Matt Baer
720a8c1975
Don't include img alt text in post Summary()
...
Fixes #306
3 years ago
Matt Baer
b092421f6e
Add Cross-Site Request Forgery (CSRF) protection on account deletion
...
This requires admins to generate a new encryption key with:
writefreely keys generate
Ref T319
4 years ago
dependabot[bot]
9cbd254d64
Bump github.com/microcosm-cc/bluemonday from 1.0.4 to 1.0.5
...
Bumps [github.com/microcosm-cc/bluemonday](https://github.com/microcosm-cc/bluemonday ) from 1.0.4 to 1.0.5.
- [Release notes](https://github.com/microcosm-cc/bluemonday/releases )
- [Commits](https://github.com/microcosm-cc/bluemonday/compare/v1.0.4...v1.0.5 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
f70fc0c4e2
Bump github.com/go-sql-driver/mysql from 1.5.0 to 1.6.0
...
Bumps [github.com/go-sql-driver/mysql](https://github.com/go-sql-driver/mysql ) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/go-sql-driver/mysql/releases )
- [Changelog](https://github.com/go-sql-driver/mysql/blob/master/CHANGELOG.md )
- [Commits](https://github.com/go-sql-driver/mysql/compare/v1.5.0...v1.6.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
2a9aa84366
Bump github.com/hashicorp/go-multierror from 1.1.0 to 1.1.1
...
Bumps [github.com/hashicorp/go-multierror](https://github.com/hashicorp/go-multierror ) from 1.1.0 to 1.1.1.
- [Release notes](https://github.com/hashicorp/go-multierror/releases )
- [Commits](https://github.com/hashicorp/go-multierror/compare/v1.1.0...v1.1.1 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Matt Baer
64f1d71524
Remove writeas/nerds/store dependency
4 years ago
Matt Baer
4a58a94e26
Include images as attachments in ActivityStreams data
...
Ref T709
4 years ago
Colin Axnér
00f2152c2b
update commit for web-core
...
Update go.mod to use latest commit on web-core
4 years ago
dependabot[bot]
1ea728b1e9
Bump github.com/stretchr/testify from 1.6.1 to 1.7.0
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.6.1 to 1.7.0.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.6.1...v1.7.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
1ac5c4ab4d
Bump github.com/mattn/go-sqlite3 from 1.14.4 to 1.14.6
...
Bumps [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3 ) from 1.14.4 to 1.14.6.
- [Release notes](https://github.com/mattn/go-sqlite3/releases )
- [Commits](https://github.com/mattn/go-sqlite3/compare/v1.14.4...v1.14.6 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
5b2c350b5d
Bump github.com/fatih/color from 1.9.0 to 1.10.0
...
Bumps [github.com/fatih/color](https://github.com/fatih/color ) from 1.9.0 to 1.10.0.
- [Release notes](https://github.com/fatih/color/releases )
- [Commits](https://github.com/fatih/color/compare/v1.9.0...v1.10.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
71b211b11e
Bump github.com/urfave/cli/v2 from 2.2.0 to 2.3.0
...
Bumps [github.com/urfave/cli/v2](https://github.com/urfave/cli ) from 2.2.0 to 2.3.0.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/master/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v2.2.0...v2.3.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
ed00417d8d
Bump gopkg.in/ini.v1 from 1.61.0 to 1.62.0
...
Bumps [gopkg.in/ini.v1](https://github.com/go-ini/ini ) from 1.61.0 to 1.62.0.
- [Release notes](https://github.com/go-ini/ini/releases )
- [Commits](https://github.com/go-ini/ini/compare/v1.61.0...v1.62.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
083d8c4d67
Bump github.com/mattn/go-sqlite3 from 1.14.2 to 1.14.4
...
Bumps [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3 ) from 1.14.2 to 1.14.4.
- [Release notes](https://github.com/mattn/go-sqlite3/releases )
- [Commits](https://github.com/mattn/go-sqlite3/compare/v1.14.2...v1.14.4 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
454e781ed4
Bump github.com/mitchellh/go-wordwrap from 1.0.0 to 1.0.1
...
Bumps [github.com/mitchellh/go-wordwrap](https://github.com/mitchellh/go-wordwrap ) from 1.0.0 to 1.0.1.
- [Release notes](https://github.com/mitchellh/go-wordwrap/releases )
- [Commits](https://github.com/mitchellh/go-wordwrap/compare/v1.0.0...v1.0.1 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
f5f28550fb
Bump gopkg.in/ini.v1 from 1.57.0 to 1.61.0
...
Bumps [gopkg.in/ini.v1](https://github.com/go-ini/ini ) from 1.57.0 to 1.61.0.
- [Release notes](https://github.com/go-ini/ini/releases )
- [Commits](https://github.com/go-ini/ini/compare/v1.57.0...v1.61.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
c22a751ab7
Bump github.com/manifoldco/promptui from 0.7.0 to 0.8.0
...
Bumps [github.com/manifoldco/promptui](https://github.com/manifoldco/promptui ) from 0.7.0 to 0.8.0.
- [Release notes](https://github.com/manifoldco/promptui/releases )
- [Changelog](https://github.com/manifoldco/promptui/blob/master/CHANGELOG.md )
- [Commits](https://github.com/manifoldco/promptui/compare/v0.7.0...v0.8.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
00a5a4f7ab
Bump github.com/microcosm-cc/bluemonday from 1.0.3 to 1.0.4
...
Bumps [github.com/microcosm-cc/bluemonday](https://github.com/microcosm-cc/bluemonday ) from 1.0.3 to 1.0.4.
- [Release notes](https://github.com/microcosm-cc/bluemonday/releases )
- [Commits](https://github.com/microcosm-cc/bluemonday/compare/v1.0.3...v1.0.4 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
21579cfa71
Bump github.com/mattn/go-sqlite3 from 1.14.0 to 1.14.2
...
Bumps [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3 ) from 1.14.0 to 1.14.2.
- [Release notes](https://github.com/mattn/go-sqlite3/releases )
- [Commits](https://github.com/mattn/go-sqlite3/compare/v1.14.0...v1.14.2 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
1779aeaf8c
Bump github.com/gorilla/mux from 1.7.4 to 1.8.0
...
Bumps [github.com/gorilla/mux](https://github.com/gorilla/mux ) from 1.7.4 to 1.8.0.
- [Release notes](https://github.com/gorilla/mux/releases )
- [Commits](https://github.com/gorilla/mux/compare/v1.7.4...v1.8.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
e60398f0b4
Bump github.com/gorilla/schema from 1.1.0 to 1.2.0
...
Bumps [github.com/gorilla/schema](https://github.com/gorilla/schema ) from 1.1.0 to 1.2.0.
- [Release notes](https://github.com/gorilla/schema/releases )
- [Commits](https://github.com/gorilla/schema/compare/v1.1.0...v1.2.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Matt Baer
7fa78c2255
Move fakeAPInstances to web-core/silobridge package
...
This adds support for mentioning profiles on the following sites:
- deviantart.com
- facebook.com
- flickr.com
- github.com
- instagram.com
- reddit.com
- wattpad.com
- youtube.com
4 years ago
dependabot[bot]
9c835a2b9d
Bump github.com/fatih/color from 1.7.0 to 1.9.0
...
Bumps [github.com/fatih/color](https://github.com/fatih/color ) from 1.7.0 to 1.9.0.
- [Release notes](https://github.com/fatih/color/releases )
- [Commits](https://github.com/fatih/color/compare/v1.7.0...v1.9.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
2c45307107
Bump github.com/urfave/cli/v2 from 2.1.1 to 2.2.0
...
Bumps [github.com/urfave/cli/v2](https://github.com/urfave/cli ) from 2.1.1 to 2.2.0.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/master/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v2.1.1...v2.2.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
ad2e46cb40
Bump github.com/manifoldco/promptui from 0.3.2 to 0.7.0
...
Bumps [github.com/manifoldco/promptui](https://github.com/manifoldco/promptui ) from 0.3.2 to 0.7.0.
- [Release notes](https://github.com/manifoldco/promptui/releases )
- [Changelog](https://github.com/manifoldco/promptui/blob/master/CHANGELOG.md )
- [Commits](https://github.com/manifoldco/promptui/compare/v0.3.2...v0.7.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
aa170d0c5a
Bump github.com/mattn/go-sqlite3 from 1.10.0 to 1.14.0
...
Bumps [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3 ) from 1.10.0 to 1.14.0.
- [Release notes](https://github.com/mattn/go-sqlite3/releases )
- [Commits](https://github.com/mattn/go-sqlite3/compare/v1.10.0...v1.14.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
00c47fa62f
Bump github.com/gorilla/schema from 1.0.2 to 1.1.0
...
Bumps [github.com/gorilla/schema](https://github.com/gorilla/schema ) from 1.0.2 to 1.1.0.
- [Release notes](https://github.com/gorilla/schema/releases )
- [Commits](https://github.com/gorilla/schema/compare/v1.0.2...v1.1.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
5897ef7cab
Bump github.com/writeas/import from 0.2.0 to 0.2.1
...
Bumps [github.com/writeas/import](https://github.com/writeas/import ) from 0.2.0 to 0.2.1.
- [Release notes](https://github.com/writeas/import/releases )
- [Commits](https://github.com/writeas/import/compare/v0.2.0...v0.2.1 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
99b2f41aa1
Bump github.com/go-sql-driver/mysql from 1.4.1 to 1.5.0
...
Bumps [github.com/go-sql-driver/mysql](https://github.com/go-sql-driver/mysql ) from 1.4.1 to 1.5.0.
- [Release notes](https://github.com/go-sql-driver/mysql/releases )
- [Changelog](https://github.com/go-sql-driver/mysql/blob/master/CHANGELOG.md )
- [Commits](https://github.com/go-sql-driver/mysql/compare/v1.4.1...v1.5.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
94094ed16d
Bump github.com/guregu/null
...
Bumps [github.com/guregu/null](https://github.com/guregu/null ) from 3.4.0+incompatible to 3.5.0+incompatible.
- [Release notes](https://github.com/guregu/null/releases )
- [Commits](https://github.com/guregu/null/compare/v3.4.0...v3.5.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
f278eccd14
Bump gopkg.in/ini.v1 from 1.55.0 to 1.57.0
...
Bumps [gopkg.in/ini.v1](https://github.com/go-ini/ini ) from 1.55.0 to 1.57.0.
- [Release notes](https://github.com/go-ini/ini/releases )
- [Commits](https://github.com/go-ini/ini/compare/v1.55.0...v1.57.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
267c9df1c4
Bump github.com/stretchr/testify from 1.6.0 to 1.6.1
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.6.0 to 1.6.1.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.6.0...v1.6.1 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
b569144624
Bump github.com/microcosm-cc/bluemonday from 1.0.2 to 1.0.3
...
Bumps [github.com/microcosm-cc/bluemonday](https://github.com/microcosm-cc/bluemonday ) from 1.0.2 to 1.0.3.
- [Release notes](https://github.com/microcosm-cc/bluemonday/releases )
- [Commits](https://github.com/microcosm-cc/bluemonday/compare/v1.0.2...v1.0.3 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
3d80b46bdc
Bump github.com/hashicorp/go-multierror from 1.0.0 to 1.1.0
...
Bumps [github.com/hashicorp/go-multierror](https://github.com/hashicorp/go-multierror ) from 1.0.0 to 1.1.0.
- [Release notes](https://github.com/hashicorp/go-multierror/releases )
- [Commits](https://github.com/hashicorp/go-multierror/compare/v1.0.0...v1.1.0 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
dependabot[bot]
cfaaffdc6c
Bump github.com/gorilla/feeds from 1.1.0 to 1.1.1
...
Bumps [github.com/gorilla/feeds](https://github.com/gorilla/feeds ) from 1.1.0 to 1.1.1.
- [Release notes](https://github.com/gorilla/feeds/releases )
- [Commits](https://github.com/gorilla/feeds/compare/v1.1.0...v1.1.1 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
Matt Baer
1451fc1369
Use latest version of go-gopher library
4 years ago
Matt Baer
dc7b5df90e
Update saturday library to support number+letter hashtags
...
Previously, a hashtag like #100DaysToOffload wouldn't automatically turn
into a clickable link. This fixes that by updating to the latest version
of the satuday library.
5 years ago
Matt Baer
0c6d3e45e4
Update Go modules
5 years ago
Matt Baer
9f1dd7a138
Use latest writeas/activityserve library
...
This fixes a 500 error / panic caused by ActivityPub actors without an
`inbox` or `outbox` attribute.
5 years ago
Matt Baer
d6cb178eb6
Use writeas/impart v1.1.1
...
This doesn't change the actual underlying dependency; it simply uses the
current, most recent tag for the impart library.
5 years ago
Nick Gerakines
048e8a5e13
Added error messaging when user attempts to attach a slack account to a user that already has the slack account attached. Added GitLab to settings page as oauth option.
5 years ago
Matt Baer
6aa8de3a4b
Add Gopher support
...
This adds gopher support to WriteFreely -- both single- and multi-user
instances. It is off by default, but can be enabled with the new
`gopher_port` config value in the `[server]` section.
When enabled, multi-user instances will show all public blogs at
gopher://[host]:[gopher_port]/ -- otherwise, blogs are accessible at
gopher://[host]:[gopher_port]/[blog]/
This is just a proof of concept for now. We still need to handle some
edge cases and different configurations, like private instances.
Ref T559
5 years ago
Matti R
b0f0de3dde
go mod tidy
5 years ago
Matti R
6173405794
switch to use urfave/cli for cli, which allows for auto-manpage generation and bash complete
5 years ago
Matti R
0ed3059bd7
add xgo to go mod
5 years ago
Matt Baer
8fce34b70b
Tidy up Go mod files
5 years ago
Matt Baer
ae1a892be0
Upgrade gorilla/sessions to v1.2.0
...
This gets rid of the gorilla/context dependency, which might have been
causing a memory leak.
We noticed some serious memory leakage on Write.as that seemed to point
to this library. One heap snapshot:
flat flat% sum% cum cum%
259.13MB 30.41% 30.41% 268.13MB 31.46% net/textproto.(*Reader).ReadMIMEHeader
105.71MB 12.40% 42.81% 105.71MB 12.40% github.com/gorilla/context.Set
78.53MB 9.21% 52.03% 125.53MB 14.73% github.com/gorilla/sessions.(*Registry).Get
55.51MB 6.51% 58.54% 82.52MB 9.68% net/http.(*Request).WithContext
38.01MB 4.46% 63.00% 38.01MB 4.46% github.com/gorilla/mux.extractVars
35MB 4.11% 67.11% 53MB 6.22% context.WithCancel
34.50MB 4.05% 71.16% 34.50MB 4.05% context.WithValue
27MB 3.17% 74.32% 27MB 3.17% net/http.cloneURL
26MB 3.05% 77.38% 26MB 3.05% github.com/gorilla/sessions.NewSession
18MB 2.11% 79.49% 18MB 2.11% context.(*cancelCtx).Done
16.50MB 1.94% 81.42% 16.50MB 1.94% syscall.anyToSockaddr
14MB 1.64% 83.07% 47MB 5.52% github.com/gorilla/sessions.(*CookieStore).New
13.50MB 1.58% 84.65% 51.51MB 6.04% github.com/gorilla/mux.(*Route).Match
11.67MB 1.37% 86.02% 13.21MB 1.55% regexp.(*Regexp).replaceAll
9.72MB 1.14% 87.16% 22.94MB 2.69% regexp.(*Regexp).ReplaceAllString
9.50MB 1.11% 88.28% 115.21MB 13.52% github.com/gorilla/sessions.GetRegistry
With the help of these articles, we tracked it down to this dependency,
and upgraded the library, which seems to have completely fixed the issue
so far:
https://rover.rocks/golang-memory-leak/
https://medium.com/@walterwu_22843/golang-memory-leak-while-handling-huge-amount-of-http-request-35cc970cb75e
This should fix #133
5 years ago
Matti R
80cffbb3ec
update golang.org/x/crypto vendor to use acme v2
...
also run go mod tidy to clean up module files
5 years ago
Matt Baer
af23e28d05
Pass OAuth requests through new OAuth handler
...
This gives us our standard logging and passes around errors with
impart.HTTPError.
Ref T705
5 years ago
Nick Gerakines
13121cb266
Merging T705-oauth into T710-oauth-slack. T705,T710
5 years ago