cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
4065 commits 4 branches 1 tag 499 MiB
Commit graph

2124 commits

Author SHA1 Message Date
Matt Amos
64030a40ac Replace @ with ~ in the shortlink 
This should help Twitter's horribly broken URL detection algorithm
not screw up shortlinks from OSM.
 2011-11-24 22:27:16 +00:00
Tom Hughes
54a5d04782 Don't escape links in "flash required" message 2011-11-24 22:24:45 +00:00
Tom Hughes
db58aa801b Make sure the maximum scale is set when export is opened 2011-11-24 21:31:54 +00:00
Tom Hughes
2a09670389 Don't escape the license link 2011-11-24 21:21:17 +00:00
Tom Hughes
7e66fcbb1b Log any session that is reset due to a username mismatch 2011-11-24 09:42:04 +00:00
Tom Hughes
5718d455bc Don't escape the heading on a user block 2011-11-23 00:11:51 +00:00
Tom Hughes
0033fcbf12 Don't escape HTML in the message shown to anonymous users 2011-11-22 22:53:31 +00:00
Tom Hughes
db616d347a Add feed action to relevant filters 2011-11-22 12:19:41 +00:00
Tom Hughes
7c621a6a04 Add the OAuth verifier to 1.0a callbacks correctly 2011-11-19 17:11:54 +00:00
Tom Hughes
be8164cf15 Generate correct URLs for changeset feeds 2011-11-19 12:42:37 +00:00
Tom Hughes
093651c208 Override oauth1_authorize pending a fixed version of oauth-plugin 2011-11-19 00:25:17 +00:00
Tom Hughes
a6b64fdebd Pass sql_for_area a BoundingBox object 2011-11-18 16:50:54 +00:00
Tom Hughes
5a98d6e4f1 Spell way_id correctly 2011-11-17 11:33:48 +00:00
Tom Hughes
4ab734ee1b Fixed escaping in title 2011-11-17 11:03:27 +00:00
Tom Hughes
bca0d5873b Removed bogus characters from form_for 2011-11-17 11:02:42 +00:00
Tom Hughes
73b7ab344c Fix formatting of user list 2011-11-17 10:00:47 +00:00
Tom Hughes
c1db05321a Filter out the current way correctly 2011-11-17 09:53:21 +00:00
Tom Hughes
7b89dc6349 Make OAuth work again 2011-11-16 21:13:25 +00:00
Tom Hughes
87d38efbb0 Make the text direction style come before the screen size style 2011-11-16 15:55:33 +00:00
Tom Hughes
8e52cac837 Always pass the session ID to the logout page 
The tricks we played before to only pass it via a POST while
keeping the visible URL clean don't work anymore.
 2011-11-16 11:25:37 +00:00
Tom Hughes
7c25a1e1bc Make the username cookie permanent 2011-11-16 10:05:39 +00:00
Tom Hughes
71f377ab8f Yet more raw markers 2011-11-16 09:55:36 +00:00
Tom Hughes
cbd687d0b1 Explicitly select the default locale if we have no better ideas 2011-11-16 09:21:23 +00:00
Tom Hughes
4408416b62 Add some logging to help diagnose changeset feed locale issue 2011-11-16 08:56:35 +00:00
Tom Hughes
28579180e5 Add some more raw markers 2011-11-16 08:48:05 +00:00
Tom Hughes
d4853bdc29 Looks like @body is special somehow so use @text instead 2011-11-15 14:49:38 +00:00
Tom Hughes
c61d24f08e Use asset_path to find the arrow icon 2011-11-15 10:48:30 +00:00
Tom Hughes
75f12f5b18 Remove debugging code 2011-11-15 09:58:30 +00:00
Tom Hughes
45ec042c90 Mark sanitized text as HTML safe 2011-11-15 09:58:10 +00:00
Tom Hughes
1d6051d08b Make linkify preserve HTML safety 2011-11-15 09:46:33 +00:00
Tom Hughes
36a3dfe7cd Add a few missing raw markers 2011-11-15 09:20:04 +00:00
Tom Hughes
9e2132b83d Don't reset the session when the token refers to an invalid user 
During account creation it is quite normal for the token in the
session to refer to a user that is not active yet.
 2011-11-14 09:42:59 +00:00
Tom Hughes
5bc3054d61 Store the username in a cookie and use it to validate the session 2011-11-14 09:42:59 +00:00
Tom Hughes
88bf67b092 Make /user/new handle already logged in users better 2011-11-14 09:42:58 +00:00
Tom Hughes
c485ae3249 Fix object_id warning 2011-11-14 09:42:58 +00:00
Tom Hughes
9c28a626cb Stop the API changeset query accepting min_lon etc 2011-11-14 09:42:57 +00:00
Peter Gray
95d899786a Refactor bounding box code 
Moved duplicated code into the BoundingBox class, and pass around
BoundingBox objects instead of lists of bounds.
 2011-11-14 09:42:57 +00:00
Tom Hughes
d70fd8ab1a Use HTML5 email and url field types where appropriate 2011-11-14 09:42:57 +00:00
Tom Hughes
281a3239e6 Mark terms as raw to avoid escaping HTML in them 2011-11-14 09:42:57 +00:00
Tom Hughes
07b834785f Force openid callbacks to use GET to avoid CSRF validation issues 2011-11-14 09:42:57 +00:00
Tom Hughes
546db82281 Preserve field values if the signup form fails validation 2011-11-14 09:42:56 +00:00
Tom Hughes
c55bcb1763 Mark openid prompt as raw so the image is not escaped 2011-11-14 09:42:56 +00:00
Tom Hughes
1f383dcbd7 Serve swfobject via the assets pipeline 2011-11-14 09:42:56 +00:00
Tom Hughes
2c837d896d Make database offline mode work 2011-11-14 09:42:56 +00:00
Tom Hughes
607d23f6d6 Fixup some string escaping issues in the data browser 2011-11-14 09:42:55 +00:00
Tom Hughes
3f9fdb122c Mark the generated list of page links as raw 2011-11-14 09:42:55 +00:00
Tom Hughes
e5c8dc9c77 Removed unused link_to_page from the trace helpers 
It was unused, and clashed link_to_page in the browser helpers as
apparently all helpers are loaded into all views...
 2011-11-14 09:42:55 +00:00
Tom Hughes
96c22b169a Get OAuth working, including a hack for Potlatch 2011-11-14 09:42:55 +00:00
Tom Hughes
071c3581e9 Disable CSRF token verification for API methods 2011-11-14 09:42:55 +00:00
Tom Hughes
036632bad3 Avoid noise on console when running tests 2011-11-14 09:42:53 +00:00