0917b45035
implement proper support for forbidding remote media-tag inclusion
...
...and test that the basic headers are correctly set on the checkup page
2022-02-18 16:09:02 +05:30
b40c81d088
support modifying CSP headers at runtime
2022-02-18 13:54:33 +05:30
ef6f98c149
initial serverside components for 'disableEmbedding' functionality
2022-02-18 13:35:20 +05:30
7b6c8b83ef
stricter websocket CSP and tests to match
2022-02-14 11:45:44 +05:30
383684d339
add new, very specific tests for CSP to the checkup page
2022-02-10 16:53:14 +05:30
ebcb6b2ab0
log child process ids in the event of an RPC timeout
2022-02-03 15:11:26 +05:30
d2852fdba4
perform extra validation for private message rpc
2022-01-26 03:58:29 +05:30
29fe4b7223
restrict unnecessarily permissive CSP
2022-01-21 18:01:55 +05:30
a93ab05310
handle absolute paths in a few obviously problematic cases
2021-11-22 18:16:35 +05:30
b8d6af7891
adjust CSP headers for printing from OnlyOffice
...
* allow outer to load resources from the sandbox (for fonts)
* test whether the expected CSP values are present on the checkup page
* simplify the nodejs server a bit
2021-10-19 14:22:10 +05:30
c1f9d11333
delay working on some flagged issues till next release
2021-08-16 18:32:34 +05:30
1c08a27f60
fix a newly introduced reference error
2021-08-10 18:48:34 +05:30
a33774aa6f
properly abort from channel archival if no metadata is returned
...
and add some logging when trimming history
2021-08-10 15:24:23 +05:30
854a635c5f
remove hardcoded translations and defer non-blocking issues till the next release
2021-07-27 03:40:03 +05:30
9bb884cac6
fix a type error caused by (my) invalid API use
2021-07-06 18:21:55 +05:30
f13b82bdf6
disable integrated eviction by default
...
we'll implement an admin panel checkbox to enable it later
2021-07-06 16:14:40 +05:30
7bdabb5cbc
archive blocks before overwriting them
2021-07-06 15:42:37 +05:30
1c1dc421a3
fix broken block archival
2021-07-01 16:44:40 +05:30
f7f2146fa5
miscellaneous cleanup and notes
2021-06-30 19:09:53 +05:30
d27cbb69dc
filter email and instance purpose from telemetry unless we have consent
2021-06-30 19:05:37 +05:30
76b90d3c8a
correct a few more places where the client expected hashes in pin responses
...
or where the server incorrectly provided them
2021-06-30 18:15:55 +05:30
8e725f3d7c
stop returning the hash of all user pins after pinning
...
the client doesn't use it and it's CPU-intensive
2021-06-30 17:20:03 +05:30
7c7acbeae6
delegate block validation to workers
2021-06-28 15:07:48 +05:30
ba1a7b37e1
separate validation and storage methods for blocks
2021-06-28 14:39:26 +05:30
9806d718d5
implement block archival
2021-06-25 20:53:09 +05:30
caece0123e
archive pin logs instead of removing them outright
2021-06-25 20:22:16 +05:30
3cbf4c9d6f
save instancePurpose choice to server from admin panel
2021-06-25 13:04:29 +05:30
9027409ce5
serverside components of instancePurpose flag
2021-06-25 12:29:13 +05:30
f5e91ef3ef
provide installMethod detail in server telemetry
2021-06-22 16:32:33 +05:30
bb7c40237b
detect new versions in server telemetry responses
2021-06-10 20:56:12 +05:30
2fd812ff36
WIP admin translations and update available button
2021-06-09 18:45:02 +05:30
98c8d7086f
include instance version in Env
2021-06-09 18:43:31 +05:30
41db88a360
WIP admin 'network' panel
2021-06-08 20:24:30 +05:30
eea0688879
log messages which fail signature validation
2021-05-31 15:53:55 +05:30
87c6e3270d
make a note about restricting channel creation to registered users
2021-05-20 16:13:28 +05:30
62f8fb93b5
take notes of desirable admin RPC commands
2021-05-07 18:07:13 +05:30
7a682397e2
Add checkup test about Google's Floc
2021-05-07 14:23:15 +02:00
eb32651c67
leave some notes about a minor race condition
2021-05-05 12:07:45 +05:30
30fc2a5edf
Merge branch 'staging' into restricted-registration
2021-05-01 02:04:22 +05:30
8c61948d02
implement SET_ADMIN_EMAIL and SET_SUPPORT_MAILBOX decrees
...
and update changelog
2021-04-30 14:48:22 +05:30
729d51fb9b
update block storage APIs
2021-04-29 13:32:19 +05:30
15a8284a30
add some logging and avoid some errors
2021-04-29 07:09:16 +05:30
18c73ad282
WIP working password change with restricted registration
2021-04-28 11:16:55 +05:30
8896391536
refactor writeLoginBlock to account for more asynchronous flow
2021-04-27 17:13:31 +05:30
50045c08d0
WIP restrict registration
2021-04-26 18:31:33 +05:30
15d6f573e7
don't send DUPLICATE error
2021-04-12 17:47:45 +05:30
75a316e70d
adjust or remove comments
2021-04-12 13:39:54 +05:30
6027123d12
Fix maintenance
2021-04-08 16:10:03 +02:00
7f44009617
Better validation function in decrees
2021-04-08 13:04:12 +02:00
4e3a7fef24
add notes from our review
2021-04-02 17:14:15 +05:30
67af5c220c
server notes
2021-04-02 09:59:28 +05:30
8f679c141c
Broadcast update
2021-03-30 17:41:12 +02:00
96892bff48
Merge branch 'staging' into broadcast
2021-03-30 13:53:49 +02:00
6f1caf3540
Fix team creation
2021-03-26 17:12:27 +01:00
75f9459950
leave a FIXME in the server
2021-03-23 09:25:02 +05:30
5eddb41d77
add more background info for some protocol semantics
2021-03-22 16:51:11 +05:30
ed09b92592
Fix deleted pad restored corrupted from cache
2021-03-22 10:39:46 +01:00
7971a6d267
Major broadcast refactoring
2021-03-16 17:00:23 +01:00
dbce0fe429
Use 33 characters admin channels
2021-03-16 15:25:28 +01:00
5f269fbe53
Merge branch 'soon' into staging
2021-03-15 15:35:42 +05:30
d15c0461cc
Add /api/broadcast and improve message deletion
2021-03-12 12:46:11 +01:00
a17e732473
Add XXX
2021-03-10 17:40:42 +01:00
fee8a88169
Instance notification prototype
2021-03-09 18:27:12 +01:00
6cd2131f27
Pass archivePath to Store.create always
2021-03-03 11:31:08 -08:00
c9d1996e0d
avoid incrementing index size twice for a single message
2021-03-01 18:23:24 +05:30
4316264044
fix incomplete unowned file upload
2021-02-19 13:12:35 +05:30
f5908e5f57
Fix history range
2021-02-18 16:28:40 +01:00
baab65fa36
Merge branch 'callback' into staging
2021-02-17 17:47:57 +05:30
70ba468211
lint compliance
2021-02-17 17:47:23 +05:30
f09ef072ac
Fix XXX
2021-02-17 12:56:51 +01:00
9e1d82f373
move archive deletion out of the main eviction script
2021-02-17 14:17:41 +05:30
50bec7386d
flag logic that is missing callbacks
2021-02-16 19:25:47 +05:30
287b80d4b8
Merge branch 'staging' into callback
2021-02-09 15:30:46 +01:00
ea4c529e39
Remove offset code
2021-02-09 15:29:34 +01:00
b8a7defad9
lint compliance
2021-01-31 15:29:55 +05:30
4a29d9df00
implement admin GET_USER_TOTAL_SIZE call
2021-01-31 15:28:45 +05:30
8990e8def9
provide more context for EUNKNOWN logs
2021-01-26 10:31:29 +05:30
43a5d5664f
remove XXX
2021-01-21 17:42:41 +05:30
0fc8bfde4a
Use new server format for history keeper time
2021-01-20 15:06:43 +01:00
fc514fb61d
Support a callback on channelMessage
2021-01-19 14:53:38 +01:00
6c394b37c8
Merge branch 'staging' into eunknown
2021-01-19 10:49:53 +01:00
e5af30d678
more EUNKNOWN
2021-01-13 10:16:42 +01:00
d1eff71584
Merge branch 'soon' into staging
2021-01-08 21:23:18 +05:30
929159a0f4
implement server offline mode (no ws)
2021-01-08 14:49:04 +05:30
c806b97076
resolve conflicts between rebrand and staging
2020-12-29 17:20:53 +05:30
fed04a025c
display size of uploaded files upon completion
2020-12-23 17:21:06 +05:30
646fdcc43e
Merge branch 'cache-metadata' into staging
2020-12-11 20:16:18 +05:30
de90949e3e
suppress ENOENT on metadata when restoring archived files
2020-12-11 20:12:36 +05:30
4c7f7e271e
remove an XXX note, log when restoring docs by admin rpc
2020-12-11 17:57:42 +05:30
d0df2f5840
log when archiving content via the admin panel
2020-12-11 17:03:48 +05:30
66195a17a1
Merge branch 'staging' of github.com:xwiki-labs/cryptpad into cache-metadata
2020-12-08 16:57:13 +05:30
e6a4c68863
always delete the throttled cleanup functions once they have run
2020-12-08 16:50:37 +05:30
4495d99e49
use the standard method of checking whether metadata is valid
2020-12-08 16:45:57 +05:30
6bc103be5f
delay cache eviction each time the metadata is requested
2020-12-08 16:43:50 +05:30
d4f94f3091
briefly cache server metadata in-memory to avoid repeated reads
2020-12-08 16:34:28 +05:30
34284fcc0c
Fix issues with deprecated cache
2020-12-08 12:03:40 +01:00
820f2a0054
Merge branch 'soon' into staging
2020-12-08 11:14:53 +05:30
93d56e5e3d
profile worker commands by total running time in seconds
2020-12-08 10:44:46 +05:30
93c807524f
update offset debugging info
2020-12-08 10:24:09 +05:30
5bbde5fec5
Merge branch 'soon' into cacheRT
2020-12-01 16:40:18 +01:00
ansuz
ansuz
yflory
Dmitry Borodaenko