Commit Graph

1073 Commits

Author SHA1 Message Date
calzoneman 288da92e6f Remove login from index.html since it's unnecessary 2013-05-01 17:54:55 -05:00
calzoneman 41de5c5d7a Add homepage channel list 2013-05-01 17:49:34 -05:00
calzoneman 5b7eed3541 Sort usernames in connection log 2013-05-01 17:24:07 -05:00
calzoneman d8894f0280 Add timestamps (optional) to chat messages 2013-05-01 16:03:03 -05:00
calzoneman 3600a3114a Transition channel page away from index.html 2013-05-01 13:39:01 -05:00
calzoneman 7a2f3efcff Fix #74 2013-05-01 13:03:03 -05:00
calzoneman ab3dd208c3 Alert on wrong credentials (#76) 2013-05-01 13:02:06 -05:00
calzoneman 6a3e248ea5 Add donation link to footer 2013-04-30 17:09:30 -05:00
calzoneman f76b509430 Pressing enter on media URL queues next 2013-04-30 11:15:03 -05:00
calzoneman b0cc87e193 Add site footer 2013-04-30 11:13:06 -05:00
calzoneman 130d22a754 Add multiple chat filter editor 2013-04-30 11:09:32 -05:00
calzoneman af8fcbb673 Improve anti-chatflood 2013-04-30 10:30:59 -05:00
calzoneman 9bc712c003 Mask user IPs for nonadmins 2013-04-29 20:01:46 -05:00
calzoneman d43f39caa1 Better channel bans 2013-04-29 18:59:51 -05:00
calzoneman e315407a48 Allow range IP bans 2013-04-29 17:06:39 -05:00
calzoneman 4b0e920dc6 Begin improving filters 2013-04-29 12:29:31 -05:00
calzoneman 9350ef6d75 Change some permissions to channel admins (#67) 2013-04-29 11:26:01 -05:00
calzoneman 184fbcd971 Fix #66 2013-04-29 11:08:06 -05:00
calzoneman 794f26af22 Fix invalid sessions causing a half-logged in state 2013-04-28 20:51:56 -05:00
calzoneman bdfd7ad3dc Less hackish fix for boolean cookies 2013-04-28 17:36:06 -05:00
calzoneman 1cc005b55b Fix option cookies 2013-04-28 17:26:45 -05:00
calzoneman 609b3c3d0a Fix empty MOTD bug 2013-04-28 17:10:00 -05:00
calzoneman 7f7ae16138 Add JWPlayer support 2013-04-28 17:06:58 -05:00
calzoneman 4bdbac3dbd Fix synchtube layout, add placeholder text, fix alignment issue 2013-04-28 13:48:22 -05:00
calzoneman 406988aef1 Allow chaining for /m 2013-04-28 13:04:15 -05:00
calzoneman 8d6b228f8f Add user options menu 2013-04-28 12:57:08 -05:00
calzoneman 89f7e26450 Minor fixes 2013-04-28 12:14:52 -05:00
calzoneman 3730ae0066 Add global bans 2013-04-28 01:30:18 -05:00
calzoneman 7003101828 Limit connections per IP 2013-04-28 01:06:58 -05:00
calzoneman 535b80153d Fix ip bans for like the 4th time 2013-04-27 23:10:48 -05:00
calzoneman fb702934f1 Fix the regex matching invalid channel names 2013-04-27 20:54:23 -05:00
calzoneman 7c9d9c7ab1 Work on another layout option, fix footer 2013-04-27 18:49:39 -05:00
calzoneman 9e884ac116 Fix slight layout glitch, work on dark theme 2013-04-27 15:55:08 -05:00
calzoneman d168c8fff7 Add guest login, tweak button visibility 2013-04-27 12:55:17 -05:00
calzoneman 5e5ff5f414 Fix chat antiflood (#56) 2013-04-27 12:13:37 -05:00
calzoneman b0cf61d332 Fix chat antiflood 2013-04-27 12:13:01 -05:00
calzoneman 654ce1e886 Fix channelwidget.html 2013-04-27 11:54:35 -05:00
calzoneman 52d9663eb7 Moderators can remove videos from the library 2013-04-27 11:48:36 -05:00
calzoneman a15cda4b6d last one I promise 2013-04-26 12:56:25 -05:00
calzoneman 838792c59b This better fix this 2013-04-26 12:55:01 -05:00
calzoneman b9c280ae39 Double fix channellist.html because I didn't read 2013-04-26 12:53:06 -05:00
calzoneman d5fc0bb03d Fix 'that username is already taken' login bug 2013-04-26 12:50:31 -05:00
calzoneman d1b06413ee Fix channellist page to use session login 2013-04-26 12:47:26 -05:00
calzoneman 6eaa97ccb8 Hide embedded player while login modal is active 2013-04-26 12:28:02 -05:00
calzoneman 84fb4214d7 Fix cross-domain issues 2013-04-25 23:57:46 -05:00
calzoneman 087f612b37 Bugfixes for last commit
- Fix race condition for login frame
- Fix guest logins
2013-04-25 23:04:51 -05:00
calzoneman 3a7acd0526 Implement new session system
I replaced the old login system with a more secure one.
Instead of storing cookies containing the username and plaintext password, the password
is submitted once to obtain a session hash, which is valid for a given length of time.
Registering and logging in is now done via an iframe, which prevents custom javascript from having access to the password field.
Site admins need to run the following SQL before updating, or else all of your logins/registrations will fail:

ALTER TABLE `registrations` ADD `session_hash` VARCHAR( 64 ) NOT NULL ,
ADD `expire` BIGINT NOT NULL
2013-04-25 22:50:12 -05:00
calzoneman db2e5e20b9 Add small copyright notice to bottom of index.html 2013-04-25 20:01:34 -05:00
calzoneman ea4ed864c8 Fix content-length bug for api.js
Well, it finally happened.  I made an assumption about text and it bit me in the butt.  Protip: not everything is 1 byte per character!
2013-04-25 16:36:56 -05:00
calzoneman a88088f2d6 Continue working on API 2013-04-25 16:16:53 -05:00