Commit Graph

71 Commits

Author SHA1 Message Date
Evan Prodromou
2dc50d7e37 CSRF protection in user registration
darcs-hash:20080829054017-84dde-c9268e5c815934dcbca2451dd6c9016f2ac4a03a.gz
2008-08-29 01:40:17 -04:00
Evan Prodromou
7554f2561c move user registration to a single static method
darcs-hash:20080814002038-84dde-8505d4e083056b770db128129a95be639d8e7f0a.gz
2008-08-13 20:20:38 -04:00
Evan Prodromou
4c8dfadf2d make init of lang environment happen earlier, or when user language may have changed
darcs-hash:20080806034515-84dde-e32cbfec2890f50b610d0441659180038b060473.gz
2008-08-05 23:45:15 -04:00
Evan Prodromou
e97c06e8e2 let admins prevent registration
darcs-hash:20080724235508-84dde-8bac4d9dd772adb9f27d083b3d0b6ed5b7526dbf.gz
2008-07-24 19:55:08 -04:00
zach
7e6870db91 base class is_readonly() now returns false by default
darcs-hash:20080722212056-ca946-e4bd9eef8e3d8991414932e9fc7b8c9a31f818c0.gz
2008-07-22 17:20:56 -04:00
zach
038f762bce Added is_readonly() method to all Actions
darcs-hash:20080722171501-ca946-160bad6c4f80be2b3b105ea9b913f1c0f9edb0ef.gz
2008-07-22 13:15:01 -04:00
Evan Prodromou
ab1f2ff9d0 every user is subscribed to themselves
darcs-hash:20080722144154-84dde-80beabad9a681f2e12edb34ceb4ac249f4ce6705.gz
2008-07-22 10:41:54 -04:00
Evan Prodromou
38b215805e one more linefeed
darcs-hash:20080715215556-84dde-e41b099910bd11698b0148c6bd4f4d98cc883fb3.gz
2008-07-15 17:55:56 -04:00
Evan Prodromou
16c7c6f93c maybe an extra \n will help my formatting
darcs-hash:20080715215407-84dde-6e75d2a138152a2f5dd71fc2813096b4d66ba831.gz
2008-07-15 17:54:07 -04:00
Evan Prodromou
b3cde85bac more formatting for registration success
darcs-hash:20080715214934-84dde-f0a20191b3e833d0660affc944a527e3d06d2f69.gz
2008-07-15 17:49:34 -04:00
Evan Prodromou
098337e896 better formatting in registration results
darcs-hash:20080715214612-84dde-779ae3816488bdc1e0754fd807fde39c293db61e.gz
2008-07-15 17:46:12 -04:00
Evan Prodromou
ba09eb7700 fix checkbox for license
darcs-hash:20080715214249-84dde-ed5f9b38a93e9fcfd5c6772fb1c784696d3a435a.gz
2008-07-15 17:42:49 -04:00
Evan Prodromou
d361bad9e1 more info at registration time, better message when you're finished
darcs-hash:20080715213202-84dde-7a6a8fadfccc76bda12f3de01d17a1d95daf18b8.gz
2008-07-15 17:32:02 -04:00
Mike Cochrane
b104da04fb Colapse a lot of strings to make like easier for translators and more consisitant for users
darcs-hash:20080713053748-533db-1cdb0cf3a9e4102eb139b74a7a9d4f97dadb20b8.gz
2008-07-13 01:37:48 -04:00
Mike Cochrane
834c21b2aa Merge some gettext strings to one line so translation tools are happier
darcs-hash:20080713044608-533db-ee16aecee9b6d82b22ce6a25f6a9573c23eee9f8.gz
2008-07-13 00:46:08 -04:00
Mike Cochrane
800c2e9a09 Fixed non openid registration
darcs-hash:20080713024754-533db-af3dbd6186df4ce27caa7c25d0752d3e7afa184a.gz
2008-07-12 22:47:54 -04:00
Mike Cochrane
8ffe49b595 Error I made merging a diff
darcs-hash:20080712123942-533db-21fa41076dd7b57935f49462423f247ccbb01e8f.gz
2008-07-12 08:39:42 -04:00
Mike Cochrane
7e38142d4a Resolve conflicts and convert _t( to _( where it was introduced again.
darcs-hash:20080710045126-533db-ffd9bcfe1295b3a376579ed7cd2278d5597b1884.gz
2008-07-10 00:51:26 -04:00
Mike Cochrane
4b656f47df Merge conflicts and kill a whole lot of trailing whitespace on lines.
darcs-hash:20080709224630-533db-b5399baef280133858dac9b89c2cd6a2aba9f861.gz
2008-07-09 18:46:30 -04:00
Mike Cochrane
87b494f1eb Convert _t() to _() for gettext.
darcs-hash:20080708094531-533db-83399a46e6ec4c0fcc6249b0235961f969d1ae73.gz
2008-07-08 05:45:31 -04:00
Evan Prodromou
a67108190a don't refetch user objects so much
darcs-hash:20080709055343-84dde-ac550608a4736ce5daed70af19866c75a1cfb416.gz
2008-07-09 01:53:43 -04:00
Evan Prodromou
ec9de70539 p.instructions -> div.instructions
darcs-hash:20080709002242-84dde-1d7a2107079ab5d84592d280a19a253663f84b4f.gz
2008-07-08 20:22:42 -04:00
Evan Prodromou
31db4cd94e more debug output for rememberme cookies
darcs-hash:20080708064241-84dde-6c72e4e5d5ec5675bdef027e1b241f0555ce8dd1.gz
2008-07-08 02:42:41 -04:00
Evan Prodromou
69c8fe060f better debugging
darcs-hash:20080705161801-84dde-b8ce7f1edcb18d7382b2690ff35f84e4b7cc7421.gz
2008-07-05 12:18:01 -04:00
Evan Prodromou
5b377a3198 debugging code for rm
darcs-hash:20080705161602-84dde-f046e62ed9af829c86ac967f83168933e6264deb.gz
2008-07-05 12:16:02 -04:00
Evan Prodromou
721d6f94c7 method
darcs-hash:20080702131507-84dde-507a6380fcab66c1fbcbaad6d1399c8a2f210acf.gz
2008-07-02 09:15:07 -04:00
Evan Prodromou
4ee649058f fix rememberme checkboxes on login, register
darcs-hash:20080702125457-84dde-d27e405d7003c86886ad81b87bbbf20cbf6fba1c.gz
2008-07-02 08:54:57 -04:00
Evan Prodromou
be3a44651c implement rememberme functionality
Added a checkbox on login or register to remember the current user. If
the login is successful, this sets a cookie with a random code (saved
in the DB). If they come back, and they aren't logged in "normally",
we check to see if they have a rememberme cookie. If so, we log them
in.

However, they can't change settings -- cookie theft is too prevalent.
So we mark a session as having a "real" (password or OpenID) login, or
not. In settings pages, we check to see if the login is "real", and if
not, we redirect to the login page.

darcs-hash:20080624025234-34904-ad20001bf35bf41fcb63a0c357fd929aacc55fdb.gz
2008-06-23 22:52:34 -04:00
Evan Prodromou
960a092a9c don't validate email if none provided
darcs-hash:20080624014642-34904-7d4b1b91a3163add6a99146f92360913e172a39a.gz
2008-06-23 21:46:42 -04:00
Evan Prodromou
d758c11784 disallow nicknames on a blacklist
darcs-hash:20080622180437-34904-4b6313f6fd8845232031663c5c2df00dff725183.gz
2008-06-22 14:04:37 -04:00
Evan Prodromou
8a170ed8fd special function for generating confirmation codes
darcs-hash:20080622163241-34904-199b3654328d78c0b9fe2fa85a3ecc1ab0b1262a.gz
2008-06-22 12:32:41 -04:00
Evan Prodromou
4fd1f6246d correctly use Confirm_address
darcs-hash:20080622161607-34904-d8e042b80fe6acd3cb6ad763216a0b1817752cac.gz
2008-06-22 12:16:07 -04:00
Evan Prodromou
745a145f0d add better debugging
darcs-hash:20080622140941-34904-2a0eda21f6a374a9d26107a4bc627fc6de2a7063.gz
2008-06-22 10:09:41 -04:00
Evan Prodromou
15a09c5d69 change from using tag uris to http urls for identifiers
Weirdly, I got in an argument with Tim Berners-Lee in #swig about the
tag URIs I was using in FOAF documents. Eventually, I was convinced
that it's a better thing to use HTTP URLs instead. So, now we have
HTTP URLs.

The tricky thing was for users. Since they can change their names, we
can't use their profile URL, since it includes the name. Instead, I
made up a new action, which simply redirects from a user ID to their
current profile URL. This should be sufficiently long-term.

darcs-hash:20080620071700-84dde-c6145243dc45dd2dff621aff421375d05796057e.gz
2008-06-20 03:17:00 -04:00
Evan Prodromou
9277f8da1a correct confirmation code
darcs-hash:20080620062606-84dde-59be3fd35a01d788f3953e2dba70baefefabfb76.gz
2008-06-20 02:26:06 -04:00
Evan Prodromou
74889ec599 correct name for common_good_rand()
darcs-hash:20080620052453-5ed1f-4ce9b677b9010b3879bbae1ba9218036f0ad728f.gz
2008-06-20 01:24:53 -04:00
Evan Prodromou
bf0be3ddb7 confirm email addresses
darcs-hash:20080620051536-5ed1f-231e427832dd20c861eb7a6dc1171315e90f455b.gz
2008-06-20 01:15:36 -04:00
Evan Prodromou
56de872740 move instructions up to the "whats up" area
darcs-hash:20080618035739-84dde-a562cffe186780d5f03cf53798ea249b2bda9fb1.gz
2008-06-17 23:57:39 -04:00
Evan Prodromou
2354faf7ac add instructions to each form entry in forms
darcs-hash:20080612165201-84dde-1abc45a0b2fd24002bc6f3449e9fc521d4f02eac.gz
2008-06-12 12:52:01 -04:00
Evan Prodromou
f81b4421fe instructions
darcs-hash:20080611163308-84dde-c918f04fe6bba3dd382b822ef59cb70a57bb9504.gz
2008-06-11 12:33:08 -04:00
Evan Prodromou
64b5b1902c canonicalization lowercases nicknames
darcs-hash:20080611141824-84dde-a1016e113f7ba0e32685d935cd57618c60db2265.gz
2008-06-11 10:18:24 -04:00
Evan Prodromou
b153ac5b1b fix checking boolean parameters
darcs-hash:20080529151602-84dde-f6bc3c41846d92c94008f721fa5115907fd9a7d3.gz
2008-05-29 11:16:02 -04:00
Evan Prodromou
9bb55af26f dump args to browser for debugging
darcs-hash:20080529151317-84dde-046fffcfacea163bf14d5a0ee6838581e3a9ebe4.gz
2008-05-29 11:13:17 -04:00
Evan Prodromou
a954bb8c0a show error messages in registration form
darcs-hash:20080528170752-84dde-86f5965c108fffe703e62bd42f6bd0eda22f1931.gz
2008-05-28 13:07:52 -04:00
Evan Prodromou
7b244b2a66 get rid of the license label, since it mucks everything else up.
darcs-hash:20080528170556-84dde-5dd6fe94b31e2fb4387f0c7e8775122bd5c4965b.gz
2008-05-28 13:05:56 -04:00
Evan Prodromou
bd3f393f63 move license label to _after_ the checkbox
darcs-hash:20080528170438-84dde-90edcb9248823988f70d8dbedf9a694a7bb732f5.gz
2008-05-28 13:04:38 -04:00
Evan Prodromou
0bc94b14c4 registration requires accepting the license
darcs-hash:20080528164222-84dde-20fa91371bcd0116e8d38bb90e221b3edbc2179a.gz
2008-05-28 12:42:22 -04:00
Evan Prodromou
a39bb63ebd add tags on creation of notices and users
darcs-hash:20080522185500-84dde-39a66d36d2c80ff57e2ab2d0274548770c4d06f7.gz
2008-05-22 14:55:00 -04:00
Evan Prodromou
764a391d19 validation in form handlers
Moved validation code from classes to form handlers. Probably better
in the classes, but I can't quite grok the validate() method in
DB_DataObject, so for now I'm going to do it the old-fashioned way.

darcs-hash:20080521112707-84dde-38e27199b977ae81171b8391fbdb93ebb54494f9.gz
2008-05-21 07:27:07 -04:00
Evan Prodromou
52600ce0b0 trim whitespace
darcs-hash:20080520191412-84dde-a607dbe848279639630edd1ab4616d05cc2318d1.gz
2008-05-20 15:14:12 -04:00