IntenseWebs/discourse
3
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-02-25 18:55:32 -06:00
Code Issues Packages Projects Releases Wiki Activity
5b5b5a5931
discourse/app/controllers
History
Blake Erickson 5b5b5a5931 FIX: return an error if a user tries to whisper 
This commit fixes a bug where a user creates a whisper post via the api
but is posted as a regular message because they don't have access to
whisper. Now a 403 unauthorized will be returned instead of the whisper
param just being ignored for regular users. Staff users should not be
affected by this change.

https://meta.discourse.org/t/a-whisper-is-posted-as-a-message-if-the-user-is-not-staff-moderator-admin-when-using-the-api/116601
2019-05-07 11:42:26 -06:00
..
admin DEV: Prefer public_send over send. 2019-05-07 09:33:21 +08:00
users
about_controller.rb
application_controller.rb DEV: Prefer public_send over send. 2019-05-07 09:33:21 +08:00
badges_controller.rb
categories_controller.rb DEV: Prefer public_send over send. 2019-05-07 09:33:21 +08:00
category_hashtags_controller.rb
clicks_controller.rb FEATURE: Use Beacon API for tracking clicks. (#7483) 2019-05-07 16:37:43 +10:00
composer_controller.rb
composer_messages_controller.rb
csp_reports_controller.rb
directory_items_controller.rb
draft_controller.rb
drafts_controller.rb
email_controller.rb
embed_controller.rb
exceptions_controller.rb
export_csv_controller.rb
extra_locales_controller.rb
finish_installation_controller.rb
forums_controller.rb DEV: rename ReadOnly module to ReadOnlyHeader 2019-05-06 16:07:49 +02:00
groups_controller.rb
highlight_js_controller.rb
inline_onebox_controller.rb
invites_controller.rb
list_controller.rb DEV: more send -> public_send changes 2019-05-07 11:58:06 +10:00
metadata_controller.rb DEV: correct Rails 6 deprecation 2019-05-03 16:20:18 +10:00
notifications_controller.rb
offline_controller.rb
onebox_controller.rb
permalinks_controller.rb
post_action_users_controller.rb
post_actions_controller.rb FEATURE: Flag count in post menu 2019-05-06 16:13:31 -04:00
posts_controller.rb FIX: return an error if a user tries to whisper 2019-05-07 11:42:26 -06:00
push_notification_controller.rb
queued_posts_controller.rb
qunit_controller.rb
reviewables_controller.rb
robots_txt_controller.rb
safe_mode_controller.rb
search_controller.rb
session_controller.rb
similar_topics_controller.rb
site_controller.rb
static_controller.rb DEV: Prefer public_send over send. 2019-05-07 09:33:21 +08:00
steps_controller.rb
stylesheets_controller.rb
svg_sprite_controller.rb
tag_groups_controller.rb
tags_controller.rb
theme_javascripts_controller.rb
themes_controller.rb
topics_controller.rb
uploads_controller.rb
user_actions_controller.rb
user_api_keys_controller.rb
user_avatars_controller.rb
user_badges_controller.rb
users_controller.rb DEV: Prefer public_send over send. 2019-05-07 09:33:21 +08:00
users_email_controller.rb
webhooks_controller.rb
wizard_controller.rb