5afd5de07d
feat: new accounts route to show most downvoted ('controversial') posts
3 years ago
d098e26f82
User Email and email validation API ( #10160 )
...
* feat: wip user emails api
* fix: allow admins with manage-users access to email confirmation api as well
* fix: wrong route path
* docs: openapi spec
3 years ago
d89fc44c03
fix: move authenticateRequest before interstitial and maintenance mode middlewares, allowed plugins to disable authentication on certain routes
...
fixes #10112
3 years ago
2fe53cf849
feat: `GET /api/v3/chats/:roomId/messages`
3 years ago
aaa6f752d0
refactor: put message api calls behind `/messages` prefix, #10097
3 years ago
fe17c94c35
feat: `DELETE /api/v3/chats/:roomId/users` and `DELETE /api/v3/chats/:roomId/users/:uid`
3 years ago
d62ee84637
feat: `POST /chats/:roomId/users`
3 years ago
6eea6451d2
feat: `GET /chats/:roomId/users` [breaking]
3 years ago
d5fd098ecf
feat: `POST /chats/:roomId/:mid` and `DELETE /chats/:roomId/:mid`
3 years ago
90fcbe4416
feat: middleware.assert.message
3 years ago
b292960594
feat: `GET /chats/:roomId/:mid`
3 years ago
f48ed3658a
feat: `PUT /chats/:roomId/:mid`
3 years ago
9a4fd5dc7e
feat: `PUT /api/v3/chats/:roomId`
3 years ago
eeffb9d978
feat: `POST /api/v3/chats/:roomId`
3 years ago
09cf9c7770
feat: `GET /api/v3/chats/:roomId`
3 years ago
40b4544e70
feat: `POST /api/v3/chats`, chat room creation, plus openAPI docs update
3 years ago
94bead71fe
feat: `GET /api/v3/chats`
3 years ago
02e878be72
feat: stub code for v3 chats api
3 years ago
c4042c70de
feat: #9506 , allow seeing and editing your queued posts
...
allow regular users access to post queue
allow regular users to edit their queued post/topic title
allow regular users to remove their post from post queue
ability to send a notification to user without removing from post queue
allow accessing single post queue items from notifications
3 years ago
cc3f82bc83
breaking: remove socket.emit('admin.categories.setPrivilege') and socket.emit('admin.categories.getPrivilegeSettings')
3 years ago
65c5504193
fix: 403/400/500 page not generating csrf_token
3 years ago
c5f08fdc81
breaking: remove socket.io/flags.js
...
refactor: helpers.loginUser returns a single object {jar, csrf_token}
3 years ago
5b42b6b369
API route for returning tracked analytics keys ( #10019 )
...
* feat: track metrics saved by NodeBB (and assoc. plugins), #9949
* feat: route to retrieve analytics keys, closes #9949
3 years ago
fb363957d1
refactor: tab rules
3 years ago
697dd37670
refactor: change category feed so it is not updated on every reply
...
allow cid query param for recent/top/popular feeds
3 years ago
485b6ced1d
fix: broken post uploads due to 6a976a9db0
3 years ago
0ee85d5a0b
fix : #9950 , rename account export routes to remove `uid/` prefix
3 years ago
60352eca54
fix: double invocation of authenticateRequest
3 years ago
6a976a9db0
fix : #9945 , call authenticateRequest middleware for mount points in /api
3 years ago
f4cf482a87
feat: show popular searches
3 years ago
04dab1d550
fix: token verify
3 years ago
d4da98404c
refactor: add missing helpers.tryRoute
3 years ago
ee0282f5aa
refactor: shorter middleware
3 years ago
92d1ee31e4
Add authenticateRequest middleware ( #9795 )
...
* Add authenticateRequest middleware
to Post routes
* Fix linting error
4 years ago
0a41741b7e
refactor: deprecate picture update socket call, new API routes for picture update
4 years ago
3df79683f5
feat: create folders in ACP uploads #9638 ( #9750 )
...
* feat: create folders in ACP uploads #9638
* fix: openapi
* test: missing tests
* fix: eslint
* fix: tests
4 years ago
c354cde347
fix : #9719 , only apply to non https
4 years ago
358ad74054
feat: closes #9684 , allow event deletion
...
fix: topic events appearing before necro messages
feat: add move topic event
feat: add ability to delete specific topic events via events.purge
4 years ago
d509a307f0
Remove some deprecated/unnecessary code ( #9688 )
...
* refactor: remove mkdirp promisify
* refactor: remove old session deletion API route
* refactor: remove middleware.isAdmin
* refactor: remove templateValues.config.bootswatchSkin
* fix: unused dependencies
4 years ago
cc6cbfcdc4
Flags API ( #9666 )
...
* feat: new routes for flags API
+ flag get
+ flag creation, migration from socket method
+ flag update, migration from socket method
* fixed bug where you could not unassign someone from a flag
* feat: tests for new flags API
added missing files for schema update
* fix: flag tests to use Write API instead of sockets
* feat: flag notes API + tests
* chore: remove debug line
* test: fix breaking test on mongo
4 years ago
a2400f6baf
fix: accidental unnecessarily strict conditional that effectively rendered SSO state checking opt-in instead of opt-out
4 years ago
286644d0b8
fix : #9592 , check session
4 years ago
3717df610a
fix: don't crash if session doesn't exist
4 years ago
d2960aeb09
feat: added GET user route for api v3
4 years ago
951e71a0e5
fix : #9567 fix tests
4 years ago
5215c30ade
fix : #9567 , use regular 404
4 years ago
1db8920b18
refactor: make debug handler async
4 years ago
2ea468daa3
test: clear cache between runs, require middleware later in helpers
4 years ago
a9978fcfd2
feat: rate limit file uploads
4 years ago
9c52fd2e74
fix : #9450 express session saved even if saveUninitialized explicitly passed in
4 years ago
Julian Lam
Barış Soner Uşaklı
uplift
gasoved
Opliko
psychobunny