cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
15463 commits 4 branches 1 tag 499 MiB
Commit graph

2512 commits

Author SHA1 Message Date
Andy Allan
39963d8c70
Merge pull request #4633 from tomhughes/trace-images 
Trace image cleanups
 2024-05-15 16:38:00 +01:00
Andy Allan
ad4ab4603b
Merge pull request #4496 from tomhughes/disabled-auth-error 
Return an error when a disabled authentication mechanism is used
 2024-05-15 16:33:33 +01:00
Tom Hughes
ebb1fba41d Really remove login.live.com from CSP allow list 2024-05-10 17:55:11 +01:00
Milan Cvetkovic
b07c758345 Fix CSP failures for Microsoft social sign-in 
Replace login.live.com with login.microsoftonline.com in CSP allow list.

The URL changed with the move from using the omniauth-windowslive plugin
to the omniauth-microsoft_graph plugin but wasn't noticed until now.
 2024-05-10 17:40:14 +01:00
Tom Hughes
74cc88fce4 Stop using the session to persist the referer during login 2024-05-06 10:55:07 +01:00
Tom Hughes
b625eefdeb Merge remote-tracking branch 'upstream/pull/4455' 2024-05-06 09:15:03 +01:00
Tom Hughes
1874e5b1a2 Improve flash message handling in users#new 
Only show the duplicate email message if we actually have errors
logged against the email field, and then show it as a warning.

In all other cases we show the generic informational hint about
social logins and pre-existing accounts.
 2024-05-06 09:14:49 +01:00
Anton Khorev
5da2957591 Redirect to inbox after marking a message as read/unread disregarding referer 
Avoids staying on the message page after the "Mark as unread" button is clicked and immediately reading the message again.
 2024-05-05 15:32:47 +03:00
Anton Khorev
15e1459f25 Link to previous/next nonempty user's changeset on changeset pages 2024-05-01 15:02:59 +03:00
Milan Cvetkovic
4965c19b7a Re-introduce additional round trip for verifying auth_provider 2024-04-29 11:32:54 +00:00
Milan Cvetkovic
c486dd5532 Rename verified_email to email_hmac parameter in /users/new 2024-04-29 11:32:54 +00:00
Milan Cvetkovic
9649b192c0 Add preferred provider social signup 
- Add preferred provider for authorization to login and signup pages.
  To use, the 3rd party application would have to add `preferred_provider=...`
  parameter to OAuth2 authorization request.
- Resize 3rd party provider icons
- Add "login to authorize" heading to login and signup screens
 2024-04-29 11:32:54 +00:00
Milan Cvetkovic
0c7c950149 Add social signin buttons to signup screen, avoid repeating round trip to auth provider. 2024-04-27 12:44:10 +01:00
Milan Cvetkovic
f8a606869e Remove email confirmation field in signup form 2024-04-27 12:44:09 +01:00
Milan Cvetkovic
1276fb944a Merge login and terms screens, assume TOU and contributor terms are accepted on /user/new form 
This eliminates the need for "terms" screen after /user/new form..
Terms screen is still required for legacy users who never accepted the terms.
 2024-04-27 12:44:09 +01:00
Tom Hughes
d8b468e7a1 Add validation for maximum ID passed to changesets#index 2024-04-11 10:08:20 +01:00
Tom Hughes
e3c43e4a1a Add validation for before/after parameters to pagination concern 2024-04-11 10:08:20 +01:00
Tom Hughes
5d887a37bf Add validation for page number passed to notes#index 2024-04-11 10:08:20 +01:00
Tom Hughes
feff501b25 Add framework for parameter validation using rails_param gem 2024-04-11 10:08:20 +01:00
Anton Khorev
588b77244b Rename api OldController to OldElementsController 2024-04-02 16:11:09 +03:00
Tom Hughes
c79da4746a Merge remote-tracking branch 'upstream/pull/4637' 2024-04-01 18:54:52 +01:00
Tom Hughes
d2688d4d63 Merge remote-tracking branch 'upstream/pull/4639' 2024-04-01 18:37:27 +01:00
Anton Khorev
c2c5892112 Rename api changesets index template 2024-03-30 08:39:29 +03:00
Anton Khorev
765165777e Rename api changesets index action 2024-03-30 08:26:58 +03:00
Anton Khorev
558c8765f5 Rename api changeset show template 
Make template name correspond to action name.
 2024-03-30 08:10:24 +03:00
Anton Khorev
134f9e2df1 Use before/after pagination on users page 2024-03-29 18:21:15 +03:00
Tom Hughes
6059ed0d92 Drop redundant support for legacy trace files 2024-03-28 17:27:28 +00:00
Tom Hughes
91143a5959 Use imported scope to simplify trace controller methods 2024-03-28 17:26:04 +00:00
Tom Hughes
50df5eefcc Merge remote-tracking branch 'upstream/pull/4632' 2024-03-28 17:11:58 +00:00
Tom Hughes
df4349a050 Merge remote-tracking branch 'upstream/pull/4631' 2024-03-28 17:06:24 +00:00
Anton Khorev
16cc2e75a7 Remove unused includes of ConsistencyValidations 2024-03-28 11:49:49 +03:00
Anton Khorev
fba5528731 Remove require "xml/libxml" from controllers 2024-03-28 11:18:31 +03:00
Anton Khorev
a969e08641 Use "visible" scope when finding traces 
Allows to eliminate some :not_found branches.
 2024-03-28 08:34:18 +03:00
Anton Khorev
180a61bcc3 Move trace pictures/icons into their own controllers 2024-03-27 13:25:28 +03:00
Tom Hughes
af5d76ecab Merge remote-tracking branch 'upstream/pull/4625' 2024-03-26 18:32:52 +00:00
Tom Hughes
f4b8510744 Merge remote-tracking branch 'upstream/pull/4622' 2024-03-26 18:17:05 +00:00
Anton Khorev
f0d05c20ae Add found users count to users page 2024-03-26 05:44:35 +03:00
Anton Khorev
9f8e4fd60a Use before/after pagination on users page 2024-03-26 05:44:35 +03:00
Anton Khorev
274a516bc6 Make "include" and "limit" keyword args of pagination method 2024-03-26 04:41:07 +03:00
Anton Khorev
addf99f191 Move common pagination code to mixin 2024-03-26 02:36:28 +03:00
Anton Khorev
604bba10ec Remove assert_method from api controllers 2024-03-25 07:15:16 +03:00
Anton Khorev
1e9d390c1e Replace lookup_user_by_id with load_resource 2024-03-25 06:29:46 +03:00
Tom Hughes
b2acd6e49c Merge remote-tracking branch 'upstream/pull/4612' 2024-03-21 17:25:41 +00:00
Anton Khorev
9c0d74fe69 Simplify and test downloaded changeset element sorting 2024-03-21 20:02:18 +03:00
Gregory Igelmund
1a7b7f5d18 Enable Turbo Drive with morphing for Messages#{destroy,mark} 2024-03-21 14:55:16 +01:00
Anton Khorev
54dec27949 Move current element actions to their own controllers 2024-03-15 03:24:45 +03:00
Anton Khorev
d87d06fee5 Move element history actions to old element controllers 2024-03-14 18:10:18 +03:00
Andy Allan
ac01ada274
Merge pull request #4557 from AntonKhorev/rename-api-old-version 
Rename api old element actions and path helpers
 2024-03-13 15:51:41 +00:00
Andy Allan
0a10ac2e9b
Merge pull request #4550 from tomhughes/drop-user-tokens 
Drop user tokens table
 2024-03-07 13:51:44 +00:00
Anton Khorev
cbf6b39464 Rename api element version action to show 2024-03-04 11:19:50 +03:00