1
0
Fork 0
mirror of https://github.com/sbrl/Pepperminty-Wiki.git synced 2024-11-24 17:13:01 +00:00
Commit graph

34 commits

Author SHA1 Message Date
525dbaa3e1
page history: fix username rendering 2021-09-03 02:01:07 +01:00
0a950425e1
Bugfix: fix new slugify function 2021-09-03 01:55:05 +01:00
2d6bf1df70
feature-user-preferences: fiix potential xss vulnerabilities 2021-09-03 01:01:38 +01:00
738715af43
core | render_pagename, render_username: fix potential authenticated XSS attack 2021-09-02 23:04:26 +01:00
96546184dc
Implement simple slugify function
I suspect I may have to fix a number of issues here.....
2021-09-02 21:19:31 +01:00
2e54a8a4d5
Improve resilience and error output if the PHP Zip extension is not installed on first run 2021-07-20 23:15:48 +01:00
cfd087d919
Add MPL 2.0 short header to core code files 2020-09-23 23:22:39 +01:00
42971f573d
Bugfix: Fix invalid HTML generated by new hide_email() logic 2020-08-31 20:56:34 +01:00
93bff09422
Update hide_email implementation
It now requires Javascript to decode the email address. If this is a 
problem for whatever reason, please get in touch by opening an issue. I 
take accessibility very seriously.
2020-08-09 23:53:29 +01:00
e710d55883
makepathsafe: don't allow dots on their own
Specifically, we don't want a single dot as a page name. This is because 
'.' has a special meaning on Linux: The current directory.
2020-08-09 13:03:40 +01:00
5fed4cb5ab
Bugfixx: improve rebustness of new filepath_to_pagename and pageindex rebuilder 2020-08-08 22:18:12 +01:00
c0fa5b8ae4
Finish improvements to pageindex rebuilder
also squash warning from stats engine during the firstrun wizard
2020-08-08 22:01:12 +01:00
75c15d66b2
page-move: Ensure that the new subpage actually exists - fixes #201 2020-08-06 15:47:41 +01:00
607c9f8529
minify_css: minor improvements
", " -> ","
"0." -> "."
2020-07-28 21:46:00 +01:00
1ec1705a62
Standardise error_log prefixes to aid clarity in multi-wiki environments 2020-07-28 19:42:41 +01:00
7d93aa6a10
Overhaul the way we use setcookie()
- Use SameSite=Strict to avoid issues in modern browsers & prevent 
session-stealing attacks
 - Use Secure when requests run over HTTPS by default to avoid 
downgrade-based session-stealing attacks
 - Add warning for PHP <= 7.2, as it doesn't support SameSite in 
setcookie().
2020-07-28 19:40:22 +01:00
45c2fa56cd
Add more type hints, and fail to get Server-Timing working.
Note to self: If we do end up implementing it, remember that 
$env->perfdata does containsensitive information sometimes, so we might 
need to revise our approach a bit (e.g. only sending it to authenticated 
admins)
2020-07-28 02:10:28 +01:00
1813fe73e2
Add absolute redirects 2020-07-07 21:10:38 +01:00
fa81f0df25
Implement basic Pepperminty Wiki CLI & shell :D
The BkTree tester gave me the idea.

No longer will you have to hope that search indexing will complete in 
time and adjust the maximum execution time for larger wikis..... when 
that's implemented.
2020-03-10 01:47:40 +00:00
0be001990f
Bugfix: fix new url_stem() function 2020-01-05 21:07:59 +00:00
b4c0782e58
bool -> boolean 2020-01-05 20:59:21 +00:00
322f956a9f
Add url_stem() & email address verification system 2020-01-05 20:49:20 +00:00
86a9828565
Improve render_timestamp() 2019-12-23 18:30:06 +00:00
1686ee33d3
Add new email_debug_dontsend setting 2019-12-23 17:53:46 +00:00
1602fab2c3
Correctly handle utf-8 in email_user() 2019-12-23 17:39:18 +00:00
1ef86f117c
Bugfix: Make errorimage() multibyte-safe 2019-10-22 21:44:20 +01:00
6d19af2e1b
Refactor errorimage into core & greatly improve it 2019-10-20 21:42:13 +01:00
e91852ca68
Finish implementing $settings->css_custom 2019-09-29 16:09:27 +01:00
6120fa8842
Refactor css minification code out into own function 2019-09-29 15:54:40 +01:00
edf1be5801
Fix a *huge* number of bugs in the new search system, but it's not ready just yet 2019-08-22 21:38:17 +01:00
b6a986a075
[apidoc] @since -> @apiVersion 2019-08-08 18:32:24 +01:00
712e95474c
Minify the pageindex by default, but also add a setting to control this 2019-06-01 15:55:48 +01:00
c2b8c152bc
Implement unpacking logic 2019-04-06 13:15:52 +01:00
f63553fb92
Split core.php up into 16(!) different files.
This has been a looong time in coming. 1.9K links is _far_ too much for 
any file.
2019-03-02 16:45:34 +00:00