2.8.0.beta3: User-selectable Avatar Flair, Last Topic Visit Indicator, Native File Picker, and more

Even more!

But wait, there’s more! We do our best to highlight new features and changes for you, but there’s always too many changes to detail. For a full list of new features, bug fixes, UX improvements, and more, be sure to review the Additional Features and Fixes listed below.

Security updates

This beta includes 3 security fixes for issues reported by our community and HackerOne.

  • Onebox canonical links bypassing FinalDestination checks
  • Ensures timeouts are correctly used on connect
  • Sanitize YouTube Onebox data (CVE-2021-32764)
    • This vulnerability only affects sites which have disabled/modified the default content-security-policy

Plugin improvements

Assign

New Features

  • Adds support for a random assign automation

Bug Fixes

  • Handle invalid source data in CF migration
  • CF to table migration was incorrect
  • Automation fields now all use the same value property
  • Assign topic button not working

OAuth2 Basic

New Features

  • Fetch custom attributes from the user details.

Akismet

New Features

  • Blocking is optional when deleting an user

Calendar

Bug Fixes

  • Use new attribute names for flair
  • Fix constants task and run update it
  • Invitee avatar alignment in Safari 15
  • Holidays gem not required in Sidekiq.

Data Explorer

Bug Fixes

  • Add missing string
  • Translation of column headers in query table

User Card Badges

Bug Fixes

  • Image column is now image_upload in core

Anonymous Moderators

Bug Fixes

  • update_attributes! was removed in Rails 6.1

Solved

New Features

  • Show education message in composer when replying on solved topic

Bug Fixes

  • Backwards compatibility for older Discourse versions

UX Changes

  • Fix solution alignment on mobile

Brightcove

New Features

  • Delete videos when posts are deleted

Bug Fixes

  • ApiError should store its status
  • Avoid conflict with other plugins

Encrypt

New Features

  • Client-sided search in encrypted topics

Bug Fixes

  • Add workaround for Safari’s IndexedDb bug
  • Return an empty identity if loading fails
  • Reject promise if identity cannot be loaded
  • Fallback to file size to lookup file info
  • Do not explode if search result is empty
  • Do more to decrypt encrypted results
  • Populate all fields used for serialization
  • Use Session instead of sessionStorage
  • Replace use of global Discourse

Performance

  • Preload tags if enabled
  • Preload users and topics encrypt data
  • Fetch only first posts for search cache

BCC

Bug Fixes

  • Do not crash when user.name is nil

Code Review

Bug Fixes

  • Do not parse emoji in commit message
  • Allow dots in repo names
  • Translations for bad_github_X were missing
  • Gracefully handle GitHub API errors in plugin config

Subscriptions

New Features

  • Add fireworks + gradient animation to campaign success banner
  • Add ability to use custom background image
  • Validate coupon codes on form submit

Bug Fixes

  • New user sessions redirected weirdly on login-required sites
  • Restrict mods from seeing Subscriptions admin features

UX Changes

  • Hide campaign button on goal completion

Reactions

Bug Fixes

  • Attempts to have a topic level message bus event only
  • Relying on topic level event :acted is enough
  • Cleanup MessageBus subscriptions when navigating between topics

Category Experts

New Features

  • Setting for topic list pills to link to posts

Bug Fixes

  • Do not show endorse button for suspended users
  • Wait for loading to show out of endorsements
  • Do not error when private message is sent
  • Remove custom fields from unapproved posts when user is removed as expert

Crowd

Bug Fixes

  • Add translations for method name and button title

Automation

Initial release:

Additional Features and Fixes

Click to expand

New Features

  • Update existing users when group default notifications changed.
  • Add option to grant badge multiple times to users using Bulk Award
  • Uppy image uploader with UppyUploadMixin
  • Add title tag for group detail page
  • Add period filter in top topics route for tags.
  • Reencoding is safe, trigger it on files >` 500Kb
  • Use group SMTP job and mailer instead of UserNotifications change
  • Render emojis on GitHub labels when oneboxing an issue.
  • Make max number of favorite configurable
  • Add more columns to outbound EmailLog
  • Improvement to history stack handling on server errors
  • Use responsive image sizes in post stream
  • Open the edit bookmark modal when clicking on the topic level bookmark button
  • Add last updated details to SMTP/IMAP group settings UI
  • Make date pickers in the bookmarks UI and topic timer UI consistent with all other pickers
  • Add type=website OpenGraph meta tag
  • Add upgrade-insecure-requests to CSP when force_https is enabled

Bug Fixes

  • Add order to outputted stylesheet link tags
  • Problems with choosing favorite badges
  • Assets for the theme tests page are not compressed
  • Issues with custom icons in themes
  • Remove button to dismiss theme error messages
  • user/badges grid fix
  • A memoization bug in UserLookup and refactor
  • Use array to keep best link for each onebox
  • Use Terser for minification even if uglify-js is not available
  • Don’t try to load badges if there none left
  • Email threads sometimes not grouping for group SMTP
  • Use rem for font sizes in post headings
  • Don’t use user_generated images as avatar images in Oneboxed Twitter content
  • Don’t downcase “all groups” in dropdown
  • Allow uppercase letters in automatic group names
  • Do not show invalid option in flair chooser
  • Set user flair group to primary group
  • Various translation string fixes
  • Suggest current username for staged users
  • Admin_user_response schema
  • Use created_at if last_posted_at is null
  • Show correct dates in topic timelines
  • Scroll to top on badge pages
  • Let staged users choose their username
  • Switch logos live when changing color schemes in user prefs
  • Various translation string fixes
  • Let user clear their flair group
  • Can_admin_group should be true when creating a new group.
  • Handle storage providers not implementing ACLs
  • Do not interpret backreferences in email content
  • Do not wrap flair title in chooser
  • Do not prevent other topic timers running on error
  • Check type of existing reviewables when new reviewable is created
  • Fix error message for fix_missing_s3 rake task
  • Set CSP base-uri to self
  • fix_missing_s3 task fails on failed upload (take 2)
  • Do not stop fix_missing_s3 task if saving an upload failed
  • Maintain order when updating notifications
  • Handle SMTPServerBusy for group smtp email
  • Multiply ratelimiter leniency for own discobot certs
  • Poll wasn’t showing all voters
  • Handle edge cases for group SMTP email job
  • Respect personal_email_time_window_seconds in group SMTP
  • Build quote share URL using post number, not post ID
  • Load the category when the category_id attr is present.
  • Do not reload whole directory table on username input change
  • Invalid link definition in bootstrap-json
  • Update locale keys for watched word logs
  • Delete old reminder topic timers
  • Show empty search results sets
  • Make non-transactional migration idempotent
  • Set class on color scheme links in bootstrap
  • Reorder and hide topic timer options
  • Child themes being precompiled multiple times take 2.
  • Rename ninja edit terminology to grace period
  • Detect decode failures earlier in image optimization pipeline
  • Detect resize failures in the client size image optimization
  • Don’t translate TrustLevel name when generating links
  • Typo in discourse
  • Reintroduce add group user by email
  • Do not close the merged topic if the first post wasn’t merged
  • Clear appropriate cache when updating font settings
  • TL4 users cannot delete others posts
  • Do not redirect to a topic user cannot see
  • Ignore canonical link to localhost
  • Child themes being precompiled multiple times.
  • Problem when [] custom field is send
  • Always render topic counts
  • Use absolute URL when redirecting SVG sprite path.
  • Ensures we don’t apply charts options to other modes
  • Include user_field_ids in pagination URL for directory items
  • Some admin reports (notably backups) were not showing up
  • Do not call ‘set’ in destroyed directory table component
  • Get all groups for user directory dropdown
  • Flaky search-spec
  • Remove legacy topic timer code
  • Handle image decoding failure in composer image optimization
  • Remove extra margin from share topic modal
  • Only delete the word/phrase when the ‘x’ icon is clicked
  • Topic level bookmark button
  • Do not show In Reply To for group SMTP emails
  • Missing category edit icon.
  • Improve participant display in group SMTP emails
  • Backfill topic_id for EmailLog
  • Nil-filled CF arrays were not being deleted
  • Translation of plugin directory column on mobile
  • Follow redirects for inline/mini onebox
  • Always serialize the correct attributes for DirectoryItems
  • Increase max favorite badges to 6
  • Table header translations on admin users list
  • Manually update DirectoryItemSerializer attributes on directory column change
  • Check all migrations for dropped columns/tables during restore
  • Load more users URL respect group param
  • Make favorite work with multiple grant badges
  • Ignore missing uploads in theme settings
  • Absolute path for directory-columns.json
  • Ignore posts needing approval when calculating reviewable counts.
  • fix_missing_s3 rake task could fail due to missing upload
  • ShrinkUploadedImage was broken since cb12a721
  • Ensures average is applied on last incomplete segment
  • Set random values for digest_attempted_at
  • Previewing theme components broken when component has no SCSS.
  • Remove duplicate add_unsubscribe_link hash key
  • Render detailed_404 page from 403 responses
  • Show link count only once for oneboxes
  • TL4 users can see their deleted posts
  • Downsize image last when saving uploads
  • Correctly implements average for reports
  • Multiple links being generated for non-theme targets.
  • Color scheme stylesheet not loaded when no default theme is set.
  • Prevent resurrecting old topics via email reply for group inboxes with SMTP enabled
  • Remove List-Unsubscribe header if using group SMTP
  • Do not display twice a user who changed vote
  • Do not check for duplicate links in Onebox
  • Add word boundaries to replace and tag watched words
  • Update post’s raw from server response
  • Mobile layout for watched words admin UI
  • Ensures validValues is an array
  • Do not add mailing list headers to group SMTP emails
  • Dismiss new keyboard shortcut not working
  • Drop and recreate column properly for directory_columns
  • Use correct property for jump-up embedded post link
  • Allow SVG uploads if dimensions are a fraction of a unit
  • Broken DB issue following a reverted migration
  • Adding multiple auto tags in watched words admin UI
  • Translations of table headers in group members directory
  • Prevents mode to be forced to unexisting mode
  • Resend only pending invites
  • Destroy invites of anonymized emails
  • Ensure we dont collapse data multiple times
  • Move allow_unknown_sender_topic_replies outside SMTP/IMAP box
  • Make sure reset-new for tracked is not limited by per_page count
  • Ember CLI was losing some preloaded data
  • Sort filelists to ensure consistant asset precompilation hash
  • The topic level bookmark button stops working if choose ‘No’ on the clearing all bookmarks confirmation modal
  • Make avatar-flair component fail gracefully group info missing
  • Skip failing tests for composer
  • Update raw and cooked immediate after edit
  • Make sure topic_user.bookmarked is synced in more places
  • Validate upload is still valid after calling the “before_upload_creation” event
  • Respect nofollow exclusion setting in topic featured links.
  • Refresh post stream after in-place post updates
  • Some absolute links were causing full page reloads
  • Show group Email settings if just SMTP enabled
  • Adjust styling of first notification
  • De-prioritize composer category on navigation
  • Do not render user-avatar-flair element when user has no flair
  • Flaky javascript tests with fake timers
  • Clicking on a URL with a different url prefix did not work
  • Do not reload post if raw is present
  • Can’t bootstrap with ember-cli when login_required is enabled
  • Link up reply to post correctly when emailing group
  • count is not defined lint error
  • Lots of plugin tests were using old, non-Ember compat CLI APIs
  • Do not block SVG sprite bundle if a file is missing
  • Theme tests should work in production
  • Errors loading secure uploads when secure uploads is disabled

UX Changes

  • Stop imgur/google photo mobile onebox overflow
  • Make sure there’s always a margin on badges page
  • Improve share modal consistency
  • Move the skip auth confirmation spinner inside the modal body.
  • Add copy button to theme public key
  • Improve the link to the preferences page on the new and unread tabs
  • Add success state to copy button
  • Fix z-index for new topic alert
  • Translate the action type in watched words regex error
  • Layout issues with topic last visit line.
  • Remove background image after image has loaded
  • Remove top border on small action after last visit line.
  • Use topic list bulk select toggle for user messages list.
  • Make emoji size consistent for oneboxed GH issues with short tags.
  • Make poll content selectable
  • Tweak spacing in the admin dashboard
  • Adds ‘Processing Upload’ to the composer status area during upload optimization
  • Horizontal scroll bar on top of user directory (when needed)
  • Tweak the timestamp line in Twitter onebox
  • Improve blockquote styling in emails
  • Add notice when watched words are regexes
  • Margin improvement for mobile alerts
  • Make bulk select checkbox easier to target
  • Fix mobile alert spacing
  • Make it easier to hide the emoji on signup
  • Hide email columns when Hide Emails is selected
  • Improve lightbox gallery zoom/navigation
  • Fix jump-to-post layout on mobile
  • Fix mobile progress bar button alignment
  • Daily automatic grouping for less than 34 days instead of 30
  • Use button instead of anchor in filtered replies bar
  • Remove reference to contact form in setting
  • Improve user delete error message & return correct post count.
  • Improvements for reordering categories
  • Add a hint that tags can be included in tag groups

Performance

  • Improve topic_user.liked update performance when moving posts
  • Improve post_timing performance when moving posts
  • Optimise backfilling of topic_id
  • Cache categories in Site model take 3.
  • Remove n+1 in user directory
  • Update post uploads secure status in a job
  • Eager load Theme associations in Stylesheet Manager.
  • Cache categories in Site model take 2.
  • Cache categories in Site model.
  • Remove extra PG query.
  • Perform user filtering in SQL
  • Avoid running a pointless PG query when theme has no variables.
  • Animate request animation frame
19 Likes