cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openstreetmap-website/app/controllers
History
Andy Allan 4e237db390 Be paranoid when sending password reset emails 
This implements what is known as "paranoid" password reset flash
messages (using the terminology from Devise). It avoids revealing
whether the supplied email address is already registered.

Added an explicit test for this situation, so that the test for
email non-existance is separate from the duplicate-case tests.
2024-03-02 15:48:54 +00:00
..
account Allow users to delete their own accounts 2022-02-09 16:15:24 +00:00
api Merge remote-tracking branch 'upstream/pull/4251' 2024-02-25 14:06:56 +00:00
concerns Generate email change token before changing the address 2024-02-27 20:53:51 +00:00
accounts_controller.rb Disallow account deletion after confirmation 2023-11-22 17:37:04 +03:00
api_controller.rb Attempt to make timeouts work properly 2024-01-29 19:37:59 +00:00
application_controller.rb Attempt to make timeouts work properly 2024-01-29 19:37:59 +00:00
browse_controller.rb Merge remote-tracking branch 'upstream/pull/4324' 2024-03-01 19:23:51 +00:00
changeset_comments_controller.rb Prefer keyword arguments when method has optional boolean arguments 2020-11-12 11:24:44 +00:00
changesets_controller.rb Move changeset show action to changesets controller 2024-03-01 10:48:30 +03:00
confirmations_controller.rb Use rails tokens for signup confirmations 2024-02-24 13:53:05 +00:00
dashboards_controller.rb Split the non-public information off of the profile page 2021-08-18 13:32:36 +01:00
diary_entries_controller.rb Add diary entry subscribe/unsubscribe GET pages 2024-02-17 05:43:13 +03:00
directions_controller.rb Use CanCanCan for directions controller 2019-01-09 10:12:14 +01:00
errors_controller.rb Set the locale when rendering a generic error page 2023-03-12 16:10:14 +00:00
export_controller.rb Mark redirects which need to be open with allow_other_host 2022-03-09 22:43:02 +00:00
friendships_controller.rb Merge pull request #4193 from AntonKhorev/lookup-friend 2023-08-30 15:17:11 +01:00
geocoder_controller.rb Take exclude_place_ids from Nominatim results directly 2023-08-08 18:27:53 +01:00
issue_comments_controller.rb Fix predicate method names in the user model 2023-08-15 18:53:14 +01:00
issues_controller.rb Avoid using _id in queries 2023-08-30 17:08:16 +01:00
messages_controller.rb Add basic structures for UserMute and Message muting logic 2023-12-19 12:57:47 -05:00
notes_controller.rb Lookup user before action in user's notes list 2023-08-21 17:31:59 +03:00
oauth2_applications_controller.rb Introduce privileged scopes that only an administrator can enable 2021-08-26 17:22:24 +01:00
oauth2_authorizations_controller.rb Restore form_action restrictions for ouath2_authorizations#create 2022-01-17 11:00:41 +00:00
oauth2_authorized_applications_controller.rb Add support for OAuth2 using doorkeeper 2021-05-18 12:05:32 +01:00
oauth_clients_controller.rb Allow registration of OAuth 1.0 applications to be disabled 2024-01-31 19:18:16 +00:00
oauth_controller.rb Mark redirects which need to be open with allow_other_host 2022-03-09 22:43:02 +00:00
old_nodes_controller.rb Don't show unredacted element versions to non-moderators 2024-03-01 12:29:06 +03:00
old_relations_controller.rb Don't show unredacted element versions to non-moderators 2024-03-01 12:29:06 +03:00
old_ways_controller.rb Don't show unredacted element versions to non-moderators 2024-03-01 12:29:06 +03:00
passwords_controller.rb Be paranoid when sending password reset emails 2024-03-02 15:48:54 +00:00
preferences_controller.rb Fix new rubocop warnings 2022-09-09 22:45:58 +01:00
profiles_controller.rb Fix new rubocop warnings 2022-09-09 22:45:58 +01:00
redactions_controller.rb Enable the ActionOrder cop for remaining controllers 2022-11-02 11:06:00 +00:00
reports_controller.rb Add database checks to issue and report controllers 2023-01-11 11:12:36 +00:00
sessions_controller.rb Use rails tokens for signup confirmations 2024-02-24 13:53:05 +00:00
site_controller.rb Allow arrays of names in map key entries 2023-12-20 04:03:22 +03:00
traces_controller.rb Move scheduling of trace import and destruction to the model 2024-02-24 17:07:38 +00:00
user_blocks_controller.rb Add revoke all blocks action 2024-01-07 15:15:28 +03:00
user_mutes_controller.rb Add basic structures for UserMute and Message muting logic 2023-12-19 12:57:47 -05:00
user_roles_controller.rb Avoid using _id in queries 2023-08-30 17:08:16 +01:00
users_controller.rb Merge pull request #4535 from tomhughes/rails-tokens 2024-02-25 11:32:15 +01:00