Commit Graph

19881 Commits

Author SHA1 Message Date
Sam
9018de39ed FEATURE: allow shipping bio markdown via SSO
- Also adds site setting for sso_overrides_bio to disable bio editing by end users
2016-08-01 15:29:28 +10:00
Régis Hanol
e79c216bc0 FIX upload hints (#4357) 2016-07-31 17:03:37 +02:00
Rafael dos Santos Silva
5d91355c97 FIX upload hints 2016-07-30 15:39:11 -03:00
Robin Ward
9cb8d5d19e FIX: Whitelist the big tag 2016-07-29 16:11:18 -04:00
Jeff Atwood
919566b33d minor copyedit 2016-07-29 08:57:24 -07:00
Guo Xiang Tan
d970f4d3d8 Fix incorrect test. 2016-07-29 17:05:00 +08:00
Guo Xiang Tan
1171936850 FIX: Don't escape strings from polls. 2016-07-29 16:35:57 +08:00
Guo Xiang Tan
f9454088c3 FIX: Missing icons on polls preview. 2016-07-29 16:15:52 +08:00
Guo Xiang Tan
89d2340e37 UX: Add margins for poll links in preview. 2016-07-29 15:19:56 +08:00
Guo Xiang Tan
ffbfcd7ee2 Fix build. 2016-07-29 14:47:23 +08:00
Guo Xiang Tan
e336e56153 FIX: Incorrect sort for poll results. 2016-07-29 14:42:55 +08:00
Guo Xiang Tan
f9ef1e1997 Opps this broke polls. 2016-07-29 14:28:09 +08:00
Guo Xiang Tan
6538363c18 PERF: Reduce the number of queries when voting. 2016-07-29 14:02:48 +08:00
Guo Xiang Tan
fc7ebc342c Merge pull request #4354 from tgxworld/remove_button_look_on_polls
UX: Remove button styles on polls.
2016-07-29 11:41:13 +08:00
Guo Xiang Tan
32c962cfd8 UX: Remove button styles on polls. 2016-07-29 11:09:23 +08:00
Guo Xiang Tan
1552908fc0 Merge pull request #4353 from fantasticfears/translation
Explicit on site settings and fixing minor parts
2016-07-29 10:40:41 +08:00
Guo Xiang Tan
8e30ab31c2 Merge pull request #4351 from tgxworld/allow_non_number_poll_results_to_be_sorted
FEATURE: Allow poll results to be sorted.
2016-07-29 10:38:29 +08:00
Guo Xiang Tan
a7f2b2ded6 FEATURE: Allow poll results to be sorted. 2016-07-29 10:37:27 +08:00
Neil Lalonde
1f12e41029 FIX: query for tag with no sub-categories 2016-07-28 16:59:00 -04:00
Neil Lalonde
82e170d6a6 FIX: 404 when filtering by category, no sub-category, and a tag 2016-07-28 16:19:03 -04:00
Robin Ward
efc6408b1d FIX: Regression with escaping on badge page 2016-07-28 15:57:06 -04:00
Jeff Atwood
d9289b6da9 Merge pull request #4352 from tgxworld/full_width_for_polls
UX: Polls should take up full width of post's container.
2016-07-28 11:59:08 -07:00
Robin Ward
2891f230d1 SECURITY: Make sure uploaded_urls have corresponding upload records 2016-07-28 13:54:17 -04:00
Robin Ward
cf5b756b1a SECURITY: Cross-Site Scripting in Category and Group Settings 2016-07-28 11:57:59 -04:00
Neil Lalonde
77847f0d46 FIX: meta description tags for tags 2016-07-28 11:49:23 -04:00
Robin Ward
dc1a830d3d SECURITY: SQL Injection in Admin List Active Users 2016-07-28 11:42:06 -04:00
Robin Ward
2f8ab8cd30 SECURITY: XSS in "Account Suspended" Messages and Badge Descriptions 2016-07-28 11:38:12 -04:00
Erick Guan
bc81c8b2a0
Explicit on site settings and fixing minor parts 2016-07-28 23:35:24 +08:00
Guo Xiang Tan
bb3f4a10f3 UX: Polls should take up full width of post's container. 2016-07-28 23:06:25 +08:00
Guo Xiang Tan
85a91c8b81 Remove unused property. 2016-07-28 21:28:49 +08:00
Guo Xiang Tan
0128fdfc46 FIX: Discourse.ajax is deprecated. 2016-07-28 18:20:24 +08:00
Guo Xiang Tan
c449bbe882 Merge pull request #4347 from tgxworld/unlist_topic_creation
FEATURE: Add toggle topic visibility button in popup menu.
2016-07-28 17:18:34 +08:00
Guo Xiang Tan
36ddb1787e FEATURE: Add toggle topic visibility button in popup menu. 2016-07-28 16:57:04 +08:00
Sam
16a383ea1e SECURITY: limit bad cookie auth attempts
- Also cleans up the _t cookie if it is invalid
2016-07-28 12:58:49 +10:00
Sam
0ba8da9658 reduce amount of cache setting 2016-07-28 10:20:29 +10:00
Sam
83f80341b3 FIX: topic id cache should be a multi process cache 2016-07-28 10:20:14 +10:00
Sam
ab68e0c9db FEATURE: allow "developer" account flagging via developers table
This mechanism for flagging developer accounts will eventually replace
DISCOURSE_DEVELOPER_EMAILS
2016-07-28 10:14:06 +10:00
Sam
c6dbaca0dc SECURITY: disable user entered badge SQL by default
- Hidden site settings now must be change via rails console
2016-07-28 09:03:00 +10:00
Sam
cb3afd11b4 SECURITY: limit route access when using external avatars 2016-07-28 09:00:43 +10:00
Neil Lalonde
437ad5b05a Remove extra characters returned from Transifex 2016-07-27 17:55:29 -04:00
Neil Lalonde
6a8f57d602 Update translations 2016-07-27 17:55:28 -04:00
Neil Lalonde
7109442ef0 Stop using Transifex workaround, but keep the code just in case 2016-07-27 17:55:28 -04:00
Gerhard Schlager
37a78752e9 phpBB3 importer: fixes for internal links and guest users (#4350)
* phpBB3 importer: ignore query parameters in internal links

* phpBB3 importer: Don't fail if guest usernames differ only by case

* phpBB3 importer: Import username as name for guest users
2016-07-27 22:57:33 +02:00
Gerhard Schlager
fccc0c93c5 Store the original username during import (#4349) 2016-07-27 22:30:15 +02:00
Régis Hanol
e848c336bb FIX: only prevent clicks on links in the preview 2016-07-27 20:53:45 +02:00
Régis Hanol
c4b52b1a19 GET is a more RESTy verb for '/users/:username/emails' 2016-07-27 20:15:28 +02:00
Régis Hanol
6dac9075dc new 'convert_pasted_images_quality' site setting 2016-07-27 19:59:44 +02:00
Régis Hanol
be099bb637 only convert pasted images to HQ jpg when it's at least 5% smaller 2016-07-27 19:55:13 +02:00
Neil Lalonde
a3f39866ab Update translations using temporary workaround for Transifex bugs 2016-07-27 13:29:13 -04:00
Régis Hanol
ea59283c1e FIX: PM automatic groups via URL 2016-07-27 19:16:31 +02:00