Andrew Dolgov
c10a43069e
debug logging system rework:
...
* support various logging levels per-message
* remove hacks like debug_suppress, DAEMON_EXTENDED_DEBUG, etc
* _debug() is kept as a compatibility shim for plugins
2018-11-30 08:34:29 +03:00
Andrew Dolgov
b2f0858060
sanity config: fix typo
2018-11-22 22:15:27 +03:00
Andrew Dolgov
d5256c8228
update sanity_config.php
2018-11-22 21:47:58 +03:00
Andrew Dolgov
5f66f872b6
fix session write handler always assuming that database entry exists and failing silently if it doesn't; remove session cookie-related hacks
2018-10-16 14:07:42 +03:00
Andrew Dolgov
d246fb9fe1
remove session REMOTE_ADDR checks
2018-10-16 12:12:07 +03:00
Andrew Dolgov
f8fc1ac543
login: check for stale session in login handler, instead of authenticate_user()
2018-10-16 11:39:12 +03:00
Andrew Dolgov
f730d7bb0a
another attempt to enforce session ID regeneration on login
2018-10-16 09:11:32 +03:00
Andrew Dolgov
9dadbdbb21
properly save auth_module after logging in
2018-10-16 07:34:22 +03:00
Andrew Dolgov
77aebd7e4a
it was probably not the best idea to use session_regenerate_id() right after session_start(), duh
2018-10-15 21:47:12 +03:00
Andrew Dolgov
5feed36a3c
do not use separate _ssl cookie for secure sessions
2018-10-15 15:48:37 +03:00
Andrew Dolgov
65e98f4086
force regenerate session id on successful login, remove previous blank SID check
2018-10-15 15:47:50 +03:00
Andrew Dolgov
74736fce0f
if empty session is autostarted because of a cookie, immediately destroy it
2018-10-15 14:53:35 +03:00
Andrew Dolgov
7d53c2b501
validate_session: bring back IP session binding (enabled by default) and UA checking
2018-10-15 08:26:07 +03:00
Andrew Dolgov
ec5687a62b
logout user: commit destroyed session
2018-10-14 22:50:45 +03:00
Andrew Dolgov
d2e1e60ecc
1. per-feed option STRIP_IMAGES should now also affect other media tags
...
2. video/audio elements were not replaced with text links properly in
low bandwidth mode
2018-09-07 09:55:43 +03:00
Andrew Dolgov
f3068c6397
send_local_file: touch() sent files to reset their expiration cooldown
2018-08-23 13:43:31 +03:00
Andrew Dolgov
02bb26a93f
rewrite_cached_urls: support video posters
2018-08-20 14:13:14 +03:00
Andrew Dolgov
a1b8651949
Revert "add (hidden) _NGINX_XACCEL_PREFIX which uses nginx X-Accel-Redirect to serve static files faster"
...
This reverts commit c5c3a0a2a8
.
2018-08-20 12:48:23 +03:00
Andrew Dolgov
2aef804f4b
split transparent rewriting of locally cached media URLs to execute after both sanitize() and HOOK_RENDER_ARTICLE to allow plugins work on original source URLs consistently
2018-08-20 12:12:32 +03:00
Andrew Dolgov
c5c3a0a2a8
add (hidden) _NGINX_XACCEL_PREFIX which uses nginx X-Accel-Redirect to serve static files faster
2018-08-20 09:14:10 +03:00
Andrew Dolgov
88adf3da1b
send_local_file: add application/octet-stream hack
...
cached_url: return original requested filename to save as
2018-08-16 12:16:51 +03:00
Andrew Dolgov
c4869cd573
if PHP_VERSION check fails, show current version
2018-08-13 20:13:08 +03:00
Andrew Dolgov
75e765aa00
bump version_static
2018-08-13 16:12:03 +03:00
Andrew Dolgov
848c6ac655
bump required php version to 5.6
2018-08-13 16:04:09 +03:00
Andrew Dolgov
069aea5989
remove FEED_CRYPT_KEY and everything related to it
...
always assume auth_pass_encrypted is false
2018-08-13 15:59:24 +03:00
Andrew Dolgov
a2d1fa5b14
autoloader: check if class name is namespaced before trying to split it
2018-07-18 13:25:18 +03:00
Andrew Dolgov
df47100ad1
remove SWF enclosure audio player
2018-06-20 18:17:44 +03:00
Andrew Dolgov
a9105e2a61
move JShrink Minifier to vendor/
2018-06-20 15:04:59 +03:00
Andrew Dolgov
2aaefbfa54
update autoloader to consider namespaces for third party libraries: placed and loaded from vendor/namespace/classpath.php
...
update readability to a newer implementation based on Readability.js (https://github.com/andreskrey/readability.php )
add vendor/Psr/Log interface required for the above
2018-06-20 14:58:09 +03:00
Andrew Dolgov
d00d515320
feedbrowser: fix incorrect usage of LIMIT in prepared statement
2018-06-18 23:50:32 +03:00
Tobias Bell
af3663edec
Don't bail out if git gc removed refs
2018-06-08 22:07:30 +02:00
Andrew Dolgov
68d9c412ea
fetch_file_contents: allow setting http Accept header
2018-05-25 14:25:08 +03:00
Andrew Dolgov
f0dbfedc81
increase buffersize to 16384 bytes
...
(also some trailing whitespace got clipped)
2018-05-23 10:40:28 +03:00
Alexander Yaburov
74a98a6ff2
increased CURLOPT_BUFFERSIZE from 128 to 256
2018-05-23 10:02:03 +05:00
Andrew Dolgov
b14f6d58b4
implement hard limits on downloaded data size for general fetching and cache plugins: MAX_DOWNLOAD_FILE_SIZE & MAX_CACHE_FILE_SIZE
2018-05-20 11:08:33 +03:00
foobar
2008ec4ed7
change filter rule regexp type to text
2018-04-14 14:11:29 +02:00
JustAMacUser
905ff10dc9
Allow abbr tag when sanitizing.
2018-02-27 16:06:10 +00:00
Andrew Dolgov
e7c9bc60ec
fix previous wrt if-modified-since being added to context options headers
2018-02-25 14:22:46 +03:00
Metallizzer
dd597297cb
Обновить 'include/functions.php'
...
The "Connection: close" header is added to the context_options
2018-02-25 10:03:09 +00:00
Andrew Dolgov
3d7db21602
Merge branch 'master' of git.fakecake.org:tt-rss
2018-02-12 09:37:31 +03:00
Andrew Dolgov
8babb8e75a
sanitize: disallow width and height attributes for images
2018-02-11 16:47:19 +03:00
fox
1aeb282be1
Merge branch 'save-effective-url' of JustAMacUser/tt-rss into master
2018-02-11 08:57:12 +00:00
JustAMacUser
7ae05ed790
Have fetch_file_contents() save the effective URL.
2018-02-11 07:56:28 +00:00
Andrew Dolgov
2eaf2a1f36
tag_is_valid: simplify code
2018-02-11 10:26:33 +03:00
Andrew Dolgov
7f4a404566
include: convert some spaces to tabs
2018-01-30 10:44:31 +03:00
martin scharm
32dc9ec854
undocumenting the proxy settings [see #36 ]
...
in response to https://git.tt-rss.org/git/tt-rss/pulls/36#issuecomment-119
2018-01-18 08:48:53 +01:00
martin scharm
213c01d459
some proxies require `request_fulluri` set to true [see #36 ]
...
at least polipo won't work for plain HTTP URLs (HTTPS strangely also works without `request_fulluri`..?)
see https://git.tt-rss.org/git/tt-rss/pulls/36
2018-01-17 12:28:47 +01:00
martin scharm
ea55f2e11c
Add proper support for proxies
...
There are situations where you want tt-rss to use a proxy (e.g.
because of network restrictions, or privacy concerns).
tt-rss already comes with an undocumented `_CURL_HTTP_PROXY`
variable (see eg https://binfalse.de/2015/05/06/ttrss-with-proxy/ ),
however that won't have an effect when, for example, php-curl is
not installed, see
c30f5e1811/include/functions.php (L377)
In this case it would use the `file_get_contents` with a stream
context without a proxy definition:
c30f5e1811/include/functions.php (L487)
Here I propose to properly support proxies, and I introduced a
`PROXY` variable, that is respected in both scenarios, with and
without curl installed.
2018-01-14 00:30:22 +01:00
Andrew Dolgov
9274109c19
search_to_sql: quote fallback search language
2017-12-30 16:27:05 +03:00
JustAMacUser
56c2216295
Add missing quotes to array_map.
2017-12-30 01:00:56 -05:00
Andrew Dolgov
bed2d6e054
force-cast some variables used in queries to integer
...
do not display SQL query in headlines debug mode
2017-12-17 16:24:13 +03:00
Andrew Dolgov
7651b6e2cd
sanitize: disable referrer via referrerpolicy for img elements
2017-12-13 20:07:10 +03:00
Andrew Dolgov
4d10b4abca
merge login form css into default.css
...
update more hardcoded colors to use @color-accent
update @color-accent
2017-12-10 22:51:39 +03:00
Andrew Dolgov
f8db5bb4db
installer: use PDO, improve wording for some notices
...
PDO wrapper: allow working with blank DB_HOST
2017-12-10 09:20:52 +03:00
Andrew Dolgov
76fc7a2d9c
bool_to_sql_bool: for some reason PDO really likes integers for boolean columns
...
incidentally this fixes OPML filter import
2017-12-06 00:12:28 +03:00
Andrew Dolgov
c4a08e4ff0
remove mentions of deprecated.js
2017-12-05 07:09:01 +03:00
Andrew Dolgov
e6532439d6
force strip_tags() on all user input unless explicitly allowed
2017-12-03 23:35:38 +03:00
Andrew Dolgov
fa3bcfa379
queryfeedheadlines: there's no need to quote order_by/override_order
...
else: feedicon cache busting etc
2017-12-03 22:49:57 +03:00
Andrew Dolgov
7c0eb1b621
add defaultPasswordWarning nag dialog
2017-12-03 20:46:27 +03:00
Andrew Dolgov
bfebf57c5f
get_theme_path: fallback to css/default.css if default theme is selected
2017-12-03 14:17:25 +03:00
Andrew Dolgov
2cf93c046c
pref-users: fix sorting the table
2017-12-03 13:54:31 +03:00
Andrew Dolgov
3eecebc34f
sanity_check: do not invoke PDO without checking that it exists
2017-12-03 13:41:09 +03:00
Andrew Dolgov
97a5e13370
add sanity check for PDO
2017-12-03 13:40:09 +03:00
Andrew Dolgov
83303f20e0
update version static for css & db changes
2017-12-03 13:38:25 +03:00
Andrew Dolgov
09bc54c690
further stylesheet simplification related fixes
2017-12-03 13:25:34 +03:00
Andrew Dolgov
8ff3cbb32e
filters: remove sql_bool_to_bool()
...
checkbox_to_sql_bool: return ints (???)
2017-12-03 09:26:11 +03:00
Andrew Dolgov
ed5cd6eae5
get_feed_access_key: param type bullshit
2017-12-03 00:25:12 +03:00
Andrew Dolgov
6cf3a57282
login: fix profile dropdown popping out in a weird place
2017-12-03 00:23:11 +03:00
Andrew Dolgov
7d960ce7e9
auth_internal: use PDO + other fixes
2017-12-03 00:18:08 +03:00
Andrew Dolgov
4ee398a41e
Merge branch 'master' of git.fakecake.org:tt-rss into pdo-experimental
2017-12-02 23:13:49 +03:00
Andrew Dolgov
1e78803c44
search_to_sql: leftover tsquery query fix for pgsql
2017-12-02 23:11:28 +03:00
Andrew Dolgov
a2d77092fe
search_to_sql: quoting fix
2017-12-02 22:58:59 +03:00
Andrew Dolgov
0002e598f8
sql_bool_to_bool: backwards compat fix
2017-12-02 22:39:34 +03:00
Andrew Dolgov
e4befe6bf4
fix label cache being double escaped on save
...
remove some old-style escaping
2017-12-02 15:47:53 +03:00
Andrew Dolgov
ef83c69404
more boolean fixes
2017-12-02 14:13:16 +03:00
Andrew Dolgov
da9ea57d1c
checkbox to sql bool related changes, some more boolean fixes
2017-12-02 14:07:48 +03:00
Andrew Dolgov
7ccb4e91ff
boolean handling changes which probably won't break everything
2017-12-02 14:02:01 +03:00
Andrew Dolgov
c949a9282e
OPML: use PDO; minor fixes
2017-12-02 01:08:30 +03:00
Andrew Dolgov
fbe7cb0a48
rpc: switch to PDO
2017-12-01 23:49:14 +03:00
Andrew Dolgov
ecf6baaa1c
fix add_feed_category
2017-12-01 22:17:04 +03:00
Andrew Dolgov
cc9450c309
ccache, misc: fixes
...
feeds: start PDO transition
2017-12-01 19:42:02 +03:00
Andrew Dolgov
1271407eea
public: partial conversion to PDO, misc fixes
2017-12-01 18:57:34 +03:00
Andrew Dolgov
cab58c44ae
some minor PDO-related fixes
2017-12-01 18:26:53 +03:00
Andrew Dolgov
c9d5c26041
auth/base: PDO
...
functions: fix small pdo-related bug
2017-12-01 17:40:53 +03:00
Andrew Dolgov
d068111a37
controls: PDO
2017-12-01 15:10:05 +03:00
Andrew Dolgov
bbd9e5045e
controls: start pdo stuff
2017-12-01 15:03:14 +03:00
Andrew Dolgov
4ff8bdcb00
feedbrowser: PDO
2017-12-01 14:56:27 +03:00
Andrew Dolgov
fdda3e4efb
pdo pdo pdo
2017-12-01 14:50:10 +03:00
Andrew Dolgov
4d13514dd4
sessions: PDO
2017-12-01 14:48:23 +03:00
Andrew Dolgov
a21f7495ae
more pdo stuff
2017-12-01 14:39:24 +03:00
Andrew Dolgov
90dafaa9f6
add qmarks function
2017-12-01 12:44:54 +03:00
Andrew Dolgov
b78a6f08b6
more pdo stuff i guess
2017-12-01 12:42:18 +03:00
Andrew Dolgov
7c4d7bce3f
increase default of MAX_CONDITIONAL_INTERVAL to 12 hours
2017-12-01 11:51:46 +03:00
Andrew Dolgov
8aa568b3a2
some more pdo stuff
2017-12-01 10:35:22 +03:00
Andrew Dolgov
bfc54b0369
Merge branch 'pdo-experimental' of git.fakecake.org:tt-rss into pdo-experimental
2017-12-01 10:17:36 +03:00
Andrew Dolgov
e50c8eaa4e
enforce unconditional requests every 6 hours even if server claims data is not modified
2017-11-30 13:12:28 +03:00
Andrew Dolgov
ecd2e414bd
add ttrss_feeds.last_unconditional (schema bump)
2017-11-30 12:55:50 +03:00
Andrew Dolgov
8adb3ec472
add some WIP pdo stuff
2017-11-30 12:28:07 +03:00
Andrew Dolgov
9dd336a2c3
generate base css files using lessc
2017-11-29 18:55:12 +03:00
Andrew Dolgov
820873de9f
update myisam fail warning
2017-11-27 20:20:33 +03:00
Andrew Dolgov
0b68b1629e
add a sanity check for tt-rss myisam tables
2017-11-27 20:09:02 +03:00
woxcab
6eeeec4838
Allow <hr> tag in the RSS item' description
2017-11-03 10:23:29 +03:00
Andrew Dolgov
9d930af9e1
fetch_file_contents: improve error handling
...
1. if request fails get error string from http response status line
2. do not override http error with possible CURL/php specific last error
3. fix silent php error generated while processing response headers to get last modified value
2017-10-30 13:13:10 +03:00
Andrew Dolgov
8716ec20d6
add sanity check for mime_content_type()
2017-10-29 10:17:43 +03:00
Andrew Dolgov
8b73bd28d8
remove apache-specific x-sendfile stuff
...
implement a hook (HOOK_SEND_LOCAL_FILE) which plugins may use to send files
via httpd-specific implementation to increase performance typically on larger files
2017-10-08 17:14:56 +03:00
wn_
701c5a7ee4
get_favicon_url: only check base elements with href attribute
2017-10-01 15:47:31 -05:00
wn_
241f69e4db
Handle potentially-relative base element when getting favicon.
...
The base element's "href" attribute is not required to be absolute,
so rewrite relative to the site URL if it is relative.
See:
* https://www.w3.org/TR/html51/document-metadata.html#the-base-element
* https://html.spec.whatwg.org/multipage/semantics.html#the-base-element
2017-10-01 14:25:12 -05:00
Andrew Dolgov
153cb6d305
add support for http 304 not modified (no timestamp calculation bullshit like last time)
2017-08-17 14:40:21 +03:00
Andrew Dolgov
5e78b0c253
do not base headlines label context submenu on feed tree labels category
2017-07-30 11:55:30 +03:00
Andrew Dolgov
1b5b1e5fec
sessions: use is_server_https() for secure cookie setting
2017-07-17 07:33:43 +03:00
Natan Frei
e234ac8dcb
$_SERVER['HTTPS'] can be exists and 'off' for non-https connectios
2017-07-17 00:44:48 +03:00
Andrew Dolgov
09628e1b1a
rework previous 32 bit session stuff
2017-07-13 14:40:30 +03:00
Andrew Dolgov
e6d77d2b29
Merge branch 'master' of git.fakecake.org:tt-rss
2017-07-13 08:57:31 +03:00
Andrew Dolgov
b465c28ee0
sessions: clip max expiry value to a 32bit integer
2017-07-13 08:57:07 +03:00
Andrew Dolgov
9f7bd151c6
hopefully unify handling of server HTTPS variables where needed, use scheme based on SELF_URL_PATH otherwise
2017-07-10 16:20:40 +03:00
Cédric Barboiron
643ebe4229
sanity: check X-Forwarded-Proto for self_url
2017-07-10 14:04:50 +02:00
Andrew Dolgov
b2d42e960b
replace some usages of SELF_URL_PATH with get_self_url_prefix()
2017-07-06 23:01:44 +03:00
Andrew Dolgov
948471a44b
self url path checking: accept value without an ending slash
2017-07-06 22:51:56 +03:00
Andrew Dolgov
2953687b72
sanity: it's probably a good idea to check whether we're running under httpd before enforcing SELF_URL_PATH checks
2017-07-05 22:46:05 +03:00
Andrew Dolgov
1f91695895
previous: spaces -> tabs
2017-07-05 22:07:41 +03:00
Andrew Dolgov
7506b61af2
sanity: check whether SELF_URL_PATH conforms to data returned by httpd
2017-07-05 22:00:31 +03:00
Andrew Dolgov
d76d5e86d2
controls: disable print_feed_select (unused)
2017-07-02 22:57:06 +03:00
Andrew Dolgov
10a1f28f7c
schema: updates for new filter format (bump version to 131)
2017-07-02 20:59:24 +03:00
Andrew Dolgov
02f3992a5a
Revert "Revert "filters: support matching on multiple feeds/categories""
...
This reverts commit f5d174bda9
.
2017-07-02 20:37:52 +03:00
Andrew Dolgov
f5d174bda9
Revert "filters: support matching on multiple feeds/categories"
...
This reverts commit 0bf7e007bb
.
2017-07-02 20:37:01 +03:00
Andrew Dolgov
0bf7e007bb
filters: support matching on multiple feeds/categories
...
opml: update filter export/import for new format
2017-07-02 20:27:21 +03:00
Andrew Dolgov
6fd0399694
tunables:
...
* add CACHE_MAX_DAYS as a tunable generic expiry interval for various cached files
* add some comments to tunables in functions.php
* rename _MIN_CACHE_FILE_SIZE to MIN_CACHE_FILE_SIZE
* respect MIN_CACHE_FILE_SIZE setting in a few more places where content is cached
2017-05-29 23:14:42 +03:00
wn_
9b8bec700a
Replace '__autoload' (deprecated in PHP 7.2) with 'spl_autoload_register'.
...
http://php.net/manual/en/function.autoload.php
http://php.net/spl_autoload_register
https://wiki.php.net/rfc/deprecations_php_7_2
2017-05-27 10:52:16 -05:00
Andrew Dolgov
5b6ea1ef91
remove pubsubhubbub: dead
2017-05-16 10:41:20 +03:00
Andrew Dolgov
c114a2596f
move add_feed_url() to pref_feeds
2017-05-11 09:07:49 +03:00
Andrew Dolgov
4fd0790804
fix DAEMON_SLEEP_INTERVAL not being defined when used
...
enforce minimum 60 sec spawn/sleep interval in update processes
2017-05-06 10:54:14 +03:00
Andrew Dolgov
e6c886bf66
wrap rssfuncs into rssutils class
2017-05-05 18:10:07 +03:00
Andrew Dolgov
65af3b2cbb
move counter stuff to a separate class
2017-05-05 11:54:31 +03:00
Andrew Dolgov
e35ba0e212
add sanity check for SELF_URL_PATH going to http url if server is accessed over https
2017-05-05 10:16:54 +03:00
Andrew Dolgov
7c9b5a3fe4
move label stuff to Labels class
...
fix some unresolved functions
2017-05-04 15:57:40 +03:00
Andrew Dolgov
c2f0f24e4c
move digest stuff to Digest class
2017-05-04 15:41:38 +03:00
Andrew Dolgov
0086a89740
move some label stuff to labels.php
...
move getfeedcategory() to Feeds
2017-05-04 15:36:36 +03:00
Andrew Dolgov
904aff7667
abs_to_rel_path: removed
2017-05-04 15:28:21 +03:00
Andrew Dolgov
4a0da0e5bf
move get_article_labels to Article
2017-05-04 15:26:21 +03:00
Andrew Dolgov
2ed0d6c433
move counter cache to a separate class
...
fix references to get_article_tags
2017-05-04 15:22:57 +03:00
Andrew Dolgov
aeb1abedb2
move a bunch of functions into Feeds/Article namespaces
...
+ static function catchupArticlesById($ids, $cmode, $owner_uid = false) {
+ static function getLastArticleId() {
+ static function queryFeedHeadlines($params) {
+ static function getParentCategories($cat, $owner_uid) {
+ static function getChildCategories($cat, $owner_uid) {
move the rest of functions2.php back to functions.php as it is of more manageable size, remove the former
2017-05-04 15:13:02 +03:00
Andrew Dolgov
a230bf88a9
move to Article:
...
+ static function purge_orphans($do_output = false) {
move to Feeds
+ static function getGlobalUnread($user_id = false) {
+ static function getCategoryTitle($cat_id) {
+ static function getLabelUnread($label_id, $owner_uid = false) {
2017-05-04 15:00:21 +03:00
Andrew Dolgov
86a8351ca2
move the following to Feeds:
...
+ static function catchup_feed($feed, $cat_view, $owner_uid = false, $mode = 'all', $search = false) {
+ static function getFeedArticles($feed, $is_cat = false, $unread_only = false,
+ static function subscribe_to_feed($url, $cat_id = 0,
+ static function getFeedIcon($id) {
+ static function getFeedTitle($id, $cat = false) {
+ static function getCategoryUnread($cat, $owner_uid = false) {
+ static function getCategoryChildrenUnread($cat, $owner_uid = false) {
2017-05-04 14:50:56 +03:00
Andrew Dolgov
7e5f8d9fb3
move the following to Article:
...
+ static function format_article_enclosures($id, $always_display_enclosures,
+ static function format_article($id, $mark_as_read = true, $zoom_mode = false, $owner_uid = false) {
+ static function get_article_tags($id, $owner_uid = 0, $tag_cache = false) {
+ static function format_tags_string($tags) {
+ static function format_article_labels($labels) {
+ static function format_article_note($id, $note, $allow_edit = true) {
+ static function get_article_enclosures($id) {
2017-05-04 14:38:45 +03:00
Andrew Dolgov
4122da0290
move getArticleFeed to Article
...
move print_label_select to controls
2017-05-04 14:26:44 +03:00
Andrew Dolgov
e60d5b0a84
move opml-specific get_feed_category to opml.php
2017-05-04 14:24:30 +03:00
Andrew Dolgov
9549e33c2c
move some common control-generating functions to controls.php
2017-05-04 14:22:23 +03:00
Andrew Dolgov
07d3431e28
update_rss_feed: minor code cleanup
2017-04-27 13:08:43 +03:00
Andrew Dolgov
ea79a0e033
remove some redundant php closing tags
2017-04-26 20:24:18 +03:00
Andrew Dolgov
7b55001eee
fix various issues reported by static analysis
...
update gitlab-ci config
2017-04-26 15:29:22 +03:00
Andrew Dolgov
467bc4fe03
bump version_static to 17.4
2017-04-23 00:48:51 +03:00
Andrew Dolgov
337535416f
filter by search results while marking feed as read
2017-03-31 11:21:35 +03:00
Andrew Dolgov
86e534290e
enclosures: rewrite relative urls on import, duh
2017-03-27 19:20:46 +03:00
Andrew Dolgov
9594ea6875
add cosmetic suffixes back for cached url links
2017-03-23 18:26:43 +03:00
Andrew Dolgov
dc2c4b13d4
when choosing enclosures to embed or rewrite (af_zz_imgproxy) only use content type instead of "filename"-based hacks
2017-03-23 15:22:00 +03:00
Andrew Dolgov
388d4dfa88
enable caching of media in article enclosures
2017-03-23 15:19:25 +03:00
Andrew Dolgov
48eefd8c5c
allow caching of audio files
2017-03-23 15:03:22 +03:00
Andrew Dolgov
41bead9baa
remove local file extensions and generalize some method names for cached media
...
file extensions may still be present in urls, but are ignored by the backend
MIGRATION (if you have any cached data worth keeping, not required):
in cache/images run "rename 's/\..*$//' *" i.e. strip file extensions
2017-03-23 14:55:40 +03:00
Andrew Dolgov
8519c68d93
rewrite relative urls for html5 audio source elements
2017-03-06 09:20:58 +03:00
Andrew Dolgov
1bfe1d7b31
simplify error handling
...
* less convoluted exception dialogs
* use window.onerror for the majority of exception catching/reporting
* remove most of now useless try/catch blocks
* report stacktrace instead of manually specified error locations
2017-03-04 14:34:44 +03:00
Luc Didry
453787526a
Improve update_feedbrowser_cache SQL query
2017-02-16 12:05:32 +01:00
Andrew Dolgov
4a23031fcd
rewrite_relative_url: cleanup resulting url path while rewriting
2017-02-13 15:25:21 +03:00
Andrew Dolgov
454292b295
format_article_enclosures: allow embedding .jpeg files
2017-02-12 20:24:29 +03:00
Andrew Dolgov
676c7303ca
add HOOK_ENCLOSURE_ENTRY for af_zz_imgproxy (2)
2017-02-12 17:02:07 +03:00
Andrew Dolgov
58210301e0
add HOOK_ENCLOSURE_ENTRY for af_zz_imgproxy
2017-02-12 16:01:28 +03:00
Jérémy DECOOL
ba2853caac
Prevent target='_blank' vulnerability on dynamic link
2017-02-12 11:01:36 +01:00
Andrew Dolgov
fafd32e2dc
use get_self_url_prefix() when rewriting cached images
2017-02-10 15:14:47 +03:00
Andrew Dolgov
dc8bd8a640
add some print_checkbox/print_button calls; rename some plugin preference pane titles
2017-02-10 14:57:25 +03:00
Andrew Dolgov
8cf37284e7
af_zz_imgproxy: add optional setting to proxy all remote images
...
functions: add some form helper methods
2017-02-10 14:17:18 +03:00
Andrew Dolgov
7818bfde0b
sanitize: properly handle cached content in archived articles
2017-02-10 12:11:09 +03:00
Andrew Dolgov
70c0a8c2e0
pass several image files used in notify messages to frontend as base64 to prevent broken error messages in case network connection is down. also, update some close buttons to show correct cursor.
2017-02-09 23:19:26 +03:00
Andrew Dolgov
829d478f1b
add some protection against opener attacks if external site is opened via window.open()
2017-02-08 15:07:05 +03:00
Andrew Dolgov
5edd605ae1
image cache: do not try to cache data: schema urls; add caching of html5 video content (similar to cache_starred_images plugin)
2017-02-04 11:50:01 +03:00
Andrew Dolgov
0442cbb6c1
image cache: send files as content-disposition: attachment; add .png suffix to image urls
2017-02-04 11:32:24 +03:00
Andrew Dolgov
24c7e4132d
subscribe dialog: do not report errors via alert()
...
fetch_file_contents: reset all globals on start, return error message body when not using curl
subscribe_to_feed: report if cloudflare is in the error message
2017-01-28 12:45:49 +03:00
Andrew Dolgov
181c8285dd
add compact theme with smaller font
2017-01-26 22:41:18 +03:00
Andrew Dolgov
e432b8fbe2
implement cache-busting for default theme.css
...
night theme: small fixes
2017-01-25 12:17:41 +03:00
Andrew Dolgov
553ec3c351
pass article guid to hook_render_article
2017-01-25 08:50:42 +03:00
Shane Synan
311cdb27f4
sanitize: allow dfn tag
...
Add <dfn> tag to allowed tags list. <dfn> represents the defining
instance of a term in HTML.
2017-01-24 18:39:17 -06:00
Andrew Dolgov
3b001e4330
support rel=noopener for links
2017-01-24 18:45:25 +03:00
Andrew Dolgov
e934d63e0c
fetch_file_contents: rework the way shim works to prevent intermittent warnings
2017-01-24 15:11:13 +03:00
Andrew Dolgov
67268b0017
sanitize: allow acronym tag
2017-01-24 11:36:43 +03:00
Andrew Dolgov
cb3f877303
reference pubsubhubbub classes using their namespace
2017-01-23 08:20:46 +03:00
Andrew Dolgov
70c5b2bfcc
feed tree: only run animation for appearing unread counters to prevent clashes with aux counter updating and animations ending up in wrong state
2017-01-22 20:20:35 +03:00
Andrew Dolgov
a86255572a
bump VERSION_STATIC due to Dojo changes
2017-01-22 13:55:36 +03:00
Andrew Dolgov
fa287f6b11
Merge branch 'af-comics-gocomics-feed' into 'master'
...
Update af_comics plugin to support GoComics.
Updates the af_comics plugin to support new GoComics site, which dropped native RSS feeds.
See merge request !42
2017-01-22 11:03:45 +03:00
Andrew Dolgov
967f0619c7
force ngettext() count argument type to string
2017-01-22 10:18:43 +03:00
JustAMacUser
fabfb9fc2a
Added support to fetch_file_contents() to explicitly set CURLOPT_FOLLOWLOCATION.
2017-01-22 02:12:09 -05:00
Anders Kaseorg
becd215a75
lib: Upgrade php-subscriber from ??? to 1213f89 (2016-11-15)
...
https://github.com/pubsubhubbub/php-subscriber
Signed-off-by: Anders Kaseorg <andersk@mit.edu>
2017-01-21 15:01:14 -05:00
Anders Kaseorg
5ddc3e274d
lib: Upgrade php-publisher from ??? to a5d6a0e (2016-11-15)
...
https://github.com/pubsubhubbub/php-publisher
Signed-off-by: Anders Kaseorg <andersk@mit.edu>
2017-01-21 15:01:14 -05:00
Andrew Dolgov
c606bd5741
tweak the enclosure dropdown display a little bit for less-readable urls
2017-01-17 14:04:00 +03:00
Andrew Dolgov
f6bcb5c606
Merge branch 'subscribe-idn-feed' into 'master'
...
Subscribe to feed with Internationalized Domain Name
Currently you cannot subscribe to feeds on hosts with internationalized domain names (IDNA) within tt-rss. You need to manually convert them to punycode to subscribe to them.
This patch adds code to detect IDNA and convert them to punycode in fix_url() if possible on the system. This requires PHP IDN functions (e.g. on Debian Jessie this needs php5-intl to be installed), so a notice is added to the installer sanity check.
See merge request !37
2017-01-16 11:36:00 +03:00
Andrew Dolgov
17a8e61d2a
deprecate encrypted feed passwords because mcrypt is getting removed from php 7.1
...
1. transparent decryption for existing installs stays for the time being
2. new passwords are not going to be encrypted even if FEED_CRYPT_KEY is defined
3. added update.php --decrypt-feeds to bulk decrypt existing encrypted passwords
4. updated install to not auto-generate crypt key
5. added warning to config.php-dist
2017-01-07 14:25:46 +03:00
Bernhard Thaler
62958fe9dc
convert to punycode for feed on idn hostname
2017-01-02 22:50:26 +01:00
Andrew Dolgov
3d5d289077
set_basic_feed_info: fix typo
2016-11-30 14:09:57 +03:00
Andrew Dolgov
bfe1eb4e52
rssfuncs: fix warning when trying to update nonexisting feed
2016-11-30 14:03:21 +03:00
Andrew Dolgov
12ff230bc2
maybe we shouldn't escape entry_author twice
2016-11-25 14:04:41 +03:00
Andrew Dolgov
3bba9c396f
fetch_file_contents: set timeout when not using CURL
2016-10-24 16:12:18 +03:00
Andrew Dolgov
e3dceca66b
get_article_filters: add unicode modifier to preg_match()
2016-10-19 21:40:58 +03:00
Andrew Dolgov
6687cb9927
shared posts: remove link to feed in externally shared articles to prevent leaking potentially private feed urls
2016-09-21 09:39:31 +03:00
John Brayton
401eb0f694
Specify feed_id as an int rather than a string.
2016-08-28 20:08:37 -04:00
John Brayton
f1b3b3f330
Add feed_id to subscribeToFeed response when the code is 1 or 0.
...
Set the API_LEVEL to 14.
2016-08-27 10:29:25 -04:00
Andrew Dolgov
557d86fe42
better debugging for matched filter rules
2016-08-26 14:45:34 +03:00
Andrew Dolgov
e54eb40a8c
remove support for legacy mysql driver
2016-08-21 14:03:35 +03:00
Andrew Dolgov
1a322ff3df
import_export: better error message if upload failed
2016-08-19 18:14:22 +03:00
Andrew Dolgov
5cbd1fe8e4
perform housekeeping tasks for plugins loaded in user-context only
2016-08-11 15:01:01 +03:00
Andrew Dolgov
25a533c432
bump static version to 16.8
2016-08-10 09:15:52 +03:00
Andrew Dolgov
6ff51c1997
Merge branch 'more-info-article-filter' into 'master'
...
Pass the value of cache_images to plugins in HOOK_ARTICLE_FILTER.
Adds the `$cache_images` value to the `$article['feed']` array before calling HOOK_ARTICLE_FILTER. Allows plugins to know whether images will be cached in case they want to manage them in one way or another.
See merge request !32
2016-08-07 22:22:09 +03:00
JustAMacUser
babfadbfd2
Pass the value of cache_images to plugins in HOOK_ARTICLE_FILTER.
2016-08-06 14:16:39 -04:00
JustAMacUser
d8b0f06705
Remove href attribute if it executes JavaScript.
2016-08-06 14:07:30 -04:00
JustAMacUser
dae16f72c9
Only strings need 4-byte filtering.
2016-07-26 03:51:22 -04:00
Andrew Dolgov
64c24ecb59
add hotkey for toggling VFEED_GROUP_BY_FEED preference
2016-07-26 15:55:00 +03:00
Andrew Dolgov
e6905f7f87
test if mb_internal_encoding() is available in functions.php head
2016-07-07 10:02:55 +03:00
Andrew Dolgov
638fdf732a
update_rss_feed: log warning when attempting to update unknown feed
2016-04-29 22:10:00 +03:00
Andrew Dolgov
42f78188d0
sanitize: force strip unnecessary data outside of <body>...</body> tags generated by DOMDocument::saveHTML()
2016-04-29 21:59:34 +03:00
Andrew Dolgov
977cea1438
actually check for failures properly in the dbupdater
2016-04-26 20:04:24 +03:00
Andrew Dolgov
9e84bab449
daemon common: use proper update condition checking for secondary-selected feeds
2016-04-01 18:54:53 +03:00
Andrew Dolgov
c71add385d
fetch_file_contents: fix shim when invoked with 1 argument only
2016-03-31 09:48:05 +03:00
Andrew Dolgov
465fb16d33
remove fetch_file_contents2, use a compat shim instead
2016-03-30 13:46:32 +03:00
Andrew Dolgov
633fb7ffe2
amend previous
2016-03-30 13:34:26 +03:00
Andrew Dolgov
79c891a8b7
set smallish timeout on update check, exclude update checking on initial load
2016-03-30 13:32:49 +03:00
Andrew Dolgov
e3bc4591af
add a hash-based fetch_file_contents2()
2016-03-30 13:25:32 +03:00
Andrew Dolgov
583d5b9a98
get_version: add missing substr
2016-03-28 13:26:09 +03:00
Andrew Dolgov
ae397f3a91
bump version_static to 16.3
2016-03-23 22:58:33 +03:00
Andrew Dolgov
7843453c00
version: do not hardcode master branch
2016-03-23 19:08:38 +03:00
Andrew Dolgov
7c0d68f207
remove dismiss* functions
2016-03-22 10:28:34 +03:00
Andrew Dolgov
94d425fe4a
rewrite_relative_url: only skip urls like magnet: instead of everything with :
2016-02-20 12:06:47 +03:00
Andrew Dolgov
7bbe94bc93
Revert "rewrite_relative_url: do not skip urls containing :"
...
This reverts commit a547fef6ab
.
2016-02-20 12:02:34 +03:00
Andrew Dolgov
a547fef6ab
rewrite_relative_url: do not skip urls containing :
2016-02-20 11:57:37 +03:00
Andrew Dolgov
d43b6563ef
Merge branch 'master' of git.tt-rss.org:fox/tt-rss
2016-02-19 09:39:29 +03:00
JustAMacUser
a01bfd78c2
Remove srcset and sizes attributes from img tag if locally caching images.
2016-02-19 01:35:11 -05:00
Andrew Dolgov
cc43e19b44
error handler: do not log last query, truncate error message to a smaller length
2016-02-17 16:42:13 +03:00
Andrew Dolgov
50bda3fefb
sanitize: allow <xml:namespace> (thanks, livejournal)
2016-02-05 11:31:13 +03:00
Andrew Dolgov
0edf1d0dc0
update_rss_feed: disable support for http 304 for the time being
2016-02-02 14:51:02 +03:00
Andrew Dolgov
71b75bb7fa
fix multiple issues with archived feeds
2016-01-26 19:03:05 +03:00
Andrew Dolgov
0bc503ff9a
update_rss_feed: escape dumped content while debugging
2016-01-23 02:17:24 +03:00
Andrew Dolgov
3b44aae0f3
sanitize: allow <description>
2016-01-23 02:17:00 +03:00
Andrew Dolgov
c352248651
get_article_tags: while getting tags from cache check if article entry actually exists
2016-01-14 12:12:35 +03:00
Andrew Dolgov
312742db6e
updates: auto-disable CURL if open_basedir is enabled, notify possible issues w/ plugins
2016-01-13 18:12:31 +03:00
Andrew Dolgov
393fc7d6b5
update static version
2016-01-12 16:44:14 +03:00
Andrew Dolgov
5bdcb8fd78
remove option ALLOW_DUPLICATE_POSTS as confusing/useless
2016-01-07 22:01:35 +03:00
Andrew Dolgov
4f186b1f10
fix broken article processing if ALLOW_DUPLICATE_POSTS is enabled
2016-01-07 21:49:31 +03:00
Andrew Dolgov
9b736a20b3
do not automatically call cleanup_tags() in housekeeping tasks
2016-01-04 10:42:24 +03:00
Thomas Kramer
98070db009
Update new feeds first in postgres
2015-12-31 12:54:52 +01:00
Andrew Dolgov
85d067e837
tag_is_valid: check numeric tags properly
2015-12-30 15:15:18 +03:00
Andrew Dolgov
a536f94c8d
sanitize: clear out @srcset/@sizes on images leading to http sites when running over https
2015-12-17 09:59:53 +03:00
Andrew Dolgov
6eed9a7463
Merge branch 'master' of git.tt-rss.org:fox/tt-rss
2015-12-07 20:07:37 +03:00
Andrew Dolgov
a956648502
catchup_feed: proper fix for mysql 5.7
2015-12-07 20:07:13 +03:00
Andrew Dolgov
33d131d699
ttrss_gc: return true
2015-12-07 15:25:31 +03:00
Andrew Dolgov
040aa5408a
fix previous, owner_uid not passed in daemon context
2015-12-07 15:06:32 +03:00