Commits · master · gnu.io / gnu-social

01 Sep, 2016 1 commit

Split up source and source_link. Never trust HTML! · a7043bf7

mattl authored Sep 02, 2016

https://community.highlandarrow.com/notice/269667
or alternatively: https://social.umeahackerspace.se/conversation/495655

a7043bf7

20 Mar, 2016 1 commit

Remove Google References · 11c57e7a

Bob Mottram authored Mar 20, 2016

This removes most references to Google, with some
remaining since they may point to things which are still
relevant. References to Google Code, Google Buzz and
Google Maps have been removed

11c57e7a

18 Feb, 2016 1 commit

Don't publish mbox_sha1sum in FOAF by default. · afbdcf89

mattl authored Feb 19, 2016

We say the email is private data, so reasonably we shouldn't reveal it
indirectly through a hash sum: http://xmlns.com/foaf/spec/#term_mbox_sha1sum

afbdcf89

17 Feb, 2016 5 commits
- Use ToSelector choice again. · 73dbc5ca
  mattl authored Feb 17, 2016
  
  73dbc5ca
- Show notice feed URLs (and author) · d9b64964
  mattl authored Feb 17, 2016
  
  d9b64964
- By default, disallow users to set private_stream · 5fbb0113
  mattl authored Feb 17, 2016
  
  5fbb0113
- Describe that we don't allow empty fullnames. · 47dc15c9
  mattl authored Feb 17, 2016
  
  47dc15c9
- If profile fullname is 0 chars use nickname · d6bf90cf
  mattl authored Feb 17, 2016
  
  d6bf90cf
12 Feb, 2016 2 commits
- Only administrators can delete other privileged users. · c7c34ec0
  mattl authored Feb 12, 2016
  
  c7c34ec0
- Silence action can only be used on non-priviliged users · e5ad98e6
  mattl authored Feb 12, 2016
  
  e5ad98e6
09 Feb, 2016 1 commit

Either use or don't use HTTPS · ec257d94

mattl authored Feb 10, 2016

The risk of injection attacks using HTTP is too great to allow a
site that allows both HTTP and HTTPS...

ec257d94

08 Feb, 2016 3 commits
- Require the license with HTML5 · 7c90d702
  mattl authored Feb 08, 2016
  
  7c90d702
- SimpleCaptcha plugin to stop basic bots · cd71188d
  mattl authored Feb 08, 2016
  
  cd71188d
- Returnto the previous page when deleting a notice. · a30d34be
  mattl authored Feb 08, 2016
  
  a30d34be
03 Feb, 2016 2 commits
- Backupaccount is always readonly · 25c15119
  mattl authored Feb 03, 2016
  
  25c15119
- Set time limit to increase time backupaccount can take · 19b743a9
  mattl authored Feb 03, 2016
```
Wills till run out of memory probably, we should fix that.
```
  19b743a9
28 Jan, 2016 2 commits
- Fullname and location are now text, not varchar, and can be >191|255 · a6898b03
  mattl authored Jan 28, 2016
  
  a6898b03
- Replace htmLawed with HTMLPurifier · 7e6783bb
  mattl authored Jan 28, 2016
  
  7e6783bb
27 Jan, 2016 3 commits
- Haha, forgot that the $content content must also be there! · d73c264e
  mattl authored Jan 27, 2016
  
  d73c264e
- Don't add space if there's no string in new notice content · a47563cf
  mattl authored Jan 27, 2016
  
  a47563cf
- Allow empty new-notice content via web if there's an upload · 03d2b680
  mattl authored Jan 27, 2016
  
  03d2b680
14 Jan, 2016 5 commits
- Removing superflous debug stuff · a1530b0e
  mattl authored Jan 14, 2016
  
  a1530b0e
- Get uploaded media_ids via File::getByID() · 8df38df5
  mattl authored Jan 14, 2016
```
Filters out failed ones...
```
  8df38df5
- Accept media_ids parameter from Twitter API v1.1 clients · e5019c38
  mattl authored Jan 14, 2016
```
They upload the media first and then provide media IDs in a comma
separated parameter (but we just split it to all whole integers).
```
  e5019c38
- Media files are accepted and uploaded via Twitter API now · b570f0d3
  mattl authored Jan 14, 2016
  
  b570f0d3
- Make Twitter Media upload API v1.1 reach us · 0caf0612
  mattl authored Jan 14, 2016
```
Now we just have to accept the 'media' or 'media_data' (base64 encoded)
POST arguments instead of $_FILES uploads.
```
  0caf0612
13 Jan, 2016 2 commits
- $this->notice is never unset after prepare · 1e5770bb
  mattl authored Jan 13, 2016
  
  1e5770bb
- Deleted_notice is pluginified, don't call directly from core · adba38ce
  mattl authored Jan 13, 2016
  
  adba38ce
11 Jan, 2016 1 commit
- APIStartRegistrationTry event · 543a7e42
  hannes authored Jan 11, 2016
  
  543a7e42
08 Jan, 2016 1 commit
- Attention goes to the parent notice author too · 33194b3c
  mattl authored Jan 08, 2016
  
  33194b3c
07 Jan, 2016 3 commits
- Notice from web now saves context->attention too! ;) · c48871cf
  mattl authored Jan 07, 2016
  
  c48871cf
- shortenLinks _after_ media upload to be consistent with api · 1f02dc63
  mattl authored Jan 07, 2016
  
  1f02dc63
- shortenLinks with a capital L · 65055044
  mattl authored Jan 07, 2016
  
  65055044
06 Jan, 2016 7 commits
- Gah and a 302 in the non-exception-handling redirect too · 6924bb1d
  mattl authored Jan 06, 2016
  
  6924bb1d
- Attachment thumbnail redirect is a 302 redirect · a9b55192
  mattl authored Jan 06, 2016
```
It SHOULD be cached but it might no longer be valid if we empty cache or something.
```
  a9b55192
- Our URLs are permanent redirects, mind you! · 4d179c6b
  mattl authored Jan 06, 2016
  
  4d179c6b
- Avoid having to check for notices without rendered copies in upgrade.php · b596391f
  mattl authored Jan 06, 2016
```
Always call the Notice->getRendered() function to get a rendered copy.
We could perhaps put some sanitation there too in the future
```
  b596391f
- Conversation IDs (again) no longer based on Notice ID · 0fd2ad64
  mattl authored Jan 06, 2016
  
  0fd2ad64
- More listitems and lists into separate files + stronger typing · 4b22b0c4
  mattl authored Jan 06, 2016
  
  4b22b0c4
- Separating classes into files and stronger typing · 6d9f390b
  mattl authored Jan 06, 2016
  
  6d9f390b