summaryrefslogtreecommitdiffstats
path: root/application
AgeCommit message (Collapse)AuthorFilesLines
2014-01-10let GD itself determine what it can readFlorian Pritz1-14/+5
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-11-09use cache_function() everywhereFlorian Pritz2-21/+16
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-11-09cache file/thumbnail responsesFlorian Pritz1-5/+13
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-11-09implement cache_function to easily cache return values of functionsFlorian Pritz1-0/+18
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-10-31Fix alignment of date column in plain text viewFlorian Pritz1-1/+3
This got broken by 2a6a1c63cb21015009fe4fd13f62cdac64e1fe36 and 05a4d686b578794c180ddfaf4945a9d7443f330e. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-10-22Remove unnecessary TODOFlorian Pritz1-1/+0
It's fine if users can invite an unlimited amount of people. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-10-22Update CSP header; change order to fix svg display in firefoxFlorian Pritz1-1/+1
Apparently firefox doesn't like "style-src * 'unsafe-inline'", but wants "style-src 'unsafe-inline' *" otherwise it doesn't honor 'unsafe-inline'. In chromium both behave the same. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-10-06Fix display error when redering markdownLukas Epple1-2/+4
Initial-patch-by: Lukas Epple <lukas.epple@me.com> Switch from <table> to <div> like we did for pygments. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-25Align the brand image correctlyMarkus Cisler1-1/+1
2013-09-25Remove chmod on uploaded filesFlorian Pritz1-2/+0
It interferes with multiuser setups if you use X-Sendfile and it isn't really needed anyway because you can set an upload_path outside the docroot and because the default path is protected by an .htaccess file. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-25Remove whitespaces from upload form textareaPierre Schmitz1-4/+4
2013-09-25Change upload form layoutMarkus Cisler1-31/+45
2013-09-25Fix indentation on upload formMarkus Cisler1-13/+13
2013-09-25Make tables responsiveMarkus Cisler4-91/+99
2013-09-23Limit header nav width to content widthFlorian Pritz1-39/+39
Looks like this has been missed somewhere along the way (36a1bb6770cb76ec7baf4e215c4379b070c60639) and ended up too deep down. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-23Remove unneeded return statements after show_errorFlorian Pritz2-2/+0
show_error() already exits after displaying the message. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-23Implement rangeDownload() as driver and provide sendfile implementations for ↵Pierre Schmitz7-101/+222
Nginx and Lighttpd * The rangeDownload() function has been moved to libraries/Ddownload/drivers/Ddownload_php.php * The nginx and lighttpd drivers can be set via $config['download_driver'] Signed-off-by: Pierre Schmitz <pierre@archlinux.de>
2013-09-22Add some more file extension -> lexer mappingsFlorian Pritz1-0/+18
Mimetype detection doesn't always properly detect code (I saw javascript as plain text, c as asm) and if there is an extension we can likely get better result by using that. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22Move user_logged_in check to controller constructorFlorian Pritz6-13/+6
TL;DR: Allows us to show a proper error page if encryption_key is missing from the config. muser->logged_in() can load the session class which will die if encryption_key is not set in the config causing an error to be displayed. Because the header is also loaded when we display an error loading the class will be tried again. CI maintains an array with information which classes have been tried to be loaded and will simply return true without loading again. muser->logged_in() will then try to access $this->session which doesn't exist. Since all of this happens when we are already in the header the error message appears in the navigation being hard to read. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22Fix autoresizing of textarea on upload_formFlorian Pritz1-1/+1
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22Fix form display errors on small devicesFlorian Pritz5-5/+5
form-horizontal causes the viewport to become too wide. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22fix paste view on mobile devicesMarkus Cisler2-89/+87
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22fix forms on password reset pageMarkus Cisler1-11/+17
2013-09-22fix forms on so called medium device desktopsMarkus Cisler6-100/+100
2013-09-22Fix display issues on upload_form for smaller displaysFlorian Pritz1-4/+6
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22Revert upload_history tabs to tabs instead of pillsFlorian Pritz1-1/+1
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22Fix modal not showing upFlorian Pritz1-68/+72
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22Make lexer errors full with againFlorian Pritz1-3/+1
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22Fix mess in header.php breaking error pagesFlorian Pritz1-39/+39
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22almost migrated to bootstrap3Markus Cisler15-122/+159
2013-09-22Add debugging support for emailFlorian Pritz1-0/+7
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22duser_db: Remove case sensitive username checkFlorian Pritz1-5/+1
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22duser_fluxbb: Replace like with equalsFlorian Pritz1-2/+2
We don't use wildcards so we don't need like. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22Use InnoDB for the files tablePierre Schmitz2-1/+17
The files table was MyISAM even though all other tables were InnoDB. We should avoid mixing types here (backups, transactions and performance). Signed-off-by: Pierre Schmitz <pierre@archlinux.de> Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-22Add FluxBB authentication driverPierre Schmitz3-1/+59
To enable set: $config['authentication_driver'] = 'fluxbb'; $config['auth_fluxbb'] = array('database' => 'fluxbb'); Signed-off-by: Pierre Schmitz <pierre@archlinux.de> Add example array to config.php Remove $optional_functions from Duser_fluxbb to follow bb9f9274e8c2d661a1adffd87c87c3d81ec47b4d. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-16Remove executable bitsFlorian Pritz19-0/+0
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-16Duser: Rework optional functionsFlorian Pritz3-12/+5
Not implemented functions return null and code using these no longer has to check if they are implemented, but it has to handle null properly. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-16Duser: Add some commentsFlorian Pritz2-0/+14
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-16Duser_Driver/username_exists: return null if not implementedFlorian Pritz1-1/+1
false means we know it doesn't exist, null means we don't know. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-15Add default get_email to Duser_DriverFlorian Pritz2-6/+4
This fixes a possible endless loop when the function is not implemented in the driver, but the array says it is. It also allows us to simply call it without checking if it's implemented. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-10Add file/get_max_size to csrf whitelistFlorian Pritz1-0/+1
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-08user/create_apikey: Add JSON supportFlorian Pritz1-0/+5
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-05Disable CSRF for cli clients on user/create_apikeyFlorian Pritz1-0/+1
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-05Update jquery to 2.0.3Florian Pritz1-1/+1
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-04Fix off-by-one error in random_alphanum()Florian Pritz1-1/+1
This could result in too short strings Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-04Remove left over var_dump()Florian Pritz1-2/+0
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-04Remove unneeded "as" in sql queryFlorian Pritz1-1/+1
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-04Add support for enabling the profilerFlorian Pritz2-0/+7
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-04Replace is_cli_client() with stateful_client where applicableFlorian Pritz3-7/+5
Stateless clients (cli client and clients using api keys) can't reclaim IDs (no cookie) so they should be required to log in asap and they will always get an error if they didn't log in. Signed-off-by: Florian Pritz <bluewind@xinu.at>
2013-09-04Only store session information for stateful clientsFlorian Pritz2-0/+53
Signed-off-by: Florian Pritz <bluewind@xinu.at>