jaculabilis/danbooru
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
6,807 Commits 1 Branch 0 Tags
b88a66dd306c24c07da1efd7ab0232ed51afbf21
Commit Graph

85 Commits

Author SHA1 Message Date
evazion
8a012d4c91 Remove unused mobile mode code (#3206). 
Mobile mode was removed in 31e36cf.
 2018-03-20 02:29:06 -05:00
evazion
84a0a89f4b Fix #3539: Open redirect vulnerabilities. 2018-02-07 19:52:52 -06:00
r888888888
308e3670df gracefully handle unavailable pg connection errors 2018-02-05 12:38:01 -08:00
evazion
5975152ddc Fix double render error in /blah.js. 2017-12-23 00:45:07 -06:00
r888888888
c0ddf266fc move save search button to sidebar 2017-11-17 16:51:38 -08:00
r888888888
d0ccce6985 fixes #3350 2017-11-07 11:56:26 -08:00
r888888888
169fdfb745 re-enable exception rescuefrom 2017-10-03 13:47:50 -07:00
r888888888
014b9af5f8 fetch ugoiras for batch action #3317 2017-10-03 13:36:56 -07:00
r888888888
ba1399abef desktop mode redirects back to original page 2017-04-24 15:54:04 -07:00
r888888888
9718c6e107 fixes to mobile responsive view 2017-04-20 14:29:11 -07:00
evazion
3f35a9ab64 Handle failure gracefully for unconfigured services. 2017-04-05 01:17:03 -05:00
r888888888
c74b1d532a adjust interval for mod queue notice 2017-03-27 15:53:59 -07:00
Albert Yi
5445b341bc fixes #2822: Post vote API: returns 200 for both success and failure; fixes bug with x-api-limit header 2017-01-09 17:31:14 -08:00
Albert Yi
f2a5d45db0 implement token bucket rate limiting 2017-01-09 17:31:14 -08:00
Albert Yi
e7907e0e14 rename some config keys to clarify what they are 2016-11-28 17:31:01 -08:00
Albert Yi
2424f24fcd return 429 for too many requests instead of 421 2016-10-18 13:33:04 -07:00
Albert Yi
87447a51c3 work on #2693 Separate API Limits by Writes/Reads 2016-10-17 16:37:11 -07:00
evazion
bd6ebceda3 Refactor post_approvers_only to approver_only. 
Don't duplicate code with post_approvers_only; use the approver_only?
method dynamically defined in `User::Roles.each do ... end`.
 2016-10-14 05:04:40 +00:00
evazion
d84184b5f1 Prevent anon/banned/member users from voting (fix #2719). 
There was a regression in 6d6d00b; `before_filter :voter_only` was a
no-op in the post vote controller because it merely returned false,
which does not halt the request. The fix is to arrange for a voter_only
method to be defined that properly redirects to the access denied page.
 2016-10-14 04:47:51 +00:00
r888888888
800f7d9e5f fix invalid reference to request.request_uri 2016-09-23 15:30:17 -07:00
r888888888
2c80d7b82e more intelligent notice for mod queue 2016-09-09 15:08:23 -07:00
r888888888
122970bc11 fixes #2620: Users who logged in securely should always be redirected to the HTTPS version of Danbooru 2016-07-18 16:48:10 -07:00
r888888888
7efeb5829d fix syntax error 2016-01-03 12:43:39 -08:00
Toks
b708f5ea03 Don't allow banned ip addresses to make changes 
Previously banned ip addresses couldn't make new accounts, but if they
get an account somehow the ip ban wouldn't prevent them from making
edits.
 2015-10-22 20:14:43 -04:00
r888888888
6480864718 fixes #2469 2015-10-15 15:24:24 -07:00
r888888888
5e70083a6a fix security bug 2015-08-06 11:53:31 -07:00
r888888888
d8f639e721 fixes #2444 2015-07-21 13:42:32 -07:00
r888888888
76718c7012 add details to newrelic trace, fix 401 errors for xml 2015-07-09 18:15:48 -07:00
r888888888
ac8bcdb22f record db timeouts in newrelic 2015-07-09 18:00:18 -07:00
r888888888
1d9596d7f2 fixes #2417 2015-06-29 18:17:59 -07:00
r888888888
0239b0077f fix auth failed json rendering 2015-06-18 17:04:22 -07:00
r888888888
64516b3a37 fixes #2389 2015-06-18 17:03:33 -07:00
Toks
fc5580f1e3 fix #2338 2015-01-24 21:16:01 -05:00
r888888888
9f0d818f81 compatibility fixes 2014-12-10 16:59:54 -08:00
Toks
90bca638bf fixes #2316 (and similar post error messages) 2014-11-30 14:48:51 -05:00
r888888888
cdd17de0af implement coinbase tests 2014-11-29 13:14:46 -08:00
Toks
91270f4567 Fix 404/timeout errors not showing 2014-11-25 21:04:03 -05:00
r888888888
e362d73bb3 fixes #2312 2014-11-25 14:58:00 -08:00
r888888888
a89c57cee0 Fix Rails 4.1 migration issues 2014-04-24 17:01:03 -07:00
r888888888
fad0ab7c93 fixes #2133 2014-04-16 17:43:34 -07:00
r888888888
3e5dd6ca20 enable iqdb previews in upload page 2014-03-27 15:34:05 -07:00
Toks
d3a67961e9 fixes #2079 2014-01-08 15:42:27 -05:00
Toks
c2d38720ad Trim down unnecessarily long query strings 
When submitting search forms, fields that aren't filled out will still
appear in the url, taking up space and making the url harder to
understand.

This commit removes blank parameters from the query string and redirects
to the new url. Since these blank parameters were already ignored by the
individual #search methods this shouldn't negatively affect anything.
 2013-11-29 16:15:41 -05:00
Toks
b85da7d5d9 Potential fix for #2047 2013-11-26 22:44:34 -05:00
r888888888
d54d62e252 disable secure cookies check 2013-07-17 14:13:27 -07:00
r888888888
49d2df80f6 add basic support for safe mode 2013-07-17 13:59:44 -07:00
r888888888
d1be659243 revert secure cookies filter 2013-07-16 17:06:09 -07:00
r888888888
b1933dc363 fixes #1860 2013-07-16 17:04:54 -07:00
Toks
16eeb5dbaf Only initialize search parameter for get requests. 2013-07-09 13:04:12 -04:00
r888888888
715d1a42fe fixes #1764, removes login prereq for api suage 2013-06-19 14:09:07 -07:00