mirrors/copyparty
1
0
Fork 0
mirror of https://github.com/9001/copyparty.git synced 2025-10-03 15:12:28 -06:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit graph

  • fc0405c8f3 add prometheus metrics; closes #49 ed 2023-08-20 17:58:06 +0000
  • 7df890d964 wget: only allow http/https/ftp/ftps (#50): these are all the protocols that are currently supported by wget, so this has no practical effect aside from making sure we won't suddenly get file:// support or something (which would be bad) ed 2023-08-20 09:47:50 +0000
  • 8341041857 mdns: option to ignore spec to avoid issues on networks where clients have multiple IPs of which some are subnets that the copyparty server is not ed 2023-08-19 21:45:26 +0000
  • 1b7634932d tar/zip-download: add opus transcoding filter ed 2023-08-19 19:40:46 +0000
  • 48a3898aa6 suggest enabling the database on startup ed 2023-08-16 19:57:19 +0000
  • 5d13ebb4ac avoid firefox-android quirk(?): when repeatedly tapping the next-folder button, occasionally it will reload the entire page instead of ajax'ing the directory contents. ed 2023-08-16 19:56:47 +0000
  • 015b87ee99 performance / cosmetic: * js: use .call instead of .bind when possible * when running without e2d, the message on startup regarding unfinished uploads didn't show the correct filesystem path ed 2023-08-16 19:32:43 +0000
  • 0a48acf6be limit each column of the files table to screen width ed 2023-08-16 03:55:53 +0000
  • 2b6a3afd38 fix iOS randomly increasing fontsize of some things: * links which are wider than the display width * probably input fields too ed 2023-08-16 03:47:19 +0000
  • 18aa82fb2f make browser resizing smoother / less expensive ed 2023-08-15 16:55:19 +0000
  • f5407b2997 docker: persist autogenerated seeds, disable certgen, and mention how to run the containers with selinux enabled * assumes that a /cfg docker volume is provided ed 2023-08-15 15:07:33 +0000
  • 474d5a155b android's got hella strict filename rules ed 2023-08-15 06:46:57 +0200
  • afcd98b794 mention some gotchas (thx noktuas) ed 2023-08-15 03:38:51 +0200
  • 4f80e44ff7 option to exactly specify browser title prefix ed 2023-08-15 03:17:01 +0200
  • 406e413594 hint at additional context in exceptions ed 2023-08-15 01:42:13 +0200
  • 033b50ae1b u2c: exclude files by regex ed 2023-08-15 00:45:12 +0200
  • bee26e853b show server hostname in html titles: * --doctitle defines most titles, prefixed with "--name: " by default * the file browser is only prefixed with the --name itself * --nth ("no-title-hostname") removes it * also removed by --nih ("no-info-hostname") ed 2023-08-14 23:50:13 +0200
  • 04a1f7040e adjustable timestamp resolution in log messages ed 2023-08-14 17:22:22 +0200
  • 81d3c9bc11
         Update wget.py to prevent shell injection mvsite 2023-08-09 13:29:59 -0700
  • f9d5bb3b29 support upload by dragdrop from other browser windows, hello from LO484 https://ocv.me/stuff/aircode.jpg ed 2023-07-28 21:43:40 +0200
  • ca0cd04085 update pkgs to 1.8.8 ed 2023-07-25 16:25:27 +0000
  • 999ee2e7bc v1.8.8 v1.8.8 ed 2023-07-25 15:50:48 +0000
  • 1ff7f968e8 fix tls-cert regeneration on windows ed 2023-07-25 15:27:27 +0000
  • 3966266207 remember ?edit and trailing-slash during login redirect ed 2023-07-25 15:14:47 +0000
  • d03e96a392 html5 strips the first leading LF in textareas; stop it ed 2023-07-25 14:16:54 +0000
  • 4c843c6df9 fix md-editor lastmod cmp when browsercache is belligerent ed 2023-07-25 14:06:53 +0000
  • 0896c5295c range-select fixes: * dont crash when shiftclicking between folders * remember origin when lazyloading more files ed 2023-07-25 14:06:31 +0200
  • cc0c9839eb update pkgs to 1.8.7 ed 2023-07-23 16:16:49 +0000
  • d0aa20e17c v1.8.7 v1.8.7 ed 2023-07-23 15:43:38 +0000
  • 1a658dedb7 fix infinite playback spin on servers with one single file ed 2023-07-23 14:52:42 +0000
  • 8d376b854c this is the wrong way around ed 2023-07-23 14:10:23 +0000
  • 490c16b01d be even stricter with ?hc ed 2023-07-23 13:23:52 +0000
  • 2437a4e864 the CVE-2023-37474 fix was overly strict; loosen ed 2023-07-23 11:31:11 +0000
  • 007d948cb9 fix GHSA-f54q-j679-p9hh: reflected-XSS in cookie-setters; it was possible to set cookie values which contained newlines, thus terminating the http header and bleeding into the body. ed 2023-07-23 10:55:08 +0000
  • 335fcc8535 update pkgs to 1.8.6 ed 2023-07-21 01:12:55 +0000
  • 9eaa9904e0 v1.8.6 v1.8.6 ed 2023-07-21 00:36:37 +0000
  • 0778da6c4d fix GHSA-cw7j-v52w-fp5r: reflected-XSS through /?hc ed 2023-07-21 00:35:43 +0000
  • a1bb10012d update pkgs to 1.8.4 ed 2023-07-18 08:26:39 +0000
  • 1441ccee4f v1.8.4 v1.8.4 ed 2023-07-18 07:46:22 +0000
  • 491803d8b7 update pkgs to 1.8.3 ed 2023-07-16 23:03:30 +0000
  • 3dcc386b6f v1.8.3 v1.8.3 ed 2023-07-16 22:00:04 +0000
  • 5aa54d1217 shift/ctrl-click improvements: * always enable shift-click selection in list-view * shift-clicking thumbnails opens in new window by default as expected * enable shift-select in grid-view when multiselect is on * invert select when the same shift-select is made repeatedly ed 2023-07-16 18:15:56 +0000
  • 88b876027c option to range-select files with shift-click; closes #47 also restores the browser-default behavior of opening links in a new tab with CTRL / new window with SHIFT ed 2023-07-16 14:05:09 +0000
  • fcc3aa98fd add path-traversal scanners ed 2023-07-16 13:09:31 +0000
  • f2f5e266b4 support listing uploader IPs in d2t volumes ed 2023-07-15 18:50:35 +0000
  • e17bf8f325 require the new admin permission for the admin-panel ed 2023-07-15 18:39:41 +0000
  • d19cb32bf3 update pkgs to 1.8.2 ed 2023-07-14 16:05:57 +0000
  • 85a637af09 v1.8.2 v1.8.2 ed 2023-07-14 15:58:39 +0000
  • 043e3c7dd6 fix traversal vulnerability GHSA-pxfv-7rr3-2qjg: the /.cpr endpoint allowed full access to server filesystem, unless mitigated by prisonparty ed 2023-07-14 15:55:49 +0000
  • 8f59afb159 fix another race (unpost): unposting could collide with most other database-related activities, causing one or the other to fail. luckily the unprotected query performed by the unpost API happens to be very cheap, so also the most likely to fail, and would succeed upon a manual reattempt from the UI. even in the worst case scenario, there would be no unrecoverable damage as the next rescan would auto-repair any resulting inconsistencies. ed 2023-07-14 15:21:14 +0000
  • 77f1e51444 fix unlikely race (e2tsr): if someone with admin rights refreshes the homepage exactly as the directory indexer decides to _drop_caches, the indexer thread would die and the up2k instance would become inoperable... luckily the probability of hitting this by chance is absolutely minimal, and the worst case scenario is having to restart copyparty if this happens immediately after startup; there is no risk of database damage ed 2023-07-14 15:20:25 +0000
  • 22fc4bb938 add event-hook for banning users ed 2023-07-13 22:29:32 +0000
  • 50c7bba6ea volflag "nohtml" to never return html or rendered markdown from potentially unsafe volumes ed 2023-07-13 21:57:52 +0000
  • 551d99b71b add permission "a" to show uploader IPs (#45) ed 2023-07-12 21:36:55 +0000
  • b54b7213a7 more thumbnailer configs available as volflags: --th-convt = convt --th-no-crop = nocrop --th-size = thsize ed 2023-07-11 22:15:37 +0000
  • a14943c8de update pkgs to 1.8.1 ed 2023-07-07 23:58:16 +0000
  • a10cad54fc v1.8.1 v1.8.1 ed 2023-07-07 22:20:01 +0000
  • 8568b7702a add pillow10 support + improve text rendering ed 2023-07-07 22:13:04 +0000
  • 5d8cb34885 404/403 can be handled with plugins ed 2023-07-07 21:33:40 +0000
  • 8d248333e8 dont disable quickedit when hashing passwords interactively ed 2023-07-07 18:29:30 +0000
  • 99e2ef7f33 ux: fix tabs clipping in fedora-ff, hackertheme up2k flags ed 2023-07-07 18:24:58 +0000
  • e767230383 very-bad-idea: prefer mpv / streamlink; closes #42 ed 2023-06-28 21:25:40 +0000
  • 90601314d6 better explain why very-bad-idea is a very bad idea ed 2023-06-27 22:30:14 +0000
  • 9c5eac1274 add fedora package ed 2023-06-27 22:22:42 +0000
  • 50905439e4 update pkgs to 1.8.0 ed 2023-06-26 00:46:55 +0000
  • a0c1239246 v1.8.0 v1.8.0 ed 2023-06-26 00:05:12 +0000
  • b8e851c332 cloudflare update + cosmetics: * toastb padding fixes scrollbar on norwegian 403 in firefox * fix text aspect ratio in seekbaron compact toggle * crashpage had link overlaps on homepage ed 2023-06-25 23:09:29 +0000
  • baaf2eb24d include mdns names in tls cert ed 2023-06-25 22:06:35 +0000
  • e197895c10 support hashed passwords; closes #39 ed 2023-06-25 21:50:33 +0000
  • cb75efa05d md-editor: index file and trigger upload hooks ed 2023-06-20 18:11:35 +0000
  • 8b0cf2c982 volflags to limit volume size / num files; closes #40 ed 2023-06-19 00:42:45 +0000
  • fc7d9e1f9c update pkgs to 1.7.6 ed 2023-06-11 09:13:58 +0000
  • 10caafa34c v1.7.6 v1.7.6 ed 2023-06-11 08:14:45 +0000
  • 22cc22225a v1.7.5 v1.7.5 ed 2023-06-11 01:32:56 +0000
  • 22dff4b0e5 update pkgs to 1.7.4 ed 2023-06-11 01:26:25 +0000
  • a00ff2b086 v1.7.4 v1.7.4 ed 2023-06-11 00:07:38 +0000
  • e4acddc23b v1.7.3 v1.7.3 ed 2023-06-11 00:03:03 +0000
  • 2b2d8e4e02 tls / gencert fixes ed 2023-06-10 23:34:34 +0000
  • 5501d49032 prefer urandom for fk-salt unless cert.pem exists ed 2023-06-10 22:47:39 +0000
  • fa54b2eec4 generate tls certs ed 2023-06-10 22:46:24 +0000
  • cb0160021f upgrade pyinstaller env/deps ed 2023-06-10 11:58:58 +0000
  • 93a723d588 add --ansi to systemd, fix grid controls bg, mention folder thumbs dependency on -e2d, improve make-sfx warnings, update changelog ed 2023-06-06 22:04:39 +0000
  • 8ebe1fb5e8 mention cfssl.sh in the default-certificate warning, and improve documentation inside cfssl.sh ed 2023-06-06 21:41:19 +0000
  • 2acdf685b1 Fix issue #33 - no color output expected when redirecting stdout clach04 2023-06-04 16:23:32 -0700
  • 9f122ccd16 make-sfx: option to auto-obtain webdeps ed 2023-06-04 23:46:38 +0000
  • 762ef06b33
         Fix issue #33 - no color output expected when redirecting stdout clach04 2023-06-04 16:23:32 -0700
  • 03be26fafc improve check for type-hint support ed 2023-06-04 22:59:25 +0000
  • df5d309d6e document the make-sfx.sh fast option ed 2023-06-04 14:13:35 +0000
  • c355f9bd91 catch common environment issues (#32): * error-message which explains how to run on py2 / older py3 when trying to run from source * check compatibility between jinja2 and cpython on startup * verify that webdeps are present on startup * verify that webdeps are present when building sfx * make-sfx.sh grabs the strip-hints dependency ed 2023-06-04 13:13:36 +0000
  • 9c28ba417e option to regex-exclude files in browser listings ed 2023-06-02 21:54:25 +0000
  • 705b58c741 support the NO_COLOR environment variable ed 2023-06-02 20:22:57 +0000
  • 510302d667 support ftps-only; closes #30 ed 2023-06-02 19:02:50 +0000
  • 025a537413 add option to show thumbs by default; closes #31 ed 2023-06-02 18:41:21 +0000
  • 60a1ff0fc0 macos: mute select() noise on wake from suspend ed 2023-05-19 16:37:52 +0200
  • f94a0b1bff update pkgs to 1.7.2 ed 2023-05-13 00:49:46 +0000
  • 4ccfeeb2cd v1.7.2 v1.7.2 ed 2023-05-13 00:00:07 +0000
  • 2646f6a4f2 oh nice, looks like 3.18 fixed whatever broke in 3.17 ed 2023-05-12 23:38:10 +0000
  • b286ab539e readme: add more examples ed 2023-05-12 22:41:06 +0000
  • 2cca6e0922 warn when sharing certain system locations ed 2023-05-12 21:38:16 +0000
  • db51f1b063 cfg: allow trailing colon on category headers ed 2023-05-12 21:01:34 +0000