Commits · 1cec627d7211115871511d134c94bd6786d937c3 · gnu.io / gnu-social

24 Jan, 2016 1 commit
- Allow bitcoin scheme to URLs · 1cec627d
  mattl authored Jan 24, 2016
  
  1cec627d
13 Jan, 2016 3 commits
- Unnecessary call to User::getKV · 29b45bb8
  mattl authored Jan 13, 2016
  
  29b45bb8
- We didn't get profiles from the new-style attention system · 818aaa05
  mattl authored Jan 13, 2016
  
  818aaa05
- don't allow cdata elements in purified html · 3e7e3de5
  hannes authored Jan 13, 2016
  
  3e7e3de5
12 Jan, 2016 2 commits
- same as previous, but for mime_to_ext · 8c28e54c
  mattl authored Jan 12, 2016
  
  8c28e54c
- If all file extensions are supported we have no list of comparisons · dbe5d72e
  mattl authored Jan 12, 2016
  
  dbe5d72e
11 Jan, 2016 3 commits
- forgot we need access to $html too · a1b509bb
  hannes authored Jan 11, 2016
  
  a1b509bb
- EndCommonPurify event · 8d331b0f
  hannes authored Jan 11, 2016
  
  8d331b0f
- lib/util.php quick function to do var_export($var,true) · 1a46d86c
  mattl authored Jan 11, 2016
```
Immensely useful when debugging and we want to put quotes around strings,
potentially stopping any "evil logging attacks" (where input data masks
as logging data).
```
  1a46d86c
09 Jan, 2016 1 commit
- Get group attentions too for outbound notices · 5ef10a14
  mattl authored Jan 09, 2016
  
  5ef10a14
08 Jan, 2016 1 commit
- Attention goes to the parent notice author too · 33194b3c
  mattl authored Jan 08, 2016
  
  33194b3c
07 Jan, 2016 2 commits
- common_find_attentions to populate activities from content text · 801ca353
  mattl authored Jan 07, 2016
  
  801ca353
- Use index for File url (urlhash) · be58fd64
  mattl authored Jan 07, 2016
  
  be58fd64
05 Jan, 2016 2 commits
- longurl in href · 0b4b0de4
  hannes authored Jan 05, 2016
  
  0b4b0de4
- $longurl->url is just the same $canon we fed to File_redirection::where() · 8b78e01d
  hannes authored Jan 05, 2016
  
  8b78e01d
01 Jan, 2016 2 commits
- common_render_content doesn't require a Profile now · e02c10a5
  mattl authored Jan 01, 2016
  
  e02c10a5
- Don't require a notice object to common_linkify_mentions · 10973dcf
  mattl authored Jan 01, 2016
  
  10973dcf
05 Dec, 2015 1 commit
- ircs URLs work fine in Firefox at least · c498db14
  mattl authored Dec 05, 2015
  
  c498db14
02 Nov, 2015 1 commit

Stephen Paul Weber authored Nov 02, 2015

The code was so involved there was even a comment asking for a refactor.

Now, File_redirection::where always returns a nice File_redirection
object instead of an array or string or nothing. The object is
either one which already existed or else a new, unsaved object.

Instead of duplicating "does it exist" checks everywhere, do it in
File_redirection::where. You either get what exists or something to save.

An unsaved File_redirection may be paired with an unsaved File.
You will want to save the File first (using ->saveFile()) and put the
id in File_redirection#file_id before saving.

a9b1b60a

28 Oct, 2015 2 commits
- New length format for other kinds of mentions · 2207eacc
  Stephen Paul Weber authored Oct 28, 2015
  
  2207eacc
- Move the functionality to a plugin · fed0895d
  Stephen Paul Weber authored Oct 28, 2015
```
Use an associated model to prevent race conditions on creating the
profile object.
```
  fed0895d
23 Oct, 2015 1 commit
- Allow users to @mention URLs · 21979bb7
  Stephen Paul Weber authored Oct 23, 2015
```
Because inferring who you mean (especially in the presence of remotes) can suck
```
  21979bb7
04 Oct, 2015 1 commit
- Diaspora plugin is almost there (for remote salmon slaps at least) · 2aed59a0
  mattl authored Oct 04, 2015
  
  2aed59a0
01 Oct, 2015 1 commit
- File handling changes for better logic · 80bc7f0e
  mattl authored Oct 01, 2015
```
Also prepares for StoreRemoteMediaPlugin, coming up...
```
  80bc7f0e
30 Sep, 2015 1 commit
- NoResultException is common if reply_to was not cleared on parent deletion · 3a6c98ff
  mattl authored Sep 30, 2015
  
  3a6c98ff
27 Sep, 2015 1 commit
- ShowprofiletagAction now extends ShowstreamAction · ad3b62cf
  mattl authored Sep 27, 2015
  
  ad3b62cf
05 Sep, 2015 1 commit
- introducing html_sprintf for easier sprintf'ing with htmlspecialchars · 4354ce21
  mattl authored Sep 06, 2015
  
  4354ce21
16 Jul, 2015 2 commits

PasswordsettingsAction aligned with FormAction · cfaaf3c1

mattl authored Jul 17, 2015

Also made some changes in the password "munging" function call
common_munge_password to accept a profile instead of user ID (which
was only there because stoneage StatusNet used the ID to generate a
not-very-random salt, but nowadays we primarily use AuthCrypt plugin).

cfaaf3c1

Non-replies cannot harvest parent notice nicknames · 44dc00a5

mattl authored Jul 16, 2015

A feature we use of parent notices is that if you use the same @user
as the parent notice, the same @user will be notified, regardless if
there might be @user@site.com as well as @user@example.com and you're
subscribed to just one of them (or both, or none of them!).

But this threw an exception since we tested this on new notice threads.

44dc00a5

15 Jul, 2015 1 commit
- Less redundant code. · cd23c788
  mattl authored Jul 15, 2015
  
  cd23c788
02 Jun, 2015 3 commits
- Start using NoParentNoticeException more widely · 0726dcd0
  mattl authored Jun 02, 2015
  
  0726dcd0
- Reuse code from our classes, don't write own algorithms · 6b9a8b7b
  mattl authored Jun 02, 2015
  
  6b9a8b7b
- typing, added typing to some common_* calls in util.php · e728e2aa
  mattl authored Jun 02, 2015
  
  e728e2aa
09 May, 2015 1 commit
- magnet URL linkify support · d010c5a5
  mattl authored May 09, 2015
  
  d010c5a5
15 Mar, 2015 1 commit

Filter out img, video and audio tags in notice HTML · 8439efe7

mattl authored Mar 15, 2015

Because we don't want to auto-fetch items from a remote server. Such
items should be delivered as attachment metadata and portrayed in the
way the local instance chooses.

Choices for portrayal are either simply nullifying this and embedding
the data, linking the file remotely requiring a manual click or maybe
use remote oEmbed data etc. to download files locally so no remote
requests have to be made.

8439efe7

27 Feb, 2015 1 commit

StatusNet class renamed GNUsocial · 8fac7a9f

mattl authored Feb 27, 2015

also added backward compatible StatusNet class for the two calls I know
third party plugins use, isHTTPS and getActivePlugins

8fac7a9f

26 Feb, 2015 1 commit
- php5-intl is recommended but not required · 48f8f3f5
  mattl authored Feb 26, 2015
  
  48f8f3f5
17 Feb, 2015 3 commits

Implement a common_purify for htmLawed and more · 3dce6d9f

mattl authored Feb 18, 2015

We're removing unicode formatting characters as well, such as RTL marks.
For more info on why we're because extra cautious (but may accept the
characters in later versions) you can read:
https://blog.malwarebytes.org/online-security/2014/01/the-rtlo-method/

3dce6d9f

Don't linkify bare domains by default · 7ba7f431

mattl authored Feb 17, 2015

It's too farfetched to assume any text.com in a notice is an HTTP URL.
For example stuff like pasting from log entries, with domain.com:1234
where 1234 is a _PID_ or something, not a port number for http://...

7ba7f431

PHP>=5.4.0 lets us use Transliterator, tags now asciified! · c31c2d10
mattl authored Feb 17, 2015
```
For example: #REVOLUCIÓN becomes #revolucion instead of #revolución
```
c31c2d10