Michael Downey wrote:
So there are lots of potential badges that we can come up with using SQL queries. I thought I'd start a topic for people to share some of the queries and badges they've created. I for one am looking forward to seeing some cool inspiration!
Posts: 2
Participants: 1
Lowell Heddings wrote:
We have the great feature to allow topics to automatically close after a certain time period, but I would really prefer that we allow topics to stay open until they haven't been responded to after a certain number of days... and then force them to close.
Because right now even a new topic shows up with the automatically close message at the bottom, which seems like it might stifle discussion a little when we are telling people right away that the topic is ending.
![]()
So maybe "after 10 days, close the topic if no activity after 3 days". Or something like that. Or maybe to simplify it, just make it be after x days of inactivity.
Posts: 7
Participants: 2
Michaelmd wrote:
I'd love to see a decent forum platform with federation.
(eg decentralised forums across multiple sites and connectivity to federated social networks such as Diaspora, Friendica, Pump.io, etc)anyone working on an addon?
if so I'd be keen
ok I need to learn Rails and might need to be pointed to some pages about getting started on the platform (for developers who know other languages) .. but not afraid to learn
Posts: 1
Participants: 1
Barnabas wrote:
Hi can a members online section be added to show the total number of people currently using the site in the frontend. I don't mean the admin dashboard but the site frontend. Thanks
Posts: 7
Participants: 1
Wally wrote:
Here is what you read when you are in Settings when editing a category: To control the order of categories in lists, enable the "fixed category positions" setting.
But this leads via a hyperlink to "admin/site_settings/category/email" and I somewhat doubt this is the right address or, at least, I don't see there what I am looking for, which is how to control the order of categories.
Any thoughts?
Posts: 3
Participants: 1
lid wrote:
I found having the first item in the drop down selected by default (highlighted in blue) confusing.
At first I associated the blue with the "new", like the notifications menu. and I thought it was a bug.
Took me a while to understand that the first item is actually selected / auto focusedHaving the 1st element auto-focused by default can be convenient. As the user type he can see what item will be used if he hits Enter, but this only after learning that this blue is actually the item being focused.
![]()
Option 1
This example utilize the Focus CSS styling instead of the .selected class. It make sense because the item is technically in focus.
![]()
or
![]()
Option 2
This is not my favorite option, but by just adding the left right border, differentiate the item from being associated with
new context implicitly. And it is also in common with topic keyboard navigation.![]()
![]()
Option 3
change the selected color to a more neutral color
Posts: 1
Participants: 1
Briancguy wrote:
On the latest software upgrade - my total user count went down by about 200 users after the upgrade was done. Why?
Posts: 2
Participants: 1
cpradio wrote:
Okay, so we've run into a weird issue on our small instance of Discourse (as we await for the import and official migration to it).
Viewing Latest of one of our categories does not show all of the topics in that category. We've found at least 1 topic missing and I've scrolled up and down it multiple times to no avail. If I search, it pops right up and indicates it is in the category I'm looking at the Latest topics for.
So if Latest truly does filter out topics, how does one get to the older topics? By Search only?
Posts: 1
Participants: 1
Erlend Sogge Heggen wrote:
Continuing the discussion from Just-in-time behavior nudging:
A good while back @mcwumbly did send me that book and I read it with great enjoyment. I'm not very good at 20th century tasks like sending snailmail, but I'll be moving soon and figured the time was right.
If anyone wants paperback copy of Dan Ariely's "The (Honest) Truth About Dishonesty" to read, PM me with your mailing address and I'll send it to you for free. (I reside in Norway, so Europe is easiest, but I hear we even move post by planes these days).
Posts: 1
Participants: 1
DanielMorgan wrote:
Suggestion: using the Mailcheck plugin during signup should help ensure that users get their initial signup email:
![]()
Posts: 2
Participants: 2
Stuart Alexander wrote:
Unsure if this is a bug or works as designed.
When I have some threads that people have replied to, I get a number count in the notifications bar. Say I have 3.
After I click on this and read one of them, I would expect to see a "2" in the notifications bar, but instead it just goes away?
Posts: 3
Participants: 2
cpradio wrote:
How does the View count get updated? Will it get updated when a bot indexes the site? Is it only incremented for anonymous and logged in users? Just logged in users?
Posts: 3
Participants: 2
Jeff Atwood wrote:
Although NodeBB lacks too many of the cool Discourse features, oh my freaking goodness it looks modern! Like humans from the year 2200 came back in time and left their forum software.
So yeah, FB groups is the competitor in volume, Vanilla is the competitor within the same class, but maybe NodeBB is the competitor in terms of (sleek) forum software for the next ten years.
There are a few different aesthetic features that play a part in that, but one that I especially noticed was the fade-in fade-out when clicking on a new page in NodeBB.
Posts: 46
Participants: 22
lid wrote:
1. Brute force attack prevention
It appears that Discourse does not take measures to detect and prevent multiple wrong sign ins.
Good security practices should essentially be in core.
brute force attack is common attack, a successful attack mean the attacker had enough time and he was not detected.
The following method is to weaken this sort of attacks.
The system should keep track of fail attempt per account login
After 5 false login attempts, the user will have to answer Captcha challenge with the following attempts
After 10 failed attempts, transparently deactivate logins for this account for 24 hours
Ignoring the login silently at this point will make it even more difficult for that attacker as it will not know that the attempt was voided.At this point even the legitimate user / the victim will not be able to login, The system will send
an email to the account owner letting him know that there was suspicious activity and regular login is suspended to protect him.
The email will contain a link to a tokenized login page that the legitimate user will be able to login from in the next 24 hours ( basically 2 way authentication )2 . Session management - and remote logout
Allow the user to logout / destroy all open session,
This feature is to allow a user who logged on a computer (library, school, friend, apple store, and forgot to logout ( I can't count on one hand any more the times that I saw open hotmail/gmail session in public places.3. Email change - should require password
It appears that changing an email does not require a password, for cases like section 2 above, it will make it very easy to hijack an account for good.
corrective measures
require the user login information before changing email or any element that has impact on the ownership of security of the account4. Login with email only. (configurable)
Username are public information, for more security conscious setups. Allowing logins by emails only, will add another layer of security, An attacker will have to find out 2 secrets (1st the email associated with the account and the password)
Posts: 3
Participants: 2
Sam Saffron wrote:
I have seen this now on 2 instances (here on meta and on another site)
The symptoms are
- A very large number of jobs scheduled "now" in the scheduled tab in sidekiq
- A very rapid increase in executed jobs
What more when I try to use the API to clear it, it does not clear.
We are running Sidekiq 3.1.3, I notice we can upgrade, but as of Sidekiq 3.2 there is no support for Ruby 1.9, it will not even boot. This will officially make Discourse Ruby 2.0 and up.
I am not really sure what to do here, but we need to nail this bug somehow.
Posts: 6
Participants: 3
lid wrote:
Replication
I manged to replicate this bug by triggering an empty "Your topic is similar to..." and then triggering
some actual results to populate in the box.Result
There will be two "similar to..." boxes overlapping
Revealing the 2nd box with css
![]()
Continuing the discussion from "Your topic is similar to.." , shows even if there are no result (empty):
Posts: 1
Participants: 1
lid wrote:
Open topic list view
Wait until an update or a new topic notification shows up
![]()
click on the logo (not on the blue bar)
![]()
Result
1. The topic list will refresh.
2. Notification bar will stay open.The user can click on the bar to dismiss and if the highlight bug was fixed then the user would have been able to see visually which topic were affected. Then one could have consider this a feature rather then a bug.
but I think this is more of a bug then a feature right now.
Posts: 1
Participants: 1
probus wrote:
Continuing the discussion from New topics with unread notifications:
after refresh:
Posts: 5
Participants: 2
Jeff Atwood wrote:
Continuing the discussion from Consolidating Activity field:
Since @probus brought it up, this does deserve some consideration, now that we've more or less stabilized the default set of topic list fields. What should selecting / activating each one of these fields do?
For logged in users:
- Title → your last read position, if no read position, top
- Category → category topic listing
- Avatars → that user's profile page
- Posts → same as title
- Views → (no action)
- Activity → popup, choose last or first post dates
For anonymous users:
- Title → first post
- Category → category topic listing
- Avatars → that user's profile page
- Posts → same as title
- Views → (no action)
- Activity → popup, choose last or first post dates
I think it makes more sense for the Posts field (the one bolded) to always jump to the last post, rather than being a carbon copy of the title behavior.
This seems a bit more logical to me (why would post count link to the top?), and also helps anons who have easy first and last post links now. It's not hugely different for logged in users, though it would help them when they haven't set a read position in the given topic, as it effectively gives them the same benefit as anons -- they can explicitly choose to enter at the top or bottom with 1 less click.
I also wonder if clicking the avatars should produce the user card, rather than jumping directly to the user's profile page?
Posts: 14
Participants: 7
probus wrote:
You are not shipping all the available localization files for moment which breaks the localization of dates on many languages.
edit.
A list of missing languages (that have at least 20% translated in Transifex):Hebrew
Finnish
Japanese
Polish
Persian
AlbanianIn total there are 50 languages in Transifex and only 17 localizations for dates are shipped. And those 17 are at least a year old as is the version of Moment.
Posts: 1
Participants: 1
