The latest code is now uploaded and in place. Some significant fixes found their way into this build, though probably most people won't notice them.
There were some areas of the backend that weren't protected well enough and could have led to a malicious actor updating or deleting entries that didn't belong to them. This hole is now closed and is not exploitable any longer. Based on a thorough investigation of the logs no-one had discovered or used this exploit.
The DearDiary.Net editor is now using vanilla Lexical - with plugins provided by Lexical Playground. Some of these have been customized for use with DearDiary and many more will follow. This is part of the work to be able to bring IMAGES to Plus account holders entries 😃
The keen eyed among you will notice a smiley up there. The new editor enables the choosing and placing of emojies for Plus users.
You may also now notice a 6 dot 'handle' on the left hand edge of the editor. Grabbing this will allow you to move paragraphs and things around. Plus users can also add colours to their text. Like this. Or this.
The new editor also allows the embedding of Tweets (if you must! 😂) and YouTube videos. These items are available to all users. An example is below;
There is still much to do - and images are not yet available within entries (unless you copy an image and then paste it in - provided it is hosted somewhere else) but this new editor gives me full control and full source code so I should be able to modify the image upload system to suit. For the technically minded among you, the present setup (and the setup on the old editor code) uploads the image and embeds it within the HTML. This is then all stored in the database. This, for images that are even remotely medium to large sized, is horrifically ineffecient as the entry is stored in the database. Images should always be served directly from the filesystem for efficiency.
Anyway, that's enough for now. I am inundated with spam from the Contact form so I shall have to sort something out there very soon!
Onwards and Upwards.