Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-11-06 14:05:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
25,796 Commits 75 Branches 483 Tags
a5cc5372cb15e500c9b5a174cb4047ea9c898b42
Commit Graph

12835 Commits

Author SHA1 Message Date
Barış Soner Uşaklı
1d3c0e5a2b fix: https://github.com/NodeBB/NodeBB/issues/11239 
parseInt uid received from req.body._uid or req.query._uid
 2023-01-30 11:48:10 -05:00
Barış Soner Uşaklı
6d819b056e fix: notif filter selecte field 2023-01-30 10:43:02 -05:00
Peter Jaszkowiak
f6c96948fe fix: import resolution within plugin modules (#11219) 
use module.exports = require('..')
export * from '..' didn't work in some cases
 2023-01-27 09:17:38 -05:00
Barış Soner Uşaklı
c3653bee60 Revert "fix: import resolution within plugin modules (#11200)" 
This reverts commit 89e059a084.
 2023-01-26 09:27:16 -05:00
Peter Jaszkowiak
89e059a084 fix: import resolution within plugin modules (#11200) 2023-01-24 19:59:06 -05:00
Julian Lam
937344b8a8 Merge remote-tracking branch 'origin/master' into develop 2023-01-23 16:06:21 -05:00
Barış Soner Uşaklı
0bffd3d93c fix: #11195, allow users with admin:users privilege to delete users in acp 2023-01-23 11:40:17 -05:00
Barış Soner Uşaklı
7d04e95226 fix: #11194, allow access to sub dashboard pages 2023-01-23 11:09:19 -05:00
Julian Lam
f295174e07 test: fix broken test 2023-01-23 09:58:51 -05:00
Julian Lam
38175b5e71 test: fix broken test 2023-01-21 14:34:01 -05:00
Julian Lam
fdc41646d1 feat: api v3 route to add email to user, optionally bypassing validation email, closes #11009 2023-01-21 14:22:34 -05:00
Julian Lam
eab5ab7ff9 Merge branch 'master' into develop 2023-01-19 15:39:02 -05:00
Julian Lam
459bc52338 fix: #11136, tests, and returning the proper number of arrays 2023-01-18 15:08:35 -05:00
Julian Lam
39e009c05a fix: #11136, only show mods of active categories when getModeratorUids is called 2023-01-18 14:47:10 -05:00
Barış Soner Uşaklı
747cb1f0a1 fix: closes #11173, clear require cache if wrong dependency is installed 2023-01-18 09:40:00 -05:00
Julian Lam
a69bc2cf7f fix: remove unneeded assignment, as req and locals will not likely ever be completely reassigned 2023-01-13 10:04:58 -05:00
Julian Lam
25ae58e8a0 fix: move call to filter:middleware.buildHeader out of parallel so that req can be overridden by plugins prior to loading config 2023-01-13 09:53:14 -05:00
Julian Lam
0a691e6744 fix: move call to filter:middleware.buildHeader out of parallel so that req can be overridden by plugins prior to loading config 2023-01-10 11:08:29 -05:00
Julian Lam
69806662e6 Session Timeout if "Remember Me" is not checked (#11125) 
* fix: convert loginDays and loginSeconds to number inputs

* feat: configurable session timeout for when "Remember Me" is not checked

closes #11124

* test: addition tests to check loginDays and sessionDuration settings

* test: also test loginSeconds override
 2023-01-05 14:10:02 -05:00
Julian Lam
a344e6ec0c Fix for #11119, restore password reset rate limiting (#11120) 
* chore: incrementing version number - v2.8.1

* chore: update changelog for v2.8.1

* fix: accidental clearing of reset rate limiting on reset send

* test: move user reset tests to its own file, add failing test for user reset locks

* fix: #11119, counter attempted flooding of user reset route

* test: fix password reset socket test to check for error now

* test: same user sending multiple reset emails

should work after waiting the correct amount of time

* lint: fixes

* chore: rename outdated `cleanTokensAndUids` method

* test: no need to create user for new test

Co-authored-by: Misty Release Bot <deploy@nodebb.org>
Co-authored-by: Barış Soner Uşaklı <barisusakli@gmail.com>
 2023-01-04 11:24:46 -05:00
Barış Soner Uşaklı
b81fd81af6 feat: fire filter:topics.getUnreadTids even if there are no urnead topics 2023-01-03 14:13:01 -05:00
Barış Soner Uşaklı
586eed1407 fix: vulnerability in socket.io nested namespaces (#11117) 2022-12-30 09:49:22 -05:00
Barış Soner Uşaklı
1ea9481af6 fix: lock post/reply similar to user.create 2022-12-25 15:05:15 -05:00
Opliko
de31cb1a4f feat: add force flag to plugin install in cli (#11089) 2022-12-21 17:00:35 -05:00
Julian Lam
9f531f957e refactor: flag states so that they are not hardcoded, allow plugins to add additional states, deprecated filter:flags.getFilters hook, closes #11065 2022-12-21 17:00:35 -05:00
Julian Lam
896493dbd6 fix: change hsts-maxage back to numeric input type, change API token uid input to numeric text type 2022-12-21 16:59:10 -05:00
Julian Lam
4314b8e201 Revert "fix: replace input type number with text/pattern" 
This reverts commit cde4c6ac7e.

The changeset was naive in the sense that a lot of the changes inputs actually work better as type="number".
 2022-12-21 16:59:10 -05:00
Julian Lam
2bc23a9526 fix: replace input type number with text/pattern 2022-12-21 16:59:10 -05:00
Julian Lam
33af2d9c18 feat: integrating basic client-side form validity checking in settings v1 and v2 2022-12-21 16:59:08 -05:00
Julian Lam
db8d3a94eb fix: change hsts-maxage back to numeric input type, change API token uid input to numeric text type 2022-12-14 14:22:30 -05:00
Julian Lam
d9852c3245 Revert "fix: replace input type number with text/pattern" 
This reverts commit cde4c6ac7e.

The changeset was naive in the sense that a lot of the changes inputs actually work better as type="number".
 2022-12-14 14:22:30 -05:00
Julian Lam
45ae31f816 fix: replace input type number with text/pattern 2022-12-14 14:22:30 -05:00
Julian Lam
dadbcd731c feat: integrating basic client-side form validity checking in settings v1 and v2 2022-12-14 14:22:30 -05:00
Manuel Valle
8c4d6bbebb Fix: categories.js not showing custom privileges (#10856) 
No shows correctly custom privileges in the Other section for a category.
 2022-12-09 10:13:38 -05:00
Barış Soner Uşaklı
07a0212571 fix: #11077, add admin uploads paths to priv mapping 
closes #11077
 2022-12-07 09:55:25 -05:00
Barış Soner Uşaklı
4efc19d5f1 feat: add ./nodebb install <plugin_name> 
will install the suggested version for current nodebb closes #11060
 2022-11-28 13:13:10 -05:00
Barış Soner Uşaklı
48d1439217 fix: prototype vulnerability in socket.io onMessage 2022-11-27 19:32:35 -05:00
Barış Soner Uşaklı
0e495f9ea4 fix: #11066, fix custom privilege/path in routePrefixMap 
will find most specific path
 2022-11-25 14:26:37 -05:00
Barış Soner Uşaklı
c7aa4ebf47 Merge branch 'master' into develop 2022-11-23 13:52:33 -05:00
Barış Soner Uşaklı
864fe0f971 feat: add permissions-policy header 2022-11-23 11:33:00 -05:00
Barış Soner Uşaklı
110311b25e fix: https://github.com/NodeBB-Community/nodebb-plugin-custom-pages/issues/68 
don't crash if template doesn't have any widgets set before
 2022-11-22 19:33:52 -05:00
Barış Soner Uşaklı
fc49665fe5 fix: https://github.com/NodeBB-Community/nodebb-plugin-custom-pages/issues/68 
don't crash if template doesn't have any widgets set before
 2022-11-22 19:30:58 -05:00
Barış Soner Uşaklı
bb82eb71e2 fix: #11052, add missing await 2022-11-21 13:37:35 -05:00
Julian Lam
10ba7b9ced Merge branch 'master' into develop 2022-11-16 12:16:26 -05:00
Barış Soner Uşaklı
abcfb63126 fix: #11044, allow banned users to post 
if given privileges
 2022-11-15 17:53:15 -05:00
Barış Soner Uşaklı
3c85b944e3 feat: allow groups to be exempt from maintenance mode 
closes #11030
 2022-11-11 16:23:00 -05:00
Barış Soner Uşaklı
6109061501 fix: check schedule privilege, closes #11032 2022-11-11 11:14:30 -05:00
Barış Soner Uşaklı
b34e859c1b refactor: don't prevent startup if staticDir is undefined 
https://community.nodebb.org/topic/16790/problems-with-upgrading-to-2-xx
 2022-11-10 13:31:51 -05:00
Julian Lam
97d8b53fd3 Merge branch 'master' into develop 2022-11-09 12:15:24 -05:00
Julian Lam
55a197a7d7 fix: check for csrf token on /register/abort, + theme changes for v2.x branches of themes 2022-11-09 12:00:59 -05:00