cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
12848 commits 4 branches 1 tag 499 MiB
Commit graph

12848 commits

This branch
This branch
All branches
Author SHA1 Message Date
Andy Allan
f5db9cbb20 Avoid using _id in queries 
This makes the queries shorter and easier to read.
 2023-08-30 17:08:16 +01:00
Andy Allan
124909a64c
Merge pull request #4193 from AntonKhorev/lookup-friend 
Lookup friend user before make/remove friend action
 2023-08-30 15:17:11 +01:00
Andy Allan
e68d4efc3c
Merge pull request #4197 from AntonKhorev/user-resources 
Move user lookup/error methods from app controller to concerns
 2023-08-30 15:11:57 +01:00
Andy Allan
a1657f03a8
Merge pull request #4202 from tomhughes/changeset-comment-limit 
Add rate limiting for changeset comments
 2023-08-30 11:12:40 +01:00
Tom Hughes
4b206ff769 Update bundle 2023-08-29 18:08:56 +01:00
Tom Hughes
c1a5c0c4e3 Merge remote-tracking branch 'upstream/pull/4208' 2023-08-29 18:08:06 +01:00
dependabot[bot]
14f86dd576
Bump osm-community-index from 5.5.5 to 5.6.0 
Bumps [osm-community-index](https://github.com/osmlab/osm-community-index) from 5.5.5 to 5.6.0.
- [Release notes](https://github.com/osmlab/osm-community-index/releases)
- [Changelog](https://github.com/osmlab/osm-community-index/blob/main/CHANGELOG.md)
- [Commits](https://github.com/osmlab/osm-community-index/compare/v5.5.5...v5.6.0)

---
updated-dependencies:
- dependency-name: osm-community-index
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-28 23:28:12 +00:00
translatewiki.net
2588c14d26 Localisation updates from https://translatewiki.net. 2023-08-28 13:26:20 +02:00
Tom Hughes
3422bb541d Merge remote-tracking branch 'upstream/pull/4198' 2023-08-27 09:46:10 +01:00
Tom Hughes
c7a31ebc5d Restore ordering of results from the users#index API call 2023-08-26 17:41:22 +01:00
Tom Hughes
7297bdb72c Merge remote-tracking branch 'upstream/pull/4203' 2023-08-26 12:30:15 +01:00
ENT8R
26a092fbf7 Add checks to ensure that the response is empty 2023-08-26 13:01:05 +02:00
Tom Hughes
d8d8f88b75 Merge remote-tracking branch 'upstream/pull/4204' 2023-08-26 10:44:48 +01:00
ENT8R
be96aa7cb4 Sort users by their ids 2023-08-26 10:14:40 +02:00
ENT8R
bc71737f05 Change tests to expect a successful (empty) response even if the user is not visible anymore 2023-08-26 09:37:06 +02:00
dependabot[bot]
aa529f6303
Bump eslint from 8.47.0 to 8.48.0 
Bumps [eslint](https://github.com/eslint/eslint) from 8.47.0 to 8.48.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint/eslint/compare/v8.47.0...v8.48.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-25 23:11:59 +00:00
ENT8R
b9c85c2697 Use where instead of find to prevent 404 2023-08-26 00:31:18 +02:00
Tom Hughes
a274726f46 Add rate limiting for changeset comments 
Fixes #4196
 2023-08-25 19:53:04 +01:00
Tom Hughes
6759130cb3 Test that suspended and deleted users can't use OAuth tokens 2023-08-25 12:10:32 +01:00
Tom Hughes
477f700cfa Logout while testing OAuth 1 token usage 
This ensures we're not accidentally inheriting any session permissions.
 2023-08-25 09:44:25 +01:00
Tom Hughes
b9f9c0f3cc Separate authenticating user from application owner in OAuth 1 tests 2023-08-25 08:51:41 +01:00
translatewiki.net
d5d67d7bbe Localisation updates from https://translatewiki.net. 2023-08-24 13:21:00 +02:00
Tom Hughes
0913f286fe Make the TOTP cookie httponly 2023-08-22 21:18:45 +01:00
Tom Hughes
ce8f174a45 Update to rails 7.0.7.2 2023-08-22 21:15:08 +01:00
Tom Hughes
577ec10934 Update bundle 2023-08-22 18:51:02 +01:00
Tom Hughes
63bf18a3c3 Add support for rate limiting signup requests 2023-08-22 18:45:17 +01:00
Anton Khorev
d6ec3bbc60 Lookup friend user before make/remove friend action 2023-08-21 17:44:50 +03:00
Anton Khorev
7de9f6a977 Lookup user before action in user's notes list 2023-08-21 17:31:59 +03:00
Anton Khorev
2d39ba7954 Render unknown user with concerns code in notes controller 2023-08-21 17:30:23 +03:00
Anton Khorev
4ceebefefa Move user lookup and error render to concerns 2023-08-21 17:29:55 +03:00
Tom Hughes
7054cea48e Merge remote-tracking branch 'upstream/pull/4190' 2023-08-20 18:49:32 +01:00
Tom Hughes
2a1689f962 Merge remote-tracking branch 'upstream/pull/4169' 2023-08-20 11:04:28 +01:00
Milan Cvetkovic
ad164d384e Change provider name to "microsoft" 2023-08-20 10:19:30 +01:00
Milan Cvetkovic
ef6803416b Add migration script 2023-08-20 10:17:42 +01:00
Milan Cvetkovic
b3e13eb752 Update tests for microsoft_graph endpoints 2023-08-20 10:17:42 +01:00
Anton Khorev
0bd5838f51 Respond with plaintext when user not found in changeset query 
The response used to be of type xml with empty body, which is not valid xml.
 2023-08-19 20:26:13 +03:00
Tom Hughes
406d90c5c8 Merge remote-tracking branch 'upstream/pull/4187' 2023-08-19 11:30:33 +01:00
Tom Hughes
3c38bad561 Merge remote-tracking branch 'upstream/pull/4186' 2023-08-19 11:29:17 +01:00
Tom Hughes
a8ae7b2d3e Replace links to donate.osm.org with supporting.osm.org 2023-08-19 11:22:54 +01:00
Anton Khorev
3f6e344e6a Expose note query limit values in api capabilities 2023-08-19 05:40:34 +03:00
Anton Khorev
a654071beb Add missing changeset query limit capabilities test 2023-08-19 05:40:05 +03:00
Anton Khorev
df60444d05 Use max note query limit setting in tests 2023-08-19 05:23:42 +03:00
Anton Khorev
bc9f081841 Move note query limit values to settings 2023-08-19 05:06:00 +03:00
dependabot[bot]
aba5048f45
Bump puma from 5.6.6 to 5.6.7 
Bumps [puma](https://github.com/puma/puma) from 5.6.6 to 5.6.7.
- [Release notes](https://github.com/puma/puma/releases)
- [Changelog](https://github.com/puma/puma/blob/master/History.md)
- [Commits](https://github.com/puma/puma/compare/v5.6.6...v5.6.7)

---
updated-dependencies:
- dependency-name: puma
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-19 02:01:30 +00:00
Tom Hughes
9790d779f4 Merge remote-tracking branch 'upstream/pull/4185' 2023-08-18 19:32:38 +01:00
Tom Hughes
c58f4e4813 Make the versions call default to XML 2023-08-18 19:26:53 +01:00
Tom Hughes
b45642d2ab Merge remote-tracking branch 'upstream/pull/4182' 2023-08-18 19:25:36 +01:00
Tom Hughes
270b0d575e Merge remote-tracking branch 'upstream/pull/4180' 2023-08-18 19:20:55 +01:00
Tom Hughes
1e08ecd34d Merge remote-tracking branch 'upstream/pull/4181' 2023-08-18 19:20:36 +01:00
Anton Khorev
1acd8e25a7 Add 'User' to selectable types in issues search for moderators 
Reported users are either directly assigned to moderators or ofter reassigned to them.
 2023-08-18 18:48:38 +03:00