Commit Graph

635 Commits

Author SHA1 Message Date
Yassine Guedidi babe87c33b Fix createClient() depreciation 2023-12-25 10:39:25 +01:00
Kevin Decherf 4a5f769428 Merge remote-tracking branch 'origin/2.6' into port/2.6.7
Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2023-10-25 22:09:21 +02:00
Jeremy Benoist fa107116cc
Prepare 2.6.7 release 2023-10-02 14:14:34 +02:00
Kevin Decherf aa06e8328e ConfigController: remove 2fa cancel step
This change annoys me, however this endpoint was anyway problematic:
- it was vulnerable to a CSRF attack, see GHSA-56fm-hfp3-x3w3
- it is useless as we don't really handle a two-steps validation

Still, if you send an incorrect code during the "activation" phase a
flash error will pop up but the 2fa will stay enabled. This need rework
when possible.

Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2023-09-30 00:49:58 +02:00
Kevin Decherf 5240684be9 ConfigController: move OTP endpoints to POST method only
Fixes GHSA-56fm-hfp3-x3w3

Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2023-09-30 00:49:58 +02:00
Jeremy Benoist c6ff0bc691
Remove remaining MOBI stuff 2023-08-23 08:49:56 +02:00
Nicolas Lœuillet b1752b619d Add display article configurator (font family, font size, line height and max width) 2023-08-22 13:02:50 +02:00
Nicolas Lœuillet 741db06447
Merge pull request #6761 from wallabag/add-shaarli-import
Add Shaarli and Pocket HTML imports
2023-08-22 10:18:17 +02:00
Nicolas Lœuillet 2af48b8174 Add Shaarli and Pocket HTML imports 2023-08-22 08:02:07 +02:00
Yassine Guedidi 8ef6a14652 Resolve self depreciation 2023-08-22 01:43:00 +02:00
Yassine Guedidi 1ce5164e70 Make testSaveIsArchivedAfterPatch and testSaveIsStarredAfterPatch consistent 2023-08-22 00:03:36 +02:00
Yassine Guedidi a3b64611f8 Fix testSaveIsStarredAfterPatch 2023-08-22 00:03:36 +02:00
Nicolas Lœuillet 981d6a47da
Merge pull request #6793 from wallabag/fix-4414
Fix search when search term has useless space
2023-08-21 20:19:16 +02:00
Nicolas Lœuillet 4b338afa40
Merge pull request #6771 from wallabag/add-annotations-in-search
Add articles which have annotations with search term in results
2023-08-21 20:19:00 +02:00
Nicolas Lœuillet 1c2190fd68
Merge pull request #6769 from wallabag/add-not-parsed-boolean
Add `isNotParsed` field on Entry entity
2023-08-21 20:18:44 +02:00
Nicolas Lœuillet 407dd48ed0
Merge pull request #6767 from wallabag/remove-demo
Remove (useless) demo mode
2023-08-21 20:18:18 +02:00
Nicolas Lœuillet 397ad455e6
Merge pull request #6655 from wallabag/add-command-to-update-picture-url
Add command to clean pictures path when changing instance URL
2023-08-21 20:17:40 +02:00
Nicolas Lœuillet 88c9df9b80 Add command to clean pictures path when changing instance URL 2023-08-21 13:17:13 +02:00
Nicolas Lœuillet cbcfa69c05 Remove (useless) demo mode
Fix #6671
2023-08-21 13:16:56 +02:00
Nicolas Lœuillet 20578f0b8e Add isNotParsed field on Entry entity
Fix #4350
2023-08-21 13:16:42 +02:00
Nicolas Lœuillet 18e1106f76 Add articles which have annotations with search term in results
Fix #3635
2023-08-21 13:16:36 +02:00
Nicolas Lœuillet 6ff00315d0 Fix search when search term has useless space 2023-08-21 13:16:14 +02:00
Yassine Guedidi 0f17a8cf8a PHPStan level 3 2023-08-21 12:03:38 +02:00
Nicolas Lœuillet ffcc5c9062
Merge pull request from GHSA-gjvc-55fw-v6vq
Replace GET way to POST way to delete API client
2023-08-21 11:08:47 +02:00
Nicolas Lœuillet 78b0b55c40
Merge pull request from GHSA-p8gp-899c-jvq9
Replace GET way to POST way to reset data user
2023-08-21 11:08:24 +02:00
Nicolas Lœuillet 383dcc5c45
Merge pull request #6119 from Spoons/feat_referer_to_session_redirect
Fix: Use Session instead of Referrer for Redirection
2023-08-21 10:32:03 +02:00
Nicolas Lœuillet c3d1f92278 Replace GET way to POST way to delete API client 2023-08-09 21:54:40 +02:00
Nicolas Lœuillet a9893d754f Replace GET way to POST way to reset data user
Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2023-08-09 21:39:03 +02:00
Kevin Decherf 0ccbd653fa
Merge pull request #6812 from yguedidi/make-crawler-extract-get-an-array
Make Crawler::extract get an array
2023-08-09 11:03:03 +02:00
Kevin Decherf 815158fefa
Merge pull request #6813 from yguedidi/replace-client-by-kernelbrowser
Replace Client by KernelBrowser
2023-08-08 23:36:06 +02:00
Kevin Decherf 807d473564
Merge pull request #6811 from yguedidi/replace-getresponseevent-by-requestevent
Replace GetResponseEvent by RequestEvent
2023-08-08 16:53:18 +02:00
Yassine Guedidi ec33ec14e5 Replace Client by KernelBrowser 2023-08-08 02:55:35 +01:00
Yassine Guedidi 093003d9af Make Crawler::extract get an array 2023-08-07 22:51:18 +01:00
Yassine Guedidi 58a0ca2622 Replace GetResponseEvent by RequestEvent 2023-08-07 22:34:47 +01:00
Michael Ciociola ced2ea4015
Merge branch 'master' into feat_referer_to_session_redirect 2023-08-06 20:14:44 +00:00
Yassine Guedidi 7d78e2ae06 Ensure the kernel is shut down before calling createClient 2023-08-06 13:48:53 +01:00
Nicolas Lœuillet 5fe5551972 Fix failing randomly test 2023-07-27 07:55:42 +02:00
Nicolas Lœuillet c75d3e6961 Remove twofactor_auth parameter
Fix #6649
2023-07-15 16:18:01 +02:00
Nicolas Lœuillet 6639f7da6d Fix export for same domain entries 2023-06-29 19:59:08 +02:00
Nicolas Lœuillet 28db6c22eb
Fix duplicate tags creation when assigning search results to tag
Fixes #6330
2023-06-17 15:19:59 +02:00
Nicolas Lœuillet 7eddea6ff7
Added test 2023-06-16 14:27:27 +02:00
Nicolas Lœuillet 19322142c3
Fixed testsuite 2023-06-16 14:27:26 +02:00
Simounet e5b72f3123
Fix Stylelint errors 2023-06-12 18:15:38 +02:00
Jérémy Benoist bea10aacbe
Merge pull request #6562 from Simounet/fix/downloadimages-redirect-following
Fix DownloadImages not following redirections
2023-05-31 15:04:02 +02:00
Simounet 548b610a17
Fix images downloading with numeric HTML entity 2023-05-30 13:38:50 +02:00
Simounet 2f944aa74a
Fix DownloadImages not following redirections 2023-05-30 12:41:00 +02:00
Jeremy Benoist 66b7bdd07c
Merge remote-tracking branch 'origin/2.5.x' 2023-04-24 14:36:32 +02:00
Casper Meijn 5a5148707c Fix API `allowed_registration`
Two configuration options need to be enabled to allow user registration via the API:
1) fosuser_registration, which indicates whether registration is allowed at all (frontend and API)
2) api_user_registration, which indicates whether registration is allowed via the API
2023-03-28 20:12:55 +02:00
Jeremy Benoist a237414f9c
Skip test because of encoding issue in PHP 8.1 2023-03-24 22:57:11 +01:00
Jeremy Benoist f1b3d5cdd7
Fix CSRF on user deletion 2023-02-07 21:41:52 +01:00