Friendica/friendica-github
1
0
Fork 0
mirror of https://github.com/friendica/friendica synced 2025-01-10 05:24:43 +00:00
Code Issues Projects Releases Packages Wiki Activity
40221 commits 2 branches 67 tags 247 MiB
Commit graph

3411 commits

Author SHA1 Message Date
Tobias Diekershoff
dc2d894a26 Merge branch 'develop' into reuse 2024-08-24 19:20:00 +02:00
Tobias Diekershoff
f597d7aac7
Merge pull request #14392 from annando/issue-14377 
Disallow posting to restricted groups
 2024-08-24 18:14:10 +02:00
Michael
dace658d5d Disallow posting to restricted groups 2024-08-24 16:05:43 +00:00
Tobias Diekershoff
30a5ef33b0 REUSE src directory 2024-08-24 15:27:00 +02:00
Michael
24209c4374 Issue 14381: Fix automated register policy on first install 2024-08-24 12:48:20 +00:00
Michael
03543f1362 Issue 14368: Fix access to the global timeline 2024-08-19 20:01:31 +00:00
Laura Hausmann
c83f9c3fcb
Return rel=self link for xrd+xml webfinger responses 2024-08-17 23:05:45 +02:00
Tobias Diekershoff
95229140f8 Merge branch 'stable' into develop 2024-08-17 17:29:18 +02:00
Michael
c3ed9ba24a Fix restricted access to public timeline 2024-08-13 19:31:42 +00:00
Tobias Diekershoff
7801d3efe8
Merge pull request #14354 from annando/issue-14121 
Issue 14121: Don't display contacts from unavailable networks via API
 2024-08-13 07:17:45 +02:00
Michael
c5844625b4 Issue 14186: Respect public restrictions for ttimeline API endpoint 2024-08-13 02:50:50 +00:00
Michael
60ebc62730 Issue 14121: Don't display contacts from unavailable networks via API 2024-08-13 01:49:27 +00:00
Michael
131e330e61 Issue 14349: Fix profile page for unrelated contacts 2024-08-11 06:44:24 +00:00
Tobias Diekershoff
66e9807876
Merge pull request #14345 from annando/stats 
Statistics: Inbound/Outbound for more protocols
 2024-08-09 13:37:10 +02:00
Michael
342c9088d3 Improved redirect for contact actions 2024-08-06 21:35:59 +00:00
Michael
7e8a6335ae Fix the datetime of the last cron execution 2024-08-06 05:47:41 +00:00
Michael
bdf95e8305 Statistics: Inbound/Outbound for more protocols 2024-08-05 20:34:17 +00:00
Tobias Diekershoff
3776cf8919
Merge pull request #14335 from annando/fix-follow 
Fix follow/unfollow
 2024-08-04 19:13:09 +02:00
Tobias Diekershoff
22dbc1e7ae
Merge pull request #14340 from annando/issue-14312 
Issue 14312: fix uimport path / restore POST endpoints
 2024-08-04 16:58:09 +02:00
Michael
efee399397 Issue 14303: Fixes %3f problem with OAuth login 2024-08-03 19:21:29 +00:00
Michael
1a6e381206 Issue 14312: fix uimport path / restore POST endpoints 2024-08-03 12:20:56 +00:00
Michael
534db0d09a Fix follow/unfollow 2024-08-02 05:50:01 +00:00
Michael
1f18e096fe Fix tests 2024-07-31 04:38:03 +00:00
Tobias Diekershoff
69ca4342a8
Merge pull request #14330 from annando/post 
ACL works again
 2024-07-30 21:33:05 +02:00
Michael
efc7efc279 Fixes "Incorrect integer value: 'true'" 2024-07-30 15:00:35 +00:00
Michael
fadff0dc84 ACL works again 2024-07-30 14:45:49 +00:00
Michael
28d67bfef0 Use "post" instead of "rawContent" 2024-07-28 09:58:02 +00:00
Michael
ef71840ddc Issue 14324: Sanitize profile input 2024-07-28 04:36:16 +00:00
Michael
e011b5956a Count inbound and outbound packets 2024-07-24 20:50:46 +00:00
Michael
3445e91781 More statistics variables added 2024-07-22 21:47:25 +00:00
Michael
53d121de51 New endpoint for monitoring services 2024-07-21 20:46:11 +00:00
Michael
096ea13812 Fix fatal error on upload 2024-07-20 15:45:05 +00:00
Michael
7dc75d585e API: The media upload (audio, video) is now possible 2024-07-16 20:08:24 +00:00
Michael
c42cff691a Issue 14295: Store the return url as hex string 2024-07-14 11:14:37 +00:00
Matthew Exon
d4aa5d9aad Return 400 error code when webfinger request omits resource parameter. Fixes #14292 2024-07-11 18:18:54 +02:00
Matthew Exon
958d0ba554 Match all schemes not just acct 2024-07-08 20:04:34 +02:00
Matthew Exon
1701156a18 Return 400 error code on malformed request. Fixes #14281 2024-07-08 19:23:20 +02:00
Michael
53f3b65887 Set posts "seen" by a worker if too much rows are unseen 2024-06-23 21:33:25 +00:00
Matthew Exon
8c60ea4640 Add addon hook for additional moderation tabs 2024-06-22 18:48:57 +02:00
Michael
28921203b7 Support for "nodeDescription" in nodeinfo 2024-06-18 05:19:38 +00:00
Michael
a27d55f6cf Issue 14231: Automatically add the relay owner as contact person 2024-06-17 03:45:24 +00:00
Michael
06bc985072 Add nodeinfo 2.1 and 2.2 2024-06-16 08:38:37 +00:00
Michael
47ab246441 Fix paging on media pages 2024-06-15 09:04:36 +00:00
Michael
8dd8ca23f7 Issue 14220: Sanitize profile data 2024-06-14 20:19:31 +00:00
Michael
259a676207 Option to reduced search scope to improve the performance 2024-06-02 09:27:05 +00:00
Michael
29187f1501 Option to define how posts with titles are transmitted 2024-06-01 08:19:09 +00:00
Michael
55cec6c61d OpenWebAuth moved to a separate class / Improved authentication handling 2024-05-28 21:59:52 +00:00
Michael
95faba4446 Fix remote login issues between Friendica instances 2024-05-26 20:04:48 +00:00
Michael
7808c89071 Issue 14102: Display "channels only" contacts in circles 2024-05-26 16:00:27 +00:00
Hypolite Petovan
e8da8c5a2b
Merge pull request #14182 from annando/magic 
Improve "magic" with Hubzilla
 2024-05-26 10:03:07 -04:00
Michael
dca93a9606 Enable "magic" with Hubzilla 2024-05-26 12:44:08 +00:00
Michael
4d3d4de972 Provide OpenWebAuth related data 2024-05-26 06:45:26 +00:00
Michael
da37516abf OpenWebAuth path is now fetched during probing 2024-05-20 19:46:29 +00:00
Hypolite Petovan
c81ee0d1c3
Merge pull request #14162 from annando/sensitive 
Respect the "sensitive" flag for posts
 2024-05-16 11:12:28 -04:00
Michael
0426572e92 Respect the "sensitive" flag for summaries 2024-05-15 12:17:06 +00:00
Hypolite Petovan
cad3a01b1c
Merge pull request #14161 from annando/error 
Fix " Call to undefined method Friendica\App::getLoggedInUserNickname"
 2024-05-15 07:56:56 -04:00
Michael
69b1958483 Fix " Call to undefined method Friendica\App::getLoggedInUserNickname" 2024-05-15 06:15:50 +00:00
Michael
1c66d49599 "Network::unparseURL" is replaced with "Uri::fromParts" 2024-05-14 21:47:57 +00:00
Michael
e12f92e516 Some more deprecated function calls are replaced 2024-05-14 19:21:25 +00:00
Michael
60f5fd8188 Many deprecated function calls are replaced 2024-05-13 21:37:15 +00:00
Michael
82327b0b06 Improve the log level display 2024-05-13 12:34:35 +00:00
Michael
5751e024c0 Request type set for all HTTP requests 2024-05-12 17:53:21 +00:00
Hypolite Petovan
a6cb3ed903 Escape output of PermissionTooltip module 
- Create AclReceivers and AddressedReceivers entities to collect contact names
- Create privacy/permission_tooltip.tpl to escape contact names
- Move PermissionTooltip module to Privacy namespace
- Thanks to @apexrabbit for the report!
 2024-05-10 11:25:59 -04:00
Hypolite Petovan
c19a68dc64 Remove DI dependency from PermissionTooltip module 
- Update PHPDoc of APContact::getByURL
 2024-05-10 11:25:27 -04:00
Michael
afff2b949f Improved user agent string 2024-05-10 09:01:43 +00:00
Michael
55fb52299d Issue 14134: Allow reshare posts from Bluesky and Tumblr 2024-05-10 04:55:57 +00:00
Hypolite Petovan
b1b2e9bd11 Rework reports query in Moderation\Reports module class 
- References to non-existent fields removed
- Added computed rules field
- Patch originally submitted by @TheTomcat14
 2024-04-24 22:43:59 -04:00
Michael
984a972e72 API: Access channels and groups via lists 2024-04-19 21:42:34 +00:00
Michael
2776411c6c "self::" should be "$this->" on non static functions 2024-04-18 05:18:44 +00:00
Michael
c82a1ed467 Performance improvements when displaying local posts 2024-04-17 19:16:47 +00:00
Michael
652802f758 Enable user defined channels upon adding/editing 2024-04-15 20:20:42 +00:00
Michael
0e79b5373b The legacy proxy functionality is removed 2024-04-15 18:58:02 +00:00
Michael
b351819986 Fix: Undefined array key "allow_cid" 2024-04-15 03:25:06 +00:00
Michael
a440619769 Prevent concurring ping requests 2024-04-10 22:25:14 +00:00
Michael
69fc2c04e4 Issue 13812: Public groups with manual request approval 2024-04-08 07:58:45 +00:00
Michael
8b75aab4ad Don't display the "follow/unfollow" vcard-link on pages meant for follow/unfollow 2024-04-07 21:30:39 +00:00
Michael
b40687081e The data for the language display is now fetched on demand 2024-04-05 10:29:27 +00:00
Michael
50b1de5959 Menu option to display the search text 2024-04-05 07:35:21 +00:00
Michael
626ab7cb54 Don't set posts to seen on channel ping 2024-04-02 21:31:57 +00:00
Éibhear Ó hAnluain
1d86146f64
Show next_try only for the deferred worker job. 2024-03-29 20:27:10 +00:00
Éibhear Ó hAnluain
751ffe6bc6
Add the next_try field to the worker job queue list 2024-03-29 20:27:10 +00:00
Michael
0fde21ff28 Improvements for channel counter 2024-03-27 11:12:44 +00:00
Michael
f537d7a64f Simplified admin frontend for features 2024-03-25 21:55:42 +00:00
Michael
67e0b6357e The visibility of network widgets can now be locked 2024-03-25 08:00:46 +00:00
Michael
200cf29a8d Configuration for widgets 2024-03-25 07:38:36 +00:00
Michael Vogel
f78b0e7c51
Merge pull request #14037 from MrPetovan/bug/warnings 
Add expected field 'uri-id' in Mastodon\Statuses\Bookmark
 2024-03-24 20:57:20 +01:00
Hypolite Petovan
b21604a720
Merge pull request #14038 from annando/feature-constants 
Constants for features
 2024-03-24 19:37:39 +00:00
Hypolite Petovan
c67225c62d Add expected field 'uri-id' in Mastodon\Statuses\Bookmark 
- Address https://github.com/friendica/friendica/issues/14026#issuecomment-2016469896
 2024-03-24 15:30:44 -04:00
Michael
c041c65c1d Comstants for features 2024-03-24 14:48:23 +00:00
Hypolite Petovan
e293de04f5 Add '$VERSION' template variable to make Friendica version available in templates 
- constant() Smarty function is deprecated
- Remove unused site-wide template variable '$APP'
- Address https://github.com/friendica/friendica/issues/14027#issuecomment-2016469408
 2024-03-24 09:20:58 -04:00
Hypolite Petovan
b4d71f1855 Remove duplicated '$baseurl' template variable declarations 
- This variable is declared for all templates in Renderer
 2024-03-24 09:11:46 -04:00
Michael
618a3153ab Issue 13910: Display the unseen counter based on the channel 2024-03-23 17:17:56 +00:00
Michael
4b695e361c Automatically close the registration when the admin is inactive 2024-03-22 04:19:40 +00:00
Michael
3d267c7b8f Possibility to mark contacts as "channel only" 2024-03-21 13:20:52 +00:00
Michael
3b419cae1e Issue 13787: Filter in circles editor by contact relation 2024-03-21 12:58:54 +00:00
Michael
11a16589da Improved Content-Type check on incoming requests 2024-03-21 09:02:25 +00:00
Michael
1ffdb19c8e Fix accounttype/nosharer url 2024-03-16 16:44:25 +00:00
Tobias Diekershoff
49b79d0457
Merge pull request #13993 from annando/statistics 
Systems added to the federation statistics
 2024-03-14 07:35:23 +01:00
Michael
8ce1797480 Systems added to the federation statistics 2024-03-14 04:33:19 +00:00
Hypolite Petovan
aac5d41fd6
Escape HTML characters in profile RSS titles 
Thanks to @r1pu5u for the tip left through the `security.txt` contact address!
 2024-03-12 20:42:00 +00:00
Michael
30f31828ae Fixes API-Issues #13985 and #13986 2024-03-12 03:12:36 +00:00
Michael
7471513269 Issue 13940: handle posts that can't be found in contexts 2024-03-03 18:32:26 +00:00
Michael
dd55ba2d77 Issue 13949: Block access via OAuth 2024-02-29 22:03:57 +00:00
Michael
821a135033 Unused OEmbed functionality is removed 2024-02-24 10:58:18 +00:00
Hypolite Petovan
a25dbf839a Remove photo user id fallback from 2021 
- Remove deprecated /photos/{nickname} fallback routes
- The contact id fallback is a lie, there's no replacement feature
 2024-02-23 22:41:18 -05:00
Hypolite Petovan
e16b6ee6e1
Check form security token in /settings/userexport module (#13929) 
* Escape HTML in the location field of a calendar event post

- This allowed script tags to be interpreted in the post display of an event.

* Add form security token check to /admin/phpinfo module

- This prevents basic XSS attacks against /admin/phpinfo

* Add form security token check to /babel module

- This prevents basic XSS attacks against /babel

* Prevent pass-through for attachments

- This addresses a straightforward Reflected XSS vulnerability if a malicious HTML/Javascript file is attached to a post through upload

* Prevent overwriting cid on event edit

- This allowed to share an event as any other user after zeroing the cid field of an existing event

* Check form security token in /settings/userexport module

- Prevents basic XSS attacks against /settings/userexport/*
 2024-02-22 21:08:32 +01:00
Hypolite Petovan
5c5d7eb04f
Fix several vulnerabilities (#13927) 
* Escape HTML in the location field of a calendar event post

- This allowed script tags to be interpreted in the post display of an event.

* Add form security token check to /admin/phpinfo module

- This prevents basic XSS attacks against /admin/phpinfo

* Add form security token check to /babel module

- This prevents basic XSS attacks against /babel

* Prevent pass-through for attachments

- This addresses a straightforward Reflected XSS vulnerability if a malicious HTML/Javascript file is attached to a post through upload

* Prevent overwriting cid on event edit

- This allowed to share an event as any other user after zeroing the cid field of an existing event
 2024-02-22 06:53:52 +01:00
Michael Vogel
71384e6f39
Issue 13909: Filter channels by network (#13924) 2024-02-20 07:11:26 +01:00
Michael Vogel
d95c9d28a8
Issue 13922: "voted" must not be null (#13923) 2024-02-20 07:09:55 +01:00
Michael Vogel
d5c0f086bd
Disallow mail addresses for registration (#13920) 
* Disallow mail addresses for registration

* Order for allow/disallow has been changed
 2024-02-19 09:33:20 +01:00
Michael Vogel
cb294cf411
Avoid problems with an empty domain in the blocklist (#13919) 
* Avoid problems with an empty domain in the blocklist

* Test code removed
 2024-02-19 07:22:19 +01:00
Hypolite Petovan
623a5be8a6 Clarify condition on offset in Mastodon\Search->searchStatuses 2024-02-18 18:48:37 -05:00
Hypolite Petovan
d1cd9a016e Move Api\Mastodon\Instance\Extended to ExtendedDescription 
- Add reference to Mastodon documentation
 2024-02-18 18:47:59 -05:00
Michael Vogel
7d5d3b3c29
Issue 13293: Endpoint /api/v1/accounts/lookup implemented (#13917) 2024-02-18 20:17:06 +01:00
Michael Vogel
6384265cbd
Issue #13823: Fix "Mutes" endpoint (#13916) 2024-02-18 20:07:51 +01:00
Michael Vogel
f12276eff8
New channel "quiet sharers" for posts from lesser frequent posters (#13913) 2024-02-18 15:54:21 +01:00
Michael Vogel
c6160a1c38
Fix API issues #13887, #13886, #13863, #13809, #13897 (#13911) 2024-02-18 15:52:30 +01:00
Michael Vogel
08fa51d0bb
Fix the handling of unhandled image types and of animations (#13904) 
* Fix the handling of unhandled image types and of animations

* Avoid warnings
 2024-02-17 15:46:48 +01:00
Michael
7d10518e94 Revert "Fix unhandled image detection" 
This reverts commit 1069cfb570.
 2024-02-17 10:50:09 +00:00
Michael
1069cfb570 Fix unhandled image detection 2024-02-17 10:46:48 +00:00
Michael Vogel
14e5b06029
Image handling reworked, new image formats added (#13900) 
* Image handling reworked, new image formats added

* Updated messages.po

* The dot is now part of the file extension

* Added WebP in install documentation

* Handle unhandled mime types

* Fixed animated picture detected
 2024-02-17 07:45:41 +01:00
Michael
fe00a3893d urlencode for tags / fix smiley replacement 2024-02-12 04:46:20 +00:00
Michael Vogel
2cc8fcc4aa
Merge pull request #13880 from MrPetovan/bug/13878-deprecate-star-list 
Deprecate use of [*] BBCode tag for list items in favor of [li]
 2024-02-11 03:13:28 +01:00
Michael Vogel
52825cb4c4
User setting to disable blurring of sensitive pictures (#13883) 2024-02-10 09:50:49 +01:00
Hypolite Petovan
5b5c9ddc74 Deprecate use of [*] BBCode tag for list items in favor of [li] 
- It is conflicting with Markdown syntax
 2024-02-09 20:33:42 -05:00
Michael
caa7b6f326 "sensitive" is added to the API 2024-02-06 16:30:46 +00:00
Michael
0a6dff0618 Sensitive previews are now blurred 2024-02-06 16:15:58 +00:00
Michael
7924085c94 Issue 13844: User defined channels based on the network 2024-02-04 07:14:57 +00:00
Michael
672186e549 Additional revert 2024-02-03 11:06:05 +00:00
Michael
053dfb3e2b Revert test changes / added saving of languages 2024-02-03 11:04:42 +00:00
Michael
f1efb8d277 Fix: Saving of channel languages 2024-02-03 11:01:17 +00:00
Michael
885b3a12b9 Search for tags and media in full text when doing full text searches 2024-02-02 16:05:24 +00:00
Michael
7faa42882b language field renamed to "language" 2024-02-02 07:05:39 +00:00
Michael
fc22a3e83f Unify searchindex table with engagement table 2024-02-01 23:08:53 +00:00
Michael Vogel
6a6e2cd2a2
Avoid duplicated post button on the contact conversation page (#13867) 
* Avoid duplicated post button on the contact conversation page

* Updated messages.po
 2024-02-01 19:47:43 +01:00
Michael Vogel
665316c14d
Issue 13859: Posts to a group in "Vier" is now possible (#13864) 2024-01-31 19:09:57 +01:00
Michael
c8087a7827 Merge remote-tracking branch 'upstream/develop' into size 2024-01-30 15:24:38 +00:00
Raroun
ed30d888fa
Update src/Module/Register.php 
Co-authored-by: Hypolite Petovan <hypolite@mrpetovan.com>
 2024-01-30 15:28:49 +01:00
Raroun
606bd0be60
Check if nickname contains only US-ASCII and do not start with a digit 
Update Register.php
 2024-01-30 15:18:11 +01:00
Michael
3fe4991fcf Filter user defined channels by size 2024-01-30 10:05:05 +00:00
Michael
d2702dfe9c Use centralized functions for tag string handling 2024-01-28 06:32:55 +00:00
Michael
f1173853f3 Merge remote-tracking branch 'upstream/develop' into discover 2024-01-26 13:54:25 +00:00
Michael
ef8461733b The "nosharer" widget is added to the network 2024-01-26 13:51:20 +00:00
Michael Vogel
09edf251ee
Anti spam measures against hashtag spam (#13855) 2024-01-25 19:41:07 +01:00
Michael
08ee1e1f63 New channel option "discover" 2024-01-25 10:50:28 +00:00
Michael
dc8b87e008 The account overview is now grouped by the account type 2024-01-23 22:05:14 +00:00
Michael
6389133575 Expiry post search index entries 2024-01-21 16:24:59 +00:00
Michael
ee9a68e40c New table "post-searchindex" 2024-01-17 19:46:22 +00:00
Michael
23b247d1c3 Merge remote-tracking branch 'upstream/develop' into channel-relay 2024-01-15 19:41:26 +00:00
Michael
f83f61f7ac "ANY_VALUE" is removed 2024-01-15 16:45:24 +00:00