Dekescordes/spacebar
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
3,632 Commits 1 Branch 0 Tags
Commit Graph

199 Commits

Author SHA1 Message Date
Puyodead1
91e9d60040 first batch of requested changes 2023-02-24 06:52:01 -05:00
Puyodead1
ed38d74b3e don't return token on register if verification required 2023-02-24 06:36:57 -05:00
Puyodead1
05453ec148 implement password reset 2023-02-24 01:54:10 -05:00
Puyodead1
a78e13073f don't print anything if email send is successful 2023-02-24 00:10:50 -05:00
Puyodead1
ada821070b add right to resend verification emails 2023-02-23 22:52:24 -05:00
Puyodead1
1aba7d591c fix: email verification 2023-02-23 22:49:55 -05:00
Puyodead1
54dbc7190b fix: verification required for login not working correctly 2023-02-23 22:49:55 -05:00
Puyodead1
34cde14f75 config: require account verification 2023-02-23 22:40:05 -05:00
Puyodead1
97bafa81fc fix linting errors 2023-02-23 22:40:05 -05:00
Puyodead1
689b710c9e Fix template rendering and use verify email template 
email html is weird, some stuff isn't supported.
 2023-02-23 21:35:54 -05:00
Puyodead1
a47d80b255 Email verification works 
- Added /auth/verify to authenticated route whitelist
- Updated /auth/verify to properly mark a user as verified, return a response, and fix expiration time check
- Implemented /auth/verify/resend
- Moved verification email sending to a helper method
- Fixed VerifyEmailSchema requiring captcha_key
 2023-02-23 21:35:51 -05:00
Puyodead1
cc6bf066b1 add missing copyright headers 2023-02-23 21:35:50 -05:00
Puyodead1
256c7ed8fe send email verification 2023-02-23 21:35:49 -05:00
Madeline
cc50ebf47b Fix being unable to unset nicknames 
Remove unwanted guild profile handler in cdn
Fix rights check for bio/avatars of your own user
 2023-02-05 12:35:27 +11:00
Puyodead1
e290965d00 various fixes for webauthn (#973) 2023-02-03 15:05:54 +11:00
Madeline
74570994c8 run add:license 2023-02-03 14:40:41 +11:00
Madeline
16a5cbac87 Don't allow message types to be edited 2023-02-03 14:39:42 +11:00
Madeline
6e04c92f07 Merge pull request from GHSA-9qvc-84ch-5p2x 
* Check permissions and rights

* Prevent editing message type unless MANAGE_MESSAGES right. Also don't send sensitive data in patch response.
 2023-02-02 22:26:22 +11:00
Madeline
067d2d8be8 Merge pull request from GHSA-hqqp-gpqw-9w5c 2023-02-02 22:24:56 +11:00
Madeline
cf04de4add Merge pull request from GHSA-9q7f-pv47-cxp9 2023-02-02 22:22:30 +11:00
Madeline
af6b5a6594 Merge pull request from GHSA-r7h4-76f7-6264 
* Actually use maxUsername config value.

* Change maxUsername default to discord.com default
 2023-02-02 22:15:03 +11:00
Madeline
ae8f4d6752 check pw and other auth before letting users undisable 2023-01-31 15:13:19 +11:00
Madeline
71258f6487 read-states/ack-bulk (#969) 2023-01-30 13:34:27 +11:00
Puyodead1
709dc7280e Implement WebAuthn (#967) 
* implement webauthn

* code review

---------

Co-authored-by: Madeline <46743919+MaddyUnderStars@users.noreply.github.com>
 2023-01-30 13:30:42 +11:00
Madeline
8384a2c539 also don't use 3002 as default when gateway endpoints are null 2023-01-26 10:21:13 +11:00
Madeline
084dc0be08 Add ESLint (#941) 
* Add eslint, switch to lint-staged for precommit

* Fix all ESLint errors

* Update GH workflow to check prettier and eslint
 2023-01-20 18:10:47 +11:00
ChrisChrome
70475d8397 Fix a funny security vuln 2023-01-18 12:27:15 -07:00
Chris Chrome
fbac5c7cd7 Merge pull request #952 from fosscord/dev/endpoints-in-ping 
Merge /dev/endpoints-in-ping to master
 2023-01-18 12:14:05 -07:00
Madeline
0e7f127ece Script to add license preamble to each file. Also, does that. (#935) 
* Add script to automatically add license to each file

* Add license preamble to each file.

* Fix existing preamble detection breaking due to line endings. Git :(

* Prevent license from being added to code with other licenses
 2023-01-18 13:05:49 +11:00
Madeline
0af3da6db7 Fix deleting an application if it has a bot 2023-01-17 00:01:14 +11:00
Chris Chrome
8a23ac19f8 Move endpoints from ping -> policies/instance/domains (#933) 2023-01-16 13:46:41 +11:00
TheArcaneBrony
1d27e61029 Fix some default value 
Signed-off-by: TheArcaneBrony <myrainbowdash949@gmail.com>
 2023-01-14 23:34:33 +01:00
TheArcaneBrony
754d8dbf64 Add basic info in ping 
Signed-off-by: TheArcaneBrony <myrainbowdash949@gmail.com>
 2023-01-14 19:55:19 +01:00
Erkin Alp Güney
876c15b1a9 Add /users/:id/delete (#926) 2023-01-14 19:15:35 +11:00
Madeline
d151283b08 Add back include_url param to reg tokens 2023-01-10 18:08:31 +11:00
Madeline
df449169bd Prettier 2023-01-05 17:16:55 +11:00
Madeline
5ef4b80fc5 Merge pull request #922 from MaddyUnderStars/maddy/bodyParserPatch 
Patch body-parser to use json-bigint, like gateway
 2023-01-02 20:37:25 +11:00
Madeline
7453dd0119 Use adjusted email in /auth/login 2023-01-02 13:18:07 +11:00
Madeline
1bee8dc48f Revert "Don't let users undisable their accounts" 
This reverts commit cd84412c92c447826ebb2668295d46956618d962.
 2023-01-01 14:20:41 +11:00
Madeline
cd84412c92 Don't let users undisable their accounts 2023-01-01 12:59:45 +11:00
Madeline
7a725bab50 Profile themes and pronouns 2022-12-31 17:51:57 +11:00
Madeline
a1c07173bb Fix new roles having duplicate positions 2022-12-30 18:07:56 +11:00
Madeline
a02f929d34 OAuth2 authorize bot flow 2022-12-24 18:55:14 +11:00
Madeline
35938556fe Fix creating bot accounts 2022-12-24 16:28:00 +11:00
Madeline
92227cdf18 Set default cdn endpoints so that local testing works 2022-12-21 15:37:16 +11:00
Madeline
0aead491dc Fix the roles bug 2022-12-21 15:17:06 +11:00
Madeline
e6ae9d32e8 Reg tokens bypass other restrictions 2022-12-19 22:23:31 +11:00
TheArcaneBrony
bdda215005 Message rate limiting 2022-12-19 22:17:06 +11:00
Madeline
ddd3c86043 Registration tokens 2022-12-19 22:04:52 +11:00
TheArcaneBrony
3227933f28 Add register ratelimit 2022-12-19 20:57:43 +11:00