f1f9b225b0
feat: #8824 , cache refactor ( #8851 )
...
* feat: #8824 , cache refactor
ability to disable caches
ability to download contents of cache
refactor cache modules to remove duplicated code
* fix: remove duplicate hit/miss tracking
check cacheEnabled in getUncachedKeys
5 years ago
d263192271
feat: group exists API call in write api
5 years ago
1446cec77f
feat: user exist route in write api
5 years ago
6b196a207f
fix: permanent redirect on user api redirect shorthand
5 years ago
60e1e99b4f
feat: new shorthand route /api/v3/users/bySlug/:userslug
...
closes #8844
5 years ago
512f6de6de
feat: allow passwords with length > 73 characters ( #8818 )
...
* feat: allow passwords longer than 73 characters
Context: A bcrypt/blowfish limitation means that password length is capped at 72 characters. We can get around this without compromising on security
by hashing all incoming passwords with SHA512, and then sending that to bcrypt.
https://dropbox.tech/security/how-dropbox-securely-stores-your-passwords
* feat: add additional test for passwords > 73 chars
* fix: remove 'password-too-long' error message and all invocations
* test: added test to show that a super long password won't bring down NodeBB
* fix: remove debug log
* Revert "fix: remove 'password-too-long' error message and all invocations"
This reverts commit 1e312bf7ef7e119fa0f1bd3517d756ca013d5e79.
* fix: added back password length checks, but at 512 chars
As processing a large string still uses a lot of memory
5 years ago
c61dee4b62
fix : #8840 , don't crash if /compose route is called with no query params
5 years ago
9e3eb5d41a
feat: #8821 , allow guest topic views
5 years ago
891a1ea2af
fix : #8827 , do not require admin:users privilege to ban users
5 years ago
c0f699e655
fix: disallow registration attempts with password length > 4096
...
This is a stopgap measure for v1.15.0
5 years ago
6e85920cb6
feat: allow mods/admins to see deleted posts on user profile
5 years ago
266d7587b2
refactor: remove usage of middlewares
...
Specifically, middleware.isAdmin|exposePrivilegeSet|exposePrivileges
5 years ago
aa8faf58a0
refactor: remove /users/{uid}/settings/{setting} route
...
@baris Also, I am now allowing the following properties to be saved in User.saveSettings:
- categoryTopicSort
- topicPostSort
- setCategorySort
- setTopicSort
5 years ago
618e098305
fix: bug where token generation route would fail on null case
5 years ago
a05905f196
performance improvements ( #8795 )
...
* perf: nconf/winston/render
cache nconf.get calls
modify middleware.pageView to call next earlier
don't call winston.verbose on every hook see https://github.com/winstonjs/winston/issues/1669
translate header/footer separately and cache results for guests
* fix: copy paste fail
* refactor: style and fire hook only log in dev mode
* fix: cache key, header changes based on template
* perf: change replace
* fix: add missing await
* perf: category
* perf: lodash clone
* perf: remove escapeRegexChars
5 years ago
a7b6d0dfe5
feat: add free and total mem usage to info
5 years ago
c26f2b6599
feat(writeapi): user settings API
5 years ago
7bddec93ec
fix: sortby
5 years ago
b3619d3d47
fix : #8774
5 years ago
d9a16855d0
refactor: posts api
5 years ago
272e73da53
refactor: post restore/delete/purge
5 years ago
9738e20207
refactor: merge post.edit
...
fix: dont fadeout/fadeint if title/post didnt change
5 years ago
2279e37261
refactor: deprecate socket.emit('users.search') use api route
5 years ago
083c74e059
refactor: api categories
5 years ago
e78c498e84
fix: missing doTopicAction, fix wrong api params
5 years ago
bc880ee0ca
refactor: remove sockets.reqFromSocket
5 years ago
9ee3cb9b62
refactor: topic follow/ignore to use api lib
5 years ago
68d6818bca
refactor: topic tools' actions to use api lib
5 years ago
21974a77f8
feat: topic reply to use api lib (also + missing file)
5 years ago
40598b368e
refactor: topic creation to use api lib
5 years ago
ede9435f0e
feat: send 401 for invalid-uid
5 years ago
14f9d8b0e5
feat: send back 403 on no-privileges error
5 years ago
2d252f2fa4
refactor: user bans to use api lib
5 years ago
e367c5403e
refactor: move groups.leave, fix some tests
5 years ago
bbbd9fee85
Merge branch 'master' of https://github.com/NodeBB/NodeBB
5 years ago
960e925e40
refactor: change password/user follow to use api lib
5 years ago
081c4fa6d4
Merge branch 'master' of https://github.com/NodeBB/NodeBB
5 years ago
430e7f5834
refactor: user deletion to use api lib
5 years ago
8ae1f81cf4
feat: refactor groups.delete
5 years ago
31ae8a8323
refactor: socket profile update to use api lib
5 years ago
d69e503d21
feat: move groups.join to api
5 years ago
23086daead
refactor: user create and profile update to use api lib
5 years ago
5e2caf19f5
refactor: use single function for api code
5 years ago
25e4a09816
Merge branch 'master' of https://github.com/NodeBB/NodeBB
5 years ago
4418ff0716
fix : #8768
5 years ago
cc6e995ee2
fix: api bug where user profile editing continued even if not allowed
5 years ago
e6ea71c95a
fix: test
5 years ago
8c6a559188
fix: timestamp
5 years ago
331d236f6e
fix : #8763
5 years ago
a481024d27
fix: lastonline again
5 years ago
Barış Soner Uşaklı
Julian Lam
Barış Soner Uşaklı