ansuz
0917b45035
implement proper support for forbidding remote media-tag inclusion
...
...and test that the basic headers are correctly set on the checkup page
2022-02-18 16:09:02 +05:30
ansuz
b40c81d088
support modifying CSP headers at runtime
2022-02-18 13:54:33 +05:30
ansuz
ef6f98c149
initial serverside components for 'disableEmbedding' functionality
2022-02-18 13:35:20 +05:30
ansuz
7b6c8b83ef
stricter websocket CSP and tests to match
2022-02-14 11:45:44 +05:30
ansuz
383684d339
add new, very specific tests for CSP to the checkup page
2022-02-10 16:53:14 +05:30
ansuz
ebcb6b2ab0
log child process ids in the event of an RPC timeout
2022-02-03 15:11:26 +05:30
ansuz
d2852fdba4
perform extra validation for private message rpc
2022-01-26 03:58:29 +05:30
ansuz
29fe4b7223
restrict unnecessarily permissive CSP
2022-01-21 18:01:55 +05:30
ansuz
a93ab05310
handle absolute paths in a few obviously problematic cases
2021-11-22 18:16:35 +05:30
ansuz
b8d6af7891
adjust CSP headers for printing from OnlyOffice
...
* allow outer to load resources from the sandbox (for fonts)
* test whether the expected CSP values are present on the checkup page
* simplify the nodejs server a bit
2021-10-19 14:22:10 +05:30
ansuz
c1f9d11333
delay working on some flagged issues till next release
2021-08-16 18:32:34 +05:30
ansuz
1c08a27f60
fix a newly introduced reference error
2021-08-10 18:48:34 +05:30
ansuz
a33774aa6f
properly abort from channel archival if no metadata is returned
...
and add some logging when trimming history
2021-08-10 15:24:23 +05:30
ansuz
854a635c5f
remove hardcoded translations and defer non-blocking issues till the next release
2021-07-27 03:40:03 +05:30
ansuz
9bb884cac6
fix a type error caused by (my) invalid API use
2021-07-06 18:21:55 +05:30
ansuz
f13b82bdf6
disable integrated eviction by default
...
we'll implement an admin panel checkbox to enable it later
2021-07-06 16:14:40 +05:30
ansuz
7bdabb5cbc
archive blocks before overwriting them
2021-07-06 15:42:37 +05:30
ansuz
1c1dc421a3
fix broken block archival
2021-07-01 16:44:40 +05:30
ansuz
f7f2146fa5
miscellaneous cleanup and notes
2021-06-30 19:09:53 +05:30
ansuz
d27cbb69dc
filter email and instance purpose from telemetry unless we have consent
2021-06-30 19:05:37 +05:30
ansuz
76b90d3c8a
correct a few more places where the client expected hashes in pin responses
...
or where the server incorrectly provided them
2021-06-30 18:15:55 +05:30
ansuz
8e725f3d7c
stop returning the hash of all user pins after pinning
...
the client doesn't use it and it's CPU-intensive
2021-06-30 17:20:03 +05:30
ansuz
7c7acbeae6
delegate block validation to workers
2021-06-28 15:07:48 +05:30
ansuz
ba1a7b37e1
separate validation and storage methods for blocks
2021-06-28 14:39:26 +05:30
ansuz
9806d718d5
implement block archival
2021-06-25 20:53:09 +05:30
ansuz
caece0123e
archive pin logs instead of removing them outright
2021-06-25 20:22:16 +05:30
ansuz
3cbf4c9d6f
save instancePurpose choice to server from admin panel
2021-06-25 13:04:29 +05:30
ansuz
9027409ce5
serverside components of instancePurpose flag
2021-06-25 12:29:13 +05:30
ansuz
f5e91ef3ef
provide installMethod detail in server telemetry
2021-06-22 16:32:33 +05:30
ansuz
bb7c40237b
detect new versions in server telemetry responses
2021-06-10 20:56:12 +05:30
ansuz
2fd812ff36
WIP admin translations and update available button
2021-06-09 18:45:02 +05:30
ansuz
98c8d7086f
include instance version in Env
2021-06-09 18:43:31 +05:30
ansuz
41db88a360
WIP admin 'network' panel
2021-06-08 20:24:30 +05:30
ansuz
eea0688879
log messages which fail signature validation
2021-05-31 15:53:55 +05:30
ansuz
87c6e3270d
make a note about restricting channel creation to registered users
2021-05-20 16:13:28 +05:30
ansuz
62f8fb93b5
take notes of desirable admin RPC commands
2021-05-07 18:07:13 +05:30
yflory
7a682397e2
Add checkup test about Google's Floc
2021-05-07 14:23:15 +02:00
ansuz
eb32651c67
leave some notes about a minor race condition
2021-05-05 12:07:45 +05:30
ansuz
30fc2a5edf
Merge branch 'staging' into restricted-registration
2021-05-01 02:04:22 +05:30
ansuz
8c61948d02
implement SET_ADMIN_EMAIL and SET_SUPPORT_MAILBOX decrees
...
and update changelog
2021-04-30 14:48:22 +05:30
ansuz
729d51fb9b
update block storage APIs
2021-04-29 13:32:19 +05:30
ansuz
15a8284a30
add some logging and avoid some errors
2021-04-29 07:09:16 +05:30
ansuz
18c73ad282
WIP working password change with restricted registration
2021-04-28 11:16:55 +05:30
ansuz
8896391536
refactor writeLoginBlock to account for more asynchronous flow
2021-04-27 17:13:31 +05:30
ansuz
50045c08d0
WIP restrict registration
2021-04-26 18:31:33 +05:30
ansuz
15d6f573e7
don't send DUPLICATE error
2021-04-12 17:47:45 +05:30
ansuz
75a316e70d
adjust or remove comments
2021-04-12 13:39:54 +05:30
yflory
6027123d12
Fix maintenance
2021-04-08 16:10:03 +02:00
yflory
7f44009617
Better validation function in decrees
2021-04-08 13:04:12 +02:00
ansuz
4e3a7fef24
add notes from our review
2021-04-02 17:14:15 +05:30
ansuz
67af5c220c
server notes
2021-04-02 09:59:28 +05:30
yflory
8f679c141c
Broadcast update
2021-03-30 17:41:12 +02:00
yflory
96892bff48
Merge branch 'staging' into broadcast
2021-03-30 13:53:49 +02:00
yflory
6f1caf3540
Fix team creation
2021-03-26 17:12:27 +01:00
ansuz
75f9459950
leave a FIXME in the server
2021-03-23 09:25:02 +05:30
ansuz
5eddb41d77
add more background info for some protocol semantics
2021-03-22 16:51:11 +05:30
yflory
ed09b92592
Fix deleted pad restored corrupted from cache
2021-03-22 10:39:46 +01:00
yflory
7971a6d267
Major broadcast refactoring
2021-03-16 17:00:23 +01:00
yflory
dbce0fe429
Use 33 characters admin channels
2021-03-16 15:25:28 +01:00
ansuz
5f269fbe53
Merge branch 'soon' into staging
2021-03-15 15:35:42 +05:30
yflory
d15c0461cc
Add /api/broadcast and improve message deletion
2021-03-12 12:46:11 +01:00
yflory
a17e732473
Add XXX
2021-03-10 17:40:42 +01:00
yflory
fee8a88169
Instance notification prototype
2021-03-09 18:27:12 +01:00
Dmitry Borodaenko
6cd2131f27
Pass archivePath to Store.create always
2021-03-03 11:31:08 -08:00
ansuz
c9d1996e0d
avoid incrementing index size twice for a single message
2021-03-01 18:23:24 +05:30
ansuz
4316264044
fix incomplete unowned file upload
2021-02-19 13:12:35 +05:30
yflory
f5908e5f57
Fix history range
2021-02-18 16:28:40 +01:00
ansuz
baab65fa36
Merge branch 'callback' into staging
2021-02-17 17:47:57 +05:30
ansuz
70ba468211
lint compliance
2021-02-17 17:47:23 +05:30
yflory
f09ef072ac
Fix XXX
2021-02-17 12:56:51 +01:00
ansuz
9e1d82f373
move archive deletion out of the main eviction script
2021-02-17 14:17:41 +05:30
ansuz
50bec7386d
flag logic that is missing callbacks
2021-02-16 19:25:47 +05:30
yflory
287b80d4b8
Merge branch 'staging' into callback
2021-02-09 15:30:46 +01:00
yflory
ea4c529e39
Remove offset code
2021-02-09 15:29:34 +01:00
ansuz
b8a7defad9
lint compliance
2021-01-31 15:29:55 +05:30
ansuz
4a29d9df00
implement admin GET_USER_TOTAL_SIZE call
2021-01-31 15:28:45 +05:30
ansuz
8990e8def9
provide more context for EUNKNOWN logs
2021-01-26 10:31:29 +05:30
ansuz
43a5d5664f
remove XXX
2021-01-21 17:42:41 +05:30
yflory
0fc8bfde4a
Use new server format for history keeper time
2021-01-20 15:06:43 +01:00
yflory
fc514fb61d
Support a callback on channelMessage
2021-01-19 14:53:38 +01:00
yflory
6c394b37c8
Merge branch 'staging' into eunknown
2021-01-19 10:49:53 +01:00
yflory
e5af30d678
more EUNKNOWN
2021-01-13 10:16:42 +01:00
ansuz
d1eff71584
Merge branch 'soon' into staging
2021-01-08 21:23:18 +05:30
ansuz
929159a0f4
implement server offline mode (no ws)
2021-01-08 14:49:04 +05:30
ansuz
c806b97076
resolve conflicts between rebrand and staging
2020-12-29 17:20:53 +05:30
ansuz
fed04a025c
display size of uploaded files upon completion
2020-12-23 17:21:06 +05:30
ansuz
646fdcc43e
Merge branch 'cache-metadata' into staging
2020-12-11 20:16:18 +05:30
ansuz
de90949e3e
suppress ENOENT on metadata when restoring archived files
2020-12-11 20:12:36 +05:30
ansuz
4c7f7e271e
remove an XXX note, log when restoring docs by admin rpc
2020-12-11 17:57:42 +05:30
ansuz
d0df2f5840
log when archiving content via the admin panel
2020-12-11 17:03:48 +05:30
ansuz
66195a17a1
Merge branch 'staging' of github.com:xwiki-labs/cryptpad into cache-metadata
2020-12-08 16:57:13 +05:30
ansuz
e6a4c68863
always delete the throttled cleanup functions once they have run
2020-12-08 16:50:37 +05:30
ansuz
4495d99e49
use the standard method of checking whether metadata is valid
2020-12-08 16:45:57 +05:30
ansuz
6bc103be5f
delay cache eviction each time the metadata is requested
2020-12-08 16:43:50 +05:30
ansuz
d4f94f3091
briefly cache server metadata in-memory to avoid repeated reads
2020-12-08 16:34:28 +05:30
yflory
34284fcc0c
Fix issues with deprecated cache
2020-12-08 12:03:40 +01:00
ansuz
820f2a0054
Merge branch 'soon' into staging
2020-12-08 11:14:53 +05:30
ansuz
93d56e5e3d
profile worker commands by total running time in seconds
2020-12-08 10:44:46 +05:30
ansuz
93c807524f
update offset debugging info
2020-12-08 10:24:09 +05:30
yflory
5bbde5fec5
Merge branch 'soon' into cacheRT
2020-12-01 16:40:18 +01:00