oci/zeronet
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2732 commits 10 branches 50 tags 16 MiB
Commit graph

158 commits

Author SHA1 Message Date
grez911
905976a1b6 Added exception handling for broken user.json 2017-08-22 17:43:55 +03:00
shortcutme
1db2327b3d
Rev2180, Allow ajax requests using ajax_key http get parameter 2017-08-15 02:40:38 +02:00
shortcutme
504d7812e5
Fix exception if no path_parts returned 2017-07-19 16:46:37 +02:00
shortcutme
1f7b25b60c
Ignore http protocol in same origin comparison 2017-07-18 20:57:33 +02:00
shortcutme
a0d85d7d83
Prompt new site addition in raw mode 2017-07-15 01:32:15 +02:00
shortcutme
d281f112d9
Rev2154, Fix same origin checking in proxy mode 2017-07-14 11:08:22 +02:00
shortcutme
e525ea2431
Rev2144, Fix CSP header in FilePack plugin, Allow media-src and font-src from self source 2017-07-11 23:00:33 +02:00
shortcutme
7c6bea6ddd
Fix raw site access without / at the site address end 2017-07-10 02:42:28 +02:00
shortcutme
5950b04c40
Add allow-origin header for media requests from same origin to fix css font support 2017-07-09 14:11:44 +02:00
shortcutme
434cfce32a
More simple same origin test for media files cross-site access 2017-07-09 14:11:06 +02:00
shortcutme
febdea6c64
Serve files without wrapper if requested using /raw/ prefix 2017-07-09 14:10:01 +02:00
shortcutme
49735b7e55
Fix not internal error on request files from not seeded sites 2017-07-06 00:09:35 +02:00
shortcutme
1d6168f457
Download, svg, xml, flash, pdf files instead of displaying to avoid js execution 2017-07-06 00:09:05 +02:00
shortcutme
2a161f4421
Never allow cross-origin file request 2017-07-06 00:08:32 +02:00
shortcutme
e9ce137e14
Display invalid hosts 2017-06-15 19:49:51 +02:00
shortcutme
c84fcf2034
Support manual ui_host command line parameter 2017-06-15 19:48:01 +02:00
shortcutme
42874038e2
Only allow UI requests from safe hosts 2017-06-13 14:19:23 +02:00
shortcutme
d467aabd4c
Rev2067, Fix inner_path stripping 2017-05-11 18:18:12 +02:00
shortcutme
5908d2ca53
RenderWrapper showloadingscreen parameter 2017-05-11 18:01:16 +02:00
shortcutme
27a582634f
Don't check referrer for html files 2017-05-11 18:00:57 +02:00
shortcutme
47245f485a
ActionFile security check 2017-05-11 17:59:46 +02:00
shortcutme
545459be88
RenderWrapper with parameters 2017-05-11 17:59:12 +02:00
shortcutme
b5d3995874
GetSiteUrl based on if it's proxy request 2017-05-11 17:57:29 +02:00
shortcutme
487f5cb8c2
Fix unicode url redirects 2017-05-11 17:56:01 +02:00
shortcutme
f67cb7b145
Rev2059, Fix download test, boost priority on request by 15, Adjust default priorities 2017-05-07 21:21:26 +02:00
shortcutme
f3edd8013d
Rev2034, Fix leaking users.json via webui 2017-04-09 16:54:28 +02:00
shortcutme
871588aa9f
Move invalid path test upper level 2017-02-27 11:21:22 +01:00
shortcutme
97cec2ba46
Benchmark helper for console 2017-02-27 00:13:41 +01:00
shortcutme
c95637eee1
Rev1941, Use utf-8 encoding on text files 2017-02-24 14:39:20 +01:00
shortcutme
45e2b350a9
Raise exception on invalid path 2017-02-19 00:51:47 +01:00
shortcutme
f74e9397db
Rev1861, Fix favicon for zero url access type 2017-02-05 22:55:24 +01:00
shortcutme
a08114b1b0
Rev1855, Fix content type detection, Formatting 2017-02-02 12:51:41 +01:00
shortcutme
d65c7d05a4
Remove /media access 2017-01-27 13:05:49 +01:00
shortcutme
d3fc1cf897
Rev1816, Fix exe distribution forbidden error 2017-01-14 12:43:05 +01:00
MuxZeroNet
6b0ef500ed Fix extension detection 2017-01-12 05:22:26 +00:00
MuxZeroNet
4a6dc7971e #752 2017-01-09 05:01:49 +00:00
shortcutme
1a5bfd973e Only download media if site is already added 2017-01-08 17:31:03 +01:00
shortcutme
6c68f8dd6c Fix content type detection for options request 2017-01-08 17:27:57 +01:00
shortcutme
2447279191 Rename websocket detection 2017-01-08 17:26:59 +01:00
MuxZeroNet
0a1eecee20 WebSocket requests not allowed 2017-01-08 06:56:42 +00:00
MuxZeroNet
da7821a3a9 X-Frame-Options 2017-01-06 01:44:22 +00:00
shortcutme
5c2b90c20f Rev1799, Force correct css content type 2017-01-05 02:33:33 +01:00
shortcutme
86b0046f28 Don't allow load load wrapper frames as prefetch or as image 2016-12-27 11:37:35 +01:00
shortcutme
b25bf97cad Add language to UI js as paramter to avoid cache 2016-11-18 20:07:58 +01:00
shortcutme
6c74f6c527 Possible to disable length header on sitemeda 2016-11-16 11:19:35 +01:00
shortcutme
c076f605aa Rev1703, Allow custom favicon 2016-11-10 23:14:30 +01:00
shortcutme
ccb35f1353 Send content size header for normal files 2016-11-07 22:49:13 +01:00
shortcutme
fbdc9e2b40 Comment typo 2016-10-02 14:24:48 +02:00
Durand D'souza
13837971a7 Update UiRequest.py 
Fixed a bug where a lack of a trailing slash in every url caused zeronet to fail to load the page, even if it existed.
 2016-09-20 05:23:34 +01:00
ZeroNet
835381fbb1 Filter media referrer by original request address 2016-08-10 12:24:47 +02:00
ZeroNet
04bed98a97 Store original request address 2016-08-10 12:24:09 +02:00
HelloZeroNet
d2b9555508 Fix data dir detection 2016-04-18 00:47:26 +02:00
HelloZeroNet
145d4dbd69 Move path parsing to separate function 2016-03-16 00:33:05 +01:00
HelloZeroNet
2901f1e1ba Rev949, Newsfeed allows items 2min from future, Switch sidebar content.json list to input for faster opening, Promise based sidebar rendering to make it more reliable on slow connections, RateLimit sidebar globe updating, Some PEP8 formatting 2016-03-06 19:28:22 +01:00
TheNain38
d0919d8ab8 Fix checking if Ajax request 2016-03-06 15:44:55 +01:00
HelloZeroNet
5b59da2435 Rev912, Keep track site added time, UiRequest xss quickfix, Cleanup peerPing output 2016-03-01 23:16:31 +01:00
HelloZeroNet
ac0dc3bf11 Rev906, Escape file path, Only allow to modify tor in configuration 2016-02-20 11:19:28 +01:00
HelloZeroNet
2f25204be9 Rev905, Escape title and query string 2016-02-18 19:44:52 +01:00
HelloZeroNet
1dbc33445f Rev903, FeedQuery command only available for ADMIN sites, Show bad files in sidebar, Log unknown messages, Add and check inner_path and site address on sign/verify, Better peer cleanup limit, Log site load times, Testcase for address and inner_path verification, Re-sign testsite with new fields, Fix unnecessary loading screen display when browsing sub-folder with index.html, Fix safari notification width 2016-02-18 11:22:21 +01:00
HelloZeroNet
61cfb8aa2f Rev900, Sidebar filestats bar width round fix, Sidebar WebGL not supported error, Sidebar optimalizations, Trayicon gray shadow, Trim end of line whitespace from json files, Fix testweb testcase, Implement experimental postMessage nonce security, Return None when testing external ip, Window opener security check and message, Increase timeout for large files 2016-02-10 02:30:04 +01:00
HelloZeroNet
687a848292 Version 0.3.6, Rev879, Fix sidebar error on description missing, New trayicon, New favicon, Disable some functions on MultiUser proxies, New homepage, Replace only the last ? in SQL queries, Alwaays grant ADMIN permission to homepage site, Announce before publish if no peers, configSet, serverShutdown, ADMIN WebsocketAPI command, Stop Tor client before updating, Ignore peer ip packing error, Ignore db files from git, Fix safari ajax error when UiPassword enabled 2016-02-02 11:40:45 +01:00
HelloZeroNet
f7eaf7b222 Rev860, Re-enable ajax on non-html items 2016-02-02 00:49:43 +01:00
HelloZeroNet
6427709dec Rev841, Allow ajax access only on json data, Better json request detect for wrapper 2016-01-12 21:52:24 +01:00
HelloZeroNet
e9d2cdfd37 Version 0.3.5, Rev830, Full Tor mode support with hidden services, Onion stats in Sidebar, GeoDB download fix using Tor, Gray out disabled sites in Stats page, Tor hidden service status in stat page, Benchmark sha256, Skyts tracker out expodie in, 2 new tracker using ZeroNet protocol, Keep SSL cert option between restarts, SSL Certificate pinning support for connections, Site lock support for connections, Certificate pinned connections using implicit SSL, Flood protection whitelist support, Foreign keys support for DB layer, Not support for SQL query helper, 0 length file get bugfix, Pex onion address support, Faster port testing, Faster uPnP port opening, Need connections more often on owned sites, Delay ZeroHello startup message if port check or Tor manager not ready yet, Use lockfiles to avoid double start, Save original socket on proxy monkey patching to get ability to connect localhost directly, Handle atomic write errors, Broken gevent https workaround helper, Rsa crypt functions, Plugin to Bootstrap using ZeroNet protocol 2016-01-05 00:20:52 +01:00
HelloZeroNet
3587777ea8 Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign 2015-11-09 00:44:03 +01:00
HelloZeroNet
8e710beab1 Rev536, Fix stats page, Support ranged http requests for better video browser compatibility, setHashfield command, One by one send hashfield to connected peers if changed, Keep count hashfield changetime, PeerHashfield optimalizations, Wait for peers on checkmodification, Give more time to query trackers, Do not count udp trackers as error if udp disabled, Test hashfield push 2015-10-30 02:08:02 +01:00
HelloZeroNet
713baeab63 Rev493, Fix trayicon autostart detect, Dont leak details on ui_restrict 2015-10-25 23:08:25 +01:00
HelloZeroNet
4b403da056 Rev448, Better file download priority method, Some potential programming error fix, Renamed utils to helper, Moved pack and unpackaddress to helper package, Test new privatekey creation, Test site file download order, Spy test helper to log called parameters, Remove unnecessary fat arrows 2015-09-27 02:08:53 +02:00
HelloZeroNet
9ac8f7f63c Rev426, Fix for nonce error on bigsites asking, Dont display error details on 404 error, Dont log Websocket close errors, Add travis pip caching and osx test, Add build status to readme, Test for site files after cloning, Test for json to db mapping, Test site deleteFiles command, Test user certificate and auth address generation, Exclude debug lines from coverage, Dont run webtests every time 2015-09-20 22:35:45 +02:00
HelloZeroNet
e00537ba57 Rev423, Rewrite and reorganize test using pytest, New PhantomJS based browser tests, Fix html requests error without wrapper nonce, Indent json files with 1 space 2015-09-20 00:27:54 +02:00
HelloZeroNet
93312ae129 Rev420, Ignore file delete errors, Schedule download user files later if first content.json failed at first try, Reload content.json content after cloning, Allow modals on owned sites to display coffeescript compile errors, Disable opener checking because its easy to dodge 2015-09-17 02:20:43 +02:00
HelloZeroNet
8f63e4c421 Rev399, Urandom and Msgpack benchmark, Better random string generation, Never render page on OPTIONS request, Fix for Chrome browser socket hang on zeronet version update 2015-09-13 23:17:13 +02:00
HelloZeroNet
cf5a4f902b Rev394, More detailed error display 2015-09-11 14:03:48 +02:00
HelloZeroNet
0de6496f96 Rev390, Fix sidebar error on non locatable IPs, Configurable bootstrap torrent trackers, Multi-line config file settings, Evenly distributed tracker announce to work better on passive connections, Avoid iframe sandbox escape by using nonces, Better html error messages, Display proper error on invalid startup parameters 2015-09-10 23:25:09 +02:00
HelloZeroNet
00940797c8 Rev377, Fix sidebar filetypes css class, Support running zeronet from Utf-8 directories, Fix multiuser plugin welcome message, Format Multiuser plugin to PEP8, Faster publish by using connected peers if possible, Prefix css backface-visibility 2015-09-08 03:07:44 +02:00
HelloZeroNet
84e3f00aac rev338, Possible to use pure-python msgpack unpacker to save memory, Streaming file download hangup fix, Clone databases after 3 minute idle, Many site size limit related bugfixes, UiMedia served from same domain to allow ajax access, Don't allow to load resources from other domain, Site size increase ask dialog displayed again, Changed fixbutton to more Consolas-like Monaco font, Boost json files priority on download 2015-08-06 00:51:25 +02:00
HelloZeroNet
cd04abe521 rev330, Early worker exit on file download bugfix, Reload only on py file changes, Modify wrapper render to allow content edit for plugins, File send action without sending header, Rename Sidebar to Fixbutton (it will be separate plugin), Fixbutton font and layout fix on OSX/Safari, Notifications fix on OSX/Safari 2015-07-31 23:34:53 +02:00
HelloZeroNet
a93ca2c3b4 rev307, Plugin for password protected web ui, Faster page load times by yielding wrapper html, Reworked configuration parser to support plugin extensions, Initial site sync bugfix, Test for configuration parsing, Parse posted data function 2015-07-17 00:28:43 +02:00
HelloZeroNet
b5ecb62bc6 rev280, The whole project reformatted to PEP8, UiRequest getPosted to query posted variables 2015-07-12 20:36:46 +02:00
HelloZeroNet
a78907cc9d Version 0.3.1, rev238, Connection encryption using TLS, One click site clone feature, Encryption stats, Disable encryption startup parameter, Disable ssl compression startup parameter, Exchange supported encryption methods at handshake, Alternative open port checker, Option to store site privatekey in users.json, Torrent tracker swap, Test for bip32 based site creation, cloning and sslcert creation, Fix for Chrome plugin on OSX, Separate siteSign websocket command, Update pybitcointools to major speedup, Re-add sslwrap for python 0.2.9+, Disable SSL compression to save memory and better performance 2015-06-10 00:29:30 +02:00
HelloZeroNet
66eca389bf rev 196, Configurable data dir, log dir and config file, fix for getFile unhandled exceptions, add http://zeronet.io to readme 2015-05-31 15:52:21 +02:00
HelloZeroNet
40698c1ac7 rev188, Add rev to wrapper css and js to devalidate cache 2015-05-25 01:41:14 +02:00
HelloZeroNet
7e4f6bd38e version 0.3.0, rev187, Trusted authorization sites support, --publish option on signing, cryptSign command line option, OpenSSL enabled on OSX, Crypto verify allows list of valid addresses, Option for version 2 json DB tables, DbCursor SELECT parameters bugfix, Add peer to site on ListModified, Download blind includes when new site added, Publish command better messages, Multi-threaded announce, New http Torrent trackers, Wait for dbschema.json on query, Handle json import errors, More compact writeJson storage command, Testcase for signing and verifying, Workaround to make non target=_top links work, More clean UiWebsocket command route, Send cert_user_id on siteinfo, Notify other local clients on local file modify, Option to wait for file download before sql query, File rules websocket API command, Cert add and select, set websocket API command, Put focus on innerframe, innerloaded wrapper api command to add hashtag, Allow more file error on big sites, Keep worker running after stuked on done task, New more stable openSSL layer that works on OSX, Noparallel parameter bugfix, RateLimit allowed again interval bugfix, Updater skips non-writeable files, Try to close openssl dll before update 2015-05-25 01:26:33 +02:00
HelloZeroNet
f7717b1de8 rev119, Protection against update flood, Cache webfonts, Publish batching, Task failed holds Peer objects, Remove peer from failed on addTask, Noparallel memory leak fix 2015-04-24 02:36:00 +02:00
HelloZeroNet
dc4292e1e3 rev115, Stats for total number of objects in memory, Peers in memory, Memory dump displays the total content on hover, Add http cache to js, css and image files, Allow query file status with SiteInfo websocket command to fix index.html loaded before websocket connection made problem, Fix bigsites reload problem 2015-04-20 22:31:29 +02:00
HelloZeroNet
8d5a72f0b5 rev110, Support for 127.0.0.1:43110-less Chrome plugin, Namecoin updater ignores invalid characters in address, Every site's favicon.ico leads to main favicon to prevent 404 request when using chrome extension, Detect chrome extension proxy requests, Use wrapper=False instead of /media, 404errormessage fix 2015-04-20 02:56:33 +02:00
HelloZeroNet
c8fe73f5c0 rev106, Allow check memory content in stats page, Fix Zeroname plugin incompatibility with Multiuser plugin, Zeroname updater sort keys, Allow multiple ui_restrict parameter, Peer using site's logger to save some memory, Also send not that good peers on initial pex 2015-04-19 15:38:41 +02:00
HelloZeroNet
eea7af684d rev101, Benchmark for crypto, sha512, sqlite, Not exits file exception fix 2015-04-18 03:02:08 +02:00
HelloZeroNet
804fed2659 on updates connect to real peer ip, connect using pex in passive mode, referrer typo fix 2015-04-14 02:37:31 +02:00
HelloZeroNet
4f7e048413 socks proxy support, disable udp connections support, http bittorrent tracker support, port opened, external ip to stats, only need zeroname site if dont have, dont try to download file that not in content.json, store external ip even if port closed, recreate uirequest class to avoid unfinished requests in some cases 2015-04-12 23:59:22 +02:00
HelloZeroNet
2491814070 More db logging, db testcase, dont allow to request files from root db dir 2015-04-01 03:05:09 +02:00
HelloZeroNet
b122f47100 version 0.2.8, Namecoin domains using internal resolver site, --disable_zeromq option to skip backward compatiblity layer and save some memory, connectionserver firstchar error fixes, missing unpacker crash fix, sitemanager class to allow extensions, add loaded plugin list to websocket api, faster content publishing, mark updating file as bad, remove coppersurfer tracker add eddie4, internal server error with error displaying, allow site domains in UiRequest, better progress bar, wait for siteinfo before before using localstorage, csslater hide only if opacity is 0 2015-03-30 23:44:29 +02:00
HelloZeroNet
78f97dcbe8 version 0.2.7, plugin system, multiuser plugin for zeroproxies, reworked imports, cookie parse, stats moved to plugin, usermanager class, dont generate site auth on listing, multiline notifications, allow server side prompt from user, update script keep plugins disabled status 2015-03-24 01:33:09 +01:00
HelloZeroNet
3b8d49207e version 0.2.6, database support, dbrebuild and dbquery startup commands, connection firstchar error bugfix, log python gevent msgpack lib versions, sitestorage class for site file operations, dbquery websocket api command 2015-03-19 21:19:14 +01:00
HelloZeroNet
5b5c8acdcb new documents with examples, raise exception on connection error, close connection if no handshake for 60 sec, log unhandled exceptions, calc object size using guppy, typo fix 2015-03-11 01:12:53 +01:00
HelloZeroNet
b35d21d643 more detailed stats, memory optimalizations, connection pinging and timeout, request timeout, validate content after signing, only recompile changed coffeescripts, remove unnecessary js logs 2015-03-06 02:31:51 +01:00
HelloZeroNet
e8368a8da1 more detailed connection statistics, first char recv bugfix, double connection bugfix, websocket send queue, loading screen hide bugfix on slow connection, disable user reload 2015-02-25 03:22:10 +01:00
HelloZeroNet
31d4609a3b version 0.2.4, peerPing and peerGetFile commands, old content update bugfix, new network code and protocol, connection share between sites, connection reuse, dont retry bad file more than 3 times in 20 min, multi threaded include file download, shuffle peers before publish, simple internal stats page, dont retry on failed peers, more than 10 peers publish bugfix 2015-02-23 23:33:31 +01:00
HelloZeroNet
bccd246f71 progressive publish timeout based on filesize, better tracker error log, content.json viewport support, wrapperSetViewport wrapperapi command support, escape wrapper notification 2015-02-10 00:08:25 +01:00
HelloZeroNet
639b9f4961 version 0.2.0, new lib for bitcoin ecc, dont display or track notify errors, dont reload again within 1 sec, null peer ip fix, signingmoved to ContentManager, content.json include support, content.json multisig ready, content.json proper bitcoincore compatible signing, content.json include permissions, multithreaded publish, publish timeout 60s, no exception on invalid bitcoin address, testcase for new lib, bip32 based persite privatekey generation, multiuser ready, simple json database query command, websocket api fileGet, wrapper loading title stuck bugfix 2015-02-09 02:09:02 +01:00