dnrops
/
cryptpad
mirror of https://github.com/xwiki-labs/cryptpad
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
15,175 Commits 73 Branches 132 Tags 560 MiB
Commit Graph

69 Commits

Author SHA1 Message Date
yflory 757f30d4a1 New support: add moderator role 2024-02-22 18:46:26 +01:00
yflory a67b1ea7cc New support: disable quota for the support pin log 2024-02-22 15:48:34 +01:00
yflory 070d8dc450 Support V2 prototype 2024-02-12 14:30:33 +01:00
yflory 542111843a Merge branch 'staging' into forcemfa 2023-12-11 16:30:22 +01:00
yflory e2dd7f6305 Merge branch 'authsso' into forcemfa 2023-12-11 16:30:18 +01:00
yflory 223dc9394b New plugin structure 2023-11-17 17:19:04 +01:00
yflory 982c15ae0e Add an option to enforce MFA for all accounts on the instance 2023-11-09 15:35:56 +01:00
David Benque 8f0a6319a5 Apply headers 2023-10-20 15:35:26 +01:00
yflory 37008242e2 Merge branch 'main' into authsso 2023-10-12 14:56:04 +02:00
yflory 920c307608 Fix websocket issue with some dev instances 2023-09-04 12:10:48 +02:00
yflory c10fc37645 Merge branch 'totp-ui' into 5.4-rc 2023-07-11 10:30:36 +02:00
yflory 18d6ccdfd3 SSO: OIDC auth 2023-06-23 19:06:29 +02:00
yflory 723ecc8bd6 Integration API prototype 2023-06-22 14:39:04 +02:00
ansuz 493bf1346c Merge tag '5.3.0' into 5.3-auth 2023-05-06 15:26:21 +05:30
ansuz e895990426 generate a secret at launch time 
used for issuing and validating JWTs
 2023-05-03 16:19:01 +05:30
ansuz 3c6a35b713 new types of storage for challenges, MFA settings, and sessions 2023-05-02 23:42:09 +05:30
yflory 6b743a787c Fix mailbox message deletion 2023-03-28 12:19:16 +02:00
ansuz b003d4d825 Merge branch 'staging' into http-workers 2023-03-02 11:59:58 +05:30
yflory a0714b9cc8 Prevent type error with the new admin script 2023-01-12 15:54:16 +01:00
ansuz 7e4518b43d More server cleanup: 
* make the websocket port configurable
* reorder some tasks at launch time to use more consistent logging
* relaunch http workers if they crash
* refuse to launch if httpUnsafeOrigin cannot be parsed as a URL
* fix a path issue reintroduced by a git merge
 2022-12-20 16:29:38 +05:30
ansuz d58096636a Merge tag '5.2.0' into test-merge 2022-12-20 14:49:47 +05:30
ansuz 6f19101f42 big server changes: 
* use the nodejs cluster module to handle http traffic with multiple threads
* listen for websocket traffic on a new port because all such logic needs to share state
* proxy websocket URLs from the cluster to the new port so everything is backwards compatible
* implement logic for http workers to make requests and stay in sync with the main process
* unrelated: define the expected nodejs version in a constant
 2022-12-20 14:20:59 +05:30
ansuz ed981f2b63 generalize recommended version code for easier updates 2022-12-07 13:09:24 +05:30
ansuz c762353cad interpret maxWorkers config in lib/env instead of in worker handler 2022-12-07 13:04:07 +05:30
ansuz 863ab4f380 Merge branch 'soon' into absolute-paths 2022-10-06 15:34:05 +05:30
ansuz e78e57c039 unify accounts_api and quota_api config options 2022-08-30 17:23:10 +05:30
yflory 6ae07bb480 Allow accounts server to trigger quota updates 2022-07-05 11:48:40 +02:00
ansuz 958b3e4376 remove references to removed pages and notes that have been addressed 2022-05-13 15:50:38 +05:30
ansuz 0be64ac958 simplify accounts configuration on dev instances 2022-05-11 13:12:12 +05:30
ansuz a2731c44b0 assorted home page fixes/improvements 
* link to home page from other static pages
* home notice
  * moved to the top of the home page
  * configured via server API instead of application_config.js
  * WIP admin panel UI
* more debugging info for unsupported decrees
* lint compliance probably
 2022-05-06 13:55:00 +05:30
ansuz b014c4dbf1 fileHost is undefined for most use cases 2022-04-04 16:32:42 +05:30
ansuz b4323b2c40 fix incorrect frame-ancestors and update test 2022-04-01 13:15:06 +05:30
ansuz e6c51e3dff remove hardcoded translations and invert remote embedding logic 2022-03-24 12:43:16 +05:30
ansuz 386827d825 handle 500 errors 2022-03-22 16:41:42 +05:30
ansuz af10547dca warn if node is not launched with 'NODE_ENV=production' 2022-03-22 15:40:43 +05:30
ansuz f34a60665f check that the server is running at least NodeJS v16.14.2 2022-03-22 14:27:07 +05:30
ansuz d405a5f086 disable remote embedding by default 2022-03-15 15:29:18 +05:30
ansuz 1051fc4da7 fix undefined safe origin 2022-03-14 17:43:51 +05:30
ansuz a54a0af604 more tests on checkup page 2022-03-14 17:09:22 +05:30
ansuz e38e08fb6e Merge branch 'soon' into block-embeds 2022-03-14 12:52:55 +05:30
ansuz 45d2eb0267 Merge branch 'soon' of github.com:xwiki-labs/cryptpad into support-categories 
and include some tweaks for the checkup page

* sort errors above warnings
* improve messages for new tests
 2022-03-10 11:33:41 +05:30
ansuz b65730b853 allow admins to enable configurable disk I/O profiling 2022-03-07 18:42:00 +05:30
ansuz 1202b7a691 WIP configure instance name, jurisdiction, and description on admin panel 2022-02-24 15:28:24 +05:30
ansuz 0917b45035 implement proper support for forbidding remote media-tag inclusion 
...and test that the basic headers are correctly set on the checkup page
 2022-02-18 16:09:02 +05:30
ansuz b40c81d088 support modifying CSP headers at runtime 2022-02-18 13:54:33 +05:30
ansuz a93ab05310 handle absolute paths in a few obviously problematic cases 2021-11-22 18:16:35 +05:30
ansuz b8d6af7891 adjust CSP headers for printing from OnlyOffice 
* allow outer to load resources from the sandbox (for fonts)
* test whether the expected CSP values are present on the checkup page
* simplify the nodejs server a bit
 2021-10-19 14:22:10 +05:30
ansuz c1f9d11333 delay working on some flagged issues till next release 2021-08-16 18:32:34 +05:30
ansuz 854a635c5f remove hardcoded translations and defer non-blocking issues till the next release 2021-07-27 03:40:03 +05:30
ansuz f13b82bdf6 disable integrated eviction by default 
we'll implement an admin panel checkbox to enable it later
 2021-07-06 16:14:40 +05:30