f978c1b83e
Use random_bytes() to generate IV where available (PHP 7.x)
2017-05-03 20:28:54 -04:00
Benjamin Southall
47a45da7a7
Fix mod_view_board for ukko / overboard theme / extension. Add support for boards_alias to mod_view_board and initial preliminary support to markup for crossboard citations
2017-04-23 20:01:34 +09:00
Benjamin Southall
ddbabcccab
Implemented mods can't access random from dashboard #88 . Please note this doesn't use mod custom_pages functionality provided by vichan (because the that only works if your overboard has name that doesn't look like other boards), and requires ['overboards'] to be set as an array of board uri's which are overboards, with the correct values for type (theme type e.g. ukko, rand or semirand) title, subtitle, thread_limit and exclude in array of for each board uri
2017-04-11 03:08:20 +09:00
Benjamin Southall
0ba23fcf01
Deleting all posts by IP (D++) doesn't seem to work properly #87 Changing query inside the while loop to query2 in order to delete all posts, not just the first post.
2017-03-13 23:34:15 +09:00
Benjamin Southall
454acf0566
Add JSON interface to Recents Posts functionality, e.g. mod_recent_posts
2017-03-02 11:40:27 +09:00
Benjamin Southall
6c06045c03
#87 Attempt to change the error message associated when using deletebyip e.g D++ with autotagging of deletions enabled.
2017-03-02 11:36:29 +09:00
Benjamin Southall
9229b280c7
Added check for post time being empty string, in order to handle the case that occurs when a deleted post is deleted a second time.
2017-01-18 12:13:11 +09:00
Benjamin Southall
3b35eb46a9
Add autotagging feature for deletion. E.g. automatically generate an IP note when a post is deleted by moderator action.
2017-01-17 22:56:46 +09:00
Benjamin Southall
a3b9c4405c
Merged lainchan with vichan master at 25/9/2016 a4b619ae5e
@czaks czaks committed on GitHub 2 days ago
2016-09-25 16:34:47 +09:00
Michael D. Reiley
8951cb74c8
Rebuild index when mod deletes a thread.
...
The index does not properly rebuild when a mod deletes a thread, resulting in a ghost thread remaining in the index until the next rebuild. This fix was originally contributed to Uboachan's codebase by Mannosuke.
2016-09-22 23:03:11 -07:00
jove
8e0a8b1251
Fixes two bugs preventing replies from being moved.
2016-08-22 18:57:50 +01:00
jove
272635a370
Fixes an error reporting typo.
2016-08-21 16:44:57 +01:00
Fredrick Brennan
505adffcdc
Cyclical threads ♺
2016-05-06 16:39:20 +02:00
8chan
d788131202
Allow a board called news to exist
2016-05-06 16:26:17 +02:00
Fredrick Brennan
95b1e103cb
Edit static pages commit
2016-05-06 16:03:55 +02:00
8chan
7911c374e8
Public action logs commit (log.php)
...
Note: In a previous commit, I began making inc/mod/auth.php more modular with the check_login() function. Including it does NOT check mod login by default anymore like it does on vichan. You have to call check_login(). I've finally included it in inc/functions.php. If you have any custom pages that use inc/mod/auth.php, just including functions.php is enough now.
===================================
Also: backports 351375185e5 (early 404)
2016-05-06 15:44:26 +02:00
8chan
7a7574bdca
SECURITY / XSS : ?/edit allowed arbitrary HTML to be added by any user thru addition of <tinyboard raw html>1</tinyboard>
...
This allowed ANY user with ?/edit privilege to also have raw_html regardless of whether they had $config['mod']['rawhtml']
Now, any changes to <tinyboard> markup modifiers via ?/edit are not allowed. They are removed at read time, and before write they are removed again and the ones in the database (which should be clean...) are inserted instead.
Please immediately apply this patch to your instance if you are running any version of 8chan/infinity.
2016-05-06 12:43:25 +02:00
czaks
cd01191072
those parts are extraneous
2016-05-05 11:45:29 +02:00
8chan
3eb755ee7e
Move login check in inc/mod/auth.php to a function
...
This allows pages like create.php to not include inc/mod/pages.php while still being able to use the mod auth functions (like generating salts and passwords)
2016-05-05 11:40:52 +02:00
8chan Admin
93f748e6a8
Security: capitalization of mods username is significant
2016-05-05 11:39:12 +02:00
czaks
77176faece
enable javascript in mod panel
2016-05-05 09:56:54 +02:00
czaks
7c3126866c
ease the migration process for the previous security patch (by introducing another migration); restore php 5.4 compatibility (introducing a polyfill system)
2016-05-05 06:43:22 +02:00
czaks
caaf741691
[SECURITY] keep up with modern password hashing standards
2016-04-22 05:35:43 +02:00
Simon McFarlane
4b40f69a4e
Merge remote-tracking branch 'upstream/master' into vichan-merge
2015-05-29 01:34:53 -07:00
Michael Walker
61d9dacdfb
When banning/deleting a post, return to the thread, not the board index (unless deleting the OP)
2015-05-10 13:22:53 +01:00
Michael Walker
649255c9b9
When deleting a post, return to the thread, not the board index (unless deleting the OP)
2015-05-10 03:01:55 +01:00
Michael Walker
4184fdec6e
Pass the thread ID when banning/deleting
2015-05-10 02:56:48 +01:00
czaks
2d9214ac63
version check should point at engine.vichan.net and not tinyboard.org actually
2015-04-23 08:18:36 +02:00
czaks
4c1d2f924c
fix error while installing themes; thanks xixi
2015-04-23 07:57:52 +02:00
czaks
b78b3db010
uncache themes on settings change
2015-04-05 16:59:04 +02:00
czaks
2f7aeec531
...
2015-03-10 13:48:33 +01:00
czaks
58b60f0aa4
...
2015-03-10 13:46:34 +01:00
czaks
bdb6001f3f
support for slugified links; may introduce a few bugs
2015-03-10 12:48:59 +01:00
czaks
9b3fa77719
new banlist implementation; also includes a public banlist
2014-10-08 23:23:59 +02:00
8chan
c4dc3f4d47
Fix spoiler image not working
2014-10-07 04:33:57 +02:00
kaf
fe60590d19
Check spoiler_image size before ussuming it is 128×128px
2014-10-05 15:26:28 +00:00
Juan Tamad
53ada6a5ff
added option for showing the mod in ban page.
...
also fixes issue where the Staff is not shown in ban appeals.
2014-09-01 06:30:33 +08:00
8chan
ef7556194c
Fix 55ch cancer; can now see next page of posts, ?/recent uses templating system
2014-07-19 18:42:52 +00:00
czaks
f97d2dff85
fix previous commit
2014-07-08 09:44:30 +02:00
czaks
9526f5ed1c
fix #72
2014-07-08 09:43:04 +02:00
czaks
2c883fda0a
fix ban appeals; thanks to sraczynski for reporting
2014-06-16 11:39:56 +02:00
czaks
427a9938a7
Merge 4.5
2014-06-12 03:12:56 +02:00
Chen-Pang He
7933abd271
Fix vichan #65
...
Conflicts:
inc/mod/auth.php
inc/mod/pages.php
2014-06-12 03:12:27 +02:00
czaks
503903ac0f
Merge 4.5
2014-06-11 02:05:14 +02:00
czaks
23d6e82038
$_SERVER[HTTPS] isn`t being always set; fixes #65
2014-06-11 02:04:59 +02:00
czaks
c2cbbe7e22
Merge 4.5
...
Conflicts:
js/expand-too-long.js
2014-06-10 17:51:03 +02:00
Chen-Pang He
6716a24b68
Send cookie only via HTTPS if a mod logs in via HTTPS, which is the case on this site
2014-06-10 17:42:18 +02:00
Fredrick Brennan
65a14a0d39
Fix moving of deleted files
2014-05-19 14:00:16 -04:00
Fredrick Brennan
5039584a5e
Fix ?/recent str_replace issue
2014-05-04 19:24:34 -04:00
Fredrick Brennan
042e7b9c59
Deprecate postControls(), per-file deletion and spoilering
2014-04-30 17:18:35 -04:00