summaryrefslogtreecommitdiff
path: root/users
AgeCommit message (Expand)Author
2013-08-27do not redirect if no token presentAzul
2013-08-27make sure find_record still works with real recordsAzul
2013-08-27clear token on logout with testAzul
2013-08-27basic testing for token based auth in testsAzul
2013-08-27first steps towards enabling token based authAzul
2013-08-27sort authentication controller extensionAzul
2013-08-27minor: remove puts lineAzul
2013-08-22Merge pull request #69 from azul/bugfix/update_user_password_through_apijessib
2013-08-22Merge pull request #70 from azul/bugfix/validate_login_like_signupjessib
2013-08-21Merge remote-tracking branch 'jessib/js_warning'Azul
2013-08-21return 204 NO CONTENT on API logoutAzul
2013-08-21use the same login validations on sessions and usersAzul
2013-08-21also test updating the user password in python against dev.bmAzul
2013-08-21integration test updating users passwordAzul
2013-08-20Tweak to parameters to fix wrong-number-of-arguments error blocking other work.jessib
2013-08-19Change JS warning message per https://leap.se/code/issues/3492jessib
2013-08-08Merge pull request #64 from azul/feature/identity-rewritejessib
2013-08-08close srp vulnerability and report error in webappAzul
2013-08-07integration test exploiting srp vulnerabilityAzul
2013-07-24also destroy the identity for a test user during teardownAzul
2013-07-24keeping the pgp_key accessors for User so views still workAzul
2013-07-24separate signup and settings service objects for userAzul
2013-07-24removed email settings controller and viewsAzul
2013-07-24setter for keys for dirty tracking, more robust testsAzul
2013-07-24test user validates uniqueness of login amongst aliasesAzul
2013-07-24no need for a remote email classAzul
2013-07-24support deprecated API to set users main identity pgp keyAzul
2013-07-24remove email aliases test - we'll move them to identitiesAzul
2013-07-24add keys to identityAzul
2013-07-24remove the remainders of email aliases and forward from userAzul
2013-07-24allow available and unique forwards onlyAzul
2013-07-24validations of email format and local domain moved overAzul
2013-07-24local email adds domain if neededAzul
2013-07-24testing all versions of emial identities, emails are now stringsAzul
2013-07-24move identity creation into user classAzul
2013-07-24first take on identity model - still brokenAzul
2013-07-16adapt srp account_flow test for the api to new ruby_srp APIAzul
2013-07-16ensure the page has been reloaded before testing current_pathAzul
2013-07-16to move to the next iteration use continue in js.Azul
2013-07-16use ruby-srp 0.2.0 which has a hex based apiAzul
2013-07-16prevent _ prefixes for couchDB document idsAzul
2013-07-15require test_helper from account test so it can be run in isolationAzul
2013-07-14make sure capybara runs the whole rack appAzul
2013-07-14we do not expose M2 in srp.js anymore.Azul
2013-07-14js integration test for signup, login, logoutAzul
2013-07-12remove test for duplicate login - we'll prevent that on the client sideAzul
2013-07-12print debug info on failed login attemptsAzul
2013-07-11fix failing testselijah
2013-07-11Slight tweak in case we get back the default response to warden's fail!, whic...jessib
2013-07-11Slight cleanup due to some emacs annoyances.jessib