leap_web.git/users/app, branch 0.2.7

Merge pull request #110 from azul/feature/cleanup-expired-tokens

2013-11-12T17:16:45+00:00

Feature/cleanup expired tokens

fix cornercase of non expiring tokens

2013-11-08T08:45:28+00:00

Token.destroy_all_expired to cleanup expired tokens (#4411)

2013-11-08T08:45:09+00:00

use the account lifecycle from UsersController#destroy

2013-11-06T10:55:43+00:00

destroy all tickets created by a user when account is destroyed

2013-11-06T10:30:33+00:00

In order to keep the users engine independent of the tickets engine i added a generic load hook to the account model. The tickets engine then monkeypatches the account destruction and destroys all tickets before the user is destroyed.

The tickets are destroyed first so that even if things break there should never be tickets with an outdated user id.

I would have prefered to use super over using an alias_method_chain but I have not been able to figure out a way to make account a superclass of the account extension and still refer to Account from the users engine.

Identity.destroy_all_disabled will clean up disabled identities

2013-11-05T16:03:55+00:00

This is mostly for cleaning up after tests so far. But we might expand this to destroy all identities disabled before a certain date.

disabled identities to block handles after a user was deleted

2013-11-05T11:15:08+00:00

refactor: Identity.disable_all_for(user) on user destruction

2013-11-05T10:40:25+00:00

This way the identity model defines how identities should be disabled. We currently still destroy them. But it will be easy and nicely isolated to change this next.

notify user their account was successfully deleted (refs #4216)

2013-10-30T19:17:43+00:00

Also fixes a cornercase when admins deleted their own account. So far they would be redirected to the users list - which then refused access. Now they'll be redirected to the home landing page as well.

Fix button to enable account: https://leap.se/code/issues/4246

2013-10-28T20:10:12+00:00