BoHong Li
34c9f07669
refactor(baseRouter.js): Adjust style fit standard
2017-05-08 19:29:06 +08:00
BoHong Li
a7e3c4d535
refactor(auth.js): Remove base path
2017-05-08 19:29:06 +08:00
BoHong Li
d88502e331
refactor(app.js): Move passport serialize and deserialize to auth module
2017-05-08 19:29:06 +08:00
BoHong Li
7ef17fd4e6
refactor(app.js): Extract tooBusy
2017-05-08 19:29:06 +08:00
BoHong Li
768943002c
refactor(app.js): Extract upload image
2017-05-08 19:29:06 +08:00
BoHong Li
689bade730
refactor(app.js): Extract note action
2017-05-08 19:24:38 +08:00
BoHong Li
e2ac73f5a3
refactor(app.js): Extract /me page
2017-05-08 19:24:38 +08:00
BoHong Li
706df11e23
refactor(app.js): Extract history api
2017-05-08 19:24:38 +08:00
BoHong Li
69a9f7ca38
refactor(app.js, auth.js): Extract all auth method to individual modules
2017-05-08 19:24:38 +08:00
BoHong Li
766022378a
refactor(app.js): Extract status pages
2017-05-08 19:24:37 +08:00
BoHong Li
66c68254b4
refactor(app.js): Extract index, 403, 404, 500 pages
2017-05-08 19:24:37 +08:00
BoHong Li
9f1f16c8e3
refactor(app.js): Extract urlencodedParser to utils module
2017-05-08 19:24:37 +08:00
BoHong Li
dee77c459a
refactor(app.js): Extract middleware to module
...
extract check URi is valid, redirect without trailing slashes
2017-05-08 19:24:37 +08:00
BoHong Li
036b2414f3
refactor(logger): Refactor logger.js
...
Use class style implement write interface
2017-05-08 19:24:37 +08:00
LluisArevalo
6bf32afb0b
Use single quotes
2017-05-08 11:00:45 +02:00
LluisArevalo
03ef1bf4f0
Add Content-Type to the images uploaded to AWS S3
2017-05-08 10:22:52 +02:00
BoHong Li
e46874d04a
fix: Other dialect duplicated add index problem
...
Detect is using SQLite to add index
2017-03-28 15:28:33 +08:00
BoHong Li
e26bb0503f
fix: Support SQlite
...
Move 'unique' constraint to another statement (SQLite don't support set unique when addColumn)
2017-03-28 15:16:09 +08:00
BoHong Li
6f14822413
fix: Add missing migration
2017-03-27 19:23:00 +08:00
BoHong Li
66fc817ad4
fix: Fixed sequelize-cli db:migration cannot stop when occur error
...
Up and Down method must return a Promise.
breaking changes: docker-hackmd cannot initialize, because db:migration will fail
2017-03-24 11:26:04 +08:00
Wu Cheng-Han
dde6e622a4
Fix front-end constants generation not getting config properly
2017-03-23 20:00:48 +08:00
Wu Cheng-Han
7e3b74d0da
Mark as 0.5.1
2017-03-23 00:22:44 +08:00
Wu Cheng-Han
448b006194
Update to generate front-end constants on server startup
...
To avoid extra webpacking on changing configs and follow the 12 factor app
2017-03-20 01:39:09 +08:00
Wu Cheng-Han
4a1d08c653
Fix strip null byte in model should cast to string to use replace function
2017-03-15 22:12:24 +08:00
Wu Cheng-Han
506a381eca
Add config option for gitlab api scope and auto adapt gitlab snippet feature on it
2017-03-14 18:04:23 +08:00
Wu Cheng-Han
baf13072c1
Fix update doc from filesystem cause redundant authorship stringify
2017-03-14 17:11:52 +08:00
BoHong Li
5870d988b5
Use strict mode in all backend files
...
add ‘use strict’ in all backend file
2017-03-14 13:02:43 +08:00
BoHong Li
4889e9732d
Use JavaScript Standard Style
...
Introduce JavaScript Standard Style as project style rule,
and fixed all fail on backend code.
2017-03-08 18:45:51 +08:00
BoHong Li
8f1c97f4a4
Fixed Syntax Error
2017-03-04 17:06:11 +08:00
Raccoon
48592d692c
Merge branch 'master' into feature/addSecrets
2017-03-03 09:22:35 +08:00
Wu Cheng-Han
2aee0f267c
Fix user profile photo might not replace to proper size
2017-02-18 20:07:15 +08:00
Mike
d29aff6505
first envs then the config
...
or docker -e will not work
2017-02-15 10:22:38 +01:00
NV
5375fe5779
Add validation to defaultpermission in config
2017-02-10 11:46:10 +09:00
NV
0a7adaf35d
Add default permission config
2017-02-10 10:16:38 +09:00
Wu Cheng-Han
1cc27e1794
Fix ldap config not initialize properly
2017-02-07 22:31:38 +08:00
Wu Cheng-Han
bbbf64aae4
Fix HMD_LDAP_TLS_CA not passing correctly and update README.md
2017-02-07 21:17:05 +08:00
Sheogorath
a8b99638b2
Add basics for secret management by Docker 1.13
...
See https://docs.docker.com/engine/swarm/secrets/
2017-02-07 02:46:23 +01:00
Wu Cheng-Han
8cfbfa4352
Update to add biggerphoto on parsing user profile
2017-02-03 21:48:36 +08:00
Wu Cheng-Han
ef0ac7768d
Update realtime to use timer to avoid memory leaks on busy tick
2017-02-03 21:47:38 +08:00
Wu Cheng-Han
92ad67b813
Update to remove history cache to lower application coupling
2017-02-03 21:39:08 +08:00
Yukai Huang
74b04d08b5
Merge branch 'master' into es6-integration
2017-01-21 12:55:45 +08:00
Wu Cheng-Han
6e8ff3de23
Fix redundant parameter to removeColumn in db migration scripts
2017-01-21 12:53:18 +08:00
Yukai Huang
4bbe035beb
Merge branch 'master' into frontend-next
2017-01-21 12:08:52 +08:00
Wu Cheng-Han
1473437295
Refactor checkViewPermission to fix limited & protected permission check bug and fix code style
2017-01-16 23:47:53 +08:00
Wu Cheng-Han
3c0667813c
Fix missing config in hackmd response
2017-01-16 12:41:34 +08:00
Yukai Huang
a9a38c3d75
Recover config change in 0f833f0
2017-01-15 11:58:00 +08:00
Yukai Huang
c0e8306961
Merge branch 'frontend-next' into t216-refactor-common
2017-01-15 11:33:22 +08:00
Yukai Huang
0f833f099f
Update server google/dropbox config check
2017-01-14 19:05:54 +08:00
Wu Cheng-Han
6be875263a
Fix allowemailregister config typo and default should be true
2017-01-12 23:53:22 +08:00
Wu Cheng-Han
3ee65cd38e
Fix for limited and protected permissions should forbid guest in realtime events
2017-01-12 23:45:51 +08:00
Max Wu
4851098477
Merge pull request #317 from SISheogorath/master+allowEmailRegister
...
Add `allowemailregister` option
2017-01-12 23:37:28 +08:00
Sheogorath
747629e549
Add allowemailregister
option
2017-01-12 13:54:45 +01:00
Wu Cheng-Han
5f65795e79
Fix permission order and keep wording consistency
2017-01-12 19:04:17 +08:00
Wu Cheng-Han
7e191acbde
Fix author creation in operationCallback might cause unique constraint validation error
2017-01-12 17:18:24 +08:00
Max Wu
a8068d38d5
Merge pull request #313 from elct9620/feature/disable_anonymous_view
...
WIP: Add options to limit anonymous view note
2017-01-10 20:23:47 +08:00
蒼時弦也
7b02c48d93
Adjust permission order to more clarly
2017-01-10 14:13:30 +08:00
蒼時弦也
be7696170f
Fix syntax when use case
2017-01-10 10:19:18 +08:00
蒼時弦也
89b8ddeaba
Add limited and protected permission
2017-01-10 10:02:37 +08:00
蒼時弦也
c21fb8e2a0
Recovery tariling spaces
2017-01-10 09:35:21 +08:00
蒼時弦也
f8e5b54767
Remove temporary change
2017-01-10 09:32:44 +08:00
neopostmodern
ff545b2688
Allow displaying LDAP provider name on sign-in modal
2017-01-09 12:49:23 +01:00
Max Wu
b13635aac9
Merge pull request #279 from alecdwm/ldap-auth
...
Support for LDAP server authentication
2017-01-09 00:49:40 +08:00
alecdwm
94abfaba7c
removed comma
2017-01-06 07:21:59 +01:00
alecdwm
e4fe93249f
dark avatar backgrounds only
2017-01-06 07:18:22 +01:00
alecdwm
b044c2ae19
Use randomcolor not seedrandom for avatar backgrounds
2017-01-06 07:08:07 +01:00
alecdwm
01361afa7a
Profile pictures for LDAP users
2017-01-06 05:37:40 +01:00
蒼時弦也
1fbecbb03d
Fix anonymouse view permission check
2017-01-05 23:37:10 +08:00
蒼時弦也
aaf1ff4b2f
Add limit for constrain anonymous view note
2017-01-05 22:36:40 +08:00
Wu Cheng-Han
c1b5e74cf9
Fix and refactor extracting content using metaMarked directly might lead in invalid object
2017-01-04 23:57:16 +08:00
Wu Cheng-Han
bd4335964d
Mark as 0.5.0
2017-01-02 11:19:01 +08:00
Wu Cheng-Han
10a8448c6a
Fix yaml metadata description not able to show
2017-01-02 11:13:41 +08:00
Wu Cheng-Han
b1ec3ba748
Refactor data processing to model definition
2017-01-02 11:05:36 +08:00
Wu Cheng-Han
d9e19b6029
Update to remove null byte before saving to DB and remove null byte on changes
2017-01-02 11:05:05 +08:00
Wu Cheng-Han
c3a96ff112
Fix migration script of revision lacks of definition of primary key
2017-01-02 11:00:40 +08:00
Wu Cheng-Han
99628a5662
Fix to not use diff_cleanupSemantic, bug report refer to https://code.google.com/p/google-diff-match-patch/issues/detail?id=67
2017-01-02 11:00:08 +08:00
Wu Cheng-Han
f6d8e3ab00
Remove LZString compression for data storage
2017-01-02 10:59:53 +08:00
Wu Cheng-Han
c904083d1f
Remove manual LZString compression for partial socket io event data
2017-01-02 10:52:47 +08:00
bananaappletw
96fb3743f3
Use dburl to configurate
2016-12-22 21:51:48 +08:00
bananaappletw
3a091ff9a5
Simplify code for heroku
2016-12-22 19:42:00 +08:00
bananaappletw
acaeef172a
Fix #293
2016-12-22 13:23:17 +08:00
Florian Rhiem
fdea226159
Fixed typo: anonmyous
2016-12-21 14:36:54 +01:00
Wu Cheng-Han
d140a140de
Fix possible user is undefined in realtime events
2016-12-20 20:33:46 +08:00
Wu Cheng-Han
ae2db1da16
Fix email option in config not parse correctly
2016-12-20 10:47:37 +08:00
Wu Cheng-Han
39521f25a7
Mark as 0.4.6
2016-12-19 17:30:33 +08:00
Wu Cheng-Han
62eccd48e5
Try to fix when server have heavy loading cache might not update to db properly
2016-12-18 22:52:30 +08:00
Wu Cheng-Han
5bb3de2675
Add support of allow free url config option with correspond modifications
2016-12-16 15:38:05 +08:00
Wu Cheng-Han
4b7b902806
Fix typo
2016-12-16 15:37:01 +08:00
Wu Cheng-Han
5c7eb48319
Add support of allow anonymous config option with correspond modifications
2016-12-15 14:11:23 +08:00
alecdwm
3491f97f7e
LDAP auth use email if provided
2016-12-14 13:24:25 +01:00
alecdwm
3007163799
Tokens not required for ldap auth
2016-12-14 12:38:03 +01:00
alecdwm
6ba9a2f039
Added HMD_LDAP_TLS_CA env variable
2016-12-14 11:49:33 +01:00
alecdwm
02e9927714
Initial support for LDAP server authentication
...
Limitations as of this commit:
- tlsOptions can only be specified in config.json, not as env vars
- authentication failures are not yet gracefully handled by the UI
- instead the error message is shown on a blank page (/auth/ldap)
- no email address is associated with the LDAP user's account
- no picture/profile URL is associated with the LDAP user's account
- we might have to generate our own access + refresh tokens,
because we aren't using oauth. The currently generated
tokens are just a placeholder.
- 'LDAP Sign in' needs to be translated to each locale
2016-12-13 22:41:07 +01:00
Yukai Huang
5282bf491e
Update sequelize init condition
2016-12-12 11:12:59 +08:00
Yukai Huang
74c1da4536
Simplify output with sequelize database argument
2016-12-12 10:36:24 +08:00
Wu Cheng-Han
a73d9ce39e
Update to support optional email register and signin
2016-12-02 01:58:14 +08:00
Max Wu
bd3d4958e4
Merge pull request #248 from hackmdio/file-upload-options
...
Support other options for image uploading
2016-11-27 10:54:00 +08:00
Wu Cheng-Han
71a356552f
Update to auto generate meta description based on content in publish note and slide
2016-11-26 23:04:29 +08:00
Wu Cheng-Han
9d4ede4cff
Fix possible XSS in yaml-metadata and turn using ejs escape syntax than external lib [Security Issue]
2016-11-26 22:55:31 +08:00
Wu Cheng-Han
f86a9e0c4b
Fix slide might trigger script when processing markdown which cause XSS [Security Issue]
2016-11-26 22:46:08 +08:00
Wu Cheng-Han
c671d54d67
Add dmp worker to leverage CPU intensive calculation to child process
2016-11-18 12:09:58 +08:00