mirror/php-flarum
1
0
Fork 0
mirror of https://github.com/flarum/core.git synced 2025-07-20 00:01:17 +02:00
Code Issues Releases Wiki Activity
1,693 Commits 87 Branches 54 Tags
cda00550aa9b2361d3d23be17432feae5aac14c7
Commit Graph

545 Commits

Author SHA1 Message Date
Toby Zerner
d55ba2c483 Merge branch 'sudo-mode' 
# Conflicts:
#	CHANGELOG.md
 2015-12-03 15:12:51 +10:30
Toby Zerner
32e9c0587c Overhaul sessions, tokens, and authentication 
- Use cookies + CSRF token for API authentication in the default client. This mitigates potential XSS attacks by making the token unavailable to JavaScript. The Authorization header is still supported, but not used by default.
- Make sensitive/destructive actions (editing a user, permanently deleting anything, visiting the admin CP) require the user to re-enter their password if they haven't entered it in the last 30 minutes.
- Refactor and clean up the authentication middleware.
- Add an `onhide` hook to the Modal component. (+1 squashed commit)
 2015-12-03 15:11:57 +10:30
Toby Zerner
95472a5d65 Fix some issues with dropdown positioning 2015-12-03 14:51:55 +10:30
Toby Zerner
d1d33cba44 Clean up 2015-12-03 14:51:35 +10:30
dcsjapan
b4926b532c Add third-level namespacing to deleted_user_text 2015-11-30 11:17:11 +09:00
dcsjapan
d462b36d71 Extract leftover strings 
Extracts strings that were missed previously in:
- Dashboard page of admin interface.
- Edit Custom CSS modal of admin interface.
- Settings modal of admin interface.
- Post activity list on user page of forum UI.
Hopefully there aren't any more!
 2015-11-28 17:14:22 +09:00
Franz Liedke
033a118e97 Rename HTTP method override header 
This is the name recommended by the JSON-API spec:
http://jsonapi.org/recommendations/#patchless-clients
 2015-11-26 17:43:32 +01:00
young
37917bf2c8 Fix #627 2015-11-26 02:03:00 +08:00
Toby Zerner
08034c0d9a Allow provision of an avatar URL to upload during sign up 
This can be used by authentication extensions (i.e. mirror Facebook/Twitter profile picture). Rough implementation, needs refactoring.
 2015-11-23 11:53:57 +10:30
Toby Zerner
7b0817900e Don't pad the body when the composer is positioned absolutely (on mobile) 2015-11-23 10:07:23 +10:30
Toby Zerner
11560342a2 Refactor composer preview logic 2015-11-23 08:47:16 +10:30
Toby Zerner
208e923c15 Fix composer preview button on mobile. closes #196 2015-11-21 13:16:25 +10:30
Toby Zerner
e8836bad46 Improve composer appearance/usability on mobile 
On mobile:
- Move submit button to right side of toolbar
- Move first header item to toolbar
- Size textarea correctly
 2015-11-21 13:16:05 +10:30
Toby Zerner
86dd1ac9f4 Make sure dropdowns stay within the viewport horizontally too 2015-11-20 12:35:07 +10:30
Toby Zerner
28c3877454 Add a "load more" button to the end of the post stream 
This is necessary if the page is viewed in a context with no scrolling, i.e. an auto-resizing iframe
 2015-11-20 12:35:07 +10:30
young
fb038867f7 Update LogInModal.js 2015-11-06 15:54:06 +08:00
Franz Liedke
2518cb2526 Fix another error handling regression 2015-11-05 14:17:48 +01:00
Toby Zerner
20a6229228 Release 0.1.0-beta.4 2015-11-05 16:29:13 +10:30
Toby Zerner
4439a42a26 Revert back button behaviour 
As of e69d277, the back button was no longer shown if the user came in directly to a discussion. This caused problems on mobile where it was kind of hard to get back home without the button.
 2015-11-05 16:24:04 +10:30
Toby Zerner
eef5101238 Use icon instead of "Discussions" text, fix bugs 
- Fix admin page crash
- Only show invisible pin button on desktop; hide it completely on ≤ tablet
 2015-11-03 15:54:06 +10:30
Toby Zerner
e69d277c87 Add label to back button, change behaviour 
The back button longer shows if the user hasn't actually navigated anywhere. e.g. if they come in directly to a discussion, it will be hidden.
 2015-11-03 15:54:05 +10:30
Toby Zerner
43c556f4a8 Release 0.1.0-beta.3 2015-11-03 10:01:52 +10:30
Toby Zerner
ef9e438981 Revert b198927; always attempt to parse JSON 
This way if there is a PHP error which outputs a 200 OK text/html response, Flarum will correctly show an error message.
 2015-10-31 14:49:14 +10:30
Toby Zerner
b86e0516fb Change ItemList API 2015-10-30 22:45:58 +10:30
Toby Zerner
b198927261 Only parse as JSON if appropriate content type 2015-10-29 17:52:52 +10:30
Toby Zerner
6d49bf1dae Solidify ItemList API 2015-10-29 17:52:52 +10:30
Toby Zerner
71bb3eadcd Extract method to get the permalink to a post 
Necessary so that the embed extension can override it.
 2015-10-27 12:09:24 +10:30
Toby Zerner
aea8b17175 Improve logic to see if post has been fully loaded 
Should fix #295 once and for all.
 2015-10-24 13:17:25 +10:30
Franz Liedke
73c02f66e7 Recompile JavaScript 2015-10-22 10:16:08 +02:00
Toby Zerner
b299bd36e8 Add flood control 
closes #271
 2015-10-22 16:57:48 +10:30
Toby Zerner
b482fb93c5 Clean up some old code 2015-10-22 12:25:22 +10:30
dcsjapan
c260d3557f Rename the key for the "Hidden" badge tooltip 
- Shortens the key name for consistency with `badge:` namespace.
- Revised YAML to follow.
 2015-10-22 09:31:13 +09:00
Toby Zerner
ee7bfddd4b More helpful avatar upload error messages 
ref #165, #118
 2015-10-22 10:40:38 +10:30
dcsjapan
605d501b50 Add namespacing for badges 
- Adds a `lib.badge` namespace to match extension handling.
 2015-10-21 16:30:53 +09:00
Toby Zerner
396de53322 Improve request error debug output 2015-10-21 10:47:07 +10:30
Toby Zerner
835e9e5d86 Remove app.trans shortcut 
Use `app.translator.trans` instead.
 2015-10-21 10:31:28 +10:30
Toby Zerner
3894e71f15 Fix translation keys 2015-10-21 10:27:09 +10:30
Toby Zerner
e7d8617ecc Merge branch 'key-adjustment' of https://github.com/dcsjapan/flarum-core into dcsjapan-key-adjustment 
# Conflicts:
#	js/forum/src/components/LogInModal.js
 2015-10-21 10:02:07 +10:30
Toby Zerner
5bec750f12 Change back to 401 error on invalid login 
See f2dbb96e84 (commitcomment-13866552)
 2015-10-21 09:04:58 +10:30
Toby Zerner
15b05b359d Fix bad filename 2015-10-20 22:52:47 +10:30
Toby Zerner
542d7dd543 Update broken bower resource paths 2015-10-20 22:48:32 +10:30
Toby Zerner
c82a48bfbb Revert error handling regression 2015-10-20 22:07:08 +10:30
dcsjapan
da428db02d Fix the double correction 
- Fixes one mangled app.translator call.
 2015-10-20 15:44:58 +09:00
dcsjapan
f520a8b9ac Add third tier to key namespacing 
- Changes all `app.trans` calls to `app.translator.trans` calls.
- Changes existing keys to [three-tier namespace structure](https://github.com/flarum/english/pull/12).
- Extracts additional strings for `lib:` namespace.
- Extracts two previously missed strings for EditGroupModal.js.
 2015-10-20 13:04:43 +09:00
Toby Zerner
ebb4623223 Remove behaviour where backspace re-focuses on title field 2015-10-20 12:49:19 +10:30
Toby Zerner
f2dbb96e84 Improve client XHR error handling 
The default XHR error handler produce an alert which is appropriate to the response status code. It can be overridden per-request (by specifying the `errorHandler` option) so that the alert can be suppressed or displayed in a different position (e.g. inside a modal).

ref #118
 2015-10-20 12:48:26 +10:30
Toby Zerner
a74c4ebd71 Add error handling to edit group modal 2015-10-19 15:44:00 +10:30
Toby Zerner
ed4be20be2 Only decrease unread count if notification is unread 
closes #590
 2015-10-19 15:27:46 +10:30
Toby Zerner
9e7c30044a Allow pluralisation of event post description 2015-10-16 12:50:12 +10:30
Toby Zerner
bc3fa5d451 Refactor translation and validation 
We now use Symfony's Translation component. Yay! We get more powerful pluralisation and better a fallback mechanism. Will want to implement the caching mechanism at some point too. The API is replicated in JavaScript, which could definitely use some testing.

Validators have been refactored so that they are decoupled from models completely (i.e. they simply validate arrays of user input). Language packs should include Laravel's validation messages.

ref #267
 2015-10-15 22:30:45 +10:30