BookStack

mirror of https://github.com/BookStackApp/BookStack.git synced 2024-10-01 01:36:00 -04:00

Author	SHA1	Message	Date
Dan Brown	934a833818	Apply fixes from StyleCI	2021-06-26 15:23:15 +00:00
Dan Brown	888f435651	Added back-end attachments-in-browser support A query string will cause attachments to be provided inline with an appropriate mime type. Remaining actions: - Tests - Front-end functionality - Config option?	2021-06-06 00:51:06 +01:00
Dan Brown	60ffe6a993	Updated packages and added better upload failure logging To fix #2689 Updates all packages but mainly focused on aws-sdk	2021-04-19 20:16:49 +01:00
Dan Brown	7d38c96a23	Removed generic "UploadService" which was doing very little	2020-12-06 12:58:40 +00:00
Dan Brown	349162ea13	Prevented possible XSS via link attachments This filters out potentially malicious javascript: or data: uri's coming through to be attached to attachments. Added tests to cover. Thanks to Yassine ABOUKIR (@yassineaboukir on twitter) for reporting this vulnerability.	2020-10-31 15:01:52 +00:00
Dan Brown	14b6cd1091	Started migration of attachment manager from vue - Created new dropzone component. - Added standard component event system using custom DOM events. - Added tabs component. - Added ajax-delete-row component.	2020-06-30 22:12:45 +01:00
Dan Brown	140298bd96	Updated to Laravel 5.8	2019-09-13 23:58:40 +01:00
Dan Brown	762d1d7595	Allowed different storage types for images and attachments - Added new env and config vars to allow this. - Also added tests for awkward config logic including fallback for new env vars. Closes #1302	2019-06-23 16:01:15 +01:00
Dan Brown	193e2ffebe	Prevent dbl exts. on img upload, Randomized attachment upload names	2019-03-24 19:08:21 +00:00
Dan Brown	257a5a23ec	Fleshed out entity provided and optimized imports	2018-09-25 16:58:03 +01:00
Dan Brown	919660678b	Re-structured the app code to be feature based rather than code type based	2018-09-25 12:30:50 +01:00

11 Commits