leap_web.git - [leap

Age	Commit message (Collapse)	Author
2017-03-23	upgrade: use rails4s 'secret_key_base'	Azul
	This will get us encrypted cookies but also requires changes to the platform. fixes #23
2016-05-03	use APP_CONFIG[config_file_paths] for provider.json	Azul
	This avoids overwriting the PROVIDER_JSON constant in the StaticConfigController and thus fixes test warnings. Also moved away from using instance variables in the ControllerExtension::JsonFile - instead querying the corresponding functions now - less sideeffects and easier stubbing.
2016-03-28	api tokens - clarify terms: "monitors" are admins that authenticated via api ↵	elijah
	token, "tmp" users are users that exist only in tmp db, "test" users are either tmp users or users named "test_user_x"
2016-03-28	api tokens: allow for special api tokens that work like session tokens but ↵	elijah
	are configured in the static config, to be used for infrastructure monitoring.
2015-09-28	Make invite code configurable	ankonym
	Through the config param 'invite_required', providers can decide whether users need to provide an invite code upon signup. The default setting is false.
2015-06-30	updated locale files	elijah

2015-04-30	added support for email notifications of ticket changes	elijah

2015-04-20	fixed warnings that gems are defined multiple times in Gemfile	elijah

2015-01-28	client certificates: allow for time units to be specified in ↵	elijah
	client_cert_lifespan config option.
2014-11-11	Merge branch 'test/feature-for-service-endpoint' of ↵	elijah
	https://github.com/azul/leap_web into develop
2014-07-31	features for anonymous use and service endpoint	Azul
	Also moved the location of the config files into a configuration setting.
2014-07-29	changed the development mode admin user from 'admin' to 'staff', since admin ↵	elijah
	is a reserved username that can't be registered.
2014-07-11	Added allow_registration toggle.	Folker Bernitt
	- default is true - See issue #5217 - See companion change in leap_platform.
2014-06-17	support for optional gems in Gemfile (engines/ and config/customization/gems/)	elijah

2014-05-13	keep empty email field if user removed prefill	Azul
	We should respect the users choice. We can still get their email from the user id if we really need to.
2014-04-18	adopt service_level config to platform settings	Azul
	cost -> rate quota -> storage
2014-04-18	change service level configuration strategy	Azul
	The changes to the configuration required some non minor changes to the platform and also added some flexibility we don't require yet - and thus some new possibilities for errors. So instead we still use the allow_..._certs and ..._cert_prefix options. They basically provide the framework in which service levels can operate. The service level configuration will not include the cert prefix anymore. It only states if the service level is rate limited or not. This avoids conflicts between the two configuration options. I also removed the anonymous service level entirely. It was also turning a boolean decision (do we provide anonymous eip or not) into something way more complex. Instead I added the AnonymousServiceLevel class to handle the corner cases for people who are not logged in. Furthermore i renamed the UnauthenticatedUser to AnonymousUser so it matches the Anonymous Service Level nicely. It's also shorter and more intuitive.
2014-04-17	make use of the UnauthorizedUser	Azul
	Null Pattern for current_user - use it to get rid of some conditionals
2014-04-17	UnauthenticatedUser as current_user	Azul
	this still allows us to do current_user.service_level. Have not gone through the rest of the code yet. Only made sure logged_in? now tests for is_a? User instead of !!current_user
2014-04-10	move certs into toplevel	Azul
	cleaned up all the engine stuff that was never really used. Afterwards there is not that much left that makes it into the toplevel.
2014-01-16	switch to using dl.bitmask.net	elijah

2013-12-29	Return 'provider.json' via a controller, to better be able to control the ↵	elijah
	response headers (in particular, 'X-Minimum-Client-Version'). It must now be placed in config/provider/provider.json
2013-12-22	locale prefix support:	elijah
	* set locale based on request header * enforce locale path prefix when current locale is not the default * note: don't use root_path anymore, instead use home_path
2013-12-20	fixed billing tests (added dummy billing hash to config, include required ↵	elijah
	testing gem phantomjs-binaries)
2013-12-20	enable billing engine by default, consolidate APP_CONFIG[:payments] and ↵	elijah
	APP_CONFIG[:braintree] into APP_CONFIG[:billing][:braintree]
2013-12-16	Merge pull request #122 from azul/bugfix/4703-disable-unsupported-settings	jessib
	Bugfix/4703 disable unsupported settings
2013-12-13	make the possible actions for users and admins configurable	Azul
	with tests
2013-12-13	proceed even if the couch is unreachable	Azul
	* in case the user has a session id, keep it but proceed without a session * in case we can't initialize the models proceed * if APP_CONFIG[:reraise_errors] is set we'll crash instead in the latter case default to reraise errors in dev and test environments.
2013-12-05	We won't want service levels in production mode, and have it so this initial ↵	jessib
	service level code won't break anything if it isn't set in the config.
2013-11-18	Start of service level code, which will be tweaked	jessib
	* stores desired & effective service level * whenever desired level is changed, effective level will be updated * allows user to set their desired service level * allow admin to update desired & effective service level
2013-10-21	use osx not mac as an identifier for the os.	Azul

2013-10-21	fix download urls for mac, android and windows	Azul
	They did not point directly to the download.
2013-10-18	Make download links configurable	Azul
	This way we won't have to redeploy once the new links to the windows and the android version are there. Also this obviously offers more flexibility for providers.
2013-10-17	blacklist system logins for aliases and logins	Azul
	We blacklist based on three things: * blacklist in APP_CONFIG[:handle_blacklist] * emails in RFC 2142 * usernames in /etc/passwd The latter two can be allowed by explicitly whitelisting them in APP_CONFIG[:handle_whitelist]. We stick to blocking names that have been configured as both blacklisted and whitelisted - better be save than sorry.
2013-09-03	expire token according to config setting auth:token_expires_after	Azul

2013-09-02	document the logfile option in the defaults.yml	Azul

2013-08-27	Not ideal way to do it, but was proving complicated to have a config file ↵	jessib
	specify which gems for which environments. Here, we have the billing gem included for the development and test environments only, hardcoded in the Gemfile. Then we show the links to billing based on a config file setting. The setting itself could be used to specify different types of billing, but isn't yet.
2013-07-11	config - add force_ssl to config, add configuration notes to README.md	elijah

2013-07-04	add 'blue' to admins in dev mode.	elijah

2013-07-04	set pagination size via config file	elijah

2013-07-04	start of new ui - css changes, layout changes, navigation changes.	elijah

2013-03-15	fetch secret token for signing cookies from config	Azul

2013-03-06	certs - changed the logic of free/paid certs to be limited/unlimited.	elijah

2013-02-27	change free cert postfix to be a prefix (this is required for how openvpn ↵	elijah
	does common name matching)
2013-02-25	added configuration setting for disabling free certs	Azul

2013-02-25	enable free certs with a common name postfix	Azul

2013-01-31	config key is not ca_cert_path anymore - client_ca_cert	Azul

2013-01-26	moving leap_ca configs into defaults.yml	Azul

2012-12-20	Loading config defaults from default.yml now	Azul
	You can overwrite them in config/config.yml