hedgedoc

mirror of https://github.com/hedgedoc/hedgedoc.git synced 2024-11-25 11:16:31 -05:00

Author	SHA1	Message	Date
renovate[bot]	5b94ff612e	fix(deps): update dependency passport to v0.5.2 (#1915 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 11:09:08 +00:00
renovate[bot]	1eef128ca2	chore(deps): update test packages (#1914 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 10:46:31 +00:00
renovate[bot]	fbe330a30a	chore(deps): update nestjs packages (#1913 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 10:33:51 +00:00
renovate[bot]	51c823cd41	chore(deps): update dependency typescript to v4.5.4 (#1912 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 08:50:08 +00:00
renovate[bot]	d41057efa1	chore(deps): update dependency mkdocs-material to v8.1.2 (#1911 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 05:33:39 +00:00
renovate[bot]	124acd5073	chore(deps): update dependency @types/node to v16.11.14 (#1910 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 03:48:12 +00:00
David Mehren	9de7f5ea21	Merge pull request #1882 from hedgedoc/fix/auth_token_hash	2021-12-14 19:41:36 +01:00
David Mehren	1957a39356	docs: explain the choice of sha-512 for auth tokens Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-14 19:37:15 +01:00
David Mehren	3e074d1879	fix(auth): use sha-512 for auth tokens Bcrypt hashes are too slow to be validated on every request. As our tokens are random and have a fixed length, it is reasonable to use SHA-512 instead. SHA-512 is recommended as cryptographically strong by the BSI: https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/TechGuidelines/TG02102/BSI-TR-02102-1.pdf?__blob=publicationFile Fixes https://github.com/hedgedoc/hedgedoc/issues/1881 Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 22:44:38 +01:00
David Mehren	e21b5e695d	refactor(identity): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 21:45:03 +01:00
David Mehren	977ed4b9fa	refactor(user): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 21:45:03 +01:00
David Mehren	4483d2b898	refactor(session): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 21:45:03 +01:00
David Mehren	2da6faa4b4	refactor(revision): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 21:45:03 +01:00
David Mehren	e73bd7c030	refactor(edit): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 21:45:03 +01:00
David Mehren	c5c7307552	docs(permissions): document why we can't lazy-load Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 21:45:03 +01:00
David Mehren	f164e84081	refactor(tag): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 21:45:03 +01:00
David Mehren	3c0c11e3d4	refactor(note): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 21:45:03 +01:00
David Mehren	9e608c75d3	refactor(alias): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 21:45:03 +01:00
David Mehren	facdc456cd	refactor(media-upload): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 21:45:03 +01:00
renovate[bot]	ebc0357509	chore(deps): lock file maintenance (#1901 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-13 03:19:47 +00:00
David Mehren	9542dabf1e	Merge pull request #1896 from hedgedoc/renovate/develop-mkdocs-material-8.x	2021-12-11 12:06:39 +01:00
David Mehren	18f53f734c	Merge pull request #1897 from hedgedoc/renovate/develop-linters	2021-12-11 12:05:52 +01:00
Renovate Bot	a8c5d38f55	chore(deps): update linters to v5.6.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 10:42:35 +00:00
Renovate Bot	95288c77e9	chore(deps): update dependency mkdocs-material to v8.1.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 10:42:06 +00:00
renovate[bot]	0f58d84afb	fix(deps): update dependency minio to v7.0.25 (#1895 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 10:40:51 +00:00
renovate[bot]	52a2287240	chore(deps): update test packages (#1894 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 09:25:27 +00:00
renovate[bot]	f5889176a1	chore(deps): update dependency typescript to v4.5.3 (#1893 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 07:34:16 +00:00
renovate[bot]	1627952a30	chore(deps): update dependency mkdocs-material to v8.0.5 (#1892 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 05:00:44 +00:00
renovate[bot]	3e6129744e	chore(deps): update dependency eslint to v8.4.1 (#1891 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 03:21:49 +00:00
renovate[bot]	d278f27a54	chore(deps): update dependency @types/node to v16.11.12 (#1890 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 02:03:12 +00:00
David Mehren	abcd8e03f9	Merge pull request #1878 from hedgedoc/bug/session_guard	2021-12-07 22:38:42 +01:00
David Mehren	03981f9e0b	fix(session-guard): correctly check for missing session express-session always creates an `request.session` object, so only checking if that exists is not sufficient. Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-07 20:23:18 +01:00
renovate[bot]	b3688e6486	chore(deps): lock file maintenance (#1876 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-06 02:54:05 +00:00
David Mehren	724443c41a	Merge pull request #1818 from hedgedoc/davidmehren-njsscan	2021-12-05 22:44:53 +01:00
David Mehren	2c0d750324	Merge pull request #1874 from hedgedoc/chore/codecov_yaml	2021-12-05 22:42:43 +01:00
David Mehren	336d60a13c	ci: setup njsscan See: https://github.com/ajinabraham/njsscan-action Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-05 22:40:29 +01:00
David Mehren	f4ca531a5c	ci(codecov): Wait for 2 builds to be submitted This should stop Codecov from complaining about low coverage after only half the tests have finished. See: https://docs.codecov.com/docs/notifications#section-preventing-notifications-until-after-n-builds Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-05 22:35:37 +01:00
David Mehren	8aae5cb574	docs(history-entry): document why we can't lazy-load Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-05 19:42:49 +01:00
David Mehren	8eabfbc0a5	refactor(group): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-05 19:42:47 +01:00
David Mehren	244e3f76ea	refactor(author): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-05 19:40:25 +01:00
David Mehren	552d06f182	refactor(auth-token): lazy-load relations Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-05 19:40:25 +01:00
David Mehren	6a56599c8a	Merge pull request #1871 from hedgedoc/renovate/develop-swagger-ui-express-4.x	2021-12-05 19:31:14 +01:00
Renovate Bot	e678611533	fix(deps): update dependency swagger-ui-express to v4.2.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-05 18:08:07 +00:00
David Mehren	7aad15019f	Merge pull request #1872 from hedgedoc/renovate/develop-mkdocs-material-8.x	2021-12-05 19:05:21 +01:00
David Mehren	7ffd670fe0	Merge pull request #1870 from hedgedoc/renovate/develop-joi-17.x	2021-12-05 19:04:19 +01:00
Renovate Bot	7078a8912f	chore(deps): update dependency mkdocs-material to v8 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-05 17:55:24 +00:00
Renovate Bot	479a49dacf	fix(deps): update dependency joi to v17.5.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-05 17:54:55 +00:00
David Mehren	c1560ba48f	Merge pull request #1869 from hedgedoc/renovate/develop-linters	2021-12-05 18:50:52 +01:00
David Mehren	fc9cbce523	Merge pull request #1867 from hedgedoc/renovate/develop-test-packages	2021-12-05 18:50:45 +01:00
Renovate Bot	541e0cb399	chore(deps): update test packages Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-05 17:40:16 +00:00

1 2 3 4 5 ...

4377 commits