Commit Graph

828 Commits (40416645868d748f95b16022f21247eaa467b96f)

Author SHA1 Message Date
NGPixel 084dcd69d1 fix: strip directory traversal sequences from asset paths
4 years ago
NGPixel b0f61d6605 feat: rocket.chat auth module
4 years ago
Иван 79c5b8fac2
fix: security html module removes allow attribute from iframes (#2354)
4 years ago
Riccardo Re 660b78d9e2
fix: support permissions by tags for basic db search engine (#2416)
4 years ago
NGPixel 1404d6343e fix: API key incorrectly forces token revalidation
4 years ago
NGPixel 8f6cba262f fix: draw.io svgs are no longer removed with linebreaks (#2415)
4 years ago
NGPixel 02c3c66084 fix: checkExclusiveAccess incorrectly includes root admin
4 years ago
NGPixel 7c0d6e2883 fix: prevent write:groups from self-promoting
4 years ago
NGPixel f988c5f811 fix: logout URL endpoint option for oauth2 module
4 years ago
NGPixel 9009816290 fix: 2fa qr code - handle special chars in site title
4 years ago
NGPixel aa96e97028 fix: force lowercase for email on local auth
4 years ago
NGPixel 5295e413be fix: bypass page rule check for global permission check + handle missing page extra field
4 years ago
Rus 68d31af7af
fix: discord auth module new URL. (#2390)
4 years ago
NGPixel 78417524b3 feat: ldap avatar support
4 years ago
NGPixel 794ecc6ef6 fix: new install local auth not enabled (#2375)
4 years ago
NGPixel 9f1ba0a32f fix: elastic apm rum client script
4 years ago
NGPixel af054257bd fix: 2.5.108 migration (2)
4 years ago
NGPixel 0ce63c8ef7 fix: 2.5.108 migration
4 years ago
NGPixel 60f2a2a8d9 fix: migration error for new installs
4 years ago
NGPixel ef739de970 feat: purge history utility
4 years ago
NGPixel 8490fc1267 feat: handle disabled auth strategies
4 years ago
NGPixel 17f8071abe fix: LDAP missing reqToCallback
4 years ago
NGPixel 062a0b7979 feat: logout by auth strategy + keycloak implementation
4 years ago
jaljo cda1f1e805
feat: export creation date in dumped content (#2345)
4 years ago
NGPixel ae733392f3 feat: password reset
4 years ago
NGPixel 4dcf664040 fix: handle removed auth strategies
4 years ago
NGPixel e319355017 feat: enable/disable TFA per user
4 years ago
NGPixel 32d67adee1 feat: social login providers with dynamic instances
4 years ago
moonkey124 a7ddafd4aa
fix: incorrect error name for 1017 (#2331)
4 years ago
NGPixel 8c205b6950 fix: site title check + UI fixes + 2FA setup on account verify
4 years ago
NGPixel f72530bf84 refactor: deps update + 2FA setup + verify
4 years ago
Dan Nicholson d5d368cd33
feat: fix + enable OIDC auth method (#2282)
4 years ago
Marks Polakovs 95b6a7ad82
fix: resolve tags on pages in GraphQL (#2247)
4 years ago
Seyed Sajad Kahani 15bca54bdf
fix: change language in edit, history and source pages (#2194)
4 years ago
Higor Tavares 06c372d53f
fix: foreign key constraint when page have comments (#2199)
4 years ago
NGPixel 26af63a80b fix: login input hints
5 years ago
NGPixel 4cd6fe8a56 fix: unauthorized admin should receive 403 code
5 years ago
NGPixel 4f16dd0c81 fix: admin permissions + restrict nav settings
5 years ago
NGPixel 10f17c5712 feat: redirect on login based on group
5 years ago
NGPixel be499e5795 fix: auth strategy dependent username label
5 years ago
NGPixel 52d0af19b4 feat: diagram rendering + post-processor (wip)
5 years ago
Regev Brody b2ff064d34
fix: stream assets from storage local locations (#2087)
5 years ago
NGPixel 57f5cbd5b6 misc: knex update for mssql constraint bug
5 years ago
NGPixel 1ced9649c7 feat: enforce 2fa admin setting + hide local on login screen
5 years ago
NGPixel b2f292cc39 fix: MSSQL migration 2.5.1
5 years ago
NGPixel 31661b2cb3 fix: token renewal date
5 years ago
NGPixel b475795595 feat: login bg + bypass + hide local option
5 years ago
NGPixel 5282a82afe fix: wait for sideload locales before server start (#1248)
5 years ago
Nicolas Giard c009cc1392
feat: new login experience (#2139)
5 years ago
Regev Brody 1c4829f70f
fix: tags filtered by access (#2100)
5 years ago
Regev Brody 41327dd1e8
feat: support MultiMarkdown tables (#2126)
5 years ago
TakeruDMC cf3a48a6fa
fix: "undefined" error on deletePage by git storage (#2132)
5 years ago
Seyed Sajad Kahani 3c5352fb53
fix: change reconnectLink behavior for page move (#1991)
5 years ago
Maho Hiyajo ea3962d143
fix: change discord module ‘discordapp.com’ to ‘discord.com’ (#2117)
5 years ago
Nicolas Giard 2409b286da
fix: matomo module siteId
5 years ago
NGPixel 1c18f3a4c2 fix: revoke typo
5 years ago
NGPixel 98f21b9f6a fix: revalidate tokens created prior to server startup
5 years ago
NGPixel 92b29d1f06 fix: check revalidation timestamp
5 years ago
NGPixel c37b0ad1d7 fix: remove console log from authenticate func
5 years ago
NGPixel a25431bcf8 fix: token revocation incorrect TTL
5 years ago
NGPixel a690e5597f fix: revocation token list for users + groups
5 years ago
Regev Brody 33a9d5774c
fix: GraphQL error with MySQL and FULL OUTER JOIN (#2104)
5 years ago
Regev Brody 6ef7b0f130
fix: deactivated users can still refresh their token (#2105)
5 years ago
Regev Brody 4bc284b06e
fix: page schema validation for extra field (#2097)
5 years ago
NGPixel 4cb7f33dcf feat: visual editor code + sub/sup + table props
5 years ago
NGPixel 4855051d87 feat: page published state + comments localization
5 years ago
NGPixel 83b83a7510 feat: page css + scripts
5 years ago
NGPixel 53ddb50b51 feat: save page scripts + styles
5 years ago
NGPixel 718c14dd74 feat: editor props scripts + styles code editor
5 years ago
Regev Brody 0a16929a57
fix: editing buttons showing up even if no action is allowed (#2043)
5 years ago
NGPixel b723d7d626 fix: markdown core props + styles/scripts permissions
5 years ago
Regev Brody 77086a6e0a
feat: optional kroki/plantuml svg caching (#2047)
5 years ago
Regev Brody e03a80dccc
feat: underline markdown support (#2073)
5 years ago
Regev Brody 0e6340f51e
fix: use config value for tokenRenewal expiration (#2042)
5 years ago
jonasjoest 3b055f2ed5
fix: use first email address when retrieving multiple from LDAP (#2051)
5 years ago
Nicolas Giard 9e08718ee9
Merge pull request from GHSA-9jgg-4xj2-vjjj
5 years ago
Regev Brody 4ffd1325bd
fix: sidebar is empty when the jwt token is expired (#2037)
5 years ago
Regev Brody 037822b994
fix: secure html module removes target attribute from links (#2012)
5 years ago
NGPixel ca0708ea75 feat: extra options for generic S3 module
5 years ago
NGPixel e45145986a feat: generic S3 module
5 years ago
Regev Brody a508a27475
fix: validate permissions when listing assets (#1928)
5 years ago
NGPixel 65f71d8e3b fix: strip starting slash from path during page create
5 years ago
NGPixel deacd80c45 fix: dashboard invalid version on load
5 years ago
NGPixel c2a0773633 fix: site config host slice
5 years ago
NGPixel 2013ee4fa2 fix: failed auth strategy prevent local auth from initializing
5 years ago
NGPixel 3891816758 fix: setup assets location + mysql migration 2.4.13
5 years ago
NGPixel 7a946ec0f5 feat: edit comment
5 years ago
NGPixel e74605501f feat: comments post min delay
5 years ago
NGPixel 8a74904731 feat: comments delete + refresh on post + formatting
5 years ago
NGPixel 83f7c2867d fix: admin security UI
5 years ago
NGPixel 1f9e5b3fd0 feat: delete user with replace target
5 years ago
daneallen 20e6bc1a70
fix: Open Redirect Vulnerability Mitigation - CWE 601 (#1963)
5 years ago
NGPixel 1222355046 feat: comments - default provider create (wip) + permissions
5 years ago
NGPixel 8205faca53 feat: use asar for twemoji assets
5 years ago
NGPixel a0618ee4f6 feat: comments UI improvements
5 years ago
Regev Brody 8a1b5b1383
fix: S3 Export all trigger (#1922)
5 years ago
NGPixel 6b561623ee fix: incorrect migration name 2.4.14
5 years ago
NGPixel df246af3bb fix: remove makefile + update nvmrc version
5 years ago
NGPixel e1382771cf feat: extensions check + resolver
5 years ago
NGPixel fb6c01c538 fix: legacy page view
5 years ago