Thomas Lynch
77b8ae5540
Overboard catalog reference #286
4 years ago
Thomas Lynch
d12bed3dc2
add noscript warning to hcaptcha
...
add some missing checks for google to also check captcha type
adjust frontend scripts and gulpfile styling to support hcaptcha
4 years ago
ne0n
6f090adabe
Fix typo
4 years ago
Thomas Lynch
fed92d6621
separate trigger action for when tph vs pph is exceeded
...
option for lock reset and captcha reset, to pick what you want the lock mode and captcha mod to go back to at the end of the hour
also fix avuln in boardsettings where pph trigger/mode settings were not range checked
4 years ago
some random guy
124de4351a
board edit: take board name & description max length limits in config file into consideration
4 years ago
Thomas Lynch
d7de091809
~ edits dont open in new tab, and redirect back to page or post when click 'ok' in modal reference #272
4 years ago
Thomas Lynch
67026fcc0c
- Remove some hardcoded limits on forms
...
~ Make limit for post actions configurable. needed to still be limit for antispam/performance
+ Add config for total banners per board
4 years ago
Thomas Lynch
7a3943c447
patch messages length check for CRLF vs just LF, because browsers dont count CRLF as 2 characters like the server does (and like it technically is). this will happen for other fields too, but message is the only one that really matter close #269
4 years ago
Thomas Lynch
a2d34ac4af
close #265 global and board setting to disable .onion file posting
4 years ago
Thomas Lynch
0fc7535a8c
Allow minutes and seconds in ban time inputs, allow 0 times (0s), and make the form reset not apply to settings form to be a bit less jarring
4 years ago
Thomas Lynch
97ba9247a8
bug in reply/file requirement settings, NOT related to issue reported in >>>/t/2#334 on demo site
4 years ago
Thomas Lynch
f2df1aea4b
Global manage page for boards. Shows all boards including unlisted, and marks abandoned boards
4 years ago
Thomas Lynch
3e2b361607
remove useless hasPerms(4) (4=not logged in or non-staff context) from form middlewares that already isLoggedIn e.g. create board and resign from board
4 years ago
Thomas Lynch
a89c25af24
Let people actually resign from boards
4 years ago
Thomas Lynch
34cb073a11
Typos in self-delete account messages
4 years ago
Thomas Lynch
18240670cf
Let users self-delete their account, provided they dont hold any staff positions closes #240
4 years ago
Thomas Lynch
25ce30dde8
fix issue posting bypass for non tor
4 years ago
Thomas Lynch
a22ad89f48
share same route for boards html/json, like board/thread/catalog
4 years ago
Thomas Lynch
1399dda5fd
Json routes will hit backend & get 404'd there,
...
allows for pages with missing json that arent prebuilt to build when json route is hit,
without requiring html pageload first better for api
4 years ago
Thomas Lynch
b597ac8159
ability to resign from a board you mod/own. previously you could not leave a mod position, and you could not leave owner position (unless you transfer) closes #196
4 years ago
Thomas Lynch
14dc090e08
Migration, and a change that will make it not get completely destroyed by ddos over TOR
4 years ago
Thomas Lynch
60d36bbb6a
Make a bit more maintainable, support different captcha types with some config options
4 years ago
Thomas Lynch
09e0bcb518
references #209 , add optional google recaptcha. implementation could use some polish, but it will work for now.
4 years ago
Thomas Lynch
1216e20e56
Fix that for tor
4 years ago
Thomas Lynch
48565133d2
actually, remove that completely for now
4 years ago
Thomas Lynch
f1db4f7317
Fix post history for tor user and remove manual addban form from non-global manage pages (for now)
4 years ago
Thomas Lynch
786f5a2ffa
Bugfix for repeated getting new bypass when tor user didnt need one. not necessarily a big problem but it means they would keep getting new ids. this could actually be leveraged for a scuffed auto-refresh system in future
4 years ago
Thomas Lynch
b0797f0418
Beta testing .onion support
...
***DO NOT USE***
This still has some issues and needs testing.
- needs updated nginx configs added, expects "TOR" in the x-country-code header under a separate vhost
- need to make sure bans work properly still
- need to implement system to prevent captcha ddos, since i cant just to IP ratelimit now
- im 99% sure post history of tor users is broken if viewed by non-global staff
- manual input ban form will also be broken for non-global staff
- could still use some improvement on the middleware having a little more complicated flor for tor users
But for the most part it works. Basically it will use the bypass id of a tor user as their "ip".
4 years ago
some random guy
cd789dba0c
remove unnecessary user object from session
...
It only had a single property, username.
4 years ago
some random guy
cfc97b8101
do not read session when not needed
4 years ago
Thomas Lynch
97ed9a91f0
seemsgood, closes #194
4 years ago
Thomas Lynch
f1abc3c224
Start on selective spoilering references #170 filename stripping references #204
4 years ago
Thomas Lynch
0021ed02cc
Early version of overboard, /all.html. Still needs a small cache and moderation changes to support moderating references #166
4 years ago
fatchan
5c606bf455
add process ip so modlog can be filled, closes #141
4 years ago
fatchan
b4d9411ab4
close #129
4 years ago
fatchan
51562e7cfd
Update example config references #135
4 years ago
fatchan
5c7fc003ad
register.html/create.html hiding based on settings and fix broken captcha quota resetting for some forms references #124
4 years ago
fatchan
3bda3aa596
only use processip middleware where necessary references #121
4 years ago
fatchan
d0bcebd4e3
ratelimit edits references #121
4 years ago
fatchan
4d6937b05f
fix captcha expired bug on create page
4 years ago
fatchan
846bc63706
bump limit
4 years ago
fatchan
9ded8817d9
logout change
4 years ago
fatchan
940cba8837
bugfix report bans
4 years ago
fatchan
3962e7d4dc
fix captcha ratelimit
4 years ago
fatchan
5c43fb5c45
make editing from global recents work
4 years ago
fatchan
4b18607250
moderation from catalog and add mod catalog
4 years ago
fatchan
95ecb50a06
options changes, make unlisted/webring unlisted not opposites
...
make thread creation locking possible, and add it as a captcha option
4 years ago
fatchan
02e4c983d0
raise max selected posts for actions by staff
4 years ago
fatchan
28b64809a6
modlog message and option to show username for edit post
4 years ago
fatchan
89aad64624
add different way to get board for perms check, and fix a dumb oversight and security in edit post. need to rename the bodyexists method maybe
4 years ago