3c659601e2
Make it an option for post uploads
10 years ago
68653372ff
Rename auth header to Linx-Api-Key and remove
b64encoding requirement for uploading with keys
10 years ago
a7ae455ac1
strict referrer check improvements
* Always check Origin if it is present, regardless of headers sent
* Whitelist X-Requested-With header
10 years ago
dd4ac3a7ed
add support remote auth keys
These are taken as a parameter to the remote upload page. Note that all
keys will be logged since this is a GET request.
10 years ago
52ec9f8e2d
use 303 redirects instead of 301s
HTTP status code 301 is for a permanent redirect, which these are not.
Although 302 would work here in most browsers, it would not follow the
HTTP spec, so instead we use 303 which has a clearly and consistently
defined behavior in response to a POST or PUT request.
10 years ago
874c23087d
add crossdomain.xml to file blacklist
10 years ago
6ff181facb
add strict referrer check for POST uploads
This should protect against cross-site request forgery without the need
for cookies. It continues to allow requests with Linx-Delete-Key,
Linx-Expiry, or Linx-Randomize headers as these will not be set in the
case of cross-site requests.
10 years ago
e9132a1193
File overwriting support. Fixes #8
10 years ago
639d519712
Configurable maximum upload file size. Fixes #35
10 years ago
6e33fe6ac8
Metadata holds mimetype, sha256sum, archiveFiles
10 years ago
9640e2c7ce
Tests + fixes
10 years ago
11039d57f1
Fix dyreshark breakages + fix small file with no extension bug
10 years ago
875ebd6db2
Add support for deletion key and expiry in remote upload
10 years ago
1e421e07cd
swap to using time types instead of ints
10 years ago
c5250e529e
Headers are now Linx-.. instead of X-...
10 years ago
ad9d712a3a
add a file blacklist and add robots.txt
Fixes #26
10 years ago
3e2537ca68
Get rid of ace editor
10 years ago
d40803f165
More verbose errors
10 years ago
98106ec74f
use better random for URLs and delete keys
Using a PRNG seeded based on only the time for these is a bad idea as
the output is predictable. Instead, use a package that generates random
strings using go's crypo/rand package to provide cryptographically
secure random URLs and delete keys.
10 years ago
8f7b47f572
Support remote uploads
10 years ago
9cd20c81fc
This is not the commit you are looking for
10 years ago
61e1661dde
Fix small file uploads
10 years ago
31359499ac
Switch to dropzonejs. Fixes #18
10 years ago
c22e314d80
Add a check to see if we already hit EOF on Read
10 years ago
8a1b688b3c
Remove error
10 years ago
2f5bf2cd65
Added pasteHandler and paste upload
10 years ago
2ef8546864
Add basic MIME detection support
10 years ago
02f86da3c7
Display expiry and size info
10 years ago
f0b1a8e47b
Cleanup artifacts
10 years ago
5f78fe6619
Added tests for uploads
10 years ago
8c50d4322f
Added support for testing, removed uuid requirement
10 years ago
c32a698cbc
upload expiry/barename respect, random fixes
10 years ago
a10b838f4d
Add preliminary metadata support
10 years ago
6ca4579e34
Switch to new uuid repo
10 years ago
9b0385bf6f
Check if file exists and increment filename
10 years ago
d98b63e8bd
Performance improvements, custom 404+500, -nologs, PUT uploads fix
10 years ago
9d6dcdcbba
Follow some dyretips
10 years ago
8caae56b39
json response + imported old drag and drop uploader
10 years ago
d869599da7
Bare /static support, some css/templates import
10 years ago
d130cfe8e1
Some cleanup
10 years ago
2dbe318b18
Initial commit
10 years ago
andreimarcu
mutantmonkey
Matt Hazinski
George Burgess IV
Jacob Melton