calzoneman
91a2fcb61d
Better XSS prevention (NOTE: must run npm install validator on existing installs)
2013-07-02 15:42:26 -04:00
calzoneman
c00b95feae
Get x-forwarded-for IP address from cloudflare when it exists
2013-06-26 10:57:56 -04:00
Calvin Montgomery
d688a63bfa
Improve queue fail error reporting
2013-06-25 23:09:37 -04:00
calzoneman
e620605458
Correct version number
2013-06-19 17:57:35 -04:00
Calvin Montgomery
565759decf
Merge changes from master
2013-06-15 16:07:38 -04:00
calzoneman
d5e03c10b6
Increment version number
2013-06-04 18:34:03 -04:00
Calvin Montgomery
9eafc53c91
start experimenting with a fallback layer
2013-06-03 23:56:06 -04:00
calzoneman
5205afb9cd
Add password reset emailer
2013-05-30 14:07:29 -04:00
calzoneman
e19f38f75b
Remove debug print statement from channel.js
2013-05-27 15:23:47 -04:00
calzoneman
296bddefcd
Fix #153
2013-05-27 14:35:24 -04:00
calzoneman
39be5a8427
Finish database refactoring
2013-05-25 21:01:32 -04:00
calzoneman
a5c297365c
Fixes; implement /clear command
2013-05-23 00:03:37 -04:00
calzoneman
f8b0b06caf
Add username bans, tweak ban interface
2013-05-21 12:17:01 -04:00
calzoneman
01fc746334
Implement #137
2013-05-19 12:56:13 -04:00
calzoneman
6dc0a33bda
Separate ports for webserver and socketio
...
It came to my attention today that some firewalls block websocket traffic on port 80. For this reason, I have split out the webserver and socket.io traffic to 2 different ports.
In config.js, IO_PORT is the socket.io port. This should NOT be port 80. WEBSERVER_PORT is the port that the built in webserver will bind to (can be port 80, but this requires root permissions).
You will connect to yourhostname:WEBSERVER_PORT, and use yourhostname:IO_PORT as IO_URL.
2013-05-17 18:39:49 -04:00
calzoneman
66fbbb77ce
Add Justin.tv support
2013-05-17 14:39:58 -04:00
calzoneman
74bdffea58
Fix race condition which caused users to lose moderatorship
2013-05-17 11:02:45 -04:00
calzoneman
a8d8f346d4
Add editors for CSS and JS
2013-05-15 11:34:27 -04:00
calzoneman
c1c3e4c47f
Add ustream support
2013-05-14 17:22:47 -04:00
calzoneman
ce99233596
Reduce amount of data sent in media updates
2013-05-14 11:35:11 -04:00
calzoneman
4620fb2d56
Add unregistration for channel admins
2013-05-13 15:41:29 -04:00
calzoneman
a6fff1c849
Fixes
2013-05-12 21:37:03 -04:00
calzoneman
ebe48798fe
Implement user profiles
...
Existing installations will have to apply the following SQL:
```sql
ALTER TABLE `registrations` ADD `profile_image` VARCHAR( 255 ) NOT NULL ,
ADD `profile_text` TEXT NOT NULL
```
2013-05-12 20:41:02 -04:00
calzoneman
d9ed665540
Show page title in channel list
2013-05-12 11:46:19 -04:00
calzoneman
3af35cb268
Add links to playlist entries and the index page
2013-05-12 11:41:14 -04:00
calzoneman
369517945b
Implement #106
2013-05-11 15:21:14 -04:00
calzoneman
5bb9ba7c61
Default filters apply to all channels ( #97 )
2013-05-09 10:11:25 -04:00
calzoneman
f9efad01ea
Improve/fix youtube search results
2013-05-05 18:52:16 -05:00
calzoneman
703ac3ce4f
Add temporary videos
2013-05-04 17:54:28 -05:00
calzoneman
62e80cec63
Add password change ( #88 )
2013-05-04 13:01:04 -05:00
calzoneman
27c1f78dbd
Add banlist to acp
2013-05-04 12:30:38 -05:00
Calvin Montgomery
627fcec448
Unload empty channels
2013-05-03 22:15:05 +04:00
calzoneman
3600a3114a
Transition channel page away from index.html
2013-05-01 13:39:01 -05:00
calzoneman
f76b509430
Pressing enter on media URL queues next
2013-04-30 11:15:03 -05:00
calzoneman
9bc712c003
Mask user IPs for nonadmins
2013-04-29 20:01:46 -05:00
calzoneman
d43f39caa1
Better channel bans
2013-04-29 18:59:51 -05:00
calzoneman
e315407a48
Allow range IP bans
2013-04-29 17:06:39 -05:00
calzoneman
4b0e920dc6
Begin improving filters
2013-04-29 12:29:31 -05:00
calzoneman
9350ef6d75
Change some permissions to channel admins ( #67 )
2013-04-29 11:26:01 -05:00
calzoneman
7f7ae16138
Add JWPlayer support
2013-04-28 17:06:58 -05:00
calzoneman
406988aef1
Allow chaining for /m
2013-04-28 13:04:15 -05:00
calzoneman
3730ae0066
Add global bans
2013-04-28 01:30:18 -05:00
calzoneman
7003101828
Limit connections per IP
2013-04-28 01:06:58 -05:00
calzoneman
535b80153d
Fix ip bans for like the 4th time
2013-04-27 23:10:48 -05:00
calzoneman
5e5ff5f414
Fix chat antiflood ( #56 )
2013-04-27 12:13:37 -05:00
calzoneman
d5fc0bb03d
Fix 'that username is already taken' login bug
2013-04-26 12:50:31 -05:00
calzoneman
84fb4214d7
Fix cross-domain issues
2013-04-25 23:57:46 -05:00
calzoneman
087f612b37
Bugfixes for last commit
...
- Fix race condition for login frame
- Fix guest logins
2013-04-25 23:04:51 -05:00
calzoneman
3a7acd0526
Implement new session system
...
I replaced the old login system with a more secure one.
Instead of storing cookies containing the username and plaintext password, the password
is submitted once to obtain a session hash, which is valid for a given length of time.
Registering and logging in is now done via an iframe, which prevents custom javascript from having access to the password field.
Site admins need to run the following SQL before updating, or else all of your logins/registrations will fail:
ALTER TABLE `registrations` ADD `session_hash` VARCHAR( 64 ) NOT NULL ,
ADD `expire` BIGINT NOT NULL
2013-04-25 22:50:12 -05:00
calzoneman
a88088f2d6
Continue working on API
2013-04-25 16:16:53 -05:00