HelloZeroNet
/
ZeroNet
mirror of https://github.com/HelloZeroNet/ZeroNet.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
3,983 Commits 3 Branches 24 Tags 18 MiB
Commit Graph

215 Commits

Author SHA1 Message Date
shortcutme 4d991cda6d
Also serve htm files with wrapper 2017-10-04 12:37:56 +02:00
shortcutme 6984575901
Remove dead reload code 2017-10-04 12:37:34 +02:00
shortcutme 75b44f6980
Raise SecurityError on invalid path 2017-10-04 12:37:22 +02:00
shortcutme 3c46f60042
Show wrapper automatically if wrapper nonce is invalid 2017-10-04 12:35:15 +02:00
shortcutme 7dbc323f76
ZeroNet-internal virtual path on UiServer for internal commands 2017-10-04 12:33:43 +02:00
shortcutme bfd3d18a10
Fix multiuser plugin compatibility 2017-09-02 14:28:01 +02:00
grez911 158f9e37e5 Added explanation of convertion actionWrapper response to list 2017-08-25 11:05:48 +03:00
grez911 905976a1b6 Added exception handling for broken user.json 2017-08-22 17:43:55 +03:00
shortcutme 1db2327b3d
Rev2180, Allow ajax requests using ajax_key http get parameter 2017-08-15 02:40:38 +02:00
shortcutme 504d7812e5
Fix exception if no path_parts returned 2017-07-19 16:46:37 +02:00
shortcutme 1f7b25b60c
Ignore http protocol in same origin comparison 2017-07-18 20:57:33 +02:00
shortcutme a0d85d7d83
Prompt new site addition in raw mode 2017-07-15 01:32:15 +02:00
shortcutme d281f112d9
Rev2154, Fix same origin checking in proxy mode 2017-07-14 11:08:22 +02:00
shortcutme e525ea2431
Rev2144, Fix CSP header in FilePack plugin, Allow media-src and font-src from self source 2017-07-11 23:00:33 +02:00
shortcutme 7c6bea6ddd
Fix raw site access without / at the site address end 2017-07-10 02:42:28 +02:00
shortcutme 5950b04c40
Add allow-origin header for media requests from same origin to fix css font support 2017-07-09 14:11:44 +02:00
shortcutme 434cfce32a
More simple same origin test for media files cross-site access 2017-07-09 14:11:06 +02:00
shortcutme febdea6c64
Serve files without wrapper if requested using /raw/ prefix 2017-07-09 14:10:01 +02:00
shortcutme 49735b7e55
Fix not internal error on request files from not seeded sites 2017-07-06 00:09:35 +02:00
shortcutme 1d6168f457
Download, svg, xml, flash, pdf files instead of displaying to avoid js execution 2017-07-06 00:09:05 +02:00
shortcutme 2a161f4421
Never allow cross-origin file request 2017-07-06 00:08:32 +02:00
shortcutme e9ce137e14
Display invalid hosts 2017-06-15 19:49:51 +02:00
shortcutme c84fcf2034
Support manual ui_host command line parameter 2017-06-15 19:48:01 +02:00
shortcutme 42874038e2
Only allow UI requests from safe hosts 2017-06-13 14:19:23 +02:00
shortcutme d467aabd4c
Rev2067, Fix inner_path stripping 2017-05-11 18:18:12 +02:00
shortcutme 5908d2ca53
RenderWrapper showloadingscreen parameter 2017-05-11 18:01:16 +02:00
shortcutme 27a582634f
Don't check referrer for html files 2017-05-11 18:00:57 +02:00
shortcutme 47245f485a
ActionFile security check 2017-05-11 17:59:46 +02:00
shortcutme 545459be88
RenderWrapper with parameters 2017-05-11 17:59:12 +02:00
shortcutme b5d3995874
GetSiteUrl based on if it's proxy request 2017-05-11 17:57:29 +02:00
shortcutme 487f5cb8c2
Fix unicode url redirects 2017-05-11 17:56:01 +02:00
shortcutme f67cb7b145
Rev2059, Fix download test, boost priority on request by 15, Adjust default priorities 2017-05-07 21:21:26 +02:00
shortcutme f3edd8013d
Rev2034, Fix leaking users.json via webui 2017-04-09 16:54:28 +02:00
shortcutme 871588aa9f
Move invalid path test upper level 2017-02-27 11:21:22 +01:00
shortcutme 97cec2ba46
Benchmark helper for console 2017-02-27 00:13:41 +01:00
shortcutme c95637eee1
Rev1941, Use utf-8 encoding on text files 2017-02-24 14:39:20 +01:00
shortcutme 45e2b350a9
Raise exception on invalid path 2017-02-19 00:51:47 +01:00
shortcutme f74e9397db
Rev1861, Fix favicon for zero url access type 2017-02-05 22:55:24 +01:00
shortcutme a08114b1b0
Rev1855, Fix content type detection, Formatting 2017-02-02 12:51:41 +01:00
shortcutme d65c7d05a4
Remove /media access 2017-01-27 13:05:49 +01:00
shortcutme d3fc1cf897
Rev1816, Fix exe distribution forbidden error 2017-01-14 12:43:05 +01:00
MuxZeroNet 6b0ef500ed Fix extension detection 2017-01-12 05:22:26 +00:00
MuxZeroNet 4a6dc7971e #752 2017-01-09 05:01:49 +00:00
shortcutme 1a5bfd973e Only download media if site is already added 2017-01-08 17:31:03 +01:00
shortcutme 6c68f8dd6c Fix content type detection for options request 2017-01-08 17:27:57 +01:00
shortcutme 2447279191 Rename websocket detection 2017-01-08 17:26:59 +01:00
MuxZeroNet 0a1eecee20 WebSocket requests not allowed 2017-01-08 06:56:42 +00:00
MuxZeroNet da7821a3a9 X-Frame-Options 2017-01-06 01:44:22 +00:00
shortcutme 5c2b90c20f Rev1799, Force correct css content type 2017-01-05 02:33:33 +01:00
shortcutme 86b0046f28 Don't allow load load wrapper frames as prefetch or as image 2016-12-27 11:37:35 +01:00
shortcutme b25bf97cad Add language to UI js as paramter to avoid cache 2016-11-18 20:07:58 +01:00
shortcutme 6c74f6c527 Possible to disable length header on sitemeda 2016-11-16 11:19:35 +01:00
shortcutme c076f605aa Rev1703, Allow custom favicon 2016-11-10 23:14:30 +01:00
shortcutme ccb35f1353 Send content size header for normal files 2016-11-07 22:49:13 +01:00
shortcutme fbdc9e2b40 Comment typo 2016-10-02 14:24:48 +02:00
Durand D'souza 13837971a7 Update UiRequest.py 
Fixed a bug where a lack of a trailing slash in every url caused zeronet to fail to load the page, even if it existed.
 2016-09-20 05:23:34 +01:00
ZeroNet 835381fbb1 Filter media referrer by original request address 2016-08-10 12:24:47 +02:00
ZeroNet 04bed98a97 Store original request address 2016-08-10 12:24:09 +02:00
HelloZeroNet d2b9555508 Fix data dir detection 2016-04-18 00:47:26 +02:00
HelloZeroNet 145d4dbd69 Move path parsing to separate function 2016-03-16 00:33:05 +01:00
HelloZeroNet 2901f1e1ba Rev949, Newsfeed allows items 2min from future, Switch sidebar content.json list to input for faster opening, Promise based sidebar rendering to make it more reliable on slow connections, RateLimit sidebar globe updating, Some PEP8 formatting 2016-03-06 19:28:22 +01:00
TheNain38 d0919d8ab8 Fix checking if Ajax request 2016-03-06 15:44:55 +01:00
HelloZeroNet 5b59da2435 Rev912, Keep track site added time, UiRequest xss quickfix, Cleanup peerPing output 2016-03-01 23:16:31 +01:00
HelloZeroNet ac0dc3bf11 Rev906, Escape file path, Only allow to modify tor in configuration 2016-02-20 11:19:28 +01:00
HelloZeroNet 2f25204be9 Rev905, Escape title and query string 2016-02-18 19:44:52 +01:00
HelloZeroNet 1dbc33445f Rev903, FeedQuery command only available for ADMIN sites, Show bad files in sidebar, Log unknown messages, Add and check inner_path and site address on sign/verify, Better peer cleanup limit, Log site load times, Testcase for address and inner_path verification, Re-sign testsite with new fields, Fix unnecessary loading screen display when browsing sub-folder with index.html, Fix safari notification width 2016-02-18 11:22:21 +01:00
HelloZeroNet 61cfb8aa2f Rev900, Sidebar filestats bar width round fix, Sidebar WebGL not supported error, Sidebar optimalizations, Trayicon gray shadow, Trim end of line whitespace from json files, Fix testweb testcase, Implement experimental postMessage nonce security, Return None when testing external ip, Window opener security check and message, Increase timeout for large files 2016-02-10 02:30:04 +01:00
HelloZeroNet 687a848292 Version 0.3.6, Rev879, Fix sidebar error on description missing, New trayicon, New favicon, Disable some functions on MultiUser proxies, New homepage, Replace only the last ? in SQL queries, Alwaays grant ADMIN permission to homepage site, Announce before publish if no peers, configSet, serverShutdown, ADMIN WebsocketAPI command, Stop Tor client before updating, Ignore peer ip packing error, Ignore db files from git, Fix safari ajax error when UiPassword enabled 2016-02-02 11:40:45 +01:00
HelloZeroNet f7eaf7b222 Rev860, Re-enable ajax on non-html items 2016-02-02 00:49:43 +01:00
HelloZeroNet 6427709dec Rev841, Allow ajax access only on json data, Better json request detect for wrapper 2016-01-12 21:52:24 +01:00
HelloZeroNet e9d2cdfd37 Version 0.3.5, Rev830, Full Tor mode support with hidden services, Onion stats in Sidebar, GeoDB download fix using Tor, Gray out disabled sites in Stats page, Tor hidden service status in stat page, Benchmark sha256, Skyts tracker out expodie in, 2 new tracker using ZeroNet protocol, Keep SSL cert option between restarts, SSL Certificate pinning support for connections, Site lock support for connections, Certificate pinned connections using implicit SSL, Flood protection whitelist support, Foreign keys support for DB layer, Not support for SQL query helper, 0 length file get bugfix, Pex onion address support, Faster port testing, Faster uPnP port opening, Need connections more often on owned sites, Delay ZeroHello startup message if port check or Tor manager not ready yet, Use lockfiles to avoid double start, Save original socket on proxy monkey patching to get ability to connect localhost directly, Handle atomic write errors, Broken gevent https workaround helper, Rsa crypt functions, Plugin to Bootstrap using ZeroNet protocol 2016-01-05 00:20:52 +01:00
HelloZeroNet 3587777ea8 Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign 2015-11-09 00:44:03 +01:00
HelloZeroNet 8e710beab1 Rev536, Fix stats page, Support ranged http requests for better video browser compatibility, setHashfield command, One by one send hashfield to connected peers if changed, Keep count hashfield changetime, PeerHashfield optimalizations, Wait for peers on checkmodification, Give more time to query trackers, Do not count udp trackers as error if udp disabled, Test hashfield push 2015-10-30 02:08:02 +01:00
HelloZeroNet 713baeab63 Rev493, Fix trayicon autostart detect, Dont leak details on ui_restrict 2015-10-25 23:08:25 +01:00
HelloZeroNet 4b403da056 Rev448, Better file download priority method, Some potential programming error fix, Renamed utils to helper, Moved pack and unpackaddress to helper package, Test new privatekey creation, Test site file download order, Spy test helper to log called parameters, Remove unnecessary fat arrows 2015-09-27 02:08:53 +02:00
HelloZeroNet 9ac8f7f63c Rev426, Fix for nonce error on bigsites asking, Dont display error details on 404 error, Dont log Websocket close errors, Add travis pip caching and osx test, Add build status to readme, Test for site files after cloning, Test for json to db mapping, Test site deleteFiles command, Test user certificate and auth address generation, Exclude debug lines from coverage, Dont run webtests every time 2015-09-20 22:35:45 +02:00
HelloZeroNet e00537ba57 Rev423, Rewrite and reorganize test using pytest, New PhantomJS based browser tests, Fix html requests error without wrapper nonce, Indent json files with 1 space 2015-09-20 00:27:54 +02:00
HelloZeroNet 93312ae129 Rev420, Ignore file delete errors, Schedule download user files later if first content.json failed at first try, Reload content.json content after cloning, Allow modals on owned sites to display coffeescript compile errors, Disable opener checking because its easy to dodge 2015-09-17 02:20:43 +02:00
HelloZeroNet 8f63e4c421 Rev399, Urandom and Msgpack benchmark, Better random string generation, Never render page on OPTIONS request, Fix for Chrome browser socket hang on zeronet version update 2015-09-13 23:17:13 +02:00
HelloZeroNet cf5a4f902b Rev394, More detailed error display 2015-09-11 14:03:48 +02:00
HelloZeroNet 0de6496f96 Rev390, Fix sidebar error on non locatable IPs, Configurable bootstrap torrent trackers, Multi-line config file settings, Evenly distributed tracker announce to work better on passive connections, Avoid iframe sandbox escape by using nonces, Better html error messages, Display proper error on invalid startup parameters 2015-09-10 23:25:09 +02:00
HelloZeroNet 00940797c8 Rev377, Fix sidebar filetypes css class, Support running zeronet from Utf-8 directories, Fix multiuser plugin welcome message, Format Multiuser plugin to PEP8, Faster publish by using connected peers if possible, Prefix css backface-visibility 2015-09-08 03:07:44 +02:00
HelloZeroNet 84e3f00aac rev338, Possible to use pure-python msgpack unpacker to save memory, Streaming file download hangup fix, Clone databases after 3 minute idle, Many site size limit related bugfixes, UiMedia served from same domain to allow ajax access, Don't allow to load resources from other domain, Site size increase ask dialog displayed again, Changed fixbutton to more Consolas-like Monaco font, Boost json files priority on download 2015-08-06 00:51:25 +02:00
HelloZeroNet cd04abe521 rev330, Early worker exit on file download bugfix, Reload only on py file changes, Modify wrapper render to allow content edit for plugins, File send action without sending header, Rename Sidebar to Fixbutton (it will be separate plugin), Fixbutton font and layout fix on OSX/Safari, Notifications fix on OSX/Safari 2015-07-31 23:34:53 +02:00
HelloZeroNet a93ca2c3b4 rev307, Plugin for password protected web ui, Faster page load times by yielding wrapper html, Reworked configuration parser to support plugin extensions, Initial site sync bugfix, Test for configuration parsing, Parse posted data function 2015-07-17 00:28:43 +02:00
HelloZeroNet b5ecb62bc6 rev280, The whole project reformatted to PEP8, UiRequest getPosted to query posted variables 2015-07-12 20:36:46 +02:00
HelloZeroNet a78907cc9d Version 0.3.1, rev238, Connection encryption using TLS, One click site clone feature, Encryption stats, Disable encryption startup parameter, Disable ssl compression startup parameter, Exchange supported encryption methods at handshake, Alternative open port checker, Option to store site privatekey in users.json, Torrent tracker swap, Test for bip32 based site creation, cloning and sslcert creation, Fix for Chrome plugin on OSX, Separate siteSign websocket command, Update pybitcointools to major speedup, Re-add sslwrap for python 0.2.9+, Disable SSL compression to save memory and better performance 2015-06-10 00:29:30 +02:00
HelloZeroNet 66eca389bf rev 196, Configurable data dir, log dir and config file, fix for getFile unhandled exceptions, add http://zeronet.io to readme 2015-05-31 15:52:21 +02:00
HelloZeroNet 40698c1ac7 rev188, Add rev to wrapper css and js to devalidate cache 2015-05-25 01:41:14 +02:00
HelloZeroNet 7e4f6bd38e version 0.3.0, rev187, Trusted authorization sites support, --publish option on signing, cryptSign command line option, OpenSSL enabled on OSX, Crypto verify allows list of valid addresses, Option for version 2 json DB tables, DbCursor SELECT parameters bugfix, Add peer to site on ListModified, Download blind includes when new site added, Publish command better messages, Multi-threaded announce, New http Torrent trackers, Wait for dbschema.json on query, Handle json import errors, More compact writeJson storage command, Testcase for signing and verifying, Workaround to make non target=_top links work, More clean UiWebsocket command route, Send cert_user_id on siteinfo, Notify other local clients on local file modify, Option to wait for file download before sql query, File rules websocket API command, Cert add and select, set websocket API command, Put focus on innerframe, innerloaded wrapper api command to add hashtag, Allow more file error on big sites, Keep worker running after stuked on done task, New more stable openSSL layer that works on OSX, Noparallel parameter bugfix, RateLimit allowed again interval bugfix, Updater skips non-writeable files, Try to close openssl dll before update 2015-05-25 01:26:33 +02:00
HelloZeroNet f7717b1de8 rev119, Protection against update flood, Cache webfonts, Publish batching, Task failed holds Peer objects, Remove peer from failed on addTask, Noparallel memory leak fix 2015-04-24 02:36:00 +02:00
HelloZeroNet dc4292e1e3 rev115, Stats for total number of objects in memory, Peers in memory, Memory dump displays the total content on hover, Add http cache to js, css and image files, Allow query file status with SiteInfo websocket command to fix index.html loaded before websocket connection made problem, Fix bigsites reload problem 2015-04-20 22:31:29 +02:00
HelloZeroNet 8d5a72f0b5 rev110, Support for 127.0.0.1:43110-less Chrome plugin, Namecoin updater ignores invalid characters in address, Every site's favicon.ico leads to main favicon to prevent 404 request when using chrome extension, Detect chrome extension proxy requests, Use wrapper=False instead of /media, 404errormessage fix 2015-04-20 02:56:33 +02:00
HelloZeroNet c8fe73f5c0 rev106, Allow check memory content in stats page, Fix Zeroname plugin incompatibility with Multiuser plugin, Zeroname updater sort keys, Allow multiple ui_restrict parameter, Peer using site's logger to save some memory, Also send not that good peers on initial pex 2015-04-19 15:38:41 +02:00
HelloZeroNet eea7af684d rev101, Benchmark for crypto, sha512, sqlite, Not exits file exception fix 2015-04-18 03:02:08 +02:00
HelloZeroNet 804fed2659 on updates connect to real peer ip, connect using pex in passive mode, referrer typo fix 2015-04-14 02:37:31 +02:00
HelloZeroNet 4f7e048413 socks proxy support, disable udp connections support, http bittorrent tracker support, port opened, external ip to stats, only need zeroname site if dont have, dont try to download file that not in content.json, store external ip even if port closed, recreate uirequest class to avoid unfinished requests in some cases 2015-04-12 23:59:22 +02:00
HelloZeroNet 2491814070 More db logging, db testcase, dont allow to request files from root db dir 2015-04-01 03:05:09 +02:00
HelloZeroNet b122f47100 version 0.2.8, Namecoin domains using internal resolver site, --disable_zeromq option to skip backward compatiblity layer and save some memory, connectionserver firstchar error fixes, missing unpacker crash fix, sitemanager class to allow extensions, add loaded plugin list to websocket api, faster content publishing, mark updating file as bad, remove coppersurfer tracker add eddie4, internal server error with error displaying, allow site domains in UiRequest, better progress bar, wait for siteinfo before before using localstorage, csslater hide only if opacity is 0 2015-03-30 23:44:29 +02:00
HelloZeroNet 78f97dcbe8 version 0.2.7, plugin system, multiuser plugin for zeroproxies, reworked imports, cookie parse, stats moved to plugin, usermanager class, dont generate site auth on listing, multiline notifications, allow server side prompt from user, update script keep plugins disabled status 2015-03-24 01:33:09 +01:00
HelloZeroNet 3b8d49207e version 0.2.6, database support, dbrebuild and dbquery startup commands, connection firstchar error bugfix, log python gevent msgpack lib versions, sitestorage class for site file operations, dbquery websocket api command 2015-03-19 21:19:14 +01:00
HelloZeroNet 5b5c8acdcb new documents with examples, raise exception on connection error, close connection if no handshake for 60 sec, log unhandled exceptions, calc object size using guppy, typo fix 2015-03-11 01:12:53 +01:00
HelloZeroNet b35d21d643 more detailed stats, memory optimalizations, connection pinging and timeout, request timeout, validate content after signing, only recompile changed coffeescripts, remove unnecessary js logs 2015-03-06 02:31:51 +01:00
HelloZeroNet e8368a8da1 more detailed connection statistics, first char recv bugfix, double connection bugfix, websocket send queue, loading screen hide bugfix on slow connection, disable user reload 2015-02-25 03:22:10 +01:00
HelloZeroNet 31d4609a3b version 0.2.4, peerPing and peerGetFile commands, old content update bugfix, new network code and protocol, connection share between sites, connection reuse, dont retry bad file more than 3 times in 20 min, multi threaded include file download, shuffle peers before publish, simple internal stats page, dont retry on failed peers, more than 10 peers publish bugfix 2015-02-23 23:33:31 +01:00
HelloZeroNet bccd246f71 progressive publish timeout based on filesize, better tracker error log, content.json viewport support, wrapperSetViewport wrapperapi command support, escape wrapper notification 2015-02-10 00:08:25 +01:00
HelloZeroNet 639b9f4961 version 0.2.0, new lib for bitcoin ecc, dont display or track notify errors, dont reload again within 1 sec, null peer ip fix, signingmoved to ContentManager, content.json include support, content.json multisig ready, content.json proper bitcoincore compatible signing, content.json include permissions, multithreaded publish, publish timeout 60s, no exception on invalid bitcoin address, testcase for new lib, bip32 based persite privatekey generation, multiuser ready, simple json database query command, websocket api fileGet, wrapper loading title stuck bugfix 2015-02-09 02:09:02 +01:00
Nathan Tym 1787a53e1c fixing typos 2015-01-27 13:24:24 -05:00
HelloZeroNet 6cedaa8e8f utf8 content.json fix, faster node.js coffeescript compiler support 2015-01-26 01:43:39 +01:00
Pyotr Ermishkin 9332c9dcac Unicode support was added to UiRequest.py 2015-01-25 15:28:45 +03:00
HelloZeroNet 024655cf15 version 0.1.6, dont check own sites integrity, serving newly added sites, only serve .html files with wrapper, pass query string to innerframe, support for background-color in content.json, websocket api sitepublish and filewrite commands, pass hashchange to innerframe, wrapperPrompt notification support, 2015-01-24 19:14:29 +01:00
HelloZeroNet 014a79912f version 0.1.3, tructate sha512 to 256bits, retry peer cmd only 3 times, ping peer before cmd to find stucked sockets, ping with timeout and retry, separate wrapper_key and auth_key, changed sha1 to sha512, backward compatibility to sha1, reduce websocket bw usage on events, removed wrapper hash from wrapper iframe url 2015-01-18 22:52:19 +01:00
HelloZeroNet b37e309eda limitations and irc to readme, version 0.1.2, socket debugging option, Notify exceptions support, better error logging, retry on socket error, dont expose external ip to websocket api, kill workers if no task, log time to console 2015-01-17 18:50:56 +01:00
HelloZeroNet efb1dc3210 file download queue priority by browser request, newer content json log, peer remove key error fix, peer request error also a connection error, new sites created with own flag 2015-01-14 02:41:13 +01:00
HelloZeroNet d28e1cb4a6 First release, remove not used lines from gitignore 2015-01-12 02:03:45 +01:00