Changesets can be listed by changeset number.
The Git repository is here.
Revision log for rool/rails/hub/trunk/app/controllers/account_controller.rb
Date | Changeset | Author | Log |
---|---|---|---|
01/03/2024 20:50 | 484 | rool | Update prohibitions |
11/19/2023 23:14 | 482 | rool | Improved robot/spammer rejection code for signups |
05/08/2022 21:51 | 481 | rool | Add support for return-to URL by explicit session key and make sure that white space in e-mail addresses is stripped. |
06/19/2019 04:51 | 476 | rool | Various fixes: * Clear cookies on login * Warn about cookie use before login * HTTPS / other parameter improvements for own cookie |
04/16/2016 10:21 | 470 | rool | Version 1.0.2 with updated reCaptcha |
04/12/2016 08:37 | 469 | rool | Major spam event on 2016-04-12 - I'm not playing anymore. Block those domains. |
08/26/2012 17:36 | 427 | rool | Version 1.0.1 of the Hub application, which adds reCaptcha verification to the sign-up form. Implemented after spambots attacked the ROOL site and signed up hundreds of bogus users. |
08/26/2012 17:35 | 341 | rool | Lots of changes to Hub to make it Rails 2.3.11 compatible. This is being checked in as one large changeset because it doesn't really split down into smaller components without having something that doesn't function in the intermediate steps. |
08/26/2012 17:35 | 261 | rool | Moved sanity checks of enumerated current site users from the Hub application into the library gem, where it always should have been. Explicitly check to see if the session details returned by the DRb server "look" like a User representation by checking that the session proxy responds to "user_id". This always *should* be the case but on the ROOL production site, there have been numerous times when the DRb process seems to serve up odd objects which do not respond as expected, leading to an application error if the administrator tries to use the enumeration action. |
08/26/2012 17:35 | 260 | rool | Make e-mail address comparison case-insensitive everywhere - see e.g. Ticket #165. Run *all* flash updates through hubssolib_set_flash as this seems to guarantee correct persistence, fixing things like the bug reported in Ticket #199. Note that this may worsen problems with flash persistence in the cache (see e.g. Ticket #159). I can't really test for it except by running it on the live system with all caches flushed, due to limitations with the way the development web server runs in relation to database access and redirections from strange port numbers. Unrelated fix - the check for zero users when signing up the very first Hub user was terrible (find all users, count the array size - rather than doing User.count.zero?). Fixed. |
08/26/2012 17:35 | 191 | rool | Removed the login_hop mechanism. It was crude and only Typo used it; the Typo 4.1 integration has taken a cleaner approach that removes the requirement for the feature. Renamed the 'logged out' image to a more logical name. The application controller now caches the logged in and out images. When using FCGI or a comparable execution model for Hub, this means that the images only get loaded once and are thereafter served from RAM. |
08/26/2012 17:34 | 181 | rool | Updated to work with Rails 1.2. Small bug fix in the account controller (missing quotes around name of the Tasks controller in a method call). |
08/26/2012 17:34 | 167 | rool | Implemented account enumeration. Improved pagination and enumeration "show details" mechanism; the HTTP referrer is used to return to the list view to get the right page and list type. Obvious potential for trouble if someone directly links to an item from an external site but since the details items require administrative Hub access it is unlikely to present a problem in real use. |
08/26/2012 17:34 | 166 | rool | Added pagination to Hub account lists. Sort order is whatever the database feels like (so, usually, least to most recently updated). User-selectable sorting might be needed in future but this current implementation does, at least, provide the feature requested in Ticket #99. Rather than using the much-maligned Rails default paginator, an external paginator gem is used - "gem install paginator" grabs it. For more, see: http://codefluency.com/2006/10/24/paginator-released http://paginator.rubyforge.org/ |
08/26/2012 17:34 | 123 | adh | Used new accessor functions in HubSsoLib 0.1.1 (Changeset #121). Fixes a couple of '".id" should have read ".user_id"' bugs that crept in when the DRb server implementation was introduced. |
08/26/2012 17:34 | 112 | adh | After many attempts, a new version of Hub that requires the HubSsoLib Gem v0.1.0 (see future Changeset #113). HubSsoLib no longer uses cookies because of problems with the Rails cookies interface and the only viable workaround being scuppered by after_filter code not always being called (e.g. if you redirect from within a before_filter). Ultimately, the solution of using a (very) simple DRb-based authorisation server, as suggested by RubyPanther on the rubyonrails IRC channel, is perhaps a little slower but a lot more scalable and a lot more reliable. The server is included in the 'server' directory. |
08/26/2012 17:34 | 108 | adh | Substantial changes and additions to Hub. Now in a state where it will integrate with other applications to an acceptable level. Requires HubSsoLib gem 0.0.4 or later - see Changeset #107. |
08/26/2012 17:34 | 103 | adh | The next iteration of Hub. Requires the hubssolib Gem. Stores user login details in a secure cookie rather than the session, opening up the potential for cross-application access. Still need to move session expiry and last-recorded-URL stuff into a cookie, otherwise it's all done. Many bugs fixed, though some may have been introduced in splitting functionality into the Gem. No solution presently to whether or not the User object will be understood or accessible in any way from other applications (not yet tried). Checking this version in because it's reached a stage of reasonable stability, before the next step of attempting wider integration. Remember, this won't work at all unless hubssolib 0.0.3 is installed. |
08/26/2012 17:34 | 98 | adh | Initial import of Hub, an account management application. |