zydronium/neocities
1
0
Fork 0
mirror of https://github.com/neocities/neocities.git synced 2025-04-24 17:22:35 +02:00
Code Issues Projects Releases Packages Wiki Activity
2006 commits 17 branches 7 tags 75 MiB
Commit graph

2006 commits

This branch
This branch
All branches
Author SHA1 Message Date
Kyle Drake
5d8f9df7e0 sort sites by tipping enabled 2017-02-13 12:05:40 -08:00
Kyle Drake
036a45630e Initial CSP header idea - enable tipping site-wide 2017-02-11 15:39:11 -08:00
Kyle Drake
dc38851163 Remove site reporting link. 
It was 49% spam, 50% trolling, and 1% legitimate reports.
 2017-02-09 11:22:25 -08:00
Kyle Drake
f6550555b0 Templates for tip emails 2017-02-07 22:48:15 -08:00
Kyle Drake
b556795f78 Missing xml file for blog feed test 2017-02-07 22:47:35 -08:00
Kyle Drake
28a71d275a Tests for paypal tipping webhook 2017-02-07 22:46:39 -08:00
Kyle Drake
bd1ed0d732 Database migration for tips table changes 2017-02-07 22:46:17 -08:00
Kyle Drake
cc07e90b44 Code to display tips submitted on news feed 2017-02-07 22:45:29 -08:00
Kyle Drake
621e45b6a2 Modify domain registration record structure. 2017-02-07 22:44:03 -08:00
Kyle Drake
e52aa29290 Fix tempfile returning nil for empty files 
This is an "monkey patch" to have Tempfile return 0 instead of nil when
a tempfile is empty. This has caused an unexplained exception in our
logs for years, and I was really surprised when I caught it, and more
surprised that nobody has ever reported it to us before.

I really think this is a bug, and have filed it as a bug on the ruby
tracker. I haven't seen any consequences (yet) to doing this, so I'm
just going to run with it and see what happens. If it blows
something up (how? what scenario?), I'll try a different approach.
 2017-02-06 11:26:14 -08:00
Kyle Drake
28000fc73c Send email notifications for email and password changes 2017-02-04 11:31:48 -08:00
Kyle Drake
80b31c29cb Consolidate file uploads into a single call 2017-02-02 15:25:49 -08:00
Kyle Drake
0d9c366555 Don't set whitelist captcha using session variable 2017-02-02 11:33:02 -08:00
Kyle Drake
ad22cc519f Use form POST for signout link to prevent CSRF 2017-02-02 10:27:30 -08:00
Kyle Drake
e43e7d973a Whitelist webp images 2017-01-29 16:49:47 -08:00
Kyle Drake
0428a1246e Fix for cache purging for subdir default indexes 2017-01-29 00:00:25 -08:00
Kyle Drake
46b402a633 Fix up index test, stub blog rss feed get 2017-01-26 00:31:22 -08:00
Kyle Drake
be2c2598c7 Flush password reset token when email changes 2017-01-25 20:45:00 -08:00
Kyle Drake
4f09d954e5 Plug XSS hole in file upload name 2017-01-25 20:15:47 -08:00
Kyle Drake
89f123d125 Switch to test keys for recaptcha 2017-01-24 23:40:28 -08:00
Kyle Drake
6dc1abe99b SameSite=Lax for cookies, DENY for X-Frame-Options 2017-01-25 04:52:20 +00:00
Kyle Drake
79887f87ba Fix for supporter file type uploads via WebDAV 2017-01-19 00:34:52 -08:00
Kyle Drake
e95dd99c29 patch XSS related to directories, remove redundant text editor file load 2017-01-17 21:20:34 -08:00
Kyle Drake
eed42b7558 Numerous small copy changes here and there, blog feed on front page, added a press article 2017-01-17 00:35:31 -08:00
Kyle Drake
f0ca037237 Stop Forum Spam: Evidence must be direct data, not an abstraction! 2017-01-16 20:33:26 -08:00
Kyle Drake
9d718f09b7 Merge branch 'master' of github.com:neocities/neocities 2017-01-15 15:08:08 -08:00
Kyle Drake
65008f4ac4 pass stopforumspam as formencoded 2017-01-15 15:07:58 -08:00
Kyle Drake
5178ea4e78 Compare with year for root domain check for lets encrypt 2017-01-14 06:12:36 +00:00
Kyle Drake
d16e768072 Merge branch 'master' of github.com:neocities/neocities 2017-01-14 06:00:21 +00:00
Kyle Drake
60a4ad470d Root url for reported site screenshot 2017-01-13 20:20:25 +00:00
Kyle Drake
154abfc167 Disable delete cache worker for the moment, we don't use it 2017-01-13 20:07:31 +00:00
Kyle Drake
7198e788d1 No http follow, more debug info on errors 2017-01-13 20:06:59 +00:00
Kyle Drake
6e37fd7d25 improve retry for let's encrypt 2017-01-13 12:04:10 -08:00
Kyle Drake
ea467c1eef fix for ip OR conditional 2017-01-11 17:24:44 -06:00
Kyle Drake
bedc08cb58 mechanism to report spam ips to stopforumspam 2017-01-11 17:16:40 -06:00
Kyle Drake
7be37ce595 optimize site images so dumb optimizer check scripts STFU 2017-01-10 19:38:50 -06:00
Kyle Drake
57e31c66e3 fortify cookie security - samesite, secure, explicit httponly 2017-01-10 16:43:14 -06:00
Kyle Drake
d12dc53631 padding fix for front header 2017-01-10 13:10:14 -06:00
Kyle Drake
663c69cd83 more experimentation for global feed 2017-01-09 19:49:52 -06:00
Kyle Drake
0c61010981 experiment with comma separated large view numbers rather than shortened 2017-01-09 03:01:14 -06:00
Kyle Drake
79fb01e6a7 first attempt to improve the global activity feed 2017-01-09 02:22:04 -06:00
Kyle Drake
1dca65a4c2 only register html files as site changes 2017-01-09 01:45:46 -06:00
Kyle Drake
522fe16f67 use usernames for event likes popup 2017-01-09 01:34:05 -06:00
Kyle Drake
f796fdf9a8 default https for cache purging and URIs 2017-01-06 00:03:30 -06:00
Kyle Drake
f92d6c6139 follow redirects 2017-01-05 16:01:35 -06:00
Kyle Drake
749f2fd5e0 sould fix sidekiq csrf issue 2016-12-29 17:27:52 -06:00
Kyle Drake
616875b1d0 remove dupe is_deleted filter 2016-12-29 17:14:33 -06:00
Kyle Drake
e821410d84 optimize screenshots and thumbnails, slight thumbnail quality reduction 2016-12-29 17:09:01 -06:00
Kyle Drake
841779a36c enforce signout of deleted accounts 2016-12-29 15:55:44 -06:00
Kyle Drake
fa53929e66 Fix delete when child site is destroyed, also hide destroyed records 
from list
 2016-12-29 15:55:12 -06:00