Commit graph

3748 commits

Author SHA1 Message Date
Jeff Atwood
d688ef1b49 move security reporting up to the top 2013-07-30 13:59:30 -07:00
Jeff Atwood
c3f3c1a23f cross-links and copyedits 2013-07-30 13:57:15 -07:00
Neil Lalonde
882c1524f7 Strip trailing and leading spaces from category names 2013-07-30 16:48:45 -04:00
Neil Lalonde
277e4db2cb Use ellipsis in dashboard referred topics table. Add .overflow-ellipsis css helper. 2013-07-30 16:48:45 -04:00
Neil Lalonde
16cd3e2a53 Fix to allow admins to change the case of a someone's username 2013-07-30 16:48:45 -04:00
Jeff Atwood
2f95f60e40 add security note at bottom 2013-07-30 13:41:14 -07:00
Jeff Atwood
23d40b83e3 encourage getting master not latest-release 2013-07-30 13:26:08 -07:00
Jeff Atwood
4e59f2d122 update copy for self-deleted posts
still needs variable replacement for the 24 hours part
2013-07-30 13:16:13 -07:00
Neil Lalonde
06140740d0 Version checks: tolerate old version check data that can happen immediately after upgrading but forgetting to restart sidekiq/clockwork. Don't cache version check data along with other dashboard data. 2013-07-30 12:12:04 -04:00
Robin Ward
fc25da09e3 Revert "Remove RawDivView and use regular handlebars"
This reverts commit e7f349ff0f.
2013-07-30 11:20:11 -04:00
Sam
df3a4c05cd upgrade rack mini profiler
fixes for ruby 1.9.3
2013-07-30 17:36:34 +10:00
Sam
9749001b54 a much more robust qunit daemonizer 2013-07-30 14:15:20 +10:00
Sam
7e5c7f5987 fork web server, makes much more sense 2013-07-30 13:04:29 +10:00
Sam
5aa50699f0 tweak so more time for starup 2013-07-30 12:35:41 +10:00
Sam
85ddf73cf3 make qunit at least wait for a network connection 2013-07-30 12:32:12 +10:00
Sam
8ec6d0ea6c let's not run 3 queries, when a single query will do. 2013-07-30 09:54:29 +10:00
Neil Lalonde
7661a5fed2 Version bump to v0.9.5.2 2013-07-29 18:34:04 -04:00
Neil Lalonde
8ef771ad8d Use warning-sign icon instead of trash for nuke user buttons 2013-07-29 18:31:47 -04:00
Neil Lalonde
4fd5087f91 Add button to delete a spammer in the flag modal
Add SiteSettings: delete_user_max_age, delete_all_posts_max. Add delete spammer button to admin flags UI
Moderators can delete users too
2013-07-29 15:29:44 -04:00
Neil Lalonde
e076158789 Add ip_address, email, and context to staff_action_logs table. Context should usually be the url from which the staff member performed the action, but could be any string that describes what the staff member was doing when the action was performed. 2013-07-29 15:29:43 -04:00
Neil Lalonde
5f3e9131ed Deleting a user from admin user page has the option to also block signups from the same email address 2013-07-29 15:29:43 -04:00
Neil Lalonde
8cee3a9fcd Add a way to add email to block list when nuking a user 2013-07-29 15:29:43 -04:00
Neil Lalonde
5f8a130277 Add BlockedEmail, to block signups based on email. Track stats of how many times each email address is blocked, and last time it was blocked. Move email validation out of User model and into EmailValidator. Signup form remembers which email addresses have failed and shows validation error on email field. 2013-07-29 15:29:43 -04:00
Neil Lalonde
e25638dab0 add a way to delete posts and topics when deleting a user with UserDestroyer 2013-07-29 15:29:43 -04:00
Neil Lalonde
a8df9778b5 Rename AdminLog to StaffActionLog 2013-07-29 15:29:43 -04:00
Robin Ward
cc4ae05be3 Left in an extra function. 2013-07-29 14:56:59 -04:00
Robin Ward
1c17f409bd Remove an {{#if}} 2013-07-29 14:50:19 -04:00
Robin Ward
08ebaf926b Move deleted at into actions history, where it should be. 2013-07-29 14:46:25 -04:00
Robin Ward
323aea78e2 Remove unused PrependPostView 2013-07-29 14:19:35 -04:00
Robin Ward
e7f349ff0f Remove RawDivView and use regular handlebars 2013-07-29 14:17:03 -04:00
Robin Ward
b11e1f8b40 Added ember-renderspeed library for profiling rendering. Removed old probes stuff that
that was just profiling the run loop.
2013-07-29 12:52:09 -04:00
Sam
0e494c7303 Update SECURITY.md 2013-07-29 16:42:49 +10:00
Sam
3186535537 initial draft of security document 2013-07-29 16:26:49 +10:00
Jeff Atwood
412e600106 remove email footer font override
looks hideous to have mismatching body and footer fonts on anything
retina
2013-07-28 23:00:02 -07:00
Sam
22893e203a Merge pull request #1260 from sir-pinecone/reactivate-admin-refresh-btn
Fix auto-group refresh response so that ajax callback runs
2013-07-28 22:22:55 -07:00
Sam
56f7c18b09 Merge pull request #1259 from sir-pinecone/hide-admin-group-link-from-staff
hide groups nav link from non-admins
2013-07-28 22:22:09 -07:00
Sam
77494e201a Merge pull request #1258 from elo7/pt_BR
Added pt_BR user.change key value
2013-07-28 22:18:37 -07:00
Sam
aa6c92922d SECURITY: correct our CSRF implementation to be much more aggressive 2013-07-29 15:13:13 +10:00
Sam
4a20d09523 distributed memoizer added to ensure absolute duplicate posts don't get through
in case of an absolute dupe just return the memoized post

This works around issues with wordpress being crazy
2013-07-29 12:25:19 +10:00
Sam
1e107fd68a mock redis for mock redis goodness 2013-07-29 12:23:21 +10:00
Sam
896e493531 don't ever delete unprocessable emails 2013-07-28 09:54:15 +10:00
Robin Ward
a0cbbab37a FIX: Loading was broken on activity streams 2013-07-27 13:55:34 -04:00
Robin Ward
3a861c0823 FIX: Allow clicks on @names 2013-07-27 13:18:37 -04:00
Michael Campagnaro
aa7e96c0fa Fix auto-group refresh response so that ajax callback runs 2013-07-26 19:47:32 -04:00
Michael Campagnaro
16d5032143 hide groups nav link from non-admins 2013-07-26 18:58:50 -04:00
Sam
0320a5ae64 correct email styles 2013-07-27 08:09:32 +10:00
Robin Ward
01a6b45231 FIX: Can click on your own links again 2013-07-26 17:29:43 -04:00
Robin Ward
385b2fbde2 Some tests for the user stream 2013-07-26 17:09:54 -04:00
Robin Ward
5d66f6ed8e Minor fixes. Link directoy to user activity to avoid a redirect. 2013-07-26 15:56:29 -04:00
Robin Ward
e77ee1eaa8 Moved highestSeenByTopic to the Discourse.Session 2013-07-26 15:18:46 -04:00