Merge 1c9b28968d into dfaf5868e2

[fix] settings.yml - enabled_plugins: document to reflect default settings
Remove 'Autodetect search language', which is no longer valid, from settings, and add 'Unit converter plugin', which is now default enabled, to settings.
2024-11-11 12:43:06 +01:00 · 2024-11-10 16:09:41 +01:00 · 2024-11-10 15:53:58 +01:00 · 2024-11-08 08:51:43 +01:00 · 2024-11-08 08:45:07 +01:00 · 2024-10-27 13:42:57 +01:00
15 changed files with 107 additions and 39 deletions
--- a/docs/src/searx.botdetection.rst
+++ b/docs/src/searx.botdetection.rst
@ -53,6 +53,9 @@ Probe HTTP headers
 .. automodule:: searx.botdetection.http_user_agent
  :members:
 .. automodule:: searx.botdetection.sec_fetch
  :members:
 .. _botdetection config:
 Config
--- a/requirements.txt
+++ b/requirements.txt
@ -18,4 +18,4 @@ fasttext-predict==0.9.2.2
 tomli==2.0.2; python_version < '3.11'
 msgspec==0.18.6
 eval_type_backport; python_version < '3.9'
-typer-slim==0.12.5
+typer-slim==0.13.0
--- a/searx/botdetection/_helpers.py
+++ b/searx/botdetection/_helpers.py
@ -31,6 +31,9 @@ def dump_request(request: flask.Request):
        + " || Content-Length: %s" % request.headers.get('Content-Length')
        + " || Connection: %s" % request.headers.get('Connection')
        + " || User-Agent: %s" % request.headers.get('User-Agent')
        + " || Sec-Fetch-Site: %s" % request.headers.get('Sec-Fetch-Site')
        + " || Sec-Fetch-Mode: %s" % request.headers.get('Sec-Fetch-Mode')
        + " || Sec-Fetch-Dest: %s" % request.headers.get('Sec-Fetch-Dest')
    )
--- a/searx/botdetection/http_sec_fetch.py
+++ b/searx/botdetection/http_sec_fetch.py
@ -0,0 +1,59 @@
 # SPDX-License-Identifier: AGPL-3.0-or-later
 """
 Method ``http_sec_fetch``
 -------------------------
 The ``http_sec_fetch`` method protect resources from web attacks with `Fetch
 Metadata`_.  A request is filtered out in case of:
 - http header Sec-Fetch-Mode_ is invalid
 - http header Sec-Fetch-Dest_ is invalid
 .. _Fetch Metadata:
   https://developer.mozilla.org/en-US/docs/Glossary/Fetch_metadata_request_header
 .. Sec-Fetch-Dest:
   https://developer.mozilla.org/en-US/docs/Web/API/Request/destination
 .. Sec-Fetch-Mode:
   https://developer.mozilla.org/en-US/docs/Web/API/Request/mode
 """
 # pylint: disable=unused-argument
 from __future__ import annotations
 from ipaddress import (
    IPv4Network,
    IPv6Network,
 )
 import flask
 import werkzeug
 from . import config
 from ._helpers import logger
 def filter_request(
    network: IPv4Network | IPv6Network,
    request: flask.Request,
    cfg: config.Config,
 ) -> werkzeug.Response | None:
    val = request.headers.get("Sec-Fetch-Mode", "")
    if val != "navigate":
        logger.debug("invalid Sec-Fetch-Mode '%s'", val)
        return flask.redirect(flask.url_for('index'), code=302)
    val = request.headers.get("Sec-Fetch-Site", "")
    if val not in ('same-origin', 'same-site', 'none'):
        logger.debug("invalid Sec-Fetch-Site '%s'", val)
        flask.redirect(flask.url_for('index'), code=302)
    val = request.headers.get("Sec-Fetch-Dest", "")
    if val != "document":
        logger.debug("invalid Sec-Fetch-Dest '%s'", val)
        flask.redirect(flask.url_for('index'), code=302)
    return None
--- a/searx/limiter.py
+++ b/searx/limiter.py
@ -111,6 +111,7 @@ from searx.botdetection import (
    http_accept_encoding,
    http_accept_language,
    http_user_agent,
    http_sec_fetch,
    ip_limit,
    ip_lists,
    get_network,
@ -178,16 +179,17 @@ def filter_request(request: flask.Request) -> werkzeug.Response | None:
        logger.error("BLOCK %s: matched BLOCKLIST - %s", network.compressed, msg)
        return flask.make_response(('IP is on BLOCKLIST - %s' % msg, 429))
-    # methods applied on /
+    # methods applied on all requests
    for func in [
        http_user_agent,
    ]:
        val = func.filter_request(network, request, cfg)
        if val is not None:
            logger.debug(f"NOT OK ({func.__name__}): {network}: %s", dump_request(flask.request))
            return val
-    # methods applied on /search
+    # methods applied on /search requests
    if request.path == '/search':
@ -196,12 +198,15 @@ def filter_request(request: flask.Request) -> werkzeug.Response | None:
            http_accept_encoding,
            http_accept_language,
            http_user_agent,
            http_sec_fetch,
            ip_limit,
        ]:
            val = func.filter_request(network, request, cfg)
            if val is not None:
                logger.debug(f"NOT OK ({func.__name__}): {network}: %s", dump_request(flask.request))
                return val
-    logger.debug(f"OK {network}: %s", dump_request(flask.request))
+        logger.debug(f"OK: {network}: %s", dump_request(flask.request))
    return None
--- a/searx/search/checker/scheduler.lua
+++ b/searx/search/checker/scheduler.lua
@ -20,7 +20,7 @@ if (next_call_ts == false or next_call_ts == nil) then
    -- 2/ the next call is a random time between start_after_from and start_after_to
    local initial_delay = math.random(start_after_from, start_after_to)
    redis.call('SET', redis_key, now + initial_delay)
-    return { false, delay }
+    return { false, initial_delay }
 end
 -- next_call_ts is defined
--- a/searx/settings.yml
+++ b/searx/settings.yml
@ -226,15 +226,12 @@ outgoing:
 #   - 'Hash plugin'
 #   - 'Self Information'
 #   - 'Tracker URL remover'
 #   - 'Unit converter plugin'
 #   - 'Ahmia blacklist'  # activation depends on outgoing.using_tor_proxy
 #   # these plugins are disabled if nothing is configured ..
 #   - 'Hostnames plugin'  # see 'hostnames' configuration below
 #   - 'Open Access DOI rewrite'
 #   - 'Tor check plugin'
 #   # Read the docs before activate: auto-detection of the language could be
 #   # detrimental to users expectations / users can activate the plugin in the
 #   # preferences if they want.
 #   - 'Autodetect search language'
 # Configuration of the "Hostnames plugin":
 #
--- a/searx/translations/es/LC_MESSAGES/messages.mo
+++ b/searx/translations/es/LC_MESSAGES/messages.mo
--- a/searx/translations/es/LC_MESSAGES/messages.po
+++ b/searx/translations/es/LC_MESSAGES/messages.po
@ -39,9 +39,8 @@ msgstr ""
 "Project-Id-Version: searx\n"
 "Report-Msgid-Bugs-To: EMAIL@ADDRESS\n"
 "POT-Creation-Date: 2024-10-05 06:24+0000\n"
-"PO-Revision-Date: 2024-10-26 21:13+0000\n"
+"PO-Revision-Date: 2024-11-03 09:08+0000\n"
-"Last-Translator: Atul_Eterno <Atul_Eterno@users.noreply.translate.codeberg."
+"Last-Translator: return42 <return42@users.noreply.translate.codeberg.org>\n"
 "org>\n"
 "Language-Team: Spanish <https://translate.codeberg.org/projects/searxng/"
 "searxng/es/>\n"
 "Language: es\n"
@ -1246,7 +1245,7 @@ msgstr "Tiempo máximo"
 #: searx/templates/simple/preferences/favicon.html:2
 msgid "Favicon Resolver"
-msgstr ""
+msgstr "Buscador de favicon"
 #: searx/templates/simple/preferences/favicon.html:15
 msgid "Display favicons near search results"
--- a/searx/translations/nb_NO/LC_MESSAGES/messages.mo
+++ b/searx/translations/nb_NO/LC_MESSAGES/messages.mo
--- a/searx/translations/nb_NO/LC_MESSAGES/messages.po
+++ b/searx/translations/nb_NO/LC_MESSAGES/messages.po
@ -10,21 +10,22 @@
 # return42 <return42@users.noreply.translate.codeberg.org>, 2024.
 # omfj <omfj@users.noreply.translate.codeberg.org>, 2024.
 # combwizard <combwizard@users.noreply.translate.codeberg.org>, 2024.
 # laaknor <laaknor@users.noreply.translate.codeberg.org>, 2024.
 msgid ""
 msgstr ""
 "Project-Id-Version: PROJECT VERSION\n"
 "Report-Msgid-Bugs-To: EMAIL@ADDRESS\n"
 "POT-Creation-Date: 2024-10-05 06:24+0000\n"
-"PO-Revision-Date: 2024-10-04 21:35+0000\n"
+"PO-Revision-Date: 2024-11-03 09:08+0000\n"
-"Last-Translator: combwizard "
+"Last-Translator: laaknor <laaknor@users.noreply.translate.codeberg.org>\n"
-"<combwizard@users.noreply.translate.codeberg.org>\n"
+"Language-Team: Norwegian Bokmål <https://translate.codeberg.org/projects/"
 "searxng/searxng/nb_NO/>\n"
 "Language: nb_NO\n"
 "Language-Team: Norwegian Bokmål "
 "<https://translate.codeberg.org/projects/searxng/searxng/nb_NO/>\n"
 "Plural-Forms: nplurals=2; plural=n != 1;\n"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=utf-8\n"
 "Content-Transfer-Encoding: 8bit\n"
 "Plural-Forms: nplurals=2; plural=n != 1;\n"
 "X-Generator: Weblate 5.8.1\n"
 "Generated-By: Babel 2.16.0\n"
 #. CONSTANT_NAMES['NO_SUBGROUPING']
@ -1051,7 +1052,7 @@ msgstr "Det er ingen flere resultater. Du kan prøve å:"
 #: searx/templates/simple/messages/no_results.html:19
 msgid "Refresh the page."
-msgstr "oppfrisk siden"
+msgstr "oppfrisk siden."
 #: searx/templates/simple/messages/no_results.html:20
 msgid "Search for another query or select another category (above)."
@ -1882,4 +1883,3 @@ msgstr "skjul video"
 #~ msgid "Engines cannot retrieve results"
 #~ msgstr "Søkemotorer kan ikke motta resultater"
--- a/searx/translations/nl/LC_MESSAGES/messages.mo
+++ b/searx/translations/nl/LC_MESSAGES/messages.mo
--- a/searx/translations/nl/LC_MESSAGES/messages.po
+++ b/searx/translations/nl/LC_MESSAGES/messages.po
@ -23,13 +23,14 @@
 # notlmutsaers <notlmutsaers@users.noreply.translate.codeberg.org>, 2024.
 # return42 <return42@users.noreply.translate.codeberg.org>, 2024.
 # ljansen <ljansen@users.noreply.translate.codeberg.org>, 2024.
 # zarlin <zarlin@users.noreply.translate.codeberg.org>, 2024.
 msgid ""
 msgstr ""
 "Project-Id-Version: searx\n"
 "Report-Msgid-Bugs-To: EMAIL@ADDRESS\n"
 "POT-Creation-Date: 2024-10-05 06:24+0000\n"
-"PO-Revision-Date: 2024-10-28 21:07+0000\n"
+"PO-Revision-Date: 2024-11-02 04:00+0000\n"
-"Last-Translator: ljansen <ljansen@users.noreply.translate.codeberg.org>\n"
+"Last-Translator: zarlin <zarlin@users.noreply.translate.codeberg.org>\n"
 "Language-Team: Dutch <https://translate.codeberg.org/projects/searxng/"
 "searxng/nl/>\n"
 "Language: nl\n"
@ -493,7 +494,7 @@ msgstr "stemmen"
 #: searx/engines/radio_browser.py:107
 msgid "clicks"
-msgstr "clicks"
+msgstr "klikken"
 #: searx/engines/seekr.py:193 searx/engines/yummly.py:71
 #: searx/engines/zlibrary.py:137
@ -662,7 +663,7 @@ msgstr "Voorkeuren"
 #: searx/templates/simple/base.html:68
 msgid "Powered by"
-msgstr "Zoekmachine"
+msgstr "Verzorgd door"
 #: searx/templates/simple/base.html:68
 msgid "a privacy-respecting, open metasearch engine"
@ -1069,7 +1070,7 @@ msgstr "Er zijn geen resultaten meer. U kunt proberen om:"
 #: searx/templates/simple/messages/no_results.html:19
 msgid "Refresh the page."
-msgstr "Ververs de pagina"
+msgstr "Ververs de pagina."
 #: searx/templates/simple/messages/no_results.html:20
 msgid "Search for another query or select another category (above)."
@ -1235,9 +1236,8 @@ msgid "Max time"
 msgstr "Max. duur"
 #: searx/templates/simple/preferences/favicon.html:2
 #, fuzzy
 msgid "Favicon Resolver"
-msgstr "favicon-resolver"
+msgstr "Favicon Oplosser"
 #: searx/templates/simple/preferences/favicon.html:15
 msgid "Display favicons near search results"
--- a/searx/translations/th/LC_MESSAGES/messages.mo
+++ b/searx/translations/th/LC_MESSAGES/messages.mo
--- a/searx/translations/th/LC_MESSAGES/messages.po
+++ b/searx/translations/th/LC_MESSAGES/messages.po
@ -8,21 +8,23 @@
 # return42 <return42@users.noreply.translate.codeberg.org>, 2024.
 # abhabongse <abhabongse@users.noreply.translate.codeberg.org>, 2024.
 # tutakrab <tutakrab@users.noreply.translate.codeberg.org>, 2024.
 # sahussawud <sahussawud@users.noreply.translate.codeberg.org>, 2024.
 msgid ""
 msgstr ""
 "Project-Id-Version: PROJECT VERSION\n"
 "Report-Msgid-Bugs-To: EMAIL@ADDRESS\n"
 "POT-Creation-Date: 2024-10-05 06:24+0000\n"
-"PO-Revision-Date: 2024-10-02 16:10+0000\n"
+"PO-Revision-Date: 2024-11-06 07:26+0000\n"
-"Last-Translator: tutakrab <tutakrab@users.noreply.translate.codeberg.org>"
+"Last-Translator: sahussawud <sahussawud@users.noreply.translate.codeberg.org>"
 "\n"
 "Language-Team: Thai <https://translate.codeberg.org/projects/searxng/searxng/"
 "th/>\n"
 "Language: th\n"
 "Language-Team: Thai "
 "<https://translate.codeberg.org/projects/searxng/searxng/th/>\n"
 "Plural-Forms: nplurals=1; plural=0;\n"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=utf-8\n"
 "Content-Transfer-Encoding: 8bit\n"
 "Plural-Forms: nplurals=1; plural=0;\n"
 "X-Generator: Weblate 5.8.1\n"
 "Generated-By: Babel 2.16.0\n"
 #. CONSTANT_NAMES['NO_SUBGROUPING']
@ -163,7 +165,7 @@ msgstr "มืด"
 #. STYLE_NAMES['BLACK']
 #: searx/searxng.msg
 msgid "black"
-msgstr ""
+msgstr "สีดำ"
 #. BRAND_CUSTOM_LINKS['UPTIME']
 #: searx/searxng.msg
@ -331,12 +333,12 @@ msgstr "ผู้เขียน"
 #. SOCIAL_MEDIA_TERMS['THREAD OPEN']
 #: searx/engines/discourse.py:149 searx/searxng.msg
 msgid "open"
-msgstr ""
+msgstr "สร้าง"
 #. SOCIAL_MEDIA_TERMS['THREAD CLOSED']
 #: searx/engines/discourse.py:149 searx/searxng.msg
 msgid "closed"
-msgstr ""
+msgstr "ลบ"
 #. SOCIAL_MEDIA_TERMS['THREAD ANSWERED']
 #: searx/engines/discourse.py:160 searx/searxng.msg
@ -450,7 +452,7 @@ msgstr "คำนวณ {functions} จากอาร์กิวเมนต
 #: searx/engines/mozhi.py:57
 msgid "Synonyms"
-msgstr ""
+msgstr "คำเหมือน"
 #: searx/engines/openstreetmap.py:159
 msgid "Get directions"
@ -538,8 +540,9 @@ msgid "hash digest"
 msgstr "แฮชย่อย"
 #: searx/plugins/hostnames.py:103
 #, fuzzy
 msgid "Hostnames plugin"
-msgstr ""
+msgstr "ชื่อโฮส ปลั๊กอิน"
 #: searx/plugins/hostnames.py:104
 msgid "Rewrite hostnames, remove results or prioritize them based on the hostname"
@ -1698,4 +1701,3 @@ msgstr "ซ่อนวิดีโอ"
 #~ msgid "Engines cannot retrieve results"
 #~ msgstr "เครื่องมือไม่สามารถดึงผลลัพธ์ได้"
Author	SHA1	Message	Date
Markus Heiser	35cc4726be	Merge `1c9b28968d` into `dfaf5868e2`	2024-11-11 12:43:06 +01:00
Leo Liu	dfaf5868e2	[fix] settings.yml - enabled_plugins: document to reflect default settings Remove 'Autodetect search language', which is no longer valid, from settings, and add 'Unit converter plugin', which is now default enabled, to settings.	2024-11-10 16:09:41 +01:00
Leo Liu	b173f3a8b9	Fix scheduler.lua	2024-11-10 15:53:58 +01:00
dependabot[bot]	2fbf15eccb	[upd] pypi: Bump typer-slim from 0.12.5 to 0.13.0 Bumps [typer-slim](https://github.com/fastapi/typer) from 0.12.5 to 0.13.0. - [Release notes](https://github.com/fastapi/typer/releases) - [Changelog](https://github.com/fastapi/typer/blob/master/docs/release-notes.md) - [Commits](https://github.com/fastapi/typer/compare/0.12.5...0.13.0) --- updated-dependencies: - dependency-name: typer-slim dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2024-11-08 08:51:43 +01:00
searxng-bot	08c5f258d8	[l10n] update translations from Weblate `8d90a7e6d` - 2024-11-06 - sahussawud <sahussawud@users.noreply.translate.codeberg.org> `41ee8bb0d` - 2024-11-02 - laaknor <laaknor@users.noreply.translate.codeberg.org> `c1a30afab` - 2024-11-02 - return42 <return42@users.noreply.translate.codeberg.org> `627ab7a8e` - 2024-11-01 - zarlin <zarlin@users.noreply.translate.codeberg.org>	2024-11-08 08:45:07 +01:00
Markus Heiser	1c9b28968d	[mod] botdetection: HTTP Fetch Metadata Request Headers HTTP Fetch Metadata Request Headers [1][2] are used to detect bot requests. Bots with invalid Fetch Metadata will be redirected to the intro (`index`) page. [1] https://www.w3.org/TR/fetch-metadata/ [2] https://developer.mozilla.org/en-US/docs/Glossary/Fetch_metadata_request_header Signed-off-by: Markus Heiser <markus.heiser@darmarit.de>	2024-10-27 13:42:57 +01:00