Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2026-01-29 02:39:55 +01:00
Code Issues Packages Projects Releases Wiki Activity
22,398 Commits 71 Branches 490 Tags
b3c916414bbb8e679dea00a50d183fc8f88fd8e5
Commit Graph

2275 Commits

Author SHA1 Message Date
Julian Lam
b3c916414b feat: allow registration interstitial abort to also follow returnTo 2021-07-30 13:29:13 -04:00
Julian Lam
f53fc1ad0b feat: return generic 404 on invalid confirm code 2021-07-30 13:29:13 -04:00
gasoved
a917210c5b feat: invites no longer require email 2021-07-30 13:29:13 -04:00
Julian Lam
81611ae1c4 fix(emails): broken test for api/user/email/:email 
+ fixed broken tests due to unexpected behaviour for email confirmation
 2021-07-30 13:29:13 -04:00
Julian Lam
c4e3362bd3 feat(emails): restore ability for admins to edit a user's email address [breaking] 
The edited user's email will be automatically confirmed
 2021-07-30 13:29:13 -04:00
Julian Lam
afd2d8dab1 feat(emails): pass req in to filter:registration.interstitial 2021-07-30 13:29:13 -04:00
Barış Soner Uşaklı
7d115c8ef2 fix(emails): dont allow retrieving user data if showemail is false @julianlam 2021-07-30 13:29:13 -04:00
Julian Lam
69c96dd23c refactor(emails): more work in update email interstitial, interstitial skipping, email change on confirmation, deprecation of requireEmailConfirmation 2021-07-30 13:29:13 -04:00
Julian Lam
f365bc4600 refactor(emails): interstitial for adding/updating email 2021-07-30 13:29:13 -04:00
Julian Lam
74aaa0a926 feat: show different registration intersitial lead text on new account vs. existing 2021-07-30 13:29:13 -04:00
Julian Lam
7c1d1c777b refactor(emails): remove email validation on client and server side 2021-07-30 13:29:13 -04:00
Julian Lam
340ccb2498 style: lint fix 2021-07-21 17:08:51 -04:00
Julian Lam
d1959a258b fix: #9670 return 4xx errors instead of 5xx on flag routes, when unauthenticated or not privileged [breaking] 2021-07-21 13:27:41 -04:00
Julian Lam
cc6cbfcdc4 Flags API (#9666) 
* feat: new routes for flags API

+ flag get
+ flag creation, migration from socket method
+ flag update, migration from socket method
* fixed bug where you could not unassign someone from a flag

* feat: tests for new flags API

added missing files for schema update

* fix: flag tests to use Write API instead of sockets

* feat: flag notes API + tests

* chore: remove debug line

* test: fix breaking test on mongo
 2021-07-16 13:44:42 -04:00
Barış Soner Uşaklı
4a56388ec3 feat: store topic tags in topic hash (#9656) 
* feat: store topic tags in topic hash

breaking: remove color info from tags (use css)

* fix: remove unused tag modal

* fix: tag search
 2021-07-12 19:25:04 -04:00
Julian Lam
415416d2a7 fix: translate language keys if passed in to formatApiResponse 2021-07-09 12:24:32 -04:00
Julian Lam
7036c3751e feat: internationalize API error messages 2021-07-09 12:24:32 -04:00
Julian Lam
a54a3ee1ca fix: return proper API-style response if exception caught by error handler on v3 routes [breaking] 2021-07-09 12:24:32 -04:00
Barış Soner Uşaklı
ff78969c2c fix: lint 2021-07-08 11:25:54 -04:00
Barış Soner Uşaklı
55d7e55867 fix: tests 2021-07-08 11:22:36 -04:00
Barış Soner Uşaklı
6ed7e937ce refactor: fix wording 2021-07-08 11:07:52 -04:00
Barış Soner Uşaklı
47c8c69264 fix: keep query string on redirects 2021-07-08 11:06:20 -04:00
gasoved
97c8569a79 fix: hide private user data in api/v3/users/[uid] 2021-06-30 17:02:38 -04:00
Anton Grigoryev
db65360c0d fix(post-queue): moderatedCids is an array of numbers (#9631) 2021-06-24 19:04:37 -04:00
Barış Soner Uşaklı
0d975bc4fb fix: dont show system tags in whitelist dropdown to regular users 2021-06-22 12:21:40 -04:00
Barış Soner Uşaklı
c92fc19b5c fix: #9619, add group chat filter to /notifications 2021-06-21 10:02:18 -04:00
Barış Soner Uşaklı
46a454f194 feat: add bodyClass to 500 page 2021-06-18 09:55:08 -04:00
Julian Lam
f9728aff2c feat: clear reset tokens on successful login 2021-06-14 11:50:36 -04:00
Barış Soner Uşaklı
8ea58432c9 feat: show ip on acp manage users 
update url on search
show matching ip when searching by ip
add ip to export csv
 2021-06-08 11:50:52 -04:00
Barış Soner Uşaklı
6695927ea9 fix: pagination on acp users search 2021-06-08 10:00:51 -04:00
psychobunny
05cc7ccb60 feat: make undoTimeout configurable, closes #9599 2021-06-07 14:44:12 -04:00
Julian Lam
816856b0c6 feat: introduce boolean res.locals flag to bypass session reroll (used by session-sharing) 
The session reroll logic is still standard practice, but in some cases, it is not necessary or causes UX issues. An issue opened in session sharing (julianlam/nodebb-plugin-session-sharing#95) brought this to attention in that parsing the cookie to log in the user caused a reroll (as expected), but caused the session open on other tabs to be mismatched. If "re-validate" was turned on, it basically meant that it was not possible to use NodeBB with multiple tabs.

Session sharing now sets `reroll` to `false` if re-validate is enabled.
 2021-06-04 11:37:06 -04:00
Julian Lam
d2960aeb09 feat: added GET user route for api v3 2021-05-26 12:35:37 -04:00
Julian Lam
48b8e3bb3f fix: error when trying to trim an object 2021-05-26 12:32:06 -04:00
Barış Soner Uşaklı
9ebfdeb7ee fix: #9580, proper 404 when ajaxifying 2021-05-25 12:44:17 -04:00
Barış Soner Uşaklı
09f5179216 fix: lint 2021-05-25 12:04:34 -04:00
Barış Soner Uşaklı
77dde41f7b feat: keep query string when redirecting category 2021-05-25 11:57:10 -04:00
Barış Soner Uşaklı
3d6bdeb3df feat: add req.query to flags.list/getCount 2021-05-19 10:01:33 -04:00
Julian Lam
1d9cfe1e96 fix: bug where interstitial errors were not properly passed to the front-end via req.flash 2021-05-17 10:50:58 -04:00
Barış Soner Uşaklı
518157d9fa feat: pass req.query to getUserDataByUserSlug 2021-05-17 10:26:32 -04:00
Barış Soner Uşaklı
0551642a35 fix: #9553, use same fields for user search results in acp 2021-05-14 13:00:56 -04:00
Barış Soner Uşaklı
ffa8016355 fix: lint 2021-05-12 10:41:38 -04:00
Barış Soner Uşaklı
fad5988ed6 fix: tests 2021-05-12 10:38:11 -04:00
Barış Soner Uşaklı
074ee859c4 fix: tests 2021-05-12 10:28:35 -04:00
Barış Soner Uşaklı
1f3e660108 feat: add template to hook 2021-05-12 10:22:51 -04:00
Barış Soner Uşaklı
a2442ee914 feat: add filter:account.getPostsFromUserSet 2021-05-12 10:20:45 -04:00
Barış Soner Uşaklı
2ea468daa3 test: clear cache between runs, require middleware later in helpers 2021-04-18 21:57:07 -04:00
gasoved
8faa6e4515 feat: filter flags by username #8489 (#9451) 
* feat: filter flags by username #8489

* feat: toggle flag filter text
 2021-04-14 16:50:30 -04:00
Julian Lam
1fee6a702a fix: #9487, session data gathered during a session is lost upon login 
e.g. returnTo, tids_viewed, etc.
 2021-04-14 16:42:27 -04:00
Julian Lam
697ed3bf37 feat: roll session identifier on login, as security best practice 
see: https://owasp.org/www-community/attacks/Session_fixation
 2021-04-13 21:32:48 -04:00