leftypol/leftypol
leftypol/leftypol
4
5
Fork 3
Code Issues 58 Pull Requests 1 Projects Releases Wiki Activity
2,135 Commits 15 Branches 0 Tags 140 MiB
9cf6814776
Commit Graph

243 Commits

Author SHA1 Message Date
Michael Foster
461084d400 MySQL's utf8 charset only supports up to 3-byte symbols. Insterting four byte symbols (U+010000 to U+10FFFF) can be done maliciously to break HTML mark-up. 
The ideal solution was to convert to MySQL's utf8mb4 charset, but then we would lose support for MySQL < 5.5.3. In this fix, incompatible characters are encoded as HTML numeric character references (eg. #65536) and just stripped from body_nommarkup.
 2013-07-30 16:41:10 -04:00
Michael Foster
bd8bd3c02e Fix for last commit 2013-07-28 20:46:00 -04:00
Michael Foster
57c8e4ee7c Strip combining characters from Unicode strings (eg. Zalgo) 2013-07-28 20:33:26 -04:00
Michael Foster
308f557fd5 Option to automatically strip EXIF metadata from JPEGs 2013-07-21 15:50:45 -04:00
Michael Foster
30dc892786 Only store video URLs in database, instead of the generated player HTML. 2013-07-19 18:36:12 -04:00
Michael Foster
0ba40a8fc2 I just realized that ImageMagick had a -auto-orient switch. No need for all that code. 2013-07-19 09:39:46 -04:00
Michael Foster
e4bd9a6886 Themes edit: Split "post" into two seperate actions: "post" (replies) and "post-thread". And add a $board variable. 2013-07-18 12:06:26 -04:00
Michael Foster
c2dc25ac51 incrementSpamHash() was duplicated for some reason 2013-07-16 01:34:36 -04:00
Macil Tech
3eda5b0543 Adds image_hard_limit and reply_hard_limit options. 
Also reworks the numPosts() function and uses it elsewhere too.
 2013-06-18 12:21:41 -05:00
Michael Save
a44e0571bc Automatically rotate and mirror images based on EXIF orientation (only compatiable with "convert" option selected at the moment) 2013-01-24 03:24:38 +11:00
Michael Save
7a68fc9525 Copyright and license update for 2013. 2013-01-20 21:23:46 +11:00
Macil Tech
0da1c18a7f Add field_disable_subject and field_disable_reply_subject config options. 2013-01-19 01:37:48 -06:00
Michael
accc3992f3 Merge pull request #93 from Macil/image_reject_repost_in_thread 
Add image_reject_repost_in_thread option
 2013-01-18 23:03:16 -08:00
Macil Tech
67ab3760ba Removed redundant code in image processing. 
Both paths of the code here did the same thing.
 2013-01-19 00:39:29 -06:00
Macil Tech
91e8547b04 Add image_reject_repost_in_thread option 2013-01-19 00:25:24 -06:00
Michael Save
6a705fd8c2 Merge branch 'mod-rewrite' 
Conflicts:
	inc/lib/Twig/Extensions/Extension/Tinyboard.php
	install.php
	mod.php
	stylesheets/style.css
	templates/index.html
	templates/page.html
	templates/thread.html
 2012-08-27 02:28:04 +10:00
Michael Save
c919e73625 Temporary bugfix for incorrectly escaped email field 2012-08-27 02:18:31 +10:00
Michael Save
6775eebcfa $post['id'] 2012-05-27 20:55:56 +10:00
Michael Save
ad220b725d Bugfix: the number of successful passes for an anti-spam "hash" was often incorrectly incremented 2012-05-07 23:51:58 +10:00
Michael Save
9058d202ed Bugfix: the number of successful passes for an anti-spam "hash" was often incorrectly incremented 2012-05-07 23:51:15 +10:00
Michael Save
890b541191 custom capcode permissions 2012-05-07 18:22:20 +10:00
Michael Save
2082fcde24 Bugfix: with file uploading (introduced with last commit) 2012-05-05 18:12:11 +10:00
Michael Save
b5c7e30609 Bugfix: non-image file uploading 2012-05-05 18:11:45 +10:00
Michael Save
d6f5fc28ce Bugfix: with file uploading (introduced with last commit) 2012-04-20 19:48:11 +10:00
Michael Save
9286ec4928 Bugfix: with file uploading (introduced with last commit) 2012-04-20 19:47:25 +10:00
Michael Save
4c2066bc27 Bugfix: non-image file uploading 2012-04-20 19:04:53 +10:00
Michael Save
df97c559bd Bugfix: non-image file uploading 2012-04-20 19:04:37 +10:00
Michael Save
f48bfbf299 typo 2012-04-14 03:44:00 +10:00
Michael Save
1437a121f7 typo 2012-04-14 03:43:04 +10:00
Michael Save
51675e7a9b code cleanup 2012-04-13 00:18:19 +10:00
Michael Save
95709e7588 Removed board.id. Use the board URI/name at the key instead. 2012-04-12 23:23:47 +10:00
Michael Save
a564a95ab4 Improved Tinyboard anti-bot/spam filter. See large comment in inc/config.php for details. 2012-04-12 21:56:01 +10:00
Michael Save
c9423a2c34 large cleanup 2012-04-12 02:49:22 +10:00
Michael Save
1b5f2b08f4 moved $OP to $post['op']. post() now has one argument instead of two. 2012-04-11 02:18:06 +10:00
Michael Save
033491f84f increase character limit on board URI, title and subtitle 2012-04-09 21:13:44 +10:00
Michael Save
8cfc5460d3 New event: post-after 2012-04-03 00:16:25 +10:00
Michael Save
4c6faeb7a2 Convert $post to an object before passing it to event(). This way it can be modified by event handlers before entering the database. See http://tinyboard.org/docs/events.html#examples 2012-03-24 15:31:35 +11:00
Michael Save
8703ea3d4a $post['file_path'] 2012-03-19 02:55:34 +11:00
Michael Save
7c8dc230b8 Moved rebuildThemes() in post.php back for now. 2012-03-19 02:53:33 +11:00
Michael Save
9d58186360 New feature: "events". Will eventually replace/extend "themes". 2012-03-19 02:41:06 +11:00
Michael Save
c136d44894 Better upload handling (don't move file before handling it) 2012-03-18 19:53:56 +11:00
Michael Save
6db45d4c3d $config['thumb_method'] 2012-03-17 11:54:48 +11:00
Michael Save
60aab92f47 allow quick-reply.js to work 2012-03-14 18:09:23 +11:00
Michael Save
c8d1f1cdd4 ability to adjust thumbnail size for OP images independently from reply images 2012-03-14 02:44:33 +11:00
Michael Save
de17bdb317 Remade config[redraw_image] 2012-03-10 20:53:41 +11:00
Michael Save
25cdd35663 bug: avoid using empty() or values such as "0" will not work as intended 2012-02-17 19:24:40 +11:00
Michael Save
56821eb375 allow mods to bypass forced anonymity (and other disabled fields). also fixed some small per-board permission bugs 2012-02-16 23:07:25 +11:00
Michael Save
a431994016 fixed bug causing "bot" errors when disabling fields on certain boards only 2012-02-14 23:18:00 +11:00
Michael Save
cd30f3b0b9 prohibit using same anti-bot hashes across different boards/threads 2012-01-20 02:37:53 +11:00
Savetheinternet
0dd36bda54 logical error syslog()ing reports 2011-12-22 15:46:19 +11:00
Savetheinternet
41b2990234 syslog() reports and deletions 2011-12-22 10:09:59 +11:00
Savetheinternet
be860577a9 optionally disable image requirement for new threads 2011-12-18 08:48:16 +11:00
Savetheinternet
75f7ebd49b bugfix: PHP notices on raw posts 2011-12-13 20:15:46 +11:00
Savetheinternet
c83d192103 removed $_SESSION 2011-12-09 01:18:23 +11:00
Savetheinternet
6a02dfd5aa use multibyte-aware mb_strlen() instead of strlen(); fixed issue #8) 2011-12-07 17:47:36 +11:00
Savetheinternet
d454fc6423 syslog() mod actions 2011-12-06 03:00:59 +11:00
Savetheinternet
799af6907a .. 2011-12-05 16:49:24 +11:00
Savetheinternet
d4dc36cd74 .. 2011-12-05 16:45:06 +11:00
Savetheinternet
4454904461 syslog() new posts 2011-12-05 16:44:00 +11:00
Savetheinternet
290335194a integer overflow bug on 32-bit systems 2011-12-05 15:34:31 +11:00
Savetheinternet
b57be65c9f track cites (remove broken links after a post 404s) 2011-12-05 13:17:34 +11:00
Savetheinternet
ee3d9359e3 v0.9.4 2011-12-04 13:52:56 +11:00
Savetheinternet
c2e1f4feac removed useless exit; 2011-12-04 09:09:24 +11:00
Savetheinternet
c1be29ce35 ammended mod authentication system (no more $_SESSION) 2011-12-02 15:11:13 +11:00
Savetheinternet
a83d584255 Ability to disable certain superfluous fields. ("Forced anonymous") 2011-11-23 21:24:06 +11:00
Savetheinternet
0279cfd3fb Ability to customize filenames, replacing the standard UNIX timestamp + random 2011-11-19 00:22:48 +11:00
Savetheinternet
4e3757e586 Combined SQL query for checking if locked, etc. Much more efficient. 2011-10-11 02:58:22 +11:00
Savetheinternet
ffb215eb47 added "bumplocking" feature 2011-10-10 22:37:39 +11:00
Savetheinternet
cf79aed488 removed old, now invalid installation code from post.php 2011-10-08 19:08:46 +11:00
Savetheinternet
53dce652a8 image spoilers 2011-10-04 02:46:39 +11:00
Savetheinternet
67b954924b Referer checking; more descriptive error message 2011-10-03 18:38:19 +11:00
Savetheinternet
339853e5de Show full filename on mouseover. 2011-10-01 22:12:31 +10:00
Savetheinternet
0bad03d3a2 Disable inline-expanding for non-images 2011-10-01 21:43:23 +10:00
Savetheinternet
20c200a7ff Fixed bug regarding no-body posts (especially relevant to video embedding) 2011-09-29 21:17:59 +10:00
Savetheinternet
e089acd1eb Fixed force_body and force_body_op 2011-09-25 16:34:34 +10:00
Savetheinternet
d51f6a932e ... 2011-09-18 03:25:38 +10:00
Savetheinternet
4cbf5b91bf fixed custom filters 2011-09-18 03:17:54 +10:00
Savetheinternet
3d5c2ac5f5 Accidentally disabled spam protection in last commit... 2011-09-15 20:34:45 +10:00
Savetheinternet
4ef2caecc1 Removed $config[force_body]. Made threads without text possible. 2011-09-15 20:32:49 +10:00
Savetheinternet
aa02cffb93 increased subject max length to 100 characters 2011-08-27 12:11:34 +10:00
Savetheinternet
881ea10162 find image size before loading image into memory 2011-08-24 18:22:07 +10:00
Savetheinternet
e3f2aa8da3 ... 2011-08-15 00:49:52 +10:00
Savetheinternet
4c1935a6b6 per-board bans 2011-07-27 13:40:27 +10:00
Savetheinternet
f9bcde6e3d .. 2011-07-22 18:51:59 +10:00
Savetheinternet
25cbb68ea1 fixed display of image resolution/size, which was broken after the new image class was introduced 2011-07-18 22:06:24 +10:00
Savetheinternet
97979b7999 image handling class 2011-07-12 20:29:35 +10:00
Savetheinternet
370b829460 reCAPTCHA support 2011-06-16 04:59:16 +10:00
Savetheinternet
d184b591d8 removed unnecessary whitespace 2011-06-16 03:11:52 +10:00
Michael
5333f8c9cc bug fix 2011-06-11 16:08:29 +10:00
Savetheinternet
d9b82cfe4f allowed enabling multiple themes simultaneously 2011-05-28 01:43:04 +10:00
Savetheinternet
2acf0233ae embedding+file upload bug, accepting both for a single post 2011-05-25 19:11:22 +10:00
Savetheinternet
c8e778578a typo 2011-05-25 19:08:09 +10:00
Savetheinternet
65c5e91af2 stop ignoring $config[file_page]... 2011-05-20 22:44:11 +10:00
Savetheinternet
db1f0e9446 replaced tor detection with DNSBL 2011-05-19 17:37:23 +10:00
Savetheinternet
797fd8ad13 Embedding field 2011-05-18 17:05:48 +10:00
Savetheinternet
2ac8dc2c0f cleanup 2011-04-23 00:38:25 +10:00
Savetheinternet
2234c1ecea bug fix for recent theme 2011-04-20 01:50:35 +10:00
Savetheinternet
10a8fe28e6 non-image uploads 2011-04-13 20:57:41 +10:00
Savetheinternet
971e72000a Custom thubmanil image type (extension) 2011-04-13 04:08:59 +10:00
Savetheinternet
4c6c5b906e < should be <= in this case 2011-04-12 22:58:55 +10:00