of the file extension

* Added WebP in install documentation

* Handle unhandled mime types

* Fixed animated picture detected
 2024-02-17 07:45:41 +01:00
Michael
fe00a3893d urlencode for tags / fix smiley replacement 2024-02-12 04:46:20 +00:00
Michael Vogel
2cc8fcc4aa
Merge pull request #13880 from MrPetovan/bug/13878-deprecate-star-list 
Deprecate use of [*] BBCode tag for list items in favor of [li]
 2024-02-11 03:13:28 +01:00