nodebb

异世界红茶馆的源码

You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Go to file

Julian Lam 512f6de6de feat: allow passwords with length > 73 characters (#8818 ) * feat: allow passwords longer than 73 characters Context: A bcrypt/blowfish limitation means that password length is capped at 72 characters. We can get around this without compromising on security by hashing all incoming passwords with SHA512, and then sending that to bcrypt. https://dropbox.tech/security/how-dropbox-securely-stores-your-passwords * feat: add additional test for passwords > 73 chars * fix: remove 'password-too-long' error message and all invocations * test: added test to show that a super long password won't bring down NodeBB * fix: remove debug log * Revert "fix: remove 'password-too-long' error message and all invocations" This reverts commit 1e312bf7ef7e119fa0f1bd3517d756ca013d5e79. * fix: added back password length checks, but at 512 chars As processing a large string still uses a lot of memory		4 years ago
.github	Github actions lint demo (#8812 )	4 years ago
.tx	refactor: ip-blacklist and post-queue language files	4 years ago
build	endpoint to download user attachments, #6441	7 years ago
install	feat: #8821 , allow guest topic views	4 years ago
logs	added daemon capability to ./nodebb start, npm start/stop scripts	11 years ago
public	Latest translations and fallbacks	4 years ago
src	feat: allow passwords with length > 73 characters (#8818 )	4 years ago
test	feat: allow passwords with length > 73 characters (#8818 )	4 years ago
.codeclimate.yml	tweak codeclimate settings	6 years ago
.editorconfig	Fix editorconfig syntax	10 years ago
.eslintignore	Remove sounds (#8617 )	4 years ago
.eslintrc	feat: allow multiple empty lines	5 years ago
.gitattributes	#3343	10 years ago
.gitignore	fix(#8828 ): web install templates now compiled (#8832 )	4 years ago
.jsbeautifyrc	format/jshint favourites.js	11 years ago
.jshintrc	update esversion	6 years ago
.mocharc.yml	fix: remove deprecated mocha.opts	5 years ago
CHANGELOG.md	chore: changing log to remove pre-release changelogs from changelog	4 years ago
Dockerfile	Update Dockerfile	5 years ago
Gruntfile.js	feat: merge improvements wip	5 years ago
LICENSE	Resolving issue #2 -- added GPLv3 license file and updated package.json	12 years ago
README.md	fix: update readme to include psql	4 years ago
app.js	feat: move export functions into child processes	5 years ago
commitlint.config.js	fix: updated commitlint config to allow longer subjects, because nobody anywhere uses an email client that limits subject lines to 72 characters	4 years ago
docker-compose.yml	Add docker-compose.yml (#7966 )	5 years ago
loader.js	Github actions lint demo (#8812 )	4 years ago
nodebb	CLI refactor with commander (#6058 )	7 years ago
nodebb.bat	Fix #7263 (#7264 )	6 years ago
renovate.json	chore: update renovate config to automatically merge non-major version bumps #yolo	4 years ago
require-main.js	Enable `require.main.require` in tests (#6896 )	6 years ago

README.md

NodeBB Forum Software is powered by Node.js and supports either Redis, MongoDB, or a PostgreSQL database. It utilizes web sockets for instant interactions and real-time notifications. NodeBB has many modern features out of the box such as social network integration and streaming discussions, while still making sure to be compatible with older browsers.

Additional functionality is enabled through the use of third-party plugins.

Screenshots

NodeBB's theming engine is highly flexible and does not restrict your design choices. Check out some themed installs in these screenshots below:

Our minimalist "Persona" theme gets you going right away, no coding experience required.

How can I follow along/contribute?

If you are a developer, feel free to check out the source and submit pull requests. We also have a wide array of plugins which would be a great starting point for learning the codebase.
If you are a designer, NodeBB needs themes! NodeBB's theming system allows extension of the base templates as well as styling via LESS or CSS. NodeBB's base theme utilizes Bootstrap 3 but themes can choose to use a different framework altogether.
If you know languages other than English you can help us translate NodeBB. We use Transifex for internationalization.
Please don't forget to like, follow, and star our repo! Join our growing community to keep up to date with the latest NodeBB development.

Requirements

NodeBB requires the following software to be installed:

A version of Node.js at least 12 or greater (installation/upgrade instructions)
MongoDB, version 2.6 or greater or Redis, version 2.8.9 or greater
nginx, version 1.3.13 or greater (only if intending to use nginx to proxy requests to a NodeBB)

Installation

Please refer to platform-specific installation documentation

Securing NodeBB

It is important to ensure that your NodeBB and database servers are secured. Bear these points in mind:

While some distributions set up Redis with a more restrictive configuration, Redis by default listens to all interfaces, which is especially dangerous when a server is open to the public. Some suggestions:
- Set bind_address to 127.0.0.1 so as to restrict access to the local machine only
- Use requirepass to secure Redis behind a password (preferably a long one)
- Familiarise yourself with Redis Security
Use iptables to secure your server from unintended open ports. In Ubuntu, ufw provides a friendlier interface to working with iptables.
- e.g. If your NodeBB is proxied, no ports should be open except 80 (and possibly 22, for SSH access)

Upgrading NodeBB

Detailed upgrade instructions are listed in Upgrading NodeBB

License

NodeBB is licensed under the GNU General Public License v3 (GPL-3) (http://www.gnu.org/copyleft/gpl.html).

Interested in a sublicense agreement for use of NodeBB in a non-free/restrictive environment? Contact us at sales@nodebb.org.