Thomas Lynch
d75fb8cb0f
rename some tor-specific stuff to "anonymizer" to be more general since i added lokinet to my site, will make easier to add others e.g. i2p in futuure
4 years ago
Thomas Lynch
c49541598f
config to change perm level to delete board, close #311
4 years ago
Thomas Lynch
6f64448b33
works for board recent and global recent, fixed lastPostId issue and IP display issue
...
just neds a second pair of eyes to check its not leaking IPs anywhere
4 years ago
Thomas Lynch
75888c79bd
case sensitive route... why does express have retarded defaults and how long has this been a thing? o.o
4 years ago
Thomas Lynch
cf43f650d6
Ability to edit newsposts reference #298
4 years ago
Thomas Lynch
8629143610
change video/audio handling, allows "audio" files with a video mime type to be uploaded properly, and get treated like audio file. might need some testing to make sure nothing broke :)
4 years ago
Thomas Lynch
dfdd102626
Rehash ids when moving posts to another thread, closes #218
4 years ago
Thomas Lynch
9215dcbf17
test only, blockhash option
4 years ago
Thomas Lynch
44f69b8ba5
start per-board custom pages, mostly working could just use a lil more testing references #232
4 years ago
Thomas Lynch
77b8ae5540
Overboard catalog reference #286
4 years ago
Thomas Lynch
d12bed3dc2
add noscript warning to hcaptcha
...
add some missing checks for google to also check captcha type
adjust frontend scripts and gulpfile styling to support hcaptcha
4 years ago
6f090adabe
Fix typo
4 years ago
Thomas Lynch
fed92d6621
separate trigger action for when tph vs pph is exceeded
...
option for lock reset and captcha reset, to pick what you want the lock mode and captcha mod to go back to at the end of the hour
also fix avuln in boardsettings where pph trigger/mode settings were not range checked
4 years ago
124de4351a
board edit: take board name & description max length limits in config file into consideration
4 years ago
Thomas Lynch
40d17e360d
globalmanage live posts
...
todo:
- handle iphashpermlevel to not send IP for users without perms (separate room? seems easiest)
- make sure lastpostId, reply adding, etc doesnt get all fucked up because of multi threads on one page
4 years ago
Thomas Lynch
d7de091809
~ edits dont open in new tab, and redirect back to page or post when click 'ok' in modal reference #272
4 years ago
Thomas Lynch
67026fcc0c
- Remove some hardcoded limits on forms
...
~ Make limit for post actions configurable. needed to still be limit for antispam/performance
+ Add config for total banners per board
4 years ago
Thomas Lynch
7a3943c447
patch messages length check for CRLF vs just LF, because browsers dont count CRLF as 2 characters like the server does (and like it technically is). this will happen for other fields too, but message is the only one that really matter close #269
4 years ago
Thomas Lynch
a2d34ac4af
close #265 global and board setting to disable .onion file posting
4 years ago
Thomas Lynch
0fc7535a8c
Allow minutes and seconds in ban time inputs, allow 0 times (0s), and make the form reset not apply to settings form to be a bit less jarring
4 years ago
Thomas Lynch
97ba9247a8
bug in reply/file requirement settings, NOT related to issue reported in >>>/t/2#334 on demo site
4 years ago
Thomas Lynch
f2df1aea4b
Global manage page for boards. Shows all boards including unlisted, and marks abandoned boards
4 years ago
Thomas Lynch
3e2b361607
remove useless hasPerms(4) (4=not logged in or non-staff context) from form middlewares that already isLoggedIn e.g. create board and resign from board
4 years ago
Thomas Lynch
a89c25af24
Let people actually resign from boards
4 years ago
Thomas Lynch
34cb073a11
Typos in self-delete account messages
4 years ago
Thomas Lynch
18240670cf
Let users self-delete their account, provided they dont hold any staff positions closes #240
4 years ago
Thomas Lynch
25ce30dde8
fix issue posting bypass for non tor
4 years ago
Thomas Lynch
a22ad89f48
share same route for boards html/json, like board/thread/catalog
4 years ago
Thomas Lynch
1399dda5fd
Json routes will hit backend & get 404'd there,
...
allows for pages with missing json that arent prebuilt to build when json route is hit,
without requiring html pageload first better for api
4 years ago
Thomas Lynch
b597ac8159
ability to resign from a board you mod/own. previously you could not leave a mod position, and you could not leave owner position (unless you transfer) closes #196
4 years ago
Thomas Lynch
14dc090e08
Migration, and a change that will make it not get completely destroyed by ddos over TOR
4 years ago
Thomas Lynch
60d36bbb6a
Make a bit more maintainable, support different captcha types with some config options
4 years ago
Thomas Lynch
09e0bcb518
references #209 , add optional google recaptcha. implementation could use some polish, but it will work for now.
4 years ago
Thomas Lynch
1216e20e56
Fix that for tor
4 years ago
Thomas Lynch
48565133d2
actually, remove that completely for now
4 years ago
Thomas Lynch
f1db4f7317
Fix post history for tor user and remove manual addban form from non-global manage pages (for now)
4 years ago
Thomas Lynch
786f5a2ffa
Bugfix for repeated getting new bypass when tor user didnt need one. not necessarily a big problem but it means they would keep getting new ids. this could actually be leveraged for a scuffed auto-refresh system in future
4 years ago
Thomas Lynch
b0797f0418
Beta testing .onion support
...
***DO NOT USE***
This still has some issues and needs testing.
- needs updated nginx configs added, expects "TOR" in the x-country-code header under a separate vhost
- need to make sure bans work properly still
- need to implement system to prevent captcha ddos, since i cant just to IP ratelimit now
- im 99% sure post history of tor users is broken if viewed by non-global staff
- manual input ban form will also be broken for non-global staff
- could still use some improvement on the middleware having a little more complicated flor for tor users
But for the most part it works. Basically it will use the bypass id of a tor user as their "ip".
4 years ago
cd789dba0c
remove unnecessary user object from session
...
It only had a single property, username.
4 years ago
cfc97b8101
do not read session when not needed
4 years ago
Thomas Lynch
97ed9a91f0
seemsgood, closes #194
4 years ago
Thomas Lynch
f1abc3c224
Start on selective spoilering references #170 filename stripping references #204
4 years ago
Thomas Lynch
0021ed02cc
Early version of overboard, /all.html. Still needs a small cache and moderation changes to support moderating references #166
4 years ago
fatchan
5c606bf455
add process ip so modlog can be filled, closes #141
4 years ago
fatchan
b4d9411ab4
close #129
4 years ago
fatchan
51562e7cfd
Update example config references #135
4 years ago
fatchan
5c7fc003ad
register.html/create.html hiding based on settings and fix broken captcha quota resetting for some forms references #124
4 years ago
fatchan
3bda3aa596
only use processip middleware where necessary references #121
4 years ago
fatchan
d0bcebd4e3
ratelimit edits references #121
4 years ago
fatchan
4d6937b05f
fix captcha expired bug on create page
4 years ago
ne0n