b09224cac1
Add a two-step setup of OTP
...
Before this change, 2FA with OTP was enabled before the user was able to
submit a code to validate the setup. Thus, this could lead to a
situation where the user is locked out of her account if there was an
issue setting up her application.
Now we rely on a new boolean property that is set to true only after the
user submits a valid code during the setup phase.
Fixes #4867
Signed-off-by: Kevin Decherf <kevin@kdecherf.com >
2025-07-28 22:58:43 +02:00
db8acc217e
Merge pull request #8339 from skn/master
...
Add annotations filter to entries API endpoint
2025-07-11 15:07:29 +02:00
ce2ac8f758
Add annotations filter to entries API endpoint
...
Implement a new filter parameter 'annotations' for the GET /api/entries endpoint
that allows filtering entries based on whether they have annotations. When
annotations=1, only entries with one or more annotations are returned. When
annotations=0, only entries without annotations are returned. This feature
enables users to easily find annotated content through the API.
2025-07-03 20:19:05 +04:00
42c87ab1d7
Fix PocketCsvController to extend AbstractController
2025-07-02 16:07:17 +02:00
e90bbaf540
Merge pull request #8189 from ldidry/console-command-to-add-url
...
✨ — Add command to import URL for user from command-line
2025-06-13 12:57:25 +02:00
049d87e180
Add tests
2025-06-13 12:46:32 +02:00
0d1748c8a8
✨ — Add command to import URL for user from command-line
2025-06-13 12:46:23 +02:00
540483c583
Merge pull request #8248 from casimir/missing-entry-deleted-event
...
Dispatch EntryDeletedEvent when removing duplicated entries
2025-06-13 09:19:42 +02:00
8fd5a5273d
Merge branch '2.6' into master
2025-06-05 00:37:56 +02:00
2dc1a2b94c
also dispatch EntryDeletedEvent when removing duplicated entries
2025-06-04 10:55:28 +02:00
c1397f43ac
Add Pocket CSV import
2025-06-03 13:24:27 +02:00
b1614e9267
Add Pocket and Shaarli imports
2025-05-24 16:25:48 +02:00
36eb513e1b
PHPStan level 5
2025-04-22 07:59:38 +02:00
7ffcd8f7f6
Merge branch '2.6' into master
2025-04-14 21:56:24 +02:00
262f674245
Avoid non-validated OTP to be enabled
...
The OTP code must be required when enabling OTP. If the provided code is wrong, disable OTP, redirect and notice the user.
2025-04-14 09:18:37 +02:00
e6ce9c524c
Merge branch '2.6'
2025-04-10 01:45:52 +02:00
b4483023e6
Move to PHPStan level 4
2025-04-07 12:20:06 +02:00
4e177e1778
Migrate to SensioLabs attributes
2025-04-07 09:17:32 +02:00
a766826a69
Migrate to JMS attributes
2025-04-07 09:17:32 +02:00
a1440dffda
Migrate to Gedmo attributes
2025-04-07 09:17:32 +02:00
2a60d8473d
Migrate to Symfony attributes
2025-04-07 09:17:32 +02:00
9e2720cddc
Modernize to PHP 8.1
2025-04-07 09:17:32 +02:00
ca018c77e3
Migrate to readonly properties
2025-04-07 09:17:32 +02:00
a107773c11
Modernize to PHP 8.0
2025-04-07 09:17:32 +02:00
1d5674a230
Migrate to constructor promoted properties
2025-04-07 09:17:32 +02:00
4168727f36
Modernize to PHP 7.4
2025-04-07 09:17:31 +02:00
ce8ed589d5
Modernize to PHP 7.3
2025-04-07 09:17:31 +02:00
f8c8bb7d93
Modernize to PHP 7.1
2025-04-07 09:17:31 +02:00
241cddc899
Modernize to PHP 7.0
2025-04-07 09:17:31 +02:00
745fef44f4
Modernize to PHP 5.5
2025-04-07 09:17:31 +02:00
84eb99c59b
Initial Rector fixes with basic configuration
2025-04-07 09:17:31 +02:00
d4fbb80dd5
Merge pull request #8121 from wallabag/clean-phpstan-baseline
...
Clean PHPStan baseline
2025-04-05 18:11:11 +02:00
e63d473032
Clean PHPStan baseline
2025-04-05 16:19:38 +02:00
41767e8fbc
Migrate to Doctrine attributes
2025-04-05 12:59:51 +02:00
412352ff03
Fix direct deprecation notices
2025-04-02 02:13:45 +02:00
4ab26a1902
Fix self deprecation notices
2025-04-02 02:13:45 +02:00
95730754e8
Replace property access by getters
2025-04-02 02:08:55 +02:00
402d80cd30
Replace LifecycleEventArgs by PreRemoveEventArgs
2025-04-02 02:08:55 +02:00
c9301bd0b3
Use built in FOSUserBundle mailer
2025-04-02 02:08:55 +02:00
f7f5c714ac
Replace get by constructor injection
2025-04-02 02:08:55 +02:00
069c09d8d9
Replace query by executeQuery
2025-04-02 02:08:55 +02:00
1127b147c0
Replace AuthenticationEvents::AUTHENTICATION_FAILURE by LoginFailureEvent
2025-04-02 02:08:55 +02:00
677b2986bc
Use 400 Bad Request errors for invalid CSRF everywhere
2025-03-30 06:18:32 +02:00
5ea5115a72
Protect mass_action with a CSRF token
2025-03-30 06:18:32 +02:00
27f0d94db7
Protect tag_delete with a CSRF token
2025-03-30 06:18:32 +02:00
cf49be6940
Protect tag_this_search with a CSRF token
2025-03-30 06:18:32 +02:00
ddf2e80842
Protect remove_tag with a CSRF token
2025-03-30 06:18:32 +02:00
d1e128900a
Protect delete_share with a CSRF token
2025-03-30 06:18:32 +02:00
0d8429dfc7
Protect share with a CSRF token
2025-03-30 06:18:32 +02:00
eb8408b22f
Protect delete_entry with a CSRF token
2025-03-30 06:18:32 +02:00
