| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
The php documentation for password_hash recommends 255.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
This drops a third party library, but bumps our required php version to
5.5 which is currently old stable. Earlier versions are no longer
supported by php upstream nor by us.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Error was: You can't specify target table 'testsuite_prefix_file_storage' for update in FROM clause
The new code is ported from the existing postgres migration.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Sometimes php7 throws an internal notice in this function which we
convert to an exception. Catching the exception will however not set
$mimetype so this error needs to be ignored.
This should be removed once php has fixed the bug.
References: https://bugs.php.net/bug.php?id=71434
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Using the class name for the constructor is deprecated.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Clients are only hosted on paste.xinu.at and everywhere else the links
will point to missing files so they become useless.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Imagemagick sometimes output warnings about files that do not conform
to standards, but still renders them.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
CI tries to remove invisible escape chars, but this breaks handling of
code like the following:
if (m == 2 && (y%4 == 0 && y%100 != 0)|| y%400 == 0)
When pasted via the client all is fine, but when pasted in the webui CI
strips '%10' from the string and leaves 'y0 != 0'.
The second parameter of remove_invisible_characters indicates whether
the string is urlencoded so I believe that setting it to false should
be fine. This only disables the code that removes % escapes.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
- Add missing files
- Fix paths missing FCPATH
- Remove left over header/footer
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
The - from m-ID was missing in the regex.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
|
|
Reported-by: Michael Mueller <michael.mueller@selfnet.de>
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
This broke insert_id() because it expects a 'server' key in the
returned array yet no array is returned.
This should work just fine for postgres >7.4 now.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
service/file::history calls this for every entry which is rather slow.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Also adjust test cases to check for the new value. API v1 does not
change.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Since this is a breaking change bump the api version to 2.
The private fields are user_id and multipaste_id which where leaked via
the multipaste_items field. This commit also adds a test case to both
api versions that checks the returned fields.
NOTE: Most of this commit is copied from the files of api v1 so when
viewing the diff use --find-copies-harder for an easy to read diff.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
These are necessary for clients that want to send lots of fields e.g.
in a delete request or upload multiple files in one upload request.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
If the user has multiple tabs open, but is not logged in this will be
called multiple times (unless he logs in after the first upload batch)
and earlier uploads would be lost.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
If we store only the last called URI in the session we can't support
multiple browser tabs that all need to log in again. Fix this by
storing the URI in the URL.
Also change a trim() to ltrim() so that the URI string we store keeps
it's trailing slash.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Also try to clean up when files are deleted since 1 month is a rather
long time. Granted, thumbnails are small, but whatever
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
If the thumbnail placeholders are properly positioned via css we can
display them early.
We can also take some work off lazyload by setting a placeholder color
in css thus making rendering for lots of thumbnails faster.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
- Use the filedata we already have in
c/file->upload_history_thumbnails() rather than fetching it per id in
m/mfile->valid_id
- Construct the config array for s/f::valid_id only once and not for
every validation.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
site_url is rather slow and the improvement is noticeable when there
are lots of thumbnails (thumbnail history).
Also make the code more readable in the process by inserting some
linebreaks.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Call delete() which already catches the exception if the file is
missing.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
- Make buttons fixed so you don't have to move the mouse
- Support h/l for vimperator users
- Document mappings so users actually know about them
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
|
|
- Incorrect path to .js file
- Autoloading and the data-api don't work so load and run it explicitly
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Support range selection on history page
by adding jquery.checkboxes
|
|
When the exception handler moved to a dedicated class
_exception_handler was no longer defined so CI defined it with it's own
code which does not throw an exception but rather just prints the less
helpful CI error page.
This could be triggered by deleting an upload while the cache_backend
is set to "file" and the cache does not hold the filedata for the
upload being deleted. In that case PHP throws a warning (unlink on a
missing file) which would no longer be caught with try/catch in the
cache backend's delete() function. Now the error is catchable again.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
If $PWD is not the root of the working copy this would try to include
$PWD/public_html/index.php.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
APPPATH is an absolute path already so prepending FCPATH will make an
invalid path.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
|
The user might click the wrong link or might change their mind and it
is really not necessary to clean them up early. Let the cron job take
care of that.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
|
