512922d776
SECURITY: Add filename validation for backup uploads.
2016-09-16 11:58:14 +08:00
e6fcaadd45
FIX: redirects back to origin for SSO and omniauth login
2016-09-16 13:48:50 +10:00
25a82e7d22
PERF: only publish notification state if we changed it
...
also publish seen_notification_id so we can tell what is new and what is old
cleanup controller so it correctly checks user
fix bug around clearing notification when people click mark read
2016-09-16 12:02:19 +10:00
33578a2c17
FIX: always import avatars during SSO if they are missing
2016-09-16 09:45:00 +10:00
b9801d2e26
UX: add text near group flair settings explaining that flair only shows for a user's primary group
2016-09-15 17:39:47 -04:00
a74781fbbc
fix jslint error
2016-09-15 16:50:23 -04:00
d0ebde9d84
don't try to render flair if there's no primary group
2016-09-15 16:26:58 -04:00
e3e15182df
FEATURE: avatar flair on user cards
2016-09-15 16:15:18 -04:00
cd571b26ba
FIX: Allow Safe Redirections in Topic Embedding
2016-09-15 13:56:59 -04:00
5dbd6a304b
add search-container class to search page
2016-09-15 13:46:22 +05:30
baacb30ba1
FIX: Incorrect folder.
2016-09-15 15:20:07 +08:00
b0752b1f91
FIX: Don't bypass validations.
2016-09-15 10:15:17 +08:00
fe7883eeea
UX: don't allow user scaling in mobile view
...
on iOS 10 behavior of zoom restriction has changed.
This does not disable zooming on iOS 10 but it DOES stop it from randomly
zooming when you are composing
2016-09-15 07:36:16 +10:00
aa7c735d34
FIX: Improve selecting text over line breaks
2016-09-13 11:36:17 -04:00
06eb256d0a
FIX: blocking users should never hide all posts if they are trust level 1 or higher
2016-09-12 11:58:10 -04:00
7423140825
FIX: show event name in webhook headers
2016-09-12 17:48:54 +08:00
2d859ba0ed
FIX: user api should always be available to staff
2016-09-12 15:42:06 +10:00
b381d84dd9
FIX: tag search should not be case sensitive
2016-09-09 16:55:26 -04:00
1f5325e3f0
FIX: Only validate uploaded URLs if they change
2016-09-08 12:06:18 -04:00
19ddf95efa
FIX: add custom invite email templates
2016-09-08 00:54:48 +05:30
9609a47016
Ability to skip email validation via a plugin
2016-09-07 14:05:46 -04:00
acaac02673
Merge pull request #4423 from SafaAlfulaij/arabic_client_plural_rules
...
Add Arabic Pluralization Rules for Client
2016-09-06 11:22:21 -04:00
51854e56ac
Don't hide e-mail in settings behind email-in plugins
2016-09-06 14:23:43 +10:00
0fbb949af5
Merge pull request #4432 from tgxworld/migrate_upload_scheme_to_scheduled_job
...
FIX: Make `Jobs::MigrateUploadScheme` a scheduled job.
2016-09-06 08:39:27 +08:00
9ce61b4586
FEATURE: Webhooks.
2016-09-05 18:44:00 +08:00
aabb7a8592
FIX: DiscourseEvent should not be triggered from within the controller.
2016-09-05 15:58:04 +08:00
e4b75f604c
FIX: Make clean up upload script a safer task to run.
2016-09-05 10:06:02 +08:00
39e6cbc442
FIX: disable double submission which invalidates nonce
2016-09-04 16:05:25 +10:00
340874d345
FIX: post notifications in JSON so we properly support arrays and so on
2016-09-04 15:51:16 +10:00
422941a606
fix order of plugin template resolution
2016-09-02 12:55:11 -04:00
1d281e02c7
id is optional if already specified in header
2016-09-02 17:08:46 +10:00
be0fd5b4cc
FEATURE: allow user api key revocation for read only keys
2016-09-02 17:04:00 +10:00
1a4a0d7e89
FIX: Don't fail silently.
2016-09-02 11:59:03 +08:00
692ecff3eb
Revert "FIX: Don't fail silently."
...
This reverts commit baa6af93a281f3b00c47122fc8a2719fcbe84271.
2016-09-02 11:58:56 +08:00
baa6af93a2
FIX: Don't fail silently.
2016-09-02 11:53:53 +08:00
a869d861f4
FIX: Make Jobs::MigrateUploadScheme a scheduled job.
...
This reverts https://github.com/discourse/discourse/commit/9d8db11c
If the job fails during execution or if `SiteSetting.migrate_to_new_scheme`
has been set to `false`, the job will be considered as executed even
though the migration has not been completed. As a result, the job
will have to be executed manually which is not desirable.
2016-09-02 11:48:45 +08:00
efd7cbd887
Remove limit default.
...
Having the limit makes it harder to migrate all `Upload`/`OptimizedImage`
since the count has to be figured out and passed to the method.
2016-09-02 10:55:11 +08:00
0a39ba43ed
FIX: always respect avatar_force_update
2016-09-02 12:04:22 +10:00
211c374df6
Merge pull request #4213 from fantasticfears/sso
...
FIX: Importing user avatar when new user login by SSO
2016-09-01 18:05:18 -07:00
034dc52beb
UX: adjust to show all and stat period
2016-09-02 11:03:52 +10:00
1078d929cd
Revert "see if gtm automatically pushes pageview events without our own page-tracking code"
2016-09-01 13:28:04 -04:00
572713b801
see if gtm automatically pushes pageview events without our own page-tracking code
2016-09-01 12:16:54 -04:00
929730c008
FIX: properly insert images in markdown inline format (take 2)
2016-09-01 17:56:39 +05:30
54a1180140
FIX: properly insert images in markdown inline format
2016-09-01 11:55:40 +05:30
1d7df97c30
FIX: display old category style on mobile
2016-09-01 15:57:23 +10:00
18da378f9a
only perform the check on mobile view
2016-08-31 10:23:56 -04:00
0b20c0b581
check the plugin mobile/list dir for templates
2016-08-31 10:12:16 -04:00
90a0327fd2
FIX: Check against reserved usernames should be case insensitive.
2016-08-31 21:53:41 +08:00
282a4e1efb
FIX: remove from preload store so it is not cached forever
2016-08-31 14:07:31 +10:00
55fad7b339
FIX: missing avatars from categories page when ajax loaded
...
UX: display last poster on categories page instead of OP
2016-08-31 14:02:30 +10:00
