cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
13714 commits 4 branches 1 tag 499 MiB
Commit graph

2269 commits

Author SHA1 Message Date
Anton Khorev
1e9d390c1e Replace lookup_user_by_id with load_resource 2024-03-25 06:29:46 +03:00
Tom Hughes
b2acd6e49c Merge remote-tracking branch 'upstream/pull/4612' 2024-03-21 17:25:41 +00:00
Anton Khorev
9c0d74fe69 Simplify and test downloaded changeset element sorting 2024-03-21 20:02:18 +03:00
Gregory Igelmund
1a7b7f5d18 Enable Turbo Drive with morphing for Messages#{destroy,mark} 2024-03-21 14:55:16 +01:00
Anton Khorev
54dec27949 Move current element actions to their own controllers 2024-03-15 03:24:45 +03:00
Anton Khorev
d87d06fee5 Move element history actions to old element controllers 2024-03-14 18:10:18 +03:00
Andy Allan
ac01ada274
Merge pull request #4557 from AntonKhorev/rename-api-old-version 
Rename api old element actions and path helpers
 2024-03-13 15:51:41 +00:00
Andy Allan
0a10ac2e9b
Merge pull request #4550 from tomhughes/drop-user-tokens 
Drop user tokens table
 2024-03-07 13:51:44 +00:00
Anton Khorev
cbf6b39464 Rename api element version action to show 2024-03-04 11:19:50 +03:00
Andy Allan
4e237db390 Be paranoid when sending password reset emails 
This implements what is known as "paranoid" password reset flash
messages (using the terminology from Devise). It avoids revealing
whether the supplied email address is already registered.

Added an explicit test for this situation, so that the test for
email non-existance is separate from the duplicate-case tests.
 2024-03-02 15:48:54 +00:00
Tom Hughes
664d02982c Merge remote-tracking branch 'upstream/pull/4324' 2024-03-01 19:23:51 +00:00
Anton Khorev
ee4c34172f Don't show unredacted element versions to non-moderators 2024-03-01 12:29:06 +03:00
Anton Khorev
533816a3c2 Add link to unredacted element history for moderators 2024-03-01 11:21:49 +03:00
Anton Khorev
c1b5ae0aa0 Move changeset show action to changesets controller 2024-03-01 10:48:30 +03:00
Tom Hughes
29cc21c599 Drop user tokens table 2024-02-28 21:02:54 +00:00
Tom Hughes
c3a14b195b Generate email change token before changing the address 2024-02-27 20:53:51 +00:00
Tom Hughes
53817fa9e8 Merge remote-tracking branch 'upstream/pull/4251' 2024-02-25 14:06:56 +00:00
Andy Allan
a1a6c577e8
Merge pull request #4534 from tomhughes/list-headers 
Add standard List-XXX headers to some notification mails
 2024-02-25 11:36:05 +01:00
Andy Allan
52f755cb27
Merge pull request #4535 from tomhughes/rails-tokens 
Use rails generated tokens for emails
 2024-02-25 11:32:15 +01:00
Tom Hughes
1b5200b797 Treat github and wikipedia provided emails as confirmed 
Fixes #4270
 2024-02-25 10:04:18 +00:00
Tom Hughes
f0764d3eca Add unsubscribe link to changeset notification mails 2024-02-25 09:48:11 +00:00
Tom Hughes
8e21e4e801 Move mechanics of changeset subscriptions into the model 2024-02-25 09:48:11 +00:00
Tom Hughes
33d292e981 Move scheduling of trace import and destruction to the model 2024-02-24 17:07:38 +00:00
Tom Hughes
4dff06a629 Use rails tokens for signup confirmations 2024-02-24 13:53:05 +00:00
Tom Hughes
ad2739347b Use rails tokens for email changes 2024-02-24 13:52:35 +00:00
Tom Hughes
b8fad531e4 Use rails tokens for password resets 2024-02-24 13:23:19 +00:00
Anton Khorev
3a873b1668 Add diary entry subscribe/unsubscribe GET pages 2024-02-17 05:43:13 +03:00
Simon Legner
a0aef5c722 SessionsController: strip username 2024-02-11 21:53:03 +01:00
Tom Hughes
31659bedbe Allow registration of OAuth 1.0 applications to be disabled 2024-01-31 19:18:16 +00:00
Tom Hughes
24f579562f Attempt to make timeouts work properly 2024-01-29 19:37:59 +00:00
Anton Khorev
00123f05ba Add relation version pages 2024-01-23 22:08:39 +03:00
Anton Khorev
2f222c49dd Add way version pages 2024-01-23 22:08:39 +03:00
Anton Khorev
85c284aaa6 Add node version pages 2024-01-23 22:08:39 +03:00
Tom Hughes
242a4a1aee Include both copies of the password in the saved user 
This allows is to go back to hashing passwords when the user is saved.

Fixes #4474
 2024-01-12 17:55:16 +00:00
Anton Khorev
366ffd9bd0 Add revoke all blocks action 2024-01-07 15:15:28 +03:00
Anton Khorev
3443533ce3 Add revoke all blocks page title 2024-01-07 15:15:28 +03:00
Anton Khorev
ba53dc7b04 Create an empty revoke all blocks page 2024-01-07 15:15:28 +03:00
Anton Khorev
f4d84c4806 Add links to diaries in preferred languages 2024-01-03 13:10:08 +03:00
Anton Khorev
8c32e63492 Set block ends_at to exactly created_at + duration 2023-12-27 06:48:00 +03:00
Tom Hughes
10d65cc857 Merge remote-tracking branch 'upstream/pull/4425' 2023-12-21 18:46:22 +00:00
Anton Khorev
07954549b9 Allow arrays of names in map key entries 2023-12-20 04:03:22 +03:00
Gregory Igelmund
efc61f1315 Add basic structures for UserMute and Message muting logic 
Including models, migration, controllers, views & locales.
 2023-12-19 12:57:47 -05:00
Milan Cvetkovic
a4c23cd89f Implement allow list for account creation 2023-12-17 07:55:43 +00:00
Anton Khorev
d9b9e13be1 Allow to omit max_zoom if next map key entry has min_zoom 2023-12-08 13:21:57 +03:00
Anton Khorev
9ac70151a8 Load map key data in controller 2023-12-08 12:55:18 +03:00
Andy Allan
4bca24a7be Resourceful routing for passwords 
This also matches the routes used by devise
 2023-12-06 18:41:00 +00:00
Tom Hughes
45f0589e62 Merge remote-tracking branch 'upstream/pull/4329' 2023-11-28 22:21:50 +00:00
Tom Hughes
2153e00f9f Drop ACL check from notes#comment as we no longer allow anonymous comments 2023-11-23 16:56:07 +00:00
Anton Khorev
b5f8df642a Disallow account deletion after confirmation 2023-11-22 17:37:04 +03:00
Tom Hughes
f08fb4f30f Prevent API tokens without write_notes creating attributed comments 
Fixes #4362
 2023-11-22 12:30:39 +00:00