Régis Hanol
07211489f0
FIX: hide restricted profile info from TL0 users to anonymous in 'JS-off' page
2014-11-27 19:51:13 +01:00
Régis Hanol
5b90ceb71d
FEATURE: rolls up 1.2.*.* IP ranges when number of entries > 10
2014-11-27 19:29:30 +01:00
Sam
800ae5265f
Add admin and moderator state to sso provider
2014-11-27 12:24:37 +11:00
Robin Ward
257bde8e2b
FEATURE: "Suspect" users list in admin.
2014-11-26 13:58:16 -05:00
Sam
c10e3df012
FEATURE: implement SSO provider on Discourse so Auth can be farmed to it
...
FEATURE: pass return_sso_url to SSO endpoints, for easier return
2014-11-26 17:26:27 +11:00
Jason W. May
adb570fe53
use limit & offset for pagination of group members
2014-11-24 12:12:48 -08:00
Robin Ward
d3510bff04
Merge pull request #3001 from techAPJ/patch-1
...
FEATURE: add topic status namespace in RSS feed
2014-11-24 14:45:59 -05:00
Arpit Jalan
55e2126b1e
FEATURE: add topic status namespace in RSS feed
2014-11-25 00:52:26 +05:30
Régis Hanol
7b0ae702e7
FEATURE: log a new staff action when rolling up banned IP addresses
2014-11-24 19:48:54 +01:00
Régis Hanol
d3d517108d
FIX: display total number of other accounts with the same IP address in the IP lookup dialog
2014-11-24 19:34:04 +01:00
Régis Hanol
7b1c001932
FIX: limit other accounts deletion to 50 accounts otherwise it'll feel too slow
2014-11-24 18:05:40 +01:00
Régis Hanol
1023191315
FEATURE: roll up function for 123.456.789.* ranges
2014-11-24 17:25:48 +01:00
Sam
1c498eb491
FEATURE: API endpoint for inviting an admin
2014-11-24 15:42:56 +11:00
Sam
9e1e3df6c9
FEATURE: Localize SSO error messages
2014-11-24 12:16:23 +11:00
Sam
490cd6f539
Merge pull request #2989 from jmay/group-admin-incremental
...
API addition: HTTP PATCH support for /groups/xxx: incremental membership changes
2014-11-24 11:50:51 +11:00
Sam
d3b24b625b
Add more SSO logging for failure conditions
2014-11-24 10:02:22 +11:00
Arpit Jalan
7455e81b31
sort screened IPs by match_count
2014-11-22 01:41:59 +05:30
Arpit Jalan
515882d224
FEATURE: export screened IPs list in a CSV file
2014-11-22 00:59:48 +05:30
Jason W. May
6f8119ebb8
Merge branch 'master' into group-admin-incremental
2014-11-21 10:04:05 -08:00
Jason W. May
98404d19c5
check that `changes` param is present
2014-11-21 10:03:29 -08:00
Sam
d53b4ab5bc
Merge pull request #2979 from techAPJ/patch-1
...
FEATURE: log out user everywhere and refresh/redirect
2014-11-21 16:59:44 +11:00
Régis Hanol
b8d806ee07
FEATURE: delete all accounts from this IP in the IP lookup modal
2014-11-20 19:59:20 +01:00
Jason W. May
50de22801f
API addition: HTTP PATCH support for /groups/xxx: incremental membership changes
2014-11-20 09:29:56 -08:00
Sam
6b10c4dc54
add support for hidden api keys, used in hosting scenarios
2014-11-20 15:38:20 +11:00
Robin Ward
87cd5dbcb7
Merge pull request #2985 from techAPJ/patch-3
...
remove /download from csv file url
2014-11-19 14:10:34 -05:00
Arpit Jalan
aebf36c356
remove /download from csv file url
2014-11-20 00:34:38 +05:30
Arpit Jalan
c84b51d4ae
FEATURE: show exact error for test email
2014-11-19 22:58:59 +05:30
Arpit Jalan
eb9eada894
FEATURE: log out user everywhere and refresh/redirect
2014-11-19 12:34:34 +05:30
Régis Hanol
9c1341b554
FIX: limit the number of group members returned for automatic groups
2014-11-18 12:13:45 +01:00
Régis Hanol
f18d30f1d7
FIX: don't limit the number of group members returned to the front-end (UI needs some work for large groups)
2014-11-18 12:09:37 +01:00
Jeff Atwood
75b5b27f78
we don't need this /popular redirect any more
2014-11-17 16:40:23 -08:00
Régis Hanol
7bb9a839e5
fix the build (again)
2014-11-17 16:06:43 +01:00
Régis Hanol
dd9c475ea0
FIX: changing category within edit grace period as TL3 pops up an error
2014-11-17 15:57:45 +01:00
Régis Hanol
7641d88224
FEATURE: new 'maximum new user accounts per registration IP' site setting
2014-11-17 12:04:29 +01:00
Sam
c7bc692f40
PERF: stop querying banner topic on every page hit
2014-11-14 15:39:17 +11:00
Sam
4fc3834dd6
FEATURE: allow inline disposition on uploads
...
when linking an upload allow ?inline=1 to display upload inline
2014-11-13 08:50:55 +11:00
Régis Hanol
a036ac7bdc
FIX: users can see the raw email source of their own posts
2014-11-12 14:49:42 +01:00
Régis Hanol
ec76be964e
UX: better footer handling
2014-11-10 21:51:55 +01:00
riking
d7a4e39e1d
FEATURE: ?include_raw parameter for /t/id/posts.json
...
include_raw is not added for the wordpress view because it uses the
BasicPostSerializer, and is not a one-line change.
This is the only use of the TopicViewPostsSerializer class, and the
previous change covered the only use of the TopicViewSerializer class.
No other locations include the PostStreamSerializerMixin. Therefore,
this feature is most likely complete.
2014-11-07 07:28:07 -08:00
Régis Hanol
bb2d538194
FEATURE: log impersonations
2014-11-06 10:58:47 +01:00
Robin Ward
fde5e739c9
Work in progress (up till about?)
2014-11-05 12:39:25 -05:00
Robin Ward
c9eb809dad
FIX: The text to users who signed up when approval was required was
...
misleading.
2014-11-04 15:48:03 -05:00
Sam
8432acf0af
Merge pull request #2938 from riking/include_raw
...
Add ?include_raw parameter to topic views
2014-11-04 14:26:35 +11:00
Régis Hanol
fd5677808c
SPEC: make sure digest doesn't pick any topics in categories that are muted
2014-11-03 16:57:50 +01:00
Régis Hanol
b09ad87098
FIX: add 'show emails' button from moderators in user admin section
2014-11-03 12:46:08 +01:00
riking
6a946712b3
Add ?include_raw parameter to topic views
2014-11-01 14:32:18 -07:00
Sam
bd78fca121
Merge pull request #2908 from cpradio/pr-dismiss-posts-topics-on-category
...
FEATURE: Show dismiss posts/topics buttons on category filtered lists
2014-10-31 11:34:53 +11:00
Robin Ward
572842721d
FIX: Better page titles for SEO
2014-10-30 14:26:56 -04:00
Robin Ward
316f1bea04
SECURITY: Don't allow redirects with periods in case you don't control
...
other tlds on the same domain.
2014-10-30 11:31:44 -04:00
cpradio
50f7fbc361
Apply comment from @sam to consolidate logic
2014-10-30 10:19:49 -04:00
Sam
59cc2476a1
Merge pull request #2933 from techAPJ/patch-1
...
trivial update to allow api endpoint for sync_sso
2014-10-30 21:39:54 +11:00
Arpit Jalan
fb750af659
trivial update to allow api endpoint for sync_sso
2014-10-30 15:30:44 +05:30
Régis Hanol
6e053942a4
FIX: moderators should be able to search users by email
2014-10-29 22:08:41 +01:00
Régis Hanol
865194f409
FIX: cannot show email for pending/inactive users
2014-10-29 01:07:27 +01:00
Sam
7d6d8bd0a3
FEATURE: admin end point to sync sso /admin/users/sync_sso
...
Must be admin to invoke (api is fine too), uses same sso payload nonce is ignored
2014-10-28 11:25:21 +11:00
Régis Hanol
e7f251c105
LOTS of changes to properly handle post/topic revisions
...
FIX: history revision can now properly be hidden
FIX: PostRevision serializer is now entirely dynamic to properly handle
hidden revisions
FIX: default history modal to "side by side" view on mobile
FIX: properly hiden which revision has been hidden
UX: inline category/user/wiki/post_type changes with the revision
details
FEATURE: new '/posts/:post_id/revisions/latest' endpoint to retrieve
latest revision
UX: do not show the hide/show revision button on mobile (no room for
them)
UX: remove CSS transitions on the buttons in the history modal
FIX: PostRevisor now handles all the changes that might create new
revisions
FIX: PostRevision.ensure_consistency! was wrong due to off by 1
mistake...
refactored topic's callbacks for better readability
extracted 'PostRevisionGuardian'
2014-10-27 22:06:43 +01:00
Sam
1cc37e32b9
FEATURE: add max_reply_history to limit number of replies
...
that can be expanded, when clicking "in-reply-to"
2014-10-27 09:44:42 +11:00
cpradio
c6e54741bb
Apply comments from eviltrout, using this.get('category.id'), and use snake case for category_id
2014-10-24 17:01:28 -04:00
cpradio
439f393d89
Show dismiss posts/topics buttons on category filtered lists
2014-10-23 17:41:39 -04:00
Régis Hanol
de415b804c
FIX: add 'Content-Length' header for avatars
2014-10-22 15:39:51 +02:00
Sam
832655df14
attempt to get content length through
2014-10-21 16:17:13 +11:00
Sam
4e7057efb1
Clean up content type and add Expires header when serving CDN assets
2014-10-21 15:59:34 +11:00
Robin Ward
71f211f0b3
FEATURE: Allow users to select a badge with an image to appear on their
...
user card
2014-10-20 16:35:38 -04:00
Robin Ward
1cf4a0d604
Rename "User Expansion" to the much clearer "User Card"
2014-10-20 12:11:59 -04:00
Régis Hanol
10094a0bcd
FIX: resolve flags as good when deleting a spam user
2014-10-20 16:59:06 +02:00
Sam
8efee0d03d
don't use Markdown
2014-10-18 17:17:38 +11:00
Jeff Atwood
92b615b503
reorganize site settings a bit
2014-10-19 23:14:50 -07:00
Sam
742c5e29c9
FEATURE: advanced search help
2014-10-18 14:27:33 +11:00
Régis Hanol
c59e56ec63
Merge pull request #2882 from techAPJ/patch-1
...
FEATURE: show raw email for replies/topics created via email
2014-10-18 21:16:17 +02:00
Arpit Jalan
72873b8368
further optimize raw email feature
2014-10-18 00:50:02 +05:30
Robin Ward
0cbdf6f5bb
FIX: Many bugs with admin badges interface
...
* Editing a badge's title would show it as changed in the side even if
you didn't hit save
* Clicking a badge would not scroll to the top
* If there was an error saving a badge there was a missing i18n key
* URLs were using queryParams instead of paths
* User `label` tags for checkboxes for larger click targets
* Saved! text would persist when viewing another badge
* After creating a new badge it would show nothing
* Validation errors were not being properly released to the client
* Query errors were surrounded by an extra array
2014-10-17 16:14:49 -04:00
Robin Ward
f3a67a48a3
Merge pull request #2874 from cpradio/clear-notifications
...
FEATURE: Mark All as Read button for Notifications page
2014-10-16 15:57:19 -04:00
Robin Ward
4d465362b5
FEATURE: Allow a user to upload an image for their expansion background.
2014-10-16 15:05:36 -04:00
Robin Ward
d2ac5a9ac6
Rename `/category/xyz` paths to `/c/xyz` -- @SamSaffron did most of the
...
work even though I'm merging the patch!
2014-10-16 12:15:31 -04:00
cpradio
8f390c979b
FEATURE: Mark All as Read button for Notifications page
...
Added a Mark All as Read button to the top/bottom of the notifications user page
https://meta.discourse.org/t/possibility-to-selectively-or-completely-mark-notifications-as-read/20227
Remove notifications property (no longer used)
2014-10-13 06:31:27 -04:00
Robin Ward
2322586131
FIX: Saving a field as not required was actually making it required
...
until you edited it.
2014-10-14 17:21:34 -04:00
David McClure
19d5362c6b
FEATURE: ability to hide or show specific post revisions
2014-10-14 07:19:45 -07:00
Régis Hanol
5504622c1b
rename export/import in favor of backup/restore for better consistency
2014-10-10 20:04:07 +02:00
Régis Hanol
5754e8dd0f
FEATURE: auto-close topics based on last post
2014-10-10 18:21:44 +02:00
Régis Hanol
7e8c4b63f4
FIX: only show agreed abd deferred flags on user's profile
2014-10-09 16:10:16 +02:00
Robin Ward
f9a8f6d6ce
FEATURE: Support for a `required` setting on user fields.
2014-10-08 15:10:19 -04:00
Robin Ward
1f26a79899
FIX: Category latest pages were not preloading properly, causing weird
...
refreshes when clicking the home logo.
2014-10-08 12:45:18 -04:00
Sam
0e7be81e60
FIX: badge granted titles were not being revoked when badge was revoked
2014-10-08 10:26:18 +11:00
Robin Ward
2fbfc9dffa
FIX: Editing a topic's title should be rate limited too.
2014-10-07 16:46:01 -04:00
Robin Ward
1252e7324f
Added easy impersonate route while in development mode
2014-10-07 12:25:50 -04:00
Régis Hanol
c46b9c0ac3
FIX: allow admins to search users by email
2014-10-07 12:05:38 +02:00
Arpit Jalan
78fd99fc40
Feature: resend invites
2014-10-07 01:43:17 +05:30
Neil Lalonde
90771937f0
FIX: broken external auth
2014-10-03 16:15:00 -04:00
Neil Lalonde
ebf46450bc
Refactor omniauth_callbacks_controller for extensibility
2014-10-03 11:02:04 -04:00
Robin Ward
381814fd5d
Adds support for a description to user fields.
2014-10-02 15:56:52 -04:00
Sam
29bb9eaa89
Merge pull request #2835 from techAPJ/patch-2
...
add user email on account created page
2014-10-02 17:29:26 +10:00
Arpit Jalan
41af2d79b5
add user email on account created page
2014-10-02 12:43:44 +05:30
Régis Hanol
98b6b9821a
FEATURE: log topic/post deletions from staff members
2014-10-01 17:40:13 +02:00
Robin Ward
be93f224a6
Revert "add user email on account created page"
...
This reverts commit 164fc1108a
.
2014-10-01 10:30:26 -04:00
Arpit Jalan
164fc1108a
add user email on account created page
2014-10-01 13:53:50 +05:30
Robin Ward
8b5a1cd20f
Migrate `tosAccepted` to new user fields
2014-09-30 10:45:18 -04:00
Robin Ward
edb34c178a
FEATURE: Show user fields when the user is signing up
2014-09-30 10:45:18 -04:00
Sam
0fc6c751cb
FEATURE: implement lock/unlock trust level mechanics
2014-09-30 13:16:34 +10:00
riking
bff95a6a97
Rename 'leader' -> 'tl3'
2014-09-30 13:16:34 +10:00
riking
c8111ada6e
FEATURE: Allow admins to lock users from TL3 promotion/demotion
...
Also, update the display logic for the leader promotion screen to
account for the demotion grace period.
2014-09-30 13:15:13 +10:00
Régis Hanol
7e309a21cf
FEATURE: hide emails behind a button for staff members
2014-09-29 22:31:05 +02:00
Régis Hanol
652cc3efba
FEATURE: new rake task to clean up uploads & thumbnails
2014-09-29 18:31:53 +02:00
Robin Ward
0fc0533134
FEATURE: Admin interface for adding custom fields for users
2014-09-25 16:17:51 -04:00
Sam
a901d682fe
raise not found if user is not found
2014-09-25 17:45:45 +10:00
Sam
8f8ea735ee
FIX: allow retry activation of account by username or password
2014-09-25 17:42:48 +10:00
Sam
e14e8f64bc
FIX: don't stop youtube when liking a post
...
Also fixes post action create/destroy api not to include post raw.
2014-09-25 12:02:41 +10:00
Sam
d53e01619f
SECURITY: rate limit user/password login
2014-09-25 10:06:44 +10:00
Régis Hanol
bfdbb70b3b
FIX: automatic backup uploads to S3 when using a region
2014-09-24 22:52:09 +02:00
Robin Ward
bc53d48bd7
Renaming site contents to site text
2014-09-24 16:08:14 -04:00
Robin Ward
d073b908a9
Merge pull request #2818 from techAPJ/patch-4
...
Trigger browser password manager after signing up
2014-09-23 15:43:31 -04:00
Arpit Jalan
b3838c2c1c
Trigger browser password manager after sigining up
2014-09-24 01:04:36 +05:30
Sam
58eabb03e5
FEATURE: api support for arbitrary unlinked assets
...
admins can set retain periods for assets
2014-09-23 16:50:17 +10:00
Sam
9428ad779f
FIX: send content length with backups
2014-09-23 09:25:53 +10:00
Sam
7a4082cbad
FIX: allow API to create users when invite_only is true
2014-09-23 09:06:19 +10:00
Régis Hanol
0b13f6572f
FEATURE: staff option to unhide a post
2014-09-22 18:55:13 +02:00
Sam
f625500792
lower band check as well
2014-09-22 17:11:04 +10:00
Sam
8c74255cbb
FIX: 404 if we try to navigate to a non-existant page
2014-09-22 17:08:11 +10:00
Neil Lalonde
c4e285f3ec
SECURITY: rate limit change email requests
2014-09-18 10:48:56 -04:00
Robin Ward
c16b8364ab
FIX: Support ember app routing to topics with only slugs
2014-09-17 11:18:59 -04:00
riking
2c6d03f87f
SECURITY: Limit passwords to 200 characters
...
Prevents layer 8 attack.
2014-09-12 12:07:11 -04:00
Robin Ward
eb512f07a7
FIX: Spec failures for feeds related to enabling categories as default
...
page for anons when latest is deleted.
2014-09-11 15:30:41 -04:00
Régis Hanol
e56fcf0c43
FEATURE: add 'rebake post' in post wrench menu
2014-09-11 16:04:40 +02:00
Sam
0f585bcdbe
FIX: PM should never be allowed to have a category
...
FIX: TL3 should not be allowed to muck with PM titles
2014-09-11 17:39:34 +10:00
Sam
45e8337a29
FEATURE: renames forgot_password_verbose, forgot_password_strict
2014-09-11 15:53:29 +10:00
Sam
61bcde6284
FEATURE: inform users if forgot password works or not
...
FIX: flash dialog in forgot password often had wrong color
(this can be disabled by setting forgot_password_verbose to false)
2014-09-11 12:04:44 +10:00
riking
b62699707d
FIX: Unknown /posts/id.json should 404
2014-09-10 18:10:27 -07:00
Régis Hanol
18f8038015
FEATURE: add new 'convert to staff message' in post wrench menu
2014-09-10 23:08:33 +02:00
Neil Lalonde
d15b609e0a
FIX: support Permalink urls with query string
2014-09-10 13:58:52 -04:00
riking
69bc552054
FEATURE: Actually show more notifications
...
The "Show more notifications..." link in the notifications dropdown now
links to /my/notifications, which is a historical view of all
notifications you have recieved.
Notification history is loaded in blocks of 60 at a time.
Admins can see others' notification history. (This was requested for
'debugging purposes', though that's what impersonation is for, IMO.)
2014-09-09 16:29:08 -07:00
Régis Hanol
79030c874e
FIX: allow staff members to restore withdrawn posts that are flagged
2014-09-09 20:26:40 +02:00
Régis Hanol
eb34ecfc0c
FEATURE: new 'prevent anons from download files' site setting
2014-09-09 18:41:13 +02:00
Robin Ward
56eda5abf9
FIX: Don't allow profile bios longer than 3k chars
2014-09-08 15:23:21 -04:00
Robin Ward
334e21a03a
Revert "Revert "FEATURE: Can create warnings for users via PM""
...
This reverts commit 1c7559380c
.
2014-09-08 11:11:56 -04:00
Robin Ward
1c7559380c
Revert "FEATURE: Can create warnings for users via PM"
...
This reverts commit b0bfc1f93f
.
2014-09-08 10:38:59 -04:00
Robin Ward
b0bfc1f93f
FEATURE: Can create warnings for users via PM
2014-09-08 10:27:06 -04:00
Arpit Jalan
a597f1fa30
FEATURE: hide google search on 404 page for private instance
2014-09-06 15:26:46 +05:30
Neil Lalonde
ca5f361d0a
FEATURE: restrict admin access based on IP address
2014-09-05 12:06:01 -04:00
Sam
59d04c0695
Internal renaming of elder,leader,regular,basic to numbers
...
Changed internals so trust levels are referred to with
TrustLevel[1], TrustLevel[2] etc.
This gives us much better flexibility naming trust levels, these names
are meant to be controlled by various communities.
2014-09-05 15:20:52 +10:00
Robin Ward
1e281a909e
FIX: Prevent duplicate flags after undoing on the server side too.
2014-09-03 14:43:07 -04:00
Sam
c6aab831ed
Merge pull request #2741 from riking/badges_create_checks
...
FIX: Apply contract checks when first creating a badge
2014-09-03 22:19:09 +10:00
Sam
4f09d552ed
FEATURE: increase search expansion to 50 results
...
refactor search code to deal with proper objects
use proper serializers, test the controllers
2014-09-03 12:13:25 +10:00
riking
3cf493eb4f
FIX: Apply contract checks when first creating a badge
2014-09-02 19:09:51 -07:00
Robin Ward
b04a52676e
FIX: Don't show wrong flag choices after undo
2014-09-02 17:37:54 -04:00
Robin Ward
abd84cd2a1
FIX: Redirect to Top was showing "latest" content because it was in the
...
preload store.
2014-09-02 12:29:22 -04:00
riking
1833b43ae2
FEATURE: Badge query validation, preview results, and EXPLAIN
...
Upon saving a badge or requesting a badge result preview,
BadgeGranter.contract_checks! will examine the provided badge SQL for
some contractual obligations - namely, the returned columns and use of
trigger parameters.
Saving the badge is wrapped in a transaction to make this easier, by
raising ActiveRecord::Rollback on a detected violation.
On the client, a modal view is added for the badge query sample run
results, named admin-badge-preview.
The preview action is moved up to the route.
The save action, on failure, triggers a 'saveError' action (also in the
route).
The preview action gains a new parameter, 'explain', which will give the
output of an EXPLAIN query for the badge sql, which can be used by forum
admins to estimate the cost of their badge queries.
The preview link is replaced by two links, one which omits (false) and
includes (true) the EXPLAIN query.
The Badge.save() method is amended to propogate errors.
Badge::Trigger gets some utility methods for use in the
BadgeGranter.contract_checks! method.
Additionally, extra checks outside of BadgeGranter.contract_checks! are
added in the preview() method, to cover cases of null granted_at
columns.
An uninitialized variable path is removed in the backfill() method.
TODO - it would be nice to be able to get the actual names of all
columns the provided query returns, so we could give more errors
2014-08-31 11:25:44 -07:00
Robin Ward
9062719480
Merge pull request #2720 from techAPJ/patch-3
...
FIX: do not redirect topic for JSON request
2014-08-29 13:59:45 -04:00
Robin Ward
926e45d030
SECURITY: User action route was returning too much data
2014-08-29 13:46:50 -04:00
Arpit Jalan
84d0b599a4
FIX: do not redirect topic for JSON request
2014-08-29 23:09:02 +05:30
Robin Ward
85c6eb9b08
SECURITY: Only redirect to our host by path on the login action
2014-08-28 17:45:13 -04:00
Neil Lalonde
14890a6002
FEATURE: add a way to map arbitrary urls to a topic, post, or category. Useful for sites that have migrated to Discourse and want to redirect from their old site to Discourse with 301 redirects.
2014-08-28 15:58:24 -04:00
Robin Ward
8a6c4234fc
FIX: Re-enable searching for topic by id when using the split topic
...
interface.
2014-08-28 15:42:29 -04:00
Robin Ward
69cb5bc425
FIX: Centralize Top rendering, remove old code paths. Fix some bugs.
2014-08-28 14:34:31 -04:00
Robin Ward
c9262a8390
FIX: Resend activation email was busted
2014-08-28 12:07:13 -04:00
Sam
a1244043d3
FIX: when search finds a deep link in a topic it takes you to it
2014-08-28 17:16:39 +10:00
Robin Ward
f10d6ed88a
FIX: RSS feeds should use `created_at` not `bumped_at`
2014-08-27 12:42:54 -04:00
Robin Ward
c820c65172
Merge pull request #2692 from riking/sorted_badges
...
Sort the badges on the user profile page
2014-08-25 15:56:27 -04:00
riking
99c11e2184
Sort the badges on the user profile page
...
Also clean up UserBadgesController so it isn't doing two things in one
method
2014-08-25 12:40:51 -07:00
Robin Ward
ed125975a1
SECURITY: Prefix session key and validate token format.
2014-08-25 15:31:49 -04:00
Sam
bcbe36a834
Merge pull request #2675 from amalagaura/patch-1
...
Fix min_trust_level for wordpress
2014-08-22 10:25:39 +10:00
Robin Ward
c1aa2458f8
UX: Add drop down for top lists, big refactor of repeated code.
2014-08-21 16:08:47 -04:00
Régis Hanol
8a20d05ba5
FEATURE: backup without uploads
2014-08-20 18:53:58 +02:00
Ankur Sethi
43b5292303
Fix min_trust_level for wordpress
...
min_trust_level in the wordpress method was being set to 1 always, the order of the ternary operator was reversed.
2014-08-19 20:15:24 -04:00
Régis Hanol
f2b0228164
FIX: unhide post when a moderator undos the flag on which s/he took action
2014-08-19 16:14:17 +02:00
Régis Hanol
5b3a758ba9
FIX: redirect old avatars to proper user_avatar route
2014-08-18 17:45:07 +02:00
Sam
8737ffb272
Merge pull request #2658 from akshaymohite/optimization-fixes
...
Not initializing variable for looping if unused in loop
2014-08-18 14:42:52 +10:00
Sam
baaa3e0f9f
FIX : #2664 it should be validates not validate
...
Thanks @chancancode
2014-08-18 14:40:54 +10:00
Sam
b82726b029
FIX: incorrect redirection code
2014-08-18 12:35:31 +10:00
Sam
e0a82d3088
FIX: rate limit password reset email
2014-08-18 10:55:30 +10:00
Akshay
6301a43d57
Not initializing variable for looping if unused in loop
2014-08-15 03:24:55 +05:30
Robin Ward
167f393a03
Merge pull request #2655 from techAPJ/patch-3
...
FEATURE: export user list
2014-08-14 17:19:49 -04:00
Arpit Jalan
d0736a06b6
FEATURE: export user list
2014-08-15 01:46:57 +05:30
Akshay
7ef61144e7
Avoid using to_s when performing String Interpolation
2014-08-14 23:55:27 +05:30
Régis Hanol
6201b82a67
FIX: keep the post_number parameter when redirecting to proper slug
2014-08-13 22:19:41 +02:00
Robin Ward
9a1580244a
FIX: Don't show profile pages for inactive users and don't show them in
...
search results.
2014-08-13 13:30:25 -04:00
Robin Ward
c103398e9a
First stab at About page
2014-08-11 16:59:15 -04:00
Robin Ward
21185617b0
Show the reason the topic couldn't be split rather than a generic error.
2014-08-11 14:43:19 -04:00
Régis Hanol
e64d3b8a42
FIX: disagree flag should unhide hidden post
2014-08-11 10:48:00 +02:00
Sam
7d5c0ae28e
FIX: broken and uneeded code
2014-08-08 09:07:51 +10:00
Régis Hanol
3ae1ebdfc3
FIX: use PostDestroyer when deleting/recovering a topic
2014-08-07 19:12:35 +02:00
Arpit Jalan
b3926efebc
convert space to plus for invite email parameter
2014-08-06 14:02:00 +05:30
Sam
0b01310c84
FIX: system badges where created under id 100
2014-08-06 10:51:39 +10:00
Robin Ward
06c681b0de
Merge pull request #2617 from techAPJ/patch-2
...
FEATURE: dynamically load more invites
2014-08-05 12:54:06 -04:00
Arpit Jalan
4cd8abc905
FEATURE: dynamically load invites
2014-08-05 22:20:23 +05:30
Régis Hanol
ec30086dea
FEATURE: agree all the flags
2014-08-04 22:48:04 +02:00
Sam
cb0ecd9ff1
PERF: store topic views in a topic view table
...
* cut down on storage of the work Topic, 3 times per row (in 2 indexes)
* only store one view per user per topic
* only store one view per ip per topic
2014-08-04 19:07:55 +10:00
Sam
03c8f09be8
PERF: finalize porting to new incoming links structure
2014-08-04 16:43:57 +10:00
Sam
0920c4bea6
PERF: reduce storage requirements for incoming links
...
Only store incoming links for topics.
2014-08-04 11:06:48 +10:00
Sam
6dbd6f7428
FIX: redirect to preserve json
2014-07-30 15:25:49 +10:00
Sam
5a3466a6c3
FIX: keep correct ordering on admin badges
2014-07-30 08:46:59 +10:00
Robin Ward
ac4a33a656
FIX: Display proper error message when changing a trust level fails
2014-07-29 15:54:20 -04:00
Robin Ward
7cc4a157f6
Merge pull request #2603 from techAPJ/patch-1
...
FEATURE: allow staff to send multiple invites to same email
2014-07-29 14:58:39 -04:00
Arpit Jalan
f571abfaaf
FEATURE: allow staff to send multiple invites to same email
2014-07-30 00:13:11 +05:30
Sam
49d03cf14e
FEATURE: support for /t/1234
2014-07-29 16:04:28 +10:00
Régis Hanol
bddffa7f9a
FEATURE: flag dispositions normalization
...
All flags should end up in one of the three dispositions
- Agree
- Disagree
- Defer
In the administration area, the *active* flags section displays 4 buttons
- Agree (hide post + send PM)
- Disagree
- Defer
- Delete
Clicking "Delete" will open a modal that offer to
- Delete Post & Defer Flags
- Delete Post & Agree with Flags
- Delete Spammer (if available)
When the flag has a list associated, the list will now display 1
response and 1 reply and a "show more..." link if there are more in the
conversation. Replying to the conversation will NOT give a disposition.
Moderators must click the buttons that does that.
If someone clicks one buttons, this will add a default moderator message
from that moderator saying what happened.
The *old* flags section now displays the proper dispositions and is
super duper fast (no more N+9999 queries).
FIX: the old list includes deleted topics
FIX: the lists now properly display the topic states (deleted, closed,
archived, hidden, PM)
FIX: flagging a topic that you've already flagged the first post
2014-07-28 19:28:07 +02:00
Sam
1a6aa07611
FEATURE: editable badge groups
2014-07-27 18:22:01 +10:00
Régis Hanol
3d6e2713d1
BUGFIX: login was broken when login was required
2014-07-26 23:16:08 +02:00
Neil Lalonde
5a33e6f00c
Move FAQ, Terms of Service, and Privacy Policy into topics in the Staff category. First post of those topics will be rendered on their respective pages. Site settings and content are not used for these documents anymore. Translations of the default text is moved into the standard YML files.
2014-07-25 14:41:20 -04:00
Sam
d47d323f29
FIX: corrupt avatar record causing 404
2014-07-25 15:26:43 +10:00
Sam
40af9ce612
FIX: do not store incoming links on avatars or uploads
2014-07-25 15:10:06 +10:00
Sam
ec03d135fa
FEATURE: allow advanced badge options in admin screen
...
clean up serializer, allow simplistic preview
2014-07-24 18:28:23 +10:00
Sam
b9a7d945c3
Improve badge grouping UI
...
Start work on triggers
2014-07-23 11:43:17 +10:00
Sam
c8284170ad
FEATURE: badge grouping UI
...
FIX: not loading more badges on badge show page
2014-07-18 15:46:36 +10:00
Sam
1359a02128
Merge pull request #2532 from riking/sidekiq
...
Pass more context from Sidekiq jobs to Logster
2014-07-18 10:24:51 +10:00
riking
12cb682548
Start passing more context to Discourse.handle_exception
2014-07-17 14:11:56 -07:00
riking
19b757b058
FEATURE: Hide deleted posts by default for staff
2014-07-17 10:40:15 -07:00
Robin Ward
f06f8abedd
Merge pull request #2537 from ligthyear/group-member-management-on-user
...
Improved Group Member Management on User Administration
2014-07-17 11:00:05 -04:00
Sam
bfb37054e8
Badge Grouping work in progress
2014-07-17 16:11:10 +10:00
Sam
189b1c729a
FEATURE: query param for topic state
2014-07-17 09:29:09 +10:00
Sam
9468ebeb2e
CHANGE: Mini Profiler only enabled for developers in prd
2014-07-17 08:34:41 +10:00
Robin Ward
fb8dda7f42
FIX: We should use `category_id` instead of `category_name` to perform
...
operations, now that the subcategory names are not unique.
2014-07-16 15:40:35 -04:00
Régis Hanol
7dcf2a2c4f
FEATURE: show the user's flagged/deleted posts
2014-07-16 21:04:55 +02:00
Neil Lalonde
939e8505a9
Remove hub username integration
2014-07-16 12:25:24 -04:00
Neil Lalonde
01a68f8cc7
Emails are case insensitive
2014-07-16 10:22:01 -04:00
Sam
e347eea629
FEATURE: show user what badges they have
2014-07-16 17:55:08 +10:00
Robin Ward
f2dd35ab08
Improve the unsubscribe to digest experience. Give a link in case it
...
fails, provide a different message if you are logged in as a different
user, increase expiry to 2 months from 1 week.
2014-07-15 17:20:59 -04:00
Robin Ward
e20a8e6dea
FIX: Allow users to unsubscribe to digests while not logged in if
...
`login_required` is set to true.
2014-07-15 16:47:26 -04:00
Robin Ward
6d7531f690
Merge pull request #2542 from techAPJ/patch-1
...
FEATURE: topic support in disposable invites
2014-07-15 15:15:19 -04:00
Robin Ward
4f416bf6ce
Check honeypot/challenge value on activation too
2014-07-15 14:07:35 -04:00
riking
915f60b0fc
Don't redirect to login when activating account...
2014-07-15 10:50:28 -07:00
Arpit Jalan
8862a881f8
FEATURE: topic support in disposable invites
2014-07-15 23:11:06 +05:30
Sam
2d0def9940
FIX: First Quote badge bust
...
Feature: track quoted posts
2014-07-15 17:47:24 +10:00
Neil Lalonde
766196af87
FEATURE: add site setting allow_new_registrations which can be used to block all new account registrations
2014-07-14 15:42:22 -04:00
Robin Ward
cce7cf8c85
FEATURE: Require Javascript to activate an account via email link
2014-07-14 12:26:10 -04:00
Robin Ward
c12780eb2b
Merge pull request #2538 from techAPJ/patch-1
...
FEATURE: disposable invite tokens
2014-07-14 12:13:44 -04:00
Arpit Jalan
575b5e3d13
FEATURE: disposable invite tokens
2014-07-14 21:30:46 +05:30
Sam
4a2cc269ab
FIX: allow selection of no title
2014-07-14 18:07:07 +10:00
Sam
88469721b9
FEATURE: Allow admins to disable specific badges
2014-07-14 17:40:36 +10:00
Sam
6618358586
FIX: dupe protection is API only now
...
make optional later on (was introduced for wordpress plugin)
2014-07-14 15:59:58 +10:00
Benjamin Kampmann
ac3f1ba3d6
Improved Group Member Management on User Administration
...
Allows for a quick and easy group membership management on the
user-administration page. Uses the select2 UI component to
autosuggest other groups, remove existing ones and lock in automatic
groups.
2014-07-13 20:11:38 +02:00
riking
783454ebe1
Fix /p/post/user route not saving referrals
...
Make user id optional for /p/id/uid
Add /posts/id/raw route for debugging failed post processing
2014-07-11 14:44:07 -07:00
Sam
833c50c460
FEATURE: Read Faq badge
2014-07-11 17:32:29 +10:00
Neil Lalonde
e565ae2528
FEATURE: /guidelines route will always show our FAQ, ignoring the faq_url site setting
2014-07-10 12:58:41 -04:00
Sam
27f85e5451
FIX: allow for subdirectorys for cdn assets
2014-07-10 17:29:38 +10:00
Sam
6019e3f257
FIX: remove hardcoding from middleware stack so we can control it
2014-07-10 17:01:21 +10:00
Sam
5032c96486
FIX: disable x accl redirect for CDN assets
...
We need to keep headers in tact
2014-07-10 16:32:46 +10:00
Sam
2f8d139ec0
BUGFIX: incorrect ordering in category permissions
...
FEATURE: UI for categories that we allow badges on
2014-07-10 12:02:16 +10:00
Sam
9ee93aad5b
FIX: letter avatars to live in uploads directory, add last modified
2014-07-08 17:20:27 +10:00
Sam
aca0aa8e56
FIX: missing last modified on avatars
2014-07-08 17:16:29 +10:00
Sam
efd6bf1490
FIX: set last modified date on CDN assets
2014-07-08 14:48:20 +10:00
Régis Hanol
59b5ba7c0f
BUGFIX: IP lookup wasn't working when using HTTPS
...
REFACTOR: the ip locator into a ip-lookup component
2014-07-07 22:18:18 +02:00
Neil Lalonde
5bcfb6ee38
FIX: don't show 'About category' topics on the 404 page
2014-07-04 16:18:17 -04:00
Régis Hanol
609d1e05cd
FEATURE: optimize the hell out of letter avatars
2014-07-04 13:27:17 +02:00
riking
0d4163e0a2
FEATURE: Nice error handling page
2014-07-03 07:52:14 -07:00
Sam
5a28609afc
FIX: listable badges need more logic
2014-07-03 20:34:26 +10:00
Sam
6bbb083d47
FEATURE: support "unlisted" badges.
2014-07-03 17:44:36 +10:00
Sam
db34b534e6
Merge pull request #2494 from techAPJ/bulk-invite-4
...
FEATURE: support txt file to be uploaded for bulk invite
2014-07-03 17:33:16 +10:00
Sam
9a9ad9bda8
FEATURE: Badge progress
...
- Refactor model so it stores backfill query
- Implement autobiographer
- Remove sample badge
- Correct featured badges to only include a badge once
2014-07-03 17:29:44 +10:00
Robin Ward
462dcadd01
FEATURE: Subcategory list on parent subcategory page.
2014-07-02 16:47:43 -04:00
Arpit Jalan
85ba55dc26
FEATURE: support txt file to be uploaded for bulk invite
2014-07-02 19:21:15 +05:30
Sam
5a0aed2bfa
FIX: regression, forgot password broken
...
also... mocks were invented by the devil
2014-07-02 13:06:55 +10:00