github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2024-11-23 21:10:17 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
cfb6199a95
discourse/spec
History
David Taylor cfb6199a95
FIX: Don't redirect XHR/JSON requests when login is required (#15093) 
When redirecting to login, we store a destination_url cookie, which the user is then redirected to after login. We never want the user to be redirected to a JSON URL. Instead, we should return a 403 in these situations.

This should also be much less confusing for API consumers - a 403 is a better representation than a 302.
2021-12-02 15:12:25 +00:00
..
components SECURITY: Remove ember-cli specific response from application routes (#15155) 2021-12-01 16:10:40 +00:00
fabricators SECURITY: Only show tags to users with permission (#15148) 2021-12-01 10:26:56 +08:00
fixtures FEATURE: Allow theme settings to request refresh (#15037) 2021-11-22 13:16:56 +01:00
helpers DEV: Remove xlink hrefs (#15059) 2021-11-25 15:22:43 +11:00
import_export
initializers FEATURE: A low priority filter for the review queue. (#12822) 2021-04-23 15:34:24 -03:00
integration FIX: Don't redirect XHR/JSON requests when login is required (#15093) 2021-12-02 15:12:25 +00:00
integrity DEV: Fix a flaky Onceoff spec (#13314) 2021-06-07 20:38:31 +02:00
jobs REFACTOR: Improve support for consolidating notifications. (#14904) 2021-11-30 13:36:14 -03:00
lib FEATURE: Replace Crawl-delay directive with proper rate limiting (#15131) 2021-11-30 12:55:25 +03:00
mailers DEV: Hash tokens stored from email_tokens (#14493) 2021-11-25 09:34:39 +02:00
models FIX: extract and fix overriding of usernames by external auth (#14637) 2021-12-02 17:42:23 +04:00
multisite FEATURE: Apply rate limits per user instead of IP for trusted users (#14706) 2021-11-17 23:27:30 +03:00
requests FIX: Don't redirect XHR/JSON requests when login is required (#15093) 2021-12-02 15:12:25 +00:00
script/import_scripts DEV: If disabled do not change setting after import (#12142) 2021-02-19 09:33:35 -07:00
serializers FEATURE: ability to add description to tags (#15125) 2021-12-01 09:18:56 +11:00
services FIX: extract and fix overriding of usernames by external auth (#14637) 2021-12-02 17:42:23 +04:00
support FEATURE: Apply rate limits per user instead of IP for trusted users (#14706) 2021-11-17 23:27:30 +03:00
tasks FIX: remove migrate_from_s3 task that silently corrupts data (#11703) 2021-01-17 22:33:29 +01:00
views/omniauth_callbacks
rails_helper.rb DEV: Load fabricators for plugins automatically. (#15106) 2021-11-30 15:55:45 +11:00
swagger_helper.rb DEV: Refactor the api docs for the user endpoint (#14377) 2021-09-20 10:04:57 -06:00