summaryrefslogtreecommitdiff
path: root/service/pixelated
AgeCommit message (Collapse)Author
2016-06-27Csrf not being enforced on GETCaio Carrara
2016-06-27Fix xsrf-token verification in async callsCaio Carrara
The previous behaviour only checked xsrf-token in headers, but it can be informed in a token as well.
2016-06-24Issue #694 add an admin restricted resource for user statsNavaL
2016-06-23refactoring: renaming services factory methods to relate them to user ↵NavaL
services sessions
2016-06-23refactoring: moved Service factories to the service config fileNavaL
2016-06-16Fix UNNAMED attachment bugTulio Casagrande
Previously some attachments were being showed as UNNAMED. This change fix it and creates propers tests for attachments. See: #608
2016-06-16Stops filtering application/pgp-keys attachmentsTulio Casagrande
See: #608
2016-06-14starting the server when the reactor is running and adding proper error ↵NavaL
handling during multi-user boostrap - reactor.stop will not work if the reactor is not running. This will make sure it will be stopped on bootstrap errors now. - added a wrapper that returns a defer.fail for exceptions thrown during the multi-user boostrap - Issue #535
2016-06-14Empty FEEDBACK_URL env variable should also disable feedbackNavaL
This is needed as we need to provide empty FEEDBACK_URL, just to remind that it can be set if desired Issue #710
2016-06-07Update keymanager calls due api updateCaio Carrara
Some keymanager api was updated, so we needed to update some calls.
2016-06-02RootResource should return 503 during startup (#699)Blake Williams
Return 503 code while RootResource is in MODE_STARTUP
2016-06-02Revert "added custom c extension to set mutex locking for openssl rand ↵NavaL
generation" This reverts commit 6b528c26a05f1c3f969a9896328be408bcfd6064.
2016-06-01added custom c extension to set mutex locking for openssl rand generationNavaL
2016-05-31Remove unused session_idTulio Casagrande
2016-05-31Merge pull request #701 from shabbyrobe/fix-issue-695Christoph
Issue 695: Show all recipients in mail sent folder
2016-05-30Handle errors on started processTulio Casagrande
In single user-mode, the InvalidAuthTokenError may occur during initialization
2016-05-27Issue #695: Show all recipients in mail sent foldershabbyrobe
2016-05-26Updated calls to addRawHeader to use setRawHeadersshabbyrobe
2016-05-22accomodates the case where the email address is the data sent with the eventNavaL
- now username and user_id are mapped when the user logs in - Issue #686
2016-05-20adding event as first argument on invalid soledad register callback. ↵NavaL
register sends it too. Issue #686
2016-05-19issue #685 remove duplicated email recipientsmfrankie
2016-05-19remove duplicated mails, wipmfrankie
2016-05-19when invalid soledad auth token, it logs user out if multi-user and stops ↵NavaL
the reactor if single-user mode Issue #689
2016-05-18Issue #692 re-added logout back in the feature toggleNavaL
2016-05-13Issue #691: Refactor to Twisted 16.1.1Felix Hammerl
2016-05-12Update ssl arguments descriptionCaio Carrara
The previous description were mentioning dispatcher use, but since we don't use it anymore, they were changed to refer to server-mode.
2016-05-12 we still need the ssl arguments, even in no-dispatcher-modeChristoph Kluenter
2016-05-11Remove dispatcher references from serviceCaio Carrara
Since we're not using dispatcher anymore, it doesn't make sense to keep dispatcher references and program flows that depend on it. For example, it doesn't make sense keep the flag --organization-mode, so it was removed as well.
2016-04-13Issue #674: Update Account usage to pass user_idCaio Carrara
There is an update on leap_mail where an user id became required to create an Account. So, this change update the Account usage on user agent to pass this parameter.
2016-04-13Issue #431: ReviewFelix Hammerl
* Remove GenericDeferredErrorHandler class * Convert static method generic_error_handling to function instead
2016-04-12Removed time logging from mails_resourceBruno Wagner
Removed the time logging, it can be put adhoc when we want to test a specific case
2016-04-11Fixed pep8 warningBruno Wagner
2016-04-11Removed general timings from methodsBruno Wagner
I kept the logging functions so we can log times for tests and to investigate issues, but I removed all usages of them until someone needs them
2016-04-08Issue #431: extractes the generic handling for error callbacks in init and ↵Zara Gebru
handles login, logout, mail and tags resources
2016-04-08Issue #431: add errback on logoutZara Gebru
2016-04-06Issue #292: add fingerprint to user settings resourceZara Gebru
2016-04-04Migrate ImapAccount to AccountTulio Casagrande
Migrate all usage of leap.ImapAccount to leap.Account We had to adapt some calls because of signature changes and, because we need the Account to be initialized before moving on, we are directly using the deferred initialization that the account has See: https://github.com/leapcode/leap_mail/pull/228
2016-03-24[fix] remove pycryptopp dependencyKali Kaneko (leap communications)
cryptography is now a hard dependency, so we are removing the use of pycryptopp.
2016-03-24Issue #656: Fix sandbox fontsFelix Hammerl
Add CORS headers to sandbox resource Add OpenSans in normal font weight (400) to the sandbox CSS
2016-03-24Work in progress: Fix loading webfonts in the sandbox.Tobias Adam
2016-03-09Issue #617: Serve content from Sandbox resourceFelix Hammerl
2016-03-04Fix: Logout calls session expireFolker Bernitt
- Deferred was not handled as required - Test did not assert call to expire
2016-03-02adding default date if not given in the mail header, for search index -- ↵NavaL
fixing build
2016-03-01Fix tests after change on OpenPGPKey.get_json APIGiovane
- The main identifier of a key now is the fingerprint, not the id anymore - The address is not required anymore when creating the json
2016-02-25only adding feature resource in root_resource test -- fixing buildNavaL
Issue #612
2016-02-25changed logout to postNavaL
Issue #612
2016-02-25Backend and frontend protection against csrf attacks:NavaL
- root resources changes the csrf token cookie everytime it is loaded, in particular during the intestitial load during login - it will also add that cookie on single user mode - initialize will still load all resources - but they you cant access them if the csrf token do not match - all ajax calls needs to add the token to the header - non ajax get requests do not need xsrf token validation - non ajax post will have to send the token in as a form input or in the content Issue #612
2016-02-24Create a new deferred for all IMAPAccount callsFolker Bernitt
- Issue #615 - IMAPAccount ctor reuses same instance for all accounts
2016-02-24Recreate session on soledad problemsFolker Bernitt
- Issue #615 - invalid token raised by soledad after timeout, if we see this, recreate the session on next login
2016-02-23Only do initial sync on session creationFolker Bernitt
- Issue #615 - Fixed some long broken but not failing tests