Andrew DeMaria
8a1f36c792
Revert change to DWR fixes #923
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
6 years ago
jvoisin
ab92f83c1f
Add a bunch of hardening to the systemd unit
...
I tested this locally, it's working on my machine™
Nothing fancy, no new privileges, private stuff (/tmp, …),
no exotic devices/access/…, …
Signed-off-by: jvoisin <julien.voisin@dustri.org>
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
6 years ago
Andrew DeMaria
e76d44d957
Merge remote-tracking branch 'origin/pr/908'
6 years ago
Andrew DeMaria
9413f1f489
Merge remote-tracking branch 'origin/pr/912'
6 years ago
Andrew DeMaria
8f1d790784
Merge remote-tracking branch 'origin/pr/913'
6 years ago
Andrew DeMaria
00ee8a9662
Merge remote-tracking branch 'origin/pr/915'
6 years ago
Andrew DeMaria
a3041a59c7
Merge remote-tracking branch 'origin/pr/916'
6 years ago
jvoisin
615e317b01
Bump liquibase version
...
Signed-off-by: jvoisin <julien.voisin@dustri.org>
6 years ago
jvoisin
919051db9e
Simplify the travis file
...
- Remove `sudo` since it's deprecated,
along with the useless `apt update` call
- Remove the manual maven installation since
it's already present on the travis image
by default
This should reduce a bit the time taken for a whole CI run.
6 years ago
jvoisin
45ef973627
Fix a javascript null-deref
...
This commit should fix the following javascript crash that
may occur if the localstorage isn't available/supported by the browser:
```
more.view:140 Uncaught TypeError: Cannot read property 'playCountValue' of null
at loadShuffleForm (more.view:140)
at HTMLDocument.<anonymous> (more.view:181)
at n (jquery-1.7.1.min.js:2)
at Object.fireWith (jquery-1.7.1.min.js:2)
at Function.ready (jquery-1.7.1.min.js:2)
at HTMLDocument.B (jquery-1.7.1.min.js:2)
```
Signed-off-by: jvoisin <julien.voisin@dustri.org>
6 years ago
jvoisin
a9d5f73287
Bump guava version
...
Signed-off-by: jvoisin <julien.voisin@dustri.org>
6 years ago
jvoisin
0a47c6e461
Bump java-jwt
...
Signed-off-by: jvoisin <julien.voisin@dustri.org>
6 years ago
jvoisin
4e2b435abf
Bump cglib version
...
Signed-off-by: jvoisin <julien.voisin@dustri.org>
6 years ago
jvoisin
4de26ac319
Remove pngfix
...
pngfix.js is used for compatibility's reason
with IE 5 and 6. I think that now that we're in 2019,
we can get rid of it.
Signed-off-by: jvoisin <julien.voisin@dustri.org>
6 years ago
Andrew DeMaria
143a220719
Merge remote-tracking branch 'airsonic/pr/849'
...
Conflicts:
airsonic-main/cve-suppressed.xml
airsonic-main/src/main/java/org/airsonic/player/controller/JAXBWriter.java
airsonic-main/src/main/java/org/airsonic/player/service/PodcastService.java
pom.xml
6 years ago
Andrew DeMaria
0d78c30d06
Change a couple more log entries to debug
6 years ago
Andrew DeMaria
360f469bf1
Merge remote-tracking branch 'airsonic/pr/895'
6 years ago
Andrew DeMaria
972c6cd462
Dont sign until verify stage
6 years ago
François-Xavier Thomas
2c1b5205e8
Write new db maintenance logs as 'debug' instead of 'info'
6 years ago
François-Xavier Thomas
7510b04efc
Make checkpoint() method void (return value is not used)
6 years ago
François-Xavier Thomas
8c46d39569
Do not log message about hsqldb-defrag migration on each launch
...
The FILES DEFRAG / FILES LOG SIZE properties are kept when upgrading to
2.x; it's enough that they were set once on 1.8. For new installations
the migration will still run with the correct SQL statements.
6 years ago
François-Xavier Thomas
b753e48632
Log more information when running the 'cleanup db' action
6 years ago
François-Xavier Thomas
76e8abd219
Move HSQLDB checkpoint/shutdown to a bean specific to the legacy profile
6 years ago
François-Xavier Thomas
b88bdb37c9
Properly shutdown embedded HSQLDB database on exit
6 years ago
François-Xavier Thomas
54e444b03c
Make CHECKPOINT / DEFRAG syntax work for both HSQLDB 1 & 2
6 years ago
Iwao AVE!
c79c02d449
Updated CHECKPOINT / DEFRAG syntax for HSQLDB 2.
...
Signed-off-by: Iwao AVE! <harawata@gmail.com>
6 years ago
François-Xavier Thomas
c0f3606091
Force database checkpoints on 'Clean-up' and 'Scan' actions
...
This will only affect the (embedded/legacy) HSQLDB driver. Even though
cff97ea9
should prevent the db log from getting uncontrollably large,
the 'Clean-up database' and 'Scan' actions will additionally force a
checkpoint to ensure this happens on big operations.
6 years ago
Andrew DeMaria
3fb697ddce
Update Changelog
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
6 years ago
Andrew DeMaria
1a88f46c18
CVE-2018-20222 Prevent xxe during parse
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
6 years ago
Andrew DeMaria
faedfd8a62
Bump version to 10.3.0-SNAPSHOT
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
6 years ago
Andrew DeMaria
a16b89e0ac
Bump to version 10.2.0-RELEASE
...
Signed-off-by: Andrew DeMaria <lostonamountain@gmail.com>
6 years ago
Andrew DeMaria
a1abdb580b
Update changelog
6 years ago
Andrew DeMaria
e4bb808862
Merge remote-tracking branch 'origin/pr/869'
6 years ago
tesshu
3e6d224550
#1 CVE-2018-1000840
...
stax-api-1.0.1.jar
stax-api-1.0-2.jar
6 years ago
tesshu
6023d4c0bc
fix #748
6 years ago
Ben Kelsey
8ea47b71ff
Update jackson version
6 years ago
jo
7327353704
Pull translations from transifex
6 years ago
Andrew DeMaria
adc224147a
Merge remote-tracking branch 'airsonic/pr/855'
6 years ago
Andrew DeMaria
5e14996dc3
Merge remote-tracking branch 'airsonic/pr/859'
6 years ago
Frank de Lange
8127b4f7fa
Fix #860 (external database performance) by using connection pooling … ( #864 )
...
* Fix #860 (external database performance) by using connection pooling (using commons-dbcp2)
6 years ago
François-Xavier Thomas
d6ba6de7e1
Run a first defrag before enabling auto defrag on HSQLDB
6 years ago
François-Xavier Thomas
21eff917b6
PlayQueue: Fix broken keyboard shortcuts
...
Using the "space" key to resume playback, as well as +/- to
increase/decrease volume, were not working properly.
6 years ago
Andrew DeMaria
ac0e29bf9c
Remove unused import
6 years ago
Andrew DeMaria
61c0c0d758
Fix import style error
6 years ago
Andrew DeMaria
06a8e2dc02
Merge remote-tracking branch 'airsonic/pr/833'
6 years ago
Andrew DeMaria
355868bf60
Bump spring version
6 years ago
Andrew DeMaria
ee4cb71052
Ignore CVE-2018-8088 related to slf4j ext
6 years ago
François-Xavier Thomas
cff97ea9be
Fix #778 : Defragment embedded HSQLDB database more frequently
6 years ago
Rémi Cocula
ac453883fc
jukebox code quality and unit tests
6 years ago
randomnicode
94f4a85bb7
Suppress CVE-2018-8088
6 years ago