Thomas Lynch
daf89c5548
||
4 years ago
Thomas Lynch
9be5fbc462
add some locals to server app.locals that were only included in the render helper
4 years ago
Thomas Lynch
1c5f14e419
This did not go as planned
4 years ago
Thomas Lynch
60cddef23a
slowly switch configs to db and only a small amount of things like secrets remain in a config file
4 years ago
Thomas Lynch
9ad03e096a
make subscriber only start when there is any listener so its not needed in gulptasks for example
...
change how to close redis since there are more than 1 connection for other thigns
4 years ago
Thomas Lynch
e9ca4d7e21
reload app locals on config change
4 years ago
Thomas Lynch
de75523ddc
start making the config able to reload, for now just clearing require.cache
...
also made some of the app.locals load from getconfig, not added to callbacks in redis yet
4 years ago
dolphin
d51aa143a8
Add in hcaptcha support.
4 years ago
Thomas Lynch
ba4ea5834e
Better error handler, and catch some more errors from body parser for urlencoded forms
4 years ago
Thomas Lynch
5274abb8ba
add formatsize helper to server
4 years ago
Thomas Lynch
080dc3f660
Bugfix not showing post file size on express server .render('d pages
4 years ago
Thomas Lynch
646cc551b7
More configuration and bit less ugly config layout for captcha
4 years ago
Thomas Lynch
60d36bbb6a
Make a bit more maintainable, support different captcha types with some config options
4 years ago
Thomas Lynch
09e0bcb518
references #209 , add optional google recaptcha. implementation could use some polish, but it will work for now.
4 years ago
Thomas Lynch
b0797f0418
Beta testing .onion support
...
***DO NOT USE***
This still has some issues and needs testing.
- needs updated nginx configs added, expects "TOR" in the x-country-code header under a separate vhost
- need to make sure bans work properly still
- need to implement system to prevent captcha ddos, since i cant just to IP ratelimit now
- im 99% sure post history of tor users is broken if viewed by non-global staff
- manual input ban form will also be broken for non-global staff
- could still use some improvement on the middleware having a little more complicated flor for tor users
But for the most part it works. Basically it will use the bypass id of a tor user as their "ip".
4 years ago
some_random_guy
0f20646833
use `redirect: false` in express.static
...
This prevents prolems like `/` giving 404 in devel mode (when
`static/html/index.html` is missing) or `/captcha` redirecting to
`/captcha/` (then breaking).
4 years ago
some random guy
cfc97b8101
do not read session when not needed
4 years ago
Thomas Lynch
39bbedfe53
Get session in websocket
4 years ago
fatchan
9f9d8387f9
Exit if migrateVersion outdated close #163
4 years ago
fatchan
84b9bdb578
Dont show webring link in navbar if disabled reference #145
4 years ago
fatchan
dfc453ef81
fixes #137 , not even a regression. i dont think that ever worked
4 years ago
fatchan
3bda3aa596
only use processip middleware where necessary references #121
4 years ago
fatchan
ab7ac2558a
add short commit hash as v?= query of important scripts and css for updates, to cache bust on updates for public site
4 years ago
fatchan
e814b1904f
better graceful server shutdown
4 years ago
fatchan
a9d08b1c28
early ver of per-board recents and changed iphash code
5 years ago
fatchan
5be8431d24
supporting stuff for modals, scripts, and urlencoded handling in forms.js
5 years ago
fatchan
73203db312
start option for unhashed ips
5 years ago
fatchan
3a5f4c8ff5
rolling: true for session cookies to not expire for active users
5 years ago
fatchan
1840265955
logs optional, add a config for it
5 years ago
fatchan
122d0f0a9c
urlencoded extended mode should be false
5 years ago
fatchan
2c81037cb3
various minor changes and improve forms script for future use
5 years ago
fatchan
a7c698fb67
fix file number check in post controller prevent error in spam check
5 years ago
fatchan
9ce66a303d
change config to js file so it an include comments
5 years ago
fatchan
6ef6567370
add a maxage to sessioncookies so they are not infinite but session-only
5 years ago
fatchan
f7efa9f34f
option for insecure cookies in production mode, and add missing stuff to example config
5 years ago
fatchan
07a51b3598
use net module in ip process handler
5 years ago
fatchan
970f0f8316
add all script to most pages, next to remove hide script from unnecessary pages
5 years ago
fatchan
ac0cb93b06
remove themes from footer, prep for settings UI, add code theme to board settings
5 years ago
fatchan
5dd1c9e7af
captcha fixes and serve jsons with nodejs in dev mode
5 years ago
fatchan
d20af4285b
statics for non prod before generating ones
5 years ago
fatchan
7919d5c4f5
fix custompages in dev environment
5 years ago
fatchan
74e267cc10
more changes to make possible to run without nginx for dev purposes
5 years ago
fatchan
b6a8703621
some changes to make it at least _possible_ to run in dev without https
5 years ago
fatchan
8d82cad62d
add a board list with pages that also shows webring boards
5 years ago
fatchan
48e761be46
add ip range bans
5 years ago
fatchan
485dc802aa
improve how errors shown when making a post, use modals and fix ban seen marking
5 years ago
fatchan
6aa406fc29
close websockets so the server doesnt hang when trying to shutdown
5 years ago
fatchan
dd495b0e6d
add sfw boards, update homepage and webring to support and show this
5 years ago
fatchan
0a95ff4b16
socket.io to make posting _actually_ live instead of polling the api. way mroe efficient
5 years ago
fatchan
d9559c76e6
fix exploit; no longer use extended body parser mode and remove unneeded array prefix from array body fields, since we use different lib to parse body now. also upgrade express and dont allow body for modlog actions to be entered into modlog, replace with non user controlled text
5 years ago