Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
45 check-ins using file src/cookies.c version 99fb8cad1e
|
2025-08-22
| ||
| 13:59 | Add the /re_rules page. check-in: 8779bd0b3a user: drh tags: trunk | |
| 01:51 | Fix a typo in the regular expression example for robot-exception check-in: 31b09807ef user: drh tags: trunk | |
|
2025-08-21
| ||
| 19:10 | Activate the robot-restrict "timelineX" flag if the c= query parameter is used. check-in: 59ae0e0b18 user: drh tags: trunk | |
| 16:21 | Do not change the /info diff-type to 0 if robot-restrict is turned off. [forum:/forumpost/1bef6821de|Forum post 1bef6821de]. check-in: 879deeda66 user: drh tags: trunk | |
| 15:40 | Show numstat-style statistics in the /ckout page as well. check-in: cb4d17078f user: danield tags: trunk | |
| 14:16 | Avoid excess backslash excaping in text in the new robot-exception setup. check-in: 5dc9f9b97c user: drh tags: trunk | |
| 14:13 | Add /reports to the default robot-restrict setting. check-in: 12d871a00a user: stephan tags: trunk | |
| 14:08 | Add the robot-exception setting. check-in: 86b6ef7fe3 user: drh tags: trunk | |
| 12:08 | Sync with trunk. check-in: 286a900699 user: florian tags: standard-cli-colors | |
| 12:07 | Sync with trunk. check-in: a0377ebb9d user: florian tags: diff-word-wrap | |
| 12:06 | Sync with trunk. check-in: 5ee83f2807 user: florian tags: diff-keyboard-navigation | |
| 12:04 | Sync with trunk. check-in: bab295db10 user: florian tags: timeline-keyboard-navigation | |
| 12:02 | Change [3710202914] to call the function to load the diff-related JS code even for blocked diffs. By default, the loader function is already a no-op if diffs are blocked, so the behavior intended by [3710202914] is retained. But other branches are patching the loader function because they rely on the JS code even if the diffs are hidden. check-in: 171127fd14 user: florian tags: trunk | |
| 10:51 | Rearrange fields in the Robot Defense setup to make it easier to understand. check-in: 58a48e3abe user: drh tags: trunk | |
|
2025-08-20
| ||
| 15:02 | When appending the ssh signature, use a more direct function with the same result. check-in: 5d040f1ff0 user: danield tags: trunk | |
| 00:03 | Performance optimization in Th_RenderToBlob(). check-in: b853b5d471 user: drh tags: trunk | |
|
2025-08-19
| ||
| 22:55 | Do not duplicate the "name" query parameter in the robot.c captcha. check-in: 118540fa84 user: drh tags: trunk | |
| 18:54 | Improvements to robot-restrict. check-in: 4e73f31473 user: drh tags: trunk | |
| 16:57 | Create a new interface for checking to see if a tag exists in the robot-restrict setting. check-in: 8784c600ce user: drh tags: trunk | |
| 16:35 | Attempt to make recent robot defense improvements portable to IE. I do not have access to IE and hence cannot test this, so the changes are mostly a guess. [forum:/forumpost/e18c040d32|Forum post e18c040d32]. check-in: 3d32a10930 user: drh tags: trunk | |
| 16:02 | Do not show diffs on the /vinfo page unless we know that the client is not a robot. check-in: 3710202914 user: drh tags: trunk | |
| 15:42 | Refactor the code in robot.c to make interfaces available to other parts of the system. check-in: 4fa618faf1 user: drh tags: trunk | |
| 10:57 | Check to see that CSS has been loaded before activating hyperlinks if the user is "nobody". check-in: 3f6a6bdce4 user: drh tags: trunk | |
| 10:37 | Make "off" the preferred way to diable robot-restrict check-in: db69c47abd user: drh tags: trunk | |
| 10:28 | Documentation update: Make the robot-restrict setting "none" or "off" to disable all restrictions. check-in: 26a9b03336 user: drh tags: trunk | |
|
2025-08-18
| ||
| 15:49 | New setting "anon-cookie-lifespan" sets the life span of an anonymous login cookie. The default is 8 hours. Set to zero to disable anonymous login. check-in: 7d2b47a7c3 user: drh tags: trunk | |
| 11:45 | Additional obfuscation of the javascript that runs to implement the anti-robot defense. check-in: 4c4bce351d user: drh tags: trunk | |
|
2025-08-17
| ||
| 19:38 | Wrap the robot_restrict() JS check in an onload handler so that it won't run until the external resources (namely style.css) are loaded. check-in: e5991efb68 user: stephan tags: trunk | |
| 19:04 | Improvements to robot detection in the robot_restrict() function. check-in: e5b00c610d user: drh tags: trunk | |
| 19:02 | Obfuscation of the robot-test code. Closed-Leaf check-in: 2fdd7ace52 user: drh tags: robotck-instant | |
| 18:44 | Merge the robot tests from trunk with the new tests from this branch so that *all* the tests are run. check-in: 95a57c637f user: drh tags: robotck-instant | |
| 18:33 | Merge recent trunk enhancements into the robotck-instant branch. check-in: dd11b563f4 user: drh tags: robotck-instant | |
| 18:20 | Use the UserAgent value from the HTTP request header, rather than the client IP address, as the additional factor in the anonymous login cookie hash, since some client are on networks where their IP address can shift frequently. check-in: 0693766805 user: drh tags: trunk | |
| 17:47 | Because this new check is too fast to see the progress indicator, make the final result label more explicit. check-in: b6cf0c2052 user: stephan tags: robotck-instant | |
| 17:16 | Make anonymous cookies valid for 8 hours. Include the client IP address as part of the cookie hash, but do not display the client IP address within the text of the cookie. check-in: 68da4784aa user: drh tags: trunk | |
| 15:37 | Move the z-level style into default.css, in case the adversaries read inlined STYLE tags (which now, in hindsight, seems more likely to me). Change the HTTP result code from robot_proofofwork() to a non-200 code, the hope being that the adversaries will stop on a non-200 code. check-in: c7ad43638d user: stephan tags: robotck-instant | |
| 15:00 | Remove some dead code from /chat. check-in: 144c5dbe00 user: stephan tags: trunk | |
| 14:52 | Correct a mis-calculation of fontSize for /chat attachments which use the Embed checkbox. check-in: e3f0dcc325 user: stephan tags: trunk | |
| 13:21 | Add a comment explaining why document.body's z-level is explicitly set to 0. Remove some EOL whitespace. check-in: 7c57a20ebd user: stephan tags: robotck-instant | |
| 12:52 | Add (stash rename) to the changelog. check-in: c834adb656 user: stephan tags: trunk | |
| 12:50 | Add (stash rename) subcommand to change the label associated with a stash entry. check-in: 1aaa6fc58d user: stephan tags: trunk | |
| 12:29 | Fix the previous checkin to actually compute the work value. This slows it down by a tiny fraction of a second but it's still effectively instant. This calculation can be moved up a level into the C code to turn this back into an instant operation, but leaving it on the client seems like a reasonable choice. check-in: c27cfa9f60 user: stephan tags: robotck-instant | |
| 12:10 | An experiment in reducing the proof-of-work to a single operation. (This description is intentionally vague.) check-in: b765e65267 user: stephan tags: robotck-instant | |
|
2025-08-16
| ||
| 16:48 | Add a simple UI that allows any registered user (not "anonymous" or "nobody") to create access tokens. check-in: 2a3d303124 user: drh tags: trunk | |
| 15:54 | Change the name of the robot-test cookie to fossil-client-ok. Decode that cookie's meaning on the /cookies page. check-in: dc2232c6bd user: drh tags: trunk | |