Discourse 2.5.0.beta6 Release Notes

Security Updates

This beta includes 3 security fix for issues reported by our community and HackerOne.

  • Make find topic by slug adhere to SiteSetting.detailed_404
  • Use FinalDestination for topic embeds
  • Missing security check prior to redirect

Plugin improvements

Onebox

  • Improve Instagram Support

Code Review

  • Bug fix

Encrypt

  • Bug fix: remove correct user

Graphviz

  • Add more detailed error messages
  • Bug fixes

Knowledge Explorer

  • Improve topic status icon handling

Subscriptions

  • Miscellaneous improvements

Patreon

  • Bug fix

WP Discourse

  • Update wpdc_auto_publish_overridden post metadata when a post is unlinked from Discourse to prevent the plugin from attempting
    to publish updates to the post to Discourse
  • Fix issue with the Auto Publish setting for posts that were unlinked from Discourse prior to WP Discourse version 2.0.3
  • Add static get_discourse_comments function to allow comments to be displayed without loading the comments template

User Notes

  • Bug fix

Solved

  • Fix solved colors

Calendar

Font Awesome Pro

  • Bug fixes

Additional Features and Fixes

Click to expand

New Features

  • New plugin outlet under badges page title
  • Notify admins about old credentials
  • Download remote images even for old posts
  • Optionally allow tags in topic tracking state
  • Show a detailed 404 page for private topics

Bug Fixes

  • Support exporting reports which reference topics
  • Correct the misalignment of popover arrows
  • Don’t change the button height when spinner appears
  • Restore the ability to rebake posts in deleted topics
  • Handle files removed between glob and mtime
  • z helper doesn’t resolve inside calc
  • Topic-admin-popup-menu was overflowing on small screens
  • Support IRIs (unicode URIs) when pulling hotlinked images
  • Pull hotlinked images even when edited by system users
  • Invalidate database theme cache when hostname changes
  • Pins down highlight.js to the last commit of the v9 tree
  • Don’t rerender whole users page while typing on input.
  • Muted tags removed topics with no tags from counts
  • Don’t raise an exception if a topic cannot be retrieved
  • Allows to define label/title properties for display instead of name
  • Sending messages to groups with non-lowercase names
  • Broken query if upload id is missing
  • Allows to have custom emoji translation without static file
  • Add X-Robots-Tag header for check_xhr-covered GET actions, too
  • Don’t send digests to users with no primary email
  • Correctly set values and defaults for group-form-interaction-fields
  • When destroying a draft always ensure saving is done
  • Opening cancel draft dialog broke autosave
  • Pass current_user to TopicQuery in for categories_and_top_topics
  • Updates variables for HTML to use em instead of px in font-size
  • Wizard fails to start when default_theme_id is -1
  • Wizard previews if color step is excluded
  • XML files could be detected as SVG files

UX Changes

  • Remove box-shadow from kbd, unify styling
  • Fix border radius artifacts on dashboard pills
  • Remove the period after “Enable Notifications” button
  • Fix inputs alignment in admin/customize/colors
  • Position topic admin menu next to wrench
  • Make the menu links header within the user panel more flexible
  • Better alignment of icons in notifications menu
  • Relocate before-topic-list outlet so it shows up on Top as well
  • Remove in:unpinned filter from advanced search page.
  • Fix activity column display in wizard homepage step
  • Remove edit PM button
  • More consistent alignment of topic timer’s selected datetimes
  • Don’t show the suspension date if the user is permantently suspended.
  • Keep focus on input after selecting an autocomplete option
  • Do not show redundant user count
  • Add spacing between +member_count and “more”
  • Rename Priority to score for sorting.

Performance

  • Use more efficient query when checking for existence.
27 Likes