Activity for Apache Allura™
-
Dave Brondsema committed [77dc64] on Git
update httpbin testing domain again
-
Guillermo Cruz committed [9635e2] on Git
bump webob 1.8.9 -> 1.8.10
-
[#8607] lock down get_markdown content type and only to those who could use it to update anyway
-
[#8607] another perm check for MRs
-
Carlos Cruz committed [9e8f9a] on Git
[#8604] Update transient anonymous user property to not use encrypted field
-
Remove dead ProjectUserSelect code
-
[#8604] Implement field level encryption for User's display_name_field
-
[#8604] Add the display_name_encrypted field to the User class
-
[#8606] Add encrypted field for email from the EmailAddress model
-
autopep8
-
Daniel Castillo committed [481b20] on Git
[#8607] scoping checks for ForgeChat
-
[#8607] add explicit perm check on project rest controller
-
[#8607] harden git operations
-
[#8607] scoping checks for ForgeChat
-
[#8607] add explicit perm check on project rest controller
-
[#8607] harden git operations
-
[#11645] Fix email subject text for authentication link test
-
[#11645] Use jQuery cookie plugin to get CSRF token
-
[#11645] Restore Authentication Link text in email subject
-
Kenton Taylor committed [3c9752] on Git
[#11645] Force /auth/logout to go through a POST request
-
[#8607] solr: syntax problems deserve an escaped retry; don't expose underlying error messages
-
[#8607] solr: strip local-params syntax
-
[#8607] solr: move **kw to specific params for all other tools using common search_app helper
-
[#8607] solr: change ticket searches from **kw passthru to explicit
-
[#8607] ./run_tests QoL: show final message, allow trailing slash for tab-complete of suites
-
[#8607] remove useless try/except/raise
-
[#8607] remove potential info disclosure
-
[#8607] svn tarball path safety
-
[#8607] be extra safe with display names
-
[#8607] various has_access improvements
-
[#8607] check activity nbhd
-
[#8607] check subproject parent
-
[#8607] replace last pickle usage with our own bit of compatible code
-
[#8607] remove old pickle-based session support
-
[#8607] add X-Content-Type-Options header
-
[#8607] harden attachment upload
-
[#8607] test for save_attachments (export) path handling
-
[#8607] check client_id when making bearer token
-
[#8607] perm checks in markdown_to_html and fix wiki tool check
-
[#8607] safer pwd comparison
-
[#8607] replace random with secrets in some places
-
[#8607] check subscribe here too
-
[#8607] check before mailbox sub too
-
[#8607] check mailbox owner
-
[#8607] check project when loading role_id inputs
-
[#8607] move |safe to be directly on the string source
-
[#8607] check app_config_id in update_forums
-
[#8607] add comments, add test
-
[#8607] test for zipdir symlink handling
-
[#8607] move webhook send from requests to urlopen so our NoInternal handlers run automatically including on redirects
-
[#8607] test for oembed output security
-
[#8607] check for email code mode when verifying email link
-
[#8607] escape html in a few places
-
Remove locale en_US.UTF-8 dependency
-
Change looks good and targeted test passes. Good to merge.
-
[#8605] Use C.UTF-8 locale instead of en_US.UTF-8 for SVN export
-
fixup! [#8607] move |safe to be directly on the string source
-
fixup! [#8607] escape html in a few places
-
[#8606] Implement field level encryption for EmailAddress email field
-
[#8606] Add encrypted field for email from the EmailAddress model
-
[#11645] Force /auth/logout to go through a POST request
-
fixup! [#8607] test for save_attachments (export) path handling
-
add & update some mongo indexes
-
Authentication code tweaks
-
[#8607] solr: syntax problems deserve an escaped retry; don't expose underlying error messages
-
[#8607] solr: strip local-params syntax
-
[#8607] solr: move **kw to specific params for all other tools using common search_app helper
-
[#8607] solr: change ticket searches from **kw passthru to explicit
-
[#8607] ./run_tests QoL: show final message, allow trailing slash for tab-complete of suites
-
[#8607] remove useless try/except/raise
-
[#8607] remove potential info disclosure
-
[#8607] svn tarball path safety
-
[#8607] be extra safe with display names
-
[#8607] various has_access improvements
-
[#8607] check activity nbhd
-
[#8607] check subproject parent
-
[#8607] replace last pickle usage with our own bit of compatible code
-
[#8607] remove old pickle-based session support
-
[#8607] add X-Content-Type-Options header
-
[#8607] harden attachment upload
-
[#8607] test for save_attachments (export) path handling
-
[#8607] check client_id when making bearer token
-
[#8607] perm checks in markdown_to_html and fix wiki tool check
-
[#8607] safer pwd comparison
-
[#8607] replace random with secrets in some places
-
[#8607] check subscribe here too
-
[#8607] check before mailbox sub too
-
[#8607] check mailbox owner
-
[#8607] check project when loading role_id inputs
-
[#8607] move |safe to be directly on the string source
-
[#8607] check app_config_id in update_forums
-
[#8607] add comments, add test
-
[#8607] test for zipdir symlink handling
-
[#8607] move webhook send from requests to urlopen so our NoInternal handlers run automatically including on redirects
-
[#8607] test for oembed output security
-
[#8607] check for email code mode when verifying email link
-
[#8607] escape html in a few places