Andreas/wekan
1
0
Fork 0
mirror of https://github.com/wekan/wekan.git synced 2025-12-16 15:30:13 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
12471 commits 2 branches 844 tags 122 MiB
Commit graph

82 commits

Author SHA1 Message Date
Lauri Ojansivu
bd8c565415 Fixes to make board showing correctly. 
Thanks to xet7 !
 2025-10-12 03:48:21 +03:00
Lauri Ojansivu
21ba0a9606 Fix DOMPurify paths. Part 3. 
Thanks to xet7 !
 2025-10-11 01:08:39 +03:00
Lauri Ojansivu
90899f0928 Fix DOMPurify paths. 
Thanks to xet7 !
 2025-10-11 00:49:43 +03:00
Lauri Ojansivu
ee79cab7b2 Security Fix JVN#86586539: Stored XSS. 
Thanks to Ryoya Koyama of Mitsui Bussan Secure Directions, Inc and xet7.
 2025-10-10 23:14:06 +03:00
Lauri Ojansivu
cdd7d69c66 Drag any files from file manager to minicard or opened card. Part 2. 
Thanks to xet7 !

Fixes #2936
 2025-10-10 21:46:07 +03:00
Lauri Ojansivu
3e9481c5bd Drag any files from file manager to minicard or opened card. 
Thanks to xet7 !

Fixes #2936
 2025-10-10 18:52:30 +03:00
Martin Filser
76aaefbde1 attachment popup back was broken since new attachment viewer, now fixed 2024-08-06 22:30:51 +02:00
Vid Smole
6ffde36d84
Fix navigation between attachments 2023-08-17 21:21:56 +02:00
Lauri Ojansivu
48dcd11af0 Add some filename, if there is no filename after sanitize. 
Thanks to xet7 !

Related https://github.com/wekan/wekan/pull/5083
 2023-08-16 22:32:40 +03:00
Lauri Ojansivu
28e97808f5 Add warning to beginning of sanitized filename. 
Thanks to xet7!

Related https://github.com/wekan/wekan/pull/5083
 2023-08-16 21:28:03 +03:00
Vid Smole
fa58d0ec3b
Rename files with possible XSS 
Previously upload of such files would fail silently.
Now they are renamed to a sanitized version and a warning is printed in the console.
 2023-08-16 18:51:40 +02:00
Vid Smole
30073ce1d6
Add attachment swiping 2023-08-14 15:38:13 +02:00
Vid Smole
21ffff3977
Do not open preview for attachments that cannot be previewed 2023-08-03 18:57:12 +02:00
Martin Filser
14ac099e87 Move every Attachments.find(idOrFirstObjectSelector, options) to the ReactiveCache (directory client/) 2023-07-18 21:25:29 +02:00
Martin Filser
3fc9c6efe7 Move every Attachments.findOne() to the ReactiveCache 2023-07-18 21:25:28 +02:00
Martin Filser
5e3a9dc059 Move every Meteor.user() to the ReactiveCache 2023-07-18 21:25:28 +02:00
Martin Filser
3b65113d05 Move every Cards.findOne() to the ReactiveCache 2023-07-18 21:25:28 +02:00
Martin Filser
9022e9949f Move every Boards.findOne(Session.get('currentBoard')) to the ReactiveCache 2023-07-18 21:25:28 +02:00
Lauri Ojansivu
4431ec5a27 Added missing character. 
Thanks to xet7 !
 2023-07-10 15:04:46 +03:00
Vid Smole
2c4ed5f298 Fix setting background image 2023-07-10 13:19:19 +02:00
Vid Smole
7a98445370
Better attachment viewer 2023-07-06 20:35:49 +02:00
Vid Smole
7ef3bba9f7
Better attachment gallery 2023-07-06 20:29:36 +02:00
Vid Smole
a8af5343a7 Fix typo 2023-06-30 12:48:23 +02:00
Vid Smole
070e8831b4 Add support for viewing pdfs 2023-06-30 12:48:18 +02:00
Lauri Ojansivu
47380244b8 Set card attachment as background image. Part 4. 
Thanks to xet7 !

Related #486
 2023-06-03 17:53:56 -04:00
Lauri Ojansivu
01a1eb177e Set card attachment as background image. Part 3. 
Thanks to xet7 !

Related #486
 2023-06-03 17:27:00 -04:00
Lauri Ojansivu
ed92db87bc Set card attachment as background image. Part 2. 
Thanks to xet7 !

Related #486
 2023-06-03 12:43:10 -04:00
Lauri Ojansivu
fd9478dc57 Try to fix build errors on some platforms. 
Thanks to xet7 !

Related #4842
 2023-02-21 21:27:34 +02:00
Lauri Ojansivu
382168a5b4 Try to fix some security issues. Part 2. 
Thanks to responsible security disclosure contributors and xet7 !
 2023-02-20 16:48:02 -05:00
Lauri Ojansivu
ff993e7c91 Try to fix some security issues. 
Thanks to responsible security disclosure contributors and xet7 !
 2023-02-20 01:21:33 +02:00
Lauri Ojansivu
fb6f618917 More S3 code. 
Thanks to xet7 !

Related #142
 2022-12-26 05:45:32 +02:00
Martin Filser
f6d7377977 Remove duplicate IDs issue 2022-12-19 21:14:08 +01:00
Martin Filser
110a83a736 Attachment size, changed calculation to npm filesize (Card Details) 2022-08-16 22:35:18 +02:00
Martin Filser
af120f2e0b Attachment uploads show's all uploading files 2022-08-16 22:35:18 +02:00
Martin Filser
ea937810f2 Attachment, simple upload progress bar 2022-08-16 22:35:18 +02:00
Martin Filser
a6b4a698af Attachment, upload all selected files 
- until now only the first attachment was uploaded
 2022-08-16 22:35:18 +02:00
Martin Filser
11f8b17a05 Attachment rename now without filename extension 2022-05-20 12:38:46 +02:00
Martin Filser
26e1c1dc4a Attachment file rename is now possible 
- Relates to: #2099
 2022-05-20 12:38:46 +02:00
Martin Filser
883beba9ed Split AttachmentStoreStrategy classes to new FileStoreStrategy classes 2022-04-20 20:50:41 +02:00
Martin Filser
0fcfd8e168 Attachment filename contains now the filename of the uploaded file 2022-04-20 20:50:41 +02:00
Martin Filser
44fd652b05 Move Attachment to other storages now possible 2022-04-20 20:50:41 +02:00
Martin Filser
8c7ed1855e Create Attachment Popup Menu 2022-04-20 20:48:32 +02:00
David Arnold
5a74d98795 Rem: unused previewAttachedImagePopup 2022-02-06 13:19:58 +03:00
David Arnold
0ad7eb4753 fixup! Ref: original & and use fileObj.meta 2022-02-06 13:19:58 +03:00
David Arnold
be712541d5 Revert "Do those imports!" 
This reverts commit 64dcc70bd2.
 2022-02-06 13:19:58 +03:00
David Arnold
3da88ed858 Do those imports! 2022-02-06 13:19:58 +03:00
David Arnold
e702f17c7b Ref: original & and use fileObj.meta 
fileObj.meta is part of the ostrio:files API and be passed to the
constructor. This is less hacky than trying tu update a persistet object
after the fact.
 2022-02-06 13:19:58 +03:00
David Arnold
ae8d4c1bbd Ref: attachment image paste 2022-02-06 13:19:58 +03:00
David Arnold
55acce9f0c Ref: Attachment upload handlers 2022-02-06 13:19:57 +03:00
Martin Filser
f3d5b887c8 Attachments, show file size in KB in card details 2021-11-26 00:10:09 +01:00