103 Commits

Author SHA1 Message Date
Greirson Lee-Thorp
dac7143a19 feat: improve file and folder upload handling with unique naming
- Add support for batch uploads with unique folder and file naming
- Implement getUniqueFilePath and getUniqueFolderPath to prevent file/folder overwrites
- Add batch ID tracking for folder uploads
- Enhance client-side file handling to support batch uploads
- Improve file path generation and logging for uploads
2025-02-03 15:55:40 -08:00
Greirson Lee-Thorp
7cee62304e chore: update Content Security Policy to allow jsdelivr CDN resources
- Add jsdelivr.net to allowed script and style sources
- Include data: and blob: for image sources
- Enhance security by explicitly defining allowed external resources
2025-02-02 22:37:35 -08:00
Greirson Lee-Thorp
d1c295a6f2 refactor: optimize upload rate limiting and chunk size
- Update rate limiting for upload initialization with more granular controls
- Increase chunk size to 5MB for improved upload performance
- Remove generic API rate limiter
- Simplify rate limiting middleware configuration
2025-02-02 21:42:09 -08:00
Greirson Lee-Thorp
490790a6a6 feat: enhance security with rate limiting and file extension filtering
- Add express-rate-limit for API and upload routes
- Implement optional file extension filtering via ALLOWED_EXTENSIONS
- Add security headers middleware
- Update docker-compose image to official repository
- Update README with new environment variable and filtering documentation
2025-02-02 20:53:13 -08:00
abite
b01f46c36e Merge commit from fork
fix: improve Apprise notification security and command execution
2025-02-02 21:41:14 -06:00
Greirson Lee-Thorp
4ff8469d69 fix: improve Apprise notification security and command execution
- Sanitize filename to escape special characters
- Use array syntax for execAsync to prevent shell injection
- Disable shell execution for safer command handling
- Improve logging with sanitized filename
2025-02-02 19:11:20 -08:00
abite
854f69a0c3 Merge pull request #16 from greirson/notification-enhancements
Size and Total Storage templates for Notifications
2025-02-01 00:04:14 -06:00
Greirson Lee-Thorp
89fe5c7cb7 dont worry about it 2025-01-31 21:39:35 -08:00
Greirson Lee-Thorp
34c12d47fb added storage placeholder for total size of upload folder 2025-01-31 21:28:53 -08:00
Greirson Lee-Thorp
b91f82f3aa feat: enhance Apprise notifications with file size support
- Add file size formatting to notifications with auto-scaling units (B, KB, MB, GB, TB)
- Add APPRISE_SIZE_UNIT environment variable for fixed size units
- Update default notification message to include file size: "New file uploaded: {filename} ({size})"
- Fix filename reference in notifications to use safeFilename
- Fix async/await handling in upload chunk handler
- Add size formatting documentation to README
- Update environment variable documentation

Example notification: "New file uploaded: example.pdf (2.54MB)"
2025-01-31 21:07:53 -08:00
abite
2b78c12009 Merge pull request #13 from greirson/title-customization
Add customizable site title feature
2025-01-31 17:24:43 -06:00
abite
32c7226611 Update README.md 2025-01-31 16:58:30 -06:00
Greirson Lee-Thorp
851fc95f1e Add customizable site title feature via DUMBDROP_TITLE environment variable 2025-01-31 01:26:55 -08:00
abite
cb58631664 Merge commit from fork
fix: path traversal vuln
2025-01-31 00:51:10 -06:00
Paul Pfeister
2acfd21778 fix: path traversal vuln 2025-01-31 01:26:19 -05:00
abite
4b7dc39717 Merge pull request #12 from greirson/add-notifications
Add notifications support via Apprise
2025-01-31 00:00:40 -06:00
Greirson Lee-Thorp
aec1265178 Add notifications support via Apprise
- Added Apprise integration for flexible notifications
- Added notification environment variables
- Added notification logging
- Updated documentation with setup instructions
- Added Python and Apprise to Dockerfile
2025-01-30 20:52:28 -08:00
abite
b102cd886f Merge pull request #10 from jon-hedgerows/multiarch-build
enable multiarch, amd64 and arm64
2025-01-30 11:52:20 -06:00
Jon Davies
97e0d000a7 enable multiarch, amd64 and arm64
also applies semantic versions based on tags
2025-01-30 17:23:55 +00:00
abiteman
87d5987809 Bruteforce protection & new dockerhub config 2025-01-27 22:45:55 -06:00
abiteman
d3e96eee40 Merge branch 'main' of https://github.com/abiteman/DumbDrop 2025-01-25 17:33:43 -06:00
abiteman
4045693d1f Fixed Security Vulnerability 2025-01-25 17:33:39 -06:00
abite
bce498c3c4 Merge pull request #5 from arbs09/main
add docker compose
2025-01-25 13:07:42 -06:00
arbs09
c6d8561d0f edit 2025-01-25 19:58:40 +01:00
arbs09
8fdc507d87 add docker compose 2025-01-25 19:56:11 +01:00
abiteman
97ffd9c4c8 Security Fix/Improvement
Fixed timing attack vulnerability for pin access. Added variable length pins. Users  can now set a pin 4-10 characters long instead of just 4.
2025-01-25 08:02:37 -06:00
abite
57611c0778 Merge pull request #4 from jotka/main
fixed container path
2025-01-25 00:19:09 -06:00
Jarek Krochmalski
783cf7f066 fixed container path 2025-01-25 06:47:07 +01:00
abiteman
87e1d454e7 Fix Fetch loop on upload with pin enabled 2025-01-24 14:37:40 -06:00
abiteman
b124fc0270 Update styles.css 2025-01-24 12:01:33 -06:00
abiteman
bce7934de4 update readme 2025-01-24 11:46:15 -06:00
abite
7195971785 Update README.md 2025-01-24 11:44:59 -06:00
abiteman
c2ee46717f Add simple auth
Added Pin verification, set as DUMBDROP_PIN env variable.
2025-01-24 11:44:15 -06:00
abite
e9ad4a8ac5 Update README.md 2025-01-23 20:03:03 -06:00
abite
064230eff1 Update README.md 2025-01-23 14:43:10 -06:00
abite
8118f81b76 Update README.md 2025-01-23 13:59:04 -06:00
abiteman
949a7fbc28 Add File Size Limit Variable, Folder Uploads & Dark Mode
Added MAX_FILE_SIZE variable to limit upload size
Added Dark Mode toggle to UI - Default is dark on load
Added Folder Upload with nested directories
2025-01-23 13:53:30 -06:00
abite
a9ef5a04f5 Update README.md 2025-01-22 17:11:13 -06:00
abite
f615cfa699 Update README.md 2025-01-22 17:10:29 -06:00
abite
45e8b43226 Update README.md 2025-01-22 16:52:48 -06:00
abiteman
3010849c8a fix chunk upload failure 2025-01-22 16:08:12 -06:00
abiteman
a0731260ad add chunk uploads and progress bar 2025-01-22 15:51:25 -06:00
abiteman
243ef4e75c Update README.md 2025-01-22 15:28:05 -06:00
abiteman
10f19e5ff9 fix paths 2025-01-22 15:02:19 -06:00
abiteman
338854f46b Update server.js 2025-01-22 14:44:33 -06:00
abiteman
fb60018903 troubleshoot filepath & add logging 2025-01-22 14:25:45 -06:00
abiteman
7164b07d9d Icon creation 2025-01-22 14:00:46 -06:00
abiteman
35f7fb8e07 Add Dockerhub Worker 2025-01-22 13:23:59 -06:00
abiteman
b8441c6588 Update README.md 2025-01-22 13:13:58 -06:00
abiteman
8c43acfe22 Update README.md 2025-01-22 13:13:44 -06:00