Discource-C/discourse
1
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-02-07 03:48:23 +00:00
Code Issues Packages Projects Releases Wiki Activity
discourse/config
History
Alan Guo Xiang Tan 3d581ce159 SECURITY: Category group permissions leaked to normal users. 
After this commit, category group permissions can only be seen by users
that are allowed to manage a category. In the past, we inadvertently
included a category's group permissions settings in `CategoriesController#show`
and `CategoriesController#find_by_slug` endpoints for normal users when
those settings are only a concern to users that can manage a category.
2022-04-08 11:04:59 +02:00
..
cloud/cloud66
DEV: enable frozen string literal on all files
2019-05-13 09:31:32 +08:00
environments
FIX: remove 'crawl_images' site setting (#14646)
2021-10-19 17:12:29 +05:30
initializers
FIX: Pass category and tag IDs to the emit webhook event job. (#15568)
2022-01-14 11:17:38 -03:00
locales
Update translations (stable) (#15819)
2022-02-04 17:00:25 +00:00
application.rb
DEV: Support for running theme test with Ember CLI (third attempt)
2022-01-13 16:02:07 -05:00
boot.rb
DEV: Fix methods removed in Ruby 3.2 (#15459)
2022-01-05 18:45:08 +01:00
cdn.yml.sample
database.yml
remove some hardcoded 'localhost's from dev environment (#14801)
2021-11-03 11:26:44 +08:00
deploy.rb.sample
dev_defaults.yml
FEATURE: Add post edits count to user activity (#13495)
2021-08-02 10:15:53 -04:00
discourse_defaults.conf
FEATURE: Apply rate limits per user instead of IP for trusted users (#14706)
2021-11-17 23:27:30 +03:00
discourse.config.sample
discourse.pill.sample
environment.rb
DEV: replace mailcatcher references with mailhog (#14500)
2021-10-05 15:48:06 +05:30
logrotate.conf
multisite.yml.production-sample
DEV: Remove db_id from sample multisite config.
2020-05-29 10:48:29 +08:00
nginx.global.conf
nginx.sample.conf
FEATURE: Optimize images before upload (#13432)
2021-06-23 12:31:12 -03:00
projections.json
DEV: Use .hbr for raw template file extension (#8883)
2020-02-11 13:38:12 -06:00
puma.rb
remove daemonize setting (#12232)
2021-03-01 16:42:50 +11:00
routes.rb
SECURITY: Category group permissions leaked to normal users.
2022-04-08 11:04:59 +02:00
sidekiq.yml
FEATURE: introduce ultra_low priority queue
2019-01-17 14:53:19 +11:00
site_settings.yml
DEV: Remove old enable_experimental_composer_uploader site setting (#15406)
2021-12-24 15:27:25 +11:00
spring.rb
DEV: enable frozen string literal on all files
2019-05-13 09:31:32 +08:00
thin.yml.sample
unicorn_launcher
FIX: Increase timeout when trying to reload unicorn.
2018-12-04 13:43:14 +08:00
unicorn_upstart.conf
unicorn.conf.rb
DEV: Avoid $ globals (#15453)
2022-01-08 23:39:46 +01:00