NodeBB Development

I am seeing similar behavior too for read API (for example get user by email api), master token and _uid are ignored when sending request. The document states that master token can be used, however it doesn't seem to be the case for all APIs.

Cracked it! I had all this nonsense in my nginx from googling around. here is what worked. location /forum { if ($request_method = 'OPTIONS') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Allow-Credentials' 'true'; add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-AUTHENTICATION, X-IP, Accept'; add_header 'Access-Control-Max-Age' 1728000; add_header 'Content-Type' 'text/plain charset=UTF-8'; add_header 'Content-Length' 0; return 204; } if ($request_method = 'POST') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Allow-Credentials' 'true'; add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-AUTHENTICATION, X-IP, Accept'; } if ($request_method = 'GET') { add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Allow-Credentials' 'true'; add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-AUTHENTICATION, X-IP, Accept'; } add_header 'Access-Control-Allow-Credentials' 'true'; add_header X-Frame-Options "SAMEORIGIN"; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header Host $http_host; proxy_set_header X-NginX-Proxy true; # proxy_set_header X-Forwarded-Proto $http_x_forwarded_proto; proxy_pass http://127.0.0.1:4567; # no subfolder defined here proxy_set_header Host $host; # MAGIC proxy_redirect off; # Socket.IO Support proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; }

I am trying to call api/v3/categories/111/privileges/groups:posts:upvote to set privileges for a group. It's a PUT API, and it seems to accept array of privileges on server side. I tried multiple ways to pass array in the URL and all attempts failed. for example /api/v3/categories/111/privileges/privilege[]=groups:posts:upvote&privilege[]=groups:posts:delete Any idea how to pass array of privileges to PUT API? The API doc is here https://docs.nodebb.org/api/write/#tag/categories/paths/~1categories~1{cid}~1privileges~1{privilege}/put Thanks in advance!

Hey all- I am a moron. I forgot the /api/v3 in the API url. fml

Okay I bit the bullet and learned nginx and am off to the races.

The id you send should identify the user in your system. The plugin will store a map of NodeBB user id to your id for synchronization.

Hi, I am new to NodeBB. I want to use NodeBB for the school, every class will have its own discussion boards, the discussion board can only be accessed by the students in the class and moderated by the classroom teachers. How do I create the board dynamically and restrict access for a certain group of people? I don't need NodeBB's user management system as our application has already authenticated users, so this is assuming students and teachers are already logged in with JWT token stored in the cookie. Your help is appreciated! John

@ak-tech I don't know about firebase hosting... As long as it runs on a compatible OS and has Shell access, I don't see why it can't.

@anirban-dutta I use command like this npm install git+https://github.com/me-cooper/nodebb-plugin-makesmart-gallery.git when repo is not recognized by npm install Just remember to add .git at the end of github repo url.

Re: content security policy Is CSP supported in 1.17.1?

@miguel-guzman I just noticed that the Fiddle you included appears to have an API key embedded - hope that's not yours - otherwise, millions of random internet users will be getting this product for free whilst you pay for it

Thanks @dunlix and @PitaJ for help me. Problem solved only for yours help. Thanks a lot

https://docs.nodebb.org/development/plugins/ Read this link----->

As a result, I got such a script, maybe it will be useful to someone. const Theme = {} const user = require.main.require('./src/user') const privileges = require.main.require('./src/privileges') Theme.getUsersByCategory = async function(data) { const { templateData: { cid } } = data const allUserIds = await user.getUidsFromSet('users:joindate', 0, -1) const asyncFilter = async (arr, predicate) => { const results = await Promise.all(arr.map(predicate)) return arr.filter((element, index) => results[index]) } const availableUserIds = await asyncFilter(allUserIds, async (id) => { return await privileges.categories.can('read', cid, id) }) data.templateData.availableUsers = await user.getUsersData(availableUserIds) return data } module.exports = Theme

@antosik great, thank you!

@phenomlab it probably isn't provided with the breadcrumb data, so it doesn't render anything. You can check ajaxify.data in your browsers js console to see what's there.

Yeah it's a known issue you'll have to relink sometimes. It depends on what npm version and OS you're using.

@rajeev2189 ... but since: You already tried the big jump and failed You are also using some customized stuff I'd suggest going version by version until you hit something that breaks. Then examine breaking changes logs and such for that version. Edit: Hmmm... Rereading your OP: ...challenges while upgrading. Maybe I misinterpreted this and you have not actually already tried to update? In which case, if not, follow pitaj's recipe above.

A question to the developers of nodebb, please improve the api docs. The api is great but is lacking explanation in many cases.

@eveh sorry 🤭 Try this body { font-size: 2rem !important; }