Commit Graph

100 Commits

Author SHA1 Message Date
timvisee 4c45d6217d
Properly derive base URL as configured in file upload logic
Fixes https://github.com/timvisee/send/issues/29
2021-05-07 13:07:17 +02:00
Cullen Walsh 02e8cb264f Add detect_base_url config
This diff adds the detect_base_url config, controlled by the
DETECT_BASE_URL env variable. When set to true, the BASE_URL setting is
ignored, and the base_url is derived from the request protocol and host
header.

Test Plan: Started up a local instance in my homelab, running docker
node:15 image with a nginx reverse proxy. Configured nginx to use the
same backend with multiple hostnames on https. Opened in browser and
confirmed og:url meta tag uses correct url.
2021-05-05 22:19:11 -07:00
Aaron f5bb74e921
index.js: Add "data:" as an allowed image source in CSP
Signed-off-by: Aaron <admin@datahoarder.dev>
2021-04-21 21:40:15 +02:00
timvisee 15d37da667
Remove obsolete anonymous limits
Related to https://gitlab.com/timvisee/send/-/issues/3
2021-04-12 15:19:02 +02:00
Romain Hv a0bc20aeb6 Remove metrics #4 2021-03-15 19:56:51 +01:00
timvisee 3165086869
Remove legal page, add no affiliation text in footer 2021-01-09 19:14:42 +01:00
io mintz 44c03e355f CSP: remove a bunch of unused mozilla-only domains and FXA domains 2020-11-13 22:24:38 +00:00
Danny Coates 28c48f51d1
set downloadMetadata.status to 404 on unfound downloads. fixes #1501
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:52:28 +02:00
Danny Coates b5ef1785ab
replaced fxa-geodb with load balancer header
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:51:28 +02:00
Danny Coates e909a3bae8
refactored storage, style tweaks
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:47:56 +02:00
Danny Coates 4f273eca03
added oauth refresh token support
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:46:24 +02:00
timvisee 45d5f41731
Remove Firefox branding from app name in front-end 2020-10-15 18:48:54 +02:00
Danny Coates ccbcb69666
Merge pull request #1434 from MichaelPeter-Shockoe/master
modify connect-src of Content Security Policy to include dynamic wss URL based on configured base URL
2020-07-09 19:37:02 -07:00
jackyzy823 e2876b119d add configs to handle content-security-policy correctly for custom fxa urls 2020-06-11 21:57:48 +08:00
Danny Coates 89469e3c9c
updated node to 12 2020-04-29 17:38:55 -07:00
Michael Peter 5ff6266a5e modify connect-src of Content Security Policy to include dynamic wss URL based on configured base URL 2020-01-17 17:47:09 -05:00
Danny Coates d5c488196d
no-cache harder 2019-09-05 13:33:12 -07:00
Danny Coates 527040afef
updated ws dependency and slightly improved client side error handling, hung uploads will error instead of hang forever 2019-08-06 14:47:21 -07:00
Danny Coates 58191975b9
stubbed /login page for redirect base login flow 2019-07-23 09:27:34 -07:00
Danny Coates b9c87fd779
updated tailwindcss to 1.0 2019-06-14 11:37:30 -07:00
Danny Coates f603f40f43 added agent to server metrics (#1321) 2019-05-03 12:25:12 -04:00
Robert f94918bebd Prevent possible download counter race condition 2019-04-19 13:10:49 +02:00
Danny Coates efea0e5ab0
added gravatar to CSP image-src 2019-03-31 13:04:15 -07:00
Danny Coates 8cf3b89f91
increase file id to 8 bytes 2019-03-26 09:32:44 -07:00
Danny Coates 3b7bf2ae7e
updated pwa theme-color 2019-03-09 16:45:17 -08:00
Danny Coates 7464d46843
removed unused fira bits 2019-03-06 16:37:02 -08:00
Danny Coates fb0f0f0b5d
added gcp dev to csp 2019-03-06 12:59:54 -08:00
Danny Coates 7f9674f494
fixed size limit on server to include crypto overhead 2019-03-06 10:31:50 -08:00
Danny Coates 445811931f
added accounts.firefox.com to csp connect-src for /metrics-flow 2019-03-05 13:05:51 -08:00
Danny Coates f968083f74
added '-' to /api/filelist validation 2019-02-26 19:58:03 -08:00
Danny Coates 4cb6646cce
updated filelist storage so userid is not used directly 2019-02-26 13:53:11 -08:00
Danny Coates 1c44d1d0f9
added /config endpoint, use fewer globals (#1172)
* added /config endpoint, use fewer globals

* fixed integration tests
2019-02-26 10:39:50 -08:00
Danny Coates cccc1a5383
enabled accounts on Edge 2019-02-25 11:44:44 -08:00
Danny Coates c146c584f6
static require cryptofill for Edge 2019-02-21 11:21:06 -08:00
Danny Coates 2c27665e39
updated favicon 2019-02-19 12:52:09 -08:00
Danny Coates 8eaacfea18
use text/plain on /api/metrics 2019-02-15 11:59:39 -08:00
Danny Coates 9b37e92a81
implemented amplitude metrics (#1141) 2019-02-12 11:50:06 -08:00
Danny Coates 06b25dcba6
fixed initial page load rendering for expired downloads and when the upload list isn't empty. fixes #1069 and fixes #1021 2019-01-08 11:24:07 -08:00
Danny Coates 6cc12528b3
fixed some old TODOs 2018-12-18 13:55:46 -08:00
Danny Coates 531584dbf1
implemented websocket flow control to prevent over buffering 2018-11-22 13:21:39 -08:00
Danny Coates d4528848d9
moved jsconfig code into initScript 2018-11-20 12:23:05 -08:00
Danny Coates 416b9902cb added a webmanifest (#1023) 2018-11-20 15:00:32 -05:00
Danny Coates b6517c5442
port fix for #1005 to vnext 2018-11-16 13:33:40 -08:00
Danny Coates 932a2a4576
removed unused code 2018-11-01 10:44:47 -07:00
Danny Coates 0e5202c470
updated modal 2018-11-01 10:44:45 -07:00
Danny Coates f0cfc19f8c
a new approach for the ui 2018-11-01 10:43:43 -07:00
Danny Coates cc85486414
wip 2018-11-01 10:43:14 -07:00
Danny Coates a997a44a23
renamed auth route 2018-09-26 12:22:51 -07:00
Danny Coates e2259ae737
made download count and expiry options server configurable 2018-09-24 15:08:39 -07:00
Danny Coates c8bf3101aa
fixed multiple issues with the /signin page. #935 #936 #937 2018-09-24 12:01:39 -07:00