harmacist/vichan
1
0
Fork 0
forked from GithubBackups/vichan
Code Pull Requests Activity
4,963 Commits 25 Branches 28 Tags
Commit Graph

334 Commits

Author SHA1 Message Date
Zankaria
843e31ff91 pages.php: supply multiple DNS names to IP page, if present 2025-04-24 17:29:36 +02:00
Zankaria
456356ad9a pages.php: use DnsDriver 2025-04-24 17:29:36 +02:00
Lorenzo Yario
e2a7ad2a3a
Merge pull request #922 from Zankaria/total-recent-posts 
Change recent_user_posts to be per page instead of per-board
 2025-04-18 10:37:09 -07:00
Lorenzo Yario
578a16c513
Merge pull request #925 from Zankaria/recent-posts-validation 
pages.php: better input validation in recent_posts page
 2025-04-18 10:36:38 -07:00
Zankaria
e3fdb8f3fe auth.php: use php 8.4 cost for bcrypt 2025-04-16 22:14:35 +02:00
Zankaria
93fc8f713b auth.php: remove unused global 2025-04-16 21:26:54 +02:00
fowr
a16f02ce51 auth.php: cleanup ununsed function 2025-04-16 21:26:54 +02:00
fowr
92ea93cec5 auth.php: no need to repass version anymore in test_password 2025-04-16 21:26:54 +02:00
Zankaria
69144087be auth.php: use pre-hashing for BCRYPT 2025-04-16 21:26:52 +02:00
fowr
0b560b2353 auth.php: use password_hash with bcrypt and password_verify for login 2025-04-16 19:09:06 +02:00
Zankaria
d91ae6e3e5 auth.php: use secure salt source, use a cryptographically secure hashing algorithm for login tokens 2025-04-16 14:58:09 +02:00
Zankaria
ed9eb1759a pages.php: interpret recent_user_posts as total 2025-04-14 22:28:04 +02:00
Zankaria
66e44b01c7 pages.php: better input validation in recent_posts page 2025-04-14 18:10:49 +02:00
Lorenzo Yario
3f467aacdf
Merge pull request #895 from Zankaria/user-posts 
Browse users by password hash + refactor
 2025-03-09 20:39:46 -05:00
Zankaria
3a8a7f13bf pages.php: fix wrong variable 2025-03-03 18:21:45 +01:00
Zankaria
04a9f138aa pages.php: add mod_user_posts_by_passwd implementation 2025-03-01 23:25:13 +01:00
Zankaria
f88c8fcd93 pages.php: use UserPostQueries for mod_page_ip 2025-03-01 23:25:13 +01:00
Zankaria
886fd074ed pages.php: use IpNoteQueries 2025-02-21 12:16:38 +01:00
Zankaria
c82a669934 pages.php: use ReportQueries 2024-12-11 16:39:10 +01:00
Lorenzo Yario
58f7302936
minor bugfix relating to auth when changing your own username 2024-10-20 12:03:15 -07:00
Zankaria
243e4894fa Use CacheDriver and Context for mod.php and mod pages 2024-10-10 23:10:05 +02:00
Zankaria
0e8909ac4e pages.php: fix whitespace indentation 2024-10-06 11:33:20 +02:00
Zankaria
6c6ec65b02 pages.php: extract $mod array 2024-10-06 11:23:27 +02:00
Zankaria
23f3d15a52 extract create_pm_header 2024-10-06 10:41:32 +02:00
Zankaria
e6133ef00f auth.php: passthrough the context 2024-10-01 22:16:54 +02:00
Lorenzo Yario
428a686f47
fix minor exploit with banning 2024-09-21 14:39:13 -07:00
Zankaria
1191dfb193 pages.php: add copy fallback in case of already existing file when moving thread. 2024-08-18 01:06:45 +02:00
Lorenzo Yario
84a3bedd18
Merge pull request #796 from Zankaria/mod-use-di 
Add the context dependency injection container to the mod pages
 2024-08-16 21:43:07 -07:00
Zankaria
d408ed0413 theme.php: rename functions to snake_case 2024-08-16 18:33:02 +02:00
Zankaria
81aebef2f4 pages.php: use modern array syntax for new empty arrays 2024-08-15 17:21:41 +02:00
Zankaria
b64bac5eb8 pages.php: use the context to access the configuration array 2024-08-15 17:13:43 +02:00
Zankaria
524ae94624 mod.php: pass the context to the mod pages 2024-08-15 17:13:34 +02:00
Zankaria
d1b06acbe9 mod.php: remove last mod_page_* handler, use only mod_* for mod pages 2024-08-11 15:45:24 +02:00
Zankaria
75714505a0 config.php: add auto_maintenance configuration option 2024-08-11 12:04:10 +02:00
Zankaria
36476f6341 bans.php: split find implementations 2024-08-11 11:53:27 +02:00
Zankaria
e4707ee2a8 Delete stale unreferenced ban appeals via foreign key constrain 2024-08-11 10:20:02 +02:00
Weav
fee67b6719
Merge branch 'dev' into hash-passwords 2024-06-20 13:21:05 +00:00
Zankaria
88a48befd4 pages.php: use link to create hardlinks instead of full file copy for thread moving 2024-05-23 00:05:43 +02:00
Zankaria
d700aa0522 Rework secure_login_only configuration option to allow secure default and header checking 2024-05-11 16:02:15 +02:00
Zankaria
4c731ba241 auth.php: check if cookie exists 2024-05-11 00:51:02 +02:00
Zankaria
b90d6f5680 Fix broken login 2024-05-11 00:04:20 +02:00
Lorenzo Yario
12bcc63753
Merge branch 'dev' into improve-auth 2024-05-03 14:00:50 -07:00
Zankaria
1b6d6f38f1 auth.php: add typing 2024-04-30 19:47:31 +02:00
Zankaria
da4842eb7b auth.php: disallow unencrypted logins by default 2024-04-30 19:45:15 +02:00
Zankaria
0c51d46cdf auth.php: check if the cookie is set before deletion 2024-04-30 19:45:15 +02:00
Zankaria
9db8444c3c auth.php: use secured names and directives for mod cookies 2024-04-30 19:44:11 +02:00
Zankaria
abdf82e1c8 auth.php: remove obsolete code 2024-04-30 19:44:11 +02:00
Zankaria
b7eed34b83 functions: split off time formatting functions 2024-04-30 15:56:53 +02:00
Zankaria
39ce0e7dfc auth.php: trim 2024-04-30 11:36:11 +02:00
Lorenzo Yario
429ae8e352
Revert "Remove check-updates functionality" 2024-04-03 12:15:06 -07:00