57a2042ef6
FIX: Quiet server side errors for requesting json for account-created
2017-05-04 12:30:13 -04:00
1706036f2b
Allow a `post_edit_time_limit` of up to 1 year
2017-05-03 16:06:55 +02:00
0722ffadf1
Remove site settings enforce_global_nicknames and discourse_org_access_key
2017-05-01 14:53:16 -04:00
a26483bfd6
missed a file again
2017-04-27 16:39:27 -07:00
52007222fc
more realistic maximum password values
2017-04-27 16:38:50 -07:00
0ec15af970
restore the 'incoming_email_prefer_html' site setting
2017-04-27 14:31:11 +02:00
bf9c4a7828
FEATURE: secure_email site setting to prevent data going out in email
2017-04-26 13:05:56 -04:00
b76674f640
FEATURE: convert incoming emails in HTML to markdown
...
- remove incoming_email_prefer_html site setting
- remove HtmlCleaner class
2017-04-26 16:49:06 +02:00
6bafb74e67
raise max value for max_image_size_kb to 102400
2017-04-25 15:22:35 +05:30
4e0b18544e
FIX: sane max value for max_image_size_kb & max_attachment_size_kb setting
2017-04-25 15:16:33 +05:30
9eff4f0807
FIX: all basic integer settings should have max value validation
2017-04-21 07:09:41 +05:30
c9c7ec799f
FIX: add minimum value for invites_per_page setting
2017-04-14 17:58:18 +05:30
a3e8c3cd7b
FEATURE: Native theme support
...
This feature introduces the concept of themes. Themes are an evolution
of site customizations.
Themes introduce two very big conceptual changes:
- A theme may include other "child themes", children can include grand
children and so on.
- A theme may specify a color scheme
The change does away with the idea of "enabled" color schemes.
It also adds a bunch of big niceties like
- You can source a theme from a git repo
- History for themes is much improved
- You can only have a single enabled theme. Themes can be selected by
users, if you opt for it.
On a technical level this change comes with a whole bunch of goodies
- All CSS is now compiled using a custom pipeline that uses libsass
see /lib/stylesheet
- There is a single pipeline for css compilation (in the past we used
one for customizations and another one for the rest of the app
- The stylesheet pipeline is now divorced of sprockets, there is no
reliance on sprockets for CSS bundling
- CSS is generated with source maps everywhere (including themes) this
makes debugging much easier
- Our "live reloader" is smarter and avoid a flash of unstyled content
we run a file watcher in "puma" in dev so you no longer need to run
rake autospec to watch for CSS changes
2017-04-12 10:53:49 -04:00
2d9b31b147
allow 'max_image_megapixels' up to 150MB
2017-04-11 07:44:10 +02:00
ac051d70ef
FIX: use enum values for trust level settings
2017-04-03 14:23:48 +05:30
ed577fbff8
FEATURE: Pause a topic instead of permanently closing when flag threshold is reached.
2017-03-31 14:35:05 +08:00
8bf12502bd
Merge pull request #4780 from techAPJ/send-statistics
...
FEATURE: Send anonymized usage statistics to Discourse if "Discourse Hub" can't reach the site
2017-03-28 10:02:05 +05:30
f3cd5f61c5
FEATURE: Send anonymized usage statistics to Discourse if Discourse Hub can't reach the site
2017-03-28 09:07:23 +05:30
e3e3a04cd2
enable_noscript_support is not used anymore
2017-03-27 11:09:50 +02:00
f7e7ca3937
FEATURE: anonymized site statistics
2017-03-10 18:50:26 +05:30
b2cfad5f47
Minimum password length should be 8
2017-03-05 14:38:37 +05:30
262016604d
FEATURE: each category can control how many topics to show on categories page
2017-03-01 15:12:57 -05:00
877957ae88
Merge pull request #4715 from techAPJ/login-per-ip
...
FEATURE: new site setting for max logins per ip per hour/minute
2017-02-27 18:24:53 +05:30
cba51e1c38
FEATURE: new site setting for max logins per ip per hour/minute
2017-02-27 16:58:03 +05:30
ea1007e954
FEATURE: add support for same site cookies
...
Defaults to Lax, can be disabled or set to Strict.
Strict will only work if you require login and use SSO. Otherwise when clicking on links to your site you will appear logged out till you refresh the page.
2017-02-23 12:01:28 -05:00
a702330ccd
FEATURE: make show_subcategory_list a per-category setting
2017-02-22 11:42:36 -05:00
9baf89a901
Remove database vacuum task from Discourse.
2017-02-20 09:02:38 +08:00
9b263a0559
increase req min unique pw chars from 5 to 6
2017-02-16 17:06:19 -08:00
0ab96a7691
FEATURE: add hidden setting for verbose auth token logging
...
This is only needed to debug auth token issues, will result in lots
of logging
2017-02-13 14:01:09 -05:00
1bcb835446
FEATURE: passwords must have a minimum number of unique characters, configurable with a new setting
2017-02-09 15:00:22 -05:00
f07b4b310a
should not have renamed this setting in 460665895c
2017-02-08 18:11:34 +01:00
fcfaa71e85
copyedit on "get a room"
2017-02-04 12:04:15 -08:00
f1e7bca3c9
FEATURE: Warn a user when they're replying to the same user too much
2017-02-03 17:00:54 -05:00
1d2dceda32
FIX: add max value validation for settings containing days
2017-01-27 17:54:41 +05:30
74a46dce68
FIX: set max value for purge_unactivated_users_grace_period_days setting
2017-01-27 14:22:13 +05:30
887e9af84f
FEATURE: new 'max_image_megapixels' site setting
2017-01-11 23:37:12 +01:00
0303047446
SECURITY: disallow csv as default upload file type
2017-01-10 13:24:10 -08:00
d7c8c2d5e3
FEATURE: Opt-in native Discourse app install banner on Android/iOS
2017-01-03 15:50:45 -02:00
aad01a9f27
strengthen TL3 flag-based block of new users
2016-12-31 13:37:31 -08:00
d72cbcb2a4
FEATURE: new setting to validate user website
2016-12-26 21:29:27 +05:30
8551d821a0
FEATURE: Add site setting to disable group directory.
2016-12-22 14:14:22 +08:00
1df8c7a4b6
Revert "Don't vacuum for a long time until we fix it"
...
This reverts commit 88712bc548
2016-12-20 09:10:08 +08:00
e03d5e2140
Reapply Ember 2.10 for good this time!
...
This reverts commit ddd299f4aa
2016-12-19 11:19:10 -05:00
eb2db23b40
FEATURE: remove email_token_grace_period_hours
...
The site setting email_token_grace_period_hours just causes confusion and
should not be used anyway.
Out of the box, tokens stop working once confirmed, no need to add complexity here
2016-12-19 17:15:20 +11:00
ddd299f4aa
Revert "Revert "Revert Ember 2.10+ for a short while""
...
This reverts commit 76bbc481cb
2016-12-16 10:29:30 -05:00
76bbc481cb
Revert "Revert Ember 2.10+ for a short while"
...
This reverts commit 21682fd60b
2016-12-16 09:52:29 -05:00
61eb134181
FEATURE: setting to allow arbitrary redirects from sso origin
...
if sso_allows_all_return_paths is set to true you can redirect off-site from sso success
2016-12-16 13:37:44 +11:00
21682fd60b
Revert Ember 2.10+ for a short while
2016-12-15 16:43:38 -05:00
f01f95d62d
FEATURE: new settings to customize some colors in emails
2016-12-15 14:43:53 -05:00
24d2973108
enable featured links by default
2016-12-09 16:08:17 -05:00
5da52780e4
Default off for show_topic_featured_link_in_digest
2016-12-09 13:49:47 -05:00
a62b028e16
Remove the open_topic_featured_link_in_external_window setting. Use the user preference.
2016-12-09 13:48:29 -05:00
a4c4f13901
Remove the topic_featured_link_onebox setting. We will always try to onebox a link and add it to the body if topic_featured_link_enabled is enabled.
2016-12-09 13:28:12 -05:00
52763f5115
FEATURE: Allow posting a link with topics
2016-12-05 17:20:54 +01:00
ce974da9e5
FIX: simplify CSV file upload
2016-12-05 14:09:08 +05:30
96183dbf6b
remove unused site setting, not really needed any more
2016-12-05 13:57:35 +11:00
576a424130
FEATURE: number of new topics at the end of summary email can be controlled by a new setting, digest_other_topics
2016-12-01 14:20:24 -05:00
7e5121cbd3
Add 'x-vcard' content-type to default email attachment blacklist
2016-11-30 11:45:02 +01:00
45f368126f
FEATURE: New summary/digest email design
2016-11-18 14:03:42 -05:00
a69f45d0da
FEATURE: new 'always_show_trimmed_content' site setting
2016-11-16 22:06:07 +01:00
17f2be9f88
FEATURE: new 'enable_forwarded_email' site setting
2016-11-16 19:42:11 +01:00
0dfac2dd24
Merge pull request #4545 from hiveeyes/pop3_polling_openssl_verify
...
Add “pop3_polling_openssl_verify” setting to turn off TLS server certificate verification
2016-11-15 19:33:44 +01:00
43fd3ebd4a
Add “pop3_polling_openssl_verify” setting to turn off TLS server certificate verification like “smtp_openssl_verify_mode”. Defaults to “true”, so it does not change current behavior.
2016-11-11 21:59:15 +01:00
9e69798285
FEATURE: watch first post default site setting
2016-11-10 00:09:52 +05:30
86522a52b7
FEATURE: add censored_pattern setting to censor posts using regex
2016-11-08 16:39:26 -05:00
3841cd9a7f
FEATURE: onebox everything by default
...
FEATURE: new 'max_oneboxes_per_post' site setting
FEATURE: change onebox whitelist to a blacklist
PERF: debounce the loading of oneboxes
PERF: improve perf of mention links in preview
FIX: sort loading of custom oneboxer
2016-10-24 12:46:22 +02:00
761cc688b4
FEATURE: add a setting to allow url schemes other than http(s)
2016-10-21 12:21:31 -04:00
f4f5524190
FEATURE: user API now contains scopes so permission is granular
...
previously we supported blanket read and write for user API, this
change amends it so we can define more limited scopes. A scope only
covers a few routes. You can not grant access to part of the site and
leave a large amount of the information hidden to API consumer.
2016-10-14 16:05:42 +11:00
6031e692f0
Merge pull request #4366 from xfalcox/print
...
Print Support
2016-10-11 11:47:20 +11:00
0f0b657182
Merge pull request #4447 from pmusaraj/approve_new_topics_setting
...
FEATURE: add "Approve new topics unless user level" setting
2016-10-11 10:14:28 +11:00
ea1f0683c8
Merge pull request #4477 from cpradio/watching-state-on-reply
...
FEATURE: Add notification level user preference when replying to a topic
2016-10-11 10:05:37 +11:00
6f1c31d777
Add notification level user preference when replying to a topic
2016-09-30 14:58:07 -04:00
4d8d5613e4
FEATURE: add min_trust_level_to_edit_post
...
add minimum trust level to edit post (default 0)
2016-10-01 02:12:27 +10:00
0229df4c73
Second review fixes
2016-09-26 20:46:55 -03:00
2a5a0bebb3
Adjusts from review
2016-09-26 20:46:55 -03:00
acc70cc3de
SiteSetting, admin passtrough, CSS, hide on mobile
2016-09-26 20:46:55 -03:00
003e13316f
Enable Wizard by default
2016-09-22 09:52:19 -04:00
29cf47cfb2
Track steps the user has completed, nag them to finish it.
2016-09-22 09:52:19 -04:00
35b767f6af
Company Name Step which updates the TOS
2016-09-22 09:52:19 -04:00
ce841027e5
mobile can be a bit bursty, allow a few more reqs per minute
2016-09-20 10:47:40 +10:00
5dbb3035d4
add "Approve new topics unless user level" setting
2016-09-19 14:07:15 -04:00
332cc2bb95
FEATURE: new twitter_summary_large_image_url setting
2016-09-19 18:43:33 +05:30
8dc4329094
FEATURE: optionally get extra profile info from facebook
...
This feature requires the application be approved by facebook, so it is
default off
2016-09-19 16:14:11 +10:00
2f8c14fef1
FEATURE: allow write user api keys by default
...
app needs to write data regarding notifications and set read status etc
default allow.
2016-09-16 12:27:53 +10:00
4fe52c8cbe
FEATURE: backend support for pushing notifications to clients
2016-08-26 12:47:10 +10:00
2690ef7050
prefix setting with 'desktop_' since it's only used for desktop
2016-08-22 23:43:42 +02:00
4d6028ea2d
UX: new 'category_page_style' site setting
2016-08-22 23:01:43 +02:00
2ce9d3d733
FIX: unhide `embed_truncate` since you can use it via wp plugin
2016-08-22 15:51:57 -04:00
c297af8ba1
FIX: Force refresh when you change a forum's privacy settings
2016-08-22 14:07:30 -04:00
884bdf7240
FEATURE: Ability to scrub titles when importing embeddable content
2016-08-22 12:43:02 -04:00
61b49c2d03
move default_opengraph_image_url to required settings
2016-08-22 07:43:43 +05:30
b02c9bef79
FIX: embed_truncate should default to true
2016-08-19 17:16:22 +05:30
206d056798
also support schema cause it is simpler to redirect
2016-08-18 13:52:30 +10:00
6d1d7b7c8f
UX: new /categories layout
2016-08-17 23:23:16 +02:00
a2220feaea
FEATURE: new site setting rebake_old_posts_count
2016-08-15 16:34:13 +05:30
0433163866
FEATURE: Support subfolders in `SiteSetting.s3_backup_bucket`.
2016-08-15 16:14:51 +08:00
fc095acaaa
Feature: User API key support (server side implementation)
...
- Supports throttled read and write
- No support for push yet, but data is captured about intent
2016-08-15 17:59:36 +10:00
aa5de3c40a
FEATURE: Support subfolders in S3 bucket name.
...
This commit also fixes a bug where s3 uploads are not
moved to a tombstone folder when removed.
2016-08-15 13:07:41 +08:00
9b840cac96
UX: Add "Search" category to site settings
2016-08-11 13:48:49 -04:00
fc311dbe3b
FEATURE: An option to search more recent posts for very large sites.
...
On very large forums searching posts can be slow, so this commit
introduces the ability to try and search only the most recent posts
first, and then going for a larger breadth search if there aren't
enough results.
Enable `search_prefer_recent_posts` and you can customize how many
recent posts to filter with `search_recent_posts_size`
2016-08-10 15:43:42 -04:00
e92f5e4fbf
FEATURE: new email attachment blacklists site settings
2016-08-03 17:55:54 +02:00
37162e476b
FIX: remove gtm_ua_domain_name setting because it's preferable to configure it in Google Tag Manager settings
2016-08-02 14:54:35 -04:00
5b270b6b06
change 'clean_orphan_uploads_grace_period_hours' default value to 2 days
2016-08-01 18:36:39 +02:00
9018de39ed
FEATURE: allow shipping bio markdown via SSO
...
- Also adds site setting for sso_overrides_bio to disable bio editing by end users
2016-08-01 15:29:28 +10:00
c6dbaca0dc
SECURITY: disable user entered badge SQL by default
...
- Hidden site settings now must be change via rails console
2016-07-28 09:03:00 +10:00
6dac9075dc
new 'convert_pasted_images_quality' site setting
2016-07-27 19:59:44 +02:00
749b981759
FEATURE: new 'convert_pasted_images_to_hq_jpg' site setting
2016-07-25 23:01:28 +02:00
b0f7e4ba00
FEATURE: deactive users after too many bounces
2016-07-25 18:57:06 +02:00
7648916314
new 'reset_bounce_score_after_days' site setting
2016-07-25 17:29:54 +02:00
d2e22ab215
extract bounce scores into site settings
2016-07-25 17:27:28 +02:00
df535c6346
FEATURE: refresh session cookie at most once an hour
...
This feature ensures session cookie lifespan is extended
when user is online.
Also decreases session timeout from 90 to 60 days.
Ensures all users (including logged on ones) get expiring sessions.
2016-07-25 12:07:31 +10:00
a9207dafa7
FEATURE: configure session time via site setting for all the users ( #4343 )
2016-07-23 02:57:30 +05:30
1adfa0a4b5
FEATURE: Add SiteSetting to disable readonly mode during backup.
2016-07-19 17:44:04 +08:00
1ea1cefb35
Extract Nginx log analyzer into a plugin that ships with Discourse.
2016-07-19 15:44:00 +08:00
fa5942f56c
make email tokens (forgot,activate) live for 48 hours
2016-07-18 02:00:18 -07:00
46b34e3c62
FEATURE: remove user option for edit history public
...
Users can no longer opt-in for "public" edit history
if site owner disables it.
This feature adds cost and complexity to post rendering since
user options need to be premeptively loaded for every user in the
stream. It is also confusing to explain to communities with private edit
history.
2016-07-16 21:30:00 +10:00
ba637e40b6
FEATURE: Google Tag Manager Universal Analytics support
2016-07-14 16:35:20 -04:00
dbc25a9d64
FEATURE: flags for suppressing pinned expansion
...
To suppress pinned excerpt expansion
on mobile set "show_pinned_excerpt_mobile" to false
To suppress pinned excerpt expansion
on desktop set "show_pinned_excerpt_desktop" to false
2016-07-12 13:53:59 +10:00
2facb6190f
FEATURE: new site setting download_remote_images_max_days_old
2016-07-06 19:33:51 +05:30
2f3ee3b658
FEATURE: new site setting suggested_topics_max_days_old
2016-07-03 15:07:56 +05:30
136b1b504d
Allow `force_https` to be shadowed by a global setting.
2016-06-29 15:24:06 +08:00
918b015bdb
Move comment to the right place.
2016-06-29 15:23:29 +08:00
8db3ab5f2a
Merge pull request #4292 from tgxworld/rename_use_https_to_force_https
...
Rename `SiteSetting#use_https` to `force_https`.
2016-06-29 15:17:57 +08:00
20359788dc
Rename `SiteSetting#use_https` to `force_https`.
2016-06-29 15:02:43 +08:00
f88cf4e2f0
Merge pull request #4226 from xfalcox/non-persistent-session
...
FEATURE: add setting permanent_session_cookie to configure session st…
2016-06-29 16:47:31 +10:00
d18e9a5293
validator was on the wrong site setting
2016-06-27 22:48:27 +02:00
83309752ae
FEATURE: new site setting 'code formatting style'
2016-06-27 01:00:11 +05:30
d62f2b4d67
UX: rename setting num_flags_to_block_new_user to num_spam_flags_to_block_new_user
2016-06-15 13:19:06 -04:00
c860bd0781
remove Google+ as default from share link
...
sorry Google! It was a nice try!
2016-06-14 12:27:21 -07:00
dffe50a2e6
new alternative reply by email addresses
2016-06-10 16:14:42 +02:00
dd3ddce448
add copy and settings for TL3 blocks
2016-06-07 23:42:30 -07:00
4bf3fa5356
FEATURE: allow admins to prioritize full name vs username in the UI
...
Use the site setting prioritize_username_in_ux to switch between prioritizing
the full name vs username
2016-06-08 14:29:24 +10:00
ee257a2bb0
FIX: need to use mailgun's secrect API key instead of the public key
2016-06-07 01:30:34 +02:00
116efffdaa
FEATURE: webhooks support for mailgun
2016-05-30 17:11:17 +02:00
8c3a0b44ba
FIX: restore "every email" default for old accounts in mailing list mode
...
- Change default for mailing list mode frequency to daily
- Remove bootbox warning for mailing list mode (cause default is daily)
2016-05-27 12:07:10 +10:00
23799e3422
FIX: validate tl3_time_period max value
2016-05-26 16:01:30 +05:30
a92fd9d701
Add Site Setting to use HTML from incoming email when available. ( #4236 )
2016-05-26 10:13:01 +02:00
a4cd068481
FEATURE: add caps to trust level 3 requirements for posts read and topics viewed, configurable in settings
2016-05-25 14:55:49 -04:00
32d253d484
remove 'crop_tall_images' site setting but keep the behavior
2016-05-23 16:42:19 +02:00
667dd54a23
FEATURE: new 'crop_tall_images' site setting
2016-05-23 16:18:30 +02:00
feffe23cc5
FEATURE: More granular mailing list mode ( #4068 )
...
* Rearrange frontend to account for mailing list mode
* Allow update of user preference for mailing list frequency
* Add mailing list frequency estimate
* Simplify frequency estimate; disable activity summary for mailing list mode
* Remove combined updates
* Add specs for enqueue mailing list mode job
* Write mailing list method for mailer
* Fix linting error
* Account for stale topics
* Add translations for default mailing list setting
* One query for mailing list topics
* Fix failing spec
* WIP
* Flesh out html template
* First pass at text-based mailing list summary
* Add user avatar
* Properly format posts for mailing list
* Move make_all_links_absolute into Email::Styles
* Apply first_seen_at to user
* Send mailing list email summary hourly based on first_seen_at
* Branch and test cleanup
* Use existing mailing list mode estimate
* Fix failing specs
2016-05-21 15:17:54 +02:00
29ca2f11ba
FIX: add minimum value for min_private_message_title_length
2016-05-19 16:20:28 +05:30
80082f0e2b
UX: hide flag behind ellipsis by default
2016-05-18 16:50:43 -07:00
c75d58ab21
FEATURE: new 'ignore_by_title' site setting
2016-05-18 23:07:01 +02:00
09ef5f613e
FEATURE: add setting permanent_session_cookie to configure session stickiness
...
Now admins can turn make the login cookie die after the browser is closed, so the user needs to log in everytime.
2016-05-17 01:12:09 -03:00
5f76287b18
FEATURE: cap number of staged users (defaults to 10) created per incoming email
2016-05-16 21:45:34 +02:00
545a2355a2
FIX: S3 buckets' regular expression wasn't strict enough
2016-05-13 15:09:37 +02:00
1e57bbf5c8
Lots bounce emails related fixes
...
- Show bounce score on user admin page
- Added reset bounce score button on user admin page
- Only whitelisted email types are sent to emails with high bounce score
- FIX: properly detect bounces even when there is no TO: header in the email
- Don't desactivate a user when reaching the bounce threshold
2016-05-06 19:34:33 +02:00
ede3a709a7
FIX: disable flag_sockpuppets by default, since it causes too many false positives in spam detection
2016-05-05 17:02:36 -04:00
8e611ec7a1
FEATURE: handle bounced emails
2016-05-02 23:15:32 +02:00
Robin Ward
Régis Hanol
Neil Lalonde
Jeff Atwood
Arpit Jalan
Sam
Guo Xiang Tan
Erick Guan
Rafael dos Santos Silva
Andreas Motl
cpradio
pmusaraj
David McClure
James Kiesel