Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2026-02-27 17:11:14 +01:00
Code Issues Packages Projects Releases Wiki Activity
21,328 Commits 72 Branches 490 Tags
18ae7cf719fba7dab4a7461894de9de1364b87ac
Commit Graph

21328 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
renovate[bot]
7e273e7710 fix(deps): update dependency mongodb to v3.6.3 (#8841) 
Co-authored-by: Renovate Bot <bot@renovateapp.com>
 2020-11-06 10:25:49 -05:00
Renovate Bot
90bcfa6d16 chore(deps): update commitlint monorepo to v11 2020-11-06 09:21:48 -05:00
Julian Lam
512f6de6de feat: allow passwords with length > 73 characters (#8818) 
* feat: allow passwords longer than 73 characters

Context: A bcrypt/blowfish limitation means that password length is capped at 72 characters. We can get around this without compromising on security
by hashing all incoming passwords with SHA512, and then sending that to bcrypt.

https://dropbox.tech/security/how-dropbox-securely-stores-your-passwords

* feat: add additional test for passwords > 73 chars

* fix: remove 'password-too-long' error message and all invocations

* test: added test to show that a super long password won't bring down NodeBB

* fix: remove debug log

* Revert "fix: remove 'password-too-long' error message and all invocations"

This reverts commit 1e312bf7ef.

* fix: added back password length checks, but at 512 chars

As processing a large string still uses a lot of memory
 2020-11-06 08:40:00 -05:00
Misty (Bot)
113d3324fb Latest translations and fallbacks 2020-11-06 09:08:06 +00:00
Barış Soner Uşaklı
c61dee4b62 fix: #8840, don't crash if /compose route is called with no query params 2020-11-05 21:01:19 -05:00
Barış Soner Uşaklı
9e3eb5d41a feat: #8821, allow guest topic views 2020-11-05 20:52:43 -05:00
Julian Lam
f68bce86a9 fix: XSS in event:banned messaging modal 2020-11-05 19:18:17 -05:00
renovate[bot]
00f90cd98c fix(deps): update dependency nodebb-theme-persona to v10.2.66 (#8839) 
Co-authored-by: Renovate Bot <bot@renovateapp.com>
 2020-11-05 16:50:41 -05:00
Barış Soner Uşaklı
78ee83324c fix: #8838, fix chat dropdown timestamps 
use shorthand like notification dropdown
 2020-11-05 16:46:17 -05:00
Barış Soner Uşaklı
76cd5b0fc1 fix: #8836, truncate fullname 2020-11-05 16:25:55 -05:00
renovate[bot]
064c99cd9f fix(deps): update dependency nodebb-plugin-mentions to v2.13.2 (#8835) 
Co-authored-by: Renovate Bot <bot@renovateapp.com>
 2020-11-05 14:35:40 -05:00
Renovate Bot
e0cf9740d1 fix(deps): update dependency postcss to v8.1.6 2020-11-05 19:25:03 +00:00
Peter Jaszkowiak
de5a21f19b fix(#8828): web install templates now compiled (#8832) 2020-11-05 12:05:31 -05:00
renovate[bot]
40eb658bc1 fix(deps): update dependency @nodebb/socket.io-adapter-mongo to v3.1.1 (#8831) 
Co-authored-by: Renovate Bot <bot@renovateapp.com>
 2020-11-05 11:58:40 -05:00
psychobunny
eec630f1ef fix(acp): max-height for plugin menu list 2020-11-05 11:44:23 -05:00
renovate[bot]
7b8a5567c7 fix(deps): update dependency @nodebb/mubsub to v1.7.1 (#8830) 
Co-authored-by: Renovate Bot <bot@renovateapp.com>
 2020-11-05 11:40:54 -05:00
Renovate Bot
9f5ef9d0cb fix(deps): update dependency postcss to v8.1.5 2020-11-05 16:31:13 +00:00
Julian Lam
891a1ea2af fix: #8827, do not require admin:users privilege to ban users 2020-11-05 10:22:07 -05:00
Julian Lam
540a32cfdd chore: changing log to remove pre-release changelogs from changelog 
... changelog
v1.15.0 		2020-11-04 15:56:45 -05:00
Misty (Bot)
a30aa5629c chore: incrementing version number - v1.15.0 
(cherry picked from commit 71cdbbce0d1118c9631e77d1adeb5af519a2c3fa)
Signed-off-by: Misty (Bot) <deploy@nodebb.org>
 2020-11-04 20:50:38 +00:00
Misty (Bot)
155f74e45e chore: update changelog for v1.15.0 2020-11-04 20:50:38 +00:00
Julian Lam
1afd215050 feat: add back error handling for a number of api calls 2020-11-04 14:11:54 -05:00
Renovate Bot
b44c7e9658 fix(deps): update dependency nodebb-plugin-composer-default to v6.4.6 2020-11-04 13:48:24 -05:00
Renovate Bot
f06d4878c0 fix(deps): update dependency nodebb-plugin-spam-be-gone to v0.7.3 2020-11-04 18:34:00 +00:00
Barış Soner Uşaklı
4b63f9937c fix: check is banned in buildHeader 
remove unused banReason
remove generateHeader function
 2020-11-04 13:23:10 -05:00
Misty (Bot)
69f4d5ac7d chore: update changelog for v1.15.0-rc.5 2020-11-04 16:22:37 +00:00
Misty (Bot)
4bd2788ba3 chore: incrementing version number - v1.15.0-rc.5 v1.15.0-rc.5 2020-11-04 16:22:37 +00:00
Barış Soner Uşaklı
a338f52780 feat: #8823, remove hardcoded write concern 2020-11-04 11:10:23 -05:00
Barış Soner Uşaklı
518d4fa170 fix: undefined call 2020-11-04 08:57:19 -05:00
Renovate Bot
0d80190f79 fix(deps): update dependency nodebb-theme-vanilla to v11.3.0 2020-11-04 13:53:29 +00:00
Barış Soner Uşaklı
08ff4041aa fix: missing await 2020-11-03 17:13:05 -05:00
Barış Soner Uşaklı
5a2b14b751 fix: client side crash when creating groups 2020-11-03 16:54:44 -05:00
psychobunny
d40779a4ba feat(acp): autocomplete user search for welcome notifications 2020-11-03 14:10:39 -05:00
Barış Soner Uşaklı
f6623622be Merge branch 'master' of https://github.com/NodeBB/NodeBB 2020-11-03 11:17:32 -05:00
Barış Soner Uşaklı
715775a707 feat: #8817, add login clientside hooks 
same as logout
 2020-11-03 11:17:25 -05:00
Julian Lam
c0f699e655 fix: disallow registration attempts with password length > 4096 
This is a stopgap measure for v1.15.0
 2020-11-03 09:54:04 -05:00
Renovate Bot
35e725d17c chore(deps): update dependency mocha to v8.2.1 2020-11-03 14:37:17 +00:00
Julian Lam
e66c1f4017 Revert "fix(deps): update dependency textcomplete to ^0.18.0" 
This reverts commit 8fe954997c.
 2020-11-03 08:35:13 -05:00
Renovate Bot
df5d66e5fe fix(deps): update dependency textcomplete to ^0.18.0 2020-11-03 13:32:15 +00:00
Renovate Bot
2fa78e4384 chore(deps): update dependency lint-staged to v10.5.1 2020-11-03 12:52:18 +00:00
Barış Soner Uşaklı
b6d8687837 chore: add info log into tests 2020-11-02 20:34:12 -05:00
Barış Soner Uşaklı
4818ec377e fix: missing await 2020-11-02 15:13:22 -05:00
Julian Lam
1c8b8ce14a chore: update renovate config to automatically merge non-major version bumps #yolo 2020-11-02 14:45:25 -05:00
Misty (Bot)
1688294165 chore: update changelog for v1.15.0-rc.4 2020-11-02 19:42:54 +00:00
Misty (Bot)
57b4932074 chore: incrementing version number - v1.15.0-rc.4 v1.15.0-rc.4 2020-11-02 19:42:53 +00:00
Peter Jaszkowiak
eddf4a4f33 feat: use github actions for ci (#8811) 
- test using minimum supported db versions
- ESLint will make review comments on PRs
- formatted configs
 2020-11-02 13:12:29 -05:00
Peter Jaszkowiak
a3fa313298 Github actions lint demo (#8812) 
* feat: use github actions for ci

- test using minimum supported db versions
- ESLint will make review comments on PRs
- formatted configs

* mess up eslint

* fix: lint maybe

Co-authored-by: Barış Soner Uşaklı <baris@nodebb.org>
 2020-11-02 12:59:16 -05:00
Barış Soner Uşaklı
6e85920cb6 feat: allow mods/admins to see deleted posts on user profile 2020-11-02 12:03:21 -05:00
Misty (Bot)
841cbcc3e3 Latest translations and fallbacks 2020-11-01 09:05:53 +00:00
Julian Lam
87bff6cd65 fix: broken test 2020-10-30 17:17:31 -04:00