Discourse/discourse
Discourse/discourse
0
0
Fork 0
mirror of https://gh.wpcy.net/https://github.com/discourse/discourse.git synced 2026-05-14 21:28:03 +08:00
Code Packages Activity Actions
discourse/spec/system
History
Exact
Kelv b751742573
FIX: invalid CSP directive sources should allow site to boot with valid CSP directives (#31256) 
[Security
patch](5558e72f22)
(for this [CVE](https://nvd.nist.gov/vuln/detail/CVE-2024-54133)) from
rails actionpack was backported from [Rails
8.0.0.1](https://github.com/rails/rails/blob/v8.0.1/actionpack/CHANGELOG.md#rails-8001-december-10-2024)
to previous stable versions including `7-1-stable` / `7-2-stable`.

Any previous version of Discourse upgrading to v3.4.0.beta3 and above
would have observed their sites crashing if they had invalid sources in
their CSP directive extensions.

This fix removes such invalid sources during our build of the CSP, and
logs these at a warning level so devs are able to find out why their CSP
sources were filtered out of the extendable directives.
2025-02-10 20:38:36 +08:00
..
composer FEATURE: introduce a ProseMirror editor (#30815) 2025-02-04 14:37:18 -03:00
emojis DEV: unifies emoji picker (#28277) 2025-01-08 11:41:36 +01:00
groups FIX: deleting a groups was throwing an error (#26623) 2024-04-15 08:35:50 +02:00
helpers
page_objects FEATURE: Dark/light mode selector (#31086) 2025-02-07 03:28:34 +03:00
topic_list DEV: Introduce new 'glimmer topic list mode' site setting (#30375) 2024-12-19 17:38:35 +00:00
user_page FIX: Set the correct state of the dark mode checkbox user preference (#31214) 2025-02-06 20:31:37 +03:00
about_page_spec.rb FEATURE: Enable the new /about page for everyone (#29390) 2024-10-29 18:40:11 +03:00
admin_about_config_area_spec.rb FIX: Don't secure the about banner image (#29889) 2024-11-25 11:12:00 +03:00
admin_api_keys_spec.rb FIX: Add back missing API key 'peek' step (#30683) 2025-01-10 10:21:22 +08:00
admin_backups_spec.rb UX: Apply admin interface guidelines to Backups page (#28051) 2024-08-20 09:59:43 +10:00
admin_badges_grouping_modal_spec.rb FIX: correctly pass updateGroupings to the modal (#28683) 2024-09-02 17:32:18 +02:00
admin_badges_spec.rb FIX: do not overrider trigger when equals 0 (#29269) 2024-10-18 08:34:34 +09:00
admin_customize_emojis_spec.rb DEV: Convert admin emojis UI to new layout (#29615) 2024-11-11 15:04:15 +08:00
admin_customize_form_templates_spec.rb DEV: Cleanup todos from codebase (#30394) 2024-12-19 18:22:33 -08:00
admin_customize_themes_spec.rb DEV: fix flaky admin_customize_themes spec (#26842) 2024-05-02 08:26:07 +08:00
admin_dashboard_community_health_spec.rb FEATURE: Switch to new methods of pageview measurement and reporting (#28729) 2024-09-10 09:51:49 +10:00
admin_dashboard_new_features_spec.rb FIX: Calculate experiment_enabled on server for "What's new?" (#30599) 2025-01-07 11:27:24 +10:00
admin_editing_objects_typed_theme_setting_spec.rb DEV: Remove experimental_objects_type_for_theme_settings site setting (#26507) 2024-04-04 12:01:31 +08:00
admin_embeddable_hosts_spec.rb DEV: Add base admin page page object (#30814) 2025-01-16 12:52:41 +08:00
admin_flags_spec.rb FEATURE: setting allowing tl0/anonymous flag illegal content (#30785) 2025-01-17 08:57:44 +11:00
admin_notices_spec.rb FIX: Only render admin notice dismiss button for admins (#29103) 2024-10-07 13:14:01 +08:00
admin_permalinks_page_spec.rb UX: Conditionally render permalinks filter (#30633) 2025-01-08 06:18:01 -06:00
admin_sidebar_navigation_spec.rb DEV: Move a plugin related system spec to footnote plugin (#31230) 2025-02-07 11:58:55 +08:00
admin_site_setting_label_formatting_spec.rb UX: Add Sentence Casing for Setting Names (#30479) 2024-12-31 09:55:53 +11:00
admin_site_setting_requires_confirmation_spec.rb DEV: Fix admin confirmation flaky spec (#29456) 2024-10-30 04:59:51 +10:00
admin_site_setting_search_spec.rb FEATURE: Introduce site settings which require confirmation (#27315) 2024-06-19 16:01:24 +10:00
admin_site_texts_spec.rb FIX: correctly display category name in replace text modal (#29612) 2024-11-06 13:39:52 +11:00
admin_staff_action_logs_spec.rb FIX: filterable staff logs for flags (#29695) 2024-11-12 11:23:18 +11:00
admin_user_badges_spec.rb
admin_user_fields_spec.rb DEV: Introduce <DPageHeader /> and <DPageSubheader /> components (#30146) 2024-12-18 08:13:39 +10:00
admin_user_spec.rb UX: admins users page follows admin ux guideline (#29873) 2024-12-02 10:11:23 +11:00
admin_users_list_spec.rb FEATURE: Add an option to block IPs and emails to bulk user delete (#29993) 2024-12-09 14:25:31 +03:00
admin_watched_words_spec.rb DEV: Remove extraneous spec code (#29386) 2024-10-24 14:15:32 +02:00
admin_web_hook_events_spec.rb FEATURE: Add Filter for Webhook Events by Status (#27332) 2024-06-07 10:26:00 -05:00
admin_webhooks_spec.rb Admin webhooks UI guidelines (#30764) 2025-01-16 10:22:18 +08:00
bookmarks_spec.rb DEV: Try fix bookmark flaky (#29069) 2024-10-03 14:34:36 +10:00
bootstrap_error_pages_spec.rb FIX: Improve handling of 'PublicExceptions' when bootstrap_error_pages enabled (#26700) 2024-04-24 09:40:13 +01:00
category_topics_spec.rb FIX: Dismiss unread posts in subcategories (#29671) 2024-11-14 10:06:12 -05:00
change_owner_spec.rb
composer_spec.rb DEV: Remove unused binding.pry (#30207) 2024-12-10 11:25:37 -06:00
composer_uploads_spec.rb DEV: Auto grid images no longer experimental (#29572) 2024-11-04 08:21:40 -08:00
content_security_policy_spec.rb FIX: invalid CSP directive sources should allow site to boot with valid CSP directives (#31256) 2025-02-10 20:38:36 +08:00
create_account_spec.rb UX: Registration design and validation improvements (#27666) 2024-07-04 09:17:07 -03:00
create_invite_spec.rb FIX: Add back the option to create invite without emailing (#29641) 2024-11-08 07:59:24 +03:00
csv_exports_spec.rb
custom_sidebar_sections_spec.rb DEV: fix flakey spec in sidebar (#29254) 2024-10-17 22:28:02 +09:00
dev_tools_spec.rb DEV: Introduce 'dev tools' toolbar and plugin-outlet debugger (#30624) 2025-01-08 15:26:18 +00:00
discovery_breadcrumb_navigation_spec.rb
discovery_category_spec.rb DEV: Add system spec for categories page (#29621) 2024-11-06 20:01:27 +02:00
discovery_list_spec.rb FIX: Correctly toggle bulk select checkboxes for regular users (#29984) 2024-11-28 09:39:17 -05:00
dismissing_new_spec.rb FIX: Dismiss unread posts in subcategories (#29671) 2024-11-14 10:06:12 -05:00
drafts_dropdown_spec.rb UX: multiple drafts menu improvements (#31195) 2025-02-05 15:19:13 +04:00
edit_category_form_templates_spec.rb UX: Add group link to category permission row (#28560) 2024-08-28 16:11:16 +10:00
edit_category_security_spec.rb DEV: Fix random typos (#30023) 2024-12-02 07:34:05 +08:00
editing_sidebar_categories_navigation_spec.rb FIX: Make edit categories sidebar modal work more intuitively (#27111) 2024-06-14 11:37:32 -05:00
editing_sidebar_community_section_spec.rb UX: restore shared sidebar link for posts and drafts (#31159) 2025-02-04 14:40:18 +04:00
editing_sidebar_tags_navigation_spec.rb
email_change_spec.rb DEV: Change hide_email_address_taken default to true (#30293) 2024-12-17 10:46:04 +08:00
ember_deprecation_spec.rb DEV: Move discourse-common/(utils|lib) to discourse/lib (#30733) 2025-01-13 13:02:49 +00:00
filtering_topics_spec.rb DEV: Remove experimental_topics_filter setting (#29902) 2024-11-25 10:49:40 -05:00
flagging_post_spec.rb FEATURE: show flag description along with additional reason (#31210) 2025-02-06 12:47:31 +11:00
forgot_password_spec.rb FIX: User can't reset password with backup codes when only security key is enabled (#27368) 2024-06-06 14:30:42 +08:00
grant_badge_spec.rb FEATURE: Show when a badge has been granted for a post (#29696) 2024-12-03 13:43:27 +11:00
group_activity_spec.rb
group_card_spec.rb
hashtag_autocomplete_spec.rb
header_spec.rb DEV: Remove body docked class and its scroll event listener (#29515) 2024-10-31 10:21:50 -04:00
homepage_spec.rb FEATURE: "Hot" replacing "Top" as default in the top menu (#28252) 2024-08-08 13:57:42 -04:00
interface_color_selector_spec.rb FEATURE: Dark/light mode selector (#31086) 2025-02-07 03:28:34 +03:00
keyboard_shortcuts_spec.rb DEV: Add disableDefaultKeyboardShortcuts plugin API to disable default keyboard shortcuts (#29401) 2024-10-25 14:14:04 -05:00
login_spec.rb SECURITY: Disable access to "activate-account" route for existing users 2025-02-04 13:32:38 -03:00
navigation_menu_state_integration_spec.rb DEV: Remove extraneous spec code (#29386) 2024-10-24 14:15:32 +02:00
network_disconnected_spec.rb DEV: Skip flaky topic map spec on CI (#28159) 2024-07-31 13:04:05 +10:00
new_category_spec.rb FIX: should not raise error when minimum_required_tags value not defined for category. (#27658) 2024-07-01 07:14:34 +05:30
new_topic_list_spec.rb DEV: Add/use two topic fabricators (#27603) 2024-06-25 13:47:53 +02:00
post_menu_spec.rb FEATURE: Add attribution to staff notice and rename functionality (#30920) 2025-01-24 09:29:22 +10:00
post_replies_spec.rb SECURITY: add pagination to post replies 2024-10-07 11:48:48 +08:00
post_selection_copy_quote_spec.rb UX: Remove enable_quote_copy site setting (#31191) 2025-02-06 10:31:10 +10:00
post_selection_fast_edit_spec.rb FIX: fast edit with a typographic character 2024-12-10 12:13:10 +01:00
post_small_action_spec.rb
posts_page_spec.rb UX: Improvements to posts route (#30968) 2025-01-23 19:04:43 -08:00
powered_by_discourse_spec.rb
private_message_map_spec.rb DEV: remap all core icons for fontawesome 6 upgrade (#28715) 2024-09-13 16:50:52 +01:00
private_message_spec.rb FIX: Don't allow editing own posts user can no longer see (#30839) 2025-01-20 10:09:58 +08:00
request_tracker_spec.rb DEV: adds logo page component (#28276) 2024-08-08 13:52:48 +02:00
reviewables_spec.rb FEATURE: Gracefully handle unhandled reviewables (#31118) 2025-02-05 14:38:45 +11:00
s3_secure_uploads_spec.rb DEV: Combine S3 system spec helpers into one (#29580) 2024-11-05 09:28:14 +10:00
s3_uploads_spec.rb DEV: Combine S3 system spec helpers into one (#29580) 2024-11-05 09:28:14 +10:00
scroll_manager_service_spec.rb DEV: adds logo page component (#28276) 2024-08-08 13:52:48 +02:00
search_spec.rb DEV: adds logo page component (#28276) 2024-08-08 13:52:48 +02:00
signup_spec.rb UX: Do not use generic username suggestions for invites (#31175) 2025-02-07 10:52:41 +00:00
social_authentication_spec.rb FIX: Automatic auth flow with full page login/signup V3 (#31072) 2025-02-07 10:40:45 -05:00
table_builder_spec.rb FEATURE: allow plugins to specify keyboard shortcuts for hidden toolbar items (#28456) 2024-08-23 09:28:28 +10:00
tag_edit_spec.rb UX: Fix tag revert rename 404 error (#31049) 2025-01-30 10:06:55 +10:00
tag_notification_level_spec.rb DEV: replaces topic-notifications-options by DMenu (#30298) 2024-12-16 19:59:18 +01:00
tag_synonyms_spec.rb
tag_view_spec.rb FIX: Refresh the edit tag section when navigating to another tag (#28519) 2024-08-23 20:08:24 +03:00
tags_intersection_spec.rb
theme_qunit_spec.rb
topic_admin_menu_spec.rb FIX: shows errors when converting to public is impossible (#27103) 2024-05-21 12:14:31 +02:00
topic_bulk_select_spec.rb DEV: Fix flaky test with bulk select closing topics (#29871) 2024-11-20 16:34:44 -07:00
topic_list_focus_spec.rb
topic_map_spec.rb UX: reduce bottom topic map threshold, with protections (#29665) 2024-11-13 07:58:44 -05:00
topic_page_spec.rb DEV: Fix triple click selection in WebKit derived browsers (#30628) 2025-01-08 19:14:15 -03:00
topics_unread_when_closed_spec.rb
user_activation_spec.rb UX: Add progress bar to the registration flow (#27694) 2024-08-28 08:43:39 -03:00
user_activity_bookmarks_spec.rb FIX: correctly filter user bookmarks (#28612) 2024-08-28 15:39:07 -04:00
user_activity_posts_spec.rb SECURITY: Ensure user-stream topic titles are always escaped correctly 2025-02-04 13:32:49 -03:00
user_invites_spec.rb FIX: Don't show that an existing user is invited_by another user (#27665) 2024-07-04 10:27:37 +08:00
user_selector_spec.rb
user_tips_spec.rb FIX: Show the last rendered user-tip (#29346) 2024-10-22 22:41:29 +02:00
viewing_category_spec.rb
viewing_group_members_spec.rb
viewing_navigation_menu_preferences_spec.rb
viewing_sidebar_as_anonymous_user_spec.rb
viewing_sidebar_mobile_spec.rb
viewing_sidebar_spec.rb UX: restore shared sidebar link for posts and drafts (#31159) 2025-02-04 14:40:18 +04:00
viewing_user_menu_spec.rb FEATURE: add new hidden site setting to show full names in user card 2025-01-23 12:26:59 -05:00
viewing_user_private_messages_spec.rb
wizard_spec.rb FEATURE: Improve wizard font selection and set Inter as default font for new sites (#30974) 2025-01-27 11:29:55 +10:00