happyz
/
memos
mirror of https://github.com/usememos/memos.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,214 Commits 1 Branch 83 Tags 162 MiB
Commit Graph

139 Commits

Author SHA1 Message Date
Lincoln Nogueira 52539fc130
chore: prevent visitors from breaking demo (#2869) 
* chore: add en-GB language

* chore: remove en-GB contents

* chore: prevent visitors from breaking demo
- prevent disabling password login
- prevent updating `memos-demo` user
- prevent setting additional style
- prevent setting additional script
- add some error feedback to system settings UI

* Revert "chore: add en-GB language"

This reverts commit 2716377b04.
 2024-01-31 13:16:31 +08:00
Steven de8db63811 chore: rename workspace setting service 2024-01-29 22:43:40 +08:00
Steven dd9ee44a1f docs: regenerate swagger 2024-01-29 22:05:33 +08:00
Aleksandr Baryshnikov fa17dce046
feat: pre-signed URL for S3 storage (#2855) 
Adds automatically background refresh of all external links if they are belongs to the current blob (S3) storage. The feature is disabled by default in order to keep backward compatibility.

The background go-routine spawns once during startup and periodically signs and updates external links if that links belongs to current S3 storage.

The original idea was to sign external links on-demand, however, with current architecture it will require duplicated code in plenty of places. If do it, the changes will be quite invasive and in the end pointless: I believe, the architecture will be eventually updated to give more scalable way for pluggable storage. For example - Upload/Download interface without hard dependency on external link. There are stubs already, but I don't feel confident enough to change significant part of the application architecture.
 2024-01-29 21:12:29 +08:00
Steven 2b7bd47b44 fix: rss routes 2024-01-29 21:04:35 +08:00
Steven af646ce2de refactor: move gomark 2024-01-29 19:14:46 +08:00
Steven f4ac7ff529 chore: update memo resource url 2024-01-28 23:02:38 +08:00
Steven 87b23940a6 chore: upgrade backend dependencies 2024-01-28 07:13:11 +08:00
Steven b9cbe6626f chore: update tag rename 2024-01-27 05:26:32 +08:00
Brilliant Hanabi 3a129d5cfb
fix: avoid making memos public when disabled (#2816) 
* fix: avoid making memos public when disabled in v2

* fix: avoid making memos public when disabled in v1
 2024-01-22 20:51:33 +08:00
Steven 4d48f50815 chore: use resource name in frontend 2024-01-21 10:55:49 +08:00
Steven 582cc6609c feat: add user-defined id to resource 2024-01-21 10:49:30 +08:00
Steven 40bd75c725 fix: create memo with resource name 2024-01-21 10:33:31 +08:00
Steven 8382354ef7 feat: add user-defined name to memo 2024-01-20 23:48:35 +08:00
Elliot Chen 2e0619b4dc
feat: add a webhook action for deleted memos (#2791) 2024-01-19 09:56:00 +08:00
Wen Sun e4488da96e
fix: signup is not allowed if password login is disabled (#2776) 
Signup is not allowed if password login is disabled

If password login is disabled in the system configuration, the "signup" in the "/auth" page disappears, but the user can manually enter "/auth/signup" to access the system by creating a new user.
 2024-01-17 10:49:22 +08:00
Steven a297cc3140 chore: exclude comments in memo list response 2024-01-06 09:48:11 +08:00
Elliot Chen 3181c076b2
feat: add {uuid} in path template when using local storage or S3 (#2696) 
Add {uuid} in path template when using local storage or S3

Add an addition tag `{uuid}` to the `replacePathTemplate`.

It is a workaround to leak the public links of a resource when using S3-based object storage. Currently, all resource blobs stored in S3 (R2, OSS) are set to be public. It is insecure as the resources for the private memos are also accessible on the Internet. Using an additional {uuid} might reduce this risk.

Meanwhile, it is also possible to avoid filename conflict
 2024-01-02 20:57:55 +08:00
Lincoln Nogueira 411e807dcc
chore: use consistent relative paths for resources (#2683) 
- always store resources with a relative path with forward slashes, which will be transformed as needed when the file is accessed

- fix an issue with thumbnail generation on Windows

- add several validations for local storage setting

- improve front-end error feedback when changing local storage

- add migrations to make existing resource paths relative (not needed, but improves database consistency)
 2023-12-29 07:49:55 +08:00
Steven 2cfa4c3b76 chore: tweak frontend routes register 2023-12-23 17:58:49 +08:00
Steven 1b81999329 chore: skip invalida setting checks 2023-12-23 08:55:23 +08:00
Steven c267074851 chore: prevent archive/delete current user 2023-12-23 08:05:05 +08:00
Steven af68cae6ea chore: regenerate swagger docs 2023-12-19 22:37:07 +08:00
Steven e0cacfc6d6 chore: retire auto backup for sqlite 2023-12-19 22:34:06 +08:00
Steven d8a0528135 chore: tweak variable names 2023-12-18 20:47:29 +08:00
Steven 1c7fb77e05 chore: update user setting names 2023-12-16 12:18:53 +08:00
Steven e8ca2ea5a0 chore: rename renderer package 2023-12-16 11:57:36 +08:00
Steven 7b0ceee57b chore: update memo metadata description 2023-12-16 09:23:45 +08:00
Steven a10b3d3821 chore: tweak custom profile 2023-12-15 22:57:53 +08:00
Steven 89ef9b8531 chore: add instance url system setting 2023-12-15 19:39:37 +08:00
Steven e0290b94b4 chore: use gomark in rss api 2023-12-14 22:33:20 +08:00
Steven 4f05c972d5 chore: fix jwt acl 2023-12-09 16:17:11 +08:00
Steven 7fc7b19d64 chore: deprecate user setting legacy api 2023-12-08 22:41:47 +08:00
Steven fa6693a7ae chore: update list memos 2023-12-06 22:44:49 +08:00
Steven 5069476dcc chore: add webhook metric 2023-11-28 21:15:10 +08:00
Steven 0026f9e54f chore(frontend): add webhooks section 2023-11-28 20:52:48 +08:00
Steven bc965f6afa chore: implement webhook dispatch in api v1 2023-11-25 10:31:58 +08:00
Steven 45d7d0d5f6 chore: migrate get current user 2023-11-23 08:50:33 +08:00
Athurg Gooth 91296257fc
chore: remove invalid access token from db (#2539) 
Remove invalid access token from db
 2023-11-22 23:20:45 +08:00
Steven ec2995d64a chore: fix order by pinned 2023-11-19 09:42:59 +08:00
Steven 7f7ddf77b8 chore: update allow sign up default value 2023-11-18 12:51:07 +08:00
Athurg Gooth 52fdf8bccd
fix: persist jwt expires by cookie (#2509) 
fix pesist jwt expires by cookie
 2023-11-13 13:52:04 +08:00
ti777777 38f05fd6f2
chore: fix tag in http_getter.go (#2500) 
Update http_getter.go

fix tag in  http_getter.go
 2023-11-11 23:21:15 +08:00
Steven c24181b2be chore: fix jwt checks 2023-11-05 23:39:30 +08:00
Steven e67820cabe chore: update list user api permission 2023-11-05 22:35:09 +08:00
Steven 137e64b0dd chore: update metrics 2023-11-05 21:41:47 +08:00
Steven ac81d856f6 chore: delete resource file sync 2023-10-28 10:42:39 +08:00
Steven 2b7d7c95a5 chore: update inbox detect 2023-10-28 09:02:02 +08:00
Steven 3c36cc2953 feat: add inbox ui 2023-10-28 02:43:46 +08:00
Steven 36b4ba33fa chore: remove outdated activity definition 2023-10-27 23:11:56 +08:00