Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
discourse/spec
History
Sam Saffron d5d8db7fa8 FEATURE: improve honeypot and challenge logic 
This feature amends it so instead of using one challenge and honeypot
statically per site we have a rotating honeypot and challenge value which
changes every hour.

This means you must grab a fresh copy of honeypot and challenge value once
an hour or account registration will be rejected.

We also now cycle the value of the challenge when after successful account
registration forcing an extra call to hp.json between account registrations

Client has been made aware of these changes.

Additionally this contains a JavaScript workaround for:
https://bugs.chromium.org/p/chromium/issues/detail?id=987293

This is client side code that is specific to Chrome user agent and swaps
a PASSWORD type honeypot with a TEXT type honeypot.
 		2019-10-16 16:53:44 +11:00
..
components SPEC: 'lookup_upload_urls' method should use cdn url if available. 2019-10-14 12:57:33 +05:30
fabricators FEATURE: Webauthn authenticator management with 2FA login (Security Keys) (#8099) 2019-10-01 19:08:41 -07:00
fixtures FIX: Allow themes to upload and serve js files (#8188) 2019-10-14 15:40:33 +11:00
helpers FIX: Fallback to gzip compression if brotli isn't supported (#7895) 2019-07-16 11:05:37 -03:00
import_export DEV: clean up dependencies in spec 2019-10-02 14:50:54 +10:00
integration DEV: Upgrading Discourse to Zeitwerk (#8098) 2019-10-02 14:01:53 +10:00
integrity DEV: Update markdown-it from 8.4.1 to 10.0.0 (#8164) 2019-10-08 13:00:22 +02:00
jobs DEV: Fix heisentest (ensure that user ID really does not exist). 2019-10-14 12:25:43 +03:00
lib DEV: Split max decompressed setting for themes and backups (#8179) 2019-10-11 14:38:10 -03:00
mailers DEV: Upgrade Discourse to Rails 6 (#8083) 2019-09-12 10:41:50 +10:00
models FIX: Category.find_by_slug 2019-10-15 16:44:24 +01:00
multisite DEV: Upgrading Discourse to Zeitwerk (#8098) 2019-10-02 14:01:53 +10:00
requests FEATURE: improve honeypot and challenge logic 2019-10-16 16:53:44 +11:00
serializers DEV: Upgrading Discourse to Zeitwerk (#8098) 2019-10-02 14:01:53 +10:00
services DEV: Upgrading Discourse to Zeitwerk (#8098) 2019-10-02 14:01:53 +10:00
support FIX: DistributedMutex (#7953) 2019-08-01 09:12:05 +01:00
tasks FEATURE: option to skip posts with ignored missing uploads 2019-05-09 05:11:15 +05:30
views/omniauth_callbacks FEATURE: Use full page redirection for all external auth methods (#8092) 2019-10-08 12:10:43 +01:00
rails_helper.rb DEV: Upgrading Discourse to Zeitwerk (#8098) 2019-10-02 14:01:53 +10:00