| Commit message (Collapse) | Author | Age | Lines |
|---|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
It was using the branding/URL of the site the update was left on.
|
| | |
|
| |\ |
|
| | | |
|
| |/
|
|
|
| |
We add a way to process a template with no auto-escaping, that can be
used for the text parts of emails, and mark various HTML output as safe.
|
| |\ |
|
| | |
| |
| |
| |
| |
| | |
This allows you to output a working Content-Security-Policy header, with
optional third-party domains, by setting a new CONTENT_SECURITY_POLICY
configuration option.
|
| | | |
|
| |/ |
|
| | |
|
| |\ |
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Update:
* Catalyst
* Specify Catalyst::DispatchType::Regex explicitly
* Remove Catalyst::Plugin::Unicode::Encoding
* Catalyst::Plugin::SmartURI
* Specify URI::SmartURI explicitly
* Catalyst::Plugin::Static::Simple
* CGI
* Class::Load
* DateTime
* DateTime::TimeZone
* DBD::Pg
* DBIx::Class
* DBIx::Class::EncodedColumn.
* Email::Address.
* Email::MIME
* ExtUtils::MakeMaker
* ExtUtils::ParseXS (for Params::Classify upgrade)
* File::ChangeNotify
* Image::Size
* IO::Socket::SSL
* local::lib
* Moo
* Moose (and some related others due to deprecations)
* namespace::autoclean
* Net::Server
* Net::SSLeay
* Number::Phone
* Plack
* Starman
* Template
* Test::PostgreSQL
* Test::WWW::Mechanize::Catalyst
* Text::CSV
* YAML
carton install was run on a wheezy box, the oldest that is supported, to
make sure the required minimal vesions of core modules weren't removed
from the snapshot. Cpanel::JSON::XS, Devel::GlobalDestruction::XS, and
MooseX::NonMoose were then put back in the snapshot, in case another
system needs them (e.g. system Perl on Mac looks for MooseX::NonMoose).
|
| |/ |
|
| |
|
|
|
| |
This fixes an issue with slashes in category names in admin (as
PATH_INFO can't tell the difference between / and %2F).
|
| |
|
|
|
|
| |
If no MAPIT_URL is provided, MapIt lookups default to /fakemapit/ at the
same host. But that host might already be set up for HTTPS, so port
might be 443.
|
| |
|
|
|
|
| |
Remove the server-side zoom-in-url fix, instead use an ArgParser
subclass to default to the provided data if nothing in URL. Then
we can switch to using short lat/lon in geocoder URLs.
|
| | |
|
| | |
|
| |
|
|
|
| |
Categories could contain commas, so splitting on comma is not good enough.
Let’s escape the fields as if it’s a line in CSV. Fixes #2166.
|
| | |
|
| |
|
|
|
|
| |
The namespace was only being set in the web loop, so cron scripts
were accessing different memcached keys. In particular, the state
list would be shared between instances on the same host.
|
| | |
|
| |\ |
|
| | | |
|
| |/ |
|
| | |
|
| |
|
|
|
| |
This prevents FixMyStreet cookies from being sent from third-party
<img>s and the like, in supporting browsers.
|
| |
|
|
| |
This allows access if you have a token associated with your user.
|
| | |
|
| | |
|
| |\ |
|
| | |
| |
| |
| |
| | |
Front page stats, update form question, list filtering, plus do not send
any questionnaires.
|
| |\ \
| |/
|/| |
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
If debug is enabled, using the CATALYST_DEBUG/FIXMYSTREET_APP_DEBUG
environment variables, add a debug toolbar to the output, including
request/response details and a database query log.
This uses Plack middleware, so works by switching our dev server to
use Starman with plack directly, rather than via the script runner.
We remove the GZip compression as this interferes, and take a local
copy of the QueryLog::AdoptPlack trait as it needs a tweak to work.
Make sure the CSP header is not output in debug mode, as that would
prevent the toolbar JavaScript from running.
|
| |/ |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
If an /about/homepage.html template exists in your cobrand, it
will be used as the front page, and the normal front page will
be available at /report.
|
| |
|
|
|
|
|
|
|
|
| |
Email::Send is long deprecated and uses submodules that no longer work
correctly (e.g. Net::SMTP::TLS breaks with recent IO::Socket::SSL). We
create an Email::Sender subclass to perform the same functionality and
this also simplifies the email code with simpler envelope handling.
Bundle Email::Sender::Transport::SMTP to include fix from
https://github.com/rjbs/Email-Sender/issues/46
|
| |
|
|
|
| |
If we're chugging through a list of reports, this save on a lot of
pointless statting of the upload directory which we know is there.
|
| | |
|
| |
|
|
|
| |
This is to work around
https://developer.microsoft.com/en-us/microsoft-edge/platform/issues/8572187/
|
| | |
|
| |
|
|
|
|
| |
This lets people filter by multiple categories or states. It uses our
jQuery multi-select plugin to turn the <select multiple>s into little
overlay lists of checkboxes. HTML5 history is also supported.
|
| | |
|
| | |
|
| | |
|
