agw/overleaf-cep - overleaf-cep - Gitea

agw/overleaf-cep

mirror of https://github.com/yu-i-i/overleaf-cep.git synced 2026-06-02 13:49:00 +02:00

Author	SHA1	Message	Date
June Kelly	87f6145d36	Merge pull request #12269 from overleaf/jk-enable-password-similarity-check [web] Enforce password similarity check GitOrigin-RevId: 1bc4efebba401663c1db9d209dc560560f160ce0	2023-03-23 09:04:12 +00:00
June Kelly	98cd68d085	Merge pull request #12261 from overleaf/jk-alter-password-similarity [web] Alter password-similarity check/metric GitOrigin-RevId: e9a55b4a86d2b69d6f34c1e2339d32321e08341d	2023-03-20 09:03:10 +00:00
Eric Mc Sween	73c327ae01	Merge pull request #11869 from overleaf/em-upgrade-mongoose-web Upgrade Mongoose and the Mongo driver in web GitOrigin-RevId: 2cad1aabe57eae424a9e4c68b2e0062f0e78ffaf	2023-03-01 09:03:27 +00:00
ilkin-overleaf	f046c7d2da	Merge pull request #11943 from overleaf/jk-another-password-similarity-metric [web] Add another metric for password similarity GitOrigin-RevId: 6d44796a63f3be85bfee86056e03cfd3bb47066c	2023-03-01 09:03:02 +00:00
Jakob Ackermann	ded855a47a	Merge pull request #11817 from overleaf/jk-password-too-similar-metric-refinement [web] Refine metrics on password-too-similar validation GitOrigin-RevId: f644e50e4815b34ad9af5215ebc3c9a082572681	2023-02-17 09:03:52 +00:00
June Kelly	f4834b630f	Merge pull request #11508 from overleaf/jk-password-disallow-substring [web] Metric for passwords too similar to email GitOrigin-RevId: cf8320fc3c9561b4dc6d54a3e97db96400ece2a9	2023-02-02 18:22:17 +00:00
June Kelly	2b816a6541	Merge pull request #11436 from overleaf/jk-increase-password-min-length-to-8 [web] Increase the minimum password length to 8 characters GitOrigin-RevId: 94eb3c5605183b5e189babd3342dc308f403ebbd	2023-02-02 09:02:56 +00:00
ilkin-overleaf	1649385e9f	Merge pull request #10394 from overleaf/ii-password-reset-and-strength-checking [web] Password reset strength checking and UI updates GitOrigin-RevId: 442a5c9e7e9d0a61d3ae649f3526bc3c02fd5704	2022-12-07 09:03:36 +00:00
June Kelly	1c2fcb45b0	Merge pull request #9951 from overleaf/jk-audit-failed-login-attempts [web] Audit failed login attempts GitOrigin-RevId: 19325f808f77584891e1e12b5ed7aaa16aa6aec9	2022-10-20 08:03:44 +00:00
Timothée Alby	5a3ca2667e	Merge pull request #9983 from overleaf/jpa-web-fix-password-upgrade [web] fix process for upgrading of password hashes GitOrigin-RevId: 3bc99dbd8601c190d758080d70ea1a465bd9e542	2022-10-18 08:03:11 +00:00
June Kelly	0dfaf145ac	[web] Password set/reset: reject current password (redux) (#8956 ) * [web] set-password: reject same as current password * [web] Add 'peek' operation on tokens This allows us to improve the UX of the reset-password form, by not invalidating the token in the case where the new password will be rejected by validation logic. We give up to three attempts before invalidating the token. * [web] Add hide-on-error feature to async forms This allows us to hide the form elements when certain named error conditions occur. * [web] reset-password: handle same-password rejection We also change the implementation to use the new peekValueFromToken API, and to expire the token explicitely after it has been used to set the new password. * [web] Validate OneTimeToken when loading password reset form * [web] Rate limit GET: /user/password/set Now that we are peeking at OneTimeToken when accessing this page, we add rate to the GET request, matching that of the POST request. * [web] Tidy up pug layout and mongo query for token peeking Co-authored-by: Mathias Jakobsen <mathias.jakobsen@overleaf.com> GitOrigin-RevId: 835205cc7c7ebe1209ee8e5b693efeb939a3056a	2022-09-28 08:06:54 +00:00
Henry Oswald	68b61bbcaf	Merge pull request #8939 from overleaf/revert-8882-jk-web-reject-same-password Revert "[web] Password set/reset: reject current password" GitOrigin-RevId: f14f970fe93064658a8659537c5cb417e34e2751	2022-07-20 08:04:00 +00:00
June Kelly	f83ea0eae9	Merge pull request #8882 from overleaf/jk-web-reject-same-password [web] Password set/reset: reject current password GitOrigin-RevId: 2c40dda4926d9c68564ae5126b3393b9286bb661	2022-07-20 08:03:36 +00:00
Jakob Ackermann	23e9f8bf1a	Merge pull request #6457 from overleaf/jpa-harden-login [web] harden login process GitOrigin-RevId: 5c0b7cc725efd5e3e879067ad8a42fe46a47b60d	2022-01-27 09:03:38 +00:00
Jakob Ackermann	86741fc86f	Merge pull request #6349 from overleaf/jpa-password-strength-checking [web] data collection for password strength using HaveIBeenPwned api GitOrigin-RevId: 7e4d57a979c29027fb7ca5294f3935500a0b4cf3	2022-01-20 09:03:07 +00:00
Alf Eaton	01042eb030	[web] Upgrade Prettier to match version in monorepo root (#6231 ) GitOrigin-RevId: 02f97af1b9704782eee77a0b7dfc477ada23e34d	2022-01-11 09:03:23 +00:00
Jakob Ackermann	5e773ce950	Merge pull request #4101 from overleaf/ae-settings-module Migrate from `settings-sharelatex` to `@overleaf/settings` GitOrigin-RevId: 9a298ba26382180c1351683c5fddc9004418c1e6	2021-07-08 02:08:28 +00:00
Alf Eaton	1be43911b4	Merge pull request #3942 from overleaf/prettier-trailing-comma Set Prettier's "trailingComma" setting to "es5" GitOrigin-RevId: 9f14150511929a855b27467ad17be6ab262fe5d5	2021-04-28 02:10:01 +00:00
Alf Eaton	1ebc8a79cb	Merge pull request #3495 from overleaf/ae-prettier-2 Upgrade Prettier to v2 GitOrigin-RevId: 85aa3fa1acb6332c4f58c46165a43d1a51471f33	2021-04-15 02:05:22 +00:00
Eric Mc Sween	9ddaa8c9f6	Merge pull request #3830 from overleaf/em-upgrade-node-12 Upgrade to Node 12 GitOrigin-RevId: 19870922884b7c98e7e5f2c94df21829672d2db5	2021-04-01 02:05:52 +00:00
Jakob Ackermann	6eeb7857e3	Merge pull request #3390 from overleaf/jpa-faster-unit-tests [perf] faster unit tests GitOrigin-RevId: 188b8f3752638fde7a27a8d83b416bb9a6e3c95e	2020-11-28 03:04:01 +00:00
Shane Kilkelly	e9f7a17093	Merge pull request #3234 from overleaf/sk-fix-password-validation-email Overhaul password validation GitOrigin-RevId: a591c4e192e30a0ac053eab6f80627543a8a92fe	2020-10-23 02:04:39 +00:00
Jakob Ackermann	e3c6637339	Merge pull request #3187 from overleaf/jpa-mongodb-native [misc] migrate the app to the native mongo driver GitOrigin-RevId: 9030b18c4cf62e3a01d3d8f450bf0e02f9f89c22	2020-10-02 02:04:18 +00:00
Jakob Ackermann	018a44eeb5	Merge pull request #3185 from overleaf/jpa-normalize-mongo-imports [misc] normalize mongo imports GitOrigin-RevId: ac653d9982e0d36736b90f4c03d4c00be88ea76a	2020-09-25 02:04:20 +00:00
Jessica Lawshe	6737637b39	Merge pull request #2190 from overleaf/as-invalid-password-errors Throw Error instead of plain object if email/password is invalid GitOrigin-RevId: 2a1b040b07834064d547cef7890676ca014ec0ae	2019-10-02 14:22:34 +00:00
Simon Detheridge	7588393580	Merge pull request #2047 from overleaf/spd-eslint-mocha-arrows Enforce consistent callback style in mocha tests GitOrigin-RevId: a64c293dae6926ef5831abe97eaf2044942a5c85	2019-08-07 15:29:25 +00:00
Ersun Warncke	d624c29b6f	remove v1 deps for password change/reset GitOrigin-RevId: be25f19ae589c50bfde0b170860127fa8d6f63b7	2019-07-17 15:09:24 +00:00
Shane Kilkelly	238e2b2565	Merge pull request #1937 from overleaf/spd-sandboxedmodule-global-console Add 'console' to SandboxedModule globals GitOrigin-RevId: fad442ca128561a4fa193b929f217cf31ad0f043	2019-07-15 10:44:47 +00:00
Simon Detheridge	757ae39487	Merge pull request #1899 from overleaf/spd-implicit-return-tests Decaf cleanup: Remove implicit return from 'it' and 'describe' in tests GitOrigin-RevId: f297820e6212dddc0d60697a2fe1612ef27403b6	2019-06-21 13:58:57 +00:00
Alasdair Smith	0ca81de78c	Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa	2019-05-29 09:32:21 +00:00