Andrew Dolgov
f8fc1ac543
login: check for stale session in login handler, instead of authenticate_user()
2018-10-16 11:39:12 +03:00
Andrew Dolgov
f730d7bb0a
another attempt to enforce session ID regeneration on login
2018-10-16 09:11:32 +03:00
Andrew Dolgov
65e98f4086
force regenerate session id on successful login, remove previous blank SID check
2018-10-15 15:47:50 +03:00
Andrew Dolgov
88adf3da1b
send_local_file: add application/octet-stream hack
...
cached_url: return original requested filename to save as
2018-08-16 12:16:51 +03:00
Andrew Dolgov
e6532439d6
force strip_tags() on all user input unless explicitly allowed
2017-12-03 23:35:38 +03:00
Andrew Dolgov
df5d2a0665
pluginhost: do not connect via legacy DB api until requested
...
log all initiated legacy database connections
2017-12-03 14:49:18 +03:00
Andrew Dolgov
b51d44a5e6
further stylesheet simplification related fixes (2)
2017-12-03 13:26:26 +03:00
Andrew Dolgov
09bc54c690
further stylesheet simplification related fixes
2017-12-03 13:25:34 +03:00
Andrew Dolgov
5e68e24679
css/less updates
2017-12-03 12:50:07 +03:00
Andrew Dolgov
187abfe732
main classes: remove sql_bool_to_bool() kludge
2017-12-03 09:35:59 +03:00
Andrew Dolgov
1d92297a96
dbupdater: use PDO
2017-12-02 01:28:30 +03:00
Andrew Dolgov
cb13089af1
public: use PDO headlines result (2)
2017-12-01 20:57:55 +03:00
Andrew Dolgov
dc393a580b
public: use PDO headlines result
2017-12-01 20:57:05 +03:00
Andrew Dolgov
1271407eea
public: partial conversion to PDO, misc fixes
2017-12-01 18:57:34 +03:00
Andrew Dolgov
9dd336a2c3
generate base css files using lessc
2017-11-29 18:55:12 +03:00
Andrew Dolgov
2352c320c2
fix possible sql injection in public/forgotpass
2017-11-20 08:48:18 +03:00
Gilles Grandou
81d96c0dee
makes 'order by title' to sort by title and by ascending date
...
* this allows to chronologically browse all articles with the
same title.
2017-10-09 22:50:03 +02:00
Andrew Dolgov
8b73bd28d8
remove apache-specific x-sendfile stuff
...
implement a hook (HOOK_SEND_LOCAL_FILE) which plugins may use to send files
via httpd-specific implementation to increase performance typically on larger files
2017-10-08 17:14:56 +03:00
Andrew Dolgov
b2d42e960b
replace some usages of SELF_URL_PATH with get_self_url_prefix()
2017-07-06 23:01:44 +03:00
Andrew Dolgov
5b6ea1ef91
remove pubsubhubbub: dead
2017-05-16 10:41:20 +03:00
Andrew Dolgov
2ed0d6c433
move counter cache to a separate class
...
fix references to get_article_tags
2017-05-04 15:22:57 +03:00
Andrew Dolgov
aeb1abedb2
move a bunch of functions into Feeds/Article namespaces
...
+ static function catchupArticlesById($ids, $cmode, $owner_uid = false) {
+ static function getLastArticleId() {
+ static function queryFeedHeadlines($params) {
+ static function getParentCategories($cat, $owner_uid) {
+ static function getChildCategories($cat, $owner_uid) {
move the rest of functions2.php back to functions.php as it is of more manageable size, remove the former
2017-05-04 15:13:02 +03:00
Andrew Dolgov
a230bf88a9
move to Article:
...
+ static function purge_orphans($do_output = false) {
move to Feeds
+ static function getGlobalUnread($user_id = false) {
+ static function getCategoryTitle($cat_id) {
+ static function getLabelUnread($label_id, $owner_uid = false) {
2017-05-04 15:00:21 +03:00
Andrew Dolgov
86a8351ca2
move the following to Feeds:
...
+ static function catchup_feed($feed, $cat_view, $owner_uid = false, $mode = 'all', $search = false) {
+ static function getFeedArticles($feed, $is_cat = false, $unread_only = false,
+ static function subscribe_to_feed($url, $cat_id = 0,
+ static function getFeedIcon($id) {
+ static function getFeedTitle($id, $cat = false) {
+ static function getCategoryUnread($cat, $owner_uid = false) {
+ static function getCategoryChildrenUnread($cat, $owner_uid = false) {
2017-05-04 14:50:56 +03:00
Andrew Dolgov
7e5f8d9fb3
move the following to Article:
...
+ static function format_article_enclosures($id, $always_display_enclosures,
+ static function format_article($id, $mark_as_read = true, $zoom_mode = false, $owner_uid = false) {
+ static function get_article_tags($id, $owner_uid = 0, $tag_cache = false) {
+ static function format_tags_string($tags) {
+ static function format_article_labels($labels) {
+ static function format_article_note($id, $note, $allow_edit = true) {
+ static function get_article_enclosures($id) {
2017-05-04 14:38:45 +03:00
Andrew Dolgov
ea79a0e033
remove some redundant php closing tags
2017-04-26 20:24:18 +03:00
Andrew Dolgov
41bead9baa
remove local file extensions and generalize some method names for cached media
...
file extensions may still be present in urls, but are ignored by the backend
MIGRATION (if you have any cached data worth keeping, not required):
in cache/images run "rename 's/\..*$//' *" i.e. strip file extensions
2017-03-23 14:55:40 +03:00
Andrew Dolgov
4daaf23491
allow user plugins to expose public methods out in a limited fashion
2017-02-10 16:04:28 +03:00
Andrew Dolgov
38b3998bbc
af_zz_imgproxy: use inline disposition, misc updates
2017-02-10 12:37:21 +03:00
Andrew Dolgov
9c7ebaa08c
cached_image: remove unnecessary basename()
2017-02-04 12:02:17 +03:00
Andrew Dolgov
0442cbb6c1
image cache: send files as content-disposition: attachment; add .png suffix to image urls
2017-02-04 11:32:24 +03:00
Andrew Dolgov
2f1a29d9c8
generate_syndicated_feed: sanitize content excerpt
2016-04-29 22:00:02 +03:00
Andrew Dolgov
977cea1438
actually check for failures properly in the dbupdater
2016-04-26 20:04:24 +03:00
Andrew Dolgov
9232283815
pass feed information to hook_article_export_feed
2016-03-01 14:42:15 +03:00
Andrew Dolgov
399678a14e
add PluginHost.HOOK_ARTICLE_EXPORT_FEED
2016-03-01 14:39:36 +03:00
Andrew Dolgov
3261dbfa21
generate_syndicated_feed: pass article id to sanitize()
2016-02-11 20:12:01 +03:00
Andrew Dolgov
b87744534a
add plugin-based filter actions (see example plugin in attic)
...
bump schema
2015-08-11 23:28:42 +03:00
Andrew Dolgov
f5a0fb8b64
queryFeedHeadlines: move to array-based arguments, optionally check if first element changed when paginating
2015-07-12 01:29:36 +03:00
Andrew Dolgov
9090b874ab
simplify search, remove search_mode as useless
...
remove dialog to select by tags, simplify browsing by tag query
2015-07-07 15:59:32 +03:00
Andrew Dolgov
27f7b59353
add a wrapper for standard error codes returned by backend, also add explanation to the error object if possible
2015-03-30 13:02:24 +03:00
Andrew Dolgov
f75e7c6446
rename url_to_tag_uri to a more relevant name
2015-03-28 16:13:39 +03:00
Andrew Dolgov
4b7391de7b
generated feed: use tag: instead of the public.php URL as an entry ID; set enclosure length to 1 if unknown
2015-03-28 16:11:44 +03:00
Andrew Dolgov
0c6f7b314a
remove image.php; put cached image endpoint to public.php
2015-02-27 14:51:26 +03:00
Andrew Dolgov
9b1e591854
include subcategories in generated category feeds
2014-10-11 20:18:35 +04:00
Andrew Dolgov
4b19d4ac91
properly show cached images in syndicated feeds
2014-06-18 14:55:41 +04:00
Andrew Dolgov
d1e631f301
generated feeds, add ts= (strtotime) start timestamp
2014-03-09 21:48:22 +04:00
Andrew Dolgov
5303f9a71a
rework password reset to work through temporary link
2014-03-09 11:17:29 +04:00
Andrew Dolgov
f7439d69cd
comment out subtest
2014-03-05 16:49:45 +04:00
Andrew Dolgov
97b7d5c038
split functions php into two parts because syntastic is too slow
...
get_feeds_from_html: stricter feed detection based on whatwg guidelines
2014-03-05 16:48:41 +04:00
Andrew Dolgov
38e063418d
public: remove subscribe2 (unused?)
2014-03-04 20:27:43 +04:00
Andrew Dolgov
4a80c57c50
remove some unused code reported by phpmd
2014-02-19 15:42:52 +04:00
Andrew Dolgov
6214a0768a
reinstate scriptaculous controls (needed for ajax.autocomplete)
2014-01-28 15:31:41 +04:00
Andrew Dolgov
cdbcb2778a
move Zoom stylesheet to a separate file
...
update stylesheet/javascript tag helpers to return output instead of
printing it
2014-01-28 01:39:24 +04:00
Andrew Dolgov
fd94d63122
mention username in login failed syslog message
2014-01-19 15:16:14 +04:00
Andrew Dolgov
bf5bcb8e27
queryFeedHeadlines: remove obsolete content_preview
2013-11-29 13:54:30 +04:00
Andrew Dolgov
5bcb7b61b0
syndicated feeds: default to change exported guid
2013-11-20 20:12:29 +04:00
Andrew Dolgov
43d790f054
pubsubhubbub: disable feed url checking when subscribing for the time being, expand error messages a bit
2013-11-11 23:02:37 +04:00
Andrew Dolgov
0ee126ee8f
remove a few parser warnings from generated feeds
2013-10-06 11:28:06 +04:00
Andrew Dolgov
84c53d0e1d
fix http 304 header being calculated incorrectly for published and starred feeds
2013-10-04 09:10:44 +04:00
Andrew Dolgov
d0ee0f52b7
use favicon in some auxiliar dialogs
2013-09-30 00:01:34 +04:00
Andrew Dolgov
bc262b6778
unfuck headlines_hook for syndicated feeds
2013-08-21 18:26:34 +04:00
Andrew Dolgov
4e5ddeafa6
make cache starred plugin use hook_house_keeping
2013-08-02 14:12:56 +04:00
Andrew Dolgov
910592b49a
add plugin to cache images in starred articles; pass article_id to
...
sanitize
2013-08-02 14:04:14 +04:00
Andrew Dolgov
113c3dec9e
make globalUpdateFeeds handler use simple update mechanism to prevent script timeouts
2013-07-24 12:55:10 +04:00
justauser
3b96b0ed7c
Merge branch 'master' into hookhead
...
Conflicts:
include/functions.php
changes for conflicts with master
2013-07-07 13:57:06 -04:00
Julien Tardot
39119f0216
Correct feed ID in feeds self URL.
2013-07-07 11:55:06 +02:00
Andrew Dolgov
62e7136b74
Merge branch 'master' of github.com:gothfox/Tiny-Tiny-RSS
2013-07-07 01:03:53 +04:00
Andrew Dolgov
356e13b161
rename orig_guid to no_orig_guid
2013-07-07 01:03:45 +04:00
Andrew Dolgov
fcf6bfba32
syndicated feeds: add orig_guid to optionally alter item id to workaround duplicate checking for syndicated content; add <link> element to <source>
2013-07-07 00:59:23 +04:00
guillaume-uH57J9
c4cab4ecf4
Report failed login attemps using user_error
2013-07-06 15:34:42 +02:00
shibuya246
ab10707fac
add <source><title> to feed rss output
2013-07-01 19:53:27 +09:00
justauser
575a52874c
fixed a typo
2013-06-29 03:11:38 -04:00
justauser
6763143835
Changed the implementation of HOOK_QUERY_HEADLINES to deal with issue Fox raised
2013-06-28 10:46:45 -04:00
justauser
891e36f57e
Changes to add a new hook: HOOK_QUERY_HEADLINES. An example is provided.
2013-06-27 11:18:23 -04:00
Roland Angerer
0806d68bac
bugfix: list correct profile IDs on login page
2013-06-13 11:24:51 +02:00
Andrew Dolgov
25051fb84b
support custom order in generated feeds ( closes #709 )
2013-06-05 12:56:43 +04:00
Andrew Dolgov
67e0cf9a37
add startup_gettext() calls to several endpoints for unregistered users so the output would be translated based on accept-language header
2013-05-29 15:41:19 +04:00
Andrew Dolgov
5bbc4bb4b0
move stylesheets to css/, reference default tt-rss stylesheets from
...
default.css to make custom themes easier
2013-05-19 21:22:01 +04:00
Rasmus Lerdorf
6f7798b643
Fixing bugs found by static analysis
2013-05-07 00:35:10 -07:00
Andrew Dolgov
b18d109f22
only get USER_LANGUAGE on schema 120 and up
2013-04-30 09:34:24 +04:00
Andrew Dolgov
7b149552cb
remove language selector from the login form, store language in the database per-user
2013-04-29 15:54:23 +04:00
Andrew Dolgov
e2cf81e214
unify houskeeping stuff, increase spawn interval
2013-04-24 14:54:59 +04:00
Andrew Dolgov
3c200461f8
more notice css tweaks
2013-04-18 22:27:05 +04:00
Andrew Dolgov
1ffe3391f9
make pluginhost a singleton
2013-04-18 12:27:34 +04:00
Andrew Dolgov
52d88392da
move db-prefs to OO
2013-04-18 12:00:01 +04:00
Andrew Dolgov
0630a100d5
revert OO-db access in dbupdater, create DbUpdater() correctly
2013-04-17 21:40:04 +04:00
Andrew Dolgov
d9c85e0f11
classes: use OO DB interface
2013-04-17 20:12:14 +04:00
Andrew Dolgov
a42c55f02b
fix blank character after opening bracket in function calls
2013-04-17 18:34:18 +04:00
Andrew Dolgov
6322ac79a0
remove $link
2013-04-17 16:48:41 +04:00
Andrew Dolgov
f240d26e46
move db-updater functionality to public, remove db-updater.php
2013-04-04 19:45:26 +04:00
Andrew Dolgov
b4c47f7e7b
add command-line db schema updater
2013-04-04 19:15:14 +04:00
Andrew Dolgov
aadd636a01
enable remember me
2013-04-04 17:59:04 +04:00
Andrew Dolgov
9ce7a5546c
implement some tweaks to session handling; properly remove session cookie if invalid/login failed
2013-04-04 15:33:14 +04:00
Andrew Dolgov
2faef8349c
generated feeds: lower default query limit
2013-04-01 21:15:50 +04:00
Andrew Dolgov
d6ba77f3ad
fix 304 being returned all the time
2013-04-01 21:13:13 +04:00
Andrew Dolgov
2e35a7070b
generated feeds: support if-modified-since
2013-04-01 21:08:32 +04:00
symac
e9c6e27ddb
Update public.php
...
Adding ability to access ARTICLE_NOTE directly in themes. Needed in a project of sharing RSS with notes in a specific atom field.
2013-03-31 21:58:22 +03:00
Andrew Dolgov
e216d3025f
forgotpass: remove secretkey stuff because of new session handling; use stylesheet/javascript_tag
2013-03-29 10:10:20 +04:00
Andrew Dolgov
9a2aed9193
sharepopup: use stylesheet/javascript_tag
2013-03-29 10:06:28 +04:00
Andrew Dolgov
7ef7dd31ee
syndicated feeds: fix ordering for last_marked etc
2013-03-28 21:34:28 +04:00