80f7a5f025
$metadata->thumbnail_url is not guaranteed to be set
...
We should probably have a separate class for this, so we can more
easily combine different technologies similar to oEmbed/OpenGraph.
2016-02-25 19:47:16 +01:00
4239c952d2
$metadata->thumbnail_url is not guaranteed to be set
...
We should probably have a separate class for this, so we can more
easily combine different technologies similar to oEmbed/OpenGraph.
2016-02-25 19:46:17 +01:00
99f2aba6e1
Fix: Cannot remove OpenID
...
OpenidsettingsAction::removeOpenID() was comparing and int with a string
so always displayed "That OpenID does not belong to you."
2016-02-24 12:42:41 -05:00
e6f07d8554
Use in_array instead. Now we get third party responses to contextually interesting threads
...
I think this solves much of the "third party conversation" issues, assuming involved parties
are using modern GNU social instances.
2016-02-24 00:19:27 +01:00
31c9b2c1d8
Check the notice context for users in UsersalmonAction
2016-02-23 23:56:43 +01:00
9319033ff0
Properly attach activityobjects
...
For some reason they were written to ->object, which is incorrect as
we use the objects[] array (which usually just holds one entry though)
2016-02-23 23:50:57 +01:00
0eb5122817
Check that the user is in the context of a salmon slap
2016-02-23 23:42:41 +01:00
d672547112
getAliases should be only a list (numeric array)
2016-02-23 14:33:09 +01:00
e16f7d04a8
Let OpenID match against aliases (fix fancyurl stuff etc.)
2016-02-23 14:15:08 +01:00
b59dacb806
getAliases for Profile and Notice
...
Also move fancyurlfix into site-wide $config['fix']['fancyurls']
TODO: getByUri should make use of this directly I guess?
2016-02-23 14:00:59 +01:00
c67b89e56b
Make WebFinger fancyurlfix configurable
2016-02-21 20:05:32 +01:00
ce803f6d06
WebFinger aliases with 'index.php/'
2016-02-21 20:00:07 +01:00
1edb1bbc17
Claim that we are the URL without index.php/ in webfinger response
2016-02-21 19:09:39 +01:00
0c17c32267
Let the WebFingerPlugin lookup profile resources with index.php/ too
2016-02-21 18:48:48 +01:00
b23cc7465f
Keep a unique set of WebFingerResource aliases
2016-02-21 18:47:32 +01:00
ade4518ae4
Make the Link header give URI for WebFinger lookup
2016-02-17 22:36:33 +01:00
422d475e44
Differentiate two similar log warning messages
2016-02-17 21:57:52 +01:00
e2a090c9cc
Use NoticeStream::filterVerbs for filtering in noticestreams
2016-02-14 20:46:13 +01:00
fbcca62ae1
listGet was not meant for that really
2016-02-13 01:19:47 +01:00
8ef2abf30b
Render RegiserThrottle extra profile data properly
2016-02-13 01:16:34 +01:00
799c2e47fe
Don't depend on ModLog
2016-02-13 01:10:01 +01:00
be35975b12
RegisterThrottle list-profiles-by-ip
2016-02-13 01:02:18 +01:00
557ad2d1fd
Show user registration IP to users who can see ModLog
2016-02-13 00:51:43 +01:00
3cef75bcac
Update the comment on silencing privileged users in ModHelper
2016-02-12 14:47:44 +01:00
7fdcbd56d5
XMPP URI scheme for HTMLPurifier
2016-02-11 21:31:50 +01:00
b9d35659c8
Stricter exception check
2016-02-10 04:43:30 +01:00
ec257d940a
Either use or don't use HTTPS
...
The risk of injection attacks using HTTP is too great to allow a
site that allows both HTTP and HTTPS...
2016-02-10 00:57:39 +01:00
eaa394ed7d
bitcoin schema for HTMLPurifier
2016-02-08 20:20:31 +01:00
a614205663
Add plugin READMEs
2016-02-08 17:48:37 +00:00
2c5cba28b6
Change status.net/wiki URLs to git.gnu.io
2016-02-08 17:48:10 +00:00
ef5ed10eb9
Log failed captcha entries
2016-02-08 17:51:21 +01:00
cd71188d3a
SimpleCaptcha plugin to stop basic bots
2016-02-08 17:47:09 +01:00
58e852f7f7
Use the -y parameter for ffmpeg/avconv to be non-interactive
2016-02-07 01:59:21 +01:00
6bec22ea4e
Write to the tmp file in VideoThumbnails
2016-02-07 01:57:56 +01:00
25f623565a
Catch http exception in StoreRemoteMedia
2016-02-07 01:54:37 +01:00
098c8b1df4
NoHttpResponseException extends HTTP_Request2_ConnectionException
2016-02-07 01:52:20 +01:00
55546a5aab
Support ffmpeg and avconv depending on which you have
2016-02-07 01:02:59 +01:00
1f01356076
Fix issue #127 by catching exceptions
...
update-profile-data.php threw exceptions on http connection issues
2016-02-04 12:06:35 +01:00
90045d66ea
HTMLPurifierSchemes plugin to allow geo and magnet URIs
2016-02-03 14:36:51 +01:00
367fc054dc
Merge branch 'master' into mmn_fixes
2016-01-30 00:03:25 +01:00
a5c1b063fd
isPerson did not exist for Ostatus_profile
2016-01-29 16:15:06 +01:00
689e277c62
Allow @localuser@mysite.example to be looked up as a mention
2016-01-29 16:06:16 +01:00
36f099958c
Don't match @nickname on @nickname@server.com
2016-01-29 15:53:58 +01:00
fb7f572eed
Purify oembed html (again)
...
For a commit or two we didn't do this, because htmLawed failed to filter
out CDATA javascript properly, but now we use HTML Purifier which works.
2016-01-28 19:02:16 +01:00
7e6783bb8f
Replace htmLawed with HTMLPurifier
2016-01-28 19:01:13 +01:00
daea5647b6
Merge branch 'nightly' of git.gnu.io:gnu/gnu-social into mmn_fixes
2016-01-28 17:27:08 +01:00
9b3cbb373e
Merge branch 'oembed_fb_wp_branch' into 'nightly'
...
Oembed: Fix UTF-8 bug and better wp&fb data (updated!)
See merge request !97
2016-01-28 16:26:33 +00:00
efe23ed404
updateWithKeys now understands multi-column keys
...
and automatically identifies _which_ columns are the right ones,
so for example 'uri' primary keys don't need to be explicitly set
2016-01-28 16:42:59 +01:00
05439831e7
add comment that DOMDocument('1.0', 'UTF-8') does not work
2016-01-28 15:32:11 +00:00
06e325d61b
fixes two issues when the oembed thumbnail is blank
2016-01-28 15:19:29 +00:00
7c80c9a1f9
Meh, let's just remove FirePHP, I don't think anyone uses it
2016-01-28 13:48:44 +01:00
dfc11f99ad
Merge branch 'update-extlib-firephp' into 'nightly'
...
Update FirefPHP Core to v0.4.0 released on 23 Apr 2013
See merge request !92
2016-01-28 12:41:34 +00:00
bb0cb9b3f6
Manual merge of !87 Update LDAP2 extlib to 2.2.0 (stable) released on 2015-10-30
...
Thanks postblue
2016-01-28 13:35:23 +01:00
c01982c917
Merge branch 'oembed_thumbnail_branch' into 'nightly'
...
add a thumbnail to oembed response
just something i added to quitim
See merge request !85
2016-01-26 21:09:07 +00:00
aa76e5863f
don't mess upp charsets in oembed/og! check for utf-8 in http header and meta tags, and add prolog when loading html with DOMDocument()
2016-01-26 13:37:52 +00:00
b8d1e1f4a6
silence errors on these xpath queries
2016-01-26 11:28:24 +00:00
884aeb4d2e
common_purify() doesn't remove wordpress' and facebook's javascript properly, maybe better to keep the data intact, and do strip_tags or something similar when using the data
2016-01-26 01:10:15 +00:00
473f893d04
detab
2016-01-26 01:07:44 +00:00
76c8139054
not pretty, but gives us better oembed data for wordpress and facebook
2016-01-26 01:05:53 +00:00
9614aba0e1
Removed plugin Google-Analytics as this is free/libre and decentralized
...
software and should not promote centralized proprietary software. Please see
the included Piwik plugin for a more decentralized alternative!
Signed-off-by: Roland Haeder <roland@mxchange.org>
2016-01-25 13:19:43 +01:00
fef52d7b51
Update FirefPHP Core to v0.4.0 released on 23 Apr 2013
2016-01-24 21:11:38 +01:00
ef005987a1
Did the OpportunisticQM fixes in the wrong order
2016-01-22 12:26:53 +01:00
1121b38eb1
use connect_timeout value for execution margin
2016-01-22 12:21:06 +01:00
81f9a59f25
use connect_timeout value for execution margin
2016-01-22 12:19:17 +01:00
d0e2f8745d
add a thumbnail to oembed response
2016-01-21 18:48:30 +00:00
3f9c1c142a
Removing unnecessary debug messages etc.
2016-01-21 02:49:34 +01:00
be1759f112
i18n
2016-01-21 02:37:07 +01:00
81bf0fd261
Various last fixes to RSVP I think
2016-01-21 02:20:57 +01:00
f74d2d555c
Working on some RSVP code stuff
2016-01-21 02:10:34 +01:00
45b523bada
Add xcal namespaces to location and url in event
...
Also, for fun, add stuff for RSS event module, see:
http://web.resource.org/rss/1.0/modules/event/
2016-01-20 21:07:55 +01:00
21cc737f5c
Cancelling RSVPs now seems to work.
2016-01-20 16:10:10 +01:00
64e74d527f
Handle exceptions when salmon slapping
...
Make it so notifyDeferred actually _always_ throws exceptions and handle
them in the places it is called.
2016-01-20 15:32:39 +01:00
c393bc9563
In very specific circumstances we can bulkDistribute 0 notices
...
Seems to be what caused an infinite loop on quitter.es, or I guess so anyway.
2016-01-20 15:32:29 +01:00
912d65c767
bulkDistribute won't add empty lists to database
2016-01-20 15:32:24 +01:00
fa8e02b832
Handle exceptions when salmon slapping
...
Make it so notifyDeferred actually _always_ throws exceptions and handle
them in the places it is called.
2016-01-20 14:56:24 +01:00
80dc2788dd
Started fiddling with CancelRSVP but more must be done
...
Remember to make event_uri be the selector for CancelRSVPForm and
preferrably even merge it into RSVPForm!
2016-01-19 01:41:06 +01:00
477d71c0bf
RSVP stuff, mostly forms.
...
Now fix CancelRSVP stuff so it gets by event_uri and can cancel existing RSVP.
2016-01-19 01:33:09 +01:00
84dda697d6
RSVPs seem to be created now, just gotta fix CancelrsvpAction
2016-01-19 01:10:06 +01:00
73992a1ed8
Use "newer" terminology and throw exceptions
2016-01-19 00:21:16 +01:00
9eea255c79
Save with options so we get source=web
2016-01-19 00:08:31 +01:00
358684a5ed
end_str, not start_str
2016-01-19 00:01:30 +01:00
385705c65b
Events get rendered.
2016-01-18 23:58:32 +01:00
cae344b67b
Events are now saved but not displayed properly again
2016-01-18 20:57:44 +01:00
486a02d60d
First steps on making NeweventAction a FormAction
...
Also saving new Happening objects via Notice::saveActivity
2016-01-18 18:42:42 +01:00
6dc0477c00
Let the remote side know the Salmon was accepted (sorta)
2016-01-16 22:39:59 +01:00
deda83fdef
Distinguish notice saving errors from others for Salmon
2016-01-16 22:39:04 +01:00
0797ee0871
EmptyIdException doesn't carry ->obj
2016-01-16 21:12:53 +01:00
c559b8ce2a
bulkDistribute won't add empty lists to database
2016-01-16 17:34:27 +01:00
f53ebdeadb
Start handling salmon entries directly with Notice::saveActivity
...
More to come...
2016-01-16 17:25:29 +01:00
2b67b53112
In very specific circumstances we can bulkDistribute 0 notices
...
Seems to be what caused an infinite loop on quitter.es, or I guess so anyway.
2016-01-16 17:18:14 +01:00
44c10bb2aa
Merge branch 'oembed_branch' into 'nightly'
...
purify oembed html and don't allow cdata
hopefully we never need stuff in cdata
reason for this is that this link serves javascript in its oembed data: https://www.maketecheasier.com/switch-windows-10-to-linux/
see:
https://www.maketecheasier.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fwww.maketecheasier.com%2Fswitch-windows-10-to-linux%2F
i don't feel we want that in our database.
See merge request !79
2016-01-15 13:11:35 +00:00
2af9de4f23
Minor fixes in Linkback plugin
2016-01-14 19:14:24 +01:00
0caf0612d0
Make Twitter Media upload API v1.1 reach us
...
Now we just have to accept the 'media' or 'media_data' (base64 encoded)
POST arguments instead of $_FILES uploads.
2016-01-14 18:29:21 +01:00
2f1bfe126b
Debug message formatting gone wrong
2016-01-14 13:52:11 +01:00
59e75ef966
Incorrect use of getByHashKey in HubSub
2016-01-14 13:15:31 +01:00
f092026541
Documentation fix from master
2016-01-14 13:11:27 +01:00
bacd49a6a8
Don't try to replace http with https if https already exists
2016-01-14 13:06:37 +01:00
b7c849b5b0
array need to contain key/value pairs
2016-01-14 12:39:39 +01:00
83cb1dfa68
Salmon debugging
2016-01-14 03:48:41 +01:00
53339ff463
Fake oEmbed version in OpenGraph return object
2016-01-14 02:09:12 +01:00
cf7d2f4d0f
Salmon queue handler getByID for exception throwing
2016-01-14 01:51:00 +01:00
0482b7de8e
Debugging by indexing callback column in HubSub
2016-01-13 22:57:42 +01:00
24d9d76644
OpenGraph image/thumbnail width and height
2016-01-13 22:07:39 +01:00
adba38ce20
Deleted_notice is pluginified, don't call directly from core
2016-01-13 21:29:23 +01:00
45dd343126
Eventify Notice getAsTimestamp (for Deleted_notice)
2016-01-13 21:01:47 +01:00
8ab98b72ac
getLeaseRemaining for FeedSub too
2016-01-13 20:01:00 +01:00
377947c57f
s/getLease/getLeaseTime/ just to be a bit more clear
2016-01-13 19:55:17 +01:00
1d26fedf12
Don't store lease seconds, just sub start and end
...
The seconds can always be calculated from the dates!
2016-01-13 19:45:20 +01:00
494746e665
Minor PuSH comment and debug stuff
2016-01-13 19:25:39 +01:00
a5fd4fde25
Request a month long sub lease by default
2016-01-13 19:24:07 +01:00
b38a789005
HubSub didn't save sub start and end datetimes
2016-01-13 19:23:34 +01:00
ee305891c4
purify oembed html
2016-01-13 16:03:38 +00:00
5c262a788d
Unused, unnecessary and intrusive cookie/storage removed!
2016-01-13 15:22:28 +01:00
3720e37f06
property attribute could be null in meta tags of course
2016-01-13 14:24:00 +01:00
99da1ebe41
Catch NoHttpResponseException when using HTTPClient
2016-01-13 14:17:49 +01:00
3ed632decf
NoHttpResponseException needed instead of HTTP_Request2_Exception
...
HTTP_Request2_Exception assumed an HTTP response status code/line
2016-01-13 14:08:48 +01:00
e75472f460
Use the upstream function to get effectiveUrl
2016-01-13 14:00:05 +01:00
3658774429
Super-basic OpenGraph image preview support, "works for me"
2016-01-12 15:29:03 +01:00
f4feef477b
Don't follow redirects on PuSH POST.
2016-01-12 14:32:28 +01:00
c826fe0af4
$target was klantigtly copied from another debug message
2016-01-11 20:10:38 +01:00
bd6efa0e45
Update PuSH callback URL if remote side switched to HTTPS
...
See the comment in the source on why we're not following Location headers...
2016-01-11 19:55:02 +01:00
f24cdf4a80
Much more logging in PushHubAction (OStatus)
2016-01-11 19:54:05 +01:00
8acf930c45
OpportunisticQM matches against _system_ max_execution_time
...
Probably never runs if max_execution_time is 0. I'll handle that later.
2016-01-11 13:35:29 +01:00
b13f8df79b
HTTPClient would return null instead of exception
...
This caused $response->isOK() tests to call a function on a non-existing object, causing all hell to break loose.
2016-01-11 02:36:59 +01:00
e498bc6b7b
Control OpportunisticQM verbosity
2016-01-10 00:51:25 +01:00
7fbf72f9c1
Minor changes to OpportunisticQM for debugging
2016-01-10 00:48:04 +01:00
42dff2742a
Put salmon slaps in queues before pushing user Atom feed
2016-01-10 00:29:32 +01:00
c3c5a9974d
Do proper fromUri lookup on groups too
2016-01-09 14:36:47 +01:00
fbec7c4e75
Issue #121 - use correct Group ID and strict User_group typing
2016-01-09 14:06:50 +01:00
4e0ed61f7c
OStatus queue handler uses Notice->getAttentionProfiles()
...
and lots more debugging for LOG_DEBUG
2016-01-08 01:31:47 +01:00
c48871cf1b
Notice from web now saves context->attention too! ;)
2016-01-07 23:24:15 +01:00
d4be5349b3
think I have managed to show oEmbed images better now
2016-01-07 17:35:37 +01:00
9e5c71e701
Fixed group representation in Directory plugin, also some ->raw calls
2016-01-07 12:58:14 +01:00
c02f23e63f
Return Profile objects from getGroups in GroupdirectoryAction
2016-01-07 12:35:52 +01:00
e7308b0ecb
Max execution time margin for OpportunisticQM
...
I guess it could continue a bit too long in case it got a really long
(failing, timeouting) HTTP request just before max_execution_time hit.
2016-01-07 11:58:09 +01:00
1a1e44cdfd
Issue #118 wanted better TOR support, now Avatar URLs are not stored
...
There was no reason to store the generated Avatar URLs because it's so
cheap to generate them on the fly.
2016-01-06 16:14:26 +01:00
b596391fcd
Avoid having to check for notices without rendered copies in upgrade.php
...
Always call the Notice->getRendered() function to get a rendered copy.
We could perhaps put some sanitation there too in the future
2016-01-06 15:32:27 +01:00
0fd2ad649e
Conversation IDs (again) no longer based on Notice ID
2016-01-06 13:58:46 +01:00
2c5460eb0e
Merge branch 'openid-plugin' into 'nightly'
...
OpenID plugin: 'openid_only' should be 'openidonly'
To match everywhere else.
See merge request !72
2016-01-05 23:28:28 +00:00
9a75778b29
If there's no Happening, we can't use the RSVP.
2016-01-05 15:00:34 +01:00
3471213d1c
processFeed would abort on certain errors where findLocalObject failed
2016-01-05 15:00:07 +01:00
ab93bb009c
XSS vulnerability when remote-subscribing
...
->raw was used on non-filtered strings for some reasons, changed
to ->text.
2016-01-05 12:15:50 +01:00
bf0df016e5
OpenID plugin: 'openid_only' should be 'openidonly'
...
To match everywhere else.
2016-01-04 10:36:05 -05:00
f7a1c8a94c
The $options array isn't used here
2016-01-04 01:48:54 +01:00
34b25e6afc
Use EmptyIdException in Fave deletion try-catch
2016-01-03 22:57:28 +01:00
bda30a92bc
Fave deletion would fail in some cases with missing profiles or notices
2016-01-03 22:35:49 +01:00
7df8a6b731
This version of the EventPlugin won't work with StatusNet any longer
2016-01-03 16:23:44 +01:00
95d415257a
Merge branch 'nightly' into singpolyma/gnu-social-events-saveObjectFromActivity
...
Conflicts:
plugins/Event/EventPlugin.php
plugins/Event/classes/RSVP.php
I just fixed 'em with magic!
2016-01-03 13:08:34 +01:00
336f099241
Don't store object type for verbs (as they don't have it)
2016-01-02 16:05:20 +01:00
e02c10a589
common_render_content doesn't require a Profile now
2016-01-01 18:40:58 +01:00
Mikael Nordfeldth
Chimo
hannes
Roland Haeder
postblue
Björn Schießle