Discourse/discourse
Discourse/discourse
0
0
Fork 0
mirror of https://gh.wpcy.net/https://github.com/discourse/discourse.git synced 2026-04-30 11:07:08 +08:00
Code Packages Activity Actions
discourse/spec
History
Exact
Joffrey JAFFEUX 332b47f14a
FIX: Scope no_password to staff and self in user serializer (#39644) 
`UserSerializer#include_no_password?` had no scope gate, so any
  profile viewer (including anonymous via `/u/{username}.json`) received
  `no_password: true` for users with no local password. This disclosed
  which accounts authenticate solely via SSO/OAuth.

This commit gates the attribute on `user_is_current_user ||
scope.is_staff?`.
2026-04-29 22:07:31 +02:00
..
db DEV: Silence expected error/debug output in core specs (#39247) 2026-04-14 11:04:10 +02:00
fabricators FEATURE: Add problem checks page to admin panel and allow ignoring problem checks (#39103) 2026-04-23 08:28:33 +08:00
fixtures FIX: Better handling of github_folder onebox w/o opengraph tags (#39142) 2026-04-08 11:49:57 +02:00
generator DEV: Remove deprecated trust level access settings (#36414) 2025-12-11 11:09:29 +10:00
helpers FIX: Make twitter card meta data translatable (#39150) 2026-04-08 18:40:21 +02:00
import_export DEV: add shortcut fab!(:variable, :fabricator) to specs (#33577) 2025-07-11 11:16:34 -03:00
initializers FEATURE: Notify admins of upcoming changes and log events (#37003) 2026-01-21 12:45:54 +10:00
integration FEATURE: add modifier to restrict theme color schemes (#38796) 2026-03-26 09:03:11 -04:00
integrity FEATURE: Allow upcoming changes to control site setting defaults (#38815) 2026-04-08 13:05:44 +10:00
jobs FEATURE: better email subject lines (#36040) 2026-04-24 15:14:10 +04:00
lib FEATURE: Allow editing a post's reply target from the composer (#39471) 2026-04-29 12:23:26 -03:00
mailers FEATURE: better email subject lines (#36040) 2026-04-24 15:14:10 +04:00
models FIX: Hide ignored user posts from nested topic view (#39504) 2026-04-28 12:50:09 -05:00
multisite DEV: Fix spec cleanup issues for upcoming changes (#39024) 2026-04-01 14:15:02 +10:00
queries/reports UX: Add more reports to legacy, removing them from the reports page (#38688) 2026-03-18 22:18:47 +08:00
requests FEATURE: Allow editing a post's reply target from the composer (#39471) 2026-04-29 12:23:26 -03:00
script/import_scripts
serializers FIX: Scope no_password to staff and self in user serializer (#39644) 2026-04-29 22:07:31 +02:00
services FEATURE: Restore web push quick reply for chat messages (#39614) 2026-04-29 12:36:03 -03:00
support DEV: Fix flaky select-kit test selectors (#39577) 2026-04-27 12:42:10 +02:00
system DEV: Restore and fix a sidebar section spec (#39639) 2026-04-29 16:08:38 +02:00
tasks DEV: Silence expected error/debug output in core specs (#39247) 2026-04-14 11:04:10 +02:00
views FIX: remove ItemList schema from linkbacks in crawler view (#36608) 2025-12-11 10:41:47 +01:00
rails_helper.rb DEV: Restore and fix composer body test (#39510) 2026-04-27 00:18:31 +02:00
regenerate_swagger_docs
swagger_helper.rb DEV: add api docs for discourse-calendar events index endpoint (#35400) 2025-10-16 07:39:08 +08:00