discourse

Commit Graph

Author	SHA1	Message	Date
Loïc Guitaut	4ea396e67c	DEV: Bump the limits on group request text fields Users submitting requests to join groups were not receiving errors when the character limit for the request was exceeded. This also affects the UX when admin-created group request templates are inserted into the request. This patch bumps the limits. - https://meta.discourse.org/t/group-membership-requests-suddenly-limited-to-274-characters/265127 - https://github.com/discourse/discourse/pull/19993	2023-05-24 09:57:46 +02:00
Natalie Tay	d5745d34c2	SECURITY: Limit the character count of group membership requests (#19993 ) When creating a group membership request, there is no character limit on the 'reason' field. This can be potentially be used by an attacker to create enormous amount of data in the database. Co-authored-by: Ted Johansson <ted@discourse.org>	2023-01-25 13:50:33 +02:00

Author

SHA1

Message

Date

Loïc Guitaut

4ea396e67c

DEV: Bump the limits on group request text fields

Users submitting requests to join groups were not receiving errors when
the character limit for the request was exceeded. This also affects the
UX when admin-created group request templates are inserted into the
request.

This patch bumps the limits.

- https://meta.discourse.org/t/group-membership-requests-suddenly-limited-to-274-characters/265127
- https://github.com/discourse/discourse/pull/19993

2023-05-24 09:57:46 +02:00

Natalie Tay

d5745d34c2

SECURITY: Limit the character count of group membership requests (#19993 )

When creating a group membership request, there is no character
limit on the 'reason' field. This can be potentially be used by
an attacker to create enormous amount of data in the database.

Co-authored-by: Ted Johansson <ted@discourse.org>

2023-01-25 13:50:33 +02:00

2 Commits