Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2026-01-29 02:39:55 +01:00
Code Issues Packages Projects Releases Wiki Activity
22,317 Commits 71 Branches 490 Tags
6ed7e937ce1aacd58cdf22d2189b7dcfb597675d
Commit Graph

2255 Commits

Author SHA1 Message Date
Barış Soner Uşaklı
6ed7e937ce refactor: fix wording 2021-07-08 11:07:52 -04:00
Barış Soner Uşaklı
47c8c69264 fix: keep query string on redirects 2021-07-08 11:06:20 -04:00
gasoved
97c8569a79 fix: hide private user data in api/v3/users/[uid] 2021-06-30 17:02:38 -04:00
Anton Grigoryev
db65360c0d fix(post-queue): moderatedCids is an array of numbers (#9631) 2021-06-24 19:04:37 -04:00
Barış Soner Uşaklı
0d975bc4fb fix: dont show system tags in whitelist dropdown to regular users 2021-06-22 12:21:40 -04:00
Barış Soner Uşaklı
c92fc19b5c fix: #9619, add group chat filter to /notifications 2021-06-21 10:02:18 -04:00
Barış Soner Uşaklı
46a454f194 feat: add bodyClass to 500 page 2021-06-18 09:55:08 -04:00
Julian Lam
f9728aff2c feat: clear reset tokens on successful login 2021-06-14 11:50:36 -04:00
Barış Soner Uşaklı
8ea58432c9 feat: show ip on acp manage users 
update url on search
show matching ip when searching by ip
add ip to export csv
 2021-06-08 11:50:52 -04:00
Barış Soner Uşaklı
6695927ea9 fix: pagination on acp users search 2021-06-08 10:00:51 -04:00
psychobunny
05cc7ccb60 feat: make undoTimeout configurable, closes #9599 2021-06-07 14:44:12 -04:00
Julian Lam
816856b0c6 feat: introduce boolean res.locals flag to bypass session reroll (used by session-sharing) 
The session reroll logic is still standard practice, but in some cases, it is not necessary or causes UX issues. An issue opened in session sharing (julianlam/nodebb-plugin-session-sharing#95) brought this to attention in that parsing the cookie to log in the user caused a reroll (as expected), but caused the session open on other tabs to be mismatched. If "re-validate" was turned on, it basically meant that it was not possible to use NodeBB with multiple tabs.

Session sharing now sets `reroll` to `false` if re-validate is enabled.
 2021-06-04 11:37:06 -04:00
Julian Lam
d2960aeb09 feat: added GET user route for api v3 2021-05-26 12:35:37 -04:00
Julian Lam
48b8e3bb3f fix: error when trying to trim an object 2021-05-26 12:32:06 -04:00
Barış Soner Uşaklı
9ebfdeb7ee fix: #9580, proper 404 when ajaxifying 2021-05-25 12:44:17 -04:00
Barış Soner Uşaklı
09f5179216 fix: lint 2021-05-25 12:04:34 -04:00
Barış Soner Uşaklı
77dde41f7b feat: keep query string when redirecting category 2021-05-25 11:57:10 -04:00
Barış Soner Uşaklı
3d6bdeb3df feat: add req.query to flags.list/getCount 2021-05-19 10:01:33 -04:00
Julian Lam
1d9cfe1e96 fix: bug where interstitial errors were not properly passed to the front-end via req.flash 2021-05-17 10:50:58 -04:00
Barış Soner Uşaklı
518157d9fa feat: pass req.query to getUserDataByUserSlug 2021-05-17 10:26:32 -04:00
Barış Soner Uşaklı
0551642a35 fix: #9553, use same fields for user search results in acp 2021-05-14 13:00:56 -04:00
Barış Soner Uşaklı
ffa8016355 fix: lint 2021-05-12 10:41:38 -04:00
Barış Soner Uşaklı
fad5988ed6 fix: tests 2021-05-12 10:38:11 -04:00
Barış Soner Uşaklı
074ee859c4 fix: tests 2021-05-12 10:28:35 -04:00
Barış Soner Uşaklı
1f3e660108 feat: add template to hook 2021-05-12 10:22:51 -04:00
Barış Soner Uşaklı
a2442ee914 feat: add filter:account.getPostsFromUserSet 2021-05-12 10:20:45 -04:00
Barış Soner Uşaklı
2ea468daa3 test: clear cache between runs, require middleware later in helpers 2021-04-18 21:57:07 -04:00
gasoved
8faa6e4515 feat: filter flags by username #8489 (#9451) 
* feat: filter flags by username #8489

* feat: toggle flag filter text
 2021-04-14 16:50:30 -04:00
Julian Lam
1fee6a702a fix: #9487, session data gathered during a session is lost upon login 
e.g. returnTo, tids_viewed, etc.
 2021-04-14 16:42:27 -04:00
Julian Lam
697ed3bf37 feat: roll session identifier on login, as security best practice 
see: https://owasp.org/www-community/attacks/Session_fixation
 2021-04-13 21:32:48 -04:00
Julian Lam
e845c34b52 fix: registration interstitials not handling promise rejections properly 2021-04-13 21:32:48 -04:00
Barış Soner Uşaklı
4494728cf8 feat: allow different slugs 2021-04-12 17:12:26 -04:00
Barış Soner Uşaklı
036f935fa9 fix: #9473 (#9476) 2021-04-08 13:02:40 -04:00
Julian Lam
f65d2162f8 feat: update hook 
Hook payload updated to pass login strategy (if overridden, this value will be something other than 'local'), and explicitly pass error if the login failed.
 2021-04-07 14:21:51 -04:00
Barış Soner Uşaklı
f32ea1737a fix: #9466, don't call leaveRoom in maintenance mode 2021-04-07 14:10:15 -04:00
gasoved
077330b764 feat: scheduled topics (#9399) 
* feat: scheduled topics

* refactor: linting fixes

* fix: tests

* fix(test): race condition

* fix: make a single request
 2021-03-24 14:28:02 -04:00
Barış Soner Uşaklı
67b09cba5f fix: #9420, paginate after loading notifications 2021-03-24 12:41:37 -04:00
Julian Lam
98b72ca572 fix: allow local (and overridden) login strategies to pass Error objects back 2021-03-17 12:10:57 -04:00
Barış Soner Uşaklı
668508cc37 feat: closes #9380, add category filtering and topic tools to tag page 2021-03-13 13:34:49 -05:00
Julian Lam
f71cb0e427 feat: pass interstital errors to individual partials as well as to registerComplete 2021-03-11 11:22:32 -05:00
Julian Lam
678e8f0fde fix: regression where login redirect for admin routes didn't go to local=1 2021-03-09 20:50:01 -05:00
Julian Lam
7da061f0d7 refactor: automatically authenticate all requests setup through route helpers (#9357) 
* refactor: automatically authenticate all requests setup through route helpers

* fix: removed connect-ensure-login dependency

* fix: bug with some middlewares not defined outside route helper methods
 2021-03-08 14:03:22 -05:00
Barış Soner Uşaklı
3aa26c4df2 fix: #9339, only log email errors once per digest, notification push 
show notice in acp
 2021-03-05 19:03:16 -05:00
Julian Lam
c1b3079d93 feat: category privilege API routes 
closes #9342
 2021-03-04 12:46:31 -05:00
Julian Lam
c8b78654d9 fix: bad assignment 2021-03-04 10:58:27 -05:00
Julian Lam
fbe9215b17 fix: #9348 incorrect redirect via connect-ensure-login 2021-03-04 10:16:21 -05:00
Barış Soner Uşaklı
a598abcd8e feat: use updateProfile for picture change 
so it triggers action:user:updateProfile
 2021-03-03 17:11:13 -05:00
Julian Lam
f806befd2f fix: bug where loginSeconds setting was ignored for local login 2021-03-03 16:06:58 -05:00
Julian Lam
9bf94ad50f fix: allow interstitial callbacks to be functional (no cb required) 2021-02-26 09:58:54 -05:00
Barış Soner Uşaklı
293b7c2650 refactor: privileges, export modules directly (#9325) 
fix unused/commented out methods in admin privileges
 2021-02-24 18:10:34 -05:00