Peter Marheine
1b833003fb
Bring back an optional reCAPTCHA v2
...
Only showing it in the recovery view, not yet validating the result.
Signed-off-by: Peter Marheine <peter@taricorp.net>
6 years ago
Peter Marheine
a928b9ee3f
Add settings for CAPTCHA in account recovery.
...
Allowing users to enable it and specify the site and secret key to use
with reCAPTCHA.
The old hard-coded keys were insecure; the secret key must not be
distributed publicly. The current defaults are the test keys provided at
https://developers.google.com/recaptcha/docs/faq#id-like-to-run-automated-tests-with-recaptcha-v2-what-should-i-do
Signed-off-by: Peter Marheine <peter@taricorp.net>
6 years ago
Peter Marheine
749342f25e
Remove captcha support
...
It uses reCAPTCHA v1, which hasn't worked since March 2018.
Signed-off-by: Peter Marheine <peter@taricorp.net>
6 years ago
Andrew DeMaria
b6a9b32b1c
Merge remote-tracking branch 'airsonic/pr/775'
6 years ago
Andrew DeMaria
c2c14b0dbe
Update dependency check
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
6 years ago
Andrew DeMaria
5281d9ab6e
Fix for false positive node vuln
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
6 years ago
François-Xavier Thomas
caa1dac3a2
Use dark media player theme on groove theme ( #777 )
6 years ago
Peter Marheine
ae7f35a9cd
Don't use HTTPS for scrobbling
...
Turns out HTTPS isn't supported for the old API that we're using, so go
back to using plain HTTP.
Signed-off-by: Peter Marheine <peter@taricorp.net>
6 years ago
Andrew DeMaria
f6905dec1b
Merge remote-tracking branch 'airsonic/pr/767'
6 years ago
jo
8735810215
Move github files to .github folder
6 years ago
Arne Schlüter
237a05d272
Add v10.1.2 to changelog ( #771 )
6 years ago
Peter Marheine
69e2ba0825
Use HTTPS and java.net.URI for scrobbling
...
HTTPS will help prevent eavesdropping on the auth token, and using URI
will ensure unusual characters (like spaces, accidental or otherwise)
are escaped correctly.
Fixes #588
Signed-off-by: Peter Marheine <peter@taricorp.net>
6 years ago
Peter Marheine
cfdedea452
Suppress CVE-2018-13684 for dependency-check
...
False positive matching ant-zip against a CVE for ZIP, an Ethereum
token.
Signed-off-by: Peter Marheine <peter@taricorp.net>
6 years ago
jo
467d9420b7
Extends time before issue close (stalebot)
6 years ago
jo
74a13fc615
Add stale bot
6 years ago
Andrew DeMaria
e3ea7beb96
Fix #764
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
6 years ago
Andrew DeMaria
8d3c0ec9a0
Updates
...
- Update Spring boot Version
- Update dependency check version
- Exclude irrelevant nodejs cve
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
6 years ago
Andrew Rabert
83ef76a098
Add Docker health check
...
Signed-off-by: Andrew Rabert <ar@nullsum.net>
6 years ago
Andrew DeMaria
3e1ea6f913
Fix #749 Ensure transcode settings are protected
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Andrew DeMaria
431c98b496
Exclude cve CVE-2018-1115
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Andrew DeMaria
a097597bca
Merge remote-tracking branch 'airsonic/pr/700'
7 years ago
snw35
6a44c5c815
Handle player id as an Integer instead of String
7 years ago
François-Xavier Thomas
b3f432a545
Issue #164 : Add tests for reading MusicBrainz release tags
7 years ago
François-Xavier Thomas
c76a92746d
Issue #164 : Show link to MusicBrainz release on album pages
7 years ago
Andrew DeMaria
40c9debf8e
Merge remote-tracking branch 'airsonic/pr/698'
7 years ago
Andrew DeMaria
36d773dbfc
Update cxf
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Andrew DeMaria
2ea980d642
Update spring boot
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
jo
30ffc9560b
Fix wrong case
7 years ago
Andrew DeMaria
bbccce2303
Merge remote-tracking branch 'airsonic/pr/699'
7 years ago
Andrew DeMaria
5cca85f516
Ignore irrelevant CVE
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Andrew DeMaria
893b652bcd
Update dependency checker with updated maven too
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Bonome
070df25f45
catch exceptions ClientAbortException display a short message and return, to avoid the massive useless traceback in log
...
Signed-off-by: Bonome <bonome@tak.blue>
7 years ago
jo
b259f32bc4
Fix themes using dark background with me_js
7 years ago
jo
d1e190af0c
Remove margin of media_control bar
7 years ago
jo
159d5f67fa
Fix #596
7 years ago
jo
6204409c5e
New add_album to play queue
7 years ago
Romain DEP.
c2416a57a8
deps: update jackson to a vuln-free version,
...
bump java-jwt in the process
7 years ago
Rémi Cocula
be91fb08c4
fix issues #638 and #574
7 years ago
Andrew DeMaria
ce5920ce4c
Merge remote-tracking branch 'origin/pr/674'
7 years ago
jo
e60df58663
Add transifex configuration
7 years ago
Romain DEP.
d8eac74cb6
Reverted a93a18a
and properly re-encoded with 'native2ascii -encoding UTF-8'
7 years ago
Andrew DeMaria
caae31452e
Bump to 10.2.0 snapshot
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Andrew DeMaria
dbd2a738eb
Made it easier to see current playing song for dark themes
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Andrew DeMaria
a93a18a055
Fixed elipse in english translation
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Andrew DeMaria
b0aff38caf
Fix #658 again: content type for unscaled images set based on jaudiotagger output
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Andrew DeMaria
11ec30cd9f
Revert "Fix #658 content type for full size cover arts"
...
This reverts commit 18b16eb859
.
7 years ago
Andrew DeMaria
18b16eb859
Fix #658 content type for full size cover arts
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Andrew DeMaria
535d5d06cb
Release 10.1.1
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Andrew DeMaria
ba481869c8
Updated changelog
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
7 years ago
Starkad
429fa1fb92
Fixed botched up css (Substandard) ( #652 )
...
Signed-off-by:Manuel Müller <manuel.mueller@geekinbusiness.de>
7 years ago