github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2024-12-15 09:33:44 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
20,127 Commits 214 Branches 500 Tags 960 MiB
33a05b9406
Commit Graph

3349 Commits

Author SHA1 Message Date
Guo Xiang Tan
33a05b9406 SECURITY: Users can only bookmark posts which they can see. 2016-12-21 12:06:56 +08:00
Sam
c10dfe0d1b SECURITY: prevent reuse of password reset 2016-12-19 18:04:55 +11:00
Neil Lalonde
8a461e6283 Version bump to v1.6.9 2016-12-14 14:56:40 -05:00
Neil Lalonde
af0fbb693e Version bump to v1.6.8 2016-11-28 16:05:54 -05:00
Rafael dos Santos Silva
64b0a4eada Version bump to v1.6.7 2016-11-14 19:27:06 -02:00
Sam
bdbd01ce40 fix oops 2016-11-14 19:24:46 -02:00
Sam
4c226bf12d FIX: properly reset all contexts after forking 
Fixes hang on backup
 2016-11-14 19:24:34 -02:00
Rafael dos Santos Silva
d5ba32ab2f Version bump to v1.6.6 2016-11-03 22:01:37 -02:00
Neil Lalonde
1d76d255d5 Version bump to v1.6.5 2016-11-02 13:46:41 -04:00
Guo Xiang Tan
2bce183581 FIX: User enabled readonly mode was not working. 2016-10-25 11:50:51 +08:00
Guo Xiang Tan
46732957bc Version bump to v1.6.4 2016-09-23 14:48:07 +08:00
Guo Xiang Tan
5b3cbd3c9d FIX: Make sure constant reflects the right backup extenstion. 2016-09-23 14:46:59 +08:00
Guo Xiang Tan
e4c5cb84cd Version bump to v1.6.3 2016-09-19 08:54:54 +08:00
Neil Lalonde
cbe623aaee Version bump to v1.6.2 2016-09-16 11:37:30 -04:00
Guo Xiang Tan
49ceac26d5 SECUIRTY: Escape input made to system calls. 2016-09-16 12:50:46 +08:00
Neil Lalonde
f7a335a64e Version bump to v1.6.1 2016-08-12 11:45:46 -04:00
Robin Ward
40d91ff504 FIX: Travis failure 2016-08-11 13:49:14 +08:00
Guo Xiang Tan
adb1e2cbc8 SECURITY: Escape HTML in filename. 2016-08-11 13:48:23 +08:00
Régis Hanol
6d2a687ec7 FIX: wasn't able to update category's settings 2016-08-09 23:57:50 +02:00
Sam
0b5c3f5a03 SECURITY: do cookie auth rate limiting earlier 2016-08-09 10:04:49 +10:00
Neil Lalonde
4c14894958 Version bump to v1.6.0 2016-08-05 15:15:00 -04:00
Neil Lalonde
f10c4682cd FIX: muted tags showing in latest topic list 2016-08-04 11:54:48 -04:00
Guo Xiang Tan
6827239444 Merge pull request #4360 from tgxworld/support_new_pg_dump_format 
Changes to backup and restore
 2016-08-04 10:58:42 +08:00
Régis Hanol
e92f5e4fbf FEATURE: new email attachment blacklists site settings 2016-08-03 17:55:54 +02:00
Régis Hanol
35c13bca6c Merge pull request #4363 from cpradio/version-link-shows-compare 
FEATURE: Installed Version link shows GitHub Compare to branch being followed
 2016-08-03 16:03:57 +02:00
Régis Hanol
323bd555c0 FIX: process all incoming email's destinations instead of only the first 2016-08-03 15:57:37 +02:00
Régis Hanol
b08ab829b8 added 'X-Auto-Response-Suppress' email header (props to elijah) 2016-08-03 11:02:07 +02:00
Guo Xiang Tan
adc8336949 Make sure we track restore/backlog success logs as well. 2016-08-03 16:23:47 +08:00
Guo Xiang Tan
b860d1b254 FIX: Ensure uploads directory exists. 2016-08-03 16:23:47 +08:00
Guo Xiang Tan
0a942dbc73 FEATURE: Avoid creating an archive for database only backups. 2016-08-03 16:23:46 +08:00
cpradio
1b89c2f0ef FEATURE: Installed Version link shows GitHub Compare to branch being followed 2016-08-02 06:18:44 -04:00
Guo Xiang Tan
3f4f1ee032 Merge pull request #4359 from tgxworld/backward_compatibility_for_backups_and_restores 
FIX: Ensure that our restorer is backwards compatible.
 2016-08-02 10:45:27 +08:00
Guo Xiang Tan
441b98579a FIX: Ensure that our restorer is backwards compatible. 2016-08-02 09:19:56 +08:00
Régis Hanol
ca4c939e9a incoming mail is considered autogenerated when the subject match a list of 'out of office' keywords 2016-08-02 00:04:59 +02:00
Régis Hanol
7d0dc7cb7a FIX: don't create staged user(s) when receiving a bounce (mailer-deamon begone) 2016-08-01 23:37:59 +02:00
Sam
9018de39ed FEATURE: allow shipping bio markdown via SSO 
- Also adds site setting for sso_overrides_bio to disable bio editing by end users
 2016-08-01 15:29:28 +10:00
Robin Ward
2891f230d1 SECURITY: Make sure uploaded_urls have corresponding upload records 2016-07-28 13:54:17 -04:00
Robin Ward
dc1a830d3d SECURITY: SQL Injection in Admin List Active Users 2016-07-28 11:42:06 -04:00
Guo Xiang Tan
36ddb1787e FEATURE: Add toggle topic visibility button in popup menu. 2016-07-28 16:57:04 +08:00
Sam
16a383ea1e SECURITY: limit bad cookie auth attempts 
- Also cleans up the _t cookie if it is invalid
 2016-07-28 12:58:49 +10:00
Sam
ab68e0c9db FEATURE: allow "developer" account flagging via developers table 
This mechanism for flagging developer accounts will eventually replace
DISCOURSE_DEVELOPER_EMAILS
 2016-07-28 10:14:06 +10:00
Régis Hanol
11172b7c2d FIX: cropping GIF wasn't working 2016-07-27 18:48:02 +02:00
Andre Pereira
8cbd585e20 FEATURE: Allow staff users to merge posts. 2016-07-27 12:04:14 +08:00
Robin Ward
2a4006fe0c Add YandexBot to our list of crawlers 2016-07-26 13:21:37 -04:00
Neil Lalonde
ce595189ff Version bump to v1.6.0.beta12 2016-07-26 11:49:51 -04:00
Guo Xiang Tan
76e57ddef3 FIX: Log errors in ensure block of restorer. 2016-07-26 10:24:01 +08:00
Guo Xiang Tan
03aa13b2bb FEATURE: Work with compressed version of pg_dump during backup and restore. 2016-07-26 10:24:01 +08:00
Sam
b5fbff947b FIX: don't expire old sessions when logging in 2016-07-26 11:37:41 +10:00
Régis Hanol
b0f7e4ba00 FEATURE: deactive users after too many bounces 2016-07-25 18:57:06 +02:00
Régis Hanol
7648916314 new 'reset_bounce_score_after_days' site setting 2016-07-25 17:29:54 +02:00