discourse/app/controllers/admin
Sam ff49f72ad9 FEATURE: per client user tokens
Revamped system for managing authentication tokens.

- Every user has 1 token per client (web browser)
- Tokens are rotated every 10 minutes

New system migrates the old tokens to "legacy" tokens,
so users still remain logged on.

Also introduces weekly job to expire old auth tokens.
2017-02-07 09:22:16 -05:00
..
admin_controller.rb Interface for reviewing queued posts 2015-04-15 14:54:37 -04:00
api_controller.rb usage of raise corrected 2015-05-07 11:00:51 +10:00
backups_controller.rb FIX: log backups download/destroy staff action 2017-01-16 19:53:31 +01:00
badges_controller.rb SECURITY: disable user entered badge SQL by default 2016-07-28 09:03:00 +10:00
color_schemes_controller.rb Theming: a UI to choose some base colors that are applied to all the site css. CSS compiled outside of asset pipeline. 2014-05-14 10:18:12 -04:00
dashboard_controller.rb FEATURE: basic disk space usage stats 2015-02-04 18:05:17 +11:00
diagnostics_controller.rb PERF: disable prepared statements 2015-10-19 14:02:22 +11:00
email_controller.rb fix success response handling of sending digest preview email 2016-11-24 15:05:33 -05:00
email_templates_controller.rb Remove unused email templates from controller 2017-01-05 15:31:14 +01:00
embeddable_hosts_controller.rb FEATURE: Support for a whitelist for embeddable host paths 2016-08-23 14:56:12 -04:00
embedding_controller.rb FIX: Username for topic creation is required 2015-10-13 16:33:26 -04:00
emojis_controller.rb FIX: support for async uploads of emojis 2015-05-20 16:45:48 +02:00
flags_controller.rb FIX: allow staff members to restore withdrawn posts that are flagged 2014-09-09 20:26:40 +02:00
groups_controller.rb FIX: Can't update `Groups#allow_membership_requests` in admin. 2016-12-20 15:14:35 +08:00
impersonate_controller.rb FEATURE: log impersonations 2014-11-06 10:58:47 +01:00
permalinks_controller.rb UX: include more details on Permalinks page 2015-07-17 21:39:23 +05:30
plugins_controller.rb Add a spec for the new plugins controller 2015-02-10 12:35:53 -05:00
reports_controller.rb FEATURE: filter admin reports via user group 2016-02-04 11:23:49 +05:30
screened_emails_controller.rb FEATURE: admins can clear screend emails if needed 2014-06-02 16:53:00 +10:00
screened_ip_addresses_controller.rb SECURITY: correctly validate input when admin searches for screened ips 2017-02-06 16:11:16 -05:00
screened_urls_controller.rb Should have put order on the screened urls results 2013-11-04 16:31:31 -05:00
site_customizations_controller.rb FEATURE: Can create stylesheets for embedded comments 2015-08-10 10:21:04 -04:00
site_settings_controller.rb SECURITY: disable user entered badge SQL by default 2016-07-28 09:03:00 +10:00
site_texts_controller.rb FIX: Allow message format translations to be overridden 2016-04-08 14:49:50 -04:00
staff_action_logs_controller.rb FEATURE: Allow plugins to log staff actions 2015-02-05 15:26:34 -05:00
user_fields_controller.rb FEATURE: add user custom fields to user card 2016-04-08 14:35:41 +02:00
users_controller.rb FEATURE: per client user tokens 2017-02-07 09:22:16 -05:00
versions_controller.rb Don't blow up if Redis switches to READONLY 2015-04-24 14:37:16 -04:00
web_hooks_controller.rb Unify API keys and web hooks into a single admin nav header. 2016-09-20 05:22:03 +08:00