f48ed3658a
feat: `PUT /chats/:roomId/:mid`
3 years ago
9a4fd5dc7e
feat: `PUT /api/v3/chats/:roomId`
3 years ago
eeffb9d978
feat: `POST /api/v3/chats/:roomId`
3 years ago
09cf9c7770
feat: `GET /api/v3/chats/:roomId`
3 years ago
40b4544e70
feat: `POST /api/v3/chats`, chat room creation, plus openAPI docs update
3 years ago
94bead71fe
feat: `GET /api/v3/chats`
3 years ago
02e878be72
feat: stub code for v3 chats api
3 years ago
4e1d421722
refactor: remove unused validator
4 years ago
c4042c70de
feat: #9506 , allow seeing and editing your queued posts
...
allow regular users access to post queue
allow regular users to edit their queued post/topic title
allow regular users to remove their post from post queue
ability to send a notification to user without removing from post queue
allow accessing single post queue items from notifications
4 years ago
bc7707aa88
fix : #9484 show user history only to admins and gmods
4 years ago
cbf198fe9b
lint: remove unused
4 years ago
cc3f82bc83
breaking: remove socket.emit('admin.categories.setPrivilege') and socket.emit('admin.categories.getPrivilegeSettings')
4 years ago
65c5504193
fix: 403/400/500 page not generating csrf_token
4 years ago
3dd681ebce
fix: error pages dont have config.csrf_token
4 years ago
404a877408
test: add missing tests
4 years ago
01bd8a8694
remove email only login ( #10030 )
...
* feat: remove ACP option for email-only logins
* feat: remove email-only login, upgrade script to fix config
4 years ago
5b42b6b369
API route for returning tracked analytics keys ( #10019 )
...
* feat: track metrics saved by NodeBB (and assoc. plugins), #9949
* feat: route to retrieve analytics keys, closes #9949
4 years ago
9245f71a66
fix: search crash
4 years ago
fb363957d1
refactor: tab rules
4 years ago
d5bfd51267
fix : #10010 , handle reverse sorting for topic events
...
dont add events to dom if sort is most votes
if sorting is reverse add new events after the main post or at the top instead of bottom
4 years ago
e368feef51
refactor: dont expost entire res._locals to client side
4 years ago
4b738c8cd3
refactor: cleanup info, better cpu usage %
4 years ago
2e623dd271
feat: #9967 , allow dropdowns in navigation
4 years ago
b916e42f40
feat: show number of events per type in acp
4 years ago
8c67031609
feat: show posts previews if enabled on mouse over
4 years ago
c7e078d495
refactor: dont save partial searches
4 years ago
80ea12c1c1
feat: new ACP option `emailPrompt`
...
... which allows administrators to disable the client-side prompt to
encourage users to enter or confirm their email addresses
4 years ago
6cfaea06f0
fix: undefined query showing in searches
4 years ago
0926ae6ecf
fix: api session revoke test
4 years ago
da64810a4a
fix: crash
4 years ago
a528790615
refactor: typo
4 years ago
ee8e048015
fix: move record to controller
4 years ago
f4cf482a87
feat: show popular searches
4 years ago
63572c23ce
fix: profile edit fields showing translated values
4 years ago
506c34a84d
refactor: simplified utilities API > login rout
...
Removed continueLogin override in favour of a simpler `redirectAfterLogin` override
Use passport to authenticate username and password instead of duplicated logic.
4 years ago
806a1e50d2
feat: utilities login API route now starts an actual login session, if requested
4 years ago
1d62bd6d7b
refactor: log error as well
4 years ago
73a9ca09c9
refactor: catch errors from buildHeader in error handler 🔥
4 years ago
f7967bdf68
feat: #8053 , biweekly digest option
4 years ago
6da3239230
refactor: less.render already returns promise
...
rename callback to next to match other controllers
4 years ago
8e6bd7e913
refactor: show full url on error log
4 years ago
27e53b42f3
feat: use unread icon in mobile
4 years ago
a0df389021
fix: dont show decimails on auto approva minutes
4 years ago
ac1b9692f2
fix: handle undefined returnTo on registerAbort
4 years ago
3605ac811d
fix: possible test fix for subfolder redirect
4 years ago
2add84a568
fix: remove unused translator
4 years ago
9f0e55ad3e
fix : #9819 , show same time info for ban
4 years ago
18252fb9a8
refactor: no regex
4 years ago
31a6d4b39a
fix: for subfolders
4 years ago
0236ea86ad
fix: req.path doesn't have full url
4 years ago
40c9fca918
fix : #9811 , send bodyClass on 403
...
use helpers.formatApiResponse for /api/v3 routes only
4 years ago
3ecbb624d8
fix: privileges added by plugins ( #9802 )
...
* fix: privileges added by plugins
when copying a categories privileges, privileges added by plugins will be copied as well
when purging a category privileges added by plugins will be purged as well
show plugin privileges in privileges.<categories/admin/global>.get
show plugin privileges in privileges.<categories/admin/global>.userPrivileges
show plugin privileges in privileges.<categories/admin/global>.groupPrivileges
* fix: typo
4 years ago
84ff1152f7
feat: headers for global privs #9717 ( #9762 )
...
* feat: headers for global privs #9717
* fix: don't spoil headers to adminPrivs
Co-authored-by: Julian Lam <julian@nodebb.org>
4 years ago
0a41741b7e
refactor: deprecate picture update socket call, new API routes for picture update
4 years ago
a48bbdbfe3
fix: errors from registerComplete
4 years ago
60de084475
fix: simplify logic for fullname and email blanking in user retrieval (getUserDataByUserSlug)
...
Previous logic seemed to match the logic used in privileges.users.canEdit, except
the latter allows plugins to modify the value.
4 years ago
72710b8040
fix : #9772 , regression from 70a04bc105
4 years ago
4ac701d747
fix: deprecate userData.showHidden as it is functionally equivalent to userData.canEdit
4 years ago
3df79683f5
feat: create folders in ACP uploads #9638 ( #9750 )
...
* feat: create folders in ACP uploads #9638
* fix: openapi
* test: missing tests
* fix: eslint
* fix: tests
4 years ago
794bf01b21
feat: allow changing default search in
4 years ago
9de64bf516
fix : #9698 , pass along query params in redirect
4 years ago
358ad74054
feat: closes #9684 , allow event deletion
...
fix: topic events appearing before necro messages
feat: add move topic event
feat: add ability to delete specific topic events via events.purge
4 years ago
42dbd40253
refactor: remove unused async
4 years ago
6b6a7d4b8a
refactor: remove waterfall
4 years ago
4a521ea218
fix: email update interstitial to not error on empty email field (on new registration)
4 years ago
70a04bc105
feat: removed registerAndLoginUserCallback local helper, added handling if a bad interstitial doesn't go away nor throw errors
4 years ago
0e05cbe1f7
feat: show instructional modal after email change request
4 years ago
324a12b6c3
feat: return back to profile after editing email
4 years ago
b3c916414b
feat: allow registration interstitial abort to also follow returnTo
4 years ago
f53fc1ad0b
feat: return generic 404 on invalid confirm code
4 years ago
a917210c5b
feat: invites no longer require email
4 years ago
81611ae1c4
fix(emails): broken test for api/user/email/:email
...
+ fixed broken tests due to unexpected behaviour for email confirmation
4 years ago
c4e3362bd3
feat(emails): restore ability for admins to edit a user's email address [breaking]
...
The edited user's email will be automatically confirmed
4 years ago
afd2d8dab1
feat(emails): pass req in to filter:registration.interstitial
4 years ago
7d115c8ef2
fix(emails): dont allow retrieving user data if showemail is false @julianlam
4 years ago
69c96dd23c
refactor(emails): more work in update email interstitial, interstitial skipping, email change on confirmation, deprecation of requireEmailConfirmation
4 years ago
f365bc4600
refactor(emails): interstitial for adding/updating email
4 years ago
74aaa0a926
feat: show different registration intersitial lead text on new account vs. existing
4 years ago
7c1d1c777b
refactor(emails): remove email validation on client and server side
4 years ago
340ccb2498
style: lint fix
4 years ago
d1959a258b
fix : #9670 return 4xx errors instead of 5xx on flag routes, when unauthenticated or not privileged [breaking]
4 years ago
cc6cbfcdc4
Flags API ( #9666 )
...
* feat: new routes for flags API
+ flag get
+ flag creation, migration from socket method
+ flag update, migration from socket method
* fixed bug where you could not unassign someone from a flag
* feat: tests for new flags API
added missing files for schema update
* fix: flag tests to use Write API instead of sockets
* feat: flag notes API + tests
* chore: remove debug line
* test: fix breaking test on mongo
4 years ago
4a56388ec3
feat: store topic tags in topic hash ( #9656 )
...
* feat: store topic tags in topic hash
breaking: remove color info from tags (use css)
* fix: remove unused tag modal
* fix: tag search
4 years ago
415416d2a7
fix: translate language keys if passed in to formatApiResponse
4 years ago
7036c3751e
feat: internationalize API error messages
4 years ago
a54a3ee1ca
fix: return proper API-style response if exception caught by error handler on v3 routes [breaking]
4 years ago
ff78969c2c
fix: lint
4 years ago
55d7e55867
fix: tests
4 years ago
6ed7e937ce
refactor: fix wording
4 years ago
47c8c69264
fix: keep query string on redirects
4 years ago
97c8569a79
fix: hide private user data in api/v3/users/[uid]
4 years ago
db65360c0d
fix(post-queue): moderatedCids is an array of numbers ( #9631 )
4 years ago
0d975bc4fb
fix: dont show system tags in whitelist dropdown to regular users
4 years ago
c92fc19b5c
fix : #9619 , add group chat filter to /notifications
4 years ago
46a454f194
feat: add bodyClass to 500 page
4 years ago
f9728aff2c
feat: clear reset tokens on successful login
4 years ago
8ea58432c9
feat: show ip on acp manage users
...
update url on search
show matching ip when searching by ip
add ip to export csv
4 years ago
6695927ea9
fix: pagination on acp users search
4 years ago
05cc7ccb60
feat: make undoTimeout configurable, closes #9599
4 years ago
816856b0c6
feat: introduce boolean res.locals flag to bypass session reroll (used by session-sharing)
...
The session reroll logic is still standard practice, but in some cases, it is not necessary or causes UX issues. An issue opened in session sharing (julianlam/nodebb-plugin-session-sharing#95 ) brought this to attention in that parsing the cookie to log in the user caused a reroll (as expected), but caused the session open on other tabs to be mismatched. If "re-validate" was turned on, it basically meant that it was not possible to use NodeBB with multiple tabs.
Session sharing now sets `reroll` to `false` if re-validate is enabled.
4 years ago
Julian Lam
Barış Soner Uşaklı
gasoved
Barış Soner Uşaklı
Anton Grigoryev
psychobunny