| Age | Commit message (Collapse) | Author |
|---|
|
They weren't used. Currently, the PixelatedAuthSessionWrapper determines
the resource to use for a user. It would be more idiomatic to have the
realm determine that. Actually, it should return the avatar as an
IResource. See
http://twistedmatrix.com/documents/current/web/howto/web-in-60/http-auth.html
|
|
This reverts commit 8fa81ff3b2cf0422098395ec9918d5b547fbbca5.
|
|
They weren't used. Currently, the PixelatedAuthSessionWrapper determines
the resource to use for a user. It would be more idiomatic to have the
realm determine that. Actually, it should return the avatar as an
IResource. See
http://twistedmatrix.com/documents/current/web/howto/web-in-60/http-auth.html
|
|
Issue #684
|
|
for all cases, not just when it is csrf valid.
Issue #684
|
|
In order to replace leap_auth with bonafide, we created a
class to hold the user credentials
|
|
|
|
|
|
|
|
The interstitial was being read at every login
request, that was a blocking read on the main
loop for every user.
That file was also being opened and not closed
at every request, that would aggravate the
'too many open files' problem
|
|
Consolidated authentication to always be
done is a defer to thread and changed the
authenticate_user method name to conform
with what it actually does
|
|
|
|
|
|
|
|
The previous behaviour only checked xsrf-token in headers, but it can be
informed in a token as well.
|
|
|
|
services sessions
|
|
This is needed as we need to provide empty FEEDBACK_URL, just to remind that it can be set if desired
Issue #710
|
|
Return 503 code while RootResource is in MODE_STARTUP
|
|
|
|
- now username and user_id are mapped when the user logs in
- Issue #686
|
|
|
|
|
|
Since we're not using dispatcher anymore, it doesn't make sense to keep
dispatcher references and program flows that depend on it. For example,
it doesn't make sense keep the flag --organization-mode, so it was
removed as well.
|
|
* Remove GenericDeferredErrorHandler class
* Convert static method generic_error_handling to function instead
|
|
Removed the time logging, it can be put adhoc when
we want to test a specific case
|
|
I kept the logging functions so we can log times for tests
and to investigate issues, but I removed all usages of them
until someone needs them
|
|
handles login, logout, mail and tags resources
|
|
|
|
|
|
Add CORS headers to sandbox resource
Add OpenSans in normal font weight (400) to the sandbox CSS
|
|
|
|
|
|
- Deferred was not handled as required
- Test did not assert call to expire
|
|
- The main identifier of a key now is the fingerprint, not the id
anymore
- The address is not required anymore when creating the json
|
|
Issue #612
|
|
Issue #612
|
|
- root resources changes the csrf token cookie everytime it is loaded, in particular during the intestitial load during login
- it will also add that cookie on single user mode
- initialize will still load all resources
- but they you cant access them if the csrf token do not match
- all ajax calls needs to add the token to the header
- non ajax get requests do not need xsrf token validation
- non ajax post will have to send the token in as a form input or in the content
Issue #612
|
|
- Issue #615
- invalid token raised by soledad after timeout,
if we see this, recreate the session on next login
|
|
- Issue #609
|
|
For the case of wrong file path or file not existing
Issue #214
|
|
Instead shows a generic: "invalid xml format" message
Issue #214
|
|
|
|
- removed backend delete of attachments
- JS unit tests
- Functional test
Issue #549
|
|
This reverts commit 91223543207c4a56370ff609df9912a5b11262d7.
|
|
This reverts commit 3c6b905d7e5b78e521b2e7692e5e32b7b0c226bc.
|
|
Issue #598
|
|
Provide the proper content-type
Quote filename due to Firefox bug https://bugzilla.mozilla.org/show_bug.cgi?id=221028
|
|
This reverts commit 9442be5c230e286073244451189ffc05ae6c8083.
|
|
This reverts commit 92f0e9887a216e0ec82355941655d3deebf2d422.
|
