fatchan
|
d9559c76e6
|
fix exploit; no longer use extended body parser mode and remove unneeded array prefix from array body fields, since we use different lib to parse body now. also upgrade express and dont allow body for modlog actions to be entered into modlog, replace with non user controlled text
|
5 years ago |
fatchan
|
7d2acf017c
|
pug-cache-templates actually helps
|
5 years ago |
fatchan
|
6d3f2c9895
|
minor typographical changes
|
5 years ago |
fatchan
|
47280caced
|
theme switcher with js in footer, overrides for all pages
|
5 years ago |
fatchan
|
d5bd6a600e
|
implementing global limits for board settings and configurable defaults for board creation
|
5 years ago |
fatchan
|
d8f98a67cb
|
configurable theme per board, and default in config
|
5 years ago |
fatchan
|
d899a31bbe
|
no more lmx. since we have redis, use it for redlock and connect-redis for sessions instead of mongo
|
5 years ago |
fatchan
|
4e22ee61ce
|
switch to bull instead of rsmq its superior in every way
|
5 years ago |
fatchan
|
3aabb5dbb5
|
switch redis lib to have a separate client, so that i can use it for k:v cache later
|
5 years ago |
fatchan
|
2bd231a031
|
for routes that dont need session at all, dont use the refresh middleware e.g. public pages, banners, captcha, etc
|
5 years ago |
fatchan
|
4e181ae712
|
refactor some middlewares to move them out of main server file
|
5 years ago |
fatchan
|
1e467fdc45
|
locks for writing html files, also might need to add during dedupe to prevent file incs changing while pruning
|
5 years ago |
fatchan
|
848cc07d9f
|
separate ratelimits from captchas
|
5 years ago |
fatchan
|
7d7f43373e
|
config to disable referrer check for local dev environment
|
5 years ago |
fatchan
|
54a13dc945
|
ip hash and fix inaccessible ip in report/globalreport for actionhandler
|
5 years ago |
fatchan
|
c8093fce8b
|
captcha ratelimiting
|
5 years ago |
fatchan
|
77085efd87
|
strict samesite instead of lax
|
5 years ago |
fatchan
|
177d902311
|
disable useless x-powered header, and log node env on startup
|
5 years ago |
fatchan
|
b3431baadf
|
improved configuration options -- settings for opengraph url/sitename and render template cache
|
5 years ago |
fatchan
|
5e1e0f7ef9
|
backlinking refactor, remove helmet from server since its basically useless
|
5 years ago |
fatchan
|
36a3755dca
|
file upload mmiddleware only on valid routes, 10 banners at a time upload, and show how many _new_ banners uploaded
|
5 years ago |
fatchan
|
c54c9e7892
|
multi board rebuilds and rebuilds work for global actions untested
|
5 years ago |
fatchan
|
38c72dd5ce
|
improve ecosystem file and only signal PM2 _after_ listening
|
5 years ago |
fatchan
|
67c7cf3650
|
check if its a child process before sending pm2 ready signal
|
5 years ago |
fatchan
|
05977d3cd6
|
server graceful reload with PM2 and close on sigints
|
5 years ago |
fatchan
|
f7a5ce50dd
|
samesite, secure and htponly for cookies
|
5 years ago |
fatchan
|
a818a25e91
|
generate and save html to disk. actions that would cause a page to change delete the html. on the next visit, nginx will try_files, else pass to the backend which will generate the page again. CURRENTLY DOES NOT SUPPORT POST ACTIONS e.g. deletes, spoiler, sticky, etc will not cause pages to be deleted for future rebuilding. thats coming in next commits. consider this the start of actual smart building strategy to prevent templating and db hits unnecessarily. where its possible to serve a plain html page, we will do so.
|
5 years ago |
fatchan
|
d956a7fd53
|
changes to pages for boards again
|
5 years ago |
fatchan
|
3e67a5df55
|
update some pages to not use csrf token where unnecessary
|
5 years ago |
fatchan
|
32528e53bc
|
referrer header POST check/rejection
|
5 years ago |
fatchan
|
2de229337b
|
'BANNED FOR THIS POST' message + styling improvements
|
5 years ago |
fatchan
|
139f937897
|
banners, captcha, image in separate folders and associated changes
|
5 years ago |
fatchan
|
1ca5292660
|
delete used captchas
|
5 years ago |
fatchan
|
8a0160a924
|
early captchas
|
5 years ago |
fatchan
|
e7dc699cbc
|
use temp files in express-fileupload, new SVG icons, make room for captcha
|
5 years ago |
fatchan
|
6a24dac9bc
|
style touch ups
|
5 years ago |
fatchan
|
7a14464704
|
togglable action footers
|
5 years ago |
fatchan
|
8e378bb160
|
omitted images and reply count with thread previews
|
5 years ago |
fatchan
|
c1468e74a0
|
gulp to minify, remove static file serving -- using nginx instead
|
5 years ago |
fatchan
|
82bc97ea3f
|
way to delete banners
|
5 years ago |
fatchan
|
92f8e993d9
|
banner uploads. no listing or deleting yet. gotta sleep
|
5 years ago |
fatchan
|
b0f09621b9
|
capcodes
|
5 years ago |
fatchan
|
9792f123d5
|
put boards in a map
|
5 years ago |
fatchan
|
d5870187bc
|
global and board bans/reports separated, improved action selection form
|
5 years ago |
fatchan
|
e80e9e4452
|
differentiate between report reason and ban reason, improve actions form, renamed some stuff
|
5 years ago |
fatchan
|
ff4f6c4758
|
stop calling that a model
|
5 years ago |
fatchan
|
529bc5e91d
|
option to preserve post in ban + show bans on manage page
|
5 years ago |
fatchan
|
db963d4607
|
global and board IP bans, improved error handling, improved permissions checks
|
5 years ago |
fatchan
|
b42a7eafdf
|
rename, restructure api vs forms naming + correct delete permissions
|
6 years ago |
fatchan
|
e00c6d2fff
|
Basic registration and login with model and controllers
|
6 years ago |