Nemcio/Grav
1
0
Fork 0
mirror of https://github.com/getgrav/grav.git synced 2026-03-01 10:01:26 +01:00
Code Issues Packages Projects Releases Activity
5,406 Commits 9 Branches 318 Tags
5cdeb28e6b244a7335aebbe94d19df56bc2004f4
Commit Graph

3940 Commits

Author SHA1 Message Date
Andy Miller
5cdeb28e6b Revert "better handle cookie_samesite if null" 
This reverts commit fd0c9823fa.
 2020-12-04 03:33:59 -07:00
Andy Miller
cb373dae59 prepare for release 2020-12-03 14:22:38 -07:00
Matias Griese
00a7094802 Update getBackupDownloadUrl() method to not pass the path 2020-12-01 09:33:55 +02:00
Andy Miller
75b74c4ab3 XSS fix for grav-ghsa-cvmr-6428-87w9 2020-11-30 16:10:56 -07:00
Matias Griese
76670e47a1 PHP 8 fixes 2020-11-27 13:49:10 +02:00
Matias Griese
07ee5b42f7 Added basic support for user/config/versions.yaml 2020-11-23 21:53:28 +02:00
Djamil Legato
e16b29c566 Better handling of missing repository index (grav-plugin-admin#1916) 2020-11-21 14:05:29 -08:00
1tsi
56ce4ab0f2 Update media.yaml (#3070) 
fixed MIME types for .docx, .pptx and .xlsx
 2020-11-18 12:10:23 -07:00
Andy Miller
fd0c9823fa better handle cookie_samesite if null 2020-11-17 15:24:08 -07:00
randoum
0b41eea2bb Allow to set SameSite from system.yaml (#3063) 
* Update system.yaml

* Update SessionServiceProvider.php

* Update Session.php

* Update system.yaml
 2020-11-12 13:40:39 -07:00
Stephan Strate
9b2b909139 Check exact extension in checkFilename utility (#3061) 
* Fix uploads_dangerous_extensions checking (#3060)

* Remove redundant prefixing of `.` to extension (#3060)
 2020-11-11 10:30:57 -07:00
Vilius Šumskas
54dccd11ef Fix failing example custom job. (#3050) 
* Since Symfony 4.2 passing chained shell commands to the Process component is not supported anymore and a working directory needs to be set by passing it as a completely separate parameter.

Unless somebody finds a way to use Process() for this and fixes it in the code, rework example custom job.

Related info: https://symfony.com/blog/new-in-symfony-4-2-important-deprecations#deprecated-process-commands-as-strings

* One more place to fix Symfony 4.2 compatibility.
 2020-11-04 15:40:32 -07:00
Grant
6a6f99e9ae Add option for timeout in selfupgrade command (#3013) 
* Add option for timeout in selfupgrade command

* Raise the default timeout
 2020-10-30 07:48:03 -06:00
Djamil Legato
14ad7cf3ac Set grav_cli as referer when coming from CLI 2020-10-29 15:58:32 -07:00
Djamil Legato
ded7670ac3 Forward a sid to GPM when downloading a premium package via CLI 2020-10-29 15:49:36 -07:00
Vilius Šumskas
1661dc9ef7 Fix compatibility with Symfony 4.2 and up. (#3048) 
This enables running scheduled *shell* commands again because Symfony 4.2 deprecated passing commands as a string to the Process component: https://symfony.com/blog/new-in-symfony-4-2-important-deprecations#deprecated-process-commands-as-strings

One also needs to catch all possible exceptions from the Process component, though. These exceptions are never displayed or sent to any of the logs and I've spent hours trying to debug why my scheduled tasks are failing.
 2020-10-23 14:40:35 -06:00
Andy Miller
38043ebade Merge branch 'develop' of github.com:getgrav/grav into develop 
# Conflicts:
#	CHANGELOG.md
 2020-10-18 15:10:01 -06:00
Andy Miller
9a694a8d3d updated jquery 3.x 2020-10-18 15:08:59 -06:00
Matias Griese
fb3efba204 Fixed hardcoded system folder in blueprints, config and language streams 2020-10-14 11:01:45 +03:00
Andy Miller
8d65c5c2c0 prepare for release 2020-10-07 17:25:32 -06:00
Andy Miller
9d870b2c45 Backported folder::countChildren() from 1.7 2020-10-06 16:06:10 -06:00
Andy Miller
cfd5d9e209 improved compatibility 2020-10-05 18:44:59 -06:00
Matias Griese
23716ff729 Do not cache 404 [#3025] 2020-10-05 11:16:17 +03:00
Matias Griese
9532317928 Fixed fatal error in toggled fields 2020-09-30 14:38:29 +03:00
Djamil Legato
2108a902c2 Fixed Referer reference for GPM calls 2020-09-28 17:37:08 -07:00
Andy Miller
59b3b6cc02 initialize page blueprint first 2020-09-21 15:00:51 -06:00
Andy Miller
b8b1bed7ed backported theme_var enhanced logic from 1.7 2020-09-10 15:52:52 -06:00
Andy Miller
03c6e74c4d backported {{ cache }} from 1.7 2020-09-10 15:49:25 -06:00
Andy Miller
71639de5ec Added Utils::fullPath() helper method 2020-09-10 15:43:57 -06:00
Andy Miller
39310cd4af Added svg_image twig function 2020-09-10 15:43:47 -06:00
Andy Miller
6e8c852bfa prepare for release 2020-09-01 14:35:29 -06:00
torohill
fc97e88928 Left pad scheduler times with zeros. (#2921) 2020-07-07 11:17:15 -06:00
Fabien Basmaison
00c5dba210 Use proper ellipsis for summary. (#2939) 2020-06-17 08:28:32 -06:00
Andy Miller
46d4f4a481 right-trim route for safety 
Signed-off-by: Andy Miller <rhuk@mac.com>
 2020-06-09 10:43:21 -06:00
Andy Miller
e66f6583b1 prepare for release 
Signed-off-by: Andy Miller <rhuk@mac.com>
 2020-06-08 15:49:51 -06:00
Andy Miller
12389b1e0d JSON Route of homepage with no ‘route’ set is valid [form#425] 
Signed-off-by: Andy Miller <rhuk@mac.com>
 2020-06-07 19:46:18 -06:00
Florian Körner
ff6e5a20c3 Fix: case-insensitive search of location header (#2932) 
looks good!
 2020-06-07 15:42:29 -06:00
Andy Miller
7faaff304a PSR fix 
Signed-off-by: Andy Miller <rhuk@mac.com>
 2020-06-05 12:26:30 -06:00
Andy Miller
bfbe4ce1b8 option to control supported attributes in markdown links 
Signed-off-by: Andy Miller <rhuk@mac.com>
 2020-06-04 14:42:38 -06:00
Andy Miller
aaa636f357 cleaner handling of cropZoom 
Signed-off-by: Andy Miller <rhuk@mac.com>
 2020-06-04 14:31:22 -06:00
Andy Miller
3bd4f9499a cherry picked #1925 fix from 1.7 to 1.6 
Signed-off-by: Andy Miller <rhuk@mac.com>
 2020-05-26 08:35:49 -06:00
Andy Miller
859aff590b Prepare for release 
Signed-off-by: Andy Miller <rhuk@mac.com>
 2020-05-14 15:41:34 -06:00
Andy Miller
497ca2a5cd Advanced Customization options for HTTP_X_FORWARDED headers 2020-05-14 14:43:52 -06:00
Jesse Donat
58da1cd489 Updates donatj/phpuseragentparser to 1.0.0 2020-05-08 10:18:31 +03:00
Andy Miller
d16a88e731 prepare for release 2020-04-27 16:08:28 -06:00
A----
39d0d640e6 Support for the X-Forwarded-Host (#2891) 2020-04-27 10:38:36 -06:00
Andy Miller
1ce0176ab6 created aliases for direct \Parsedown and \ParsedownExtra references 2020-03-19 14:25:08 -06:00
Andy Miller
453cd62a51 prepare for release 2020-03-19 12:45:58 -06:00
Andy Miller
db92c7b32d Upgraded jQuery to 3.4.1 - fixes #2859 2020-03-19 11:31:10 -06:00
Andy Miller
2eae104c7a Fix for user reported CVE path-based open redirect 2020-03-18 17:32:46 -06:00