Commit graph

630 commits

Author SHA1 Message Date
Hypolite Petovan
62e7d0f40a Update HTML::purify debug comment formatting 2021-04-04 20:21:10 -04:00
Balázs Úr
054c301ef0 Update copyright 2021-03-29 08:40:20 +02:00
Michael
13ed585156 Display rhe provider and author of a shared post 2021-03-21 23:32:49 +00:00
Michael
08771d96c2 Remove unused parameter 2021-03-16 07:15:20 +00:00
Michael
d498d15200 Avoid double fetches 2021-03-16 07:04:16 +00:00
Michael
0a3d50a270 Adjusted field names 2021-03-16 06:37:43 +00:00
Michael
70bf75c342 Support for page JSON-LD based page information 2021-03-15 22:02:21 +00:00
Hypolite Petovan
393de1a283 Use system.allowed_oembed config to allow iframe source 2021-03-14 14:19:35 -04:00
Hypolite Petovan
93823ecef5 Move HTML purification to own method in Content\Text\HTML 2021-03-14 14:19:33 -04:00
Hypolite Petovan
e1f8e10fe7 Increase video tag regular expression specificity to decrease backtrack in BBCode::convert 2021-03-13 09:06:52 -05:00
Michael
7510e854de Issue 8547: Improve page load speed 2021-03-07 20:15:25 +00:00
Michael
6a4540e6f6 Issue 9799: Ensure that the first post date is after the registration date 2021-03-07 10:46:46 +00:00
Hypolite Petovan
a6423031eb
Merge pull request #9963 from mexon/mat/support-cid-scheme
Support cid URLs as used in mailstream plugin
2021-02-27 12:11:15 -05:00
Matthew Exon
4a16d8e06f Support cid URLs as used in mailstream plugin 2021-02-27 16:54:52 +00:00
Adam Clark
995d53ebfc Missed this file when adding. 2021-02-23 10:18:56 -08:00
Michael
1792046a4f post/thread views are renamed, search bugs fixed 2021-02-22 19:47:08 +00:00
Hypolite Petovan
dc8ecbeb24 Add new Content\Text\BBCode::embedURL method 2021-02-18 09:06:13 -05:00
Michael
312c01a517 Several speed improvements (magiclink, caching, indexes) 2021-02-17 18:59:19 +00:00
Michael
751232d679 Merge remote-tracking branch 'upstream/develop' into no-item 2021-02-14 22:44:38 +00:00
Michael
ce6ad1aa73 Get rid of the "item" table, enhanced "post" tables 2021-02-13 19:56:03 +00:00
Tobias Diekershoff
97a6a742e7
Merge pull request #9922 from MrPetovan/bug/9666-video-bbcode-link
Try OEmbed first for [audio] and [video] tags
2021-02-10 11:33:42 +01:00
Hypolite Petovan
4a57ed1a31 Move HTTPS exception for YouTube and Vimeo to OEmbed::fetchUrl
- Both Youtube and Vimeo output OEmbed endpoint URL with HTTP but their OEmbed endpoint is only accessible by HTTPS ¯\_(ツ)_/¯
2021-02-09 23:25:18 -05:00
Hypolite Petovan
0927bb5f2c Harden OEmbed link discovery
- Check OEmbed call return code before storing response
- Stop at first successful OEmbed response
2021-02-09 23:25:18 -05:00
Hypolite Petovan
7653bc00df Try OEmbed first for [audio] and [video] tags 2021-02-09 23:20:28 -05:00
Michael
c3398511b4 New table "post-content" 2021-01-30 22:03:53 +00:00
Hypolite Petovan
e2c38f1347 Prevent hashtag parsing and replacement in image alternative text 2021-01-22 17:45:28 -05:00
Hypolite Petovan
215c6ecc14
Merge pull request #9843 from annando/no-filetag
Legacy file/category storage is removed
2021-01-21 18:50:57 -05:00
Michael
d2ea3eabfb Replace legacy file/category handling 2021-01-21 07:16:41 +00:00
Hypolite Petovan
35213630e8 Remove strictly numeric tags exception
- It prevented to use year number hashtags for no clear benefit
2021-01-20 08:10:20 -05:00
Michael
9ccfa37d3c Fixes 9814 - again 2021-01-18 20:19:13 +00:00
Michael
4157db5473 "item" is replaced by "post-view" / postupdate check added 2021-01-17 20:32:13 +00:00
Hypolite Petovan
fff565a80b Prevent alt text of emoji image tags to be converted to smilies in BBCode::convert 2020-12-30 22:23:58 -05:00
Hypolite Petovan
4b1180ec8b Restore autolink in share block content in BBCode::convertShare 2020-12-21 22:46:29 -05:00
Michael
3ec1270fde Quit when message is empty 2020-12-19 18:17:32 +00:00
Hypolite Petovan
bcd61c8372
Merge branch '2020.12-rc' into bug/9656-purify-video-embed 2020-12-18 14:47:24 -05:00
Hypolite Petovan
95f099d26c Restore Mastodon emoji span classes
- Fix typo in replacement of [class] tag
2020-12-18 11:08:03 -05:00
Hypolite Petovan
20d9dcf7ac Bump BBCode version to 2020-12-18 2020-12-18 10:32:36 -05:00
Hypolite Petovan
0781f28ca6 Allow support for allowlisted iframe sources in Content\text\BBCode::convert
- Support Youtube, Vimeo and unused local embeds
2020-12-18 10:32:36 -05:00
Hypolite Petovan
ec0c9dcdb1 Remove support for [iframe] BBCode
- It was a huge gaping security hole, and now HTML Purify will remove the src attribute of all non-allowed sources anyway.
2020-12-18 10:32:36 -05:00
Hypolite Petovan
e6270bc46d Enable back references in reg exp in BBCode::convert
- Bump BBCode version
2020-12-06 08:57:06 -05:00
Hypolite Petovan
f141f5acf4 Prevents share block new lines from being converted to HTML <br> tags
- Address https://github.com/friendica/friendica/pull/9621#issuecomment-739333767
2020-12-05 19:55:16 -05:00
Hypolite Petovan
e712706302 Add BBCode versioning
- This will trigger the re-conversion of displayed items on version update
2020-12-04 07:29:49 -05:00
Hypolite Petovan
a0f6d678c4 Add HTML Purify to BBCode::convert
- Replace previous HTML cleanup using DOMDocument
- Remove obsolete HTML::sanitizeCSS method
- Use Strings::autoLinkRegEx for PageInfo::getRelevantUrlFromBody
- Update previous tests expectations
- Add new specific XSS tests
2020-12-04 07:29:48 -05:00
Michael
20649dd00e Replaced tab with space 2020-11-30 20:09:52 +00:00
Michael
1e09eab921 Another place found where "show less" had been "show more" 2020-11-30 19:52:57 +00:00
Michael
d4d55a5865 Issue 8605: "show less" now displays "show less" 2020-11-30 19:30:57 +00:00
Michael
303aaa00ca Mode switch for insert 2020-11-19 19:34:48 +00:00
Hypolite Petovan
dbb33399bc Prevent image descriptions from being replaced by local smilies
- AP-received emojis have their code in the image description
2020-11-15 00:12:26 -05:00
Hypolite Petovan
edd439cfab Simplify code in Content\Text\BBCode::convert
- Use performWithEscapedTags instead of custom solution
2020-11-08 23:25:46 -05:00
Michael
498dda7999 Fix parser issues when a video is linked without a matching extension 2020-11-08 09:24:01 +00:00