Thomas Lynch
bb582c2de8
"helpers" -> "lib
...
god help anybody who gets serious merge conflicts from this
close #434
2 years ago
Thomas Lynch
92c504e59c
rename ip.single -> ip.cloak
3 years ago
Thomas Lynch
de8dcbb8be
progress on model, controller and the template
...
improve some helpers to load config properly on global config change including renderlocals, themes, etc
4 years ago
Thomas Lynch
1c5f14e419
This did not go as planned
4 years ago
Thomas Lynch
d75fb8cb0f
rename some tor-specific stuff to "anonymizer" to be more general since i added lokinet to my site, will make easier to add others e.g. i2p in futuure
4 years ago
Thomas Lynch
a47c4e3991
Fixing dolphin'd code
4 years ago
Thomas Lynch
d12bed3dc2
add noscript warning to hcaptcha
...
add some missing checks for google to also check captcha type
adjust frontend scripts and gulpfile styling to support hcaptcha
4 years ago
dolphin
d51aa143a8
Add in hcaptcha support.
4 years ago
Thomas Lynch
a8ede39f80
secureCookies only try to set secure:true when x-forwarded-proto is https closes #223
4 years ago
Thomas Lynch
f192a0e09c
Captcha appearance and layout changes
4 years ago
Thomas Lynch
536aecffcc
Bug in RNG causing blocking, and make captcha show properly in modal for mobile
4 years ago
Thomas Lynch
14dc090e08
Migration, and a change that will make it not get completely destroyed by ddos over TOR
4 years ago
Thomas Lynch
60d36bbb6a
Make a bit more maintainable, support different captcha types with some config options
4 years ago
Thomas Lynch
b0797f0418
Beta testing .onion support
...
***DO NOT USE***
This still has some issues and needs testing.
- needs updated nginx configs added, expects "TOR" in the x-country-code header under a separate vhost
- need to make sure bans work properly still
- need to implement system to prevent captcha ddos, since i cant just to IP ratelimit now
- im 99% sure post history of tor users is broken if viewed by non-global staff
- manual input ban form will also be broken for non-global staff
- could still use some improvement on the middleware having a little more complicated flor for tor users
But for the most part it works. Basically it will use the bypass id of a tor user as their "ip".
4 years ago
fatchan
3962e7d4dc
fix captcha ratelimit
4 years ago
fatchan
e6d7785793
migration move files from /img to /file since it can contain more than just images
5 years ago
fatchan
e632203aad
bugfixes
5 years ago
fatchan
7a00c6f689
make some ratelimits configurable
5 years ago
fatchan
73203db312
start option for unhashed ips
5 years ago
fatchan
709e695ae7
captchas a bit wider and clean the generating a bit
5 years ago
fatchan
9ce66a303d
change config to js file so it an include comments
5 years ago
fatchan
f7efa9f34f
option for insecure cookies in production mode, and add missing stuff to example config
5 years ago
fatchan
5dd1c9e7af
captcha fixes and serve jsons with nodejs in dev mode
5 years ago
fatchan
b6a8703621
some changes to make it at least _possible_ to run in dev without https
5 years ago
fatchan
4482889bca
separate ratelimit for different things, and make changing theme do some rebuilds (with ratelimit)
5 years ago
fatchan
48e761be46
add ip range bans
5 years ago
fatchan
5d683590b3
dont load captcha until clicked on box with js, refresh with double click, and keep iframe in noscript tag for noscript compatibility
5 years ago
fatchan
0a64859358
pepega
5 years ago
fatchan
848cc07d9f
separate ratelimits from captchas
5 years ago
fatchan
c8093fce8b
captcha ratelimiting
5 years ago
fatchan
77085efd87
strict samesite instead of lax
5 years ago
fatchan
7c57fca366
organise the helpers some
5 years ago
fatchan
5172ffc251
who decided that was a good way to do tripcodes
5 years ago
fatchan
e075b26228
improved captchas fix #1
5 years ago
fatchan
2c6ee4d9ee
add required fields in html forms and add * to labels according to board settings for required OP subject, message or file.
5 years ago
fatchan
72391e0558
resolve only after thumbnailing actually finishes
5 years ago
fatchan
44e05e6220
captcha string instead of mongoid class fixes json cookie issue for nginx
5 years ago
fatchan
8a0160a924
early captchas
5 years ago