shortcutme
|
08574bf676
|
Handle unkown variables when rendering template
|
2019-11-19 01:38:22 +01:00 |
|
shortcutme
|
8dfc200f24
|
Update cachable type list
|
2019-10-28 16:43:37 +01:00 |
|
shortcutme
|
cb4a4bd707
|
Add utf-8 charset header to more types
|
2019-10-28 16:43:19 +01:00 |
|
shortcutme
|
24ba2a150b
|
Remove limitations for img, font, media, style src in raw mode
|
2019-10-28 16:42:28 +01:00 |
|
shortcutme
|
e1d92bf0ec
|
Changing allow-origin to js files looks no longer necessary
|
2019-10-28 16:41:55 +01:00 |
|
shortcutme
|
270f3e9ffd
|
Use host to check same origin if referrer looks trimmed to host
|
2019-10-28 16:41:08 +01:00 |
|
shortcutme
|
e1f73697ff
|
Extend built-in content types list
|
2019-10-28 16:11:45 +01:00 |
|
shortcutme
|
43a5742258
|
Resolve domain in parsePath function
|
2019-10-06 03:20:16 +02:00 |
|
shortcutme
|
924a61309a
|
Cached isDomain / resolveDomain functions
|
2019-10-06 03:18:14 +02:00 |
|
shortcutme
|
9dd5c88da4
|
Monospace font when displaying errors
|
2019-10-06 03:15:57 +02:00 |
|
shortcutme
|
0598bcf332
|
Fix utf8 post data parsing
|
2019-10-06 03:15:20 +02:00 |
|
shortcutme
|
ead1b3e5f5
|
Log 403 as warning
|
2019-10-06 03:14:45 +02:00 |
|
shortcutme
|
93e6ec4933
|
Fix display site add prompt
|
2019-09-19 16:32:30 +02:00 |
|
shortcutme
|
6f0d4a50d1
|
Add apple touch icon support for Safari
|
2019-09-15 22:11:51 +02:00 |
|
shortcutme
|
f999f167b1
|
Offer access with ip address on invalid host error
|
2019-09-02 02:10:52 +02:00 |
|
shortcutme
|
9ac96cdd50
|
Don't leak allowed origins in error message
|
2019-09-02 02:09:53 +02:00 |
|
shortcutme
|
248fc5f015
|
Use re.sub to replace template variables
|
2019-08-23 03:39:50 +02:00 |
|
shortcutme
|
e16611f15a
|
Allow websocket connection originates from earlier accepted hostnames
|
2019-08-23 03:39:16 +02:00 |
|
Ivanq
|
24b3651d2e
|
Allow blob: protocol (#2166)
* Allow blob: protocol
* Fix quotes
|
2019-08-20 12:42:01 +02:00 |
|
Ivanq
|
61ba9848e5
|
Add --merge_media config option
|
2019-08-20 08:16:35 +00:00 |
|
shortcutme
|
b871849df4
|
Add origin validation to websocket connections
|
2019-08-18 03:03:02 +02:00 |
|
Ivanq
|
33b478199a
|
Guess content type correctly
Fix e.g. vue.min.js being reported as text/plain instead of text/javascript.
|
2019-07-04 12:09:07 +03:00 |
|
Ivanq
|
743f92d15e
|
Allow some paths to contain .. but not ../
|
2019-07-01 18:17:42 +03:00 |
|
shortcutme
|
40b84755de
|
Add some fixed content_type
|
2019-07-01 16:28:37 +02:00 |
|
shortcutme
|
62401b24ec
|
Add r string literal for regexps
|
2019-07-01 16:24:23 +02:00 |
|
Ivanq
|
ed85981409
|
Fix JS modules
|
2019-05-19 15:45:34 +03:00 |
|
redfish
|
7e57a8f71e
|
Ui,Translate: remove bytearray format string
Py 3.4 does not support bytearray format strings
for % operator: b"%s" % s
|
2019-04-16 20:54:55 -04:00 |
|
shortcutme
|
998ec3eb4f
|
Disable all site serving using a global offline argument
|
2019-04-15 15:06:25 +02:00 |
|
radfish
|
f6e3a74567
|
[setuptools packaging] access modules via imports (#1969)
|
2019-04-15 12:31:33 +02:00 |
|
shortcutme
|
0f72085c2a
|
Also return ws error to websocket connection
|
2019-04-12 15:03:43 +02:00 |
|
shortcutme
|
6ad8a10f37
|
Fix invalid ws request response value
|
2019-04-12 15:03:19 +02:00 |
|
shortcutme
|
58a4bf479c
|
Only send env details if in debug mode
|
2019-04-11 01:29:56 +02:00 |
|
shortcutme
|
1ce4f99b80
|
Send noscript header to error messages and OPTIONS request
|
2019-04-11 01:29:32 +02:00 |
|
shortcutme
|
f94ecb3ec5
|
Fix error 404 on uimedia route
|
2019-04-11 01:28:00 +02:00 |
|
shortcutme
|
a5c7e59601
|
Rev4054, Escape error detail to avoid XSS (reported by krzotr)
|
2019-04-11 00:37:55 +02:00 |
|
redfish
|
1e1f967292
|
Ui: extend actionFile to accept pathlib.Path
|
2019-04-06 22:22:34 -04:00 |
|
shortcutme
|
52e28eefce
|
Use lowercase filename for content type guess
|
2019-03-29 02:30:43 +01:00 |
|
shortcutme
|
b981ddadca
|
Encode error repose to bytes
|
2019-03-16 00:00:35 +01:00 |
|
shortcutme
|
bcd721e2ef
|
Always display title if there is content.json file
|
2019-03-16 00:00:04 +01:00 |
|
shortcutme
|
a96ff8399f
|
Open template as utf8 file
|
2019-03-15 23:59:30 +01:00 |
|
shortcutme
|
b0b9a4d33c
|
Change to Python3 coding style
|
2019-03-15 21:06:59 +01:00 |
|
shortcutme
|
511a5c0d1f
|
Nonce based CSP not supported in Safari yet
|
2019-02-16 23:49:10 +01:00 |
|
shortcutme
|
bd649cfb33
|
Remove ui_server allowed http host learning
|
2019-02-14 15:49:10 +01:00 |
|
shortcutme
|
cc3bb912be
|
Ipv6 support for adding peers by query string
|
2019-01-20 16:49:52 +01:00 |
|
shortcutme
|
45add916f4
|
Rev3742, Move isIp to helper, fix inet_prton error
|
2018-12-19 13:15:59 +01:00 |
|
Andrew Morgan
|
ca549cf081
|
Allow IP addresses via WebSocket API (#1819)
* Allow IP addresses via WebSocket API
* Switch to socket. Add host
|
2018-12-18 14:36:14 +01:00 |
|
shortcutme
|
e4819c1753
|
Rev3738, More strict csp, No csp on Edge
Edge does not supports nonce on external scripts
|
2018-12-10 02:29:21 +01:00 |
|
shortcutme
|
99f01475a0
|
Disallow unknown script by using csp header for wrapper
|
2018-11-26 00:02:35 +01:00 |
|
shortcutme
|
5af77449fa
|
Move html variable replacement for new function, add site_modified variable, don't send length header for html files
|
2018-10-30 04:49:11 +01:00 |
|
shortcutme
|
5158a710dc
|
Rev3671, Fix theme with multiuser plugin
|
2018-10-20 13:34:49 +02:00 |
|