* This is still not pretty, but it is a safe for hotfix into staging. This makes the unsupported dialog and cookies disabled screens look equivalent to the current prod.

cherry picked from the stage hotfix - 977706bc288660a5b40c5ea58001fc9bba4fda90

<%- is an alias for <%=.

Update one unit test so all frontend tests pass.

adorn confirmations on main site (like 'd00d, sure you wanna cancel') with gettext() for proper extraction and substition

'or' was not gettext() decorated in index.ejs - allow a translator more control over the whole phrase

gettextify the last portion of the about page.

Cachify the logo as well.

issue #1999

extensive testing of i18n mechanism - including english fallback, string substition from .json files, and debug locale

new KPIs in the event stream:
* authenticate.enter_password
* authenticate.password_submitted
* authenticate.password_success
* authenticate.password_fail

Added a couple of new testHelper functions, expectedMessage and unexpectedMessage

* in each top level layout or ejs template, include a link to a partial that contains the license.
* The bottom of the license contains a link to the repo and the current SHA's commit.

* Only show a hint if it is not already shown.

Never set a future expiration date, to delete the cookie set an expiration date of yesterday.

they are no longer separate timeouts, nor do they start at
slightly different spots in the code.

The countdown starts at the end, and only once the countdown
reaches 0, does the redirect take place.

fixes #2007

this makes sure callbacks for animations truly are called only
after the animation has finished. before, it'd be possible to trigger slightly ahead because of setTimeout tomfoolery

issue #1989

issue #2001

issue #1167

IE8 doesn't know how to handle max-age when setting cookies turning the "cookie check cookie" into a session cookie.  Using expires=<date> as well.  Manually expire the cookie after its existence is checked for.

1982

issue #1978

Add a small test to qunit to make sure all starts/stops are matched to help ensure async tests are written correctly.

perform rigorous validation on all API parameters, cleanup redundancy in sanitize.js and validate.js - issue #1526

Signed-off-by: Lloyd Hilaiel <lloyd@hilaiel.com>

the complete_email_addition wsapi was renamed to complete_email_confirmation.  Update the mock and wsapi call.

close #1974

Update user.createSecondaryUser to use stageAddressVerification.  rename stageAddressVerification to handleStageAddressVerificationResponse.