Commit graph

6044 commits

Author SHA1 Message Date
simon lehericey
fe30c19aa4 Seed: fix weak password 2018-09-27 15:36:34 +02:00
LeSim
b0bca99d9e
Merge pull request #2700 from betagouv/fix_2696_mean_instruction_time
Fix 2696 mean instruction time
2018-09-27 15:32:10 +02:00
simon lehericey
29e40fa061 [fix #2696] Rake: add task to fill empty instruction_at 2018-09-27 15:02:38 +02:00
simon lehericey
4d4dba1550 Procedure: small renaming on mean_time 2018-09-27 15:02:38 +02:00
simon lehericey
6725c5e34c Procedure: add test on mean_instruction_time 2018-09-27 15:02:38 +02:00
LeSim
7fc5580520
Merge pull request #2691 from betagouv/fix_2449_encrypted_token
Fix 2449 encrypted token
2018-09-27 11:46:52 +02:00
simon lehericey
4300d7abf8 [fix #2449] Migration: remove administrateur api_token column 2018-09-27 10:24:56 +02:00
simon lehericey
88f7e888c3 Administrateur: do not save api_token in clear text anymore 2018-09-27 10:24:56 +02:00
simon lehericey
16566b46c0 DossierController: private some methods 2018-09-27 10:24:56 +02:00
simon lehericey
912371fbd6 DossierController: use new token validation 2018-09-27 10:24:56 +02:00
simon lehericey
8dd4a1ca4e ProcedureController: remove useless logger call 2018-09-27 10:24:56 +02:00
simon lehericey
3c95273d6f ProcedureController: use new token validation 2018-09-27 10:24:56 +02:00
simon lehericey
0b2a98cdce ApiController: private some methods 2018-09-27 10:24:56 +02:00
simon lehericey
f7c23bb435 ApiController: remove ensure_token_is_present
An admin without token answer false to admin.api_token_valid?(api_token) with api_token=*
2018-09-27 10:24:56 +02:00
simon lehericey
4a04f2e59f ApiController: check token validity for a given admin 2018-09-27 10:24:56 +02:00
simon lehericey
d576d426f4 ApiController: remove old authenticate logic
The old logic cannot work anymore as we cannot `find_by api_token`
2018-09-27 10:24:56 +02:00
simon lehericey
6837c79dd1 Spec: use have_http_status matcher 2018-09-27 10:24:56 +02:00
simon lehericey
2b46a56259 Spec: simplify 2018-09-27 10:24:56 +02:00
simon lehericey
d14944fba3 Spec: mutualize subject 2018-09-27 10:24:56 +02:00
simon lehericey
7b27f00a23 Spec: do not use the deprecated api_token 2018-09-27 10:24:56 +02:00
simon lehericey
9a6e985bac Spec: remove useless require 2018-09-27 10:24:56 +02:00
simon lehericey
674d231194 Spec: add spaces for readability 2018-09-27 10:24:56 +02:00
LeSim
68ce035bda
Merge pull request #2459 from betagouv/partially_fix_2449_encrypted_token
Partially fix 2449 encrypted token
2018-09-27 10:23:50 +02:00
simon lehericey
1af789b9a8 Profile: add breadcrumb 2018-09-27 10:14:32 +02:00
simon lehericey
2c8188f4ae Profil: fix refresh on update_token 2018-09-27 10:14:32 +02:00
simon lehericey
84abfa209c Api Token: encrypt current tokens 2018-09-27 10:14:32 +02:00
simon lehericey
8c4f8347ca Api Token: store token in an encrypted form 2018-09-27 10:14:32 +02:00
simon lehericey
1997f45d7e Api Token: do not generate one token by default 2018-09-27 10:14:32 +02:00
simon lehericey
17285b0368 Profil: display token only once 2018-09-27 10:14:32 +02:00
simon lehericey
bd04972f65 Profile: move to new design 2018-09-27 10:14:32 +02:00
simon lehericey
f115658d55 OH ! 2018-09-27 10:14:32 +02:00
Paul Chavard
a24f2032d8
Merge pull request #2336 from tchak/editable-brouillon-procedures
Publication des procedures en brouillon
2018-09-26 20:33:33 +02:00
Paul Chavard
f94a24d7ce Add path field to procedure information form 2018-09-26 10:53:45 +02:00
Paul Chavard
f6a6d8f457 Fix destroy dossiers on procedure reset 2018-09-26 10:53:45 +02:00
gregoirenovel
143428fb3f
Merge pull request #1367 from betagouv/fix-1285
Ensure password strength
2018-09-26 10:45:22 +02:00
Mathieu Magnin
7280b1f503 [Fix #1285] Password strength is checked when user is typing 2018-09-26 09:51:30 +02:00
Mathieu Magnin
d1d8d9afe2 [Fix #1285] Add JS to dynamically check the password strength 2018-09-26 09:51:30 +02:00
Mathieu Magnin
2507f963b1 [Fix #1285] Create an endpoint to check password strength 2018-09-26 09:03:04 +02:00
Mathieu Magnin
35da5d595f [Fix #1285] Redesign the administrateurs password activation page 2018-09-26 09:03:03 +02:00
Mathieu Magnin
499021588d [Fix #1285] Password strength is ensured when saving an administrateur 2018-09-26 09:03:03 +02:00
Mathieu Magnin
5d6f8de5a0 [Fix #1285] Add a custom dictionary for zxcvbn 2018-09-26 09:02:59 +02:00
Mathieu Magnin
96b95b90cc [Fix #1285] Add zxcvbn gem 2018-09-26 08:58:43 +02:00
Frederic Merizen
28e0d4eab9
Merge pull request #2556 from betagouv/frederic/fix_1421_linked_menus/admin_validation
Validation de la liste d’options d’un champ double menu déroulant
2018-09-25 20:38:47 +02:00
Frederic Merizen
998754ab73 [Fix #2258] Validate options for linked dropdown menus 2018-09-25 20:32:19 +02:00
Frederic Merizen
b521095010 [#2258] Notify administrator of problems saving the types de champs 2018-09-25 20:31:42 +02:00
Frederic Merizen
3fea14c07d [#2258] Let dynamic type validate the type de champ 2018-09-25 20:31:34 +02:00
Frederic Merizen
695426316c [#2258] Make linked menus more robust in the face of bad configuration 2018-09-25 20:31:06 +02:00
gregoirenovel
9c65b65a03
Merge pull request #2685 from tchak/remove-uglifier
Remove uglifier
2018-09-25 18:44:15 +02:00
Paul Chavard
c66bb056f5 Remove uglifier 2018-09-25 18:26:19 +02:00
Pierre de La Morinerie
a8f49061b0
Merge pull request #2683 from tchak/fix-carto
Use uglifier with no mangle option in order to fix leaflet in production
2018-09-25 18:02:08 +02:00