msb-public/wiki - wiki - 马士兵教育代码仓库

Commit Graph

Author	SHA1	Message	Date
Dalibor Marković	681a9f6355	fix: correct Objection 3 migration issues and fetch port errors - Remove lingering JSON.stringify calls on 4 auto-serialized JSON columns (group create/import, page create/update) — Objection 3 handles this automatically - Add response.ok checks and AbortSignal.timeout to all 4 fetch call sites (contribute, performUpgrade, azure autocomplete, html-image-prefetch) - html-image-prefetch renderer now skips images without content-type header instead of encoding HTML error body as base64 PNG	5 days ago
Dalibor Marković	6ca41db157	fix: knex 3.x + objection 3.x compatibility - Replace jsonAttributes() with jsonSchema properties (12 models) - Fix connect-session-knex v5 API (master.js) - Fix ajv strict type errors (users.js, settings.js) - Remove JSON.stringify for JSON columns (objection 3 auto-serializes) - Add allowUnionTypes for settings value column	5 days ago
Dalibor Marković	4b0456f545	upgrade: dependency updates across phases 1-3 Phase 1 - Security: - lodash 4.17.21 -> 4.18.1 (CVE fix) - dompurify 3.3.1 -> 3.4.10 (XSS fixes) - passport 0.4.1 -> 0.7.0 (security fixes) - remove deprecated request/request-promise, use native fetch instead - update semver, simple-git, winston, nodemailer Phase 2 - Light upgrades: - sass 1.27.0 -> 1.101.0 - chokidar 3.5.3 -> 4.0.3 - mysql2 3.16.0 -> 3.22.5 - pg 8.16.3 -> 8.21.0 - cors, cross-env updates Phase 3 - Medium risk: - js-yaml 3.14.0 -> 4.2.0 (safeLoad -> load across 11 files) - markdown-it 11.0.1 -> 14.2.0 (+7 plugin updates) - luxon 1.25.0 -> 3.7.2 - fs-extra 9.0.1 -> 11.3.5 - cheerio 1.0.0-rc.5 -> 1.2.0 - highlight.js 10.3.1 -> 11.11.1 18 files changed, 67 insertions, 79 deletions	5 days ago
NGPixel	1d0d87af6e	fix: add cookie secure flag when site is using https	5 months ago
Nicolas Giard	b9fb17d4d4	fix: prevent password reset on disabled account	2 years ago
Jason Minard	491d63ceee	fix(auth): keycloak authentication post logout redirect for Keycloak 18+ (#5878 )	3 years ago
Charlotte County Public Schools	5acc7e752e	fix: add new props to existing auth strategies (#6250 )	3 years ago
Eric Knibbe	2e8585478f	fix(git): handle file renames between folders (#6020 ) * git storage: handle file renames between folders --------- Co-authored-by: Nicolas Giard <github@ngpixel.com>	3 years ago
Boris	54dbf9ad00	feat: add asciidoc editor module (#5954 ) * feat: add asciidoc editor module * fix storage file extension for asciidoc pages * fix: asciidoc editor + rendering improvements * fix: description list css improvements Co-authored-by: NGPixel <github@ngpixel.com>	4 years ago
NGPixel	9fbc25adb8	feat: improve table rendering + add markdown-it-decorate module	4 years ago
natsutteatsuiyone	2cb304100c	fix: Page Rules based on Tag Matches do not work for comment permissions (#5819 )	4 years ago
NGPixel	8715cd69b2	feat: edit shortcuts	4 years ago
myml	559b8ae8cf	fix: undefined author in git commit when deleting a page (#5215 )	4 years ago
NGPixel	dc5d8ddeb2	fix: handle page metadata parse failure	4 years ago
NGPixel	05b4053954	fix: encode filenames for assets force download	4 years ago
Manuel	1f489a3d8e	fix: handle multiple LDAP strategies (#5116 )	4 years ago
NGPixel	411802ec2f	fix: check update page access using original page path	4 years ago
Marián Skrip	69e9ccc636	fix: remove wild log that was possibly for debugging (#5021 )	4 years ago
NGPixel	e84c15b926	fix: scanSVG incorrect ext reference (#4825 )	5 years ago
NGPixel	79bdd44093	fix: force download of unsafe extensions	5 years ago
NGPixel	57b56d3a5b	fix: validate svg file extension in addition to client mime type	5 years ago
NGPixel	5d3e81496f	fix: sanitize SVG uploads	5 years ago
Eric Knibbe	c5a45e578e	fix: git storage - handle renamed files & assets (#4307 )	5 years ago
NGPixel	f55caab359	fix: convert page - handle tabsets	5 years ago
NGPixel	84b927915e	fix: convert page - task list + UI fixes	5 years ago
NGPixel	26f1c0f372	feat: convert page	5 years ago
scienceasdf	d7d00b44f6	fix: search engine broken when renaming or moving pages (#2815 ) For building suggest in elasticsearch, the safeContent field will be splitted into arrays. If the page is renamed or moved, the server will throw error: "Cannot read property 'split' of Undefined", and the index will be broken. Here two lines are added to fix this issue.	6 years ago
Jafar Akhondali	5ba36ee421	refactor: server code (#2545 ) + Remove duplicated await + Replace some legacy codes with ES6 + Fix some of eslint problems	6 years ago
NGPixel	fe890979af	fix: bypass auth redirect cookie when set to homepage	6 years ago
Mirko Iannella	31a18c8a67	fix: check for email array during processProfile (#2515 ) In our setup (based on yunohost) the profile.email field could be either a string (and that was properly handled) or an array. This code adds support for the case where it is an array.	6 years ago
NGPixel	9009816290	fix: 2fa qr code - handle special chars in site title	6 years ago
NGPixel	aa96e97028	fix: force lowercase for email on local auth	6 years ago
NGPixel	78417524b3	feat: ldap avatar support	6 years ago
NGPixel	ef739de970	feat: purge history utility	6 years ago
NGPixel	8490fc1267	feat: handle disabled auth strategies	6 years ago
NGPixel	062a0b7979	feat: logout by auth strategy + keycloak implementation	6 years ago
NGPixel	ae733392f3	feat: password reset	6 years ago
NGPixel	4dcf664040	fix: handle removed auth strategies	6 years ago
NGPixel	e319355017	feat: enable/disable TFA per user	6 years ago
NGPixel	32d67adee1	feat: social login providers with dynamic instances	6 years ago
NGPixel	f72530bf84	refactor: deps update + 2FA setup + verify	6 years ago
Higor Tavares	06c372d53f	fix: foreign key constraint when page have comments (#2199 ) * Solving foreing key contraint when page have comments * Update pages.js remove indentation changes Co-authored-by: Higor Tavares <paulo.freire@dellead.com>	6 years ago
NGPixel	10f17c5712	feat: redirect on login based on group	6 years ago
Regev Brody	b2ff064d34	fix: stream assets from storage local locations (#2087 )	6 years ago
NGPixel	b475795595	feat: login bg + bypass + hide local option	6 years ago
Nicolas Giard	c009cc1392	feat: new login experience (#2139 ) * feat: multiple auth instances * fix: auth setup + strategy initialization * feat: admin auth - add strategy * feat: redirect on login - group setting * feat: oauth2 generic - props definitions * feat: new login UI (wip) * feat: new login UI (wip) * feat: admin security login settings * feat: tabset editor indicators + print view improvements * fix: code styling	6 years ago
Seyed Sajad Kahani	3c5352fb53	fix: change reconnectLink behavior for page move (#1991 )	6 years ago
Regev Brody	6ef7b0f130	fix: deactivated users can still refresh their token (#2105 )	6 years ago
Regev Brody	4bc284b06e	fix: page schema validation for extra field (#2097 )	6 years ago
NGPixel	83b83a7510	feat: page css + scripts	6 years ago

1 2 3 4 5

216 Commits (ced29670fe9bb8f98cfb99b563acc3fb7cbadf71)