summaryrefslogtreecommitdiff
path: root/public/views (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Move polyfill to CDN sectionSheogorath2018-06-184-5/+4
| | | | | | | We don't support it on CDN false instances, but it doesn't hurt to keep it in for CDN-enabled instances Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Merge pull request #830 from SISheogorath/feature/GDPRChristoph (Sheogorath) Kern2018-06-171-7/+29
|\ | | | | GDPR compliant part 1
| * Add export data UISheogorath2018-05-261-0/+1
| | | | | | | | | | | | | | | | | | | | This adds the UI for the export feature introduced in bcbb8c67c9f8092643c318140f6613324f306bd2 It allows to download all notes from the main page in the default user submenu. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
| * Add token based security featureSheogorath2018-05-251-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | In the current setup users could be tricked into deleting their data by providing a malicious link like `[click me](/me/delete)`. This commit prevents such an easy attack and need the user's deleteToken to get his data deleted. In case someone requests his deletion by email you can also ask him for this token. We can add a GUI that shows it later on. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
| * Add delete user UISheogorath2018-05-251-6/+27
| | | | | | | | | | | | | | | | | | | | This provides the UI for the delete user feature introduced in 4229084c6211db3d22cd9abec99b957725650b9e Placing of the user delete button is not perfect, but can be moved to an own user tab later on. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
| * Add privacy and ToS linksSheogorath2018-05-241-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | To be GDPR compliant we need to provide privacy statement. These should be linked on the index page. So as soon as a document exist under `public/docs/privacy.md` the link will show up. Since we already add legal links, we also add Terms of Use, which will show up as soon as `public/docs/terms-of-use.md` exists. This should allow everyone to provide the legal documents they need for GDPR and other privacy and business laws. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Add korean translationSheogorath2018-06-071-0/+1
| | | | | | | | | | | | | | | | This translation was contributed via POEditor by the user Basix. Thanks a lot for your work! Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Merge pull request #784 from pferreir/add-oauth2-supportChristoph (Sheogorath) Kern2018-06-042-4/+9
|\ \ | |/ |/| Add "generic" OAuth2 support
| * Add support for generic OAuth2 providersPedro Ferreira2018-03-262-4/+9
| | | | | | | | Signed-off-by: Pedro Ferreira <pedro.ferreira@cern.ch>
* | Removing google drive integrationSheogorath2018-05-161-10/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It's sad but it's not working. For multiple releases this should be already broken which shows how often it's used. As there is also a security issue related to that, it's better to remove the feature completely. Whoever wants to rewrite it, feel free to go. This commit removes the Google Drive integration from HackMD's Frontend editor and this way removes the need to provide any API key and Client ID in the frontend. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Revert "Workaround Google API problems"Christoph (Sheogorath) Kern2018-05-161-1/+9
| |
* | Remove Google Upload from UISheogorath2018-05-011-9/+1
| | | | | | | | | | | | | | | | | | | | This temporarily removes the Upload from the UI as it's broken right now. Needs a refactoring and can be added in again later on by undoing this commit. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Add matrix.org / Riot linkSheogorath2018-04-051-1/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | As an active part of the community prefers Matrix.org over Gitter, we should link Matrix.org as a place to meet us. As the matrix and gitter channels are interconnected. We don't loose any message if a person decides to go for one or another. We use an more universal way of translation to make it easier to provide a link to various platforms. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Fix CSP for disqus and Google AnalyticsSheogorath2018-03-302-6/+5
|/ | | | | | | | | | | | | This commit should fix existing problems with Disqus and Google Analytics enabled in the meta-yaml section of a note. Before this commit they were blocked by the strict CSP. It's still possible to disable the added directives using `addDisqus` and `addGoogleAnalytics` in the `csp` config section. They are enabled by default to prevent breaking changes. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Change config to camel case with backwards compatibilitySheogorath2018-03-252-3/+3
| | | | | | | | This refactors the configs a bit to now use camel case everywhere. This change should help to clean up the config interface and make it better understandable. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Update socket.io to version 2.0.4Sheogorath2018-01-301-1/+1
| | | | Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Merge pull request #704 from SISheogorath/fix/ldapProviderNameChristoph (Sheogorath) Kern2018-01-291-1/+1
|\ | | | | Fix ldap provider name in template
| * Fix ldap provider name in templateSheogorath2018-01-261-1/+1
| | | | | | | | | | | | | | | | Before this fix it's impossible to set the provider name in the sign-model since `ldap` is a boolean there and this way not able to have an attribute like `ldap.providerName`. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Upgrade reveal.js to 3.6.0 and useCDN option for CSS includeWu Cheng-Han2018-01-291-5/+4
|/
* Merge pull request #694 from SISheogorath/refactor/socialmediaChristoph (Sheogorath) Kern2018-01-251-6/+6
|\ | | | | Reorganize social media links and footer
| * Reorganize social media links and footerSheogorath2018-01-241-6/+6
| | | | | | | | Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Merge pull request #598 from xxyy/feature/cspChristoph (Sheogorath) Kern2018-01-223-10/+4
|\ \ | |/ |/| Implement basic CSP support
| * Fix MathJax CSP issuesLiterallie2017-10-223-9/+3
| |
| * CSP: Add nonce to slide view inline JSLiterallie2017-10-221-1/+1
| |
* | Merge pull request #688 from hackmdio/add-ce-text-on-indexChristoph (Sheogorath) Kern2018-01-201-0/+1
|\ \ | | | | | | Add CE text on index title
| * | Update body.ejsMax Wu2018-01-201-0/+1
| | | | | | | | | Add CE text on index title
* | | Merge pull request #690 from Nebukadneza/add_allow_anonymous_editsChristoph (Sheogorath) Kern2018-01-201-1/+1
|\ \ \ | | | | | | | | Add option to enable `freely` permission in closed instance
| * | | Add option to enable `freely` permission in closed instanceDario Ernst2018-01-201-1/+1
| |/ / | | | | | | | | | | | | | | | | | | | | | Before, closed disallowed guest edits completely, by removing the `freely` permission. This makes it possible to explicitely bring back guest-editing, but not guest-note-creation, to closed instances. Signed-off-by: Dario Ernst <dario@kanojo.de>
* / / Remove/update contact detailsSheogorath2018-01-201-3/+3
|/ / | | | | | | Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | It's 2018! :tada:Sheogorath2018-01-191-1/+1
| |
* | :sparkles: Implemented dark theme.Edoardo Odorico2018-01-051-0/+5
| | | | | | | | Signed-off-by: Edoardo Odorico <edoubuntu@gmail.com>
* | Merge pull request #633 from nakaeeee/saml-authChristoph (Sheogorath) Kern2017-12-042-3/+8
|\ \ | | | | | | Support SAML authentication
| * | Initial support for SAML authenticationNorihito Nakae2017-11-282-3/+8
| | |
* | | close open tagsThomas De Backer2017-12-011-2/+2
| | |
* | | Add untranslated sentences to localeThomas De Backer2017-11-301-2/+2
|/ /
* | Merge pull request #606 from DoubleMalt/feature/MattermostAuthSheogorath2017-10-312-4/+9
|\ \ | | | | | | Add Mattermost authentication strategy
| * | Add mattermost authenticationChristoph Witzany2017-10-312-4/+9
| | |
* | | Fix allowpdfexport handling on error pageSheogorath2017-10-311-2/+2
|/ /
* | Upgrade mermaid to v7.1.0, fix #600Peter Dave Hello2017-10-303-3/+3
| |
* | Merge pull request #599 from xxyy/fix/inline-stylesSheogorath2017-10-271-5/+5
|\ \ | | | | | | Externalise some trivial inline styles from slide.ejs
| * | Externalise trivial inline styles from slide.ejsLiterallie2017-10-231-5/+5
| |/ | | | | | | Dynamic background images need some further work
* | Adds PDF export via configgeekyd2017-10-251-4/+8
| |
* | Merge pull request #591 from Rwing/masterSheogorath2017-10-231-1/+2
|\ \ | |/ |/| support Simplified Chinese and rename original zh to Traditional Chinese
| * support Simplified Chinese and rename original zh to Traditional ChineseRwing2017-10-231-1/+2
| |
* | Hides empty export sectiongeekyd2017-10-181-0/+4
|/
* Adds color to new note buttongeekyd2017-10-071-3/+3
|
* Add support of Danish localeWu Cheng-Han2017-06-111-0/+1
|
* add the ability to set slide theme in slide optionsbutlerx2017-05-311-0/+4
|
* Merge pull request #429 from hackmdio/refactor-part-3Max Wu2017-05-131-41/+0
|\ | | | | Refactor frontend part 3
| * Load statusbar template by string-loaderYukai Huang2017-05-071-41/+0
| |