Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2026-02-02 12:50:00 +01:00
Code Issues Packages Projects Releases Wiki Activity
20,835 Commits 73 Branches 490 Tags
48e8252099b977aa9b35d448a0ed9d927ff05ab6
Commit Graph

913 Commits

Author SHA1 Message Date
Barış Soner Uşaklı
51b7eca119 fix: run every hour, dont show message if average_time is 0 2020-11-12 22:23:50 -05:00
Opliko
04f4429f72 Resolve #7514 - optional timer for registration queue (#8796) 
* feat: #7514 Optional timer for registration queue

* feat: show minutes in average time

* fix: don't show total number of minutes

* feat: implement requested changes

* fix: just store minutes instead of milliseconds

* feat: set default values
 2020-11-12 22:23:07 -05:00
Julian Lam
512f6de6de feat: allow passwords with length > 73 characters (#8818) 
* feat: allow passwords longer than 73 characters

Context: A bcrypt/blowfish limitation means that password length is capped at 72 characters. We can get around this without compromising on security
by hashing all incoming passwords with SHA512, and then sending that to bcrypt.

https://dropbox.tech/security/how-dropbox-securely-stores-your-passwords

* feat: add additional test for passwords > 73 chars

* fix: remove 'password-too-long' error message and all invocations

* test: added test to show that a super long password won't bring down NodeBB

* fix: remove debug log

* Revert "fix: remove 'password-too-long' error message and all invocations"

This reverts commit 1e312bf7ef.

* fix: added back password length checks, but at 512 chars

As processing a large string still uses a lot of memory
 2020-11-06 08:40:00 -05:00
Barış Soner Uşaklı
4818ec377e fix: missing await 2020-11-02 15:13:22 -05:00
Barış Soner Uşaklı
a02ae6f5df refactor: simpler check in user.blocks.filter 2020-10-29 22:33:28 -04:00
Julian Lam
a6a52430ce fix: remove setCategorySort and setTopicSort 2020-10-28 17:21:54 -04:00
Julian Lam
aa8faf58a0 refactor: remove /users/{uid}/settings/{setting} route 
@baris Also, I am now allowing the following properties to be saved in User.saveSettings:
- categoryTopicSort
- topicPostSort
- setCategorySort
- setTopicSort
 2020-10-28 17:21:54 -04:00
Barış Soner Uşaklı
a05905f196 performance improvements (#8795) 
* perf: nconf/winston/render

cache nconf.get calls
modify middleware.pageView to call next earlier
don't call winston.verbose on every hook see https://github.com/winstonjs/winston/issues/1669
translate header/footer separately and cache results for guests

* fix: copy paste fail

* refactor: style and fire hook only log in dev mode

* fix: cache key, header changes based on template

* perf: change replace

* fix: add missing await

* perf: category

* perf: lodash clone

* perf: remove escapeRegexChars
 2020-10-26 10:43:18 -04:00
Barış Soner Uşaklı
db63f5e3f0 fix: #8781 2020-10-21 16:30:14 -04:00
Barış Soner Uşaklı
43afe7ffab refactor: async/await src/user/approval 2020-10-14 23:38:16 -04:00
Barış Soner Uşaklı
872bacf1c4 Admin/users (#8762) 
* feat: wip admin/users

* feat: more work

* feat: more fixes

* feat: #8662, verified/unverified user groups

* feat: add filter

* feat: change user search to use filters array

* refactor: remove unused search call

* fix: tests

* fix: cant join system groups

* fix: upgrade script
 2020-10-13 22:42:50 -04:00
Julian Lam
30b3fedca4 fix: password reset to invalidate all existing reset tokens for that uid 2020-10-13 11:48:32 -04:00
Barış Soner Uşaklı
1ee9384875 fix: #8757, allow all slashes in category route 2020-10-12 14:18:59 -04:00
Barış Soner Uşaklı
dc29f4dca2 refactor: switch to using slugify module 2020-10-11 21:49:37 -04:00
cryptoethic
b3ed26ac2c feat: revoke user sessions above threshold (#8731) 
* feat: revoke user sessions above threshold

* fix: removed translations from en-US

* fix: defined default maxUserSessions in install\data\defaults.json
 2020-10-08 17:33:18 -04:00
Julian Lam
a5af2dc819 feat: added PUT/DELETE /api/v1/users/:uid/ban routes 2020-10-08 15:33:10 -04:00
Barış Soner Uşaklı
e60357d20d feat: #6594, add top/popular sections to digest email (#8709) 2020-10-01 22:07:33 -04:00
Timothy Fike
f85fe7faff don't invite an already invited email (#8688) 
* don't invite an already invited email

* add email-invited translation string
 2020-09-27 22:11:25 -04:00
psychobunny
b6f2f0e5d0 fix: #8681 change owner modal's search should check if user is banned 2020-09-25 14:47:22 -04:00
Barış Soner Uşaklı
ac43cd8b6f fix: #8665, trim email before checking validity 2020-09-21 20:50:56 -04:00
Julian Lam
29b357bc66 refactor: expose new method for appending moderation note 2020-09-14 10:16:45 -04:00
Barış Soner Uşaklı
38d3982bf1 fix: #8418 
allow updating other profile fields when username isnt being changed
 2020-09-12 21:48:56 -04:00
Barış Soner Uşaklı
4be693f2e7 feat: fullname search (#8641) 
* feat: fullname search

* fix: take last element

* fix: attempt to fix psql like query

* feat: upgrade sript, another fix attempt

* fix: psql test

* fix: psql scan

* feat: add debug for test

* feat: test collate

* feat: cleanup

* fix: upgrade script
 2020-09-11 23:20:49 -04:00
Barış Soner Uşaklı
5f10d67db5 Remove sounds (#8617) 
* feat: remove sounds

* feat: remove more sounds

* feat: disable sounds plugin

* fix: openapi
 2020-09-06 23:45:00 -04:00
Barış Soner Uşaklı
54b497258f feat: add missing name to profile image upload 2020-09-04 01:16:11 -04:00
Barış Soner Uşaklı
a263897627 fix: #8604 2020-09-03 22:03:14 -04:00
Barış Soner Uşaklı
9f9164a9be fix: #8582 2020-08-26 22:04:18 -04:00
Barış Soner Uşaklı
846b7d2430 refactor: change pwd change logic 
add one more test
 2020-08-12 22:09:22 -04:00
Julian Lam
16cee1b03b fix: improper targetUid check during password change 2020-08-12 13:23:58 -04:00
Barış Soner Uşaklı
dfabd0a3fe feat: remove administrator property from public routes 2020-08-05 14:24:00 -04:00
Barış Soner Uşaklı
f89ec20574 feat: allow passing groupName to user.search 2020-07-29 18:32:08 -04:00
Barış Soner Uşaklı
8bd63f61e0 feat: resolve flag on delete/purge/ban/delete account 2020-07-25 18:26:09 -04:00
Barış Soner Uşaklı
57135761ca fix: move check inside lock 2020-07-25 09:26:08 -04:00
Barış Soner Uşaklı
ce6b20c4b7 feat: remove topics.async.getTopicData usage 2020-07-24 12:02:16 -04:00
Barış Soner Uşaklı
72c60d19c2 fix: tests 2020-07-21 20:08:40 -04:00
Barış Soner Uşaklı
2a5f8ab27e feat: dont load all subscribers at once 
increase batch to 500
 2020-07-21 18:19:46 -04:00
Barış Soner Uşaklı
3dcf538773 feat: #8023, allow wildcard search for uid/email 2020-07-09 23:57:54 -04:00
Barış Soner Uşaklı
e95cd28f6f Zscan (#8458) 
* feat: zscan

* fix: mongodb tests

* feat: scan, ip search starts with
 2020-07-02 20:11:53 -04:00
Barış Soner Uşaklı
59a2ace6f7 fix: only add blocksCount for self and admins 2020-07-01 23:16:20 -04:00
Barış Soner Uşaklı
bd228d5ee7 feat: fix blocksCount not being returned on user profile 
add hook action:user.blocks.toggle
 2020-07-01 22:56:18 -04:00
Barış Soner Uşaklı
e53a18f219 fix: #8437, #8433 2020-06-24 23:04:24 -04:00
Barış Soner Uşaklı
8383992dcc feat: move export functions into child processes 2020-06-23 00:23:46 -04:00
Barış Soner Uşaklı
48b41debe6 fix: vulnerability in cover and admin uploads (#8419) 
* fix: vulnerability in cover and admin uploads

* fix: remove old test

* fix: update tests
 2020-06-22 12:08:35 -04:00
Barış Soner Uşaklı
e80379dc0e feat: display stack trace on winston.error 2020-06-20 23:32:12 -04:00
Barış Soner Uşaklı
79a7f89235 Merge branch 'master' of https://github.com/NodeBB/NodeBB 2020-06-18 23:24:40 -04:00
Barış Soner Uşaklı
2bcf7f72d2 fix: follower count going out of sync with real follower count 2020-06-18 23:24:03 -04:00
Barış Soner Uşaklı
bef37e27cb fix: test lock for user create (#8415) 
* fix: test lock for user create

* fix: redis hdel with undefined

* feat: add test for undefined key in deleteObjectFields
 2020-06-18 23:16:48 -04:00
Barış Soner Uşaklı
f0526bff9f fix: add mising timestamp 2020-06-18 15:41:58 -04:00
Barış Soner Uşaklı
a680a95e73 feat: add filter:user.getFields to match topic/posts 2020-06-17 11:46:42 -04:00
Barış Soner Uşaklı
18d892398f fix: add timestamp to initial username history 2020-06-13 13:55:48 -04:00