oci/zeronet
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
4441 commits 10 branches 50 tags 16 MiB
Commit graph

2931 commits

Author SHA1 Message Date
caryoscelus
ca5d573908
Fix typo 2024-02-09 15:55:21 +00:00
caryoscelus
2520024f56
Allow cross-site embedding without "cors-" prefix 
..As long as CORS read permission is granted. This is done for
compatibility with sites that relied on lack of enforcing of cross-site
isolation in previous ZeroNet versions.

fixes #259
 2024-02-09 15:55:21 +00:00
caryoscelus
25bfc0341c
Use integer rev in UiWebSocket for dashboard compatibility 2023-12-27 14:24:03 +00:00
caryoscelus
15dddc27c6
Get rid of using old-style revision everywhere 2023-12-27 13:17:59 +00:00
caryoscelus
1a8c6aaa93
Fetch version info from git or Build file 2023-12-27 11:27:15 +00:00
caryoscelus
dbe283e593
Fix import 2023-12-26 19:06:09 +00:00
caryoscelus
6d7c5a4a52
Merge pull request #253 from caryoscelus/py39-compat 
Fix py3.9 compatibility
 2023-12-23 14:29:58 +00:00
caryoscelus
2ce87828b0
Fix py3.9 compatibility 
refs #252
 2023-12-22 17:20:11 +00:00
caryoscelus
0c31000593
Use dashes in command line options instead of underscore 
- using underscore is deprecated but still works
- also don't override commandline --open-browser option
 2023-12-21 10:18:57 +00:00
caryoscelus
f37ab4ee5d
Continuing previous commit: --ui_site_port 2023-12-07 09:56:01 +00:00
caryoscelus
a4cc2eeb9f
Separate http server for site content WIP 
This resolves issue introduced by 14e8130acb
by having wrapper and iframe exist in different origins

Note that this does introduce minor UX issue: copying links now shows them
with a different port
 2023-12-07 07:38:14 +00:00
caryoscelus
ba60f5dc0e Add basic ipython-based repl via --repl 2023-11-26 18:09:56 +00:00
caryoscelus
28440346b1
Merge pull request #243 from caryoscelus/docker-update 
Docker update & minor improvements
 2023-11-23 19:02:28 +00:00
caryoscelus
47db0898e2 Rewrite untitialized directory detection 2023-11-17 17:57:25 +00:00
caryoscelus
23321bd300 Fix SyntaxWarning: invalid escape sequence 2023-11-17 17:56:28 +00:00
caryoscelus
93ed7418ab Merge branch 'master' into always-nonce 2023-11-16 14:20:30 +00:00
caryoscelus
fc408ef985 Modern browsers all support nonce now so drop checking UA 2023-11-16 14:04:33 +00:00
caryoscelus
38f53edc2b
Merge pull request #239 from caryoscelus/fix-referrer 
Rewrite cross-site and cross-host requests detection
 2023-11-16 14:01:09 +00:00
caryoscelus
497ad0f4b1 Merge branch 'master' into disable_plugins_in_data 2023-11-14 23:19:52 +00:00
caryoscelus
14e8130acb Rewrite cross-site and cross-host requests detection 
Make sure browsers send referrers so we can track cross-site
requests (could be used to identify which sites user hosts)

This breaks /raw because there are no referrers there

fixes #227
fixes #223
fixes #224
 2023-11-14 23:11:51 +00:00
caryoscelus
1ba9f2bb56
Merge pull request #234 from caryoscelus/fix-start-dir 
Fix start dir
 2023-11-08 14:51:06 +00:00
caryoscelus
c92b8bc56c Fix UiServer.getPosted hanging in some circumstances 
fixes #198

while it's not exactly clear what causes the difference in behaviour,
but under certain conditions UiServer.getPosted used to hang trying
to readline() POST request (e.g. from UiPassword login). using
read(CONTENT_LENGTH) seems to fix the issue
 2023-11-01 22:12:14 +00:00
caryoscelus
9629442c1b
Merge pull request #214 from caryoscelus/fix-tests 
Fix tests
 2023-09-16 11:56:08 +00:00
caryoscelus
e7b566a8a8 Merge remote-tracking branch 'origin/master' 2023-09-15 14:23:38 +00:00
caryoscelus
537d7337e2 debug log 2023-09-15 14:23:19 +00:00
caryoscelus
751eaaab20 Merge remote-tracking branch 'origin/master' into fix-start-dir 2023-09-14 11:03:54 +00:00
caryoscelus
1eb094bba5 Fix detection of non-writeable start directory 2023-09-14 11:03:23 +00:00
caryoscelus
337f98a479 Add --disable_port_check option 2023-09-04 21:39:46 +00:00
caryoscelus
5fadd5f9bd Improve SafeRe code readability 
function isSafePattern was never used as boolean function, its only
useful behaviour being raising exception on bad regexp, so it's renamed
and reused accordingly
 2023-07-31 08:28:29 +00:00
Vadim Ushakov
30db5a4652 Fix https://github.com/HelloZeroNet/ZeroNet/issues/2757 2023-07-31 08:23:13 +00:00
caryoscelus
a334eefdf7 Bump version 2023-07-30 19:00:43 +00:00
caryoscelus
0f3a489415
Merge pull request #225 from caryoscelus/fix-geoip-load 
Fix geoip load
 2023-07-30 13:17:15 +00:00
caryoscelus
a509032c8e Drop attempts at py<3.6 compatibility 
Wake up, it's 2023 now. Also f-strings has been used prominently already
 2023-07-29 18:03:45 +00:00
caryoscelus
b358435016 Remove dead code 2023-07-29 17:20:45 +00:00
caryoscelus
18d35d3bed v0.7.10 2023-07-26 08:01:47 +00:00
caryoscelus
40ae09dca8 py3.8 compat 2023-07-26 07:56:31 +00:00
caryoscelus
eeaded23f9 Update bootstrap url 2023-07-26 07:14:14 +00:00
caryoscelus
5945dd2e3c
Merge pull request #221 from caryoscelus/fix-0net-leak 
Disable third-party access to 0net server.
 2023-07-26 07:06:46 +00:00
caryoscelus
615e155043
Merge pull request #219 from caryoscelus/bootstrap 
Bootstrap 0net trackers on first launch
 2023-07-26 07:06:18 +00:00
caryoscelus
f336cd02bd More sophisticated detection of cross-site info leak 
see previous commit for more info
 2023-07-25 20:58:57 +00:00
caryoscelus
0811902ff6 Disable third-party access to 0net server. 
This previously enabled clearnet sites to detect if user is running 0net instance
on their machine as well as to detect which 0net sites are downloaded.

Check online at https://riza-committee.github.io/demos/0scan.html

Intra-0net version of this is still available at
http://127.0.0.1:43110/1ScanCY9fjmjanDt7NwvyNQCL16hqWnVM/
 2023-07-25 19:13:12 +00:00
caryoscelus
a8c2117a55 CHANGELOG & revision bump 2023-07-25 15:11:33 +00:00
caryoscelus
dd5976a08e
Merge pull request #218 from caryoscelus/upnp-anonymous 
more anonymous upnp
 2023-07-25 15:06:18 +00:00
caryoscelus
d924e9bb2e fix error handling (was: unbound local variable) 2023-07-24 10:29:25 +00:00
caryoscelus
70f2eeada1 Don't spam console with failed announcements 
These should be debug, not warning (previously warning reporting was disabled)
 2023-07-24 09:18:42 +00:00
caryoscelus
1d2e264a44 Remove manually copied tracker list 2023-07-24 08:36:00 +00:00
caryoscelus
41c7bd47c8 Use Syncronite directly by default 2023-07-24 08:22:19 +00:00
caryoscelus
2b51e23650 Fix importBundle 
Avoid using SiteManager as initializing it out of order breaks things
 2023-07-24 08:21:31 +00:00
caryoscelus
9444e097a6 New command line action: importBundle; load bootstrap bundle on first run 
- importBundle imports zip archive of sites
- latest bootstrapping bundle is downloaded if data/ dir is empty; primary
  reason for this for now is to avoid constantly updating tracker list in
  git tree and use Syncronite instead
 2023-07-23 21:25:11 +00:00
caryoscelus
5a184a5489 Don't hide warnings in console 
WARNING logging level is higher than INFO so really shouldn't hide them..
 2023-07-23 21:13:58 +00:00