| #
5ed7bace |
| 15-Mar-2025 |
Andreas Gohr <andi@splitbrain.org> |
set crossorigin header for manifest. fixes #4322
To summarize the issue:
1. the wiki is protected by Basic auth, outside of the wiki
2. chrome will not pass authentication credentials when accessin
set crossorigin header for manifest. fixes #4322
To summarize the issue:
1. the wiki is protected by Basic auth, outside of the wiki
2. chrome will not pass authentication credentials when accessing a
linked manifest
3. the webserver will deny access to the manifest
DokuWiki does not care about the auth credentials, because the manifest
returns public info only. The issue is really with the webserver
denying the request.
Using a crossorigin hint will work around the chrome behaviour. The only
potential downside would be that chrome now will send auth credentials
even when there is no web server based auth. Since DokuWiki doesn't care,
it's not really a downside.
show more ...
|
| #
7370732e |
| 03-Nov-2024 |
Sascha Leib <sascha.leib@kolmio.com> |
Time markup for Last Changed field
This adds semantic markup to the "last change" date in the article footer. This change should not have any impact on the rendering of the page.
|
| #
e44b94a4 |
| 08-Sep-2024 |
Andreas Gohr <andi@splitbrain.org> |
Revert "use a dispatcher to access static image files"
This reverts commit 944e9ba7254387adb60f253b0d8796f2276096b1.
It was accidentally pused to master before review. A PR with a revert
for the re
Revert "use a dispatcher to access static image files"
This reverts commit 944e9ba7254387adb60f253b0d8796f2276096b1.
It was accidentally pused to master before review. A PR with a revert
for the revert will be pushed shortly.
show more ...
|
| #
944e9ba7 |
| 08-Sep-2024 |
Andreas Gohr <andi@splitbrain.org> |
use a dispatcher to access static image files
This makes it possible to replace default images in an update safe way.
It also addresses the issue raised in dokuwiki/docker#16
A .htaccess rewrite ca
use a dispatcher to access static image files
This makes it possible to replace default images in an update safe way.
It also addresses the issue raised in dokuwiki/docker#16
A .htaccess rewrite catches any direct accesses that might come in from
plugins.
show more ...
|
| #
a77ab274 |
| 21-Feb-2024 |
Andreas Gohr <andi@splitbrain.org> |
introduce a template function to output a inline script
This handles the output of a potentially available nonce.
|
| #
e0aa6775 |
| 21-Feb-2024 |
Andreas Gohr <andi@splitbrain.org> |
move JS detection to default script
This moves the little helper that will remove a "no-js" class from the
header element as soon as JavaScript is detected from the dokuwiki
template to our default
move JS detection to default script
This moves the little helper that will remove a "no-js" class from the
header element as soon as JavaScript is detected from the dokuwiki
template to our default inline script that also initializes the JSINFO
array.
This ensures that this inline script is run with a nonce (if available).
See #3788 for more infor
show more ...
|
| #
e5d413b0 |
| 21-Feb-2024 |
Andreas Gohr <andi@splitbrain.org> |
Use environment provided NONCE for inline scripts. #3788
When an outside source wants to set a restrictive CSP, it can use a
nonce to allow inline scripts instead of using 'unsafe-inline'. This
nonc
Use environment provided NONCE for inline scripts. #3788
When an outside source wants to set a restrictive CSP, it can use a
nonce to allow inline scripts instead of using 'unsafe-inline'. This
nonce can be passed on via the environment variable NONCE and will be
used in tpl_metaheaders to tag our inline JS initializations.
An update to the cspheaders plugin should be made to provide a nonce as
well.
show more ...
|
| #
3d106cfb |
| 21-Feb-2024 |
Andreas Gohr <andi@splitbrain.org> |
remove ols xhtml compatibility CDATA comments
We really don't need these anymore for modern browsers.
|
| #
f2a2bc72 |
| 21-Feb-2024 |
Andreas Gohr <andi@splitbrain.org> |
remove old IE conditionals from script loading
We really need not to think about IE anymore
|
| #
bcedcbab |
| 14-Nov-2023 |
Andreas Gohr <andi@splitbrain.org> |
fix page title handling broken in #4107
|
| #
9b36c1fc |
| 13-Nov-2023 |
splitbrain <splitbrain@users.noreply.github.com> |
�� Rector and PHPCS fixes
|
| #
6c16a3a9 |
| 14-Sep-2023 |
fiwswe <fiwswe@fwml.de> |
Use str_starts_with/str_ends_with
|
| #
34c27e09 |
| 13-Sep-2023 |
Andreas Gohr <andi@splitbrain.org> |
replace deprecated ptln call with echo closure
TPL_CONTENT_DISPLAY used ptln() as default action. Since this is
deprecated it needs to be replaced, but since echo is a langage construct not
a real f
replace deprecated ptln call with echo closure
TPL_CONTENT_DISPLAY used ptln() as default action. Since this is
deprecated it needs to be replaced, but since echo is a langage construct not
a real function we need to wrap it into a closure.
show more ...
|
| #
4dc42f7f |
| 31-Aug-2023 |
Gerrit Uitslag <klapinklapin@gmail.com> |
unused items, phpdocs
|
| #
d4f83172 |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
code style: line breaks
|
| #
90fb952c |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
code style: operator spacing
|
| #
62ad2d27 |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
code style: control structure fixes
|
| #
4b230b99 |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
code style: indent fixes
|
| #
26dfc232 |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
Rector to rename print to echo calls
|
| #
a664aaba |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
code style: ptln removed, useradmin cleanup
|
| #
7d34963b |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
coding style: control flow line breaks
|
| #
177d6836 |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
coding style: control flow whitespaces
|
| #
dccd6b2b |
| 30-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
coding style: function call spacing
|
| #
73022918 |
| 30-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
coding style: PSR12.Classes.ClassInstantiation.MissingParentheses
|
| #
316e3ee6 |
| 30-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
codestyle adjustments: EOF new lines
|