El RIDO
619fbb6653
Merge remote-tracking branch 'origin/dompurify'
2024-05-13 06:57:41 +02:00
El RIDO
435f0d8ea1
Merge remote-tracking branch 'origin/bootstrap5-navbar'
2024-05-13 06:55:50 +02:00
El RIDO
9d53c6493b
Merge remote-tracking branch 'origin/bootstrap5-code'
2024-05-13 06:53:41 +02:00
El RIDO
55d30ce9bd
Merge pull request #1323 from PrivateBin/bootstrap5-fileupload
...
bootstrap 5 attachment dropdown sizing
2024-05-13 06:47:46 +02:00
El RIDO
ee3b5ec08a
chore: upgrade DOMPurify from v3.1.2 to 3.1.3
2024-05-12 10:18:49 +02:00
El RIDO
976650bdde
bootstrap 5 nav bar & footer improvements, closes #1317
2024-05-09 18:18:57 +02:00
El RIDO
efb04d868d
bootstrap 5 code block improvements, closes #1314
2024-05-09 17:53:26 +02:00
El RIDO
47df01b4c6
bootstrap 5 attachment dropdown sizing, fixes #1313
2024-05-09 17:01:02 +02:00
El RIDO
2c8b5ed0e4
expiration time selection for bootstrap template, fixes #1309
2024-05-09 15:55:42 +02:00
El RIDO
11c26a7281
update SRI hashes and add missing translation messages
2024-05-06 12:40:48 +02:00
El RIDO
da8b6a2c67
do close modal upon confirmation
2024-05-05 20:52:29 +02:00
El RIDO
5067e9222c
incrementing version
2024-05-05 20:43:33 +02:00
El RIDO
843aa00473
Merge branch 'chrono-privacy'
2024-05-05 19:34:22 +02:00
El RIDO
6028a1d801
chore: upgrade jQuery from v3.7.0 to 3.7.1
2024-05-05 11:50:12 +02:00
El RIDO
b00528388f
Merge branch 'master' into chrono-privacy
2024-05-05 10:25:31 +02:00
El RIDO
3508989114
updated dompurify library
2024-05-04 16:18:43 +02:00
El RIDO
06fb606aa7
Merge branch 'master' into bootstrap
2024-05-04 16:15:07 +02:00
El RIDO
2b87bf3d13
update SRI hashes
2024-05-04 16:14:12 +02:00
El RIDO
0f9158b37b
allow disabling comment date display using discussiondatedisplay
configuration option
2024-05-04 14:38:41 +02:00
El RIDO
81fdf8ebfc
re-lax samesite cookie policy
...
As per discussion in code review:
> Cookies are always scoped in browsers. That's not the issue. SameSite attribute just protects against CSRF attacks. But Get requests (aka links) are also "protected" with Strict, which breaks it… and for users that is highly confusing when they (apparently arbitrarily) do not get the language they have set before when clicking a link.
https://github.com/PrivateBin/PrivateBin/pull/1287#discussion_r1589299210
2024-05-04 12:12:31 +02:00
rugk
4500794980
chore: ugrade DOMPurify from v3.0.8 to 3.1.2
...
This incluces v3.1.1, which says:
> Note that this is a security release and should be upgraded to immediately.
https://github.com/cure53/DOMPurify/releases/tag/3.1.1
The release notes of the actual version itself are https://github.com/cure53/DOMPurify/releases/tag/3.1.2
I do not found more information on the vulnerability that apparently is in there.
* [x] manually tested and works
2024-05-03 15:55:53 +00:00
El RIDO
c7226eedd7
Update tpl/bootstrap5.php
...
Co-authored-by: rugk <rugk+git@posteo.de>
2024-05-02 08:03:55 +02:00
El RIDO
8bfab7fd89
Update tpl/bootstrap5.php
...
Co-authored-by: rugk <rugk+git@posteo.de>
2024-05-02 08:01:37 +02:00
El RIDO
5c6bd3eba8
Update tpl/bootstrap5.php
...
Co-authored-by: rugk <rugk+git@posteo.de>
2024-04-23 23:09:21 +02:00
El RIDO
c66d3f05da
semantics
2024-04-23 22:11:58 +02:00
El RIDO
e22da2e0d1
address "oneliner-hell"
2024-04-23 21:15:33 +02:00
El RIDO
658383e6d1
set lang cookie with strict SameSite property
2024-04-21 11:36:31 +02:00
El RIDO
15481290fb
fix tab alignment
2024-04-21 11:02:14 +02:00
El RIDO
545ba7506e
bootstrap 5 - fix password modal display
2024-04-21 11:01:40 +02:00
El RIDO
a7ea62fcd0
bootstrap 5 prettify dark theme support
...
current status:
- made prettify theme work with dark mode
to be done:
- fix password modal display
- add "Dark Mode" to translation strings
- check tab alignment in HTML source
2024-04-19 14:00:49 +02:00
El RIDO
491ed9a521
bootstrap 5 template function complete
...
current status:
- got expiration and format selections to work
- fixed modals (password, QR-code, etc.)
- replaced glyphicons with Bootstrap icons (needs CSP relaxation to work)
- tested the different settings and combinations
- got editor tabs to change active status
to be done:
- add "Dark Mode" to translation strings
- figure out how to change prettify theme when dark mode gets selected
- check tab alignment in HTML source
2024-04-18 21:36:43 +02:00
El RIDO
7565be8ed5
initial work on a bootstrap 5 template
...
current status:
- renders without PHP errors & passes unit tests
- displays pastes
- responsive navbar
- right-to-left support
- auto dark mode with toggle
to be done:
- add "Dark Mode" to translation strings
- get expiration and format selections to work
- fix modals (password, QR-code, etc.)
- replace glyphicons with Bootstrap Icons (no longer included)
- test all the different settings and combinations
- check tab alignment in HTML source
2024-04-01 18:59:28 +02:00
El RIDO
1870b9075c
Merge branch 'cloudrac3r-patch-1'
2024-03-22 07:44:47 +01:00
Cadence Ember
d4fdc563ae
Update all instances of text in language files
2024-03-22 11:25:17 +13:00
El RIDO
89a5d07b94
shortened paste URL does not appear in email
...
fixes #606
2024-03-10 17:26:30 +01:00
El RIDO
63b2526ee7
"Send" button now labeled "Create", fixes #946
2024-02-12 21:50:11 +01:00
El RIDO
aad975a721
incrementing version
2024-02-11 15:31:11 +01:00
El RIDO
a3ee624d3a
incrementing version
2024-02-11 14:17:27 +01:00
El RIDO
57b1890815
Merge branch 'master' into ask-before-burn
2024-02-07 19:45:54 +01:00
El RIDO
7bb913acdf
Merge pull request #1236 from PrivateBin/bump-libs
...
bump libraries to DOMpurify 3.0.8 & zlib 1.3.1, increase compression level
2024-02-07 19:30:25 +01:00
El RIDO
25de89c954
change loading confirm prefix, fix password modal focus, again
2024-02-06 20:22:47 +01:00
El RIDO
950c0b56b4
revert changing compression level
...
as per discussion with @rugk, see:
https://github.com/PrivateBin/PrivateBin/pull/1236#discussion_r1473639960
2024-02-06 19:21:14 +01:00
El RIDO
239f6da73c
Merge branch 'master' into crowdin-translation
2024-01-27 19:19:08 +01:00
El RIDO
257fc5d2b6
enable Romanian translation and credit it
2024-01-27 19:15:40 +01:00
El RIDO
03d2291ec7
Merge branch 'master' into ask-before-burn
2024-01-27 18:56:52 +01:00
El RIDO
d0e03e5167
change logic into asking for loading confirmation
...
also:
- fixes #1039 - email buttons overlapping in some languages
- fixes #1191 - language change URL mangling
- adds focus to password input in modal
- prevents needless reload on visiting default URL
2024-01-27 18:26:19 +01:00
El RIDO
0d2376cd88
bump libraries to DOMpurify 3.0.8 & zlib 1.3.1, increase compression level to 9
2024-01-27 11:33:54 +01:00
El RIDO
405479642f
add YOURLS API samples for extractUrl validation
2024-01-07 17:45:01 +01:00
El RIDO
ba17e94c5e
use the newer function, if possible
2024-01-05 06:40:12 +01:00
El RIDO
cc0b6e387a
avoid use of bleeding edge function
...
only supported in Firefox & Chrome >= 120 & node >= 19.9.0 & 18.17.0
2024-01-04 23:23:47 +01:00