summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Fix deprecation warning of "includeSubDomains"Tilman Vatteroth2020-11-111-1/+1
| | | | Signed-off-by: Tilman Vatteroth <tilman.vatteroth@tu-dortmund.de>
* Merge pull request #563 from codimd/feature/build-in-ciDavid Mehren2020-11-112-41/+82
|\ | | | | Migrate to GitHub Actions
| * Migrate to GitHub ActionsDavid Mehren2020-11-112-41/+82
|/ | | | | | GH Actions now also do a production build with all supported Node versions to catch any Webpack errors Signed-off-by: David Mehren <git@herrmehren.de>
* Merge pull request #564 from codimd/fix/build-codemirrorDavid Mehren2020-11-112-231/+4
|\
| * Use our fork of CodeMirrorDavid Mehren2020-11-112-2/+2
| | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de>
| * Revert "Adjust webpack config to new code mirror version"David Mehren2020-11-112-231/+4
|/ | | | | | | | It turned out that we can't directly use the codemirror source files and actually need to run their build script manually. This reverts commit 0ec180de Signed-off-by: David Mehren <git@herrmehren.de>
* Use lax `cookiePolicy` in example configDavid Mehren2020-11-111-1/+1
| | | | | | This was previously changed in the default config, but the example was not updated. Signed-off-by: David Mehren <git@herrmehren.de>
* Merge pull request #547 from codimd/upgrade-depsDavid Mehren2020-11-117-1082/+1171
|\
| * Update yarn.lockDavid Mehren2020-11-101-350/+85
| | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de>
| * Update CDN links and integrity hashes for upgraded librariesDavid Mehren2020-11-103-17/+16
| | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de>
| * Upgrade `archiver` to v5David Mehren2020-11-102-99/+107
| | | | | | | | | | | | | | Breaking changes only include dropping node <8 and glob patterns. Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Use Node 10 for `json-lint` testDavid Mehren2020-11-101-1/+2
| | | | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Upgrade meta-markedDavid Mehren2020-11-102-11/+11
| | | | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Upgrade js-sequence-diagramsDavid Mehren2020-11-101-31/+29
| | | | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Upgrade imgurDavid Mehren2020-11-101-2/+2
| | | | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Upgrade diff-match-patchDavid Mehren2020-11-101-1/+1
| | | | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Use npm-release of raphaelDavid Mehren2020-11-102-8/+2
| | | | | | | | | | | | | | Other dependencies already depend on npm-releases of this, so it does not seem to make sense to get this via Git. Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Always use `~` to allow minor upgrades of dependenciesDavid Mehren2020-11-102-140/+239
| | | | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Use new source map naming for the Webpack dev configDavid Mehren2020-11-101-2/+2
| | | | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Remove unneeded `style-loader` dependencyDavid Mehren2020-11-102-9/+0
| | | | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Set minimum required Node version to 10.13David Mehren2020-11-101-1/+1
| | | | | | | | | | | | | | | | This was computed based on our dependencies using `installed-check`. Node 10 is supported until April 2021. Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
| * Update dependenciesDavid Mehren2020-11-101-771/+1035
| | | | | | | | | | | | | | | | | | chance@1.1.7, express-session@1.17.1, formidable@1.2.2, graceful-fs@4.2.4, handlebars@4.7.6, lutim@1.0.3, mathjax@2.7.9, mermaid@8.5.2, minimist@1.2.5, xss@1.0.8, eslint-plugin-standard@4.0.2, optimize-css-assets-webpack-plugin@5.0.4, remark-cli@8.0.1, webpack@4.44.2 aws-sdk@2.781.0, flowchart.js@1.15.0, helmet@3.23.3, i18n@0.8.6, js-yaml@3.14.0, mariadb@2.5.1, markdown-it-deflist@2.1.0, moment@2.29.1, morgan@1.10.0, mysql2@2.2.5, passport-saml@1.4.2, pdfobject@2.2.4, pg@8.4.2, prismjs@1.22.0, sequelize@5.22.3, sqlite3@4.2.0, winston@3.3.3, copy-webpack-plugin@6.2.1, eslint-plugin-import@2.22.1, html-webpack-plugin@4.5.0, less@3.12.2, style-loader@1.3.0 Signed-off-by: David Mehren <git@herrmehren.de> Co-authored-by: Yannick Bungers <git@innay.de>
* | Fix path to codemirror.js in Webpack config :bug:David Mehren2020-11-111-1/+1
| | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de>
* | Merge pull request #548 from codimd/fix/545-urls-with-credentialsDavid Mehren2020-11-101-9/+4
|\ \ | |/ |/| Use URL constructor instead of regex to check for valid URL
| * Use URL constructor instead of regex to check for valid URLDavid Mehren2020-11-101-9/+4
| | | | | | | | | | | | | | Fixes #545 Co-authored-by: Yannick Bungers <git@innay.de> Signed-off-by: David Mehren <git@herrmehren.de>
* | Merge pull request #551 from codimd/improvement/update-code-mirrorDavid Mehren2020-11-103-274/+245
|\ \
| * | regenerate yarn.lockTilman Vatteroth2020-11-081-270/+14
| | | | | | | | | | | | Signed-off-by: Tilman Vatteroth <tilman.vatteroth@tu-dortmund.de>
| * | Adjust webpack config to new code mirror versionTilman Vatteroth2020-10-312-4/+231
|/ / | | | | | | Signed-off-by: Tilman Vatteroth <tilman.vatteroth@tu-dortmund.de>
* | Fix PDF embed link in features.mdDavid Mehren2020-10-301-1/+1
| | | | | | | | Signed-off-by: David Mehren <git@herrmehren.de>
* | Merge pull request #541 from haslersn/oauth2/set-stateDavid Mehren2020-10-241-1/+2
|\ \ | |/ |/|
| * Generic OAuth2: Set state: trueDexter Chua2020-10-221-1/+2
|/ | | | | | | | | | The OAuth2 specification RECOMMENDS setting the state to protect against CSRF attacks. Some OAuth2 providers (e.g. ORY Hydra) refuse to authenticate without the state set. This is a cherry-pick of 852868419dc03d5dec79e75a3d7692ab670c927f. Signed-off-by: haslersn <sebastian.hasler@gmx.net>
* Merge pull request #531 from ericgaspar/patch-1David Mehren2020-10-121-1/+1
|\
| * Update configuration.mdÉric Gaspar2020-10-111-1/+1
| | | | | | | | | | | | Minor formatting typo Signed-off-by: ericgaspar <junk.eg@free.fr>
* | Add revisions documentation - Issue #196 (#517)Adam Worley2020-10-111-0/+8
|/ | | Co-authored-by: Adam Worley <Adam.Worley@ajw-group.com>
* Merge pull request #496 from codimd/fix/element-linksDavid Mehren2020-09-295-7/+7
|\
| * Change all element.io links to matrix.to linksErik Michelson2020-09-285-6/+6
| | | | | | | | Signed-off-by: Erik Michelson <github@erik.michelson.eu>
| * Update matrix chat link from riot.im to app.element.io and change room aliasErik Michelson2020-09-085-7/+7
| | | | | | | | Signed-off-by: Erik Michelson <github@erik.michelson.eu>
* | Merge pull request #497 from SISheogorath/translation/malayalamDavid Mehren2020-09-263-1/+132
|\ \ | | | | | | [1.x] Add Malayalam translation
| * | Add Malayalam translationSheogorath2020-09-093-1/+132
| |/ | | | | | | | | | | | | | | | | | | This patch adds the Malayalam translation to CodiMD. Do by our awesome translation supporters civic john, Sooraj Kenoth, Nithin Prabhakaran and Jothish. Thank you very much! Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Merge pull request #486 from codimd/feature/cookie-policyDavid Mehren2020-09-2513-26/+42
|\ \ | |/ |/|
| * Update documentation and messages to new default valueErik Michelson2020-09-082-2/+2
| | | | | | | | Signed-off-by: Erik Michelson <github@erik.michelson.eu>
| * Changed default policy from 'strict' to 'lax' due to the reasons mentioned ↵Erik Michelson2020-08-272-2/+2
| | | | | | | | | | | | in 3d1fab05 Signed-off-by: Erik Michelson <github@erik.michelson.eu>
| * Add config option for cookie SameSite policyErik Michelson2020-08-2713-26/+42
| | | | | | | | Signed-off-by: Erik Michelson <github@erik.michelson.eu>
* | Merge pull request #485 from codimd/fix/dropboxDavid Mehren2020-09-023-3/+23
|\ \
| * | Add test for dropbox csp ruleErik Michelson2020-08-231-0/+10
| | | | | | | | | | | | Signed-off-by: Erik Michelson <github@erik.michelson.eu>
| * | Added dropbox.appKey to test config to fix failing testsErik Michelson2020-08-231-1/+4
| | | | | | | | | | | | Signed-off-by: Erik Michelson <github@erik.michelson.eu>
| * | Add missing unsafe-inline CSP directiveErik Michelson2020-08-231-1/+1
| | | | | | | | | | | | | | | | | | Dropbox loads an external script that adds inline javascript. Therefore, this addition is needed when enabling dropbox support. Signed-off-by: Erik Michelson <github@erik.michelson.eu>
| * | Add prevent default to export button tooErik Michelson2020-08-231-1/+2
| | | | | | | | | | | | Signed-off-by: Erik Michelson <github@erik.michelson.eu>
| * | Add dropbox CSP directive if configured and make button clickableErik Michelson2020-08-232-1/+7
| |/ | | | | | | | | | | | | The lack of a 'preventDefault' on the click event handler resulted in the dropbox link being unclickable. Furthermore because of a missing CSP rule, the dropbox script couldn't be loaded. The dropbox origin is now added to the CSP script sources if dropbox integration is configured. Signed-off-by: Erik Michelson <github@erik.michelson.eu>
* | Merge pull request #490 from autra/backupsDavid Mehren2020-09-021-0/+10
|\ \ | |/ |/| Document the backup process