Tom Hughes
1340fca8f1
Turn on mass assignment protection
...
Require any attribute that is going to be mass assigned to be
whitelisted, and whitelist those attributes which need it
2012-03-06 08:54:45 +00:00
Tom Hughes
3d55db46ed
Avoid use of deprecated methods on error objects
2011-11-14 09:42:45 +00:00
Tom Hughes
f07819d81a
Rework application configuration
...
Use a preinitializer to load the settings from application.yml so
that they are available as early as possible. All settings can also
be overridden using environment variables.
The ad-hoc settins in environment.rb are then moved to this new
system so we have one consistent location for settings.
2010-08-04 22:06:05 +01:00
Matt Amos
95c3d640a4
Tried to DRY the user_blocks controller. Moved the configuration of the blocking periods into application.yml.
2009-09-30 15:44:29 +00:00
Matt Amos
ca06b3c7b1
New migration to add better auditing to user_roles and better column names there and on user_blocks. Added a helper for displaying block status messages.
2009-09-29 16:44:03 +00:00
Matt Amos
daa2496024
First version of blocking feature. Allows both time-based (for map protection) and notice-based (for education) blocks on users. Also introduces user roles and a simple UI for displaying and administering these.
2009-09-28 16:01:00 +00:00
