Thomas Lynch
bbd0018a03
Okaaaay dude
4 years ago
Thomas Lynch
1df5719cdf
ACTUALLY fix the stupid country code bug
4 years ago
Thomas Lynch
e87754f67e
reference #256 unique message per board/thread option
...
strips quote, so starting post with quote isnt considered unique
4 years ago
Thomas Lynch
6f1e27833d
Fix dumb country library putting multiple names for some countries, causes issue with country names on front and backend
4 years ago
Thomas Lynch
7a3943c447
patch messages length check for CRLF vs just LF, because browsers dont count CRLF as 2 characters like the server does (and like it technically is). this will happen for other fields too, but message is the only one that really matter close #269
4 years ago
Thomas Lynch
35a6ef5ff7
ref #263 video thumbnail improvements and use ffmpeg
4 years ago
Thomas Lynch
6c0d4271ec
close #263 option to make >thumbSize gif images have animated thumbnails, smaller gifs always static
4 years ago
Thomas Lynch
080dc3f660
Bugfix not showing post file size on express server .render('d pages
4 years ago
Thomas Lynch
0fc7535a8c
Allow minutes and seconds in ban time inputs, allow 0 times (0s), and make the form reset not apply to settings form to be a bit less jarring
4 years ago
Thomas Lynch
a2fa19742d
configurable flood timers close #255
4 years ago
Thomas Lynch
a6653fbad9
How long has delete ip in thread been broken?
4 years ago
Thomas Lynch
f9e15e23e8
option for boards to enforce unique files board wide or per thread
4 years ago
Thomas Lynch
23b2858333
Make video thumbnail position work properly for webms, and make it configurable with new option videoThumbPercentage
4 years ago
Thomas Lynch
18b58202e7
show last active date for accounts in globalnamage accounts page close #236
...
NOTE: based on last time session was refreshed and updated from db ~1h, or when a user logs in
4 years ago
Thomas Lynch
4c9e925387
express-session is dumb, and so am i. does this even make a difference?
4 years ago
Thomas Lynch
a8ede39f80
secureCookies only try to set secure:true when x-forwarded-proto is https closes #223
4 years ago
Thomas Lynch
0d609623e3
make haspermsmiddleware actually cache params
4 years ago
Thomas Lynch
73fa1b313e
Add a better maxfiles message, a little tweak for TOR, and add it to banner uploads closes #225
4 years ago
Thomas Lynch
24574862a2
Add file-type moodule to check file mime types strictly, with 2 optiosn in config about it
...
Update express-fileupload dependency to clean tempfiles on numFilesLimitHandler
Add a proper error message for max num files instead of allowing unlimited and limiting in board post method
4 years ago
Thomas Lynch
473955fd35
Remove test
4 years ago
Thomas Lynch
b20ca7cc20
Capcode input changes reference #222
...
If a user is board owner/mod, use higher capcode only if explicitly entered, else use board owner/mod capcode
Strip extra repititions
Default back to stafflevel for perm if theres a mismatch
4 years ago
Thomas Lynch
f4910dcf7e
bugfix re: thing i'm trying in 1399dda5fd
4 years ago
Thomas Lynch
aac58afa16
fix broken helper tasks
4 years ago
Thomas Lynch
1399dda5fd
Json routes will hit backend & get 404'd there,
...
allows for pages with missing json that arent prebuilt to build when json route is hit,
without requiring html pageload first better for api
4 years ago
Thomas Lynch
044a9bf490
basic video link embed button script, can be extended for more providers easily
4 years ago
Thomas Lynch
1713291ec7
Unbreak code blocks after new dice roll fix
...
The splitregex in the markdown function didnt include ther ```'s in the match, because it doesnt include them in the code block
So when the prepare function ran, and joined the text back together, it wouldn't have any ```'s, so the code blocks would never be split or rendered.
So quick fix was add a second one that includes the ```'s when doing the dice prepare function, so it wont break the code blocks
references #214
4 years ago
some random guy
04b2b21d95
fix dice roll math
...
In the old implementation, if you had for example 2 dice, you could only roll
even numbers, which is clearly wrong.
Also reduced the max numdice to 99 to not DoS the server with large numdice
values.
4 years ago
some random guy
5a093ce936
do not reroll dice when re-rendering markdown
4 years ago
Thomas Lynch
b4d38a6413
floor should be before that check
4 years ago
Thomas Lynch
0176e4b339
Fix typo in text captcha, and force ints in randomrange
4 years ago
Thomas Lynch
1a6307482e
small refactor, put rng in separate file and not duplicated in captcha generators
4 years ago
Thomas Lynch
1ffe225fbb
small math error
4 years ago
Thomas Lynch
536aecffcc
Bug in RNG causing blocking, and make captcha show properly in modal for mobile
4 years ago
Thomas Lynch
dcc93f75fc
Bugfix impossible grid captcha references #209
4 years ago
Thomas Lynch
646cc551b7
More configuration and bit less ugly config layout for captcha
4 years ago
Thomas Lynch
387a72572c
Delete old unused handler, actually
4 years ago
Thomas Lynch
26815fe8f1
dnsbl change, dont know why I did it like that before, lol
4 years ago
Thomas Lynch
0508df1cf7
Faq template change
4 years ago
Thomas Lynch
cb4c74b7cf
less dumb logic for the captcha loop and make it a bit stronger
4 years ago
Thomas Lynch
14dc090e08
Migration, and a change that will make it not get completely destroyed by ddos over TOR
4 years ago
Thomas Lynch
60d36bbb6a
Make a bit more maintainable, support different captcha types with some config options
4 years ago
Thomas Lynch
f751436ae4
Tweak different captcha
4 years ago
Thomas Lynch
51084e1bc0
Test a different captcha
4 years ago
Thomas Lynch
28fdb8af81
small refactor, make captcha check separate. should be eaasier to add different captchas now
...
fix conditions for when to render bypass vs message page on failed captchas
use crypto timingsafeequal for comparing input to answer
4 years ago
Thomas Lynch
8e30513af1
remove some useless logic
4 years ago
Thomas Lynch
81fe9787dd
no need for dnsbl on tor user
4 years ago
Thomas Lynch
09e0bcb518
references #209 , add optional google recaptcha. implementation could use some polish, but it will work for now.
4 years ago
Thomas Lynch
78f68f8baa
clear tempfiles in the pre bypass check because it might be after handlePostFilesEarlyTor
4 years ago
Thomas Lynch
f1db4f7317
Fix post history for tor user and remove manual addban form from non-global manage pages (for now)
4 years ago
Thomas Lynch
786f5a2ffa
Bugfix for repeated getting new bypass when tor user didnt need one. not necessarily a big problem but it means they would keep getting new ids. this could actually be leveraged for a scuffed auto-refresh system in future
4 years ago