Commit graph

1316 commits

Author SHA1 Message Date
Tor Hveem
47cd5376e9 Merge pull request #664 from glowing-bear/subresource-integrity
[PLS TEST] Use subresource integrity to prevent CDN resource tampering
2015-11-01 13:34:18 +01:00
Lorenz Hübschle-Schneider
b7c281d058 Use Cloudflare CDN for everything, and always use https
they redirect http -> https anyway
2015-11-01 13:28:22 +01:00
Lorenz Hübschle-Schneider
64af0908cf Use subresource integrity to prevent CDN resource tampering
See https://hacks.mozilla.org/2015/09/subresource-integrity-in-firefox-43/
2015-11-01 13:09:48 +01:00
Tor Hveem
1d0e5af31d Merge pull request #663 from glowing-bear/selfhost_assets
Self-host app store badges to reduce number of connections
2015-11-01 12:58:48 +01:00
Lorenz Hübschle-Schneider
699a4fd9af Self-host app store badges to reduce number of connections
These are so rarely seen, extra connections on page load are really wasteful there
2015-11-01 12:56:40 +01:00
Lorenz Hübschle-Schneider
8a7b7d2125 Merge pull request #661 from glowing-bear/async-element
Construct plugin elements async. Fixes #660
2015-10-19 17:02:10 +02:00
Tor Hveem
a02573a9c2 Construct plugin elements async. Fixes #660
This commit changes the plugins that uses angular.element to load
resources directly to instead return a function that runs
angular.element. When the browser runs angular.element('<img>') and gets
a src attr it will fetch the content in the src. This makes the
browser running gb automatically fetch all plugin content that gets
linked even if the user didn't request it.

Maybe we could change our plugin architecture to split the match
function and the generator functions so this could be solved more
elegantly.
2015-10-19 14:54:21 +02:00
Lorenz Hübschle-Schneider
e979e19958 Merge pull request #657 from alexschneider/fix-sanitization
Fix sanitization by constructing elements in Javascript.
2015-10-18 20:17:14 +02:00
Alex Schneider
1d628ed849 Remove comments that we don't really need 2015-10-17 16:23:48 -07:00
Alex Schneider
6dcb579de4 Fix sanitization by constructing elements in Javascript.
This is still technically a hack, the elements should really be defined in a view with templates, but it fixes the issue with sanitize where it can't sanitize if it can't parse HTML.
2015-10-17 16:15:42 -07:00
David Cormier
0afa7bc184 plugins: sanitize user input before passing it to plugins 2015-10-16 15:13:53 -04:00
Lorenz Hübschle-Schneider
94f5445742 Merge pull request #652 from arnottcr/master
simplify giphy regex matching and use original url for image link
2015-09-29 09:31:26 +02:00
Colin Arnott
2f8ab9dbf3 roll back tls upgrade for giphy plugin link, as it conflicts with printed link 2015-09-28 17:35:28 +00:00
Colin Arnott
875001f1b2 simplify regex matching and increase readability of the giphy plugin and have plugin link to original userfacing url, not cdn image file 2015-09-26 22:40:30 +00:00
Tor Hveem
29eddf3807 Merge pull request #650 from arnottcr/master
Add support for giphy
2015-09-26 12:33:54 +02:00
Colin Arnott
03a6e391f6 added plugin support for giphy gifs as embedded content and created testcases 2015-09-26 05:06:11 +00:00
Lorenz Hübschle-Schneider
f17a976e1a Tag version 0.5.0 2015-09-22 20:15:04 +02:00
Tor Hveem
9f6f70eb3e Merge pull request #644 from glowing-bear/url-hash
Add support for supplying credentials in the URL via the hash.
2015-09-17 09:10:55 +02:00
Tor Hveem
cf771eb73f Merge pull request #620 from glowing-bear/noswitch
Use -noswitch option to open buffers
2015-09-17 09:05:35 +02:00
Tor Hveem
1f37f848fc fix another version check 2015-09-17 08:59:38 +02:00
Tor Hveem
9659fa2efc Merge pull request #635 from angus-g/hidden-buffers
Handle hidden weechat buffers
2015-09-17 08:55:54 +02:00
Tor Hveem
c298d4d85f Merge pull request #645 from glowing-bear/revert-627-fix-hyphenation-in-firefox-624
Revert "Fixes problem with Firefox word / line breaking"
2015-09-11 12:56:09 +02:00
Lorenz Hübschle-Schneider
aa9fb10941 Revert "Fixes problem with Firefox word / line breaking" 2015-09-11 12:53:33 +02:00
AppleDash
fafed6a915 Add support for supplying credentials in the URL via the hash. 2015-09-11 09:10:05 +02:00
Lorenz Hübschle-Schneider
1b03fdb222 Merge pull request #627 from michaelshmitty/fix-hyphenation-in-firefox-624
Fixes problem with Firefox word / line breaking
2015-09-10 11:06:17 +02:00
Lorenz Hübschle-Schneider
31c16448a3 Merge pull request #640 from glowing-bear/travis-container
travis: upgrade to container-based infrastructure
2015-09-10 11:01:05 +02:00
Michael Smith
8d371a5ed9 Fixes problem with Firefox breaking long lines between any random character. References #624.
Firefox would break long lines in the middle of words, disregarding hyphenation rules resulting in poor readability. This change fixes that behaviour while still preventing very long unbreakable strings from showing a horizontal scrollbar.
Tested in Firefox 38.0.5 and Google Chrome 43.0.2357.124 (64-bit)
2015-08-25 23:26:09 +02:00
Tor Hveem
9cdfad15d2 Merge pull request #639 from glowing-bear/always-show-server-buffers
Always show server buffers in hierarchical view
2015-08-05 18:19:17 +02:00
Lorenz Hübschle-Schneider
bc7725d50f travis: upgrade to container-based infrastructure
since we don't need sudo, say so and get magic speedups!
2015-08-05 17:38:15 +02:00
Lorenz Hübschle-Schneider
6ca1deb66d Always show server buffers in hierarchical view
Show them even if 'Only show buffers with unread messages' is set
2015-08-05 17:35:54 +02:00
Angus Gibson
117d9991ec Handle hidden weechat buffers
This adds a new 'hidden' field to the Buffer model, which stays in sync
with weechat's notion of hidden buffers.
2015-07-10 13:52:12 +10:00
Tor Hveem
d07ba4edd1 Merge pull request #628 from kode54/dom3-check
Added a check for DOM 3 getModifierState before attempting to use it
2015-06-14 02:00:45 +02:00
Chris Moeller
c7a5d8decf Added a check for DOM 3 getModifierState before attempting to use it, as some browsers may not have implemented that spec yet (Like stable Safari) 2015-06-13 16:54:59 -07:00
Lorenz Hübschle-Schneider
ed44c6747f Merge pull request #625 from torhve/altgrfix
Check modifier state and don't trigger on any altgr event
2015-06-12 13:35:00 +02:00
Tor Hveem
e096284502 Check modifier state and don't trigger on any altgr event 2015-06-12 11:10:48 +02:00
Lorenz Hübschle-Schneider
e167bdd112 Merge pull request #618 from pelmers/channel_link
Re-implement click to join functionality.
2015-06-11 18:28:45 +02:00
Peter Elmers
febbb3ffdb Re-implement click to join functionality.
Clicking channel names to join broke because of angular issue 9515.
Reimplement the functionality by binding the scope.openBuffer method to
the window and calling it from an onclick handler for channel name
anchors.
2015-06-11 09:10:23 -07:00
Tor Hveem
1f89a0ef0b Use new version check 2015-06-10 10:04:10 +02:00
Lorenz Hübschle-Schneider
2626b5e936 openBuffer: send /join and /query with -noswitch parameter
this functionality is currently broken (#618) but this is a good idea nonetheless
2015-06-10 10:04:10 +02:00
Lorenz Hübschle-Schneider
8c965e0b90 Store WeeChat version is an array of numbers 2015-06-10 10:04:10 +02:00
Lorenz Hübschle-Schneider
5df0ce21a2 Merge pull request #623 from glowing-bear/fix-escaping
Properly fix #622 by escaping input into DOMfilter
2015-06-09 00:12:20 +02:00
Lorenz Hübschle-Schneider
420836974e Fix irclinky test
irclinky no longer does escaping itself, that is now done by DOMfilter.
Adapt the test case to reflect this change.
2015-06-08 23:42:57 +02:00
Lorenz Hübschle-Schneider
cfad82ec3e Properly fix #622 by escaping input into DOM filters 2015-06-08 23:35:18 +02:00
Lorenz Hübschle-Schneider
bdb968d3af More strict escaping
Thanks, @nathan0!

Fixes #622
2015-06-08 22:19:11 +02:00
Lorenz Hübschle-Schneider
86e9fb7696 Merge pull request #612 from torhve/hiddenbrackets
Hiddenbrackets attempt. Fixes #609
2015-05-24 19:00:47 +02:00
Tor Hveem
407050e577 Merge pull request #613 from glowing-bear/add-settings-cache
settings: add a cache
2015-05-22 12:29:43 +02:00
Lorenz Hübschle-Schneider
0f706c37fe settings: add a cache
From the comment:
This cache is important for two reasons. One, angular hits it up really often
(because it needs to check for changes and it's not very clever about it).
Two, it prevents weird type conversion issues that otherwise arise in
$store.parseValue (e.g. converting "123." to the number 123 even though it
actually was the beginning of an IP address that the user was in the
process of entering).
2015-05-21 21:08:17 +02:00
Tor Hveem
744b7a1755 Implement hidden brackets around prefix 2015-05-19 14:00:04 +02:00
Daniel Leining
0618a769d5 Add hidden brackets around user nicks 2015-05-10 20:11:29 -04:00
Tor Hveem
0647777e9e Merge pull request #607 from glowing-bear/fix-bufferlistitem-height
Fix height of bufferlist items in narrow desktop view
2015-05-05 10:10:26 +02:00