Kane York
2a897a8a6b
SECURITY: Remove email validation check bypass
...
- Increase size of email column to varchar(513)
- Give error message on signup when email is too large
Overall impact: Low, allows signups from blocked domains. Main risk is increased spam.
2015-07-13 15:36:17 -07:00
Arpit Jalan
e0c9054748
FEATURE: invite page tabs
2015-07-13 09:42:51 +05:30
Neil Lalonde
782dd13e78
FEATURE: track user visits on mobile and display on admin dashboard in a new Mobile section
2015-07-07 14:06:42 -04:00
Doug
5e615ef26e
Fixed bug that caused substrings of reserved usernames to be treated as reserved.
2015-07-06 23:54:25 -07:00
Robin Ward
be664857be
Merge pull request #3585 from riking/patch-3
...
FEATURE: Reserved usernames
2015-07-03 10:02:24 -04:00
Robin Ward
7676c5dfe7
Can add topic templates to categories, prepopulated on compose
2015-07-03 10:01:46 -04:00
Kane York
df988a20eb
FEATURE: Reserved usernames
...
A list of usernames that will be blocked from being used to sign up.
2015-07-01 13:50:55 -07:00
Robin Ward
6422d5efbd
Use the same component for similar topics as search results.
2015-06-24 15:08:22 -04:00
Robin Ward
b4960d48b4
Better support for passing up errors when OmniAuth fails after auth
2015-06-24 12:12:43 -04:00
Régis Hanol
f18098fd9b
FEATURE: category dropdown in admin reports
2015-06-24 15:19:39 +02:00
Sam
b052179ae6
Merge pull request #3163 from rcfox/fix-by-external
...
Allow periods in the external_id value used in the /users/by-external route.
2015-06-24 13:07:12 +10:00
Sam
65ac5b6475
Merge pull request #3562 from riking/no-index
...
Add noindex directive on unlisted topics
2015-06-23 15:50:53 +10:00
Robin Ward
76bfd723f6
Merge pull request #3482 from riking/patch-3
...
Import/Export site customizations
2015-06-22 14:03:07 -04:00
Kane York
2f0bd6294c
Add noindex directive on unlisted topics
2015-06-22 11:00:39 -07:00
Régis Hanol
efb02ae561
FIX: take into account unlisted banners
2015-06-22 14:08:30 +02:00
Sam
41e427bd2e
Work in progress, full page search
2015-06-22 18:09:08 +10:00
Konstantin Ilchenko
131cf643ce
FIX: Allow api to send uploads with :url
2015-06-21 14:54:59 +03:00
Robin Ward
4e898c604e
UX: Update suggested topics to include topic status + category
2015-06-18 15:53:10 -04:00
Sam
f26eee8431
FEATURE: add username to NGINX logs
2015-06-16 17:43:53 +10:00
Arpit Jalan
d37c2a2c98
Merge pull request #3550 from techAPJ/patch-1
...
FIX: new-topic URL should survive login redirection
2015-06-16 07:19:42 +05:30
Sam
690f4a4c37
add X so it shows up at the end of chrome
2015-06-16 10:27:42 +10:00
Sam
9b8b1d0034
FEATURE: add special header that names the action for the request
2015-06-16 09:54:44 +10:00
Régis Hanol
1ac3941130
FEATURE: allow API to upload files synchronously
2015-06-15 16:12:15 +02:00
Arpit Jalan
d1632c1dbd
FIX: new-topic URL should survive login redirection
2015-06-14 20:24:47 +05:30
Régis Hanol
189cb3ff12
FEATURE: move migrate_to_new_scheme into a background job
...
- new hidden site setting 'migrate_to_new_scheme' (defaults to false)
- new rake tasks to toggle migration to new scheme
- FIX: migrate_to_new_scheme also works with CDN
- PERF: improve perf of the DbHelper.remap method
- REFACTOR: UrlHelper is now a class
2015-06-12 12:07:57 +02:00
Sam Saffron
c58b495e15
SECURITY: Query @usernames in bulk
...
Otherwise you could add many requests at once while composing.
2015-06-11 13:03:49 -04:00
Robin Ward
ae277e28a6
FEATURE: Allow embedding topics without creating them, by id
2015-06-09 16:24:20 -04:00
Sam Saffron
e3fa27a01c
FEATURE: serialize and update category custom_fields
...
- send to client
- update from client
2015-06-10 06:13:36 +10:00
Robin Ward
7b6d6b76eb
FEATURE: Multiple embeddable hosts
...
- Also refactors two site settings components into one, with tests
2015-06-09 13:25:43 -04:00
Arpit Jalan
71ee84f848
FEATURE: latest posts RSS feed
2015-06-09 21:45:06 +05:30
Robin Ward
5da5269652
FIX: Bad page title for categories view by google crawler
2015-06-08 12:07:35 -04:00
Arpit Jalan
74141cc475
FIX: send 404 error when unauthorized user tries to download user archive
2015-06-08 11:32:31 +05:30
Sam Saffron
4409a3072d
FEATURE: we need admin login always
2015-06-05 18:43:59 +10:00
Régis Hanol
81a699e2b0
better support for mixed content
2015-06-01 17:49:58 +02:00
Sam Saffron
9787cb07aa
FIX: when missing a static topic we were returning an error
2015-06-01 11:40:52 +10:00
Sam
fc2a08731a
FIX: sso_not_approved_url not working correctly
2015-05-30 13:19:07 +10:00
Régis Hanol
80a108e3cf
FIX: don't break user avatars route
2015-05-29 19:19:41 +02:00
Régis Hanol
acafa491b2
user avatar urls/templates refactor
2015-05-29 18:51:17 +02:00
Régis Hanol
0483f05154
make sure we pass in the user_id when creating avatar thumbnails
2015-05-29 18:11:19 +02:00
Régis Hanol
cb025a65e0
FIX: make sure we also save the user_avatar.custom_upload_id
2015-05-29 10:21:41 +02:00
Régis Hanol
c3227b69fa
FIX: proper support for pixel ratios up to 3
2015-05-29 09:57:54 +02:00
Sam
bddbf70697
FIX: order post_actions by date
2015-05-28 16:16:36 +10:00
Sam
bb3fb37650
FIX: when uploading same file was pasted into multiple composers
2015-05-28 15:08:54 +10:00
Neil Lalonde
ea8cf1a208
FIX: topic auto-close uses the client's time zone
2015-05-27 18:01:46 -04:00
Sam
02fa7448ca
FEATURE: custom url to redirect to on account pending approval for sso
2015-05-27 14:06:45 +10:00
Sam
a988cd5abe
FIX: redirect to CDN avatar for s3 avatars
2015-05-27 12:02:57 +10:00
Sam
918034aa7b
remove less useful error reporting
2015-05-27 11:17:28 +10:00
Régis Hanol
992154533f
remove debugging letfovers
2015-05-26 20:08:19 +02:00
Régis Hanol
7b03c7dbc4
Merge pull request #3504 from techAPJ/patch-4
...
FIX: add missing translation keys
2015-05-26 16:08:39 +02:00
Régis Hanol
85d4d3223c
FIX: crop avatars on the server instead of the client
...
FIX: support for dots in S3 bucket names
2015-05-26 15:54:25 +02:00