jvoisin
|
e69c4cd1dc
|
Refactor a bit cps/uploader.py
|
5 years ago |
OzzieIsaacs
|
92db00692a
|
Merge all headers to download response
Updated test results
|
5 years ago |
OzzieIsaacs
|
fe88010a72
|
Merge remote-tracking branch 'sec_fixes/minor_fix_caliblur'
|
5 years ago |
OzzieIsaacs
|
99ae4be2c2
|
Merge remote-tracking branch 'sec_fixes/bump_jquery'
|
5 years ago |
OzzieIsaacs
|
a9085752c1
|
Fix error "email" not in to_save
|
5 years ago |
OzzieIsaacs
|
e1fbc9255c
|
Merge remote-tracking branch 'sec_fixes/bump_underscore'
|
5 years ago |
OzzieIsaacs
|
f33e25ac40
|
Merge remote-tracking branch 'sec_fixes/cookies_improvement'
|
5 years ago |
OzzieIsaacs
|
51365ab006
|
Merge remote-tracking branch 'sec_fixes/strong_session_protection'
|
5 years ago |
OzzieIsaacs
|
d61b7e48d7
|
Merge remote-tracking branch 'sec_fixes/random_password'
|
5 years ago |
OzzieIsaacs
|
f590b24f85
|
Merge remote-tracking branch 'sec_fixes/https'
|
5 years ago |
jvoisin
|
dd3b562f1a
|
Change some links from http to https
|
5 years ago |
jvoisin
|
30c9aa3df9
|
Minor fixes to caliBlur.js
- Add alt attributes to images
- Fix a broken tag
|
5 years ago |
jvoisin
|
688184e255
|
Bump jquery
|
5 years ago |
jvoisin
|
264b4b669e
|
Bump underscorejs version from 1.9.1 to 1.12.2
|
5 years ago |
Ozzieisaacs
|
03d134697c
|
Fix #1361 (covers of archived books not shown)
|
5 years ago |
Ozzieisaacs
|
ff3f42db95
|
Fix #1364 (translated format identifier)
Updated french Translation
|
5 years ago |
jvoisin
|
bf166b757a
|
Improve a bit the cookie's hardening
- Samesite for session cookies as well as the remember me ones
- Httponly
|
5 years ago |
jvoisin
|
b4165335a7
|
Use strong sessions protection
See https://flask-login.readthedocs.io/en/latest/#session-protection for
details
|
5 years ago |
jvoisin
|
2a1bf2fa71
|
Generate strong random passwords
|
5 years ago |
Ozzieisaacs
|
189243a9b0
|
Merge remote-tracking branch 'publisher_sort/patch-1'
|
5 years ago |
Ozzieisaacs
|
34e339c506
|
Merge remote-tracking branch 'it/patch-12'
|
5 years ago |
Knepherbird
|
69fde7dead
|
Update web.py
Set db.Publishers query to order by name column, because publishers.sort column is empty.
|
5 years ago |
Ozzieisaacs
|
6a6c1b6b21
|
Fix for #1358, #1355
|
5 years ago |
Ozzieisaacs
|
51808d2ad4
|
Version Bump
|
5 years ago |
Ozzieisaacs
|
0735fb1e92
|
Fix #1349 (Fix error on move cover with foreign file systems, e.g. samba shares)
Preparation for release
|
5 years ago |
Ozzieisaacs
|
850a85915b
|
Fix #1354 (Error on uploading single book, because of missing rarfile)
|
5 years ago |
ElQuimm
|
148f1109c6
|
updated messages.po
just a little update for coherence with Read/da leggere -> Archived/da archiviare.
Sorry :-)
|
5 years ago |
Ozzieisaacs
|
fcbeeca305
|
Merge remote-tracking branch 'it/patch-11'
|
5 years ago |
Ozzieisaacs
|
fb16429867
|
Randomize flask secret_key
|
5 years ago |
ElQuimm
|
db38d7ee78
|
Updated version of italian.po
:-)
|
5 years ago |
OzzieIsaacs
|
36a984ce3c
|
Revert proxyfix
|
5 years ago |
Michael Shavit
|
e0fbfa44a4
|
Fix issue with cover images introduced during the merge of #1277.
|
5 years ago |
Ozzieisaacs
|
700cb3b553
|
Merge remote-tracking branch 'NL/master'
Updated all strings
|
5 years ago |
Ozzieisaacs
|
8646f8f23a
|
Merge branch 'Develop'
# Conflicts:
# cps/__init__.py
|
5 years ago |
OzzieIsaacs
|
2c5d76908a
|
Added missing upload format
|
5 years ago |
Ozzieisaacs
|
832b34fc54
|
Improved errorhandling for resending password
Improved errorhandling for editing user
|
5 years ago |
Ozzieisaacs
|
000b85ff81
|
Fixes for deleting books(error handling and user feedback)
|
5 years ago |
Ozzieisaacs
|
bb317d54f2
|
Fix reject reset password without configured email server
|
5 years ago |
Ozzieisaacs
|
d6f41d8dc0
|
Fix error 404 on reset password (Fix #1342)
|
5 years ago |
Marcel
|
6dff5ed679
|
NL language update
|
5 years ago |
OzzieIsaacs
|
fb8b6310d5
|
Fix from tests
|
5 years ago |
Ozzieisaacs
|
02aaf17ac5
|
Fix #1339 (Proxyfix import with old werkzeug versions causes traceback)
|
5 years ago |
Ozzieisaacs
|
b160a8de0b
|
Merge branch 'master' into Develop
# Conflicts:
# cps/__init__.py
# cps/comic.py
# cps/editbooks.py
# cps/helper.py
# cps/kobo.py
# cps/translations/nl/LC_MESSAGES/messages.mo
# cps/translations/nl/LC_MESSAGES/messages.po
# cps/ub.py
# cps/uploader.py
# cps/web.py
|
5 years ago |
Ozzieisaacs
|
e3246fd751
|
Merge remote-tracking branch 'key'
|
5 years ago |
Ozzieisaacs
|
fb18ab1ca5
|
Fix #866 (Recent book sidebar element can't be removed anymore)
|
5 years ago |
Ozzieisaacs
|
01ff55c84e
|
Removed non working filters for search
|
5 years ago |
jvoisin
|
523aab2e9e
|
Don't use an hardcoded session key
This fixes a trivial authentication bypass,
according to https://flask.palletsprojects.com/en/1.1.x/quickstart/#sessions
|
5 years ago |
Ozzieisaacs
|
9a7d9da654
|
Merge remote-tracking branch 'js_caliblur/xss'
|
5 years ago |
Ozzieisaacs
|
e9446556a1
|
Merge remote-tracking branch 'ru/master'
|
5 years ago |
jvoisin
|
806a5f209f
|
Fix two minor xss
|
5 years ago |