mirror/Notes
1
0
Fork 0
mirror of https://github.com/TriliumNext/Notes.git synced 2026-01-01 18:40:46 -06:00
Code Issues Packages Projects Releases Wiki Activity
10,238 Commits 21 Branches 339 Tags
f803bd614081d225fa36d38014d459c270dff5ee
Commit Graph

7796 Commits

Author SHA1 Message Date
Panagiotis Papadopoulos
49246ee456 chore(tests): move tests next to actual file 2025-01-18 20:15:29 +01:00
Elian Doran
658317799d feat(options_init): enable fixed editing toolbar by default for new users 2025-01-18 19:38:41 +02:00
Elian Doran
5899ba9a57 Revert "feat(options_init): enable horizontal layout by default for new users" 
This reverts commit 637d1df0f5.
 2025-01-18 19:37:09 +02:00
Elian Doran
637d1df0f5 feat(options_init): enable horizontal layout by default for new users 2025-01-18 19:16:26 +02:00
Elian Doran
0a0707434e feat(mobile): allow resetting launch bar config 2025-01-18 18:49:36 +02:00
Elian Doran
1369cd8b16 feat(client): implement move to available/visible launchers on mobile as well 2025-01-18 18:45:13 +02:00
Elian Doran
b367862fe8 fix(client): launch bar move commands not working (fixes #989) 2025-01-18 18:02:26 +02:00
Elian Doran
c7e688b6e6 chore(client/ts): port left_pane_container 2025-01-18 12:56:00 +02:00
Elian Doran
8e3faffd35 fix(left-pane): preferred width is not restored (closes #990) 2025-01-18 12:54:59 +02:00
Elian Doran
148e166f5e fix(electron): mime type not always checkable in settings 2025-01-18 12:44:51 +02:00
Elian Doran
0ae5453717 feat(settings): disable unchecking of plain text mime 2025-01-18 12:36:23 +02:00
Elian Doran
0a611ac4bb fix(settings): list of mime types disappearing one by one (fixes #988) 2025-01-18 12:33:18 +02:00
Elian Doran
f2382e2ef5 refactor(canvas): solve API deprecation 2025-01-18 11:15:54 +02:00
Elian Doran
7d3f506efb refactor(deps): use webpack import for canvas 2025-01-18 11:09:57 +02:00
Elian Doran
ac30e00c02 refactor(client): remove redundant variable 2025-01-18 01:24:21 +02:00
Elian Doran
0776f17ebb chore(types): remove redundant interface 2025-01-18 01:24:04 +02:00
Elian Doran
3db93cdf24 chore(client/ts): port note_icon 2025-01-18 01:14:47 +02:00
Elian Doran
043d92a1ab feat(revisions): add spacing between help and delete (closes #974) 2025-01-18 01:02:03 +02:00
Elian Doran
5985519570 fix(mobile): tab bar context menu (closes #969) 2025-01-18 00:51:59 +02:00
Elian Doran
7c7fd044c6 chore(client/ts): port canvas 2025-01-18 00:42:19 +02:00
Elian Doran
2167948509 fix(canvas): significant lag when dragging (fixes #967) 2025-01-18 00:14:31 +02:00
Elian Doran
7cf1fbf088 fix(mobile): position of note detail menu (closes #971) 2025-01-18 00:04:06 +02:00
Elian Doran
e3bcd75a5a chore(client/ts): port mobile_detail_menu 2025-01-17 23:55:46 +02:00
Elian Doran
229f473f8b style(next): alignment of dropdown keyboard shortcuts 2025-01-17 23:47:29 +02:00
Elian Doran
11009a5af8 fix(client): positioning of keyboard shortcuts on legacy theme (closes #685) 2025-01-17 23:46:19 +02:00
Elian Doran
fdbc33aa23 fix(client): alignment of "Advanced" option in global menu 2025-01-17 23:43:06 +02:00
Elian Doran
d9335bec37 fix(client): shortcuts wrapped on two lines on global menu (closes #976) 2025-01-17 23:37:34 +02:00
Elian Doran
59d8def2c5 Merge remote-tracking branch 'origin/develop' into share-fix 2025-01-17 23:19:53 +02:00
Elian Doran
7fc5f9ab83 Merge pull request #977 from pano9000/test_vitest 
test: add vitest as test framework and port current tests
 2025-01-17 22:22:00 +02:00
Elian Doran
dd3397bcbb chore(client/ts): port note_map 2025-01-17 21:25:36 +02:00
Panagiotis Papadopoulos
33274ada65 test: port spec tests to vitest 2025-01-17 20:24:20 +01:00
Elian Doran
e7eb385b8f refactor(deps): integrate force-graph into webpack 2025-01-17 20:21:52 +02:00
Elian Doran
0cee8f9f20 refactor(mermaid): use webpack import for mermaid-elk 2025-01-17 19:53:09 +02:00
Panagiotis Papadopoulos
9382c278b3 fix(csrf): add exception for electron for httpOnly cookie 
it does not seem to like having httpOnly set in electron
 2025-01-17 17:26:52 +01:00
Caleb Norton
b8f15d2fe3 Fix parent share link 2025-01-16 15:28:30 -06:00
Panagiotis Papadopoulos
5f605b3a91 fix(csrf): set more secure cookieOptions settings 
- `sameSite` - previous setting inherited from csurf was to simply not set it at all, which makes all browser nag in their dev console output.
They will default to "Lax" for these type of cookies in the future.
We can even use "strict" here though for our use case:
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#samesitesamesite-value

- `httpOnly`: should be enabled for the csrf cookie as well
for the session cookie it already is enabled.
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie#httponly
 2025-01-16 21:40:12 +01:00
Panagiotis Papadopoulos
ec19ccd7a7 fix(csrf): stop leaking the CSRF token in the server logs 
As per OWASP:
"A CSRF token must not be leaked in the server logs or in the URL.", see:
https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html#transmissing-csrf-tokens-in-synchronized-patterns
 2025-01-16 21:16:33 +01:00
Panagiotis Papadopoulos
139bf3dcdf fix(csrf): use generateCsrfToken with more "user friendly" settings 
fixes the case, where existing TriliumNext users, will get
a "Invalid CSRF Token" Message, when they have an older
_csrf token in their cookies from a previous installation/visit.
the settings now will handle these cases in the background automatically.

also fixes #950
 2025-01-16 20:14:23 +01:00
Panagiotis Papadopoulos
6dd8ab31d5 refactor(csrf): export generateToken utility 2025-01-16 20:14:23 +01:00
Panagiotis Papadopoulos
e3d89ce2a5 refactor(csrf): move csrf to own file 2025-01-16 20:14:23 +01:00
Elian Doran
edc6b983ac Merge remote-tracking branch 'origin/master' into develop 2025-01-16 18:36:35 +02:00
Elian Doran
d684440c1f fix(client): undefined entity in some cases 2025-01-16 18:36:29 +02:00
Elian Doran
1e182f5820 chore(client/ts): port mermaid 2025-01-16 18:20:23 +02:00
Elian Doran
5ca876ca62 fix(mobile): force grouping in editing toolbar 2025-01-16 16:41:52 +02:00
Elian Doran
187ef60350 feat(mobile): disable overscroll for toolbar 2025-01-16 16:32:47 +02:00
Elian Doran
706b011b23 feat(mobile): enforce classic editor 2025-01-16 16:29:51 +02:00
Elian Doran
6f2538a070 feat(mobile): hide editing toolbar on non-text note 2025-01-16 16:14:37 +02:00
Elian Doran
6caddc8004 fix(mobile): position of editing toolbar on tablet mode 2025-01-16 16:09:11 +02:00
Elian Doran
0cab891d2e chore(client/ts): port classic_editor_toolbar 2025-01-16 15:51:58 +02:00
Elian Doran
1d6e3af9aa fix(mobile): position of editing toolbar 2025-01-16 15:48:56 +02:00