Exact

Exact Union RegExp

Régis Hanol 9892628a50 SECURITY: Restrict staff action logs visibility for moderators ... Previously, moderators had full access to all staff action logs, which exposed sensitive information including webhook secrets, API keys, site settings, private messages, and restricted categories. This change implements an allowlist approach where moderators can only see actions relevant to their role (user management, posts, topics, badges, etc.) while admin-only actions (site settings, webhooks, API keys, themes, etc.) are hidden. Additionally, content-level redaction ensures moderators cannot see details of logs referencing private topics, restricted categories, or deleted content they don't have access to. Site setting gates control visibility of category, trust level, and email actions based on existing moderator permission settings. Ref - t/171137		2026-01-28 17:11:14 +00:00
..
controllers/chat	FIX: ensures moderators can see category permissions (#36772)	2025-12-18 12:34:46 +01:00
jobs	DEV: Delete dead AutoJoinChannelBatch job	2026-01-28 03:14:32 +00:00
models	SECURITY: Restrict staff action logs visibility for moderators	2026-01-28 17:11:14 +00:00
queries/chat	FIX: removes an N+1 in channel with user options (#36773)	2025-12-26 23:59:09 +01:00
serializers/chat	UX: Hide "My Threads" when user has no threads (#36931)	2026-01-21 10:56:24 +01:00
services/chat	SECURITY: Restrict staff action logs visibility for moderators	2026-01-28 17:11:14 +00:00
validators/chat	FEATURE: Add setting to prevent anonymous users from using chat (#31842)	2025-03-21 13:32:52 +03:00
views	PERF: fix performance of chat email notifications	2024-06-10 14:25:06 +02:00