hedgedoc - Hedgedoc with support for CindyScript

	Commit message (Collapse)	Author	Age	Files	Lines
*	Merge pull request #770 from SISheogorath/fix/ldapUUID	Christoph (Sheogorath) Kern	2018-03-18	1	-1/+8
\|\ \| \| \| \|	Add check for undefined UUID
\| *	Add check for undefined UUID	Sheogorath	2018-03-18	1	-1/+8
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This check is needed at there are tons of LDAP implementations out there and none has at least one guaranteed unique field. As we currently check three fields and added an option to select one yourself, it's still not said that any of these fields is set. This will now create an error and fail the authentication instead of letting people may get access to other people's notes which are stored under a this way deterministic wrong userid named `LDAP-undefined`. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* \|	Merge pull request #743 from hackmdio/fix-to-use-url-safe-base64	Christoph (Sheogorath) Kern	2018-03-18	4	-10/+53
\|\ \ \| \| \| \| \| \|	Fix to use url-safe base64 in note url
\| * \|	Fix to log instead of throwing error on parse note id	Max Wu	2018-03-11	1	-2/+4
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Max Wu <jackymaxj@gmail.com>
\| * \|	Fix parseNoteId order to fix some edge case	Max Wu	2018-03-10	1	-7/+7
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	that LZString note url could be parsed by base64url note url and thus return wrong note id Signed-off-by: Max Wu <jackymaxj@gmail.com>
\| * \|	Improve history migration performance	Max Wu	2018-03-10	1	-11/+5
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Max Wu <jackymaxj@gmail.com>
\| * \|	Update to use buffer in encode/decode note id	Max Wu	2018-02-27	1	-2/+4
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Max Wu <jackymaxj@gmail.com>
\| * \|	Add migration for LZString compressed note id in history	Max Wu	2018-02-26	1	-1/+21
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Max Wu <jackymaxj@gmail.com>
\| * \|	Remove and replace all note id compression in LZString with base64url	Max Wu	2018-02-26	3	-8/+33
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Max Wu <jackymaxj@gmail.com>
* \| \|	Merge pull request #757 from SISheogorath/fix/migration	Christoph (Sheogorath) Kern	2018-03-17	1	-0/+11
\|\ \ \ \| \| \| \| \| \| \| \|	Add missing migration for permissions
\| * \| \|	Add missing migration for permissions	Sheogorath	2018-03-06	1	-0/+11
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* \| \| \|	Add helper function to fix number problems	Sheogorath	2018-03-16	2	-3/+10
\| \|_\|/ \|/\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	As minio causes various problem if you configure it using environment variables and leave the port setting out, which will evaluate to NaN, this change should fix this in a clean way for this time and helps to support numbers in general in future. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* \| \|	Merge pull request #761 from SISheogorath/feature/reportURI	Christoph (Sheogorath) Kern	2018-03-14	3	-2/+11
\|\ \ \ \| \| \| \| \| \| \| \|	Add config option for report URI in CSP
\| * \| \|	Add config option for report URI in CSP	Sheogorath	2018-03-14	3	-2/+11
\| \|/ / \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This option is needed as it's currently not possible to add an report URI by the directives array. This option also allows to get CSP reports not only on docker based setup but also on our heroku instances. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* \| \|	Convert HMD_MINIO_PORT into Number type.	vazontang	2018-03-15	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	fix hackmdio/hackmd#763 Signed-off-by: Tang TsungYi <vazontang@gmail.com>
* \| \|	Multiple emails from LDAP are already an Array	Felix Schäfer	2018-03-09	1	-1/+1
\|/ / \| \| \| \| \| \|	Signed-off-by: Felix Schäfer <felix@thegcat.net>
* \|	Remove unused LDAP option `tokenSecret`	Felix Schäfer	2018-03-05	2	-2/+0
\| \| \| \| \| \| \| \| \| \| \| \|	hackmdio/hackmd#754 Signed-off-by: Felix Schäfer <felix@thegcat.net>
* \|	Introduce ldap.useridField	Dustin Frisch	2018-03-01	3	-1/+6
\|/ \| \| \|	Signed-off-by: Dustin Frisch <fooker@lab.sh>
*	Fix to show 500 message when got error in parseNoteId	Max Wu	2018-02-17	1	-1/+2
\| \| \| \|	Signed-off-by: Max Wu <jackymaxj@gmail.com>
*	Fix field type to prevent data truncation of authorship (#721)	Max Wu	2018-02-09	3	-2/+15
\| \| \| \|	* Fix field type to prevent data truncation of authorship
*	Fix typo of DB migration script	Takeaki Matsumoto	2018-02-08	1	-2/+2
\| \| \| \|	Signed-off-by: Takeaki Matsumoto <takeaki.matsumoto@ntt.com>
*	don't require referer to find note id in socket.io connections (fixes #623)	Stefan Bühler	2018-02-05	1	-6/+14
\| \| \| \|	Signed-off-by: Stefan Bühler <buehler@cert.uni-stuttgart.de>
*	Fix uncaught exception for non-existent user	Sheogorath	2018-01-30	1	-0/+5
\| \| \| \| \| \| \|	Since we added user management it's possible to get non-existent users which can cause a crash of the Backend server. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
*	Merge pull request #704 from SISheogorath/fix/ldapProviderName	Christoph (Sheogorath) Kern	2018-01-29	1	-0/+2
\|\ \| \| \| \|	Fix ldap provider name in template
\| *	Fix ldap provider name in template	Sheogorath	2018-01-26	1	-0/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Before this fix it's impossible to set the provider name in the sign-model since `ldap` is a boolean there and this way not able to have an attribute like `ldap.providerName`. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* \|	Remove camel case from `imageuploadtype` in config	Sheogorath	2018-01-27	4	-6/+14
\|/ \| \| \| \| \| \| \| \| \| \| \| \|	This removes the only camel cased option of the config options we added to the config.json. In auth provider's config parts are a lot of camel cased options provided. We shouldn't touch them to keep them as similar as possible to the examples. Fixes #315 Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
*	Merge pull request #691 from SISheogorath/feature/upload	Christoph (Sheogorath) Kern	2018-01-23	1	-0/+20
\|\ \| \| \| \|	Allow more detailed configuration of upload mime types
\| *	Allow more detailed configuration of upload mime types	Sheogorath	2018-01-20	1	-0/+20
\| \| \| \| \| \| \| \| \| \| \| \|	Fixes #637 Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* \|	Fix broken port config	Sheogorath	2018-01-23	1	-1/+1
\| \| \| \| \| \| \| \|	Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* \|	Merge pull request #506 from erasys/minio	Christoph (Sheogorath) Kern	2018-01-23	3	-0/+48
\|\ \ \| \| \| \| \| \|	Add support for minio
\| * \|	Add support for minio	Marc Deop	2017-08-30	3	-0/+48
\| \| \|
* \| \|	Merge pull request #598 from xxyy/feature/csp	Christoph (Sheogorath) Kern	2018-01-22	4	-1/+92
\|\ \ \ \| \| \| \| \| \| \| \|	Implement basic CSP support
\| * \| \|	Move CSP logic to new file, Fix boolean config examples	Literallie	2017-10-22	1	-0/+80
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Not sure why I was quoting these in the first place
\| * \| \|	Change CSP config format to be more intuitive	Literallie	2017-10-22	2	-9/+4
\| \| \| \|
\| * \| \|	CSP: Allow more content types	Literallie	2017-10-22	1	-3/+7
\| \| \| \|
\| * \| \|	CSP: Add nonce to slide view inline JS	Literallie	2017-10-22	1	-1/+2
\| \| \| \|
\| * \| \|	CSP: Upgrade insecure requests if possible	Literallie	2017-10-22	1	-2/+3
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Config option; default is to only upgrade if usessl
\| * \| \|	Add basic CSP support	Literallie	2017-10-22	1	-0/+10
\| \| \| \|
* \| \| \|	Merge pull request #673 from fooker/master	Christoph (Sheogorath) Kern	2018-01-20	3	-1/+13
\|\ \ \ \ \| \| \| \| \| \| \| \| \| \|	Allow posting new note with content
\| * \| \| \|	Allow posting new note with content	Dustin Frisch	2018-01-18	3	-1/+13
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Dustin Frisch <fooker@lab.sh>
* \| \| \| \|	Add option to enable `freely` permission in closed instance	Dario Ernst	2018-01-20	5	-2/+6
\| \|_\|_\|/ \|/\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Before, closed disallowed guest edits completely, by removing the `freely` permission. This makes it possible to explicitely bring back guest-editing, but not guest-note-creation, to closed instances. Signed-off-by: Dario Ernst <dario@kanojo.de>
* \| \| \|	Merge pull request #686 from SISheogorath/feature/configVersion	Christoph (Sheogorath) Kern	2018-01-19	1	-1/+3
\|\ \ \ \ \| \| \| \| \| \| \| \| \| \|	Load version from package.json
\| * \| \| \|	Load version from package.json	Sheogorath	2018-01-19	1	-1/+3
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* \| \| \| \|	Fix not passing app key correctly in dropbox config	Wu Cheng-Han	2018-01-19	3	-3/+6
\|/ / / /
* \| \| \|	Release 1.0.0-ce	Sheogorath	2018-01-18	1	-1/+1
\| \| \| \|
* \| \| \|	Ignore empty values for revision.	Sheogorath	2018-01-18	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Fixes #420
* \| \| \|	Merge pull request #636 from laysdra7265/fix/sslcapath	Christoph (Sheogorath) Kern	2018-01-18	2	-2/+5
\|\ \ \ \ \| \| \| \| \| \| \| \| \| \|	Fix sslcapath bug
\| * \| \| \|	Update index.js	Christoph (Sheogorath) Kern	2017-12-22	1	-1/+1
\| \| \| \| \|
\| * \| \| \|	Simplify loop	Christoph (Sheogorath) Kern	2017-12-22	1	-8/+3
\| \| \| \| \|
\| * \| \| \|	fixed sslcapath bug	LaysDragon	2017-12-05	2	-2/+10
\| \| \| \| \|