summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2017-05-25API: Add some hidden checks to staff stuffYorhel1-4/+11
2017-05-22API: Add some flags to query staff/seiyuu dataYorhel2-0/+103
2017-04-30d13: Add ShareX guideYorhel1-2/+22
Draft text & screenshots provided by https://vndb.org/u118842
2017-04-28API: Made a start on "get staff" supportYorhel2-0/+216
2017-04-28Replace d13 image links with self-hosted onesYorhel1-3/+3
Yes I abused the screenshot-uploading trick rather than storing those images on the git repo. I'd rather not have many images in git.
2017-04-21Add 1366x768 resolutionYorhel2-0/+4
https://vndb.org/t950.317
2017-03-26Multi::RG: Fix inverse check for non-official relationsYorhel1-1/+1
2017-03-26d5: Fix spelling errorYorhel1-1/+1
Reported at https://vndb.org/t2520.217
2017-03-26Multi::RG: Remove unofficial relations from graph if #vns > 30Yorhel2-9/+28
This makes the relation graphs useful again for several large (mostly) independent graphs that are sometimes linked together by unofficial relations. e.g. https://vndb.org/t8985
2017-03-05Fix 500 when editing character entry without traitsYorhel1-1/+1
Fixes https://vndb.org/t2520.215
2017-03-03Add date filters to VN searchYorhel3-3/+11
2017-03-03VNBrowse: Remember sort options when changing query or filtersYorhel1-2/+2
2017-03-03API: Add traits filter to get characterYorhel2-0/+23
2017-03-03Don't allow deleted or unapproved traits to be linked to char entriesYorhel2-0/+4
Fixes https://vndb.org/t2520.213
2017-02-20APIDump: Add votes2.gz with dates, update sizes in d14Yorhel2-9/+17
2017-02-20Multi::IRC: Whitelist c64 in id detectionYorhel1-1/+1
2017-01-29IRC: Remove eval commandYorhel1-9/+0
I never use it. And it's scary.
2017-01-29Fix HTML error on d11Yorhel1-1/+2
2017-01-25Ignore duplicate board IDs in threat editYorhel1-1/+1
https://vndb.org/t2520.209
2017-01-25Disable links to AnimeNFO for the momentYorhel1-4/+5
https://vndb.org/t2520.210
2017-01-25API: Fix Unicode password login + some messagesYorhel1-3/+3
2017-01-21Don't omit metadata with a value of '0'flan1-1/+1
2017-01-19Add Open Graph tags for the main page and vrspcflan8-10/+71
2017-01-19Change the default DB username to "vndb_site" to match changes from 6a04b32flan1-1/+1
2016-12-04API: Add username filter to "get user" + d11 updatesYorhel2-61/+24
2016-12-01SQL: Fix adding vndb_multi role and grant on rlistsYorhel2-1/+4
2016-11-27SQL: Use separate role for Multi2.26Yorhel3-27/+93
2016-11-27SQL: Use separate role for the website + disallow access to user dataYorhel9-139/+377
Previously the website was connected to the database with a "database owner" user, which has far too many permissions. Now there's a special vndb_site user with only the necessary permissions. The primary reason to do this is to decrease the impact if the site process is compromised. E.g. it's now no longer possible to delete or modify old entry revisions. An attacker can still do a lot of damage, however. Additionally (and this was the main reason to implement this change in the first place), the user sessions, passwords and email data is now not easily accessible anymore. Hopefully, the new user management abstractions will prevent email and password dumps in case of an SQL injection or RCE vulnerability in the site code. Of course, this only works if my implementation is fully correct and there's no privilige escalation vulnerability somewhere. Furthermore, changing your password now invalidates any existing sessions, and the password reset function is disabled for 'usermods' (because usermods can list email addresses from the database, and the password reset function could still allow an attacker to gain access to anyone's account). I also changed the format of the password reset tokens, as they totally don't need to be salted.
2016-11-03List deleted releases when adding a new releaseYorhel2-5/+29
2016-11-03Add duplicate check to producer entryYorhel3-12/+76
2016-10-16Support more than 100 characters per VNYorhel2-2/+2
2016-10-16VNPage: Add gender icons to character summaryYorhel1-0/+1
2016-10-16Doc update + IRC bot language fixYorhel2-2/+8
2016-09-18Suppress silly Perl 5.22 warnings about extra sprintf argsYorhel4-2/+5
2016-09-11API: Add VN relations "official" fieldYorhel2-6/+5
2016-09-11Fix http->https in d14 + increase IRC quote spam intervalYorhel2-4/+4
2016-08-31API: Add simple "get user" commandYorhel2-4/+72
2016-08-09Add Croatian languageYorhel4-1/+6
2016-07-31SQL: Improve trait cache update from 206 to 16 secondsYorhel3-4/+12
VNDB tends to get unresponsive for a few minutes when the daily cron is run. This should help somewhat.
2016-07-31vnstaff.js: Show error message when staff is credited multiple timesYorhel1-1/+20
The backend does this validation as well, but if that validation fails it will show an unhelpful "Malformed JSON" error. This JS message should be more helpful.
2016-07-31Handler::VNEdit: Fix bug with new staff/cast being removed on form errorYorhel1-6/+5
The names of the staff were fetched from the existing VN entry, so any newly added staff were not present in that list, and would thus not show up when the form validation failed. This fix makes sure to always fetch the required data from the database.
2016-07-31Add Thai languageYorhel4-1/+6
2016-07-31API: Support array mathing in "get character" vn filterYorhel2-3/+4
2016-07-03Fix adding tags to VNs after last commitYorhel1-1/+1
I changed the exact matching syntax of the tag search to be '='-prefixed rather than 'name:'-prefixed, to be similar to exact staff search. But I forgot that the JS code relied on the name-prefix.
2016-07-03Generalize substring search relevance + apply to most dropdown searchesYorhel10-51/+66
This is a generalization of the search improvements made in 7da2edeaa0f6cf7794f4f8f68960497dc1be893c and 92235222dba4e5d0c7713d53ef12e0f10e371b83 And has been applied to the dropdown searches for producers, staff, tags and traits. For all those searches, exact matches are listed first, followed by prefix matches, and then substring matches. Relevance is currently only based on the primary name/title and ignores aliases (except for staff). This is fixable, but not trivial, and I'm not sure it's all that useful.
2016-07-03DB::Tags::dbTTTree: Use hash lookup for parent IDsYorhel1-3/+4
Reduces page load time of the trait index from 200ms to 20ms. Also provides a slight improvement for other tag/trait tree views.
2016-07-03Charedit/traits: Prioritize exact match when finding traitsYorhel2-2/+15
2016-07-03Various staff search improvementsYorhel5-19/+27
- Exact match is now case-insensitive - Main staff search supports exact match with =-prefix - On VN edit dropdown: exact matches are sorted before other matches - VN edit dropdown now also displays original name
2016-07-02JS: Use alias ID in dropdown search to fix selectionYorhel3-5/+5
2016-07-02Util::ValidateTemplates: Fix forgotten import of kv_validateYorhel2-1/+2