devs/PCv5 - Forge de Planète Casio

Commit Graph

Author	SHA1	Message	Date
Lephe	db5e613f7e	model: use methods to access a user's typed posts (#104 )	2022-04-25 17:05:17 +01:00
Lephe	b3d99b93f8	account: add a theme setting (#14 )	2021-07-08 11:43:09 +02:00
Lephe	cc5f4e481b	account: member deletion, with post anonymization (#57 )	2021-07-08 10:39:22 +02:00
Darks	d7d8244da9	polls: small fix on template	2021-03-16 18:51:11 +01:00
Lephe	6f98cba65e	review of privileges and forum permissions * Sorted privileges into categories, similar to the v4.3 style Added privilege check utilities: * Forum: is_news(), is_default_accessible() and is_default_postable() * Member: can_access_forum(), can_post_in_forum(), can_edit_post(), and can_delete_post() Unfortunately current_user is not a Guest when logged out, so one cannot usually write current_user.can_() without checking for authentication first, so the checks are still somewhat verbose. Reviewed forum permissions; the following permission issues have been fixed (I have tested most but not all of them prior to fixing): app/routes/forum/index.py: Users that were not meant to access a forum could still obtain a listing of the topics * app/routes/forum/topic.py: Users that were not meant to see topics could still read them by browsing the URL * app/routes/forum/topic.py: Authenticated users could post in any topic, including ones that they should not have access to * app/routes/posts/edit.py: Users with edit.posts (eg. mods) could edit and delete messages in forums they can't access (eg. creativecalc) * app/templates/account/user.html: Users with admin panel access would see account editing links they can't use (affects developers) * app/templates/base/navbar/forum.html: The "Forum" tab would list all forums including ones the user doesn't have access to * app/templates/forum/index.html: Users would see every single forum, including ones they can't access * app/template/widgets/thread.html: Anyone would see Edit/Delete links on every message, even though most were unusable Miscellaneous changes: * app/routes/forum/topic.py: Ordered comments by date as intended, which I assume worked by chance until now * Removed the old assets/privs.txt files which is now superseded by the list implemented in app/data/groups.yaml This commit changes group and forum information, run master.py with: @> forums update @> groups update	2021-02-26 18:32:45 +01:00
Eldeberen	938516cb3f	polls: added admin panel and deletion form	2021-02-22 23:50:19 +01:00
Eldeberen	d6512bb197	polls: added multi-choices polls	2021-02-22 22:49:11 +01:00
Eldeberen	fabad32955	polls: add a panel to manage own polls	2021-02-20 01:28:08 +01:00
Darks	9409113167	markdown: add markdown rendering	2020-09-18 19:43:10 +02:00
Darks	b108ce4cfe	titles: add displayed title (#65 ) - with forms for user and admins	2020-07-29 00:57:06 +02:00
Darks	0896a6b163	passwords: enhances passwords rules - based on entropy (min 60 bits) - adds a coloured progress bar if Js is enabled	2020-07-25 18:06:49 +02:00
Darks	4117ec4b15	user: FIX problème de perf à l'affichage Le serveur aime pas devoir recalculer à chaque fois le nombre de commentaires de chaque topic	2020-07-23 20:46:30 +02:00
Darks	3a46f8046c	topics: ADD une relationship dans `Member` Et une relation `comments` vers les commentaires. Moins utile, mais ça coute rien. Corrige par la même occasion les problèmes de perfs	2020-07-23 20:19:03 +02:00
Lephe	6b280c6901	trophies: add icons	2020-07-22 10:44:56 +02:00
Darks	77bcb99ea1	account: ADD mot de passe oublié	2020-07-21 22:12:18 +02:00
Darks	1b17234623	trophies: ADD hidden parameter, FIX admin panel	2020-07-20 19:35:05 +02:00
Lephe	c4bfef4765	trophies: add descriptions DATABASE UPDATE: run [flask db upgrade], then use the [create-trophies] command of the master script to recreate trophies.	2020-07-19 22:27:00 +02:00
Darks	4d3e1a14f3	profil: complétion de la page de profil (#9 )	2020-07-19 21:14:34 +02:00
Darks	5f84a64221	Correction d'un `</div>` qui trainait	2020-07-19 20:50:38 +02:00
Darks	04fb3225c1	refactor: passage aux variables CSS4	2020-07-13 22:54:34 +02:00
Darks	9f5b607c45	Correction d'un petit bug de routage du bouton mofidier un compte	2019-12-10 10:00:20 +01:00
Darks	51d0ce1129	Meilleure gestion des erreurs sur le changement d'avatar	2019-12-10 00:38:04 +01:00
Darks	9341c5883c	Premier jet sur les avatars	2019-12-09 23:24:05 +01:00
Eragon	7884ca8bec	Pas de message d'optin de post en invité si connecté Ajout d'un if dans le template de l'index du forum pour ne pas afficher l'option de post en invité si l'utilisateur est connecté. Remplacement des caractères d'espaces insécables pour html par des espaces insécables en utf-8.	2019-12-02 00:00:04 +01:00
Darks	d4e1b05c29	Divers correctifs - Le menu est utilisable sans Js (penser à mettre à jour les endpoints) - Réorganisation des templates - Ajout d'une page listant les outils	2019-11-28 14:14:35 +01:00
Darks	6d43d742c8	Mieux quand les notifs sont dans l'ordre anti-chronologique	2019-09-01 22:54:53 +02:00
Darks	7971e47522	Debug sur notifs, ajout du nombre dans le menu latéral L'affichage du nombre de notifs méritera peut être un coup de peinture… À voir.	2019-09-01 22:33:00 +02:00
Darks	c2fbef7ace	Petite modif, test de CI sur dev	2019-09-01 21:59:40 +02:00
Darks	15a4d38ea0	Ajout des notifications	2019-09-01 12:30:41 +02:00

29 Commits