Thomas Lynch
46358a3503
Add i18n to bumplock/lock/sticky/cycle, change board/globalsettings, changepassword, and create board pages
...
Update a bunch of middleware, pages and libs to destructure i18n funcs if used more than once to not repeat res.locals
ref #396 (going to try and remember this from now on)
2 years ago
Thomas Lynch
3f3e63f9c1
Add some i18n function calls to controllers for add*, update the models and make controllers destructure res.locals for less repetition of res.locals, and add more machine russian translation
2 years ago
Thomas Lynch
426bf4c4b3
add i18n functions to more models, machine translate for RU
2 years ago
Thomas Lynch
745b4a28b9
Add all the "Succes" calls so the frontend modal functions correctly on different langs while testing
2 years ago
Thomas Lynch
2eaad0da32
remove old unused editbans model since ban editing now has other options
2 years ago
Thomas Lynch
d20744d897
twofactor page model translation
2 years ago
Thomas Lynch
32066e3f47
translation calls in a bunch of middleware, code change pass ing new arg to name handler in makepost/editpost, and sync translation keys
2 years ago
Thomas Lynch
97e5ce53e8
Translate (just the template changes) for a ton of mixins and includes, and update country names to support multi language
2 years ago
Thomas Lynch
bc2816596d
remove excess whitespace
2 years ago
Thomas Lynch
00f6d3fdb0
convert relative times to support localisation
2 years ago
Thomas Lynch
571380e243
remove applying inheritance on setting, match editstaff/editaccount
2 years ago
Thomas Lynch
277745a5ca
Fix the completely fucked up "my permission", the board equivalent, and staff permissions page since a recent permission update. Upside is it now considers the "parent" thing, which is nice.
2 years ago
Thomas Lynch
7c9f6257f8
Add setQueryLanguage mw, Make bypass_minimal language aware, TODO make form submissions know language and redirect to blockbypass for board with language query string
2 years ago
Thomas Lynch
a360f09929
Bugfix changeboardsettings language
2 years ago
Thomas Lynch
e4dd53427e
Add language setting to global settings and board settings
2 years ago
Thomas Lynch
679d095d98
Start on localisation ref #396
2 years ago
Thomas Lynch
7a3095594f
Change permissions metadata to be keyed by the permission bits
...
Refactor form handling for permissions in editrole/editaccount, make mush shorter and more maintainable
2 years ago
Thomas Lynch
5a7368a0a4
Add a new property to permissions metadata and reflect on frontend inability for users without that "parent" permission to edit roles/accounts to have some permissions e.g. root, edit roles, edit accs
...
Put the metadata into permissions.js (also TODO: key the metadata by bits instead? i.e [Permisions.whatever]: {})
2 years ago
Thomas Lynch
bc53bc1e4a
Allow roles from globalmanage to be fetched as json
2 years ago
Thomas Lynch
f894ed34e1
fix email bug for staff
2 years ago
Thomas Lynch
a1ccd6f267
Try to integrate post moving a bit better into the existing combined actions flow
...
Bugfix some move issues
2 years ago
Thomas Lynch
058d7b1dbb
Eslint and bugfix unused crossBoardMovePages
2 years ago
Thomas Lynch
516884cf3e
Cross board post move bugfixes/changes
...
Make rebuilds work for both baords
2 years ago
Thomas Lynch
344ed5f662
Cross board post move bugfixes/changes
2 years ago
Thomas Lynch
b391c0cb66
Make post editing a GET endpoint with perm check like editstaff/editcustompages, much more sensible
2 years ago
Thomas Lynch
1191ec4dc8
Mostly functional cross board post moving
2 years ago
Thomas Lynch
0d6323669f
Start on cross board thread moves #250
2 years ago
Thomas Lynch
bdf5da0adc
Ban type ip display and storage improvement
2 years ago
Thomas Lynch
dc739b3cff
Bugfix, make editrole route actually allow you edit BYPASS_CAPTCHA perm
2 years ago
Thomas Lynch
f4328812f2
Add e2e tests for twofactor
...
Remove some cruft from package-lock from speakeasy
Add guard in dotwofactor for no/null (not blank) twofactor
2 years ago
Thomas Lynch
29bb4856ab
2fa improvements
...
- Don't allow code re-use, successfully used codes will be invalid on repeated use for the window time
- Don't attach the full twofactor secret to user object in session for security. Only store a boolean if it's enabled for rendering, checks, etc. The full account should be fetched first before doTwoFactor()
- Better names for some keys of twofactor redis stuff
2 years ago
Thomas Lynch
d9288a137a
Refactor new OTPAuth...validate pattern, remove await -- it isn't and shouldn't be async
2 years ago
Thomas Lynch
e5d0f9871f
Add text version of secret to twofactor.html for people without/who dont want to use a camera or screenshot the image
...
Add warning to twofactor.html that other sessions will be logged out and they have to log in again
Change cache-control header to no-cache, even though private is secure (prevent showing cached page without outdated secret)
2 years ago
Thomas Lynch
b93bab7faf
Switch speakeasy -> otpauth (maintained, more modern, actively developed)
...
Remove dev debug skip of 2fa generation ratelimit
Shorten totp validity window
Remove ugly stuff from login/changepassword forms, change wording
2 years ago
Thomas Lynch
4d86406483
Initial commit of 2FA for accounts, TOTP-based
2 years ago
Thomas Lynch
b69337e2f1
Show ban notes in mod view tables and allow editing them
2 years ago
Thomas Lynch
3b08cc684b
Start on ban notes
2 years ago
Thomas Lynch
190410cc54
Bugfix issue with tor and renewing bypasses in some situations. Should be fetching *upserted* id from db or just using known ID.
2 years ago
Thomas Lynch
0fc87e752d
make captcha font apply to text AND grid
...
set a new default font which is common on linux, in debian repos, and has the chess characters
remove 24MB font file that came from i dont even remember where
2 years ago
Thomas Lynch
6b437d7159
Dont show replayable option if other files disabled on board
...
Rebuild board pages on file type for image/other changes, to account for tegaki in postform changes
2 years ago
Thomas Lynch
05db1d898a
eslint fix remove debuglogs import, settings.json update is now logged as a render event rather than in debuglogs
2 years ago
Thomas Lynch
cc2eefc477
Bugfix showing correct amount of deleted asset/banner on board, deletedCount->modifiedCount because we are updating board object not deleting a document
2 years ago
Thomas Lynch
9a7053242d
Close #370 optional disable overboard reverse image links
2 years ago
Thomas Lynch
2a48b10054
Fix duplicate key in projectedsettings for board settings, and make custompages jsons get removed on deleting custom page.
...
Close #479 add endpoints for board and global settings.json to api with options that would be useful for a 3rd party app. Add the associated tasks, calls to them in settings.
Small change and add comments in lib/build/render.
2 years ago
Thomas Lynch
641c087ecc
Add public json for modlog list, logs, custompages
...
update the banners task to output json (not just render it), so it can be reached on first pageload
close #491
2 years ago
Thomas Lynch
3cb5e0197a
Revert "Close #480 dont show "register" on login page if not allowed for regular user, since users might reach it clicking "manage" after the login redirect"
...
This reverts commit 9c5dd5efa8
.
2 years ago
Thomas Lynch
35da2a9ff1
Close #478 option to hide banners and [banners] links board setting
2 years ago
Thomas Lynch
fd7fc1adbf
Close #470 ability to renew an existing bypass, which is slightly useful if you allow long living bypasses
2 years ago
Thomas Lynch
9c5dd5efa8
Close #480 dont show "register" on login page if not allowed for regular user, since users might reach it clicking "manage" after the login redirect
2 years ago
Thomas Lynch
9517ec2f05
Allow "other" files in addassets, to allow e.g. fonts
2 years ago