Julian Lam
aa8914a153
feat: v3 user email tests
2022-02-04 10:20:46 -05:00
Julian Lam
d1b1f50bb2
test: stricter isValidationPending check
2022-02-04 10:20:46 -05:00
Julian Lam
e747998cba
test: fix user tests calling deprecated socket methods
2021-12-22 10:59:36 -05:00
Barış Soner Uşaklı
1f063058f0
breaking: remove socket.emit('user.exists')
...
remove socket.emit('user.deleteAccount')
remove socket.emit('user.follow')
remove socket.emit('user.unfollow')
remove socket.emit('user.saveSettings')
2021-12-14 12:05:12 -05:00
Barış Soner Uşaklı
6b45dee9c5
breaking: remove socket.emit('user.changeUsernameEmail')
...
remove socket.emit('user.changePassword')
remove socket.emit('user.updateProfile')
2021-12-13 20:10:45 -05:00
Barış Soner Uşaklı
6d95684bc8
breaking: remove socket.emit('user.changePicture')
2021-12-12 11:53:00 -05:00
Barış Soner Uşaklı
0d694c781c
breaking: remove socket.emit('user.search')
2021-12-12 11:38:15 -05:00
Barış Soner Uşaklı
a8afdc6019
fix : #10069 , don't modify fields array
...
use a single setObjectFields for the profile update
2021-12-08 18:38:02 -05:00
Barış Soner Uşaklı
830166d120
fix : #10067 , count posts instead of incr/decr
2021-12-07 18:40:23 -05:00
Barış Soner Uşaklı
6dcdf1d342
breaking: remove setTopicSort/setCategorySort
2021-11-23 18:45:30 -05:00
Barış Soner Uşaklı
f11bc33ac5
test: digest
2021-11-22 21:22:44 -05:00
Barış Soner Uşaklı
c5f08fdc81
breaking: remove socket.io/flags.js
...
refactor: helpers.loginUser returns a single object {jar, csrf_token}
2021-11-22 19:23:51 -05:00
Barış Soner Uşaklı
fb363957d1
refactor: tab rules
2021-11-18 16:42:18 -05:00
Julian Lam
b912a564e3
fix: accidentally not clearing email when said email is confirmed for a different uid
2021-11-08 15:16:48 -05:00
Julian Lam
8cbad61e8a
test: added test for external image via new change picture API
2021-09-03 16:59:42 -04:00
Julian Lam
caf8968791
fix: accidental early return in confirmByCode, tests, race condition
...
A race condition caused mongo/psql tests to fail.
2021-07-30 13:29:13 -04:00
gasoved
a917210c5b
feat: invites no longer require email
2021-07-30 13:29:13 -04:00
Julian Lam
81611ae1c4
fix(emails): broken test for api/user/email/:email
...
+ fixed broken tests due to unexpected behaviour for email confirmation
2021-07-30 13:29:13 -04:00
Julian Lam
087e6020e4
refactor(email): validation checking methods, +tests fix
2021-07-30 13:29:13 -04:00
Julian Lam
a3a3b10fb3
test(emails): fixing broken tests introduced by e5ff68acd
2021-07-30 13:29:13 -04:00
Julian Lam
12b2a979a0
feat: removal of emailExists socket listener
2021-07-30 13:29:13 -04:00
Julian Lam
0960a81468
fix: tests
2021-07-09 12:24:32 -04:00
gasoved
97c8569a79
fix: hide private user data in api/v3/users/[uid]
2021-06-30 17:02:38 -04:00
gasoved
8168c6c407
fix: purge uploaded images accordingly #9606 ( #9611 )
...
* fix: purge uploaded images accordingly
* fix: tests
* fix: relative paths
2021-06-18 09:21:23 -04:00
Julian Lam
5c42b3eab0
test: fixed broken tests from #9605 , removed token clean on token usage as it is superceded by token clean on generation (+ associated test)
2021-06-11 15:43:03 -04:00
Barış Soner Uşaklı
308252f566
fix : #9503 , dont error in markUnread if room doesnt exist
...
this prevents deleting the user if they are the only person in the chat room
2021-04-23 14:46:54 -04:00
Barış Soner Uşaklı
8ef38cb252
test: add missing test
2021-03-11 10:39:36 -05:00
Barış Soner Uşaklı
0af9d26fe5
feat: change uploadCroppedPicture to use updateProfile as well
2021-03-03 17:14:55 -05:00
Barış Soner Uşaklı
a598abcd8e
feat: use updateProfile for picture change
...
so it triggers action:user:updateProfile
2021-03-03 17:11:13 -05:00
Julian Lam
d3a9e76ae2
test(user): added additional tests for icon background colour
2021-02-19 11:38:48 -05:00
Peter Jaszkowiak
dab3b23575
chore: eslint no-var, vars-on-top
2021-02-08 18:06:44 -05:00
Peter Jaszkowiak
b56d9e12b5
chore: eslint prefer-arrow-callback
2021-02-08 18:06:44 -05:00
Peter Jaszkowiak
707b55b6a5
chore: eslint prefer-template
2021-02-08 18:06:44 -05:00
gasoved
53e0d4d2e0
feat: banned-users group
2021-02-03 15:22:44 -05:00
Barış Soner Uşaklı
647d3ba810
fix: removed methods
2021-01-27 17:36:58 -05:00
Julian Lam
f2a5cd0b67
fix: tests for #9217
2021-01-24 14:05:11 -05:00
Peter Jaszkowiak
2be396ff6e
fix: email testing and settings change from ACP
...
- changing email SMTP settings wouldn't apply the first time
- "Send Test Email" now will report emailer errors in most cases
2020-12-18 16:39:09 -05:00
Barış Soner Uşaklı
80de572aa1
feat: add user.email.confirmByUid for sso plugins
2020-12-10 20:25:48 -05:00
Barış Soner Uşaklı
557f0f5631
feat: use correct code
2020-11-29 22:41:19 -05:00
Barış Soner Uşaklı
f25000cb60
fix: pwd reset test
2020-11-29 22:30:40 -05:00
Barış Soner Uşaklı
5080f35752
fix : #8991 , logout on password reset, dont verify email if password expired
...
dont allow same password on reset
2020-11-29 21:55:07 -05:00
Barış Soner Uşaklı
e32cd31ec6
fix : #8918
2020-11-25 14:33:19 -05:00
gasoved
3ccebf112e
feat: invites regardless of registration type, invite privilege, groups to join on acceptance ( #8786 )
...
* feat: allow invites in normal registration mode + invite privilege
* feat: select groups to join from an invite
* test: check if groups from invitations have been joined
* fix: remove unused variable
* feat: write API versions of socket calls
* docs: openapi specs for the new routes
* test: iron out mongo redis difference
* refactor: move inviteGroups endpoint into write API
* refactor: use GET /api/v3/users/:uid/invites/groups
Instead of GET /api/v3/users/:uid/inviteGroups
* fix: no need for /api/v3 prefix when using api module
* fix: tests
* refactor: change POST /api/v3/users/invite
To POST /api/v3/users/:uid/invites
* refactor: make helpers.invite awaitable
* fix: restrict invite API to self-use only
* fix: move invite groups controller to write api, +tests
* fix: tests
Co-authored-by: Julian Lam <julian@nodebb.org >
2020-11-16 14:47:23 -05:00
Julian Lam
512f6de6de
feat: allow passwords with length > 73 characters ( #8818 )
...
* feat: allow passwords longer than 73 characters
Context: A bcrypt/blowfish limitation means that password length is capped at 72 characters. We can get around this without compromising on security
by hashing all incoming passwords with SHA512, and then sending that to bcrypt.
https://dropbox.tech/security/how-dropbox-securely-stores-your-passwords
* feat: add additional test for passwords > 73 chars
* fix: remove 'password-too-long' error message and all invocations
* test: added test to show that a super long password won't bring down NodeBB
* fix: remove debug log
* Revert "fix: remove 'password-too-long' error message and all invocations"
This reverts commit 1e312bf7ef
2020-11-06 08:40:00 -05:00
Barış Soner Uşaklı
a05905f196
performance improvements ( #8795 )
...
* perf: nconf/winston/render
cache nconf.get calls
modify middleware.pageView to call next earlier
don't call winston.verbose on every hook see https://github.com/winstonjs/winston/issues/1669
translate header/footer separately and cache results for guests
* fix: copy paste fail
* refactor: style and fire hook only log in dev mode
* fix: cache key, header changes based on template
* perf: change replace
* fix: add missing await
* perf: category
* perf: lodash clone
* perf: remove escapeRegexChars
2020-10-26 10:43:18 -04:00
Julian Lam
e98285dbbb
fix: reimplementing isPrivilegedOrSelfAndPasswordMatch
2020-10-15 21:45:57 -04:00
Barış Soner Uşaklı
84a179f48c
Merge branch 'master' of https://github.com/NodeBB/NodeBB
2020-10-15 20:51:55 -04:00
Julian Lam
222b4c9533
fix: broken tests from api change
2020-10-15 19:33:20 -04:00
Barış Soner Uşaklı
7d86be2bc2
fix: tests
2020-10-15 17:51:04 -04:00
Barış Soner Uşaklı
872bacf1c4
Admin/users ( #8762 )
...
* feat: wip admin/users
* feat: more work
* feat: more fixes
* feat: #8662 , verified/unverified user groups
* feat: add filter
* feat: change user search to use filters array
* refactor: remove unused search call
* fix: tests
* fix: cant join system groups
* fix: upgrade script
2020-10-13 22:42:50 -04:00
