Commit Graph

1063 Commits

Author SHA1 Message Date
Benoît Latinier
94d031444d add: CONTRIBUTORS + pep8 2018-04-25 23:03:55 +02:00
Benoît Latinier
b21f2e4aaa
Merge pull request #317 from benjhess/feature/gravatar-support
Feature/gravatar support
2018-04-25 22:54:50 +02:00
Benoît Latinier
6da91d4ace
Merge branch 'master' into feature/gravatar-support 2018-04-25 22:45:45 +02:00
Benoît Latinier
3754ba7596
Merge pull request #414 from vincentbernat/fix/no-eval
jade: avoid using eval once compiled
2018-04-25 22:32:13 +02:00
Benoît Latinier
3d1cded70f Merge branch 'master' of github.com:posativ/isso 2018-04-25 22:31:12 +02:00
Benoît Latinier
466654b50d update CONTRIBUTORS 2018-04-25 22:31:01 +02:00
Benoît Latinier
514c5d42b6
Merge pull request #422 from Lucas-C/master
Bugfix to support <a> elements in SVG diagrams - close #421
2018-04-25 22:26:27 +02:00
Benoît Latinier
c14f639e75 add: CONTRIBUTORS update 2018-04-25 22:24:05 +02:00
Benoît Latinier
ad6e868ba5
Merge pull request #416 from vincentbernat/feature/preview
js: add a preview button to see a rendered preview
2018-04-25 22:23:06 +02:00
Benoît Latinier
dc6157897f
Merge pull request #423 from posativ/fix-tests
fix tests due to non predictive html rendering
2018-04-25 21:58:19 +02:00
Benoît Latinier
3d648c2d29
fix tests due to non predictive html rendering 2018-04-25 21:24:27 +02:00
Lucas Cimon
501bdc59bf Bugfix to support <a> elements in SVG diagrams - close #421 2018-04-25 10:55:37 +02:00
Vincent Bernat
b0264bc807 js: add a preview button to see a rendered preview
When the button is clicked, the /preview endpoint is used to render a
preview text. The preview is inserted and the preview button is
replaced by an edit button to go back to edit mode. Alternatively, the
use can click on the preview to edit.

Some small CSS modifications are done to accomodate the
modification. Also, the preview is wrapped into `.isso-common
.text-wrapper .text` to not make the CSS more complex.

When in preview mode, the background is stripped/greyish in case it's not easy
to make a difference between preview and not preview (due to
unformatted text). We avoid to modify borders/shadow boxes because it
would make the design "jumpy".
2018-04-25 08:17:17 +02:00
Benoît Latinier
55dac39bdd
Merge pull request #418 from vincentbernat/feature/nofollow-links
html: add nofollow/noopener to links
2018-04-24 23:28:53 +02:00
Benoît Latinier
b5c40bedf7
Merge pull request #419 from vincentbernat/feature/atom-feed
api: add /feed API to get an Atom feed for an URI
2018-04-24 21:56:09 +02:00
Vincent Bernat
01cf96eeb7 feed: ensure Markdown rendering is applied to feeds 2018-04-23 11:37:14 +02:00
Benoît Latinier
502747cb75
Merge pull request #411 from Rocket1184/hotfix/demo-and-admin-redirect
fix: admin and demo view redirect issue
2018-04-22 21:35:24 +02:00
Benoît Latinier
bb924ead86
Merge pull request #417 from vincentbernat/fix/css-cleanup
css: remove CSS code for avatar in postbox
2018-04-22 21:00:33 +02:00
Vincent Bernat
45f6b1eda3 feed: make /feed API call configurable server and client-side
On server-side, this can be enabled by providing a base URL to use to
build the full URL. Limit also becomes configurable. On client-side,
we need to add a switch to know whatever or not the additional link
can be displayed.
2018-04-22 16:55:06 +02:00
Vincent Bernat
bceb69518b js: put a link to Atom feed on top of the main postbox 2018-04-22 13:31:11 +02:00
Vincent Bernat
a89debbc9c api: add a simple test for /feed endpoint 2018-04-22 13:11:58 +02:00
Vincent Bernat
5c6e78b9c1 api: ensure /feed is easily cacheable by issuing etag/last-modified headers 2018-04-22 13:11:58 +02:00
Vincent Bernat
ebca06059a api: add /feed API to get an Atom feed for an URI
We need absolute URL at some places. We assume the first host
configured is the base of the URI we have.

Fix #81
2018-04-22 13:11:58 +02:00
Vincent Bernat
8d8f9c8c59 html: add nofollow/noopener to links
"nofollow" is a deterrent for spammers: they cannot put links and hope
to increase their SEO when all these links have the nofollow
relationship.

"noopener" is a security for links opening a new window. They ensure
the target cannot control us.

Fix #373
2018-04-21 14:30:02 +02:00
Vincent Bernat
fcf576dd08 css: remove CSS code for avatar in postbox
It has been removed in 0211322915.
2018-04-20 21:50:08 +02:00
Pelle Nilsson
36d4ceb2d9 Don't send notification when someone responds to his/her own comment 2018-04-19 20:48:13 +02:00
Facundo Batista
14195d3711 Used proper open and not check timing 2018-04-18 18:49:52 -03:00
Facundo Batista
3ee13ab9fc Removed debug line 2018-04-18 17:34:23 -03:00
Facundo Batista
be5792cb79 Merged master in 2018-04-18 16:03:19 -03:00
Facundo Batista
04b6d70b01 Added a generic way to migrate from a json file 2018-04-18 15:54:54 -03:00
Benoît Latinier
07ce742b77
add documentation for uberspaces users (closes #409) 2018-04-18 10:51:17 +02:00
Benoît Latinier
93ea722992
add contributors 2018-04-17 23:47:06 +02:00
Benoît Latinier
e285c91112
Merge pull request #412 from vincentbernat/feature/dockerfile
Provide a multi-staged Dockerfile
2018-04-17 23:03:47 +02:00
Vincent Bernat
9618c0f3a3 jade: avoid using eval once compiled
Use of eval is handy when we need to automatically reload a
template. However, in production, this is slow and unsafe. Moreover,
when using CSP, we have to use 'unsafe-eval' which brings shame to
most of us. It appears use of eval() is not needed because the
template has already been translated to Javascript. We just need to
bind "jade" to its local scope.

So, we add an additional wrapper function binding "jade" to the local
scope. Moreover, when compiling the template, we add a flag to the
function to know it has already been compiled. In this case, we
execute it with "jade" in its scope. Otherwise, we keep using eval.

Quickly tested in both situations. Seem to work.

Fix #274.
2018-04-17 22:54:22 +02:00
Benoît Latinier
47b14ab0c8
Merge pull request #413 from vincentbernat/fix/doc-isso-id
docs: document data-isso-id
2018-04-17 09:31:27 +02:00
Vincent Bernat
30f0c7eeb8 docs: document data-isso-id 2018-04-17 07:40:52 +02:00
Vincent Bernat
2b7c17a361 Provide a multi-staged Dockerfile
Many of the Docker images on hub.docker.com are outdated. The one
specified in the documentation doesn't exist anymore. We provide a
decent Dockerfile to build our own Docker image.

This uses a multi-stage build to avoid polluting the final image with
the intermediate artifacts. The final image is 155 MB. It should be
possible to squeeze it even more by using Alpine Linux for the last
two parts instead of Stretch.

The service is using gunicorn. The user is expected to complete the
installation with a reverse proxy configuration.
2018-04-16 22:09:28 +02:00
Pelle Nilsson
22a36bdb7c Support notifications also for replies 2018-04-15 19:42:31 +02:00
Pelle Nilsson
da6bb0cec7 Fix faulty check for parent comment 2018-04-15 19:26:44 +02:00
Rocka
30fef390f5
fix: admin and demo view redirect issue 2018-04-05 23:10:46 +08:00
Benoît Latinier
d854ce8347
Merge pull request #410 from Rocket1184/hotfix/space-between-number-and-cjk-char
i18n: add space between number and CJK character
2018-04-05 17:03:08 +02:00
Rocka
4e2d2dfb20
i18n: add space between number and CJK character 2018-04-05 22:46:17 +08:00
Yuchen Pei
73c7933548 A quick dirty fix of #401 (#406)
Fix URL in moderation mails if isso runs in a sub-URL (closes #401 )
2018-04-02 23:02:45 +02:00
Cimon Lucas (LCM)
361c596bf2 Adding support for ISSO_CORS_ORIGIN env variable to allow defining wildcard CORS origins 2018-04-02 09:40:34 +02:00
Jelmer Vernooij
af3903e462
Merge pull request #399 from facundobatista/patch-1
Small typo fix.
2018-03-21 23:36:35 +00:00
Facundo Batista
28e154acfc
Small typo 2018-03-21 19:39:02 -03:00
Pelle Nilsson
c9045f5b1f Implement opt-out for email notifications 2018-02-21 21:39:35 +01:00
Pelle Nilsson
bc4bc55025 Include link to comment in email notifications 2018-02-20 20:03:52 +01:00
Pelle Nilsson
2e85ec653f Make SMTP connections thread safe 2018-02-18 16:48:08 +01:00
Pelle Nilsson
107b9be003 Add notification column to database if needed 2018-02-18 14:00:18 +01:00