jaculabilis/danbooru
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
6,294 Commits 1 Branch 0 Tags
da170aa4136525bc9a79d86480758e194812f931
Commit Graph

5321 Commits

Author SHA1 Message Date
evazion
0697af6d23 Fix #2771: Approving deleted image doesn't create mod action. 2016-11-28 02:50:07 -06:00
evazion
daf1324ab2 Refactor available_min_user_levels to view helper. 2016-11-28 01:36:59 -06:00
evazion
1d3ec05348 Fix nil exception on if help:upload_notice doesn't exist. 2016-11-21 01:40:37 -06:00
evazion
961fb94adf Pull flag notice from help:flag_notice wiki page (fix #2767). 2016-11-21 01:30:01 -06:00
evazion
5909e8501c Pull upload notice, bookmarklet notice from help:upload_notice wiki page. 2016-11-21 01:17:15 -06:00
evazion
12dd0f3a48 Pool/favgroup orders: include post id in hidden post placeholder. 
This is so hidden posts are distinguishable from one another.
 2016-11-20 06:21:51 +00:00
evazion
f073e14574 Don't display hidden posts on pool/favgroups order pages (fix #2762). 2016-11-20 06:06:29 +00:00
evazion
b2a6cf070c Use raw note body instead of sanitized body for note edit box. 2016-11-19 21:33:26 -06:00
evazion
3eafc5ae6a Don't clobber image board sources. 2016-11-19 02:29:33 -06:00
Albert Yi
67c374f272 fix relative links in at mentions 2016-11-18 11:42:49 -08:00
Albert Yi
0b9c1e1156 Merge pull request #2759 from evazion/fix-dmail-filters 
Don't filter dmails from moderators; fix dmail filter exploit.
 2016-11-14 16:27:17 -08:00
Albert Yi
536ba3c7ee fixes #2756: Have @Mentions Use Relative Instead of Absolute Links 2016-11-14 10:15:11 -08:00
evazion
47f663e002 Don't filter dmails from moderators (fix #2757). 2016-11-12 01:11:40 -06:00
evazion
b0a0a32173 API: support PUT /maintenance/user/dmail_filter.json. 2016-11-12 01:10:14 -06:00
evazion
a16b91e2bf Fix exploit allowing dmail filters to be set on other users. 
Exploit:

    curl \
      -u $USERNAME:$API_KEY \
      -X PUT "http://danbooru.donmai.us/maintenance/user/dmail_filter.json?dmail_id=1" \
      -d "dmail_filter[words]=owned&dmail_filter[user_id]=2"

...where dmail_id is any dmail you own (doesn't matter which) and user_id is the victim.
 2016-11-12 01:10:14 -06:00
Albert Yi
30899b7d3b Merge pull request #2753 from evazion/feat-autotag-cosplay 
Autotag character_(cosplay) -> character, cosplay.
 2016-11-11 16:48:30 -08:00
Albert Yi
ed6b48b0bc Merge pull request #2754 from evazion/fix-comment-selfvotes 
Prevent users from upvoting their own comments.
 2016-11-11 16:46:50 -08:00
Albert Yi
eb6746a8a8 additional checks on forum topic visibility 2016-11-07 10:48:04 -08:00
Albert Yi
a22a7c3302 bulk revert 2016-11-07 10:48:04 -08:00
evazion
1047d7c96b Prevent users from upvoting their own comments. 2016-11-06 01:32:54 -06:00
evazion
f02a31a447 Autotag character_(cosplay) -> character, cosplay. 
Make e.g. hatsune_miku_(cosplay) automatically add hatsune_miku and cosplay.

Perform autotagging after aliasing so that *_(cosplay) aliases (e.g.
hestia_(dungeon)_(cosplay) -> hestia_(danmachi)_(cosplay)) can take
effect first.
 2016-11-04 23:37:28 -05:00
evazion
c2e026e55b Fix BURs posting approval message for every implication. 2016-11-02 16:12:53 -05:00
Albert Yi
4e48e80e1f stub in preview for bulk revert 2016-11-02 13:53:01 -07:00
Albert Yi
91793fff82 fixes #2731: Expunged posts should clear favorite groups 2016-11-01 13:44:36 -07:00
Albert Yi
2dbb869188 keep track of post approvals to prevent approval cycles 2016-10-31 17:51:44 -07:00
evazion
f46d055218 Fix AmbiguousColumn exception in /forum_posts?search[creator_id]=1 2016-10-31 17:11:52 -05:00
Albert Yi
32409d542a Merge pull request #2748 from evazion/fix-note-saving 
Fix notes appearing unsaved after saving them (fix #2747)
 2016-10-31 12:22:54 -07:00
Albert Yi
a862c5bf03 fixes #2746: Uploading from touch.pixiv.net broken 2016-10-31 12:22:32 -07:00
evazion
00da01ea3e Remove unused NotesController#pass_html_id. 
Dead code as far as I can tell. According to `git log -p -G "X-Html-Id"`
was added in 2011 and never used. HTML id is passed to javascript in the
JSON response to `POST /notes.json` instead.
 2016-10-31 01:37:49 +00:00
evazion
9c188ff0cb Fix notes appearing unsaved after saving them. 
Bug: creating a note then saving it doesn't remove the red border
indicating it's unsaved.

Broken by 8df1496 / PR #2729.

Ref: http://danbooru.donmai.us/forum_topics/13348.
 2016-10-31 01:25:09 +00:00
evazion
18d2d0b6b8 Fix private forum topic bumping for users below min level. 2016-10-30 18:00:26 -05:00
evazion
5d54ba5096 Fix listing private topics in /forum_posts. 
Fix an exploit allowing viewing of private topics with

  http://danbooru.donmai.us/forum_posts
 2016-10-30 18:00:26 -05:00
Albert Yi
60eebd9608 fix chaining of hidden_attributes/method_attributes 2016-10-27 14:53:25 -07:00
Albert Yi
8d0781c27f fixes #2740: random mod queue autoredirects after 5 actions 2016-10-27 13:22:28 -07:00
Albert Yi
8e87d41a3c Merge pull request #2739 from evazion/fix-tag-alias 
Fix "conflicting wikis" message; fix alias/implication approvers in BURs (#2715)
 2016-10-27 10:44:51 -07:00
evazion
8672604ee7 Add upvote:/downvote: editing metatags. 2016-10-26 23:23:47 -05:00
evazion
8b5aac7808 Add locked:{notes,status,rating} editing metatags (fix #1716). 2016-10-26 23:23:09 -05:00
evazion
0dcd7e82be Test forum posts generated by tag alias approval. 2016-10-26 21:52:19 -05:00
evazion
e67194c19d Set approver when creating banned_artist implication. 2016-10-26 21:52:19 -05:00
evazion
6dd8ec909d Set approver of aliases/implications in BURs. 
Previously only the BUR's approver was set when a BUR was approved. Set
the approver for each alias/implication in the BUR as well.

Additionally:

* Refactor `approve!` to take a user instead of just a user id.
* Be mass-assignment permissions aware when setting approver_id.
 2016-10-26 21:52:19 -05:00
evazion
abbf834256 Merge wiki conflict and tag alias approval forum posts (#2715). 
* Attribute the "tag alias has conflicting wiki pages" message to the
  alias approver, not to the first admin.
* Merge the conflict message and alias approval message into one forum post.
* Fix an error with NewRelic gem not installed in test environment.
 2016-10-26 21:52:15 -05:00
Albert Yi
24d44dd4f8 fix tests, better error handling in pixiv ugoira converter 2016-10-25 16:20:47 -07:00
Albert Yi
79842f7a3b restrict min level constraints for forum topics to mod+admin and restrict options based on current user's level. check privileges for visiblity in forum posts and topics. deprecate serializable_hash (undocumented, internal) for as_json, refactor to use hidden_attributes and method_attributes #2658 2016-10-25 15:05:55 -07:00
Albert Yi
ae61cc8a40 Merge pull request #2737 from evazion/fix-link-rules 
Link self-upload disclaimer on /uploads; link howto:flag in flag notices.
 2016-10-24 17:23:50 -07:00
Albert Yi
4926db7e42 Merge pull request #2738 from evazion/fix-danbooru-references 
Replace references to "Danbooru" with <%= Danbooru.config.app_name %>
 2016-10-24 17:19:38 -07:00
evazion
fd4eb8fa08 Replace references to Danbooru with Danbooru.config.app_name. 
* Also replace references to github with a configurable repo.
* Plus link commit ref in footer to the commit in the repo.
 2016-10-24 19:07:19 -05:00
Albert Yi
589df5f301 implements #2658: private forum topics 2016-10-24 16:56:18 -07:00
evazion
5e3393817f Link to howto:flag in flag notice. 2016-10-24 18:52:01 -05:00
evazion
13d4474818 Add self-uploading disclaimer to uploads page. 2016-10-24 18:52:01 -05:00
Albert Yi
0757f201a0 Merge pull request #2735 from evazion/fix-whitecube-bookmarklet 
Fix upload bookmarklet for Pixiv whitecube URLs.
 2016-10-24 12:21:36 -07:00