agw/overleaf-cep
1
0
Fork 0
mirror of https://github.com/yu-i-i/overleaf-cep.git synced 2026-06-06 23:59:01 +02:00
Code Issues Packages Projects Releases Wiki Activity
23,228 Commits 3 Branches 19 Tags
e54d54157e8bf87c8d0b56d99dd3050eeea1f166
Commit Graph

368 Commits

Author SHA1 Message Date
Alexandre Bourdin 4c7005b83f Merge pull request #20062 from overleaf/ab-saas-authentication-module-renaming 
[web] Rename overleaf-integration module to saas-authentication

GitOrigin-RevId: 7d69e06a19da9855fa9a0962114ad97b45ad8875
 2024-08-23 08:04:43 +00:00
Jakob Ackermann 739b775a1b Merge pull request #19842 from overleaf/jpa-ro-mirror-on-client 
[misc] add readonly mirror of full project content on the client

GitOrigin-RevId: 940bd93bfd587f83ca383d10fc44579b38fc3e88
 2024-08-22 08:05:13 +00:00
Tim Down a18accfddd Merge pull request #18996 from overleaf/td-bs5-nav-react 
Main navigation React component

GitOrigin-RevId: c99a4b4a2f6fd02618689f829681118b2b64aa8d
 2024-08-22 08:05:03 +00:00
andrew rumble 842f0e87f2 Refactor mongodb infra module to remove unneeded code 
GitOrigin-RevId: f907753dffd67ed279815693c37498ec255f1353
 2024-08-21 08:04:59 +00:00
andrew rumble e30f30130c Check that we are using same ObjectId as mongoose 
GitOrigin-RevId: 95812e15365bea740dfd02215e706f8014239840
 2024-08-21 08:04:50 +00:00
andrew rumble 16f7079ab1 Placate the linter 
GitOrigin-RevId: 064d796a5c3c49cfdacee5cf1a461d38f08425b3
 2024-08-21 08:04:46 +00:00
andrew rumble 9212aa40f2 Allow independent pools to be used for mongo/mongoose 
GitOrigin-RevId: c0c7d8e3388fd9402d7b22b70eda9455b4ecc205
 2024-08-21 08:04:29 +00:00
andrew rumble b00d1336d4 Switch to mongodb-legacy 
GitOrigin-RevId: 11e09528c153de6b7766d18c3c90d94962190371
 2024-08-21 08:04:24 +00:00
Brian Gough f97a979ad1 Merge pull request #19777 from overleaf/bg-issue19430-implement-wiki-caching 
support conditional requests for learn wiki images

GitOrigin-RevId: fb77ab632c325f88dfed1624a5abad8f2e52ee3d
 2024-08-19 08:04:44 +00:00
Alexandre Bourdin 559ba61f03 Merge pull request #19901 from overleaf/ac-confirm-institution-domain-queue-in-institution-module 
[web] Add `start` function to modules. Move `confirm-institution-domain` queue to institution module

GitOrigin-RevId: 0d36ff3dcc529e77c76d72d0a67bbdb9310b42fd
 2024-08-14 08:05:39 +00:00
Brian Gough fd098be09f add tests for unwanted 500 responses from invalid urls (#19612) 
* add acceptance tests for bad urls

* fix 500 from health check when smoke test userId is undefined

* handle exception from invalid urls in ExpressLocals middleware

* Add return statement before `next()`

* Cleaned up list of crash_test_urls.txt

* Return 400 instead of 404 on parsing errors

---------

Co-authored-by: mserranom <mserranom@gmail.com>
GitOrigin-RevId: dac35b07d1f12bd9ceb70e3064ec2ef8393f99b5
 2024-08-14 08:05:16 +00:00
Jakob Ackermann 81b964ad23 Merge pull request #19644 from overleaf/jpa-remove-window-attributes 
[web] goodbye window attributes

GitOrigin-RevId: b15a2cb1d96b657385c4d46dcf80e0269dbd7409
 2024-08-06 08:04:39 +00:00
Alexandre Bourdin a80c9afef6 Merge pull request #19562 from overleaf/ab-modules-dependencies 
[web] Modules dependencies

GitOrigin-RevId: d8bbb25a754f2ed58b1b1e924aa760b87d3135c6
 2024-07-30 08:04:36 +00:00
Antoine Clausse 9b31a51c21 [web] Make rate-limit on login consistent, prevent "trim/case bypass" (#19555) 
* Replace `LoginRateLimiter.processLoginRequest` call by use of `RateLimiterMiddleware`

* Lowercase the email to avoid rate-limit bypass

* Remove unit test "when the users rate limit"

* Use `EmailHelper.parseEmail` to normalize email in `processLoginRequest`

This should address the `trim()` bypass

* Use `.trim().toLowerCase()` instead of `EmailHelper.parseEmail`

We can't use `EmailHelper.parseEmail`, else it breaks the test (and feature): "with username that does not look like an email"

* Add acceptance test for rate limit

* Add comment on rate limits

* Rename `rateLimiter` to `rateLimiterLoginEmail` for clarity

* Make the login rate limits configurable from the settings

GitOrigin-RevId: cf1c3a416745f2b007c85014a5084570d4a049a7
 2024-07-30 08:04:26 +00:00
Alexandre Bourdin 751e842e67 Merge pull request #19465 from overleaf/ab-modules-middlewares 
[web] Support injecting middlewares from modules

GitOrigin-RevId: efbf68d885f839b92f2e601553c7ce54b9d4b6d3
 2024-07-24 08:05:09 +00:00
Jimmy Domagala-Tang 3eedc884f2 Merge pull request #19328 from overleaf/jdt-global-metrics 
Allow for site wide metrics and counters

GitOrigin-RevId: e788488bdd673aef4ba0e45a9e39832d6203c44c
 2024-07-18 08:04:27 +00:00
andrew rumble af8b691a59 Remove special code for handling RequestFailedErrors 
Co-authored-by: Jakob Ackermann <jakob.ackermann@overleaf.com>
GitOrigin-RevId: 821826fa56b89176b615e026f11db0b7fcfcbd30
 2024-07-17 08:05:05 +00:00
andrew rumble 74127bcc0f Remove unneeded/confusing assignment 
Co-authored-by: Jakob Ackermann <jakob.ackermann@overleaf.com>
GitOrigin-RevId: 2aa48249cf216bc8cca7e95153695095923c0b86
 2024-07-17 08:05:01 +00:00
andrew rumble 53b7d46975 Replace request with fetch-utils in ExpressLocals 
GitOrigin-RevId: 85c112a2124aeca128753e40c70869517c7026f6
 2024-07-17 08:04:57 +00:00
Jakob Ackermann f0a3c15559 Merge pull request #19220 from overleaf/jpa-precompile-pug 
[web] precompile pug templates in CI

GitOrigin-RevId: 6ec2b85a357fa3d5c35d8e7eb1a2e81ac5f3b447
 2024-07-04 08:04:51 +00:00
Jimmy Domagala-Tang 42a5a3def4 Merge pull request #19132 from overleaf/jdt-ai-policy-migration 
feat: add migration for adding new policy to all existing groupPolicies
GitOrigin-RevId: ea3188b6059c2e96afd0058a191d18b26d68adbd
 2024-06-26 08:04:48 +00:00
Eric Mc Sween 44962fb5d7 Merge pull request #18906 from overleaf/em-migrate-existing-histories-2 
History ranges migration script - second attempt

GitOrigin-RevId: 60a2c04e2a72e76a58e9e179fefc4186a96fde32
 2024-06-19 08:05:02 +00:00
Jakob Ackermann cb987446ed Merge pull request #18898 from overleaf/jpa-no-window 
[web] migrate from window attributes to getMeta

GitOrigin-RevId: 3dcf1ab6b01155e5e4abeb3e78d0fa9053e055bc
 2024-06-19 08:04:21 +00:00
Jakob Ackermann 93db374524 Merge pull request #18856 from overleaf/jpa-server-ce-shutdown 
[server-ce] improve shutdown procedure

GitOrigin-RevId: 5a99868d17f597c366e42625cd39f05146dcb682
 2024-06-18 08:04:04 +00:00
Brian Gough 15b464adb3 Merge pull request #18775 from overleaf/bg-cookie-session-metrics-middleware 
add middleware to record session cookie metrics in web

GitOrigin-RevId: f4404455e219d2071d6f0b39e657e9219b7d1c70
 2024-06-13 08:04:16 +00:00
Tim Down 1df701272c Merge pull request #18590 from overleaf/td-ieee-editor-remove-blue 
Disable IEEE stylesheet in IEEE editor based on feature flag

GitOrigin-RevId: 09b203e3220a868d5f0a0e413bdc4d3ff7a1792e
 2024-05-31 08:04:41 +00:00
Jakob Ackermann d7a0e2391c Merge pull request #18543 from overleaf/jpa-server-pro-test-templates 
[server-pro] tests: add tests for templates feature

GitOrigin-RevId: b36482af924e306207cbdedc1a8d1d548272ee77
 2024-05-30 08:05:30 +00:00
Tim Down d5bc8f1017 Merge pull request #18558 from overleaf/td-bs5-query-string-override 
Add a mechanism to hide incomplete Bootstrap 5 pages by default

GitOrigin-RevId: 07cc998bf3a0bed9df2f43d1c04c62d167c9b893
 2024-05-30 08:04:15 +00:00
Brian Gough 0d1531a2ee Merge pull request #18088 from overleaf/ab-session-secret-rotation 
[web/realtime/history-v1] Support session secret rotation

GitOrigin-RevId: 3c2fa27b1b3e0a8e0c9d1af2e616ce873d54aedf
 2024-05-27 10:23:33 +00:00
Eric Mc Sween 01e2a29766 Merge pull request #18225 from overleaf/em-typescript-eslint 
Add typescript-eslint rule: no-floating-promises

GitOrigin-RevId: 8c3decdff537c885f5bfeb5250b7805480bc6602
 2024-05-27 10:22:20 +00:00
Brian Gough 2a3ce26170 Merge pull request #18283 from overleaf/bg-session-secret-use-session-secret-in-web 
replace SECURITY_SESSION_SECRET with SESSION_SECRET in web

GitOrigin-RevId: f6ff5f13cf04e1b59fe44a394a0888af55ae140f
 2024-05-14 08:03:57 +00:00
Jakob Ackermann 2980849dc4 Merge pull request #18153 from overleaf/jpa-validate-session-in-store 
[web] check for redis connection being out of sync in session store

GitOrigin-RevId: c271e88d4e1fbcb0f7a57f4775e8ef88b70b16a8
 2024-05-03 08:04:25 +00:00
Jakob Ackermann c8f3de986c Merge pull request #18152 from overleaf/jpa-stricter-session-validation 
[web] stricter session validation

GitOrigin-RevId: 3ef916318fde7f31e3e3fd0f7082dde7a2975a27
 2024-05-03 08:04:20 +00:00
Brian Gough 4474adb10f Merge pull request #17732 from overleaf/bg-session-mitigation-initial-protoype 
anonymous cookie-based sessions module

GitOrigin-RevId: 75fe2d48fa384ba8d07c0b478a9a5a907a2b3b67
 2024-04-26 08:04:54 +00:00
Jakob Ackermann 8b7a0b8bfd Merge pull request #17949 from overleaf/jpa-set-nx-xx 
[web] stricter writes to redis when creating and updating sessions

GitOrigin-RevId: 79723e0d38884bf723c7a2ba32993e4daa2612a0
 2024-04-26 08:04:35 +00:00
Jimmy Domagala-Tang a1d50c8aa7 Merge pull request #17888 from overleaf/jdt-async-tpr 
Async Await the third party references module

GitOrigin-RevId: 58bbc4160cf00bf26b2cd2ea81659ba213f95294
 2024-04-23 08:05:50 +00:00
Alf Eaton 10d7955c85 Discontinue the bonus program (#17919) 
GitOrigin-RevId: d30ace08a340dd17a68c3cfe82e589bb37b5959f
 2024-04-17 08:04:58 +00:00
Jakob Ackermann 7dfa28976c Merge pull request #17865 from overleaf/jpa-open-in-overleaf-session-storage 
[web] open-in-overleaf: cleanup redis and browser session storage

GitOrigin-RevId: af79bb49ff474545fc0d206d2a6f5a0ffa1416bc
 2024-04-17 08:04:04 +00:00
Tim Down 3d8925fae2 Merge pull request #17712 from overleaf/td-bs5-feature-flag 
Add feature flag check and per-page opt-in for Bootstrap 5

GitOrigin-RevId: 111474c19f0202efc4e701eef597c7653f8e8b61
 2024-04-12 08:05:10 +00:00
roo hutton 6646ef2b32 Merge pull request #17596 from overleaf/rh-permissions-policy 
[web] Add Permissions-Policy header

GitOrigin-RevId: 8934bbbda411102580d9ef8af135dcdc147627f9
 2024-04-08 08:04:29 +00:00
Brian Gough ef5b6e5c3a Merge pull request #17675 from overleaf/bg-session-mitigation-redis-store-metrics 
add CustomSessionStore class to handle session metrics and logging

GitOrigin-RevId: 49d4cda9fd94a8801adb33e894be239dc38ad544
 2024-04-03 08:03:55 +00:00
Alf Eaton e0e8a2ffaa Merge pull request #17525 from overleaf/ae-upgrade-prettier 
Upgrade Prettier to v3

GitOrigin-RevId: 6f1338f196408f3edb4892d5220ad3665ff1a5bc
 2024-03-26 09:04:05 +00:00
Brian Gough c0d90a26e9 Merge pull request #17537 from overleaf/bg-session-mitigation-log-session-size 
Add custom session store to track largest session sizes for anonymous users

GitOrigin-RevId: 23312689d7adb8196e66bb925afcfef78c4c558d
 2024-03-13 09:03:44 +00:00
Miguel Serrano 6ffc3a4b31 Merge pull request #17450 from overleaf/msm-fix-sp-welcome-page 
[web] Make wiki and template links configurable in welcome page

GitOrigin-RevId: fab1b8a11f518c5907a5bfa9365ff8e8a130b7c6
 2024-03-07 16:30:42 +00:00
David d08f93c70c Merge pull request #17201 from overleaf/dp-ip-rate-limit 
Add subnet rate limiter for login rate limit

GitOrigin-RevId: c9f68829887dbc1778eff3b465dbde40bc2073d8
 2024-02-29 09:04:15 +00:00
Brian Gough 1cd615eddf Merge pull request #17004 from overleaf/bg-mongoose-mongo-compatibility 
Ensure Mongoose and mongodb modules use the same mongodb instance

GitOrigin-RevId: fb55f3dfcff73919a4c5d26a354ba7c55b1e63c1
 2024-02-23 09:03:00 +00:00
Thomas 2588ec6bb1 Use winning website redesign variant (#17200) 
* Implement redesign on the default urls and redirect variants to defaults

* Fix Features & Benefits inconsistent case, cleanup temp translation

* Replace header_extras with the website redesign header extras

* Delete old home page

* Remove real time edits javascript (old home page)

* Cleanup unused locales

* Temporarily disable test that checked about/features-overview page

* Fix business/universities links in customer stories

GitOrigin-RevId: 9d2ee64c2622ffea7a2c2f7448a5e5beae3187e9
 2024-02-21 09:03:18 +00:00
Jessica Lawshe bd10c4e78d Merge pull request #17166 from overleaf/ab-fix-group-settings-label 
[web] Cleanup managed users env var and fix group settings label

GitOrigin-RevId: 817ed86a6c94c03adb41e8c10115d6404180142e
 2024-02-20 09:05:54 +00:00
Alf Eaton 088cb8d069 Preserve folder structure when uploading folders (#16502) 
GitOrigin-RevId: 791233ce1e68920a4f2d7042ed4c60ca3f4be8fb
 2024-02-16 09:05:07 +00:00
Tim Down 07db2b9d43 Merge pull request #16971 from overleaf/td-bootstrap-5-base 
Bootstrap 5 base

GitOrigin-RevId: 2ac614298d31a9cf65430a46d726648a742044f9
 2024-02-15 09:04:05 +00:00