152 Commits

Author	SHA1	Message	Date
Blake Erickson	e9e88c9b82	Remove legacy avatar code ... - Remove method that was only left around because the [api](https://github.com/discourse/discourse_api/pull/53) called it - Modify test to use new route instead of legacy route https://meta.discourse.org/t/legacy-route-for-avatars/22838/2	2014-12-07 06:13:14 -07:00
Blake Erickson	a61519eebf	Have pick_avatar return json. ... I'm working on writing a test in the discourse_api gem for uploading avatars and the pick method needs to return a json response. I also added a test to make sure json is returned.	2014-12-06 09:26:32 -07:00
Régis Hanol	07211489f0	FIX: hide restricted profile info from TL0 users to anonymous in 'JS-off' page	2014-11-27 19:51:13 +01:00
Régis Hanol	7641d88224	FEATURE: new 'maximum new user accounts per registration IP' site setting	2014-11-17 12:04:29 +01:00
Robin Ward	c9eb809dad	FIX: The text to users who signed up when approval was required was ... misleading.	2014-11-04 15:48:03 -05:00
Régis Hanol	865194f409	FIX: cannot show email for pending/inactive users	2014-10-29 01:07:27 +01:00
Robin Ward	71f211f0b3	FEATURE: Allow users to select a badge with an image to appear on their ... user card	2014-10-20 16:35:38 -04:00
Robin Ward	1cf4a0d604	Rename "User Expansion" to the much clearer "User Card"	2014-10-20 12:11:59 -04:00
Régis Hanol	10094a0bcd	FIX: resolve flags as good when deleting a spam user	2014-10-20 16:59:06 +02:00
Robin Ward	4d465362b5	FEATURE: Allow a user to upload an image for their expansion background.	2014-10-16 15:05:36 -04:00
Robin Ward	f9a8f6d6ce	FEATURE: Support for a required setting on user fields.	2014-10-08 15:10:19 -04:00
Sam	0e7be81e60	FIX: badge granted titles were not being revoked when badge was revoked	2014-10-08 10:26:18 +11:00
Robin Ward	381814fd5d	Adds support for a description to user fields.	2014-10-02 15:56:52 -04:00
Arpit Jalan	41af2d79b5	add user email on account created page	2014-10-02 12:43:44 +05:30
Robin Ward	be93f224a6	Revert "add user email on account created page" ... This reverts commit 164fc1108a.	2014-10-01 10:30:26 -04:00
Arpit Jalan	164fc1108a	add user email on account created page	2014-10-01 13:53:50 +05:30
Robin Ward	edb34c178a	FEATURE: Show user fields when the user is signing up	2014-09-30 10:45:18 -04:00
Régis Hanol	7e309a21cf	FEATURE: hide emails behind a button for staff members	2014-09-29 22:31:05 +02:00
Sam	a901d682fe	raise not found if user is not found	2014-09-25 17:45:45 +10:00
Sam	8f8ea735ee	FIX: allow retry activation of account by username or password	2014-09-25 17:42:48 +10:00
Arpit Jalan	b3838c2c1c	Trigger browser password manager after sigining up	2014-09-24 01:04:36 +05:30
Sam	7a4082cbad	FIX: allow API to create users when invite_only is true	2014-09-23 09:06:19 +10:00
Neil Lalonde	c4e285f3ec	SECURITY: rate limit change email requests	2014-09-18 10:48:56 -04:00
riking	2c6d03f87f	SECURITY: Limit passwords to 200 characters ... Prevents layer 8 attack.	2014-09-12 12:07:11 -04:00
Robin Ward	56eda5abf9	FIX: Don't allow profile bios longer than 3k chars	2014-09-08 15:23:21 -04:00
Robin Ward	c9262a8390	FIX: Resend activation email was busted	2014-08-28 12:07:13 -04:00
Robin Ward	ed125975a1	SECURITY: Prefix session key and validate token format.	2014-08-25 15:31:49 -04:00
Arpit Jalan	4cd8abc905	FEATURE: dynamically load invites	2014-08-05 22:20:23 +05:30
Neil Lalonde	939e8505a9	Remove hub username integration	2014-07-16 12:25:24 -04:00
Neil Lalonde	01a68f8cc7	Emails are case insensitive	2014-07-16 10:22:01 -04:00
Robin Ward	4f416bf6ce	Check honeypot/challenge value on activation too	2014-07-15 14:07:35 -04:00
riking	915f60b0fc	Don't redirect to login when activating account...	2014-07-15 10:50:28 -07:00
Neil Lalonde	766196af87	FEATURE: add site setting allow_new_registrations which can be used to block all new account registrations	2014-07-14 15:42:22 -04:00
Robin Ward	cce7cf8c85	FEATURE: Require Javascript to activate an account via email link	2014-07-14 12:26:10 -04:00
Sam	4a2cc269ab	FIX: allow selection of no title	2014-07-14 18:07:07 +10:00
Sam	833c50c460	FEATURE: Read Faq badge	2014-07-11 17:32:29 +10:00
Sam	9a9ad9bda8	FEATURE: Badge progress ... - Refactor model so it stores backfill query - Implement autobiographer - Remove sample badge - Correct featured badges to only include a badge once	2014-07-03 17:29:44 +10:00
Sam	5a0aed2bfa	FIX: regression, forgot password broken ... also... mocks were invented by the devil	2014-07-02 13:06:55 +10:00
Robin Ward	9000c358d1	REFACTOR: Use common path for RESTful DELETE action from upload image ... component	2014-06-30 14:13:59 -04:00
Robin Ward	4088fba4f2	REFACTOR: Convert profile background uploader to be an ember component	2014-06-30 14:13:59 -04:00
Andrew Bezzub	386d1e231a	move profile_background from User to UserProfile	2014-06-26 12:30:07 -04:00
riking	6e698315d6	Allow all /my URLs ... Previously, URLs like /my/activity/posts were denied. This change allows those URLs.	2014-06-14 10:58:20 -07:00
Sam	91b6459f2b	BUGFIX: allow users to pick no avatar	2014-05-30 14:45:55 +10:00
Sam	5adc486cef	BUGFIX: missing avatars in topic map ... Cleanup uneeded column	2014-05-29 14:59:14 +10:00
Sam	504cfcff96	Fix specs for avatars ... Implement avatar picker Correct avatar related jobs	2014-05-27 10:08:03 +10:00
Sam	6c1c8be794	Work in progress, keeping avatars locally ... This introduces a new model to store the avatars and 3 uploads per user (gravatar, system and custom) user can then pick which they want.	2014-05-27 10:08:03 +10:00
Neil Lalonde	6e0eb89697	Don't show suspended users in autocomplete fields unless you are staff	2014-05-13 11:44:15 -04:00
Louis Rose	1574485443	Perform the where(...).first to find_by(...) refactoring. ... This refactoring was automated using the command: bundle exec "ruby refactorings/where_dot_first_to_find_by/app.rb"	2014-05-06 14:41:59 +01:00
Neil Lalonde	f61f29439e	Track the ip address where user was registered	2014-04-29 14:37:56 -04:00
Vikhyat Korrapati	b4e037dfb2	Allow badges to be marked as "titleable".	2014-04-28 10:30:38 +05:30