oci/zeronet
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
4409 commits 10 branches 50 tags 16 MiB
Commit graph

228 commits

Author SHA1 Message Date
shortcutme
40b84755de
Add some fixed content_type 2019-07-01 16:28:37 +02:00
shortcutme
62401b24ec
Add r string literal for regexps 2019-07-01 16:24:23 +02:00
Ivanq
ed85981409 Fix JS modules 2019-05-19 15:45:34 +03:00
redfish
7e57a8f71e Ui,Translate: remove bytearray format string 
Py 3.4 does not support bytearray format strings
for % operator: b"%s" % s
 2019-04-16 20:54:55 -04:00
shortcutme
998ec3eb4f
Disable all site serving using a global offline argument 2019-04-15 15:06:25 +02:00
radfish
f6e3a74567 [setuptools packaging] access modules via imports (#1969) 2019-04-15 12:31:33 +02:00
shortcutme
0f72085c2a
Also return ws error to websocket connection 2019-04-12 15:03:43 +02:00
shortcutme
6ad8a10f37
Fix invalid ws request response value 2019-04-12 15:03:19 +02:00
shortcutme
58a4bf479c
Only send env details if in debug mode 2019-04-11 01:29:56 +02:00
shortcutme
1ce4f99b80
Send noscript header to error messages and OPTIONS request 2019-04-11 01:29:32 +02:00
shortcutme
f94ecb3ec5
Fix error 404 on uimedia route 2019-04-11 01:28:00 +02:00
shortcutme
a5c7e59601
Rev4054, Escape error detail to avoid XSS (reported by krzotr) 2019-04-11 00:37:55 +02:00
redfish
1e1f967292 Ui: extend actionFile to accept pathlib.Path 2019-04-06 22:22:34 -04:00
shortcutme
52e28eefce
Use lowercase filename for content type guess 2019-03-29 02:30:43 +01:00
shortcutme
b981ddadca
Encode error repose to bytes 2019-03-16 00:00:35 +01:00
shortcutme
bcd721e2ef
Always display title if there is content.json file 2019-03-16 00:00:04 +01:00
shortcutme
a96ff8399f
Open template as utf8 file 2019-03-15 23:59:30 +01:00
shortcutme
b0b9a4d33c
Change to Python3 coding style 2019-03-15 21:06:59 +01:00
shortcutme
511a5c0d1f
Nonce based CSP not supported in Safari yet 2019-02-16 23:49:10 +01:00
shortcutme
bd649cfb33
Remove ui_server allowed http host learning 2019-02-14 15:49:10 +01:00
shortcutme
cc3bb912be
Ipv6 support for adding peers by query string 2019-01-20 16:49:52 +01:00
shortcutme
45add916f4
Rev3742, Move isIp to helper, fix inet_prton error 2018-12-19 13:15:59 +01:00
Andrew Morgan
ca549cf081 Allow IP addresses via WebSocket API (#1819) 
* Allow IP addresses via WebSocket API

* Switch to socket. Add host
 2018-12-18 14:36:14 +01:00
shortcutme
e4819c1753
Rev3738, More strict csp, No csp on Edge 
Edge does not supports nonce on external scripts
 2018-12-10 02:29:21 +01:00
shortcutme
99f01475a0
Disallow unknown script by using csp header for wrapper 2018-11-26 00:02:35 +01:00
shortcutme
5af77449fa
Move html variable replacement for new function, add site_modified variable, don't send length header for html files 2018-10-30 04:49:11 +01:00
shortcutme
5158a710dc
Rev3671, Fix theme with multiuser plugin 2018-10-20 13:34:49 +02:00
shortcutme
451976c3c8
Support themeclass variable in html files 2018-10-20 02:35:48 +02:00
shortcutme
8e6494c451
Remove unused code, junk lines 2018-10-20 02:34:26 +02:00
shortcutme
e46cb2f240
Fix content type indentification 2018-09-30 21:55:48 +02:00
shortcutme
9fee86df59
Always return lower cased content type 2018-09-30 21:54:50 +02:00
shortcutme
c5c3f7a667
Don't reannounce site if just added 2018-08-26 02:57:02 +02:00
shortcutme
7954caf957
Force reannounce not yet download site on refresh 2018-07-19 20:42:53 +02:00
shortcutme
6e1f4fada9
Rev3537, Allow to add peers to site with get request 2018-07-17 02:09:14 +02:00
shortcutme
68eb9a37ca
Strip ending / character when using url as function name 2018-07-10 03:36:09 +02:00
shortcutme
3aebdae305
Log last announce time on force announce 2018-06-29 14:18:09 +02:00
shortcutme
c7a8a3933e
Display standard http error instead of exception on path security error 2018-06-25 14:28:42 +02:00
shortcutme
df0562d6b4
Make sure to sanitize request url 2018-06-25 14:23:38 +02:00
shortcutme
da64785ea4
Only announce site on http request if not paused 2018-06-21 21:57:25 +02:00
shortcutme
d125551c0d
Proritize currently requested site update 2018-06-03 12:46:00 +02:00
JeremyRand
4ffd642732
Support accessing ZeroNet via a transparent proxy. 2018-06-02 12:17:10 +00:00
shortcutme
8dc465f244
Don't readd wrapper_nonce of site size error as we generate a new one on reload 2018-04-28 22:02:29 +02:00
shortcutme
8e708dc02a
Log wrapper nonce errors 2018-04-28 22:02:10 +02:00
shortcutme
d275dfea2f
Log 403 error as error 2018-03-20 21:55:45 +01:00
shortcutme
738fd1a09b
Rev3354, Fix ajax loading files from archives 2018-03-09 15:01:45 +01:00
shortcutme
7048987157
Rev3351, Fix sites with utf8 title 2018-03-07 10:23:13 +01:00
shortcutme
3e970df09b
Simple replace wrapper template variables instead of python formatting to allow use braces 2018-03-06 12:00:30 +01:00
shortcutme
b0a8c4d278
Change http headers from list to dict 2018-03-06 11:58:56 +01:00
shortcutme
6afe2dd720
New NOSANDBOX permission to remove sandboxed iframe restrictions 2018-02-21 03:12:51 +01:00
shortcutme
9f35efc31d
Revert "Version 0.6.2, Rev3310" 
This reverts commit 98c6add637.
 2018-02-09 11:39:36 +01:00
shortcutme
98c6add637
Version 0.6.2, Rev3310 2018-02-08 18:16:50 +01:00
shortcutme
bc09b6280b
Add index.html as default inner_path to uirequest 2018-01-30 14:29:38 +01:00
shortcutme
0c6c7d2725
Rev 3222, Use eval in bench for older pytyhon compatibility, Remove unnecessary print from chart archive 2018-01-20 11:49:17 +01:00
shortcutme
dedf6cd92f
Support initial calls for console bench function 2018-01-19 02:32:44 +01:00
shortcutme
51fdf95295
Allow ajax ranged requests 2017-12-07 15:25:32 +01:00
shortcutme
2781e31be0
Keep track of websocket connections 2017-11-05 23:40:59 +01:00
shortcutme
c3250378ee
Rev3128, Allow modals for sites 2017-10-30 15:15:40 +01:00
shortcutme
4042de460e
actionFile allows file details to be passed as parameter 2017-10-04 12:46:06 +02:00
shortcutme
0dd34403a2
Combinate isfile and filesize query to one function 2017-10-04 12:44:34 +02:00
shortcutme
edb9d3f719
Media files requested from non-seeded site not wokring anymore 2017-10-04 12:42:05 +02:00
shortcutme
1f5db0aa24
Nonce checking moved to route command 2017-10-04 12:41:14 +02:00
shortcutme
74b2408668
Move path checking to parsePath 2017-10-04 12:39:08 +02:00
shortcutme
f53612bef7
Media request should start with normal characters 2017-10-04 12:38:44 +02:00
shortcutme
4d991cda6d
Also serve htm files with wrapper 2017-10-04 12:37:56 +02:00
shortcutme
6984575901
Remove dead reload code 2017-10-04 12:37:34 +02:00
shortcutme
75b44f6980
Raise SecurityError on invalid path 2017-10-04 12:37:22 +02:00
shortcutme
3c46f60042
Show wrapper automatically if wrapper nonce is invalid 2017-10-04 12:35:15 +02:00
shortcutme
7dbc323f76
ZeroNet-internal virtual path on UiServer for internal commands 2017-10-04 12:33:43 +02:00
shortcutme
bfd3d18a10
Fix multiuser plugin compatibility 2017-09-02 14:28:01 +02:00
grez911
158f9e37e5 Added explanation of convertion actionWrapper response to list 2017-08-25 11:05:48 +03:00
grez911
905976a1b6 Added exception handling for broken user.json 2017-08-22 17:43:55 +03:00
shortcutme
1db2327b3d
Rev2180, Allow ajax requests using ajax_key http get parameter 2017-08-15 02:40:38 +02:00
shortcutme
504d7812e5
Fix exception if no path_parts returned 2017-07-19 16:46:37 +02:00
shortcutme
1f7b25b60c
Ignore http protocol in same origin comparison 2017-07-18 20:57:33 +02:00
shortcutme
a0d85d7d83
Prompt new site addition in raw mode 2017-07-15 01:32:15 +02:00
shortcutme
d281f112d9
Rev2154, Fix same origin checking in proxy mode 2017-07-14 11:08:22 +02:00
shortcutme
e525ea2431
Rev2144, Fix CSP header in FilePack plugin, Allow media-src and font-src from self source 2017-07-11 23:00:33 +02:00
shortcutme
7c6bea6ddd
Fix raw site access without / at the site address end 2017-07-10 02:42:28 +02:00
shortcutme
5950b04c40
Add allow-origin header for media requests from same origin to fix css font support 2017-07-09 14:11:44 +02:00
shortcutme
434cfce32a
More simple same origin test for media files cross-site access 2017-07-09 14:11:06 +02:00
shortcutme
febdea6c64
Serve files without wrapper if requested using /raw/ prefix 2017-07-09 14:10:01 +02:00
shortcutme
49735b7e55
Fix not internal error on request files from not seeded sites 2017-07-06 00:09:35 +02:00
shortcutme
1d6168f457
Download, svg, xml, flash, pdf files instead of displaying to avoid js execution 2017-07-06 00:09:05 +02:00
shortcutme
2a161f4421
Never allow cross-origin file request 2017-07-06 00:08:32 +02:00
shortcutme
e9ce137e14
Display invalid hosts 2017-06-15 19:49:51 +02:00
shortcutme
c84fcf2034
Support manual ui_host command line parameter 2017-06-15 19:48:01 +02:00
shortcutme
42874038e2
Only allow UI requests from safe hosts 2017-06-13 14:19:23 +02:00
shortcutme
d467aabd4c
Rev2067, Fix inner_path stripping 2017-05-11 18:18:12 +02:00
shortcutme
5908d2ca53
RenderWrapper showloadingscreen parameter 2017-05-11 18:01:16 +02:00
shortcutme
27a582634f
Don't check referrer for html files 2017-05-11 18:00:57 +02:00
shortcutme
47245f485a
ActionFile security check 2017-05-11 17:59:46 +02:00
shortcutme
545459be88
RenderWrapper with parameters 2017-05-11 17:59:12 +02:00
shortcutme
b5d3995874
GetSiteUrl based on if it's proxy request 2017-05-11 17:57:29 +02:00
shortcutme
487f5cb8c2
Fix unicode url redirects 2017-05-11 17:56:01 +02:00
shortcutme
f67cb7b145
Rev2059, Fix download test, boost priority on request by 15, Adjust default priorities 2017-05-07 21:21:26 +02:00
shortcutme
f3edd8013d
Rev2034, Fix leaking users.json via webui 2017-04-09 16:54:28 +02:00
shortcutme
871588aa9f
Move invalid path test upper level 2017-02-27 11:21:22 +01:00
shortcutme
97cec2ba46
Benchmark helper for console 2017-02-27 00:13:41 +01:00
shortcutme
c95637eee1
Rev1941, Use utf-8 encoding on text files 2017-02-24 14:39:20 +01:00
shortcutme
45e2b350a9
Raise exception on invalid path 2017-02-19 00:51:47 +01:00