- 21 Mar, 2019 2 commits
- 19 Mar, 2019 1 commit
-
-
Christoph Scholz authored
-
- 15 Mar, 2019 6 commits
- 12 Mar, 2019 1 commit
-
-
JC Brand authored
Eventually we need to add better support for receipts and markers of MAM messages. We'll need to do the following: * First check whether the MAM page already contains the receipts or markers, to avoid duplication * Only ever in catchup mode * Only after full catchup to ensure that the receipt is not in a different page than the message
-
- 09 Mar, 2019 2 commits
-
-
Meitar M authored
Currently, in order for Converse.js to recognize a pasted URL as an image, it must be an URL whose protocol is `https:` (`https` in the URI.js library's notation). This is sensible, but means that any non-HTTPS image URL is not recognized as a valid URL (and thus will not be rendered inline, even if `show_images_inline` is set to `true`). It is important to always check for HTTPS URLs when in a secure context (i.e., the initial page load was requested via HTTPS) in order to ensure that non-secured content does not mix with secured content. However, the inverse is not true: if the original page was loaded over HTTP, then enforcing HTTPS for images adds arguably no meaningful protection while also breaking the `show_images_inline` feature for the edge cases where Converse.js is deployed without HTTPS and a user pastes an HTTP URL. This patch changes the behavior of the `isImageURL` method such that the requirement for the pasted URL's protocol to be `https:` is enforced only when the `window.location.protocol` itself is also `https:`. By doing this, we ensure that secure origins (i.e., when Converse.js is loaded over HTTPS initially) are still secured and cannot have non-HTTPS content introduced to the page via a pasted non-HTTPS URL, however it also allows non-HTTPS origins to render both HTTP and HTTPS image URLs.
-
Christoph Scholz authored
-
- 07 Mar, 2019 7 commits
-
-
JC Brand authored
-
JC Brand authored
-
JC Brand authored
-
JC Brand authored
-
Axel Viala authored
Before the function `extractReference` in `/src/headless/converse-muc.js` matched url and email. Fix: https://github.com/conversejs/converse.js/issues/1327
-
JC Brand authored
With MAM2 we can just use stanza-id
-
JC Brand authored
This helps us to avoid duplicates by relying on the fact that Backbone models have unique ids.
-
- 06 Mar, 2019 3 commits
-
-
JC Brand authored
Update Lithuanian (lt) translation
-
JC Brand authored
-
Holger Weiss authored
As per XEP-0004, the default "type" of data form fields is "text-single", so a missing "type" attribute should not be treated differently. This fixes handling of CAPTCHAs offered by ejabberd.
-
- 05 Mar, 2019 5 commits
-
-
Christoph Scholz authored
-
JC Brand authored
-
JC Brand authored
-
JC Brand authored
Removes the need for maintaining a map of keycodes to keys
-
JC Brand authored
* Accepts other triggers besides tab or @ * More finegrained control over whether the triggering char is included in the returned value or not.
-
- 04 Mar, 2019 2 commits
-
-
Emmanuel Gil Peyrot authored
-
Emmanuel Gil Peyrot authored
-
- 03 Mar, 2019 2 commits
- 01 Mar, 2019 5 commits
-
-
JC Brand authored
Don't assume order of CSN messages, since `getLastMessageDate` ignores CSN messages, they sometimes get add above one another.
-
JC Brand authored
with `_setElement` fix. See https://github.com/akre54/Backbone.NativeView/pull/29
-
JC Brand authored
With xhr_user_search_url, contact requests are not being sent out
-
JC Brand authored
-
JC Brand authored
-
- 27 Feb, 2019 3 commits
- 26 Feb, 2019 1 commit
-
-
JC Brand authored
-