jaculabilis/danbooru
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
5,188 Commits 1 Branch 0 Tags
c3fa653fc54b4a7156350ec317e5ec40ecde416e
Commit Graph

5188 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
evazion
daf1324ab2 Refactor available_min_user_levels to view helper. 2016-11-28 01:36:59 -06:00
evazion
1d3ec05348 Fix nil exception on if help:upload_notice doesn't exist. 2016-11-21 01:40:37 -06:00
evazion
961fb94adf Pull flag notice from help:flag_notice wiki page (fix #2767). 2016-11-21 01:30:01 -06:00
evazion
5909e8501c Pull upload notice, bookmarklet notice from help:upload_notice wiki page. 2016-11-21 01:17:15 -06:00
evazion
12dd0f3a48 Pool/favgroup orders: include post id in hidden post placeholder. 
This is so hidden posts are distinguishable from one another.
 2016-11-20 06:21:51 +00:00
evazion
f073e14574 Don't display hidden posts on pool/favgroups order pages (fix #2762). 2016-11-20 06:06:29 +00:00
evazion
b2a6cf070c Use raw note body instead of sanitized body for note edit box. 2016-11-19 21:33:26 -06:00
evazion
3eafc5ae6a Don't clobber image board sources. 2016-11-19 02:29:33 -06:00
Albert Yi
77e06b6c08 increase unicorn backlog 2016-11-18 16:40:55 -08:00
Albert Yi
67c374f272 fix relative links in at mentions 2016-11-18 11:42:49 -08:00
Albert Yi
0b9c1e1156 Merge pull request #2759 from evazion/fix-dmail-filters 
Don't filter dmails from moderators; fix dmail filter exploit.
 2016-11-14 16:27:17 -08:00
Albert Yi
536ba3c7ee fixes #2756: Have @Mentions Use Relative Instead of Absolute Links 2016-11-14 10:15:11 -08:00
evazion
47f663e002 Don't filter dmails from moderators (fix #2757). 2016-11-12 01:11:40 -06:00
evazion
b0a0a32173 API: support PUT /maintenance/user/dmail_filter.json. 2016-11-12 01:10:14 -06:00
evazion
a16b91e2bf Fix exploit allowing dmail filters to be set on other users. 
Exploit:

    curl \
      -u $USERNAME:$API_KEY \
      -X PUT "http://danbooru.donmai.us/maintenance/user/dmail_filter.json?dmail_id=1" \
      -d "dmail_filter[words]=owned&dmail_filter[user_id]=2"

...where dmail_id is any dmail you own (doesn't matter which) and user_id is the victim.
 2016-11-12 01:10:14 -06:00
evazion
2dadad395b Add test for setting dmail filters on other people. 2016-11-12 01:10:14 -06:00
Albert Yi
30899b7d3b Merge pull request #2753 from evazion/feat-autotag-cosplay 
Autotag character_(cosplay) -> character, cosplay.
 2016-11-11 16:48:30 -08:00
Albert Yi
ed6b48b0bc Merge pull request #2754 from evazion/fix-comment-selfvotes 
Prevent users from upvoting their own comments.
 2016-11-11 16:46:50 -08:00
Albert Yi
4f26d97d6a tweak unicorn config 2016-11-07 15:24:52 -08:00
Albert Yi
c075b011b6 upgrade unicorn version 2016-11-07 15:00:28 -08:00
Albert Yi
cbc96a6c03 re-enable preload app on unicorn 2016-11-07 10:52:07 -08:00
Albert Yi
eb6746a8a8 additional checks on forum topic visibility 2016-11-07 10:48:04 -08:00
Albert Yi
a22a7c3302 bulk revert 2016-11-07 10:48:04 -08:00
r888888888
619beb00af production unicorn changes 2016-11-07 03:24:34 -08:00
evazion
1047d7c96b Prevent users from upvoting their own comments. 2016-11-06 01:32:54 -06:00
evazion
f02a31a447 Autotag character_(cosplay) -> character, cosplay. 
Make e.g. hatsune_miku_(cosplay) automatically add hatsune_miku and cosplay.

Perform autotagging after aliasing so that *_(cosplay) aliases (e.g.
hestia_(dungeon)_(cosplay) -> hestia_(danmachi)_(cosplay)) can take
effect first.
 2016-11-04 23:37:28 -05:00
Albert Yi
898f3b105d Merge pull request #2752 from evazion/fix-bur-implications 
Fix BURs posting approval message for every implication.
 2016-11-02 16:55:52 -07:00
evazion
c2e026e55b Fix BURs posting approval message for every implication. 2016-11-02 16:12:53 -05:00
Albert Yi
4e48e80e1f stub in preview for bulk revert 2016-11-02 13:53:01 -07:00
Albert Yi
91793fff82 fixes #2731: Expunged posts should clear favorite groups 2016-11-01 13:44:36 -07:00
Albert Yi
cb1c694074 fix test 2016-11-01 13:28:31 -07:00
Albert Yi
2dbb869188 keep track of post approvals to prevent approval cycles 2016-10-31 17:51:44 -07:00
Albert Yi
03fd48c989 Merge pull request #2749 from evazion/fix-private-topic-ambiguous-column 
Fix AmbiguousColumn exception in /forum_posts?search[creator_id]=1
 2016-10-31 15:27:57 -07:00
evazion
f46d055218 Fix AmbiguousColumn exception in /forum_posts?search[creator_id]=1 2016-10-31 17:11:52 -05:00
evazion
6a9b68022a Test /forum_posts?search[creator_id]=1. 2016-10-31 17:11:52 -05:00
Albert Yi
32409d542a Merge pull request #2748 from evazion/fix-note-saving 
Fix notes appearing unsaved after saving them (fix #2747)
 2016-10-31 12:22:54 -07:00
Albert Yi
a862c5bf03 fixes #2746: Uploading from touch.pixiv.net broken 2016-10-31 12:22:32 -07:00
evazion
00da01ea3e Remove unused NotesController#pass_html_id. 
Dead code as far as I can tell. According to `git log -p -G "X-Html-Id"`
was added in 2011 and never used. HTML id is passed to javascript in the
JSON response to `POST /notes.json` instead.
 2016-10-31 01:37:49 +00:00
evazion
9c188ff0cb Fix notes appearing unsaved after saving them. 
Bug: creating a note then saving it doesn't remove the red border
indicating it's unsaved.

Broken by 8df1496 / PR #2729.

Ref: http://danbooru.donmai.us/forum_topics/13348.
 2016-10-31 01:25:09 +00:00
Albert Yi
54671dd866 Merge pull request #2745 from evazion/fix-private-topics 
Fix listing private topics in /forum_posts; fix private topic bumping
 2016-10-30 16:33:48 -07:00
evazion
18d2d0b6b8 Fix private forum topic bumping for users below min level. 2016-10-30 18:00:26 -05:00
evazion
5d54ba5096 Fix listing private topics in /forum_posts. 
Fix an exploit allowing viewing of private topics with

  http://danbooru.donmai.us/forum_posts
 2016-10-30 18:00:26 -05:00
evazion
4e9f7391e6 Test private topics don't bump forum. 2016-10-30 18:00:26 -05:00
evazion
88a8c02f4c Test /forum_posts doesn't list private forum topics. 2016-10-30 18:00:26 -05:00
Albert Yi
60eebd9608 fix chaining of hidden_attributes/method_attributes 2016-10-27 14:53:25 -07:00
Albert Yi
8d0781c27f fixes #2740: random mod queue autoredirects after 5 actions 2016-10-27 13:22:28 -07:00
Albert Yi
597d724832 add api limiter test 2016-10-27 10:48:59 -07:00
Albert Yi
8e87d41a3c Merge pull request #2739 from evazion/fix-tag-alias 
Fix "conflicting wikis" message; fix alias/implication approvers in BURs (#2715)
 2016-10-27 10:44:51 -07:00
Albert Yi
af49c9c46a Merge pull request #2741 from evazion/feat-upvote+locked-metatags 
Add locked:{rating,status,notes} + upvote:/downvote: metatags
 2016-10-27 10:29:40 -07:00
evazion
8672604ee7 Add upvote:/downvote: editing metatags. 2016-10-26 23:23:47 -05:00