Michael
440da8a9f4
eol
2019-10-12 14:07:22 +00:00
Michael
c1ab93a5d8
Strings.php: Spaces are transformed to Tabs.
2019-10-12 10:28:18 +00:00
Hypolite Petovan
2c2beb5c0a
Revert Util\Strings::escapeHtml changes from #7725
...
- Breaks display of inserted mentions
2019-10-11 22:19:20 -04:00
dew-git
e1e1d26b5b
Revert random_int changes.
2019-10-11 00:00:15 -08:00
dew-git
b5dac16def
Comply with coding style.
2019-10-10 20:50:51 -08:00
dew-git
811cdcdfcb
Fix security vulnerbilities.
...
Fix possible length extension attack, predicable generators, timing attacks on hash comparision and improved formatting.
2019-10-10 15:21:41 -08:00
Michael
83b00ef308
New function "isAuthenticated"
2019-09-28 18:09:11 +00:00
Michael
6e9026e033
Renamed function, beginning to replace the "remote_user" function
2019-09-28 09:36:41 +00:00
Michael
3dd94355b7
Fix permissions when viewing photos, applying same fix to items as well
2019-09-27 05:49:23 +00:00
Michael
704cdf1b5a
New function to store the "remote" session value / making the changes work
2019-09-26 04:47:42 +00:00
Michael
5254147ccc
Fix "redir" loop
2019-09-23 22:13:20 +00:00
Hypolite Petovan
f51b275b17
Add parameter type hints in Temporal::getDateofBirthField
2019-09-21 10:52:55 -04:00
Hypolite Petovan
118e737a49
Remove dependency to App object in Temporal::getDateofBirthField
2019-09-21 05:15:52 -04:00
Philipp Holzer
df7ec0cdf7
php notice fixings
...
addons:
- bufferapp (missing errorcode)
- twitter (wrong field name 'nickname')
core:
- bbcode (incomplete attachementdata)
- crypto (uninitialized key)
2019-08-27 08:27:07 +02:00
Philipp Holzer
08be92a862
Moved BaseURL to App namespace (because similar type as Arguments/Modules/Modes)
2019-08-15 17:23:00 +02:00
Michael
b4c673a620
We now use a central function for fetching the postdata
2019-07-30 22:26:01 +00:00
Philipp Holzer
6c2cf494b5
Remove DependencyFactory
...
- Include all necessary classes in `dependencies.config.php`
- Add DI-reference to BaseObject (acts as a global registry)
- Refactor all static "init()" methods to use the global registry
- Refactor Logging for Worker-Logger a little bit
2019-07-27 23:54:12 +02:00
Hypolite Petovan
46f7b79c7d
Switch server blocklist check to case-insensitive shell wildcard
2019-07-25 22:36:25 -04:00
Hypolite Petovan
3812d3d445
Enable two-factor app-specific passwords for ejabberd
2019-07-23 05:11:33 -04:00
Philipp Holzer
55999730e0
Introduce DICE
...
- Adding dice library
- Adding dependency config
- Removing Factories
- Refactoring App\Mode constructor
- Refactoring App\Router constructor
- Refactoring BasePath for DI usage
- Refactoring ConfigFileLoader constructor
- Refactoring Profiler constructor
- Adjust entrypoints (index, console, worker, ..)
- Adding functional test for DI
- Fix tests because of refactorings
2019-07-21 01:22:10 +02:00
Philipp Holzer
346290cc23
Reverted indention
2019-07-16 21:54:22 +02:00
Philipp Holzer
46a260aa01
Fix indentations
2019-07-16 20:19:56 +02:00
Philipp Holzer
92fb0a82ca
Dynamic config loading
...
- Move settings, defaults and dbstructure to directory 'static'
- Dynamic loading of config files (after the static loading)
- Filter out '-sample.config.php' and '-sample.ini.php' files
- Remove unnecessary ConfigFileManager
- Move ConfigFileLoader to Utils
- Add tests for multi-loading for INI, config and sample-filtering
2019-07-16 20:16:43 +02:00
Philipp Holzer
c82127ffb7
Splitting ConfigCache & PConfigCache
...
- Remove IConfigCache & IPConfigCache
- Add new PConfigCache
- Add missing Logger::init() (bugfixing tests)
2019-07-12 22:53:37 +02:00
Philipp Holzer
7c54edd4b4
Fixing Network::post() caused by wrong argument
2019-06-10 19:34:16 +02:00
Michael
7bbacd3878
Fixes PR 7242: Now the "post" function works again
2019-06-10 16:58:00 +00:00
Philipp Holzer
cc7444d84d
Move internal recursion-counter to the end of all cur/fetchUrl parameters
2019-06-10 14:34:54 +02:00
Philipp Holzer
10683a43c8
Add typed parameter for methods in Friendica\Util\Network
2019-06-10 12:06:41 +02:00
Dean Townsley
19e99f7e81
Use accessing function for session variable
2019-06-09 21:06:42 -05:00
Dean Townsley
5c93db4097
remove leftover logging
2019-06-09 21:06:42 -05:00
Dean Townsley
af85e498ce
expand permission check to remote array
...
This check was preventing multiple private images from different
users on the same server from loading on the same page.
It was only checking for permission for the single id returned by the
remote_user() function rather than the multiple possible autheniticated
id's stored in the remote arry session variable.
2019-06-09 21:06:42 -05:00
Philipp Holzer
4c5dd9f47c
Add more Strings::isHex() checks to photos
2019-05-30 10:30:15 +02:00
Philipp Holzer
3de540d1d1
Adding hexadecimal check for photos
...
see https://github.com/friendica/friendica/issues/6917#issuecomment-492798238
2019-05-29 20:28:25 +02:00
Hypolite Petovan
4e207ef786
Enable addon using emailer hooks to skip default call to mail()
2019-05-26 21:36:09 -04:00
Hypolite Petovan
956ae6241d
Add exception message chain, string trace and original object to JsonLD normalize error logging
2019-05-20 15:28:54 -04:00
Hypolite Petovan
3395f56036
Add Unicode support to autolink regular expression
...
- Explicitly exclude non-breaking spaces from URLs as \s doesn't include them
2019-05-19 18:51:55 -04:00
Michael
6f3019ecdd
Revert PR 7158 since it breaks umlauts
2019-05-19 09:34:49 +00:00
Hypolite Petovan
8fb9722cdc
Replace htmlspecialchars_decode with html_entity_decode in XML::unescape
...
- Replace htmlspecialchars with htmlentities in XML::escape
- This allows for converting all entities from Diaspora messages to regular characters
2019-05-18 13:15:51 -04:00
Michael
87b98b8249
Sending direct messages via AP does work now - receiving is pending
2019-05-14 17:50:45 +00:00
Michael
eef85584c2
AP: Parsing of messages from Pleroma should work now again
2019-04-26 06:17:37 +00:00
Michael
af92f46a2d
Workaround for systems who don't use a correct context in ActivityPub
2019-04-25 13:30:30 +00:00
Philipp Holzer
1480380af6
Basepath Hardening
2019-04-14 16:17:58 +02:00
Philipp Holzer
03e149270b
bugfix
2019-04-14 14:40:26 +02:00
Philipp Holzer
1dd1684885
Hardening save method in BaseURL
2019-04-10 20:38:39 +02:00
Philipp Holzer
40c075cf47
BaseURL hardening
2019-04-09 08:48:04 +02:00
Philipp Holzer
edd4f06ad0
Adding tests
2019-04-09 08:31:18 +02:00
Philipp Holzer
318a3ca785
Create own base URL class which holds the whole base url business logic
2019-04-09 08:31:16 +02:00
Hypolite Petovan
6f94e51ba6
Add Strings::sanitizeFilePathItem method
2019-03-31 21:39:19 -04:00
Michael
55325f191b
Merge remote-tracking branch 'upstream/develop' into ap-delivery-failure
2019-03-26 21:36:46 +00:00
Michael
198e150ba8
Archive inboxes after 5 days of delivery failures
2019-03-25 21:51:32 +00:00