moon
/
sync
mirror of https://github.com/calzoneman/sync.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
573 Commits 12 Branches 9 Tags 14 MiB
Commit Graph

58 Commits

Author SHA1 Message Date
calzoneman 34e55d6fad Proper fix for path traversal 2013-07-27 11:06:49 -04:00
calzoneman be7ebf49d1 Fix #228 2013-07-27 10:13:30 -04:00
Calvin Montgomery e5d9a4c125 A few small improvements 2013-07-13 22:25:34 -04:00
calzoneman efc3cf35f4 Fix Ustream [#216] 2013-07-12 16:07:11 -04:00
calzoneman 7aac0a0f9f Fix a bug with IP forwarding 2013-07-06 13:00:02 -04:00
calzoneman 91a2fcb61d Better XSS prevention (NOTE: must run npm install validator on existing installs) 2013-07-02 15:42:26 -04:00
calzoneman c00b95feae Get x-forwarded-for IP address from cloudflare when it exists 2013-06-26 10:57:56 -04:00
calzoneman e620605458 Correct version number 2013-06-19 17:57:35 -04:00
calzoneman d5e03c10b6 Increment version number 2013-06-04 18:34:03 -04:00
calzoneman 52b88c0e40 Finish up 2013-05-30 14:34:54 -04:00
calzoneman 5205afb9cd Add password reset emailer 2013-05-30 14:07:29 -04:00
calzoneman e19f38f75b Remove debug print statement from channel.js 2013-05-27 15:23:47 -04:00
calzoneman 296bddefcd Fix #153 2013-05-27 14:35:24 -04:00
calzoneman a5c297365c Fixes; implement /clear command 2013-05-23 00:03:37 -04:00
calzoneman f8b0b06caf Add username bans, tweak ban interface 2013-05-21 12:17:01 -04:00
calzoneman 01fc746334 Implement #137 2013-05-19 12:56:13 -04:00
calzoneman 6dc0a33bda Separate ports for webserver and socketio 
It came to my attention today that some firewalls block websocket traffic on port 80.  For this reason, I have split out the webserver and socket.io traffic to 2 different ports.
In config.js, IO_PORT is the socket.io port.  This should NOT be port 80.  WEBSERVER_PORT is the port that the built in webserver will bind to (can be port 80, but this requires root permissions).
You will connect to yourhostname:WEBSERVER_PORT, and use yourhostname:IO_PORT as IO_URL.
 2013-05-17 18:39:49 -04:00
calzoneman 66fbbb77ce Add Justin.tv support 2013-05-17 14:39:58 -04:00
calzoneman 74bdffea58 Fix race condition which caused users to lose moderatorship 2013-05-17 11:02:45 -04:00
calzoneman a8d8f346d4 Add editors for CSS and JS 2013-05-15 11:34:27 -04:00
calzoneman c1c3e4c47f Add ustream support 2013-05-14 17:22:47 -04:00
calzoneman ce99233596 Reduce amount of data sent in media updates 2013-05-14 11:35:11 -04:00
calzoneman 4620fb2d56 Add unregistration for channel admins 2013-05-13 15:41:29 -04:00
calzoneman a6fff1c849 Fixes 2013-05-12 21:37:03 -04:00
calzoneman ebe48798fe Implement user profiles 
Existing installations will have to apply the following SQL:
```sql
ALTER TABLE `registrations` ADD `profile_image` VARCHAR( 255 ) NOT NULL ,
ADD `profile_text` TEXT NOT NULL
```
 2013-05-12 20:41:02 -04:00
calzoneman d9ed665540 Show page title in channel list 2013-05-12 11:46:19 -04:00
calzoneman 3af35cb268 Add links to playlist entries and the index page 2013-05-12 11:41:14 -04:00
calzoneman 161c8517b2 Change icons for next and temp, update help.html 2013-05-11 18:15:48 -04:00
calzoneman 5bb9ba7c61 Default filters apply to all channels (#97) 2013-05-09 10:11:25 -04:00
calzoneman f9efad01ea Improve/fix youtube search results 2013-05-05 18:52:16 -05:00
calzoneman 703ac3ce4f Add temporary videos 2013-05-04 17:54:28 -05:00
calzoneman 62e80cec63 Add password change (#88) 2013-05-04 13:01:04 -05:00
calzoneman 3600a3114a Transition channel page away from index.html 2013-05-01 13:39:01 -05:00
calzoneman f76b509430 Pressing enter on media URL queues next 2013-04-30 11:15:03 -05:00
calzoneman 9bc712c003 Mask user IPs for nonadmins 2013-04-29 20:01:46 -05:00
calzoneman d43f39caa1 Better channel bans 2013-04-29 18:59:51 -05:00
calzoneman e315407a48 Allow range IP bans 2013-04-29 17:06:39 -05:00
calzoneman 4b0e920dc6 Begin improving filters 2013-04-29 12:29:31 -05:00
calzoneman 9350ef6d75 Change some permissions to channel admins (#67) 2013-04-29 11:26:01 -05:00
calzoneman 7f7ae16138 Add JWPlayer support 2013-04-28 17:06:58 -05:00
calzoneman 406988aef1 Allow chaining for /m 2013-04-28 13:04:15 -05:00
calzoneman 3730ae0066 Add global bans 2013-04-28 01:30:18 -05:00
calzoneman 7003101828 Limit connections per IP 2013-04-28 01:06:58 -05:00
calzoneman 535b80153d Fix ip bans for like the 4th time 2013-04-27 23:10:48 -05:00
calzoneman 5e5ff5f414 Fix chat antiflood (#56) 2013-04-27 12:13:37 -05:00
calzoneman d5fc0bb03d Fix 'that username is already taken' login bug 2013-04-26 12:50:31 -05:00
calzoneman 84fb4214d7 Fix cross-domain issues 2013-04-25 23:57:46 -05:00
calzoneman 087f612b37 Bugfixes for last commit 
- Fix race condition for login frame
- Fix guest logins
 2013-04-25 23:04:51 -05:00
calzoneman 3a7acd0526 Implement new session system 
I replaced the old login system with a more secure one.
Instead of storing cookies containing the username and plaintext password, the password
is submitted once to obtain a session hash, which is valid for a given length of time.
Registering and logging in is now done via an iframe, which prevents custom javascript from having access to the password field.
Site admins need to run the following SQL before updating, or else all of your logins/registrations will fail:

ALTER TABLE `registrations` ADD `session_hash` VARCHAR( 64 ) NOT NULL ,
ADD `expire` BIGINT NOT NULL
 2013-04-25 22:50:12 -05:00
calzoneman a88088f2d6 Continue working on API 2013-04-25 16:16:53 -05:00