Commit Graph

148 Commits

Author SHA1 Message Date
Evan Prodromou
8cc7e4723d force session again and correctly get ID
darcs-hash:20080624031746-34904-3719874e1e0afa201e5c81e267531f0768ddacd9.gz
2008-06-23 23:17:46 -04:00
Evan Prodromou
ae2603ec13 use the correct field for Remember_me
darcs-hash:20080624031057-34904-7a2597a8f56d9d49ad8f126c55058893a922c89f.gz
2008-06-23 23:10:57 -04:00
Evan Prodromou
b26316589c typo in name of common_set_cookie
darcs-hash:20080624030834-34904-6efc827f64aebc23a1d2f3602c562fff69b9a0df.gz
2008-06-23 23:08:34 -04:00
Evan Prodromou
97b016387b bad function call
darcs-hash:20080624030741-34904-e5b601dd4d76b367ae09a61923b062f6a36702f7.gz
2008-06-23 23:07:41 -04:00
Evan Prodromou
91a3598972 switch order for checkbox, instructio
darcs-hash:20080624030034-34904-bdcb6197d2050bc37f9daaf6f849aed5890bce53.gz
2008-06-23 23:00:34 -04:00
Evan Prodromou
be3a44651c implement rememberme functionality
Added a checkbox on login or register to remember the current user. If
the login is successful, this sets a cookie with a random code (saved
in the DB). If they come back, and they aren't logged in "normally",
we check to see if they have a rememberme cookie. If so, we log them
in.

However, they can't change settings -- cookie theft is too prevalent.
So we mark a session as having a "real" (password or OpenID) login, or
not. In settings pages, we check to see if the login is "real", and if
not, we redirect to the login page.

darcs-hash:20080624025234-34904-ad20001bf35bf41fcb63a0c357fd929aacc55fdb.gz
2008-06-23 22:52:34 -04:00
Evan Prodromou
a8a2f40696 broadcast notices to jabber
darcs-hash:20080624014241-34904-39ace8e82e50e5f50c5980b5fb3256184a7c9050.gz
2008-06-23 21:42:41 -04:00
Evan Prodromou
63dcbe1e6e add jabber library and use it
darcs-hash:20080624001523-34904-8d0c052f12301d86aeb9107149b34f22c94da1c4.gz
2008-06-23 20:15:23 -04:00
Evan Prodromou
8a28d54f6a use a static rather than a constant for code chars
darcs-hash:20080622163458-34904-1be378ff9765dcfdf491ea8d38ef6c157ebe99ce.gz
2008-06-22 12:34:58 -04:00
Evan Prodromou
8a170ed8fd special function for generating confirmation codes
darcs-hash:20080622163241-34904-199b3654328d78c0b9fe2fa85a3ecc1ab0b1262a.gz
2008-06-22 12:32:41 -04:00
Evan Prodromou
97115c846e move confirmemail to confirmaddress
Rename the confirmemail to more general confirmaddress so we can use
it for Jabber, SMS, or whatever.

darcs-hash:20080622155250-34904-0cbc2895c01769dfb5e7393e6534355b6f5c2ac3.gz
2008-06-22 11:52:50 -04:00
Evan Prodromou
1fcdecbd2b typo in objstring
darcs-hash:20080622142906-34904-0699374fa0a88a1e4c004deb2a2f96b775fb98e5.gz
2008-06-22 10:29:06 -04:00
Evan Prodromou
313999fc7d reference calling for objstring
darcs-hash:20080622142713-34904-1cee0bb3dbf54ad9ebb27b9c99fe4166dca3f9e2.gz
2008-06-22 10:27:13 -04:00
Evan Prodromou
745a145f0d add better debugging
darcs-hash:20080622140941-34904-2a0eda21f6a374a9d26107a4bc627fc6de2a7063.gz
2008-06-22 10:09:41 -04:00
Evan Prodromou
15a09c5d69 change from using tag uris to http urls for identifiers
Weirdly, I got in an argument with Tim Berners-Lee in #swig about the
tag URIs I was using in FOAF documents. Eventually, I was convinced
that it's a better thing to use HTTP URLs instead. So, now we have
HTTP URLs.

The tricky thing was for users. Since they can change their names, we
can't use their profile URL, since it includes the name. Instead, I
made up a new action, which simply redirects from a user ID to their
current profile URL. This should be sufficiently long-term.

darcs-hash:20080620071700-84dde-c6145243dc45dd2dff621aff421375d05796057e.gz
2008-06-20 03:17:00 -04:00
Evan Prodromou
03dba4270a go back to ensuring session
darcs-hash:20080620070256-84dde-215e2ccf2cc037208837353a3d979d69770301f6.gz
2008-06-20 03:02:56 -04:00
Evan Prodromou
2025169b50 strip some whitespace
darcs-hash:20080620065619-84dde-9c207b2a898ff0a16b45f5f1b28565aaa85f9e65.gz
2008-06-20 02:56:19 -04:00
Evan Prodromou
6f74a091e1 don't keep cached user
darcs-hash:20080620065455-84dde-0c3bd495205e49ba2c5a8e040495339f35f9b215.gz
2008-06-20 02:54:55 -04:00
Evan Prodromou
940b14952a fancy url for confirmation of email
darcs-hash:20080620062847-84dde-e7dd5ea325b1cbbf3cb5e3668851750497242e64.gz
2008-06-20 02:28:47 -04:00
Evan Prodromou
6a6ad1f76e skip a DB hit, and better regex
darcs-hash:20080620203449-84dde-b878277e0ad5a5478b7396fbca7e42feb39715f8.gz
2008-06-20 16:34:49 -04:00
matthew.gregg
e547595e48 Fix for bug #00019 (Linkified all @ addresses in a message)
darcs-hash:20080620181136-982e4-ee4bb812b3db0f1d0e0b7961bc9aa6beec74096b.gz
2008-06-20 14:11:36 -04:00
Evan Prodromou
50c7e4c722 posting from a form takes you back to the same page
darcs-hash:20080619161814-5ed1f-5add55346470e71a53a676d39617062acc0f19bf.gz
2008-06-19 12:18:14 -04:00
Evan Prodromou
0d8de282b2 copy args function
darcs-hash:20080619141107-84dde-a5e018fdac3f72eee13b3093fbd871299cda0739.gz
2008-06-19 10:11:07 -04:00
Evan Prodromou
1d67f33b3b switch password and id in munge_password
I think this is the less effective way to salt a password, BUT...
I had a big bug in my code! All the code that was calling this
function got the order of the params mixed up. So, to save heartache,
I just reversed the order of the parameters, and reversed how the were
used in the function. It should be functionally the same as before,
but better documented.

darcs-hash:20080618211454-84dde-4772135cc92f2a51faa072e4470da3c628e1510c.gz
2008-06-18 17:14:54 -04:00
Evan Prodromou
78ac9df2a6 change references from subscribed to subscribers
darcs-hash:20080618171622-84dde-abe0986279b106ff651913d759828d6d945adf0f.gz
2008-06-18 13:16:22 -04:00
Evan Prodromou
f055d2643b add a little XML goodness to redirect
darcs-hash:20080618202500-84dde-66eeb8af0e26d9723b89831a6ba7bb82b09dbe09.gz
2008-06-18 16:25:00 -04:00
Evan Prodromou
1d867396fa add xrds for trust root URL
darcs-hash:20080618182647-84dde-e75e2c3441e8441ad6602f36fd9b7bf6ca39e70d.gz
2008-06-18 14:26:47 -04:00
Evan Prodromou
a4b36e28f4 link in the branding p
darcs-hash:20080618154643-84dde-e77d6bf486806725579cdfe922ccbe3e59e008e1.gz
2008-06-18 11:46:43 -04:00
Evan Prodromou
56125383f4 class
darcs-hash:20080618153258-84dde-48204f3d9d3d6c710d73bad4b390877cb34e2991.gz
2008-06-18 11:32:58 -04:00
Evan Prodromou
79ac337695 more rigorous check on site logo
darcs-hash:20080618153036-84dde-06329e00661924826d6fd2b5b0682957c21c06d9.gz
2008-06-18 11:30:36 -04:00
Evan Prodromou
2de52654e2 change sitename h2 to branding p
darcs-hash:20080618152004-84dde-4d97997a9842ff1db550152266b51048df9e7281.gz
2008-06-18 11:20:04 -04:00
Evan Prodromou
fddcfd75c5 fake spaces in textareas to fakeout XMLWriter
darcs-hash:20080618030019-84dde-194b5591d9da98c74a513db540b802ed56455ae1.gz
2008-06-17 23:00:19 -04:00
Evan Prodromou
073281c0f4 don't put fake spaces in the text area
darcs-hash:20080618025253-84dde-3a9f3dceccc366b069b931b4159d8160c1ad62ce.gz
2008-06-17 22:52:53 -04:00
Evan Prodromou
d4341f03c2 add submit class to all buttons
darcs-hash:20080618163516-84dde-ab4d9daa4180d75da0813bed03f6c824577a87a0.gz
2008-06-18 12:35:16 -04:00
Evan Prodromou
0475763c3c fancified openidsettings URL
darcs-hash:20080618161321-84dde-366f585399c0dc0b8412596ebd0abcc61cfc904d.gz
2008-06-18 12:13:21 -04:00
Evan Prodromou
052e8eb7a4 better URLs for OpenID stuff
darcs-hash:20080618160733-84dde-cb233a9b2073b6333f2944682bb3ab0c1a7a547a.gz
2008-06-18 12:07:33 -04:00
Evan Prodromou
239c888b84 filename in jquery
darcs-hash:20080617044054-84dde-67eb7cd429c8f5bef64273c73a58dcb43816de02.gz
2008-06-17 00:40:54 -04:00
Evan Prodromou
4a01376789 add jQuery
darcs-hash:20080617043650-84dde-cef7662e9dff3ac0a1187586fc4cdcfca1d08087.gz
2008-06-17 00:36:50 -04:00
Evan Prodromou
7ad2b42bc3 before and after are switched, pass QSA in some rewrite rules
darcs-hash:20080615035510-84dde-3026b20678070004d8e8439d5e08e01ee6ef2b8b.gz
2008-06-14 23:55:10 -04:00
Evan Prodromou
83e303fe27 fancy URLs should remember page
darcs-hash:20080615035012-84dde-0450954528a270f46a4ac5d2b077af793ba8c1f3.gz
2008-06-14 23:50:12 -04:00
Evan Prodromou
9ff4794f1b mark off some todos, add a version number, and put code info at the bottom of the page
darcs-hash:20080613184638-84dde-aa7059348899949f3e0c6cfa02d08c41458384a1.gz
2008-06-13 14:46:38 -04:00
Evan Prodromou
8ba7e8cb76 function for retrieving a config variable
darcs-hash:20080613175344-84dde-253b5b55ea8ae85b807cba2e23ea885c6bbb0b8f.gz
2008-06-13 13:53:44 -04:00
Evan Prodromou
59d8b8b199 show logo only if file exists, add h1 and h2 to all pages
darcs-hash:20080613154632-84dde-d2eec5c1472d76eb5d3e8eb253b6a3572a8f721b.gz
2008-06-13 11:46:32 -04:00
Evan Prodromou
a86477aad3 add content negotiation for media type
darcs-hash:20080613144913-84dde-3e970b4e6f19ea1e0db09d7ab133a6c148be7a75.gz
2008-06-13 10:49:13 -04:00
Evan Prodromou
c2a170da10 broadcast profile and change subscription input id
darcs-hash:20080612184028-84dde-1f919ab373e5731efd403986ae760116769566d9.gz
2008-06-12 14:40:28 -04:00
Evan Prodromou
2354faf7ac add instructions to each form entry in forms
darcs-hash:20080612165201-84dde-1abc45a0b2fd24002bc6f3449e9fc521d4f02eac.gz
2008-06-12 12:52:01 -04:00
Evan Prodromou
526a09531e change default avatars from config vars to theme files
darcs-hash:20080611190230-84dde-78ff0d6f6c370a33aabc4f0053651b6629f85499.gz
2008-06-11 15:02:30 -04:00
Evan Prodromou
d0f8fd20fb push notice form and sub-menu into header div
darcs-hash:20080611183634-84dde-97119e7ef1abb01f6ce8723955dc5d6e06e644a8.gz
2008-06-11 14:36:34 -04:00
Evan Prodromou
f4ed605998 only show notice form if user is logged in, looking at own page
darcs-hash:20080611181334-84dde-e9045179a94f8c78af9d660c57a37ce6f5fc9776.gz
2008-06-11 14:13:34 -04:00
Evan Prodromou
34cdd4ebd0 make last parameter for common_menu_item() optional
darcs-hash:20080611155649-84dde-6200d33e93ed13278c22833d1225e3b9eb44b9b5.gz
2008-06-11 11:56:49 -04:00