Commit Graph

202 Commits

Author SHA1 Message Date
NGPixel
05b4053954
fix: encode filenames for assets force download 2022-04-03 15:51:17 -04:00
Manuel
1f489a3d8e
fix: handle multiple LDAP strategies (#5116) 2022-03-25 21:11:24 -04:00
NGPixel
411802ec2f
fix: check update page access using original page path 2022-02-20 18:46:03 -05:00
Marián Skrip
69e9ccc636
fix: remove wild log that was possibly for debugging (#5021) 2022-02-18 19:10:13 -05:00
NGPixel
e84c15b926
fix: scanSVG incorrect ext reference (#4825) 2021-12-26 17:30:18 -05:00
NGPixel
79bdd44093
fix: force download of unsafe extensions 2021-12-24 20:18:12 -05:00
NGPixel
57b56d3a5b
fix: validate svg file extension in addition to client mime type 2021-12-24 19:36:30 -05:00
NGPixel
5d3e81496f
fix: sanitize SVG uploads 2021-12-17 21:41:38 -05:00
Eric Knibbe
c5a45e578e
fix: git storage - handle renamed files & assets (#4307) 2021-09-01 12:11:33 -04:00
NGPixel
f55caab359 fix: convert page - handle tabsets 2021-04-02 17:30:04 -04:00
NGPixel
84b927915e fix: convert page - task list + UI fixes 2021-04-02 15:15:35 -04:00
NGPixel
26f1c0f372 feat: convert page 2021-04-02 00:39:11 -04:00
scienceasdf
d7d00b44f6
fix: search engine broken when renaming or moving pages (#2815)
For building suggest in elasticsearch, the safeContent field will be splitted into arrays. If the page is renamed or moved, the server will throw error: "Cannot read property 'split' of Undefined", and the index will be broken. Here two lines are added to fix this issue.
2020-12-13 14:51:44 -05:00
Jafar Akhondali
5ba36ee421
refactor: server code (#2545)
+ Remove duplicated await
+ Replace some legacy codes with ES6
+ Fix some of eslint problems
2020-10-14 11:16:27 -04:00
NGPixel
fe890979af fix: bypass auth redirect cookie when set to homepage 2020-10-03 17:11:34 -04:00
Mirko Iannella
31a18c8a67
fix: check for email array during processProfile (#2515)
In our setup (based on yunohost) the profile.email field could be either a string (and that was properly handled) or an array.
This code adds support for the case where it is an array.
2020-10-03 16:23:58 -04:00
NGPixel
9009816290 fix: 2fa qr code - handle special chars in site title 2020-09-09 20:10:51 -04:00
NGPixel
aa96e97028 fix: force lowercase for email on local auth 2020-09-09 19:59:46 -04:00
NGPixel
78417524b3 feat: ldap avatar support 2020-09-07 20:02:33 -04:00
NGPixel
ef739de970 feat: purge history utility 2020-09-05 23:32:00 -04:00
NGPixel
8490fc1267 feat: handle disabled auth strategies 2020-09-05 18:33:15 -04:00
NGPixel
062a0b7979 feat: logout by auth strategy + keycloak implementation 2020-09-01 20:01:39 -04:00
NGPixel
ae733392f3 feat: password reset 2020-08-30 21:46:55 -04:00
NGPixel
4dcf664040 fix: handle removed auth strategies 2020-08-30 16:33:52 -04:00
NGPixel
e319355017 feat: enable/disable TFA per user 2020-08-30 14:18:22 -04:00
NGPixel
32d67adee1 feat: social login providers with dynamic instances 2020-08-30 01:36:37 -04:00
NGPixel
f72530bf84 refactor: deps update + 2FA setup + verify 2020-08-22 19:37:49 -04:00
Higor Tavares
06c372d53f
fix: foreign key constraint when page have comments (#2199)
* Solving foreing key contraint when page have comments

* Update pages.js

remove indentation changes

Co-authored-by: Higor Tavares <paulo.freire@dellead.com>
2020-07-29 19:39:47 -04:00
NGPixel
10f17c5712 feat: redirect on login based on group 2020-07-19 15:13:35 -04:00
Regev Brody
b2ff064d34
fix: stream assets from storage local locations (#2087) 2020-07-12 12:19:01 -04:00
NGPixel
b475795595 feat: login bg + bypass + hide local option 2020-07-05 01:36:02 -04:00
Nicolas Giard
c009cc1392
feat: new login experience (#2139)
* feat: multiple auth instances

* fix: auth setup + strategy initialization

* feat: admin auth - add strategy

* feat: redirect on login - group setting

* feat: oauth2 generic - props definitions

* feat: new login UI (wip)

* feat: new login UI (wip)

* feat: admin security login settings

* feat: tabset editor indicators + print view improvements

* fix: code styling
2020-07-03 19:36:33 -04:00
Seyed Sajad Kahani
3c5352fb53
fix: change reconnectLink behavior for page move (#1991) 2020-06-28 21:08:17 -04:00
Regev Brody
6ef7b0f130
fix: deactivated users can still refresh their token (#2105) 2020-06-24 18:15:36 -04:00
Regev Brody
4bc284b06e
fix: page schema validation for extra field (#2097) 2020-06-23 18:26:29 -04:00
NGPixel
83b83a7510 feat: page css + scripts 2020-06-20 16:39:36 -04:00
NGPixel
53ddb50b51 feat: save page scripts + styles 2020-06-20 01:11:05 -04:00
NGPixel
65f71d8e3b fix: strip starting slash from path during page create 2020-06-05 14:52:36 -04:00
NGPixel
7a946ec0f5 feat: edit comment 2020-05-31 18:15:15 -04:00
NGPixel
8a74904731 feat: comments delete + refresh on post + formatting 2020-05-31 02:13:41 -04:00
NGPixel
1f9e5b3fd0 feat: delete user with replace target 2020-05-30 16:34:09 -04:00
NGPixel
1222355046 feat: comments - default provider create (wip) + permissions 2020-05-26 22:56:24 -04:00
Regev Brody
8a1b5b1383
fix: S3 Export all trigger (#1922) 2020-05-22 13:20:47 -04:00
NGPixel
e1382771cf feat: extensions check + resolver 2020-05-21 00:20:57 -04:00
NGPixel
887e8a0f5a feat: comments disqus + commento 2020-05-21 00:20:57 -04:00
NGPixel
1def5289af feat: admin comments page 2020-05-21 00:20:57 -04:00
NGPixel
d2b99a2032 feat: timezone + dateFOrmat + appearance profile settings 2020-05-03 00:38:02 -04:00
NGPixel
89debd57f7 fix: path chars check typo 2020-04-25 02:58:00 -04:00
NGPixel
7306fabdba fix: auto-trim trailing slash from paths + illegal chars check during move 2020-04-24 20:39:07 -04:00
NGPixel
bade9430f2 fix: storage internalSchedule typo 2020-04-24 00:37:50 -04:00