Merge remote-tracking branch 'origin/master' into webcrypto

2018-09-02 10:07:57 +02:00 · 2018-09-02 10:07:57 +02:00 · b191e2c437
parent 30b7be0781 d66800b8ce
commit b191e2c437
8 changed files with 4 additions and 67 deletions
--- a/.dockerignore
+++ b/.dockerignore
@ -1,18 +0,0 @@
-# Documentation, might leak version number
-CHANGELOG.md
-LICENSE.md
-CREDITS.md
-INSTALL.md
-README.md
-doc/
-
-# Dotfiles, pointless
-.codeclimate.yml
-.csslintrc
-.editorconfig
-.eslint*
-.git*
-.php_cs
-.styleci.yml
-.travis.yml
-.github
--- a/26
+++ b/26
@ -1,26 +0,0 @@
-FROM php:apache
-
-RUN apt-get update && apt-get install -y \
-        libfreetype6-dev \
-        libjpeg62-turbo-dev \
-        libpng-dev \
-        wget \
-        zip \
-        unzip && \
-    # We install and enable php-gd
-    docker-php-ext-configure gd --with-freetype-dir=/usr/include/ --with-jpeg-dir=/usr/include/ &&\
-    docker-php-ext-install -j$(nproc) gd && \
-    # We enable Apache's mod_rewrite
-    a2enmod rewrite
-
-
-# Copy app content
-COPY . /var/www/html
-
-# Copy start script
-RUN mv /var/www/html/docker/entrypoint.sh / && \
-    rm -r /var/www/html/docker
-
-VOLUME /var/www/html/data
-
-CMD /entrypoint.sh
--- a/docker-compose.yml
+++ b/docker-compose.yml
@ -1,15 +0,0 @@
-version: '3'
-
-services:
-  privatebin:
-    build: .
-    ports:
-      - "3000:80"
-    volumes:
-      - data:/var/www/html/data
-      # Optionally mount a custom config file
-      #- /srv/docker/privatebin/conf.php:/var/www/html/cfg/conf.php
-    
-volumes:
-  data:
-
--- a/docker/entrypoint.sh
+++ b/docker/entrypoint.sh
@ -1,4 +0,0 @@
-#! /bin/sh
-
-chown -R www-data /var/www/html/data
-apache2-foreground
--- a/i18n/no.json
+++ b/i18n/no.json
@ -153,5 +153,5 @@
        "Hvis denne meldingen ikke forsvinner kan du ta en titt på siden med <a href=\"https://github.com/PrivateBin/PrivateBin/wiki/FAQ#why-does-not-the-loading-message-go-away\">ofte stilte spørsmål</a> for informasjon om feilsøking.",
    "+++ no paste text +++": "+++ ingen innleggstekst +++",
    "Could not get paste data: %s":
-        "Could not get paste data: %s"
+        "Kunne ikke hente utklippsdata: %s"
 }
--- a/js/privatebin.js
+++ b/js/privatebin.js
@ -3092,7 +3092,7 @@ jQuery.PrivateBin = (function($, sjcl, RawDeflate) {
            for (var i = 0; i < $head.length; ++i) {
                newDoc.write($head[i].outerHTML);
            }
-            newDoc.write('</head><body><pre>' + DOMPurify.sanitize(paste) + '</pre></body></html>');
+            newDoc.write('</head><body><pre>' + DOMPurify.sanitize($('<div />').text(paste).html()) + '</pre></body></html>');
            newDoc.close();
        }

--- a/tpl/bootstrap.php
+++ b/tpl/bootstrap.php
@ -71,7 +71,7 @@ if ($MARKDOWN):
 endif;
 ?>
 		<script type="text/javascript" data-cfasync="false" src="js/purify-1.0.7.js" integrity="sha512-VnKJHLosO8z2ojNvWk9BEKYqnhZyWK9rM90FgZUUEp/PRnUqR5OLLKE0a3BkVmn7YgB7LXRrjHgFHQYKd6DAIA==" crossorigin="anonymous"></script>
-		<script type="text/javascript" data-cfasync="false" src="js/privatebin.js?<?php echo rawurlencode($VERSION); ?>" integrity="sha512-EDc6J8fTVdA2igeEPWA+o0eJtt0C1Jc5MAWVwByI/ATpnkqaOGQd/699yb0kwFXpC4dG75/M/1wsZYCkGec1nA==" crossorigin="anonymous"></script>
+		<script type="text/javascript" data-cfasync="false" src="js/privatebin.js?<?php echo rawurlencode($VERSION); ?>" integrity="sha512-nh671EZTdx0Fa33bnMy0sNdIbkqrtMmUNPBfMOPlfkTlLz8o+8AhSzJGOUbaJL/3DdLREt8rBfiu5uOL7U96rw==" crossorigin="anonymous"></script>
 		<!--[if lt IE 10]>
 		<style type="text/css">body {padding-left:60px;padding-right:60px;} #ienotice {display:block;} #oldienotice {display:block;}</style>
 		<![endif]-->
--- a/tpl/page.php
+++ b/tpl/page.php
@ -49,7 +49,7 @@ if ($MARKDOWN):
 endif;
 ?>
 		<script type="text/javascript" data-cfasync="false" src="js/purify-1.0.7.js" integrity="sha512-VnKJHLosO8z2ojNvWk9BEKYqnhZyWK9rM90FgZUUEp/PRnUqR5OLLKE0a3BkVmn7YgB7LXRrjHgFHQYKd6DAIA==" crossorigin="anonymous"></script>
-		<script type="text/javascript" data-cfasync="false" src="js/privatebin.js?<?php echo rawurlencode($VERSION); ?>" integrity="sha512-EDc6J8fTVdA2igeEPWA+o0eJtt0C1Jc5MAWVwByI/ATpnkqaOGQd/699yb0kwFXpC4dG75/M/1wsZYCkGec1nA==" crossorigin="anonymous"></script>
+		<script type="text/javascript" data-cfasync="false" src="js/privatebin.js?<?php echo rawurlencode($VERSION); ?>" integrity="sha512-nh671EZTdx0Fa33bnMy0sNdIbkqrtMmUNPBfMOPlfkTlLz8o+8AhSzJGOUbaJL/3DdLREt8rBfiu5uOL7U96rw==" crossorigin="anonymous"></script>
 		<!--[if lt IE 10]>
 		<style type="text/css">body {padding-left:60px;padding-right:60px;} #ienotice {display:block;} #oldienotice {display:block;}</style>
 		<![endif]-->