1
0
Fork 0
mirror of https://github.com/sbrl/Pepperminty-Wiki.git synced 2024-10-31 21:33:00 +00:00
Commit graph

106 commits

Author SHA1 Message Date
7b6cbbe821
feature-upload: ensure that Javascript in SVG images does not execute
My first time using Content-Security-Policy. Yay!

It's real powerful, but I have yet to find a good generator to help me 
create more complex policies. In this case, the policy allows everything 
by default, but disables all Javascript.

This new Content-Security-Policy header is served for all image 
previews.
2021-09-21 14:04:42 +01:00
227a7ac662
feature-upload: fix potential XSS attacks 2021-09-03 00:42:36 +01:00
fab1b52882
Bugfix: fix error handling logic 2021-08-15 21:46:19 +01:00
e7b3f5e0d0
feature-upload: add function / class existence checks where functions from php extensions are required 2021-08-06 01:49:59 +01:00
cfd087d919
Add MPL 2.0 short header to core code files 2020-09-23 23:22:39 +01:00
b25c144f1e
Bump module versions 2020-08-06 15:29:15 +01:00
e3e2a01435
Improve PDF preview when embedded in pages - fixes #202 2020-08-06 15:28:24 +01:00
a1b962a7b5
feature-upload: fix the dot problem 2020-04-21 21:18:50 +01:00
d294c7e89a
feature-upload: squash unlink() warning when file fails to upload 2020-04-21 20:08:17 +01:00
ad8d05a3eb
fix whitespace 2020-04-18 13:00:50 +01:00
Sean Feeney
171f9f4874
patching PHP 7.3.11 issue and double dot in file uploads 2020-04-18 13:00:50 +01:00
b4c0782e58
bool -> boolean 2020-01-05 20:59:21 +00:00
6d19af2e1b
Refactor errorimage into core & greatly improve it 2019-10-20 21:42:13 +01:00
a67b67817f
[upload] Make comments serenata-compatible 2019-08-15 22:55:50 +01:00
425203e0ec
Smal comment update.
Be the first to check out the new STA system in development! 
https://repl.it/@sbrl/Peppermint-STAS

STAS: Search Term Analysis System

It's currently being tested externally, before being folded into 
Pepperminty Wiki itself. Want a feature that's currently missing? Get in 
touch!
2019-08-14 01:18:53 +01:00
7df4c51834
Add download button for unsupported file types 2019-06-01 21:37:35 +01:00
02bc1ea7a2
Implement initial pdf preview 2019-06-01 20:25:44 +01:00
a5572bcbd4
Squash a warning when uploading a file 2019-06-01 19:57:03 +01:00
712e95474c
Minify the pageindex by default, but also add a setting to control this 2019-06-01 15:55:48 +01:00
fb25845d8c
file upload: fix help text 2019-05-24 21:50:27 +01:00
5b670f5981
Refactor method names in page renderer 2019-01-27 22:56:51 +00:00
259b866ec9
Hyperlink image previews to original image - fixes #153. 2018-04-07 13:38:45 +01:00
391efeb72b
Comment fix 2018-02-05 15:10:35 +00:00
160800def9
_Another_ fix for the short embed code box 2018-01-27 13:54:39 +00:00
fba0636938
Bugfix: Fix getsvgsize in some cases 2018-01-27 13:38:53 +00:00
4f9f3cb395
Make view source message more meaningful when editing is disabled & disallow uploads when editing is disdabled 2017-12-31 23:17:25 +00:00
02585fd960
Bugfix: escape short markdown embed code contents 2017-12-30 13:44:54 +00:00
0d4675ea41
Fix XXE DDOs attack when uploading a malicious SVG (ref #152 2017-12-13 20:20:34 +00:00
582eda24d7
Fix new copy driver on pages without a copy button 2017-12-13 09:48:29 +00:00
e0aeda8b17
Add short markdown embed code input box to file pages 2017-12-12 23:00:29 +00:00
307d1bc889 Document *all* teh things.
Well, _almost_ all teh things :P I'm experimenting with phpDocumentor,
so expect some better module api docs to appear sometime soon :D
2017-09-15 23:06:10 +01:00
f393fa88ea Fix bugs on file upload page 2017-08-27 16:48:36 +01:00
Isabeau Kisler
285d39e2ac Fix file preview paths (#147)
* Catch errors when uploading files
Check if error code is greater than 0, and generate appropriate error message.

* Fix File Preview Paths
In cases where the wiki does not sit in the root directory, grab the current filepath of the request and use that to generate a valid filepath.

* Reworded error a bit

* Fix File Preview Paths

Adjust this to work with both relative and absolute file paths
2017-07-29 10:31:23 +01:00
eb137df2b4 Fix apidoc comments & update api docs 2017-06-28 09:45:13 +01:00
967eb1ad13 Add section to help on commenting 2017-06-18 15:53:21 +01:00
6bc2259139 Send last-modified header with generatetd previews 2017-06-18 14:52:04 +01:00
1dde8b0d97 Fix link in recent changes to avatar uploads 2017-06-18 14:16:03 +01:00
3fe64ef3c6 Fix insivible warning when uploading avatar 2017-06-18 14:13:38 +01:00
1b25416b6b Tweak & update avatar upload logic - we're nearly there~! :D 2017-06-17 15:36:11 +01:00
7c5da3f6a9 Write initial avatar uploading engine! We've still got a few things left to do, though - like creating infrastructure fort he avatar to actually be used. 2017-05-23 20:31:34 +01:00
dac4684c14 Add default param to errorimage() 2017-04-17 12:44:27 +01:00
312de4b341 Add tab indexing to file upload form. Fixes #120 2016-11-20 09:41:23 +00:00
f267c9d5a0 Add header to upload file page 2016-10-18 19:07:44 +01:00
06a3a4a19f Suggest appropriate filename when saving a generated preview image. Fixes #105. 2016-10-18 18:54:24 +01:00
28f79e5e2d Fix spelling mistake on file preview pages 2016-08-22 17:46:13 +01:00
6267fe79d4 Autofill the name box on the file upload page when a new file is selected 2016-08-22 17:24:22 +01:00
2861731c83 Fiddle with the file uploader to fix #100. 2016-08-22 14:56:34 +01:00
ad6a12da5b Finish initial settings rewrite 2016-06-22 09:13:32 +01:00
60505dfb0a Finish documentation. 2016-06-15 19:20:03 +01:00
c76602f5de Document a bunch more stuff 2016-06-13 11:55:40 +01:00