leap_web.git/test/integration/browser, branch feat/drop-signup [leap_web] feat: remove signup link from landing page 2017-08-04T09:06:20+00:00 Azul azul@riseup.net 2017-08-04T09:06:20+00:00 36ef16fb01865552e3fcc14c81819cbbead49169 We are deprecating webapp based signup. It leads to an inconsistent state for mail providers and offers no useful interactions for vpn providers either. Instead of trying to deal with the halve way signup through the webapp we require signup through bitmask app which can also create the pgp keys for email and download and use the cert for vpn. In addition this reduces the attack surface for js injection, phishing and other browser based attacks. For now we still keep the signup form in case providers link to it directly. We also keep all the tests based on it. Cleanup will happen right after 0.10.0 release. 
We are deprecating webapp based signup. It leads to an
inconsistent state for mail providers and offers no useful
interactions for vpn providers either.

Instead of trying to deal with the halve way signup through
the webapp we require signup through bitmask app which can
also create the pgp keys for email and download and use the
cert for vpn.

In addition this reduces the attack surface for js injection,
phishing and other browser based attacks.

For now we still keep the signup form in case providers link
to it directly. We also keep all the tests based on it. Cleanup
will happen right after 0.10.0 release.
fix: set token in forms correctly 2017-04-20T13:59:18+00:00 Azul azul@riseup.net 2017-04-20T13:59:18+00:00 653f92e6ac5c0b61e8113665735d929426deb714 We now use the hash of the token for comparison and as the id. In order to use it you need the original token though. So forms and thus the session should have token.to_s rather than token.id. 
We now use the hash of the token for comparison and as the id.
In order to use it you need the original token though. So forms and
thus the session should have token.to_s rather than token.id.
feature: delete user clearing username 2017-04-03T08:43:42+00:00 Azul azul@riseup.net 2017-04-03T08:43:42+00:00 e9bdd2aa5a0662a9fc6d5ce730e26cfd560210ba 






upgrade: simple_form to bootstrap 3
2017-03-27T08:39:26+00:00

Azul
azul@riseup.net

2017-03-24T11:08:50+00:00

b1b523f08a9ce7ea5fe0d50dc8b86995e00b48d6

* reran the simple form initializer.
* wrapped submit buttons are now broken and need a fix.
* disabled confirmation validation in client side validations as the
  error message always is attached to the wrong field.





* reran the simple form initializer.
* wrapped submit buttons are now broken and need a fix.
* disabled confirmation validation in client side validations as the
  error message always is attached to the wrong field.







move signup from users to account_controller
2016-05-23T11:01:51+00:00

Azul
azul@riseup.net

2016-05-23T10:17:31+00:00

f47fc9d6522886cf81cfea26ec1f396219c539ba

There was a lot of special case handling going on in the users_controller
for this. Lot simpler this way.





There was a lot of special case handling going on in the users_controller
for this. Lot simpler this way.







api: allow version bumping - bump to 2
2016-05-18T18:07:41+00:00

Azul
azul@riseup.net

2016-05-01T13:55:33+00:00

e05a1b0f5ae40a2aa17976b3009cd563b8e4660a












split up integration account test
2016-05-02T11:24:41+00:00

Azul
azul@riseup.net

2016-03-24T08:03:30+00:00

0ac511a31a6652ab00bbc765079b1c56128b191f

AccountLivecycleTest -> CRUD accounts
SecurityTest -> security specific tests
AdminTest -> admin specific tests





AccountLivecycleTest -> CRUD accounts
SecurityTest -> security specific tests
AdminTest -> admin specific tests







allow user accounts to be re-enabled, and for associated identities to also get re-enabled.
2016-02-10T18:56:57+00:00

elijah
elijah@riseup.net

2016-02-10T18:56:57+00:00

49d3e9df74685fe17a2abbbabdd17014f2371065












Make invite code configurable
2015-09-28T13:12:46+00:00

ankonym
ankonym@gmail.com

2015-09-21T16:34:04+00:00

9adbde13619de8b2c300056b062d12f0961cb710

Through the config param 'invite_required', providers can decide whether users need to provide an invite code upon signup.
The default setting is false.





Through the config param 'invite_required', providers can decide whether users need to provide an invite code upon signup.
The default setting is false.







Fix several test failures by stubbing invite code validation
2015-09-28T13:12:45+00:00

ankonym
ankonym@gmail.com

2015-09-01T08:48:25+00:00

c48e921c101d49bf68fa1af489b8012517b1a105