a3e48d3f8d
Merge pull request #8291 from wallabag/hide-info-error-prod
...
Hide sensitive information in production
2025-10-02 10:32:21 +02:00
9023d85aad
Bump friendsofphp/php-cs-fixer from 3.84.0 to 3.86.0
...
Bumps [friendsofphp/php-cs-fixer](https://github.com/PHP-CS-Fixer/PHP-CS-Fixer ) from 3.84.0 to 3.86.0.
- [Release notes](https://github.com/PHP-CS-Fixer/PHP-CS-Fixer/releases )
- [Changelog](https://github.com/PHP-CS-Fixer/PHP-CS-Fixer/blob/master/CHANGELOG.md )
- [Commits](https://github.com/PHP-CS-Fixer/PHP-CS-Fixer/compare/v3.84.0...v3.86.0 )
---
updated-dependencies:
- dependency-name: friendsofphp/php-cs-fixer
dependency-version: 3.86.0
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-08-19 17:52:56 +02:00
b09224cac1
Add a two-step setup of OTP
...
Before this change, 2FA with OTP was enabled before the user was able to
submit a code to validate the setup. Thus, this could lead to a
situation where the user is locked out of her account if there was an
issue setting up her application.
Now we rely on a new boolean property that is set to true only after the
user submits a valid code during the setup phase.
Fixes #4867
Signed-off-by: Kevin Decherf <kevin@kdecherf.com >
2025-07-28 22:58:43 +02:00
ce2ac8f758
Add annotations filter to entries API endpoint
...
Implement a new filter parameter 'annotations' for the GET /api/entries endpoint
that allows filtering entries based on whether they have annotations. When
annotations=1, only entries with one or more annotations are returned. When
annotations=0, only entries without annotations are returned. This feature
enables users to easily find annotated content through the API.
2025-07-03 20:19:05 +04:00
5db128a071
Fix tests
2025-06-17 20:19:30 +02:00
049d87e180
Add tests
2025-06-13 12:46:32 +02:00
8fd5a5273d
Merge branch '2.6' into master
2025-06-05 00:37:56 +02:00
c4240c866b
PocketCsvImport: rework test to ensure we import all entries
...
This also adds a test for #8217
Signed-off-by: Kevin Decherf <kevin@kdecherf.com >
2025-06-03 13:24:27 +02:00
c1397f43ac
Add Pocket CSV import
2025-06-03 13:24:27 +02:00
f82c87b520
import: fix some tests
...
Signed-off-by: Kevin Decherf <kevin@kdecherf.com >
2025-06-02 13:42:44 +02:00
b1614e9267
Add Pocket and Shaarli imports
2025-05-24 16:25:48 +02:00
36eb513e1b
PHPStan level 5
2025-04-22 07:59:38 +02:00
e6ce9c524c
Merge branch '2.6'
2025-04-10 01:45:52 +02:00
b4483023e6
Move to PHPStan level 4
2025-04-07 12:20:06 +02:00
9e2720cddc
Modernize to PHP 8.1
2025-04-07 09:17:32 +02:00
a107773c11
Modernize to PHP 8.0
2025-04-07 09:17:32 +02:00
1d5674a230
Migrate to constructor promoted properties
2025-04-07 09:17:32 +02:00
4168727f36
Modernize to PHP 7.4
2025-04-07 09:17:31 +02:00
745fef44f4
Modernize to PHP 5.5
2025-04-07 09:17:31 +02:00
84eb99c59b
Initial Rector fixes with basic configuration
2025-04-07 09:17:31 +02:00
e63d473032
Clean PHPStan baseline
2025-04-05 16:19:38 +02:00
a7f7022229
Replace getQuotedTableName by using DefaultQuoteStrategy
2025-04-02 02:13:45 +02:00
47d3bd4b69
Replace MASTER_REQUEST by MAIN_REQUEST
2025-04-02 02:08:55 +02:00
1127b147c0
Replace AuthenticationEvents::AUTHENTICATION_FAILURE by LoginFailureEvent
2025-04-02 02:08:55 +02:00
c50265c1eb
Replace setMethods by onlyMethods
2025-04-02 02:08:55 +02:00
677b2986bc
Use 400 Bad Request errors for invalid CSRF everywhere
2025-03-30 06:18:32 +02:00
5ea5115a72
Protect mass_action with a CSRF token
2025-03-30 06:18:32 +02:00
27f0d94db7
Protect tag_delete with a CSRF token
2025-03-30 06:18:32 +02:00
cf49be6940
Protect tag_this_search with a CSRF token
2025-03-30 06:18:32 +02:00
ddf2e80842
Protect remove_tag with a CSRF token
2025-03-30 06:18:32 +02:00
d1e128900a
Protect delete_share with a CSRF token
2025-03-30 06:18:32 +02:00
0d8429dfc7
Protect share with a CSRF token
2025-03-30 06:18:32 +02:00
eb8408b22f
Protect delete_entry with a CSRF token
2025-03-30 06:18:32 +02:00
00d0e6f951
Protect star_entry with a CSRF token
2025-03-30 06:18:32 +02:00
edffef8375
Protect archive_entry with a CSRF token
2025-03-30 06:18:32 +02:00
3817010e29
Protect reload_entry with a CSRF token
2025-03-30 06:18:32 +02:00
ed1acf59e1
Protect changeLocale with a CSRF token
2025-03-30 06:18:29 +02:00
e162408139
Protect switch_view_mode with a CSRF token
2025-03-23 19:13:21 +01:00
6fa61c0f9c
Protect delete_ignore_origin_rule with a CSRF token
2025-03-23 19:13:17 +01:00
264f91126e
Protect delete_tagging_rule with a CSRF token
2025-03-23 19:13:14 +01:00
ac5b5fb379
Protect revoke_token with a CSRF token
2025-03-23 19:13:09 +01:00
d703fa6a3a
Protect generate_token with a CSRF token
2025-03-23 19:13:06 +01:00
2272d3da66
Merge branch '2.6'
...
# Conflicts:
# src/Repository/EntryRepository.php
# src/Twig/WallabagExtension.php
# src/Wallabag/CoreBundle/Resources/views/Entry/_card_actions.html.twig
# src/Wallabag/CoreBundle/Resources/views/Entry/_card_list.html.twig
# tests/Twig/WallabagExtensionTest.php
2025-03-18 21:02:22 +01:00
7e9e179860
Merge pull request #8098 from wallabag/add-isgranted-to-entryrestcontroller
...
Add IsGranted to EntryRestController
2025-03-18 12:34:57 +01:00
c20f37975b
No class level route annotations
2025-03-18 01:22:55 +01:00
ecb8b8ff49
Add IsGranted to EntryRestController
2025-03-18 00:15:34 +01:00
67c359a6dd
Replace entity manager clear by creating a new client
2025-03-18 00:03:35 +01:00
943bfd9162
Add IsGranted to TagController
2025-03-17 10:47:57 +01:00
fb11f5870e
Merge pull request #8094 from wallabag/add-isgranted-to-configcontroller
...
Add IsGranted to ConfigController
2025-03-17 09:34:25 +01:00
787a812f8e
Fix tests namespaces
2025-03-16 22:13:12 +01:00
