Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | mod_http_file_share: Clarify message about missing Authorization header | Kim Alvefur | 2021-01-29 | 1 | -1/+1 |
| | |||||
* | mod_http_file_share: Allow started uploads to complete after token expired | Kim Alvefur | 2021-01-28 | 1 | -1/+1 |
| | | | | | | | Otherwise uploads taking longer than 5 minutes would be rejected on completion, and that's probably annoying. Thanks jonas’ | ||||
* | mod_http_file_share: Serve configurable set of safe mime types inline ↵ | Kim Alvefur | 2021-01-28 | 1 | -1/+8 |
| | | | | | | (thanks jonas’) Otherwise people complain about browser 'Save as' dialog. | ||||
* | mod_http_file_share: Cache file metadata | Kim Alvefur | 2021-01-28 | 1 | -9/+38 |
| | | | | | | | | For faster access by avoiding archive ID. No benchmarks were harmed in the making of this commit. ... no benchmarks were performed at all. | ||||
* | mod_http_file_share: Extract all file properties into variables earlier | Kim Alvefur | 2021-01-28 | 1 | -4/+12 |
| | | | | | A step towards adding caching, which will unpack into the same variables. | ||||
* | mod_http_file_share: Fix the obligatory misplaced closing bracket (thanks ↵ | Kim Alvefur | 2021-01-27 | 1 | -1/+1 |
| | | | | scansion) | ||||
* | mod_http_file_share: Insert pauses to avoid blocknig for long periods | Kim Alvefur | 2021-01-27 | 1 | -0/+8 |
| | | | | Similar to the mod_mam cleanup job | ||||
* | mod_http_file_share: Add support for removing old files (default 2 weeks) | Kim Alvefur | 2021-01-27 | 1 | -1/+59 |
| | |||||
* | mod_http_file_share: More security headers | Kim Alvefur | 2021-01-27 | 1 | -2/+4 |
| | |||||
* | mod_http_file_share: Strip authorization type prefix a bit earlier | Kim Alvefur | 2021-01-27 | 1 | -2/+5 |
| | |||||
* | mod_http_file_share: Factor out function for generating full filename | Kim Alvefur | 2021-01-27 | 1 | -2/+6 |
| | |||||
* | mod_http_file_share: Use '.bin' file extension | Kim Alvefur | 2021-01-27 | 1 | -2/+3 |
| | | | | | Distinct from '.dat' used by datamanager / internal stortage for Lua object storage so that they can't easily be loaded by accident that way. | ||||
* | mod_http_file_share: Validate file size early in HTTP PUT request | Kim Alvefur | 2021-01-27 | 1 | -0/+5 |
| | |||||
* | mod_http_file_share: Move Authorization type string | Kim Alvefur | 2021-01-27 | 1 | -2/+2 |
| | | | | It belongs with the header more than the token itself | ||||
* | mod_http_file_share: Add some logging | Kim Alvefur | 2021-01-27 | 1 | -0/+14 |
| | |||||
* | mod_http_file_share: Handle content-type being optional | Kim Alvefur | 2021-01-27 | 1 | -2/+2 |
| | |||||
* | mod_http_file_share: Reject invalid file sizes | Kim Alvefur | 2021-01-27 | 2 | -0/+17 |
| | |||||
* | mod_http_file_share: Fix name of max-file-size tag | Kim Alvefur | 2021-01-27 | 1 | -1/+1 |
| | |||||
* | mod_http_file_share: Expand registry to fix extra tag | Kim Alvefur | 2021-01-27 | 1 | -5/+6 |
| | | | | | Error registry compact format doesn't support extra.tag so needs to be the more verbose format | ||||
* | mod_http_file_share: Verify final file size on completion of upload | Kim Alvefur | 2021-01-27 | 1 | -0/+5 |
| | |||||
* | mod_http_file_share: Add file type filter | Kim Alvefur | 2021-01-26 | 3 | -0/+20 |
| | | | | | Unlike mod_http_upload, this can't be bypassed by uploading with a different file extension. | ||||
* | mod_http_file_share: Add file size limit (default 10M) | Kim Alvefur | 2021-01-26 | 3 | -0/+30 |
| | |||||
* | mod_http_file_share: Validate that filename does not contain '/' | Kim Alvefur | 2021-01-26 | 2 | -0/+19 |
| | |||||
* | mod_http_file_share: Return proper error if unauthorized | Kim Alvefur | 2021-01-26 | 1 | -1/+5 |
| | |||||
* | mod_http_file_share: Add basic access control | Kim Alvefur | 2021-01-26 | 1 | -1/+7 |
| | | | | Partly lifted from mod_external_services | ||||
* | mod_http_file_share: Add support for external file upload service | Kim Alvefur | 2021-01-26 | 2 | -3/+9 |
| | | | | | PUT /upload/:slot/:filename Authorization: Bearer JWT{ uploader, filename, filesize, filetype, exp } | ||||
* | mod_http_file_share: Let's write another XEP-0363 implementation | Kim Alvefur | 2021-01-26 | 5 | -0/+229 |
| | | | | | | | | | | This variant is meant to improve upon mod_http_upload in some ways: * Handle files much of arbitrary size efficiently * Allow GET and PUT URLs to be different * Remember Content-Type sent by client * Avoid dependency on mod_http_files * Built-in way to delegate storage to another httpd | ||||
* | util.interpolation: Add test for #1623 | Kim Alvefur | 2021-01-25 | 1 | -0/+5 |
| | |||||
* | Merge 0.11->trunk | Kim Alvefur | 2021-01-25 | 1 | -2/+2 |
|\ | |||||
| * | util.interpolation: Fix combination of filters and fallback values #1623 | Kim Alvefur | 2021-01-25 | 1 | -2/+2 |
| | | |||||
| * | net.adns: Prevent empty packets from being sent on "connect" (fix #1619) | Kim Alvefur | 2021-01-12 | 1 | -0/+5 |
| | | | | | | | | Thanks Ge0rG for testing | ||||
| * | net.server_epoll: Fix off-by-one in 2c559953ad41 | Kim Alvefur | 2021-01-10 | 1 | -1/+1 |
| | | | | | | | | Thanks tmolitor | ||||
| * | util.timer: Ensure timers can't run more than once per tick (fixes #1620) | Kim Alvefur | 2021-01-08 | 1 | -1/+14 |
| | | | | | | | | See longer explanation in 2c559953ad41 | ||||
| * | net.server_epoll: Ensure timers can't run more than once per tick | Kim Alvefur | 2021-01-08 | 1 | -2/+18 |
| | | | | | | | | | | | | | | | | This makes sure that a timer that returns 0 (or less) does not prevent runtimers() from completing, as well as making sure a timer added with zero timeout from within a timer does not run until the next tick. Thanks tmolitor | ||||
| * | util.stanza: Move misplaced argument to correct place | Kim Alvefur | 2020-12-24 | 1 | -2/+2 |
| | | | | | | | | | | valid_utf8() takes only one argument, so the false was probably meant to be valid_xml_cdata(text, attribute=false) | ||||
| * | mod_s2s: Fix copypaste mistake in b3ae48362f78 | Kim Alvefur | 2020-12-16 | 1 | -1/+1 |
| | | | | | | | | | | Directly sending something over s2s needs to use sends2s() but the code copied from mod_c2s had .send() | ||||
| * | MUC: Fix logic bug causing unnecessary presence to be sent, fixes #1615 ↵ | Matthew Wild | 2020-12-15 | 1 | -2/+2 |
| | | | | | | | | (thanks damencho) | ||||
| * | mod_s2s: Prevent whitespace keepalives the stream has been opened | Kim Alvefur | 2020-12-10 | 1 | -1/+4 |
| | | | | | | | | | | | | | | | | | | This will result in the stream timing out instead, which is probably correct if the stream has not been opened yet. This was already done for c2s in e69df8093387 Thanks Ge0rG | ||||
| * | mod_saslauth: Only advertise channel binding if a finished message is available | Kim Alvefur | 2020-11-23 | 1 | -1/+1 |
| | | | | | | | | In some cases this method returns nothing, unclear why. | ||||
| * | mod_saslauth: Disable 'tls-unique' channel binding with TLS 1.3 (closes #1542) | Kim Alvefur | 2020-11-23 | 1 | -1/+4 |
| | | | | | | | | | | | | | | | | The 'tls-unique' channel binding is undefined in TLS 1.3 according to a single sentence in parenthesis in Apendix C of RFC 8446 This may trigger downgrade protection in clients that were expecting channel binding to be available. | ||||
| * | util.promise: Use xpcall() for promise function to preserve tracebacks | Matthew Wild | 2020-11-23 | 1 | -1/+1 |
| | | |||||
| * | util.stanza: Reject ASCII control characters (fixes #1606) | Kim Alvefur | 2020-11-11 | 2 | -1/+10 |
| | | |||||
| * | mod_pubsub: Fix notification stanza type setting (fixes #1605) | Kim Alvefur | 2020-11-06 | 1 | -1/+1 |
| | | |||||
| * | mod_pubsub: Lower priority of default <body> generator | Kim Alvefur | 2020-11-05 | 1 | -1/+1 |
| | | | | | | | | | | | | | | in order to avoid conflict with a handler at the default (0) priority, making it easier to write your own formatting in plugins. this follows the common pattern of default modules having lower priority | ||||
| * | util.dbuffer: Optimize :sub() and :byte() | Matthew Wild | 2020-10-28 | 1 | -4/+26 |
| | | |||||
| * | util.debug: Fix locals being reported under wrong stack frame in some cases ↵ | Matthew Wild | 2020-10-16 | 2 | -1/+94 |
| | | | | | | | | (+tests!!) | ||||
| * | Back out changeset 2c1583bb0e0f | Kim Alvefur | 2020-10-15 | 1 | -0/+4 |
| | | | | | | | | Same reason as 712b2e6a09d9 | ||||
| * | Back out 6dde2c9fa272: Doesn't work on Lua 5.1 | Kim Alvefur | 2020-10-15 | 1 | -13/+6 |
| | | |||||
| * | util.strbitop: Remove redundant init function | Kim Alvefur | 2020-10-15 | 1 | -4/+0 |
| | | | | | | | | | | When you have 3 almost identical functions, you tend to edit one and then copypaste. Forgot to remove this line from the other two. | ||||
| * | util.strbitop: Create buffer in the correct size (optimization) | Kim Alvefur | 2020-10-15 | 1 | -6/+13 |
| | | | | | | | | | | This avoids dynamically growing the buffer as Lua does when luaL_addchar is used, thus saving on realloc calls. |