Friendica/friendica-github
1
0
Fork 0
mirror of https://github.com/friendica/friendica synced 2025-03-01 09:08:30 +00:00
Code Issues Projects Releases Packages Wiki Activity
39611 commits 2 branches 67 tags 255 MiB
Commit graph

3614 commits

Author SHA1 Message Date
Michael
df0440ea97 Issue 14175: Fix problems with upper case host names 2024-05-25 19:00:53 +00:00
Michael
da37516abf OpenWebAuth path is now fetched during probing 2024-05-20 19:46:29 +00:00
Michael
846addf7b3 Improved streams detection 2024-05-16 15:26:46 +00:00
Michael
0426572e92 Respect the "sensitive" flag for summaries 2024-05-15 12:17:06 +00:00
Michael
1c66d49599 "Network::unparseURL" is replaced with "Uri::fromParts" 2024-05-14 21:47:57 +00:00
Michael
e12f92e516 Some more deprecated function calls are replaced 2024-05-14 19:21:25 +00:00
Michael
60f5fd8188 Many deprecated function calls are replaced 2024-05-13 21:37:15 +00:00
Michael
21fc28029a Probing for Zot improved and Pumpio removed 2024-05-13 00:58:54 +00:00
Michael
5751e024c0 Request type set for all HTTP requests 2024-05-12 17:53:21 +00:00
Hypolite Petovan
d788cb82cc
Merge pull request #14148 from annando/summary 
Use the field for the summary instead of the "abstract" element
 2024-05-11 18:14:32 -04:00
Michael
e43f96740b Use the field for the summary instead of the "abstract" element 2024-05-11 20:14:01 +00:00
Michael
567292533e Issue 11963: Set Permissions for attachments 2024-05-11 19:19:18 +00:00
Michael Vogel
0be622e049
Merge pull request #14139 from MrPetovan/bug/apexrabbit-vulns 
Fix a couple of stored XSS vulnerabilities
 2024-05-11 14:03:24 +02:00
Hypolite Petovan
40949483f3 Fix wrong return value in Item::gettopLevelParent() 
- Address https://github.com/friendica/friendica/issues/14025#issuecomment-2105033182
 2024-05-10 21:54:19 -04:00
Hypolite Petovan
c19a68dc64 Remove DI dependency from PermissionTooltip module 
- Update PHPDoc of APContact::getByURL
 2024-05-10 11:25:27 -04:00
Michael
afff2b949f Improved user agent string 2024-05-10 09:01:43 +00:00
Michael
e7b861388d Issue 14132: Title for videos 2024-05-10 05:42:45 +00:00
Michael
c82a1ed467 Performance improvements when displaying local posts 2024-04-17 19:16:47 +00:00
Tobias Diekershoff
9626a76b18
Merge pull request #14083 from annando/issue-13812 
Issue 13812: Public groups with manual request approval
 2024-04-09 18:46:44 +02:00
Michael
69fc2c04e4 Issue 13812: Public groups with manual request approval 2024-04-08 07:58:45 +00:00
Michael
d7e8ee51ae Use similar values for generator and system actor 2024-04-08 06:33:03 +00:00
Michael
a2da42640c Issue 14055: Set link to group server for group posts 2024-04-07 15:46:55 +00:00
Michael
50b1de5959 Menu option to display the search text 2024-04-05 07:35:21 +00:00
Michael
0d4f956fba Avoid exception "Unable to retrieve the host in URL" in the search 2024-04-03 07:51:02 +00:00
Michael
c041c65c1d Comstants for features 2024-03-24 14:48:23 +00:00
Michael
b72e32a842 Add a link to the post if "no preview" is selected 2024-03-24 06:46:48 +00:00
Michael
7a0c5d141e Issue 13714: Support for "commentsEnabled" and "capabilities" 2024-03-21 17:11:20 +00:00
Michael
3d267c7b8f Possibility to mark contacts as "channel only" 2024-03-21 13:20:52 +00:00
Michael Vogel
e6c23e69cc
Apply suggestions from code review 
Co-authored-by: Hypolite Petovan <hypolite@mrpetovan.com>
 2024-03-16 09:19:57 +01:00
Michael
b75fdbbd32 Fix handling of relais contact updates 2024-03-16 05:30:21 +00:00
Michael
eaddf5318a Fix: "unsearchable" is now stored 2024-03-15 06:07:47 +00:00
Hypolite Petovan
57187f26ae
Merge pull request #13978 from annando/issue-13972 
Default behaviour for adding media types
 2024-03-12 20:06:24 +00:00
Michael
fda832cd83 "network/group" fragments are removed 2024-03-12 08:02:00 +00:00
Michael
00b325d521 Default behaviour for adding media types 2024-03-09 15:45:38 +00:00
Michael
d9bedbb473 Centralized logging for a wrong JSON content-type 2024-03-08 13:48:21 +00:00
Michael
435b30be11 Check for the content type before fetching the content 2024-03-07 22:16:52 +00:00
Michael
67696d08da Set default value for max video height 2024-03-07 14:22:40 +00:00
Michael
68c2bdb98e Change the last activity for delegation parents and siblings as well 2024-03-07 06:12:36 +00:00
Hypolite Petovan
111df607bc Don't call mb_strlen() on $body if it isn't set in Model\Post\Counts 
- Address https://github.com/friendica/friendica/issues/13761#issuecomment-1978354153
 2024-03-06 12:01:25 -05:00
Michael
31b92b16ed Reduce the height of portrait videos 2024-03-05 21:25:00 +00:00
Michael
ba07172a65 Compare with the utc value 2024-03-05 14:24:40 +00:00
Michael
72e045e744 Improved assigning of "last-activity" and "login_date" 2024-03-05 14:06:26 +00:00
Michael
52cc8ab73b Issue 13765: Fixed creation of self user contact for approval 2024-03-04 07:30:04 +00:00
Michael
ae37c44cc0 Oembed: Some more cleanup 2024-03-03 18:06:25 +00:00
Michael
bae7644d6f Issue 13955: Check for publish date upon receival 2024-03-02 19:21:14 +00:00
Michael
5df1ead001 Issue 13953: Fix warning during postupdate 2024-03-01 08:41:12 +00:00
Michael
20fd25258a Accidentally changes are reverted 2024-02-24 11:35:32 +00:00
Michael
00bb538fd0 Merge branch '2024.03-rc' of https://github.com/friendica/friendica into 2024.03-rc 2024-02-24 11:01:44 +00:00
Michael
12bdbaaba8 OEmbed: Complete cleanup 2024-02-24 11:01:34 +00:00
Hypolite Petovan
5c5d7eb04f
Fix several vulnerabilities (#13927) 
* Escape HTML in the location field of a calendar event post

- This allowed script tags to be interpreted in the post display of an event.

* Add form security token check to /admin/phpinfo module

- This prevents basic XSS attacks against /admin/phpinfo

* Add form security token check to /babel module

- This prevents basic XSS attacks against /babel

* Prevent pass-through for attachments

- This addresses a straightforward Reflected XSS vulnerability if a malicious HTML/Javascript file is attached to a post through upload

* Prevent overwriting cid on event edit

- This allowed to share an event as any other user after zeroing the cid field of an existing event
 2024-02-22 06:53:52 +01:00