Pepperminty-Wiki

mirror of https://github.com/sbrl/Pepperminty-Wiki.git synced 2024-10-31 21:33:00 +00:00

Author	SHA1	Message	Date
Starbeamrainbowlabs	2d6bf1df70	feature-user-preferences: fiix potential xss vulnerabilities	2021-09-03 01:01:38 +01:00
Starbeamrainbowlabs	738715af43	core \| render_pagename, render_username: fix potential authenticated XSS attack	2021-09-02 23:04:26 +01:00
Starbeamrainbowlabs	96546184dc	Implement simple slugify function I suspect I may have to fix a number of issues here.....	2021-09-02 21:19:31 +01:00
Starbeamrainbowlabs	2e54a8a4d5	Improve resilience and error output if the PHP Zip extension is not installed on first run	2021-07-20 23:15:48 +01:00
Starbeamrainbowlabs	cfd087d919	Add MPL 2.0 short header to core code files	2020-09-23 23:22:39 +01:00
Starbeamrainbowlabs	42971f573d	Bugfix: Fix invalid HTML generated by new hide_email() logic	2020-08-31 20:56:34 +01:00
Starbeamrainbowlabs	93bff09422	Update hide_email implementation It now requires Javascript to decode the email address. If this is a problem for whatever reason, please get in touch by opening an issue. I take accessibility very seriously.	2020-08-09 23:53:29 +01:00
Starbeamrainbowlabs	e710d55883	makepathsafe: don't allow dots on their own Specifically, we don't want a single dot as a page name. This is because '.' has a special meaning on Linux: The current directory.	2020-08-09 13:03:40 +01:00
Starbeamrainbowlabs	5fed4cb5ab	Bugfixx: improve rebustness of new filepath_to_pagename and pageindex rebuilder	2020-08-08 22:18:12 +01:00
Starbeamrainbowlabs	c0fa5b8ae4	Finish improvements to pageindex rebuilder also squash warning from stats engine during the firstrun wizard	2020-08-08 22:01:12 +01:00
Starbeamrainbowlabs	75c15d66b2	page-move: Ensure that the new subpage actually exists - fixes #201	2020-08-06 15:47:41 +01:00
Starbeamrainbowlabs	607c9f8529	minify_css: minor improvements ", " -> "," "0." -> "."	2020-07-28 21:46:00 +01:00
Starbeamrainbowlabs	1ec1705a62	Standardise error_log prefixes to aid clarity in multi-wiki environments	2020-07-28 19:42:41 +01:00
Starbeamrainbowlabs	7d93aa6a10	Overhaul the way we use setcookie() - Use SameSite=Strict to avoid issues in modern browsers & prevent session-stealing attacks - Use Secure when requests run over HTTPS by default to avoid downgrade-based session-stealing attacks - Add warning for PHP <= 7.2, as it doesn't support SameSite in setcookie().	2020-07-28 19:40:22 +01:00
Starbeamrainbowlabs	45c2fa56cd	Add more type hints, and fail to get Server-Timing working. Note to self: If we do end up implementing it, remember that $env->perfdata does containsensitive information sometimes, so we might need to revise our approach a bit (e.g. only sending it to authenticated admins)	2020-07-28 02:10:28 +01:00
Starbeamrainbowlabs	1813fe73e2	Add absolute redirects	2020-07-07 21:10:38 +01:00
Starbeamrainbowlabs	fa81f0df25	Implement basic Pepperminty Wiki CLI & shell :D The BkTree tester gave me the idea. No longer will you have to hope that search indexing will complete in time and adjust the maximum execution time for larger wikis..... when that's implemented.	2020-03-10 01:47:40 +00:00
Starbeamrainbowlabs	0be001990f	Bugfix: fix new url_stem() function	2020-01-05 21:07:59 +00:00
Starbeamrainbowlabs	b4c0782e58	bool -> boolean	2020-01-05 20:59:21 +00:00
Starbeamrainbowlabs	322f956a9f	Add url_stem() & email address verification system	2020-01-05 20:49:20 +00:00
Starbeamrainbowlabs	86a9828565	Improve render_timestamp()	2019-12-23 18:30:06 +00:00
Starbeamrainbowlabs	1686ee33d3	Add new email_debug_dontsend setting	2019-12-23 17:53:46 +00:00
Starbeamrainbowlabs	1602fab2c3	Correctly handle utf-8 in email_user()	2019-12-23 17:39:18 +00:00
Starbeamrainbowlabs	1ef86f117c	Bugfix: Make errorimage() multibyte-safe	2019-10-22 21:44:20 +01:00
Starbeamrainbowlabs	6d19af2e1b	Refactor errorimage into core & greatly improve it	2019-10-20 21:42:13 +01:00
Starbeamrainbowlabs	e91852ca68	Finish implementing $settings->css_custom	2019-09-29 16:09:27 +01:00
Starbeamrainbowlabs	6120fa8842	Refactor css minification code out into own function	2019-09-29 15:54:40 +01:00
Starbeamrainbowlabs	edf1be5801	Fix a huge number of bugs in the new search system, but it's not ready just yet	2019-08-22 21:38:17 +01:00
Starbeamrainbowlabs	b6a986a075	[apidoc] @since -> @apiVersion	2019-08-08 18:32:24 +01:00
Starbeamrainbowlabs	712e95474c	Minify the pageindex by default, but also add a setting to control this	2019-06-01 15:55:48 +01:00
Starbeamrainbowlabs	c2b8c152bc	Implement unpacking logic	2019-04-06 13:15:52 +01:00
Starbeamrainbowlabs	f63553fb92	Split core.php up into 16(!) different files. This has been a looong time in coming. 1.9K links is _far_ too much for any file.	2019-03-02 16:45:34 +00:00

32 commits