lashman/echoboard
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
54 Commits 1 Branch 0 Tags
main
Commit Graph

36 Commits

Author SHA1 Message Date
lashman 9d0294d380 both webauthn vars use punycode for internationalized domains 2026-03-22 19:52:21 +02:00
lashman d88fd52fbe allow embed assets to load in iframes, use unicode domain for invite links 2026-03-22 18:02:49 +02:00
lashman 9c02623655 fix invite url field name and render invitedBy/createdBy display names 2026-03-22 16:30:38 +02:00
lashman 1d6344e038 velocity threshold width 200px 2026-03-22 09:43:23 +02:00
lashman f6ccdf7915 velocity threshold width 120px 2026-03-22 09:36:57 +02:00
lashman 2b42b2ca09 wider velocity threshold input, shows Auto when zero 2026-03-22 09:25:26 +02:00
lashman 086d4b9a10 bulk board security settings, nicer explainer, velocity threshold spinner 2026-03-22 09:17:03 +02:00
lashman 5ad496608f security settings explainer, spinner for velocity threshold 2026-03-22 09:06:44 +02:00
lashman 843a64ab55 fix security page boards fetch using correct api response format 2026-03-22 08:57:13 +02:00
lashman d9fdad99ec add anti-brigading user fields to data manifest 2026-03-22 08:49:51 +02:00
lashman 14a605b3de anti-brigading system - detection engine, phantom voting, ALTCHA adaptive difficulty, honeypot fields, admin security dashboard, auto-learning 2026-03-22 08:35:26 +02:00
lashman a530ce67b0 drag reorder boards in admin, position respected on public site 2026-03-22 07:55:08 +02:00
lashman 393001c07c admin can delete status changes from post timeline 2026-03-22 07:41:59 +02:00
lashman 6b110a6d90 global push notifications toggle, inline status change on post detail 2026-03-22 07:29:08 +02:00
lashman 9f4b92cc36 use admin linked user as comment author so avatar and name are correct 2026-03-22 07:15:13 +02:00
lashman 0128a050f7 render description fields dynamically from post data instead of hardcoded constants 2026-03-22 07:01:13 +02:00
lashman 5311f5d1ee fall back to default statuses when board has no custom ones configured 2026-03-22 06:46:22 +02:00
lashman 320e724ac8 switch all cookies from sameSite strict to lax for proxy compatibility 2026-03-21 23:37:04 +02:00
lashman cdb9e5d8ee branding image uploads for favicon, logo, og image plus server-side og injection 2026-03-21 23:25:16 +02:00
lashman 624cfe8192 open graph, twitter cards, pwa manifest, theme-color 2026-03-21 23:08:54 +02:00
lashman 200b44246f await exit before redirecting so cookies get cleared 2026-03-21 23:04:53 +02:00
lashman dae5411359 remove hardcoded default template, always use seeded templates 2026-03-21 22:56:52 +02:00
lashman 57fa421f1f fetch admin avatar from admin endpoint instead of anonymous user 2026-03-21 22:34:12 +02:00
lashman aba03b67b0 fix avatar serving using readFile instead of stream 2026-03-21 22:27:38 +02:00
lashman 97f66b9748 fix admin avatar upload using linked user instead of anonymous cookie 2026-03-21 22:14:11 +02:00
lashman 07c1cf9940 allow same-origin requests without explicit origin header 2026-03-21 22:08:59 +02:00
lashman e83cfc18c2 hard redirect after login to pick up cookies 2026-03-21 22:02:22 +02:00
lashman 76ec4a2955 redirect to admin login instead of home when not authenticated 2026-03-21 21:47:51 +02:00
lashman f09aa64f36 fix static file serving path for docker deployment 2026-03-21 21:45:51 +02:00
lashman 98ab755b43 app icon and favicon 2026-03-21 20:38:41 +02:00
lashman 5a2d26f62f fix admin exit not redirecting, my posts crash, add error boundary 2026-03-21 20:19:06 +02:00
lashman 1566f85cc9 browser-based admin setup on first visit, no CLI needed 2026-03-21 19:34:51 +02:00
lashman d52088a88b dynamic plugin system, toast notifications, board delete, gitea-sync plugin rewrite, granular locking fixes 2026-03-21 19:26:35 +02:00
lashman a8ac768e3f remove unused MentionInput component 2026-03-21 17:41:57 +02:00
lashman 5ba25fb956 security hardening, team invites, granular locking, view counts, board subscriptions, scheduled changelog, mentions, recovery codes, accessibility and hover states 2026-03-21 17:37:01 +02:00
lashman f07eddf29e initial project setup 
Fastify + Prisma backend, React + Vite frontend, Docker deployment.
Multi-board feedback platform with anonymous cookie auth, passkey
upgrade path, ALTCHA spam protection, plugin system, and full
privacy-first architecture.
 2026-03-19 18:05:16 +02:00