Commit Graph

115 Commits (dc8bd8a640ee7d4508212e12823fc9094258e819)

Author SHA1 Message Date
Andrew Dolgov 7818bfde0b sanitize: properly handle cached content in archived articles 8 years ago
Andrew Dolgov 70c0a8c2e0 pass several image files used in notify messages to frontend as base64 to prevent broken error messages in case network connection is down. also, update some close buttons to show correct cursor. 8 years ago
Andrew Dolgov 829d478f1b add some protection against opener attacks if external site is opened via window.open() 8 years ago
Andrew Dolgov 5edd605ae1 image cache: do not try to cache data: schema urls; add caching of html5 video content (similar to cache_starred_images plugin) 8 years ago
Andrew Dolgov 0442cbb6c1 image cache: send files as content-disposition: attachment; add .png suffix to image urls 8 years ago
Andrew Dolgov 181c8285dd add compact theme with smaller font 8 years ago
Andrew Dolgov e432b8fbe2 implement cache-busting for default theme.css
night theme: small fixes
8 years ago
Andrew Dolgov 553ec3c351 pass article guid to hook_render_article 8 years ago
Shane Synan 311cdb27f4 sanitize: allow dfn tag
Add <dfn> tag to allowed tags list.  <dfn> represents the defining
instance of a term in HTML.
8 years ago
Andrew Dolgov 3b001e4330 support rel=noopener for links 8 years ago
Andrew Dolgov 67268b0017 sanitize: allow acronym tag 8 years ago
Andrew Dolgov 967f0619c7 force ngettext() count argument type to string 8 years ago
Andrew Dolgov c606bd5741 tweak the enclosure dropdown display a little bit for less-readable urls 8 years ago
Bernhard Thaler 62958fe9dc convert to punycode for feed on idn hostname 8 years ago
Andrew Dolgov 6687cb9927 shared posts: remove link to feed in externally shared articles to prevent leaking potentially private feed urls 8 years ago
Andrew Dolgov 1a322ff3df import_export: better error message if upload failed 8 years ago
JustAMacUser d8b0f06705 Remove href attribute if it executes JavaScript. 8 years ago
Andrew Dolgov 64c24ecb59 add hotkey for toggling VFEED_GROUP_BY_FEED preference 8 years ago
Andrew Dolgov 42f78188d0 sanitize: force strip unnecessary data outside of <body>...</body> tags generated by DOMDocument::saveHTML() 9 years ago
Andrew Dolgov 465fb16d33 remove fetch_file_contents2, use a compat shim instead 9 years ago
Andrew Dolgov 633fb7ffe2 amend previous 9 years ago
Andrew Dolgov 79c891a8b7 set smallish timeout on update check, exclude update checking on initial load 9 years ago
Andrew Dolgov 7c0d68f207 remove dismiss* functions 9 years ago
Andrew Dolgov 94d425fe4a rewrite_relative_url: only skip urls like magnet: instead of everything with : 9 years ago
Andrew Dolgov 7bbe94bc93 Revert "rewrite_relative_url: do not skip urls containing :"
This reverts commit a547fef6ab.
9 years ago
Andrew Dolgov a547fef6ab rewrite_relative_url: do not skip urls containing : 9 years ago
JustAMacUser a01bfd78c2 Remove srcset and sizes attributes from img tag if locally caching images. 9 years ago
Andrew Dolgov 50bda3fefb sanitize: allow <xml:namespace> (thanks, livejournal) 9 years ago
Andrew Dolgov 71b75bb7fa fix multiple issues with archived feeds 9 years ago
Andrew Dolgov 3b44aae0f3 sanitize: allow <description> 9 years ago
Andrew Dolgov c352248651 get_article_tags: while getting tags from cache check if article entry actually exists 9 years ago
Andrew Dolgov 85d067e837 tag_is_valid: check numeric tags properly 9 years ago
Andrew Dolgov a536f94c8d sanitize: clear out @srcset/@sizes on images leading to http sites when running over https 9 years ago
Andrew Dolgov 19e47ad60b queryFeedHeadlines: don't check first_id when sorting by oldest first 9 years ago
Andrew Dolgov 4c46702672 drop support for (obsolete, removed from recent php versions) php safe_mode setting
remove ugly hacks for curl + open_basedir combination breaking support for http redirects
9 years ago
Andrew Dolgov 389ae94a40 iframe_whitelisted: allow player.vimeo.com 9 years ago
Andrew Dolgov 9cc29abd41 queryFeedHeadlines: int_id was not included when browsing by tag which broke several button plugins 9 years ago
Andrew Dolgov 94b8ce6cec queryfeedheadlines: remove disable_offsets hack 9 years ago
Andrew Dolgov 6b860bd9d2 recently read: limit query by last_read 9 years ago
JustAMacUser 08e79cb6b9 Fixed height/width image attributes for enclosures. 9 years ago
Andrew Dolgov 961cae85a4 Merge branch 'master' of git.fakecake.org:tt-rss 9 years ago
Andrew Dolgov d5eaaa0508 curl: let's verify ssl peers 9 years ago
JustAMacUser 8493163576 Unset $retval after HOOK_FORMAT_ENCLOSURES.
Fixes an edge case where changing the array of enclosures with HOOK_FORMAT_ENCLOSURES might break the dropdown rendering if HOOK_RENDER_ENCLOSURE has no registered hooks.
9 years ago
Andrew Dolgov 28539f6aaf search_to_sql: trim() input 9 years ago
Andrew Dolgov dcbe36b2a2 fix some remaining old-style viewfeed() calls 9 years ago
Andrew Dolgov 6b0a17ad8b viewfeed: switch to hash-based arguments
viewfeed: remove (obsolete) method parameter
add shortcut to debug viewfeed() query
9 years ago
Andrew Dolgov 884ae7a941 limit recently read feed to 1 day of read headlines 9 years ago
Andrew Dolgov 6ee255fba3 use join between user_entries and entries table 9 years ago
Andrew Dolgov c1ebb6cdf7 update notice/error css classes 9 years ago
Andrew Dolgov 6810a1de42 use dijit form widget for attachments dropdown 9 years ago