Daniël Klabbers
7c204c82ab
attempt to be more decisive on forcing the new user preferences
2019-11-13 14:35:42 +01:00
Daniël Klabbers
12fff33763
started refactoring the User class to the Notification Preference class
2019-10-28 10:27:38 +01:00
Daniël Klabbers
603367a41a
added followAfterReply to core
2019-10-25 22:38:30 +02:00
luceos
6bdebfbf3c
Apply fixes from StyleCI
...
[ci skip] [skip ci]
2019-10-25 20:33:57 +00:00
Daniël Klabbers
58ab6052ad
reordered migrations
2019-09-28 21:02:45 +02:00
luceos
3737ce8146
Apply fixes from StyleCI
...
[ci skip] [skip ci]
2019-07-09 20:17:16 +00:00
Daniël Klabbers
ca5404db76
Merge branch '1236-user-preferences' of github.com:flarum/core into 1236-user-preferences
2019-07-09 22:17:00 +02:00
Daniël Klabbers
d6fc3a91a6
removed references to preferences column, now we need to refactor how notification ppreferences is integrated into the current app
2019-07-09 22:16:51 +02:00
luceos
31134ca16d
Apply fixes from StyleCI
...
[ci skip] [skip ci]
2019-07-09 19:42:15 +00:00
Daniël Klabbers
6cfc9182f4
added the drop column statement for user.preferences and tested migrations
2019-07-09 21:41:57 +02:00
Daniël Klabbers
caa63107ad
add migration to drop preferences column
2019-07-09 21:22:37 +02:00
Daniël Klabbers
0acab8f1c7
Merge branch 'master' into 1236-user-preferences
2019-07-09 21:19:41 +02:00
Daniël Klabbers
b2dbb0439c
fixed class property hint for event post content attribute
2019-07-09 08:31:48 +02:00
Daniël Klabbers
085c924a07
fix return type hint for event post content attribute
2019-07-09 08:30:10 +02:00
David Sevilla Martín
f31f02d4cc
Set Whoops middleware HTTP status to error code ( #1648 )
...
* Use error code for HTTP status, defaults to 500
* Use logic from HandleErrorsWithView, make sure status is valid
2019-07-07 14:57:40 +02:00
Daniël Klabbers
797f6eea50
moved GetDisplayName event to User namespace ( #1768 )
2019-07-06 19:27:44 +02:00
Franz Liedke
9fb3a31b51
Get rid of unnecessary method
2019-07-06 02:25:06 +02:00
Franz Liedke
f8061bbca1
Remove deprecated bootstrap.php fallback
...
Closes #1557 .
2019-07-06 02:11:09 +02:00
Franz Liedke
de67927ef2
Travis: Allow PHP 7.4 to fail for now
...
We are currently experiencing issues due to Mockery not yet being 100%
compatible with PHP.
See https://github.com/mockery/mockery/pull/980 .
2019-07-06 01:56:54 +02:00
Franz Liedke
8c841c3266
Update test libraries
2019-07-06 01:49:55 +02:00
Franz Liedke
2f656146a7
Travis: Test against the upcoming PHP 7.4
2019-07-06 01:30:59 +02:00
Franz Liedke
d66d2aa26e
Convert more helpers in tests
2019-07-06 01:30:59 +02:00
Franz Liedke
f4c0d4ba87
Type hint contract, not implementation
2019-07-06 01:30:58 +02:00
Franz Liedke
646bd40bca
Use Laravel's class-based Str and Arr helpers
...
Starting with version 5.9, the global funtions will be deprecated.
* https://laravel-news.com/laravel-5-8-deprecates-string-and-array-helpers
* https://github.com/laravel/framework/pull/26898
2019-07-06 01:30:58 +02:00
Franz Liedke
307b912019
Issue templates: Remove vulnerability information
...
GitHub now automatically displays this information (or rather, links to
the Security Policy) at the issue type selection page.
2019-07-06 00:08:55 +02:00
Franz Liedke
cbc896eba7
Use class constant instead of strings
2019-07-06 00:03:25 +02:00
Franz Liedke
cc4e4a068b
Add descriptions to custom Composer scripts
2019-07-05 23:34:23 +02:00
David Sevilla Martín
a720f6f651
Update Application version string to beta 9 ( #1784 )
2019-07-05 12:37:02 +02:00
flarum-bot
54d7c0d3b6
Bundled output for commit b5876d9f31
[skip ci]
2019-06-27 19:23:54 +00:00
David Sevilla Martín
b5876d9f31
Merge pull request #1803 from flarum/ds/1777-previous-route-default
...
Visit home page if previous route does not exist when going back in history
2019-06-27 15:17:41 -04:00
David Sevilla Martín
25ef4c10bd
Update CHANGELOG.md
2019-06-27 15:07:53 -04:00
David Sevilla Martín
985b87da6c
Visit home page if no previous route exists
...
Fixes #1777
2019-06-27 14:58:05 -04:00
Daniël Klabbers
a6aa28566c
added changelog item for mediumText fix in posts.content
2019-06-24 14:57:13 +02:00
Daniël Klabbers
e3340ba3e1
Merge branch 'master' of github.com:flarum/core
2019-06-24 14:55:05 +02:00
Daniël Klabbers
590b311570
fixes #1801 , increasing the size of posts.content to mediumText correctly
2019-06-24 14:53:56 +02:00
Daniël Klabbers
935a968257
fixed tests on master, missing views directory and suppressing notices from tempnam when storing files in tmp
2019-06-24 13:00:36 +02:00
Daniël Klabbers
fe558eb0ba
Merge branch 'master' into advisory-fix-1
2019-06-24 12:53:37 +02:00
Daniël Klabbers
fda9cba4ce
Merge branch 'master' of github.com:flarum/core
2019-06-24 10:49:39 +02:00
Daniël Klabbers
89f6cfd949
removed link to home, go back, which is always the case with csrf token invalidation
2019-06-24 10:49:31 +02:00
Daniël Klabbers
803582c437
Apply fixes from StyleCI ( #1800 )
...
[ci skip] [skip ci]
2019-06-24 09:15:15 +02:00
Franz Liedke
8e86d38804
Merge pull request from GHSA-3wjh-93gr-chh6
...
* Integration tests: Memoize request handler as well
This is useful to send HTTP requests (or their PSR-7 equivalents)
through the entire application's middleware stack (instead of
talking to specific controllers, which should be considered
implementation detail).
* Add tests for CSRF token check
* Integration tests: Configure vendor path
Now that this is possible, make the easy change...
* Implement middleware for CSRF token verification
This fixes a rather large oversight in Flarum's codebase, which was that
we had no explicit CSRF protection using the traditional token approach.
The JS frontend was actually sending these tokens, but the backend did
not require them.
* Accept CSRF token in request body as well
* Refactor tests to shorten HTTP requests
Multiple tests now provide JSON request bodies, and others copy cookies
from previous responses, so let's provide convenient helpers for these.
* Fixed issue with tmp/storage/views not existing, this caused tmpname to notice.
Fixed csrf test that assumed an access token allows application access, which is actually api token.
Improved return type hinting in the StartSession middleware
* Using a different setting key now, so that it won't break tests whenever you re-run them once smtp is set.
Fixed, badly, the test to create users etc caused by the prepareDatabase flushing all settings by default.
* added custom view, now needs translation
2019-06-24 09:14:38 +02:00
Daniël Klabbers
fd66722945
added custom view, now needs translation
2019-06-22 19:40:20 +02:00
Daniël Klabbers
ce42b5e035
Using a different setting key now, so that it won't break tests whenever you re-run them once smtp is set.
...
Fixed, badly, the test to create users etc caused by the prepareDatabase flushing all settings by default.
2019-06-18 17:45:29 +02:00
Daniël Klabbers
bfd3a667dd
Fixed issue with tmp/storage/views not existing, this caused tmpname to notice.
...
Fixed csrf test that assumed an access token allows application access, which is actually api token.
Improved return type hinting in the StartSession middleware
2019-06-18 17:22:23 +02:00
Daniël Klabbers
b669490d33
Update CHANGELOG.md
...
clarifying reason for change on the `like` fix
2019-06-13 09:13:31 +02:00
Franz Liedke
ba956f51ac
Update changelog
2019-06-13 01:03:39 +02:00
Franz Liedke
c126b95451
Refactor tests to shorten HTTP requests
...
Multiple tests now provide JSON request bodies, and others copy cookies
from previous responses, so let's provide convenient helpers for these.
2019-06-13 00:13:59 +02:00
Franz Liedke
7f7484e790
Accept CSRF token in request body as well
2019-06-13 00:13:58 +02:00
Franz Liedke
5d64056e89
Implement middleware for CSRF token verification
...
This fixes a rather large oversight in Flarum's codebase, which was that
we had no explicit CSRF protection using the traditional token approach.
The JS frontend was actually sending these tokens, but the backend did
not require them.
2019-06-13 00:13:58 +02:00
Franz Liedke
e927254e99
Add tests for CSRF token check
2019-06-13 00:13:57 +02:00