b484fe7626
SECURITY: jquery CVE-2019-11358
2019-04-24 13:28:38 +02:00
be88ac8b7e
Additional old `Upload#url` format for `Upload.migrate_to_new_scheme`.
2019-04-24 18:19:25 +08:00
9ec6ef85b6
Don't validate post when saving in `Upload.migrate_to_new_scheme`.
2019-04-24 17:17:31 +08:00
3c9495b989
DEV: Put a mutex around `Upload.migrate_to_new_scheme`.
...
This ensures that only one migration is running at any given point in
time across the instances.
2019-04-24 17:07:10 +08:00
55f406bb79
Follow up to 845b68f9ab.
2019-04-24 16:57:45 +08:00
104a9e79f9
UX: User card loading ( #7404 )
2019-04-24 11:55:09 +03:00
5b934cb33d
FIX: Error when trying to move the same file to tombstone.
...
If an optimized image is destroyed when a previous similar optimized
image is already placed in the tombstone, `FileUtils.move` will blow up.
2019-04-24 16:47:36 +08:00
01a3311ffb
SECURITY: Update nokogiri
2019-04-24 10:42:24 +02:00
7334362b77
FEATURE: generic theme component bbcode wrapper ( #7400 )
...
Usage:
```
[wrap=name foo=bar]
hello world
[/wrap]
```
2019-04-24 10:37:34 +02:00
e8f51815e5
Bump onebox version.
...
- Update github_blob engine to support displaying stl files
- FEATURE: add `data-original-href` attribute to Vimeo iframes
- Add poster image for video oneboxes
2019-04-24 13:59:14 +05:30
845b68f9ab
Update possible upload url format for `Upload.migrate_to_new_scheme`.
2019-04-24 16:26:54 +08:00
bd1db1860a
FIX: prefer data-original-href attribute to get iframe URL
2019-04-24 13:53:27 +05:30
c811e59898
Avoid hardcoding db name in `Upload.migrate_to_new_scheme`.
2019-04-24 15:25:24 +08:00
8d697bbbd3
FIX: ensure image tracking custom fields have no dupes
...
All these columns must never include duplicates for a single post
otherwise code breaks. All are defined in post.rb in the top in constants
but we usually prefer not to ref constants in case they change and migration
becomes inconsistent.
2019-04-24 17:21:42 +10:00
8673bd832a
FEATURE: use failed_to_login for SSO error ( #7394 )
...
The error displayed when logging into suspended accounts via SSO never includes
the suspension reason, unlike non-SSO logins. By re-using the failed_to_login
method when generating the error message for SSO we can ensure the message is
consistent between the SSO and non-SSO paths.
2019-04-24 16:38:56 +10:00
d4bec7fdfb
use description_text instead of description to show correct sanitized description ( #7420 )
2019-04-24 16:33:58 +10:00
e351b2ee26
Revert "FEATURE: stop running migrate to new scheme once done"
...
This reverts commit 2e346e6ea2573ddcbbd0
2019-04-24 14:03:31 +08:00
573ddcbbd0
Disable migrate_to_new_scheme once there is nothing to migrate.
2019-04-24 14:00:00 +08:00
2e346e6ea2
FEATURE: stop running migrate to new scheme once done
...
This setting will automatically disable itself when there are no longer any
problem uploads
2019-04-24 14:32:39 +10:00
3094a603b7
Follow up to 149411ec90.
2019-04-24 12:20:53 +08:00
149411ec90
PERF: Speed up `Upload.migrate_to_new_scheme` by limiting remap scope.
...
Doing a `LIKE` on `Post#raw` and `Post#cooked` takes forever on large
sites.
2019-04-24 11:56:48 +08:00
7bac70676e
DEV: Improve `Upload.get_from_url` test case.
...
Follow up to a8baa6d9e7
2019-04-24 10:20:42 +08:00
a8baa6d9e7
FIX: Old `Upload#url` scheme support for `Upload.get_from_url`.
...
This is for backwards compatibility purposes. Even if `Upload#url` has a
format that we don't recognize, we should still return the upload object
as long as the upload record is present.
2019-04-24 10:15:47 +08:00
646cdfa449
FIX: Approved posts were not enqueueing alerts
2019-04-23 17:30:12 -04:00
b9339e15a1
FIX: Do not track a elements with no href.
2019-04-23 23:13:23 +03:00
b81d169e2a
FIX: Do not track user mentions.
2019-04-23 23:08:00 +03:00
fca3f53e9c
FIX: Safer scoring with concurrency
2019-04-23 15:53:37 -04:00
70097966ed
FIX: Don't add the reviewable score twice
2019-04-23 15:46:18 -04:00
21b975e71a
FIX: Broken plugin spec
2019-04-23 15:29:26 -04:00
6f56fba016
UX: Update post actions to "Approve Post" and "Reject Post"
...
This should be more clear.
2019-04-23 12:19:11 -04:00
c99faa6b25
FIX: improves locale support in tag-drop ( #7418 )
2019-04-23 17:53:59 +02:00
d4e788c136
FIX: improves share/invite behavior on mobile and especially iOS ( #7416 )
2019-04-23 17:07:31 +02:00
dc60128355
FIX: Hide ignoring users in preference for users with TL less than a member ( #7415 )
...
* FIX: Hide ignoring users in preference for users with TL less than a member
2019-04-23 14:47:37 +01:00
a2ddb6cf2d
DEV: Increase max length of theme_field name column
...
Now that we have custom SCSS files with arbitrary names, it's easy to exceed 30 characters
2019-04-23 12:34:32 +01:00
a7bc1ecbae
FEATURE: Add support for Unicode usernames and group names
...
Co-authored-by: Joffrey JAFFEUX <j.jaffeux@gmail.com>
2019-04-23 13:00:27 +02:00
d07605d885
DEV: Fix failing spec.
2019-04-23 18:25:28 +08:00
97dcd50e51
DEV: Fix incorrect spec file names.
...
Co-authored-by: Daniel Waterworth <me@danielwaterworth.com>
2019-04-23 18:03:55 +08:00
bf313c1b68
DEV: User email test optimization ( #7405 )
2019-04-23 17:49:05 +08:00
8c8d3bea31
Remove unncessary gems installed due to Rails 5.2.3 upgrade.
...
Follow up to b3dcaacdf4
2019-04-23 17:44:49 +08:00
1867f2dda0
FEATURE: Always track clicks using AJAX. ( #7373 )
2019-04-23 12:41:36 +03:00
c048b71b29
UX: Replace staff notice icon with user-shield.
2019-04-23 10:37:33 +03:00
87cca0fb80
FIX: Return the right response code for invalid theme id.
2019-04-23 14:57:14 +08:00
3ac18b92b3
UX: Editing theme name stays active when switching themes.
...
* Also fix length of input field.
2019-04-23 14:57:14 +08:00
3658be42f5
FIX: remove like_count and <hr> tag from post crawler layout ( #7413 )
...
* show likes value in crawler view if count is > 0
* remove <hr> since horizontal line is already provided by css - this removes one of 2 horizontal lines in post crawler view
2019-04-23 15:35:57 +10:00
9fc3de01bb
FEATURE: Add import script for Friends+Me Google+ Exporter JSON archives ( #7334 )
...
This script has been used to import over 50,000 Google+ posts
and over 300,000 comments from 29 communities into a single
Discourse instance, as well as for at least three other
imports. Google+ has closed for the public, but it is still
available at this time for GSuite customers. If GSuite customers
decide to migrate from Google+ to Discourse, or if Google
"sunsets" Google+ for GSuite customers, this importer may be
useful.
https://www.reddit.com/r/FMGE_Support/comments/b8sa5h/fmge_for_gsuite/
Development and use of this script has been discussed in detail:
https://meta.discourse.org/t/bounty-google-private-communities-export-screenscraper-importer/108029
2019-04-23 14:04:09 +10:00
46f628aa7c
minor copyedit
2019-04-22 20:45:29 -07:00
5ab62874e7
UX: Add link to e-mail troubleshooting guide on the finish-installation/confirm-email dialog
2019-04-23 09:02:12 +05:30
8f7cfc29db
FIX: Detect SNS notifications for SES correctly ( #7284 )
...
* Fix handling SNS notifications for AWS SES
This fixes detection of email bounce by:
- removing hard requirement for email ID, ID in webhook msg never equals this in email_log
- gets bounce_score from user stats instead of nonexistent field in webhook msg
* Remove empty line
* Prettify access to EmailLog for parsing SNS notification
Co-Authored-By: SystemZ <SystemZ@users.noreply.github.com>
2019-04-23 13:03:31 +10:00
58fe45ffd9
UX: Do not close login modal and search menu on outside mouse up event. ( #7366 )
2019-04-23 13:01:44 +10:00
9050b1bf5a
FIX: Add unique index on group_requests(group_id, user_id). ( #7399 )
2019-04-23 12:51:30 +10:00
Joffrey JAFFEUX
Guo Xiang Tan
Tim Lange
Gerhard Schlager
Arpit Jalan
Sam Saffron
Chris Butler
Saurabh Patel
Robin Ward
Bianca Nenciu
Tarek Khalil
David Taylor
Daniel Waterworth
Bianca Nenciu
Dan Ungureanu
Michael K Johnson
Jeff Atwood
Rishabh
Michał Frąckiewicz