cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
4412 commits 4 branches 1 tag 499 MiB
Commit graph

222 commits

Author SHA1 Message Date
Tom Hughes
987c52f53e Only require a readable database for login, not a writable one 2012-03-28 10:08:38 +01:00
Tom Hughes
a9824dbc2e Use one "no_such_user" view everywhere 2012-03-21 21:47:09 +00:00
Tom Hughes
64747f7604 Set the user description to markdown formatting when it changes 2012-03-17 16:37:22 +00:00
Tom Hughes
a87540a5dd Fix layout selection to detect OAuth correctly 2012-03-10 12:46:10 +00:00
Tom Hughes
b012617608 Save the user record after changing it 2012-03-09 00:21:08 +00:00
Tom Hughes
4dfe43c956 Fix typo 2012-03-08 23:17:38 +00:00
Tom Hughes
88541c523d Use normal assignment instead of mass assignment 2012-03-08 22:41:25 +00:00
Tom Hughes
e7a0302e2b Update the username cookie when the display name is changed 2012-03-03 00:49:03 +00:00
Tom Hughes
7c3a4b497e Change session expiry to 28 days when "remember me" is set 
The expiry is passed directly to memcache, which treats any value
over 30 days as an absolute time, so using 1 month leads to sessions
expiring as soon as they are created.
 2012-02-27 09:01:48 +00:00
Tom Hughes
a16b45eb6a Add convenience methods to make ACL use simpler 2012-02-08 22:38:02 +00:00
Tom Hughes
8eef66cee2 Don't check the ACL unless we're creating a new user 2012-02-08 22:35:13 +00:00
Tom Hughes
cd43529cc8 Add support for domain based ACLs 2012-02-08 21:40:21 +00:00
Tom Hughes
2c666b42d7 Fix exception when a suspended user tries to login 2012-01-23 14:31:06 +00:00
Tom Hughes
c182531149 Allow a special ODBL message to be displayed at login 2011-12-20 00:07:07 +00:00
Tom Hughes
7b01a8ae82 Look up email addresses case insensitively for password resets 
If the email address entered is not found then try a case insensitive
lookup, and if that finds a single result then use it.
 2011-12-13 17:42:42 +00:00
Tom Hughes
2fc9c8c05b Cope with no openid_url being supplied 2011-12-13 10:26:30 +00:00
Tom Hughes
49038a44d9 Validate email addresses before confirming them 2011-12-13 09:49:13 +00:00
Tom Hughes
13289d4041 Switch from Prototype to jQuery 2011-11-26 00:22:31 +00:00
Tom Hughes
7c25a1e1bc Make the username cookie permanent 2011-11-16 10:05:39 +00:00
Tom Hughes
5bc3054d61 Store the username in a cookie and use it to validate the session 2011-11-14 09:42:59 +00:00
Tom Hughes
88bf67b092 Make /user/new handle already logged in users better 2011-11-14 09:42:58 +00:00
Tom Hughes
07b834785f Force openid callbacks to use GET to avoid CSRF validation issues 2011-11-14 09:42:57 +00:00
Tom Hughes
546db82281 Preserve field values if the signup form fails validation 2011-11-14 09:42:56 +00:00
Tom Hughes
071c3581e9 Disable CSRF token verification for API methods 2011-11-14 09:42:55 +00:00
Tom Hughes
97b1290f1a Use SecureRandom instead of the deprecated ActiveSupport::SecureRandom 2011-11-14 09:42:52 +00:00
Tom Hughes
3227f40193 Make more use of named scopes 2011-11-14 09:42:51 +00:00
Tom Hughes
226c41be69 Update ActiveRecord queries to use arel 2011-11-14 09:42:44 +00:00
Tom Hughes
423f5ffbc2 Use config.filter_parameters instead of filter_parameter_logging 2011-11-14 09:42:43 +00:00
Tom Hughes
7d45c2fd3c Replace request.request_uri with request.fullpath 2011-11-14 09:42:42 +00:00
Tom Hughes
2e2c95133b Use new ActionMail API to send emails 2011-11-14 09:42:41 +00:00
Tom Hughes
dc4cc8d219 Add support for manual tracking of a Piwik goal on signup 2011-09-20 21:40:53 +01:00
Tom Hughes
59a49a6ef5 Fix problems with database offline mode 2011-06-23 08:30:44 +01:00
Tom Hughes
da572b90c7 Don't error if we fail to get SReg and/or AX data from OpenID 2011-06-15 00:07:32 +01:00
Tom Hughes
c940313823 Fix some broken tests 2011-06-14 22:57:10 +01:00
Tom Hughes
83ecb516a4 Make password signups work 2011-06-10 21:48:17 +01:00
Tom Hughes
ce7b651eb2 Merge branch 'master' into openid 2011-06-10 19:11:08 +01:00
Tom Hughes
c4f7a8346a Use session.delete to remove entries instead of assigning nil 2011-06-01 10:17:54 +01:00
Tom Hughes
2a635ab28f Start ROTS for user login tests as well as creation tests 2011-05-21 13:35:15 +01:00
Tom Hughes
832b96b75a Merge branch 'master' into openid 
Conflicts:
	app/controllers/user_controller.rb
	app/views/user/terms.html.erb
	test/fixtures/users.yml
 2011-05-21 12:14:56 +01:00
Tom Hughes
02e186ee5b Allow user details to be fetched without agreeing terms 2011-04-20 21:17:59 +01:00
Tom Hughes
37b6418f72 Revert "Allow user details to be fetched without agreeing terms" 
This reverts commit ddd12b03e1.
 2011-04-18 23:04:42 +01:00
Tom Hughes
ddd12b03e1 Allow user details to be fetched without agreeing terms 2011-04-18 22:23:48 +01:00
Tom Hughes
6f7eb8f0e8 Don't require terms to be agreed when logging out 2011-04-18 09:04:57 +01:00
Matt Amos
c21aa5933a Added flash notice for CTs decline 
Also ensured that CTs are either accepted or declined and cannot
be inadvertently bypassed.
 2011-04-18 00:29:15 +01:00
Tom Hughes
b77c6fe8ae Improve recognition of OAuth referers for triggering of slim mode 2011-04-06 13:24:08 +01:00
Tom Hughes
4b20afd51e Preserve the referer at the end of account creation 2011-04-03 13:46:18 +01:00
Tom Hughes
097fb390b8 Only show login/signup in slim mode when used from oauth 2011-04-03 13:46:18 +01:00
Andy Allan
7b57119146 Another approach, but this time without scattering stuff all over the methods 2011-04-03 13:46:17 +01:00
Andy Allan
0531a7dfa1 Ah, that doesn't work due to 'bugs' in the way layouts work - only the last command has any effect 2011-04-03 13:46:17 +01:00
Andy Allan
5531c0bf34 Use the slim layout on the login page 2011-04-03 13:46:16 +01:00