Commits · 591fb935a26c3b3bca5f227e830697000b94592d · Hexang 息壤平台 / persona

Nov 14, 2011
- fix a missing non-object json response - issue #217 · 3d20ec65
  Lloyd Hilaiel authored 13 years ago
  
  3d20ec65
- initial implementation of request forwarding, cookies set from dbwriter are... · 86f46663
  Lloyd Hilaiel authored 13 years ago
```
initial implementation of request forwarding, cookies set from dbwriter are still not being properly passed through - issue #460
```
  86f46663
Nov 10, 2011
- add the dbwriter process. it's not yet hooked up, but starts up and runs,... · 34d9743f
  Lloyd Hilaiel authored 13 years ago
```
add the dbwriter process.   it's not yet hooked up, but starts up and runs, and included in health check.
```
  34d9743f
- reorganize browserid process - break out view serving and wsapi handling. ... · 8c5e67ac
  Lloyd Hilaiel authored 13 years ago
```
reorganize browserid process - break out view serving and wsapi handling.  preparation for dbwriter split.  issue #460
```
  8c5e67ac
Nov 09, 2011
- don't log calls to __heartbeat__ closes #537 · 521e2aad
  Lloyd Hilaiel authored 13 years ago
  
  521e2aad
- remove dead code · 65d1f57a
  Lloyd Hilaiel authored 13 years ago
  
  65d1f57a
- log noisily on db connection errors · 4c086089
  Lloyd Hilaiel authored 13 years ago
  
  4c086089
- implement 'keep me signed in' and associated API changes. closes #490 · 90ebd209
  Lloyd Hilaiel authored 13 years ago
  
  90ebd209
Nov 07, 2011
- the only process that touches the private key is the keysigner. closes #539 · fb616c5f
  Lloyd Hilaiel authored 13 years ago
  
  fb616c5f
- port to nodejs 0.6.0 without breaking support for 0.4.x. closes #535 · cc255998
  Lloyd Hilaiel authored 13 years ago
  
  cc255998
Nov 04, 2011

implement graceful process shutdown, and clear logging as to the reason why... · 7d6477c5

Lloyd Hilaiel authored 13 years ago

implement graceful process shutdown, and clear logging as to the reason why processes are terminating.  include winston handling of uncaught exceptions.  this all goes into a library that all of our processes use.  closes #529

7d6477c5

in production (dev/beta/prod) use a more conventional logging format that... · b6adc1f0
Lloyd Hilaiel authored 13 years ago
```
in production (dev/beta/prod) use a more conventional logging format that includes timestamps.  closes #234
```
b6adc1f0

implement graceful process shutdown, and clear logging as to the reason why... · b77d6c26

Lloyd Hilaiel authored 13 years ago

implement graceful process shutdown, and clear logging as to the reason why processes are terminating.  include winston handling of uncaught exceptions.  this all goes into a library that all of our processes use.  closes #529

b77d6c26

Nov 03, 2011
- in production (dev/beta/prod) use a more conventional logging format that... · 90e0ac89
  Lloyd Hilaiel authored 13 years ago
```
in production (dev/beta/prod) use a more conventional logging format that includes timestamps.  closes #234
```
  90e0ac89
Nov 02, 2011
- fix CSRF checking logic, once we identify a single problem with the CSRF... · c83a4a7a
  Lloyd Hilaiel authored 13 years ago
```
fix CSRF checking logic, once we identify a single problem with the CSRF token, don't fall through to further checks
```
  c83a4a7a
- implement keysigner as separate process. issue #460 · 39619836
  Lloyd Hilaiel authored 13 years ago
  
  39619836
Oct 28, 2011
- all process figure out what to bind to using HOST(or IP_ADDRESS)/PORT env vars · c21c34ad
  Lloyd Hilaiel authored 13 years ago
  
  c21c34ad
- improve repository organization - closes #503 closes #488 · 54918f1d
  Lloyd Hilaiel authored 13 years ago
  
  54918f1d
Oct 26, 2011
- improved messaging for unsupported browsers - closes #273, closes #484 · e50c2b1e
  Shane Tomlinson authored 13 years ago
  
  e50c2b1e
Oct 25, 2011
- add /__heartbeat__ endpoint for load balancers - remove ping.txt - closes #481 · 334721eb
  Pete Fritchman authored 13 years ago
  
  334721eb
Oct 14, 2011
- added redirects · 0f3eadd2
  Ben Adida authored 13 years ago
  
  0f3eadd2
Oct 11, 2011

WSAPI CHANGES: All server responses are now objects, makes some funky browsers... · 511b56ae

Lloyd Hilaiel authored 13 years ago

WSAPI CHANGES: All server responses are now objects, makes some funky browsers happy and prevents certain attacks.  closes #217 closes #325

  * /wsapi/have_email now returns { email_known: <boolean> }
  * /wsapi/stage_user now returns { success: <boolean> }
  * /wsapi/user_creation_status now returns { status: <string> }
  * /wsapi/complete_user_creation now returns { status: <boolean> }
  * /wsapi/stage_email now returns { success: <boolean> }
  * /wsapi/email_addition_status now returns { success: <boolean> }
  * /wsapi/complete_email_addition now returns { success: <boolean> }
  * /wsapi/authenticate_user now returns { success: <boolean> }
  * /wsapi/remove_email now returns { success: <boolean> }
  * /wsapi/account_cancel now returns { success: <boolean> }
  * /wsapi/logout now returns { success: <boolean> }

Finally, introduced middleware to ensure that resp.json() is not called with anything other than an object.

511b56ae

Sep 29, 2011

ensure users must authenticate every week (issue #309). Also, move all magic... · 1f7461e9

Lloyd Hilaiel authored 13 years ago

ensure users must authenticate every week (issue #309).  Also, move all magic numbers out of implementation and into the configuration abstraction.

1f7461e9

Sep 23, 2011
- fixed signup and forgot · 23e8de52
  Ben Adida authored 13 years ago
  
  23e8de52
- moved email loading to wsapi · 9aa60d48
  Ben Adida authored 13 years ago
  
  9aa60d48
- removed serving of URLs with .html suffixes, added site that user is logging into · 097d626c
  Ben Adida authored 13 years ago
  
  097d626c
Sep 27, 2011
- Renaming the verify links to be the same as in the email. · 1871e663
  Shane Tomlinson authored 13 years ago
```
This gives us end to end flow!  BOOOYA!
```
  1871e663
- Making the verification file names/urls easier to grok. · a1ace952
  Shane Tomlinson authored 13 years ago
```
prove.ejs -> verifyemail.ejs
verify.ejs -> verifyuser.ejs

urls are the same - verifyemail, verifyuser
```
  a1ace952
Sep 23, 2011
- explicitly disable caching for /wsapi calls. issue #294 · fc97e0a8
  Lloyd Hilaiel authored 13 years ago
  
  fc97e0a8
- explicitly disable caching for /wsapi calls. issue #294 · 33c6c738
  Lloyd Hilaiel authored 13 years ago
  
  33c6c738
Sep 20, 2011
- Starting to add the final verification page. · 390ef033
  Shane Tomlinson authored 13 years ago
  
  390ef033
Sep 19, 2011
- Starting to add the final verification page. · 5f5b7bbc
  Shane Tomlinson authored 13 years ago
  
  5f5b7bbc
Sep 15, 2011
- remove webfinger logic and tons of dead code from the verifier · 410712ab
  Lloyd Hilaiel authored 13 years ago
  
  410712ab
Sep 14, 2011
- now that jwcrypto is a node module, we shall change the way that we include it... · d3bae657
  Lloyd Hilaiel authored 13 years ago
```
now that jwcrypto is a node module, we shall change the way that we include it (ie jwcrypto/vep rather than by relative path)
```
  d3bae657
Sep 08, 2011
- added early primary support · 982741ce
  Ben Adida authored 13 years ago
  
  982741ce
Sep 07, 2011
- began rework of dialog for certs, not working yet · 8f7ae0c5
  Ben Adida authored 13 years ago
  
  8f7ae0c5
- added /pk and corresponding tests · e67416d8
  Ben Adida authored 13 years ago
  
  e67416d8
- added verifier of certs · 62be2214
  Ben Adida authored 13 years ago
  
  62be2214
Sep 01, 2011
- Adding the ability to put .html on the end of the "relay" call. · 717cc91c
  Shane Tomlinson authored 13 years ago
  
  717cc91c
- Removal of experiment of x-frames-header. · 8c98ecb9
  Shane Tomlinson authored 13 years ago
  
  train-2011.09.01-DERAILED
  
  8c98ecb9