Robin Ward
17f2974d0a
SECURITY: Confirm new administrator accounts via email
2017-04-04 15:59:01 -04:00
Robin Ward
45a257815a
Convert front end paths from /users/
to /u/
2017-03-30 10:23:24 -04:00
Neil Lalonde
c4e10f2a9d
FEATURE: redesign the change password page to use javascript and validations
2017-02-03 16:09:24 -05:00
Sam
0599bd0154
FEATURE: add referrer never tag to password reset page
2016-12-19 11:01:58 +11:00
Jeff Atwood
1386f9c8c9
make the activate account button a btn-primary
2016-07-14 03:40:55 -07:00
Robin Ward
f7c303c82e
FIX: If there's no window.opener
use the localStorage method for login
2016-07-08 14:45:34 -04:00
Robin Ward
eff2865278
FIX: Support create account on facebook browser
2016-06-10 11:12:46 -04:00
Robin Ward
171dbd4b09
Allow redirects on Facebook Browser
2016-06-09 15:51:46 -04:00
Robin Ward
f6eb5e823b
Temporarily remove FB browser redirect
2016-06-09 15:35:17 -04:00
Robin Ward
ba5993ae79
FIX: Invalid escaping of URL
2016-06-09 15:10:21 -04:00
Robin Ward
4730c82b3a
FIX: Detect window.opener
2016-06-09 14:51:38 -04:00
Robin Ward
eee15dfe7f
FIX: On facebook browser, don't close the window but redirect instead
2016-06-09 14:20:44 -04:00
Arpit Jalan
cf97efb643
make the text field autofocus on admin-login page
2016-05-25 23:41:07 +05:30
Arpit Jalan
05164d4cae
FEATURE: add Google Analytics code to more user pages
2016-04-02 01:29:08 +05:30
Robin Ward
5771d2aee2
SECURITY: Support for confirm old as well as new email accounts
2016-03-08 14:52:22 -05:00
Arpit Jalan
50e65634d7
FEATURE: new setting min_admin_password_length and better default
2016-03-02 14:43:26 +05:30
Neil Lalonde
c7df6783a9
FIX: only invalidate password reset links using javascript
2016-01-04 11:48:54 -05:00
Neil Lalonde
2d7c3067ba
FIX: automatic redirect after activating account on subfolder installs
2015-12-15 14:46:35 -05:00
Sam
d6932e4ac4
add missing include
2015-11-25 22:47:50 +11:00
Régis Hanol
37c5909a31
FIX: use the first image in the first post in the topic as opengraph image
...
FEATURE: new 'default_opengraph_image_url' setting
2015-10-15 11:00:47 +02:00
Sam
b6c2aa13e6
clean up implementation of non frame login / registration
2015-10-13 14:49:09 +11:00
Sam
fab51496cb
correct full screen login feature
2015-10-13 13:11:49 +11:00
Sam
b3aebca406
FEATURE: allow auto provider to specify "full screen login"
...
this feature means we attempt to log in without opening a frame.
2015-10-13 12:23:34 +11:00
Sam
57e3323663
redirect back to base uri if there is no window opener.
2015-10-13 12:03:43 +11:00
Robin Ward
b4960d48b4
Better support for passing up errors when OmniAuth fails after auth
2015-06-24 12:12:43 -04:00
Arpit Jalan
f3687b6e56
UX: show caps lock warning on password reset page
2015-05-04 13:01:35 +05:30
Arpit Jalan
2932284293
FEATURE: magic login route for admin when SSO is enabled
2015-04-27 22:54:48 +05:30
Sam
f5af4768eb
FEATURE: add clean support for running Discourse in a subfolder
...
To setup set DISCOURSE_RELATIVE_URL_ROOT to the folder you wish
2015-03-09 13:14:29 +11:00
Sam
17927b2e8b
FIX: don't use flash cause we are not redirecting
...
(we should probably change that though)
2015-02-20 10:28:58 +11:00
Robin Ward
987504c6ab
Rename no_js
layout to no_ember
...
While *sometimes* `no_js` was used for visitors without js (for example
disabling it on your browser) it was also used for some pages that were
disabled to JS capable browsers, including the 404 page.
Even worse, sometimes it was used on pages that *had* Javascript, such
as our `/activate-account` route. It has been renamed to `no_ember` to
indicate what it really is, a layout for the site that doesn't load our
Ember.js application.
2015-01-15 15:56:53 -05:00
Régis Hanol
07211489f0
FIX: hide restricted profile info from TL0 users to anonymous in 'JS-off' page
2014-11-27 19:51:13 +01:00
Jeff Atwood
8e38c129c5
minor login copy tweaks
2014-11-06 02:27:27 -08:00
Robin Ward
c9eb809dad
FIX: The text to users who signed up when approval was required was
...
misleading.
2014-11-04 15:48:03 -05:00
Neil Lalonde
4762b4ac24
FIX: on completion of external auth, window.close may fail because of iOS Safari bug. Prompt user to manually close the window.
2014-10-15 11:00:34 -04:00
Sam
29bb9eaa89
Merge pull request #2835 from techAPJ/patch-2
...
add user email on account created page
2014-10-02 17:29:26 +10:00
Arpit Jalan
41af2d79b5
add user email on account created page
2014-10-02 12:43:44 +05:30
Sam
489078bfcf
Merge pull request #2834 from techAPJ/patch-1
...
trigger "browser password manager" for password reset page
2014-10-02 16:49:00 +10:00
Arpit Jalan
14bc197cf6
trigger password manager for password reset page
2014-10-01 20:43:56 +05:30
Robin Ward
be93f224a6
Revert "add user email on account created page"
...
This reverts commit 164fc1108a
.
2014-10-01 10:30:26 -04:00
Arpit Jalan
164fc1108a
add user email on account created page
2014-10-01 13:53:50 +05:30
Arpit Jalan
b3838c2c1c
Trigger browser password manager after sigining up
2014-09-24 01:04:36 +05:30
riking
2c6d03f87f
SECURITY: Limit passwords to 200 characters
...
Prevents layer 8 attack.
2014-09-12 12:07:11 -04:00
cpradio
3bd0c94d96
UX: Add password instructions to Reset Password page
...
Added the password instructions to the reset password page.
https://meta.discourse.org/t/reset-password-doesnt-give-password-requirements/19799
2014-09-09 20:37:39 -04:00
Robin Ward
8bf27642ad
FIX: Refresh was losing top controls after bulk operation. Removed
...
console.log
2014-08-28 14:44:38 -04:00
Neil Lalonde
b4ad70d767
FEATURE: Continue to Discourse links are now buttons, and those pages will redirect automatically after 5 seconds
2014-07-23 12:32:12 -04:00
Robin Ward
4f416bf6ce
Check honeypot/challenge value on activation too
2014-07-15 14:07:35 -04:00
Robin Ward
cce7cf8c85
FEATURE: Require Javascript to activate an account via email link
2014-07-14 12:26:10 -04:00
Neil Lalonde
82693daa3d
Put the 'Powered by Discourse...' message shown to crawlers and no-js visitors in a footer element so that SEO something something.
2014-06-19 18:18:09 -04:00
Robin Ward
17d341ff86
FIX: crawler versions of the page need the updated bio relationships.
2014-06-13 14:55:32 -04:00
Neil Lalonde
ba74226346
FIX: invited users get clearer messaging when setting a password for the first time
2014-01-21 12:42:26 -05:00