2cd55b1fa2
FIX: topics in private sub-categories were visible to everyone on the categories page
2014-06-16 15:12:14 -04:00
88b5e78424
Merge branch 'add_custom_embed_by_username' of github.com:justinleveck/discourse into justinleveck-add_custom_embed_by_username
...
Conflicts:
config/site_settings.yml
2014-06-16 10:52:15 -04:00
5ea1b0742f
Fix typo in XSS test
2014-06-16 08:40:19 +05:30
944cda1f73
BUGFIX: do not strip spaces from raw_hash of posts
2014-06-16 12:14:06 +10:00
fbbe9f7a19
collapse tests to improve perf of suite
2014-06-16 12:13:28 +10:00
d65efe7304
SECURITY: fix XSS
2014-06-16 10:24:54 +10:00
6e698315d6
Allow all /my URLs
...
Previously, URLs like /my/activity/posts were denied. This change allows those URLs.
2014-06-14 10:58:20 -07:00
a1482f24d9
remove borked test
2014-06-13 17:03:45 -07:00
679b3fab79
correct broken test, List-ID is correct
...
see http://www.ietf.org/rfc/rfc2919.txt
2014-06-13 16:45:34 -07:00
beaa145572
some email notification header fixes
2014-06-13 15:42:20 -07:00
c690fa0d19
FIX: Replace protocol relative URLs in emails
2014-06-13 17:11:04 -04:00
9ffd173873
move bio to UserProfile from User
2014-06-13 14:55:32 -04:00
ba65aa3f6c
Add a way to validate min and max value of an integer site setting
2014-06-12 18:04:37 -04:00
76166567fb
Use the cheap Defer queue as opposed to sidekiq for view tracking.
2014-06-12 11:29:29 +10:00
9611a1ac47
Validate username site settings
2014-06-11 16:20:57 -04:00
ce732d2252
FEATURE: new "disable_edit_notifications" site setting
...
Should be used whenever you activate the "download_remote_images_to_local" site setting to prevent users from receiving a lot of edit notifications from the system user.
2014-06-11 17:14:00 +02:00
03087679f0
FEATURE: Support custom preferences for users, injected by plugins
2014-06-11 15:50:37 +10:00
d13d4fc158
correct state leak
2014-06-11 12:00:02 +10:00
62abb873df
FEATURE: support serializing user custom fields by plugins
2014-06-11 11:57:22 +10:00
0781531e3c
Merge pull request #2415 from techAPJ/bulk-invite-users-5
...
FEATURE: Bulk Invite
2014-06-10 19:11:11 +02:00
a044e3de58
Remove min_posts_for_search_in_topic
...
no longer needed, we always search in topic
2014-06-10 15:07:38 +10:00
8b32fb5b6d
Corrected typo, corrected accidental tab, removed unnecessary database rollback
...
Corrected it "do send" to it "does send"
Removed unnecessary user.update_column (rollback happens automatically)
Replaced Tab with spaces.
2014-06-10 11:36:20 +08:00
c61462662b
Add ability to run validation on site settings. notification_email and other email address settings are now validated.
2014-06-09 16:59:20 -04:00
a78df3d57d
Add custom embed_by_username feature
...
Feature to allow each imported post to be created using a different discourse
username. A possible use case of this is a multi-author blog where discourse
is being used to track comments. This feature allows authors to receive
updates when someone leaves a comment on one of their articles because each of
the imported posts can be created using the discourse username of the author.
2014-06-09 12:35:38 -07:00
faed17aa18
Moderators should always be able to create topics too
2014-06-09 15:28:03 -04:00
f97d434174
Fix the spec for enum site settings
2014-06-09 15:28:03 -04:00
c176dc07c1
Merge pull request #2421 from peternlewis/reply_to_name
...
Use an appropriate name in the Reply-To header
2014-06-09 11:04:53 -04:00
4d50d0d109
FIX: admins should be able to create topics, even if min_trust_to_create_topic is higher than their trust level
2014-06-09 11:03:21 -04:00
87e254cc3a
Added test to ensure email is sent to users with email_always set even if the notification has been read
2014-06-09 19:09:36 +08:00
93f5f98b58
Corrected and added appropriate specs to confirm correct behaviour.
...
Tests ensure that the site name is used for public replies and the username is used for private replies.
2014-06-09 18:26:19 +08:00
727184641e
FEATURE: Bulk Invite
2014-06-09 01:43:39 +05:30
0a42901c40
do not use try in UserSerializer for fields coming from UserProfile
2014-06-07 13:30:35 -07:00
7db31adf35
move website from User to UserProfile
2014-06-06 21:54:32 -07:00
05ca1e6e46
Added code block normalization routing for import
2014-06-06 10:34:21 +10:00
0df666277d
BUGFIXES: properly deal with bookmarks and deleted posts
...
BUGFIX: removing a bookmark from the activity feed was busted for deleted posts
BUGFIX: delete associated user actions when deleting a post
2014-06-04 17:41:11 +02:00
e307bad89a
One less TODO makes me on little bit more happy
2014-06-04 14:10:54 +10:00
c6c412fd45
BUGFIX: no reading credit for posts you create
2014-06-04 14:10:54 +10:00
3e16ac62c3
Add register_color_scheme for plugins
2014-06-03 12:37:29 -04:00
3405253405
FEATURE: rush posting read times for newly read posts
...
FEATURE: "read" indicator on posts
CHANGE: anon is now assumed to have read everything
2014-06-03 11:48:52 +10:00
e087e37907
BUGFIX: blank name causes SSO to explode
2014-06-02 17:32:39 +10:00
0979e7b9af
BUGFIX: tracking categories was not implemented
2014-06-02 13:55:01 +10:00
106838b92b
Correct invalid spec
2014-05-30 14:48:07 +10:00
95221ee9c1
rebake based on version, not date
2014-05-30 14:45:55 +10:00
fa6f22dd39
Move letter avatars out of upload system
...
FIX: S3 issues around system avatars
FIX: reduced backup file size
2014-05-30 14:45:55 +10:00
fe594f5d1e
Merge pull request #2372 from vikhyat/badge-system
...
Multiple grant badges
2014-05-30 10:18:00 +10:00
e6841d0849
FIX: user avatar urls need to be absolute in wordpress api
2014-05-29 17:19:49 -04:00
2ad756464e
SECURITY: TopicView not correctly restricting to topic
2014-05-29 21:56:26 +10:00
0bc3525b10
BUGFIX: more robust onebox implementation
2014-05-28 17:15:10 +10:00
d9f51961c4
BUGFIX: pick gravatar if it was just downloaded
...
BUGFIX: don't go rebaking unless all avatars are downloaded
2014-05-28 16:54:21 +10:00
f6753d3d46
FEATURE: automatically rebake out-of-date posts
2014-05-28 12:30:57 +10:00
