34c8f22dd7
Allow multiple collaborators to be added at once with a list of emails
2015-09-02 14:33:43 +01:00
639424f664
Don't error on project clone if not root doc is set
2015-09-02 14:32:21 +01:00
40704b486e
Don't lock up on very long lined documents
2015-08-28 16:52:09 +01:00
0aaeb6671e
Keep password reset token in session, and strip it from reset page url.
...
This fixes an issue where the reset token was leaked in the referrer header
when navigating away from the password reset page to an external site.
Now we get the token from the query string, store it in the session,
then redirect to the bare url of the password reset page, which then
uses the stored token to render the reset form.
2015-08-24 11:53:33 +01:00
a53e3b80cf
if blog or universities site is down don't crash, send 500
2015-08-20 16:55:16 +01:00
aab7a8713e
Catch the case where filename is shorter than the extension length.
2015-08-20 15:56:30 +01:00
2dd56d0b32
If we're sending a html file to mobile-safari, do so as plain text.
...
This prevents safari from trying to render the page,
which it does because it ignores the "Content-Disposition" header.
2015-08-20 12:02:43 +01:00
63580f6a79
remove useClsi2 flag in project collection
2015-08-19 11:58:41 +01:00
a777fcc5a6
changed post to deactivate projects to set params via body rather than query params
2015-08-19 11:55:35 +01:00
50fc886c94
changed inactive to active as its more effienct query in mongo
2015-08-19 11:54:30 +01:00
d3499acd7b
pass options through stating how long ago want to archive from and limit
2015-08-14 14:11:53 +01:00
70b825fd2a
fixed call to ProjectUpdateHandler.markAsOpened and made it async
2015-08-14 11:27:11 +01:00
66b87df17c
added deactivate project endpoint
2015-08-14 11:26:11 +01:00
bec9bf5c87
replace lodash with underscore in this project
2015-08-14 09:42:27 +01:00
21a67ddab4
added deactivate old projects endpoint
2015-08-13 22:50:39 +01:00
a0142d4415
added inactive and reactivate project logic
2015-08-13 22:40:28 +01:00
53dc0b63c8
v1 of enago
2015-08-04 10:45:19 +01:00
417fd4f5f5
add logging to tell us how long since a project that is being opened was last updated
2015-07-22 10:38:48 +01:00
c12213b46b
added logging around load editor times
2015-07-22 10:38:28 +01:00
a786b623a8
added logging to help debug slow project list page loading
2015-07-22 01:06:23 +01:00
3ecf201eda
send -> sendStatus
2015-07-08 16:56:38 +01:00
9028bcf830
set body parser limit to 2mb
2015-07-08 14:35:03 +01:00
39df8964cf
added route that got lost in merge
2015-07-08 13:29:10 +01:00
9a49ce4a0e
removed extra req.session.destroy
2015-07-08 12:58:02 +01:00
8020cd8f47
removed tpds from settings.defaults.coffee, if not set updates are now not queued
2015-07-02 12:09:08 +01:00
56346ad88c
remove analytics router and fixed bad package.json
2015-07-01 15:48:23 +01:00
e6a670533d
added default mongoose connection
2015-07-01 15:36:50 +01:00
7fd29b18a8
destroy users session before creating a new one for them after login
...
session changed to prevent against fixation attacks
2015-07-01 15:29:02 +01:00
4f0b922a5d
changed name used when project or file uploaded, this changed when
...
we started using https://github.com/expressjs/multer
* originalname - Name of the file on the user's computer
* name - Renamed file name
2015-07-01 15:28:49 +01:00
3ab57f6830
put express locals on webRouter, this prevents problem with accessing sessions in locals, they should also only be used on web routes not api routes
2015-07-01 15:28:30 +01:00
941d407231
added saveUninitialized option to session which is now required
2015-07-01 15:26:17 +01:00
15a57f5dc4
removed req.session.destorys from endpoints now on the api router which are not needed
2015-07-01 15:26:05 +01:00
1cc0cbe8fc
split site into 2 routers, webRouter and apiRouter
...
web router has things like sessions etc added onto it. Api router is minimal, doesn't include things like csrf
2015-07-01 15:23:18 +01:00
665bdcf538
v1 of express4 conversion
2015-07-01 15:17:43 +01:00
3de841dd71
added event loop monitor
2015-06-23 13:50:42 +01:00
84bf0dd9a3
added timeout and logging for tpdsworker queing via http
2015-06-23 11:19:23 +01:00
b83fe4dcf9
put tpdsworker url in from settings
2015-06-23 11:13:05 +01:00
2ec925b45e
fairy removed from web, makes http request to tpds worker now
2015-06-22 22:33:04 +01:00
30eb79dfdc
Add link to DataJoy that shows randomly 50% of the time
2015-06-09 15:36:16 +01:00
aaa902cca9
fixed bug with subscriptions where if an old user had a subscription and was in a group they would get a confusing page
2015-06-01 14:38:09 +01:00
33aa5c732f
if a domain licence link has expired render a nice message explaining they need to retry
2015-06-01 12:43:42 +01:00
cb48242b74
changed email expire to 1 day for verifying account
2015-06-01 12:22:46 +01:00
6727c3ee00
changed ShareLaTeX thoughts to go into type form
2015-05-29 16:27:35 +01:00
d3f6c0c614
Merge branch 'user-csv' of git://github.com/heukirne/web-sharelatex into heukirne-user-csv
2015-05-29 12:17:54 +01:00
e4011b9ba1
Merge branch 'emailverification'
2015-05-29 12:10:02 +01:00
702fdc1480
improved views for domain licence invites
2015-05-29 12:09:28 +01:00
f50eb0398f
add export csv group feature
2015-05-28 16:54:41 -03:00
43c4531e51
kill off CollaboratorsHandler. changeUsersPrivilegeLevel as it is not used anywhere
2015-05-28 13:02:08 +01:00
e454d2f059
don't allow renaming in client if user is not owner
2015-05-28 12:59:02 +01:00
ca28d8ee70
changed views to use translations
2015-05-27 22:15:46 +01:00
James Allen