cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
4024 commits 4 branches 1 tag 499 MiB
Commit graph

2094 commits

Author SHA1 Message Date
Tom Hughes
36a3dfe7cd Add a few missing raw markers 2011-11-15 09:20:04 +00:00
Tom Hughes
9e2132b83d Don't reset the session when the token refers to an invalid user 
During account creation it is quite normal for the token in the
session to refer to a user that is not active yet.
 2011-11-14 09:42:59 +00:00
Tom Hughes
5bc3054d61 Store the username in a cookie and use it to validate the session 2011-11-14 09:42:59 +00:00
Tom Hughes
88bf67b092 Make /user/new handle already logged in users better 2011-11-14 09:42:58 +00:00
Tom Hughes
c485ae3249 Fix object_id warning 2011-11-14 09:42:58 +00:00
Tom Hughes
9c28a626cb Stop the API changeset query accepting min_lon etc 2011-11-14 09:42:57 +00:00
Peter Gray
95d899786a Refactor bounding box code 
Moved duplicated code into the BoundingBox class, and pass around
BoundingBox objects instead of lists of bounds.
 2011-11-14 09:42:57 +00:00
Tom Hughes
d70fd8ab1a Use HTML5 email and url field types where appropriate 2011-11-14 09:42:57 +00:00
Tom Hughes
281a3239e6 Mark terms as raw to avoid escaping HTML in them 2011-11-14 09:42:57 +00:00
Tom Hughes
07b834785f Force openid callbacks to use GET to avoid CSRF validation issues 2011-11-14 09:42:57 +00:00
Tom Hughes
546db82281 Preserve field values if the signup form fails validation 2011-11-14 09:42:56 +00:00
Tom Hughes
c55bcb1763 Mark openid prompt as raw so the image is not escaped 2011-11-14 09:42:56 +00:00
Tom Hughes
1f383dcbd7 Serve swfobject via the assets pipeline 2011-11-14 09:42:56 +00:00
Tom Hughes
2c837d896d Make database offline mode work 2011-11-14 09:42:56 +00:00
Tom Hughes
607d23f6d6 Fixup some string escaping issues in the data browser 2011-11-14 09:42:55 +00:00
Tom Hughes
3f9fdb122c Mark the generated list of page links as raw 2011-11-14 09:42:55 +00:00
Tom Hughes
e5c8dc9c77 Removed unused link_to_page from the trace helpers 
It was unused, and clashed link_to_page in the browser helpers as
apparently all helpers are loaded into all views...
 2011-11-14 09:42:55 +00:00
Tom Hughes
96c22b169a Get OAuth working, including a hack for Potlatch 2011-11-14 09:42:55 +00:00
Tom Hughes
071c3581e9 Disable CSRF token verification for API methods 2011-11-14 09:42:55 +00:00
Tom Hughes
036632bad3 Avoid noise on console when running tests 2011-11-14 09:42:53 +00:00
Tom Hughes
d6c3fe5759 Refactor AMF respone streaming 
Using a Proc object for the response body is deprecated, so switch
to using an object with an each method that yields each response.
 2011-11-14 09:42:53 +00:00
Tom Hughes
97b1290f1a Use SecureRandom instead of the deprecated ActiveSupport::SecureRandom 2011-11-14 09:42:52 +00:00
Tom Hughes
fc25c3d412 Rename all ID columns that aren't unique 
Having a table with a column called ID that is only part of the
primary key really doesn't work as rails likes to treat ID as a
special name so it becomes impossible to assign to it or read it.
 2011-11-14 09:42:52 +00:00
Tom Hughes
b63ce5d460 Mark some locale lookups as raw 2011-11-14 09:42:52 +00:00
Tom Hughes
5eb21cc2da Fix form_for arguments 2011-11-14 09:42:52 +00:00
Tom Hughes
3377879d39 Add rinku to get auto_link support back 2011-11-14 09:42:52 +00:00
Tom Hughes
8acdba8bdd Upgrade to rails 3.1.0 2011-11-14 09:42:52 +00:00
Tom Hughes
3227f40193 Make more use of named scopes 2011-11-14 09:42:51 +00:00
Tom Hughes
8ae5d94b2f Update some more queries to use AREL in place of deprecated methods 2011-11-14 09:42:51 +00:00
Tom Hughes
49a45b1c52 Fix escaping of unicode character in edit menu name 2011-11-14 09:42:50 +00:00
Tom Hughes
1da4cecaf6 List all objects that are blocking a delete, in a well defined order 2011-11-14 09:42:49 +00:00
Tom Hughes
f8ace8f9e0 Cope with MESSAGES_DOMAIN not being defined 2011-11-14 09:42:48 +00:00
Tom Hughes
4ea63afd24 Update use of deprecated forms of form_for 2011-11-14 09:42:48 +00:00
Tom Hughes
f0d7c4a8d6 Rework expansion of HTTP status code to work with rails 3 2011-11-14 09:42:48 +00:00
Tom Hughes
c00a3e948a Avoid using string interpolation in conditions 2011-11-14 09:42:48 +00:00
Tom Hughes
7f556f94f1 Temporary fix for postgres enums pending rails 3.0.4 2011-11-14 09:42:46 +00:00
Tom Hughes
b89486eab0 Rework AMF controller's streaming output for rails 3 2011-11-14 09:42:46 +00:00
Tom Hughes
35e60d4d7b Avoid empty content_for blocks as they trigger warnings 2011-11-14 09:42:45 +00:00
Tom Hughes
dc9b0e8c94 Rename notifier views to new style names 2011-11-14 09:42:45 +00:00
Tom Hughes
1e13e6ae2d Update oauth support for rails 3 version of oauth plugin 2011-11-14 09:42:45 +00:00
Tom Hughes
3d55db46ed Avoid use of deprecated methods on error objects 2011-11-14 09:42:45 +00:00
Tom Hughes
986f1c61fa Use last_modified method instead of setting the header manually 2011-11-14 09:42:44 +00:00
Tom Hughes
226c41be69 Update ActiveRecord queries to use arel 2011-11-14 09:42:44 +00:00
Tom Hughes
819badd55b Reflect move of u_unpack from Chars to Unicode 2011-11-14 09:42:43 +00:00
Tom Hughes
1a8d73c024 Use an observer to detect changes to the selected legale 2011-11-14 09:42:43 +00:00
Tom Hughes
7901815718 Use symbols consistently for names of content blocks 2011-11-14 09:42:43 +00:00
Tom Hughes
0dba53c023 Declare callbacks explicitly 2011-11-14 09:42:43 +00:00
Tom Hughes
423f5ffbc2 Use config.filter_parameters instead of filter_parameter_logging 2011-11-14 09:42:43 +00:00
Tom Hughes
7d45c2fd3c Replace request.request_uri with request.fullpath 2011-11-14 09:42:42 +00:00
Tom Hughes
2bc44dfddc Use form_tag instead of building forms by hand 
In order for CSRF protection to work we need to use form_for or form_tag
to build all forms so that the authenticity token is added.
 2011-11-14 09:42:42 +00:00