Commit Graph

2131 Commits (ad2da5969e9d15232a787404c317a487db0dcd29)
 

Author SHA1 Message Date
Omar Roth ceb252986e
Update captcha job 5 years ago
Dmitry Sandalov 5d8de5fde2
Allow user to subscribe to playlist (#17) 5 years ago
Omar Roth 750ef296c6
Update captcha handler 5 years ago
Omar Roth 454ae8656a
Cleanup request headers 5 years ago
Omar Roth 75450dcdbc
Update signature param 5 years ago
tleydxdy bd2c7e3bb9
Verify download, fix invidious file permission (#949)
* Fix docker
5 years ago
mendel5 9d23cf33fd
Consistent IDs for info section (#1133) 5 years ago
Omar Roth 97eb01a28d
Merge weblate 5 years ago
Lucas Araujo 9a2a636aed
Update Portuguese (Brazil) translation 5 years ago
Oğuz Ersen 61c8256ef0
Update Turkish translation 5 years ago
Tolstovka 8e1791570e
Update Ukrainian translation 5 years ago
Bruno Guerreiro aa30d1f359
Add Portuguese (Portugal) translation 5 years ago
khalasa47 326f4bd681
Update Basque translation 5 years ago
Mihail Iosilevitch 7690c6c33d
Update Russian translation 5 years ago
Allan Nordhøy fece1077f2
Update Swedish translation 5 years ago
Allan Nordhøy 75fc7db50d
Update Romanian translation 5 years ago
Sylke Vicious 96da04576e
Update Italian translation 5 years ago
bongo bongo 001ec3663e
Add Serbian (cyrillic) translation 5 years ago
Tamas Cservenak 21a00b77bd
Add Hungarian translation (#1111) 5 years ago
Omar Roth 408f3852ec
Hide playlist widget when user has no playlists 5 years ago
Omar Roth 61150c74d2
Move privacy type into playlists.sql 5 years ago
Omar Roth 7bb7003c9d
Fix authorThumbnails in /api/v1/channels 5 years ago
Omar Roth 920463f2ff
Fix playlist_ajax 5 years ago
Omar Roth ca1185d0be
Fix warnings in latest version of Crystal 5 years ago
Omar Roth be655ee328
Bump dependencies 5 years ago
Omar Roth 02d4186b11
Fix player matching 5 years ago
Omar Roth 3f97bebd69
Support adding video to playlist from watch page 5 years ago
Omar Roth 2e378da922
Add support for Swedish locale 5 years ago
Omar Roth b37f51bd7f
Fix /c/ redirect 5 years ago
Olle Jonsson eb8b0f72cc
Add Swedish translation (#1078)
Co-authored-by: Daniel Lublin <daniel@lublin.se>
5 years ago
Olle Jonsson d8fe9a4d29
nb-NO: Translate "subscription" correctly (#1089)
Co-authored-by: Oskar Gewalli <gewalli@gmail.com>
5 years ago
Omar Roth c97cdf551e
Refactor extract_plid 5 years ago
Omar Roth 80fc60b5e2
Add spec for extract_plid 5 years ago
Omar Roth 3b2e142542
Fix JSON serialization 5 years ago
Omar Roth 0e58d99f4e Fix player mouseover events 5 years ago
Omar Roth 92798abb5d Add manifest-src to CSP 5 years ago
Omar Roth bd7950b757
Add toggle_parent to dynamic handlers 5 years ago
Omar Roth 59a15ceef6
Remove VarInt class 5 years ago
Omar Roth 4011a113cc
Strip invalid characters from referer URLs 5 years ago
leonklingele 70cbe91776
Migrate to a good Content Security Policy (#1023)
So attacks such as XSS (see [0]) will no longer be of an issue.

[0]: https://github.com/omarroth/invidious/issues/1022
5 years ago
Omar Roth f92027c44b
Escape 'sort_by' 5 years ago
Omar Roth 1443335315
Switch textcaptcha to HTTPS 5 years ago
Omar Roth 6ff2229a09
Bump dependencies 5 years ago
Omar Roth bb72672dd9
Replace static asset requests with QUIC 5 years ago
Omar Roth d96dee3aa6
Add debug info to videoplayback 5 years ago
Omar Roth bd0aaa343b
Prevent storyboards from hanging 5 years ago
Omar Roth 3126e1ac94
docker: allow to configure Invidious by env var (#1030)
Invidious gained support to read its configuration from an env var
instead of config file in e3c10d779d.

Unfortunately, Docker doesn't allow newline characters in env var
values (see [0]) which means we can only provide a proper YAML config
by using the inlined configuration in docker-compose.yml which,
unfortunately, is tracked by Git. Once support for multiline env var
values has been added to Docker, we should migrate and read the config
from a .env file instead (which is not tracked by Git).

[0]: https://github.com/docker/compose/issues/3527
5 years ago
Omar Roth a117d87f33
Skip validation checks for videoplayback, ggpht 5 years ago
Omar Roth 9dc4f8a1aa
Escape item titles in search page 5 years ago
leonklingele 0d536d11e3
Verify token signature in constant time, Run cheap checks first in token validation process (#1032)
* Verify token signature in constant time

To prevent timing side channel attacks

* Run cheap checks first in token validation process

Expensive checks such as the nonce lookup on the database or the
signature check can be run after cheap/fast checks.
5 years ago