summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2014-07-14ApiController with API style authAzul
require_login is require_token for the api controller It also skips the verify_authenticity_token before filter. So all Subclasses of the ApiController will only support token auth. Also made the V1::UsersController a bit more strict. Now way for admins to alter other users through the api. We don't support that yet so let's not allow it either.
2014-07-14minor: fix identity test for storing certsAzul
we compare the cert that expires last to the one we just saved. So we need to make sure the one we saved is the one that expires last.
2014-07-14clean up and simplify error responses and test codeAzul
2014-07-14move unauthenticated api endpoints into separate featureAzul
2014-07-14send static list of configs for nowAzul
Also added authentication steps to cucumber
2014-07-14use cucumber; initial ConfigsControllerAzul
2014-07-14render valid json error if provider file not foundAzul
2014-07-14SessionsController#unauthenticated for 401sAzul
Warden will catch all 401 responses at the rack level and call the app for failures. By default that is SessionsController#unauthenticated. I'm sticking with this. If we ever have other rack endpoints they can just send a 401 and the webapp will take care of the message. Other options would have been to tell warden not to take care of 401 either during initialization or by calling custom_failure! in the login_required method. We probably want a response that has a unique identifier for the error to process by the client and a translated message later on. For now i think the 401 suffices to identify the issue at hand.
2014-07-14separate login_required from access denied responseAzul
They are very different. Let's handle them in different methods.
2014-07-14rename warden extension to patch the originalAzul
the Warden::SessionSerializer was not getting loaded at all because we had a file by the same name. We want it to get loaded and be patched instead.
2014-07-14Merge pull request #179 from fbernitt/issue_5217_addendumazul
Moved check for allow_registration into filter.
2014-07-14Moved check for allow_registration into filter.Folker Bernitt
2014-07-14Merge pull request #175 from azul/feature/view-for-valid-certsazul
Feature/view for valid certs
2014-07-12allow querying for the expiry of a particular fingerprintAzul
2014-07-12minor: fix typo in load_viewsAzul
It removed most of the reduce functions... really not what we wanted
2014-07-12fix tests and simplify time calculationsAzul
2014-07-12Identity view cert_fingerprints_by_expiryAzul
Also move complex identity views into js designs. Includes test. Here's how you would query it from outside rails: ``` $ curl 'localhost:5984/identities/_design/Identity/_view/cert_fingerprints_by_expiry?startkey="2014-07-05"' {"total_rows":4,"offset":1,"rows":[ {"id":"6c9091d4f13eaeaa6062c9d0528fd34d","key":"2014-07-05","value":"fingerprint"}, {"id":"6f3aa93828b4f6978d551f2623b9d103","key":"2014-07-05","value":"fingerprint"}, {"id":"b6cafacfa65042679691cd5065fb19e3","key":"2014-07-07","value":"fp"} ]} ``` Note that the expiry will be used as the key. So you should use the current data (or yesterday) as the startkey to get all fingerprints that have not expired yet. The fingerprint itself is in the value. No need to include docs.
2014-07-12store expiry with cert fingerprintsAzul
We used to store the creation date but this way it's easier to query for non expired certs
2014-07-11Merge pull request #178 from fbernitt/issue_5217_allow_registrationazul
Added allow_registration toggle.
2014-07-11Added allow_registration toggle.Folker Bernitt
- default is true - See issue #5217 - See companion change in leap_platform.
2014-07-10Merge pull request #174 from azul/bugfix/admin-navigates-all-ticketsazul
Admin navigates all tickets - fixes #5879
2014-07-09adopt ticket list test to new behaviourAzul
We completely ingnore the user_id param for non admins now. So if someone tries to show somebody elses tickets they will see their own instead.
2014-07-09only use user ticket(s) path for real usersAzul
2014-07-09minor: cleanup some linksAzul
only submit the params that differ from the defaults
2014-07-09stay on all tickets view when sorting (#5879)Azul
When an admin sorted the tickets view in a different order it would take them to their own tickets list before
2014-07-09minor: remove dummy dependency in engine test_helpersAzul
This was causing problems with zeus
2014-07-09Merge pull request #173 from azul/feature/unblock-handlesazul
Allow admins to unblock handles
2014-07-09list identities based on search onlyAzul
2014-07-08create client certificates with generous not_before (fixes #5884)elijah
2014-07-05make link_to_navigation more generic and reuse itAzul
Use link_to_navigation for all important navigation items. It creates a link in a list item for use with bootstrap. It supports an :active flag and an :icon option in the html_options now. It also translates the label. This way it can be used in a lot of places as the generic navigation link.
2014-07-05Enable unblocking handles in identities tabAzul
There's an identities tab now for admins that will allow unblocking blocked handles. It should be easy to expand for aliases and forwards and other types of actions such as editing.
2014-07-05backport bootstraps 3.2s list-inlineAzul
list-unstyled comes for free
2014-07-05move braintree initilializer into coreAzul
it needs APP_CONFIG to be loaded and was failing due to that. Also this sets up some configuration options. They might only be needed if the billing engine is used but they should not be nested in there never the less.
2014-07-05remove dummy appAzul
We're not supporting including leap_web as a gem right now.
2014-07-04update Gemfile.lock to reflect 0.5.3Azul
2014-07-01Merge tag '0.5.3'Azul
2014-07-01Version 0.5.30.5.3Azul
This release enables using custom gems in the leap platform customization. It also fixes cornercases during the account creation and documents debugging in production. * android app now supports signup, so change text that said otherwise. * added debugging note to DEVELOP.md * Account.create - do a User.new instead of User.create, so that we can report the errors on the object if not saved. Pull request #172 from elijh/feature/customgem * Gemfile: fix problem when config is missing environments * support for optional gems in Gemfile (engines/ and * config/customization/gems/) Pull request #171 from elijh/feature/identityfail * if identity fails to be created, destroy the user. also, pass through identity errors to user and add identity class hook.
2014-06-25android app now supports signup, so change text that said otherwise.elijah
2014-06-23added debugging note to DEVELOP.mdelijah
2014-06-23Account.create - do a User.new instead of User.create, so that we can report ↵elijah
the errors on the object if not saved.
2014-06-18Merge pull request #172 from elijh/feature/customgemazul
Add support for custom gems via a dynamic Gemfile
2014-06-18Merge pull request #171 from elijh/feature/identityfailazul
if identity fails to be created, destroy the user.
2014-06-17Gemfile: fix problem when config is missing environmentselijah
2014-06-17if identity fails to be created, destroy the user. also, pass through ↵elijah
identity errors to user and add identity class hook.
2014-06-17support for optional gems in Gemfile (engines/ and config/customization/gems/)elijah
2014-06-09Merge tag '0.5.2'Azul
2014-06-09Version 0.5.20.5.2Azul
Hotfix since 0.5.2 release candiate: * tickets: fix bug that allow index of other users Pull request #167 from azul/feature/i18n-for-ticket-system: * fix flash for creating anonymous tickets * adopt tests to new translations * destroy_btn helper method * move users key into layouts scope so it does not conflict with users scope * add btn helper for link_to with .btn * remove icon_color variable - yagni * sorting translation keys some * navigation works with empty locale selected * tickets: structure i18n * flash_for with_errors option displays error messages * remove unused bold helper and instead sanitize flash * Controller#flash_for instead of FlashResponder * split up and refactor TicketController#update * separate tests for the ticket list from main controller test * splitting up long functional test case * move comment related tests out of TicketControllerTest * use i18n.missing_translations Pull request #168 from azul/bugfix/fix-login-validations: * clearify identity validations * ensure User#reload returns self * hand on errors from Email to Identity to User * catch corner cases of account creation * adopt tests to new error messages for identities * allow changing the user_id on an identity * ensure identity is cleared on user.reload - fixes test * use Identity for testing login availability Pull request #163 from azul/feature/3398-save-hashed-token * hash token with sha512 against timing attacs #3398 Pull request #165 from azul/feature/cert-fingerprints * change from GET to POST for certs * store fingerprints with timestamp * store cert fingerprint with main user identity * SmtpCertsController, routes and tests * fix Email so User.new.valid? does not crash * basic integration test for cert API * calculate cert fingerprints to store for leap_mx Pull request #166 from elijh/feature/footer * better detection if price link should be shown in the footer Pull request #162 from azul/feature/3295-custom-error-pages * little bit of documentation * i18n for error pages * custom error pages for 404 and 500 errors
2014-06-03tickets: fix bug that allow index of other userselijah
2014-05-30Merge pull request #167 from azul/feature/i18n-for-ticket-system0.5.2-rcazul
Feature/i18n for ticket system
2014-05-30Merge pull request #168 from azul/bugfix/fix-login-validationsazul
Fix login validations