hedgedoc

mirror of https://github.com/hedgedoc/hedgedoc.git synced 2024-10-22 15:12:08 -04:00

Author	SHA1	Message	Date
Erik Michelson	f581eeae79	Rename local password check method Signed-off-by: Erik Michelson <github@erik.michelson.eu>	2022-01-03 23:45:43 +01:00
Erik Michelson	eda6835403	feat(auth): password change requires old password By checking the "old" password of the user prior to a password change, the password change function is more secured against abuse. Signed-off-by: Erik Michelson <github@erik.michelson.eu>	2021-12-28 02:09:05 +01:00
David Mehren	149369d19a	Merge pull request #1932 from hedgedoc/renovate/develop-lock-file-maintenance	2021-12-27 20:34:36 +01:00
Renovate Bot	76a6518eb0	chore(deps): lock file maintenance Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-27 19:28:45 +00:00
David Mehren	6dafb102d6	Merge pull request #1930 from hedgedoc/renovate/develop-linters	2021-12-27 20:22:41 +01:00
Renovate Bot	3aee96051b	chore(deps): update linters to v5.8.1 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-27 19:15:06 +00:00
renovate[bot]	a343151b6d	chore(deps): update definitelytyped (#1929 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-25 02:49:05 +00:00
David Mehren	b469050f57	Merge pull request #1795 from Chasethechicken/docs/dev-getting-started	2021-12-21 17:24:47 +01:00
Chasethechicken	146523b5b4	Correct documentation on how to access Hedgedoc Signed-off-by: Falk Rehse <neuringe1234@gmail.com>	2021-12-21 10:37:48 +01:00
Chasethechicken	a0cfc2bc06	Apply suggestions from code review Use real backend by default. Start server with NODE_ENV set to development mode. Co-authored-by: David Mehren <git@herrmehren.de> Signed-off-by: Falk Rehse <neuringe1234@gmail.com>	2021-12-20 13:16:01 +01:00
Falk Rehse	eaa4d45d23	Improve wording Signed-off-by: Falk Rehse <neuringe1234@gmail.com>	2021-12-20 13:16:01 +01:00
Chasethechicken	fca8aa1777	Remove paragraph about development setup As this is documented in dev/getting-started.md Signed-off-by: Falk Rehse <neuringe1234@gmail.com>	2021-12-20 13:15:58 +01:00
Chasethechicken	b813a19614	Add note about proxy Signed-off-by: Falk Rehse <neuringe1234@gmail.com>	2021-12-20 13:14:29 +01:00
Chasethechicken	954c751cca	Remove section about production deployments As this is meant to document a development setup. Signed-off-by: Falk Rehse <neuringe1234@gmail.com>	2021-12-20 13:14:29 +01:00
Chasethechicken	a3a2ffea6d	Add Docs for getting started with 2.0 This page describes how to set up HedgeDoc 2 for local development. Signed-off-by: Falk Rehse <neuringe1234@gmail.com>	2021-12-20 13:14:29 +01:00
renovate[bot]	d5fdd5c5b4	chore(deps): lock file maintenance (#1925 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-20 02:40:27 +00:00
renovate[bot]	2c62572379	chore(deps): update dependency mkdocs-material to v8.1.3 (#1922 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-19 15:10:41 +00:00
David Mehren	87a92726a3	Merge pull request #1917 from hedgedoc/renovate/develop-swagger-ui-express-4.x	2021-12-18 13:00:27 +01:00
David Mehren	41f160bace	Merge pull request #1916 from hedgedoc/renovate/develop-linters	2021-12-18 12:59:59 +01:00
Renovate Bot	2a429ed991	fix(deps): update dependency swagger-ui-express to v4.3.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 11:11:02 +00:00
Renovate Bot	643ee76b48	chore(deps): update linters Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 11:10:45 +00:00
renovate[bot]	5b94ff612e	fix(deps): update dependency passport to v0.5.2 (#1915 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 11:09:08 +00:00
renovate[bot]	1eef128ca2	chore(deps): update test packages (#1914 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 10:46:31 +00:00
renovate[bot]	fbe330a30a	chore(deps): update nestjs packages (#1913 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 10:33:51 +00:00
renovate[bot]	51c823cd41	chore(deps): update dependency typescript to v4.5.4 (#1912 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 08:50:08 +00:00
renovate[bot]	d41057efa1	chore(deps): update dependency mkdocs-material to v8.1.2 (#1911 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 05:33:39 +00:00
renovate[bot]	124acd5073	chore(deps): update dependency @types/node to v16.11.14 (#1910 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-18 03:48:12 +00:00
David Mehren	9de7f5ea21	Merge pull request #1882 from hedgedoc/fix/auth_token_hash	2021-12-14 19:41:36 +01:00
David Mehren	1957a39356	docs: explain the choice of sha-512 for auth tokens Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-14 19:37:15 +01:00
David Mehren	3e074d1879	fix(auth): use sha-512 for auth tokens Bcrypt hashes are too slow to be validated on every request. As our tokens are random and have a fixed length, it is reasonable to use SHA-512 instead. SHA-512 is recommended as cryptographically strong by the BSI: https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/TechGuidelines/TG02102/BSI-TR-02102-1.pdf?__blob=publicationFile Fixes https://github.com/hedgedoc/hedgedoc/issues/1881 Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-13 22:44:38 +01:00
renovate[bot]	ebc0357509	chore(deps): lock file maintenance (#1901 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-13 03:19:47 +00:00
David Mehren	9542dabf1e	Merge pull request #1896 from hedgedoc/renovate/develop-mkdocs-material-8.x	2021-12-11 12:06:39 +01:00
David Mehren	18f53f734c	Merge pull request #1897 from hedgedoc/renovate/develop-linters	2021-12-11 12:05:52 +01:00
Renovate Bot	a8c5d38f55	chore(deps): update linters to v5.6.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 10:42:35 +00:00
Renovate Bot	95288c77e9	chore(deps): update dependency mkdocs-material to v8.1.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 10:42:06 +00:00
renovate[bot]	0f58d84afb	fix(deps): update dependency minio to v7.0.25 (#1895 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 10:40:51 +00:00
renovate[bot]	52a2287240	chore(deps): update test packages (#1894 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 09:25:27 +00:00
renovate[bot]	f5889176a1	chore(deps): update dependency typescript to v4.5.3 (#1893 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 07:34:16 +00:00
renovate[bot]	1627952a30	chore(deps): update dependency mkdocs-material to v8.0.5 (#1892 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 05:00:44 +00:00
renovate[bot]	3e6129744e	chore(deps): update dependency eslint to v8.4.1 (#1891 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 03:21:49 +00:00
renovate[bot]	d278f27a54	chore(deps): update dependency @types/node to v16.11.12 (#1890 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-11 02:03:12 +00:00
David Mehren	abcd8e03f9	Merge pull request #1878 from hedgedoc/bug/session_guard	2021-12-07 22:38:42 +01:00
David Mehren	03981f9e0b	fix(session-guard): correctly check for missing session express-session always creates an `request.session` object, so only checking if that exists is not sufficient. Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-07 20:23:18 +01:00
renovate[bot]	b3688e6486	chore(deps): lock file maintenance (#1876 ) Signed-off-by: Renovate Bot <bot@renovateapp.com> Co-authored-by: Renovate Bot <bot@renovateapp.com>	2021-12-06 02:54:05 +00:00
David Mehren	724443c41a	Merge pull request #1818 from hedgedoc/davidmehren-njsscan	2021-12-05 22:44:53 +01:00
David Mehren	2c0d750324	Merge pull request #1874 from hedgedoc/chore/codecov_yaml	2021-12-05 22:42:43 +01:00
David Mehren	336d60a13c	ci: setup njsscan See: https://github.com/ajinabraham/njsscan-action Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-05 22:40:29 +01:00
David Mehren	f4ca531a5c	ci(codecov): Wait for 2 builds to be submitted This should stop Codecov from complaining about low coverage after only half the tests have finished. See: https://docs.codecov.com/docs/notifications#section-preventing-notifications-until-after-n-builds Signed-off-by: David Mehren <git@herrmehren.de>	2021-12-05 22:35:37 +01:00
David Mehren	6a56599c8a	Merge pull request #1871 from hedgedoc/renovate/develop-swagger-ui-express-4.x	2021-12-05 19:31:14 +01:00
Renovate Bot	e678611533	fix(deps): update dependency swagger-ui-express to v4.2.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2021-12-05 18:08:07 +00:00

1 2 3 4 5 ...

4334 commits