GuestNo new alerts

Patch 17

- Updates30
I'll start with the main attraction, and then, some things I did between Patches 16 and 17.

Firstly, as part of the email related updates I've been pushing over the past few weeks, I've implemented passwords resets. This is a somewhat simple, but effective way for people to reclaim their accounts after forgetting their passwords.

Please note however that if you have 2FA enabled, then you will be required to present your 2FA token when you insert a new password.

I've also tightened the content security policy a bit more by eliminating inline scripts in the profiles (which also solved a minification bug) and I made it harder for users to inject arbitrary scripts onto pages.

For Cosora, I've added a WYSIWYG Editor for replies, it will likely get refined in the future. I might also improve the non-existent editor for Nox in the near future.

I have also fixed a bug where my avatar wouldn't update on As a side effect, the thumbnailer is more resilient against failure and the /uploads/ folder will be a little neater / smaller.

For the actual patch itself, we add the password_resets table.

More can be found here:

There are some others too, but they're very tiny.