1
0
mirror of https://github.com/vichan-devel/vichan.git synced 2024-11-15 03:17:38 +01:00
Commit Graph

959 Commits

Author SHA1 Message Date
Marcin Łabanowski
4266c412b5 Updated Polish translation (2) 2013-07-31 04:05:38 -04:00
Marcin Łabanowski
cbab1f9ac2 Updated Polish translation 2013-07-31 04:05:29 -04:00
Michael Foster
64bc410484 Small comment change 2013-07-31 04:02:40 -04:00
Marcin Łabanowski
7c8bbe8527 Implement image identification buttons using regex.info/exif, google images and tineye 2013-07-31 04:00:22 -04:00
Michael Foster
18516ff828 Rename $config['url_ads'] to $config['link_prefix'] 2013-07-31 03:43:01 -04:00
szalej
51efd817c8 Update inc/config.php
hide referrer option
2013-07-31 03:39:51 -04:00
Marcin Łabanowski
3ef2c05bb2 url_ads: fix it not working 2013-07-31 03:39:20 -04:00
szalej
5bf53cb581 Update inc/functions.php
url ads
2013-07-31 03:39:15 -04:00
szalej
220609999a Update inc/functions.php
Hide Referrer (nullrefer.com)
2013-07-31 03:39:10 -04:00
asiekierka
44d3b12cef Embedding: added vocaroo support 2013-07-31 03:37:09 -04:00
Michael Foster
573f86ccae Tiny code clean-up 2013-07-31 03:35:07 -04:00
Marcin Łabanowski
73cb2bdf2c convert+gifsicle: fix previous commit 2013-07-31 03:33:12 -04:00
Marcin Łabanowski
b7e725bf3e Support for resizing gifs using gifsicle with resizing the rest using ImageMagick 2013-07-31 03:33:06 -04:00
Marcin Łabanowski
f9cdf31ede Fix animated .gif conversion when $config['thumb_ext'] == '' 2013-07-31 03:32:44 -04:00
Michael Foster
a2d8e4cf3e Previous commit comment fix 2013-07-31 03:13:51 -04:00
Michael Foster
37d769646b Markup/quote fix for multibyte 2013-07-31 03:12:06 -04:00
Michael Foster
b22bcdecf9 Fix last commit: purge() issue 2013-07-31 02:19:58 -04:00
Michael Foster
42cba53887 Allow Unicode in board URIs. 2013-07-31 02:08:55 -04:00
Michael Foster
bb2868896c Ability to hide IP addresses from mod log 2013-07-31 00:04:57 -04:00
Michael Foster
343397d561 ?/IP/: Don't show posts for board user doesn't have access to 2013-07-30 23:30:49 -04:00
Michael Foster
8efab06616 Upgrade to utf8mb4 charset for MySQL server versions above 5.5.3. Keep support for older versions. Fix charsets for multiple columns and tables. 2013-07-30 22:08:56 -04:00
Michael Foster
461084d400 MySQL's utf8 charset only supports up to 3-byte symbols. Insterting four byte symbols (U+010000 to U+10FFFF) can be done maliciously to break HTML mark-up.
The ideal solution was to convert to MySQL's utf8mb4 charset, but then we would lose support for MySQL < 5.5.3. In this fix, incompatible characters are encoded as HTML numeric character references (eg. #65536) and just stripped from body_nommarkup.
2013-07-30 16:41:10 -04:00
Michael Foster
1759ac2ea3 Post search: Search other fields too 2013-07-29 20:20:07 -04:00
Michael Foster
58306bdc63 Search posts 2013-07-29 16:18:06 -04:00
Michael Foster
5bab041814 Make font-awesome enabled by default 2013-07-29 12:27:10 -04:00
Michael Foster
bd8bd3c02e Fix for last commit 2013-07-28 20:46:00 -04:00
Michael Foster
57c8e4ee7c Strip combining characters from Unicode strings (eg. Zalgo) 2013-07-28 20:33:26 -04:00
Michael Foster
37d5846e4e Fix markup overlapping. Issue #124 2013-07-26 11:01:13 -04:00
Michael Foster
33a1c00bd5 %length% in public ban messages 2013-07-24 11:30:01 -04:00
Michael Foster
31f657e550 Long overdue: Salted password hashes 2013-07-24 11:15:55 -04:00
Michael Foster
1132a4ce79 Option to use font-awesome for sticky/lock icons, etc. 2013-07-23 09:38:42 -04:00
Michael Foster
ab0c5ee481 Option to make stylesheet selections board-specific 2013-07-23 01:35:56 -04:00
Michael Foster
6ba8f3f7de Add custom links to dashboard 2013-07-22 18:30:45 -04:00
Michael Foster
ed8fe6c27a Option to check public ban message by default 2013-07-22 17:51:13 -04:00
Michael Foster
308f557fd5 Option to automatically strip EXIF metadata from JPEGs 2013-07-21 15:50:45 -04:00
Michael Foster
67cbc2b1aa Fix permissions with search 2013-07-20 13:15:44 -04:00
Michael Foster
b776e0a7f0 Search update 2013-07-20 12:05:42 -04:00
Michael Foster
e62b83e79c Bring back search (searching posts not implemented yet) 2013-07-20 07:50:33 -04:00
Michael Foster
30dc892786 Only store video URLs in database, instead of the generated player HTML. 2013-07-19 18:36:12 -04:00
Michael Foster
e4bd9a6886 Themes edit: Split "post" into two seperate actions: "post" (replies) and "post-thread". And add a $board variable. 2013-07-18 12:06:26 -04:00
Michael Foster
ce9431ba34 Update filters to work with new ban table 2013-07-18 10:17:19 -04:00
Michael Foster
aadb57f2a2 More ban stuff: Show whether or not user has "seen" a ban yet in the ban list and on IP address pages. Purge useless expired ban records. 2013-07-16 08:50:39 -04:00
Michael Foster
c8f30550af $config['require_ban_view']: Force users to view the "You are banned" page at least once before letting a ban disappear naturally. 2013-07-16 06:33:37 -04:00
Michael Foster
29b10c88db Outputting thread subject in header/title (issue #122) 2013-07-16 02:48:20 -04:00
Michael Foster
7302fc57a8 Automatically dismiss all reports regarding a thread after it is locked. 2013-07-16 02:32:44 -04:00
Michael Foster
2144d43f2b Fix issue #24 2013-07-16 02:27:20 -04:00
Michael Foster
23b27d8057 Add clean() to mod_move function 2013-07-16 01:38:24 -04:00
Michael Foster
77e4d926d9 Add "write" (files written to) to debug section 2013-07-16 01:21:06 -04:00
Macil Tech
82e3592703 Argh, just remove all RTL and LTR control codes in bidi_cleanup.
If the name and subject fields both start with RLO characters, then the
subject would be after the name with the old bidi_cleanup.
2013-07-08 13:26:31 -05:00
Michael
9b0c31daa6 Merge pull request #116 from Macil/hardlimits
Adds image_hard_limit and reply_hard_limit options
2013-06-18 10:46:25 -07:00
Michael
0ac9dd5f25 Merge pull request #115 from Macil/miscfixes
Miscellaneous fixes
2013-06-18 10:45:13 -07:00
Michael
cbc3bd0c0a Merge pull request #114 from Macil/rtlfix
Fix display issues with RTL control characters in post names, subjects, ...
2013-06-18 10:41:31 -07:00
Michael
68c6a749f2 Merge pull request #113 from Macil/tzfix
Output times in UTC
2013-06-18 10:40:56 -07:00
Macil Tech
3eda5b0543 Adds image_hard_limit and reply_hard_limit options.
Also reworks the numPosts() function and uses it elsewhere too.
2013-06-18 12:21:41 -05:00
Macil Tech
765e64ee38 m and n dash fix 2013-06-18 12:07:30 -05:00
Macil Tech
b078222ede Fix "Undefined index: sticky" and "locked" errors on new thread creation. 2013-06-18 12:00:26 -05:00
Macil Tech
b6fc7ca89d Fix broken entity removal in post truncation. 2013-06-18 11:16:15 -05:00
Macil Tech
be1e55b9d6 Fix result page after installing theme getting doubled up. 2013-06-18 11:14:02 -05:00
Macil Tech
6fd6b92fe8 Fix openBoard and boardTitle functions using same caching keys.
Added getBoardInfo function that's used by both of the above functions,
and can get a board's info without loading it.
2013-06-18 11:13:43 -05:00
Macil Tech
1d4fced75a pm_snippet() should probably use mb_substr if it's using mb_strlen. 2013-06-18 11:12:31 -05:00
Macil Tech
2fe79f6a61 Output times in UTC.
Let the client localize the times with js/local-time.js themselves. No
one cares what the server timezone is.

This fixes a bug where posts made in a different daylight savings mode
have their times displayed off by an hour. Their times would be rendered
to the server's own timezone area correctly, but then the server's
*current* utc-offset would be appended, which wouldn't match up.
2013-06-18 11:10:39 -05:00
Macil Tech
a92bb182d9 Fix display issues with RTL control characters in post names, subjects, and filenames. 2013-06-18 11:07:47 -05:00
Macil Tech
3bcc87caf2 Fix PM count caching.
cache::get() returns null if the key wasn't found (at least when using
the Redis cache backend).
2013-06-18 11:02:45 -05:00
undido
83401b3a68 update config.php config for unban limit
Adding config and error for unban list when a user tries to unban more users than they are allowed too.
2013-04-16 19:14:51 -03:00
undido
b4ff535128 update to pages.php minor exploit
A lot of bans can be removed from a tinyboard database because it isn't limited A staff member could select 100 users all at once with a simple javascript function and unban them all this needs to be limited because a staff member on an image board if they feel hostile they can just remove all bans on the tinyboard site easily without being limited to how many people they can unban at a time, this adds an option to limit it.
2013-04-16 19:09:58 -03:00
Fredrick
bb54605eb7 Fix per-board name not being used 2013-03-20 07:46:48 -04:00
Fredrick
53f710060d Fix truncation issue by no longer using HTML entities for Unicode characters 2013-03-17 07:00:55 -04:00
Michael Save
64ae123739 Mod log in ?/IP (ie. ban history) 2013-03-16 18:27:24 +11:00
Michael Save
1816218c64 Fix: Critical security vulnerability 2013-03-15 00:40:02 +11:00
Michael Save
2051018ba1 ... 2013-01-30 05:07:09 +11:00
Michael Save
5661e32b1c Instead of showing $config['error']['malformed'] on corrupt session, just go straight to the login form 2013-01-30 04:45:38 +11:00
Michael Save
45f9b51ad8 Merge branch 'master' of github.com:savetheinternet/Tinyboard 2013-01-29 22:17:46 +11:00
Michael Save
774e27caf5 Use === operator in authentication. 2013-01-29 22:13:35 +11:00
Michael Save
e5bf2a91fc Don't always redirect to dashboard on login 2013-01-29 22:11:33 +11:00
Michael
fd33e9eba1 Merge pull request #96 from Macil/redis
Add Redis caching support
2013-01-27 21:32:28 -08:00
Michael
f07e1564ae Merge pull request #97 from Macil/indexstuff
index() rework to use only one cache key
2013-01-27 21:32:01 -08:00
Macil Tech
879f20ec72 Reworked index() slightly to make caching simpler and only use one key. 2013-01-27 21:32:22 -06:00
Michael Save
1ad71b33e2 More use of mod log 2013-01-27 19:02:47 +11:00
Michael Save
9a2c33736a New debug page: ?/debug/sql 2013-01-25 23:56:55 +11:00
Michael Save
764d718f84 ?/debug/recent 2013-01-25 22:23:26 +11:00
Michael Save
d5a994537b New debug mod page: ?/debug/recent (recent posts across all boards) 2013-01-25 22:18:03 +11:00
Michael Save
060be53797 Show "most recent" in anti-spam debug page 2013-01-24 19:25:07 +11:00
Michael Save
85710249b7 Raw HTML editing 2013-01-24 19:16:25 +11:00
Michael Save
85578b7105 Bugfix: Anti-bot check not allowing posting from second page 2013-01-24 04:56:06 +11:00
Michael Save
bceb314ce6 Major fixes and clean-up for edit form 2013-01-24 04:16:09 +11:00
asiekierka
c7c5a65a1f [EDIT] basic edit support 2013-01-24 03:53:23 +11:00
asiekierka
64e06dfcf3 [EDIT] added dummy form 2013-01-24 03:53:06 +11:00
asiekierka
684b7f8492 [EDIT] added dummy page 2013-01-24 03:52:55 +11:00
Michael Save
b086e47cfc Em dash and en dash mix-up. Issue #88 2013-01-24 03:37:15 +11:00
Michael Save
cd81ae8ea5 No point using JSON as Cache class already supports objects 2013-01-23 13:42:14 +11:00
Macil Tech
970b6e8376 Add Redis caching support.
Compatible with the phpredis extension:
https://github.com/nicolasff/phpredis
2013-01-22 20:22:16 -06:00
Michael Save
edb9999a7d I'm dumb 2013-01-23 12:48:23 +11:00
Michael Save
b693779d0d Hopefully a final fix for caching thread previews. This feature was previous disabled because of a bug/confliction. 2013-01-23 12:43:46 +11:00
Michael Save
7a68fc9525 Copyright and license update for 2013. 2013-01-20 21:23:46 +11:00
Macil Tech
0da1c18a7f Add field_disable_subject and field_disable_reply_subject config options. 2013-01-19 01:37:48 -06:00
Michael
accc3992f3 Merge pull request #93 from Macil/image_reject_repost_in_thread
Add image_reject_repost_in_thread option
2013-01-18 23:03:16 -08:00
Macil Tech
3a9ed90c58 Incorrect parameter type.
The parameter was bound with the wrong type. I guess the type isn't
enforced judging by how the code still seemed to work, but it probably
should be fixed.
2013-01-19 00:39:30 -06:00
Macil Tech
7eef94e04e Fix transforming links to mod links in OP posts.
Similar regexes are called for threads and posts, but they differed
needlessly, and the thread regex would drop anything between the `<a`
and `href="` parts. This makes them both the same and functional.
2013-01-19 00:39:30 -06:00
Macil Tech
90ada24ddc Insert into posts table using named columns.
Makes it easier to update the posts table schema.
2013-01-19 00:39:29 -06:00
Macil Tech
5628f78970 Made deleting posts by IP more efficient.
No longer rebuilds same thread multiple times.
2013-01-19 00:39:29 -06:00
Macil Tech
0092fc62ab Extend timelimit when rebuilding from mod interface.
The rebuild_timelimit config option was not used anywhere since the mod
interface rewrite.
2013-01-19 00:39:29 -06:00
Macil Tech
322b902c8a Fix incorrect log message when bumplocking and stickying threads. 2013-01-19 00:39:29 -06:00
Macil Tech
fda99305ae Global missing from mod_logout 2013-01-19 00:39:29 -06:00
Macil Tech
9007640e88 Don't do anything if a mod link is middle-clicked.
This lets Chrome users open mod actions in a new tab by middle-clicking,
as Chrome still calls the onclick event when middle-clicking unlike
Firefox.
2013-01-19 00:38:44 -06:00
Macil Tech
91e8547b04 Add image_reject_repost_in_thread option 2013-01-19 00:25:24 -06:00
Macil Tech
00bd5e8d20 Remove buildThread() call from mod_deletefile because deleteFile()
already calls it.
2013-01-18 23:13:08 -06:00
Macil Tech
b63d94838d Do truncation by actual character count.
Using substr can cut a multi-byte character in half.

Also, if a long post with many multi-byte characters was reported, then
the mod interface would temporarily extend the body_truncate_char
setting to be sure to cover all of the *characters* in the report, but
this function would interpret body_truncate_char as a number of *bytes*,
so sometimes the end of the report's appended html would be cut off.
2013-01-18 18:26:25 -06:00
Macil Tech
948dfe8555 Don't truncate inside an HTML comment! 2013-01-18 18:26:25 -06:00
Macil Tech
46f50248f0 Don't require closing tag for tags that don't need it. 2013-01-18 18:26:25 -06:00
Michael
df667896cd Merge pull request #81 from Appe/patch-1
Updated Youtube embed code.
2012-12-01 06:40:21 -08:00
Michael Save
30ecfc76e7 Added new events: lock and load-config 2012-11-19 10:28:23 +11:00
Appe
6dd452e10c Updated Youtube embed code. 2012-11-08 23:58:05 +02:00
Michael Save
209f061eed Bugfix: [sticky] 2012-09-30 22:56:09 +10:00
Michael Save
23653994ac Something is broken. Removed that for now. 2012-09-28 04:53:07 +10:00
Michael Save
696c1a05b7 Quick fix relating to last commit 2012-09-28 04:50:25 +10:00
Michael Save
6b7daacdb3 Bugfix: Caching complications with thread preview 2012-09-28 04:46:20 +10:00
Michael Save
db14f9ce15 Bugfix: [F] 2012-09-28 04:00:13 +10:00
Michael Save
ac9296169f Bugfix: B&D "invalid security token" error 2012-09-28 03:54:32 +10:00
Michael Save
268d9d2c88 bugfix: security token forgotten for ban form in view_ip.html 2012-08-28 02:24:29 +10:00
Michael Save
a7d4a5c3c8 pagination bug for user logs 2012-08-27 22:15:58 +10:00
Michael Save
b105a17b4f user logs 2012-08-27 22:13:47 +10:00
Michael Save
913010cff5 minor consistency cleanup 2012-08-27 21:50:15 +10:00
Michael Save
eb146d9201 properly tie auth cookies to private salt 2012-08-27 21:45:05 +10:00
Michael Save
28392a12d3 fix "unbuffered queries" bug (issue #75) 2012-08-27 21:37:21 +10:00
Michael Save
6229b82a43 CSRF protection 2012-08-27 15:19:05 +10:00
Michael Save
a9562075f6 Merge branch 'master' of git://github.com/Yousha/Tinyboard into yousha 2012-08-27 02:40:50 +10:00
Yousha
55470a7ac8 Improved. 2012-08-30 20:05:27 +04:30
Macil Tech
bec9f21787 Antibot make_confusing fix 2012-08-25 07:52:37 -06:00
Michael Save
c5ec20684e themes 2012-08-13 00:18:13 +10:00
Sebastian Stal
318a9554c2 Remove the double-quote (") from characters used for random inputs 2012-07-29 15:59:42 -07:00
thegentoo
9f4fd8e445 Changed heading markup (changed \s* to [ |\t]*) to fix an issue with it eating line breaks 2012-07-13 10:58:42 +02:00
thegentoo
bdaf619dda Changed heading markup (changed \s* to [ |\t]*) to fix an issue with it eating line breaks 2012-07-11 17:11:08 -03:00
Sebastian Stal
8b4e097b3c Share antibot hash across index pages
fixes an issue with slow boards and multi-page indexes
2012-07-04 10:17:51 -07:00
Michael Save
8d96bfc3e9 minor change 2012-05-28 17:08:29 +10:00
Michael Save
97dd6ab391 Bugfix: deleting OP image didn't rebuild 2012-05-28 17:08:09 +10:00
Michael Save
e4b6c89375 show number of reports from dashboard; translatable mod panel 2012-05-25 21:40:01 +10:00
Michael Save
0c682f5cc3 Missing buildIndex() after moving threads 2012-05-22 15:25:22 +10:00
Michael Save
bb521da32e small code cleanup 2012-05-20 20:22:19 +10:00
Michael Save
4a48888b55 Config editor 2012-05-20 20:21:33 +10:00
Michael Save
d3739c48c2 Config editort 2012-05-20 20:20:50 +10:00
Michael Save
0f04117037 Cache unread PM notices 2012-05-20 19:06:27 +10:00
Michael Save
d2c6853ed3 small bugfixes 2012-05-19 20:52:45 +10:00
Michael Save
93c3ceb04d tiny cleanup 2012-05-19 20:46:05 +10:00
Michael Save
970c6cd95b [move] 2012-05-19 18:27:45 +10:00
Michael Save
750fed8a47 Custom filters: "trip" condition should be string, not regexp 2012-05-19 12:23:51 +10:00
Michael Save
1593916907 Permissions fix; missing global 2012-05-18 20:30:55 +10:00
Michael Save
ae91636d1d Bugfix: with disabling config[markup_urls] 2012-05-08 23:59:54 +10:00
Michael Save
9eb3a17faa Bugfix: ?/ban did the same as ?/ban&delete 2012-05-08 00:49:48 +10:00
Michael Save
2cc17f8d9b more information in modlog for bans 2012-05-08 00:42:17 +10:00
Michael Save
ad220b725d Bugfix: the number of successful passes for an anti-spam "hash" was often incorrectly incremented 2012-05-07 23:51:58 +10:00