Commit message (Collapse) | Author | Files | Lines | ||
---|---|---|---|---|---|
2018-04-10 | Fix typos for `allowAnonymousEdits` | Sheogorath | 1 | -2/+2 | |
Looks like we lost some variables during the refactoring of the configs to camel case. This should fix it. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com> | |||||
2018-03-30 | Fix CSP for disqus and Google Analytics | Sheogorath | 1 | -1/+2 | |
This commit should fix existing problems with Disqus and Google Analytics enabled in the meta-yaml section of a note. Before this commit they were blocked by the strict CSP. It's still possible to disable the added directives using `addDisqus` and `addGoogleAnalytics` in the `csp` config section. They are enabled by default to prevent breaking changes. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com> | |||||
2018-03-25 | Change config to camel case with backwards compatibility | Sheogorath | 1 | -44/+44 | |
This refactors the configs a bit to now use camel case everywhere. This change should help to clean up the config interface and make it better understandable. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com> | |||||
2018-02-26 | Remove and replace all note id compression in LZString with base64url | Max Wu | 1 | -6/+5 | |
Signed-off-by: Max Wu <jackymaxj@gmail.com> | |||||
2018-02-17 | Fix to show 500 message when got error in parseNoteId | Max Wu | 1 | -1/+2 | |
Signed-off-by: Max Wu <jackymaxj@gmail.com> | |||||
2018-01-26 | Fix ldap provider name in template | Sheogorath | 1 | -0/+2 | |
Before this fix it's impossible to set the provider name in the sign-model since `ldap` is a boolean there and this way not able to have an attribute like `ldap.providerName`. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com> | |||||
2018-01-20 | Add option to enable `freely` permission in closed instance | Dario Ernst | 1 | -0/+2 | |
Before, closed disallowed guest edits completely, by removing the `freely` permission. This makes it possible to explicitely bring back guest-editing, but not guest-note-creation, to closed instances. Signed-off-by: Dario Ernst <dario@kanojo.de> | |||||
2018-01-18 | Allow posting new note with content | Dustin Frisch | 1 | -1/+2 | |
Signed-off-by: Dustin Frisch <fooker@lab.sh> | |||||
2017-12-14 | Fix file permission, remove useless executable | Peter Dave Hello | 1 | -0/+0 | |
2017-11-28 | Initial support for SAML authentication | Norihito Nakae | 1 | -0/+2 | |
2017-10-31 | Fix mattermost breaking notes | Sheogorath | 1 | -0/+1 | |
2017-10-31 | Add mattermost authentication | Christoph Witzany | 1 | -0/+1 | |
2017-10-25 | Adds 403 response if PDF export is disabled | geekyd | 1 | -1/+6 | |
2017-10-25 | Adds PDF export via config | geekyd | 1 | -1/+3 | |
2017-10-22 | CSP: Add nonce to slide view inline JS | Literallie | 1 | -1/+2 | |
2017-06-05 | Fix slide might not provide slideOptions meta | Wu Cheng-Han | 1 | -1/+1 | |
2017-06-01 | check if reveal theme exists | butlerx | 1 | -1/+2 | |
2017-05-31 | add the ability to set slide theme in slide options | butlerx | 1 | -0/+1 | |
2017-05-08 | refactor(config.js): Extract config file | BoHong Li | 1 | -16/+16 | |
* Separate different config source to each files * Freeze config object | |||||
2017-05-08 | refactor: Remove `require` extension filename | BoHong Li | 1 | -2/+2 | |
2017-03-14 | Use strict mode in all backend files | BoHong Li | 1 | -0/+1 | |
add ‘use strict’ in all backend file | |||||
2017-03-08 | Use JavaScript Standard Style | BoHong Li | 1 | -547/+539 | |
Introduce JavaScript Standard Style as project style rule, and fixed all fail on backend code. | |||||
2017-01-16 | Refactor checkViewPermission to fix limited & protected permission check bug ↵ | Wu Cheng-Han | 1 | -3/+3 | |
and fix code style | |||||
2017-01-16 | Fix missing config in hackmd response | Wu Cheng-Han | 1 | -1/+2 | |
2017-01-12 | Add `allowemailregister` option | Sheogorath | 1 | -0/+1 | |
2017-01-10 | Add limited and protected permission | 蒼時弦也 | 1 | -2/+7 | |
2017-01-10 | Recovery tariling spaces | 蒼時弦也 | 1 | -2/+2 | |
2017-01-10 | Remove temporary change | 蒼時弦也 | 1 | -3/+0 | |
2017-01-05 | Fix anonymouse view permission check | 蒼時弦也 | 1 | -1/+4 | |
2017-01-05 | Add limit for constrain anonymous view note | 蒼時弦也 | 1 | -3/+3 | |
2017-01-04 | Fix and refactor extracting content using metaMarked directly might lead in ↵ | Wu Cheng-Han | 1 | -45/+14 | |
invalid object | |||||
2017-01-02 | Fix yaml metadata description not able to show | Wu Cheng-Han | 1 | -3/+3 | |
2017-01-02 | Remove LZString compression for data storage | Wu Cheng-Han | 1 | -7/+7 | |
2016-12-21 | Fixed typo: anonmyous | Florian Rhiem | 1 | -3/+3 | |
2016-12-16 | Add support of allow free url config option with correspond modifications | Wu Cheng-Han | 1 | -2/+9 | |
2016-12-15 | Add support of allow anonymous config option with correspond modifications | Wu Cheng-Han | 1 | -0/+4 | |
2016-12-13 | Initial support for LDAP server authentication | alecdwm | 1 | -0/+2 | |
Limitations as of this commit: - tlsOptions can only be specified in config.json, not as env vars - authentication failures are not yet gracefully handled by the UI - instead the error message is shown on a blank page (/auth/ldap) - no email address is associated with the LDAP user's account - no picture/profile URL is associated with the LDAP user's account - we might have to generate our own access + refresh tokens, because we aren't using oauth. The currently generated tokens are just a placeholder. - 'LDAP Sign in' needs to be translated to each locale | |||||
2016-12-02 | Update to support optional email register and signin | Wu Cheng-Han | 1 | -6/+10 | |
2016-11-26 | Update to auto generate meta description based on content in publish note ↵ | Wu Cheng-Han | 1 | -7/+14 | |
and slide | |||||
2016-11-26 | Fix possible XSS in yaml-metadata and turn using ejs escape syntax than ↵ | Wu Cheng-Han | 1 | -5/+2 | |
external lib [Security Issue] | |||||
2016-11-26 | Fix slide might trigger script when processing markdown which cause XSS ↵ | Wu Cheng-Han | 1 | -11/+1 | |
[Security Issue] | |||||
2016-10-10 | Update to improve history api error and bad request handling | Wu Cheng-Han | 1 | -0/+3 | |
2016-10-10 | Update to allow CORS as API on revision actions | Wu Cheng-Han | 1 | -0/+14 | |
2016-10-10 | Update to support showing owner on the infobar | Wu Cheng-Han | 1 | -0/+6 | |
2016-09-18 | Update to prevent caching and crawling status | Wu Cheng-Han | 1 | -1/+1 | |
2016-08-19 | Update to use proper way to render view and fix upload image error should ↵ | Wu Cheng-Han | 1 | -74/+19 | |
response with code | |||||
2016-08-19 | Add info api for note | Wu Cheng-Han | 1 | -0/+32 | |
2016-08-15 | Update slide mode to show extra info and support url actions and support ↵ | Wu Cheng-Han | 1 | -4/+35 | |
disqus via yaml-metadata | |||||
2016-08-15 | Fix meta might be null issue | Wu Cheng-Han | 1 | -0/+3 | |
2016-08-15 | Improve index layout and UX with UI adjustments and better wording | Wu Cheng-Han | 1 | -1/+2 | |