Infra-Mirrors/PrivateBin
1
0
Fork 0
mirror of https://github.com/PrivateBin/PrivateBin.git synced 2024-12-26 07:49:24 -05:00
Code Issues Packages Projects Releases Wiki Activity
3,514 Commits 10 Branches 32 Tags 26 MiB
9da6d8b24b
Commit Graph

618 Commits

Author SHA1 Message Date
rugk
6876e14679 Merge remote-tracking branch 'origin/master' into fix-webkit 2024-10-22 22:32:32 +00:00
rugk
628b60dcb4 refactor: deferring everything including all potential deps 
Also works on Safari…
 2024-10-22 22:29:42 +00:00
rugk
5b3537a7cf Merge branch 'fix-webkit' of https://github.com/PrivateBin/PrivateBin into fix-webkit 2024-10-22 22:22:21 +00:00
rugk
f0ca1ac888 fix: also loaad dark-mode switch defer'Ed to make it load correctly 
(async fails on WebKIt)
 2024-10-22 22:20:49 +00:00
El RIDO
07aeed1c4c
Merge branch 'master' into fix-webkit 2024-10-19 11:35:57 +02:00
El RIDO
ec2e981984
upgrading DOMpurify library to 3.1.7 2024-10-19 11:17:53 +02:00
parthiv-m
788146012e Fix failing tests, update button icon and text according to feedback 2024-10-17 21:56:27 -04:00
theProton
922971590e
Merge branch 'PrivateBin:master' into navigate-after-delete 2024-10-17 21:22:29 -04:00
rugk
8d435d7c14
Fix style by removing optional parameter 
Co-authored-by: El RIDO <elrido@gmx.net>
 2024-10-18 02:59:20 +02:00
rugk
64ed6e96ee fix: load in WebKit again by loading jquery, base and deflate libs non-async'ly 2024-10-16 22:46:18 +00:00
parthiv-m
773c56fc94 Fix conditional display of 'New' paste button on alert 2024-10-14 12:54:36 -04:00
parthiv-m
f2b60d3765 Add _is_deleted status message to Controller and prompt for button click after paste delete 2024-10-13 17:45:05 -04:00
El RIDO
aafc143a5a strict types in templates 2024-10-11 07:14:18 +02:00
parthiv-m
d69d29f3a9 Fix: Once a paste is deleted, navigate to 
the home page after 5 seconds; change type
of the corresponding alert to alert-success
 2024-10-07 17:42:37 -04:00
El RIDO
ab2d2f2477 upgrading DOMpurify library to 3.1.6 2024-08-03 09:52:30 +02:00
El RIDO
5ef8a094e7
re-add missing attribute 2024-07-09 22:47:15 +02:00
El RIDO
d27e7e8ee3
make scriptTag parameter a string for flexibility and clarity 2024-07-09 21:38:41 +02:00
El RIDO
8b3b16be44
SRI hashes are now configurable, no longer hardcoded in templates 
- addresses #1365
- should make upgrades easier for those using custom templates
- if the JS files got customized, the default SRI hashes can be replaced in the conf.php file, added commented section in conf.sample.php
 2024-07-07 16:36:52 +02:00
El RIDO
ab05ed9532
bootstrap5 dark mode toggle unset on dark browser preference, fixes #1340 2024-06-13 20:00:26 +02:00
El RIDO
b9d24b74b3 Merge branch 'version-sed' 2024-05-30 18:52:18 +02:00
9401adarsh
750a0adce4 chore: update sri hashes to reflect changes in js/ 2024-05-29 16:21:08 +05:30
El RIDO
05402ef304 remove version from doc blocs 
- @version in file header level isn't used on code docs, it is intended
  for API versions at class or method level
- avoids needing to update all these files on version increment
- avoids needing to regenerate SRI hashes for privatebin.js through
  extra phpunit run
- simplifies VERSION_FILES list
- avoids having to filter above list during loop
- adds a few missing doc bloc headers
 2024-05-28 21:03:22 +02:00
El RIDO
1264418102 Merge branch '9401adarsh-file-download-md-format-support-feature' 2024-05-21 07:14:54 +02:00
El RIDO
c04c7b0f34 update SRI hashes, npm lock file 2024-05-21 07:14:12 +02:00
FingerlessGloves
4913837d37
Fix bootstrap5 template width 2024-05-20 20:28:13 +01:00
El RIDO
22419cd68a
incrementing version 2024-05-13 19:18:30 +02:00
El RIDO
619fbb6653 Merge remote-tracking branch 'origin/dompurify' 2024-05-13 06:57:41 +02:00
El RIDO
435f0d8ea1 Merge remote-tracking branch 'origin/bootstrap5-navbar' 2024-05-13 06:55:50 +02:00
El RIDO
9d53c6493b Merge remote-tracking branch 'origin/bootstrap5-code' 2024-05-13 06:53:41 +02:00
El RIDO
55d30ce9bd
Merge pull request #1323 from PrivateBin/bootstrap5-fileupload 
bootstrap 5 attachment dropdown sizing
 2024-05-13 06:47:46 +02:00
El RIDO
ee3b5ec08a
chore: upgrade DOMPurify from v3.1.2 to 3.1.3 2024-05-12 10:18:49 +02:00
El RIDO
976650bdde
bootstrap 5 nav bar & footer improvements, closes #1317 2024-05-09 18:18:57 +02:00
El RIDO
efb04d868d
bootstrap 5 code block improvements, closes #1314 2024-05-09 17:53:26 +02:00
El RIDO
47df01b4c6
bootstrap 5 attachment dropdown sizing, fixes #1313 2024-05-09 17:01:02 +02:00
El RIDO
2c8b5ed0e4
expiration time selection for bootstrap template, fixes #1309 2024-05-09 15:55:42 +02:00
El RIDO
11c26a7281 update SRI hashes and add missing translation messages 2024-05-06 12:40:48 +02:00
El RIDO
da8b6a2c67
do close modal upon confirmation 2024-05-05 20:52:29 +02:00
El RIDO
5067e9222c
incrementing version 2024-05-05 20:43:33 +02:00
El RIDO
843aa00473 Merge branch 'chrono-privacy' 2024-05-05 19:34:22 +02:00
El RIDO
6028a1d801
chore: upgrade jQuery from v3.7.0 to 3.7.1 2024-05-05 11:50:12 +02:00
El RIDO
b00528388f
Merge branch 'master' into chrono-privacy 2024-05-05 10:25:31 +02:00
El RIDO
3508989114
updated dompurify library 2024-05-04 16:18:43 +02:00
El RIDO
06fb606aa7
Merge branch 'master' into bootstrap 2024-05-04 16:15:07 +02:00
El RIDO
2b87bf3d13
update SRI hashes 2024-05-04 16:14:12 +02:00
El RIDO
0f9158b37b
allow disabling comment date display using discussiondatedisplay configuration option 2024-05-04 14:38:41 +02:00
El RIDO
81fdf8ebfc
re-lax samesite cookie policy 
As per discussion in code review:

> Cookies are always scoped in browsers. That's not the issue. SameSite attribute just protects against CSRF attacks. But Get requests (aka links) are also "protected" with Strict, which breaks it… and for users that is highly confusing when they (apparently arbitrarily) do not get the language they have set before when clicking a link.

https://github.com/PrivateBin/PrivateBin/pull/1287#discussion_r1589299210
 2024-05-04 12:12:31 +02:00
rugk
4500794980 chore: ugrade DOMPurify from v3.0.8 to 3.1.2 
This incluces v3.1.1, which says:
> Note that this is a security release and should be upgraded to immediately.

https://github.com/cure53/DOMPurify/releases/tag/3.1.1

The release notes of the actual version itself are https://github.com/cure53/DOMPurify/releases/tag/3.1.2

I do not found more information on the vulnerability that apparently is in there.

* [x] manually tested and works
 2024-05-03 15:55:53 +00:00
El RIDO
c7226eedd7
Update tpl/bootstrap5.php 
Co-authored-by: rugk <rugk+git@posteo.de>
 2024-05-02 08:03:55 +02:00
El RIDO
8bfab7fd89
Update tpl/bootstrap5.php 
Co-authored-by: rugk <rugk+git@posteo.de>
 2024-05-02 08:01:37 +02:00
El RIDO
5c6bd3eba8
Update tpl/bootstrap5.php 
Co-authored-by: rugk <rugk+git@posteo.de>
 2024-04-23 23:09:21 +02:00