Age | Commit message (Collapse) | Author |
|
Co-authored-by: dgw <dgw@technobabbl.es>
|
|
|
|
* When adding URLs, new HTML rows should have unique HTML IDs.
* Fix newly added assertions in Format_General::test_string2htmlid()
Co-authored-by: ྅༻ Ǭɀħ ༄༆ཉ <ozh@ozh.org>
|
|
Fixes #3326
|
|
Closes #3331
|
|
* Do not use md5() in yourls_salt()
* More tests while we're here
Fixes #3277
|
|
- foolproof (?) activation sandbox that actually works
- uninstall method
- Plugin activation sandbox and unit tests
- Uninstall script and tests
|
|
* Add nonce to the logout link
* Add tests for cookies being set or reset
* More tests: check nonces are different for different actions & users
Fixes #3170
|
|
Fixes #3217
Would fix #2688 if it weren't already fixed
|
|
|
|
* Prevent iframe jacking
* Enforce nonce on admin login screen
|
|
* Move some logic from admin/index.php to own class
* Comments & documentation
|
|
Co-authored-by: Ozh <ozh@ozh.org>
|
|
running on MySQL 8 (#2800)
Fixes #2799
Co-authored-by: ྅༻ Ǭɀħ ༄༆ཉ <ozh@ozh.org>
|
|
Fixes #2698
Changes :
- Replace all global $ydb; and $ydb->... with yourls_get_db()-> in code and tests
- Add tests
- Introduce yourls_set_db()
|
|
This commit's changelog
- less encode/decode
- update jQuery & remove old ones
- No encoding in JS
- Also, 4 spaces in JS too, duh
- IDN domain functions
- Use mb_ functions to preverse IDN domains
- Support for UTF8MB4
- update install procedure
- update upgrade procedure. Note: The log table will be left untouched by the upgrade, it's impossible to make a convenient upgrade script for thousands of rows. The only problem will be if someone uses UTF8 short URLs (eg `http://sho.rt/éé💩`)
- Handle normalization of IDN domains & tests
- Fix warning on 7.2 and 7.3
- Deal with encoding in bookmarklets
- Enclose upgrade queries in a transaction
- Force no caching upon install or upgrade. Note: Strange behavior: if YOURLS hosted on an IDN domain, browser (FF at least) caches the redirection from admin/index.php to admin/install.php
- Support for IDN YOURLS hosting
- Tests for IDN YOURLS hosting
- Fix code (that will never get run again)
- Don't cache ajax requests
- Remove unnecessary function call
- Add comment doc block
- More IDN sanitizing tests
- IDN : Screw the "open dots". Who's going to type domain。com instead of domain.com anyway? Seriously. (although these do pass on my dev box)
- Deprecate yourls_lowercase_scheme_domain()
- Update doc to reflect DB change
|
|
* Smarter keyword sanitizing, based on context
* Deprecate yourls_sanitize_string()
Fixes #2646.
Fixes #2128.
|
|
Fixes #1666
Fixes #1598
Closes #1655
|
|
Ahah. I love this expression, "in lieu of" :)
Also, remove those social buttons. I think they're useless and ugly.
|
|
|
|
Fixes #2606. Fixes #2605
|
|
Implements & resolves #2356
|
|
[skip ci]
|
|
[skip ci]
|
|
Work in progress. This won't work for now.
|
|
According to my tests, we'll speed things by almost 2.8 seconds every 1 million calls, dude.
|
|
|
|
|
|
Remove anti CRLF checks from yourls_sanitize_url() and yourls_esc_url() because some legit URLs have %0A or %0D
We're just stripping those, using new function yourls_sanitize_url_safe(), for internal redirection when target location isn't hardcoded.
|
|
Didn't print too well in editors or on the web
|
|
|
|
Granted the `<strong>` tag containing the number of total clicks its own id (in admin/index.php) (the element should be prominent enough to deserve it).
|
|
* refs/heads/pr/1921:
Merge duplicate HTML elements
add ARIA landmark
|
|
|
|
Adding HTTPs for tumblr link
|
|
|
|
This will make testing this function a lot easier, and it makes more sense to die after the function call, not within it.
[skip ci]
|
|
|
|
|
|
Fixes #1710.
|
|
Related: #1354
|
|
This commit removes the extraneous <?php and ?> tags. These are not only removed for code readability, as the PHP code is much easier to read in this new form, but also as with PHP, extraneous spacing and line breaks between the <?php and ?> tags will cause extra spacing and line breaks sent to the client. This also means that there will be saved bandwidth.
|
|
Fixes #1576, followup to #1512
|
|
|
|
Fixes #1533
|
|
Plus, a Tumblr bookmarklet because everybody and their granny is asking for it.
|
|
Not sure why, but urldecode() is required on some host (tested on tso.io), otherwise the URL shortened ends up like http://http%3A%2F%2Fblah.cmo%2F
|
|
|
|
|
|
Related:
- https://github.com/YOURLS/YOURLS/issues/1479#issuecomment-23428747
- https://core.trac.wordpress.org/ticket/25228
|