aboutsummaryrefslogtreecommitdiffstats
path: root/t/app
Commit message (Collapse)AuthorAgeLines
...
* Merge branch 'csp-uk'Matthew Somerville2019-11-25-2/+29
|\
| * Add configuration for setting CSP header.Matthew Somerville2019-11-25-2/+29
| | | | | | | | | | | | This allows you to output a working Content-Security-Policy header, with optional third-party domains, by setting a new CONTENT_SECURITY_POLICY configuration option.
* | Merge branch 'qr-code-generator'Matthew Somerville2019-11-25-1/+0
|\ \
| * | Switch to internal QR code generator.Matthew Somerville2019-11-23-1/+0
| | |
* | | [Oxfordshire] re-enable inspector permissionsStruan Donald2019-11-22-27/+0
|/ / | | | | | | | | Re-enable the inspector permissions that were disabled at a cobrand level
* | Rotate session ID after successful login.Matthew Somerville2019-11-22-12/+11
| |
* | Replace use of FixMyStreet::App with DB in tests.Matthew Somerville2019-11-22-219/+208
|/
* Remove cached photos before updating db field.Matthew Somerville2019-11-18-13/+34
| | | | | If the photo field is updated first, then the cache removal doesn't think there are any photos to remove.
* Merge branch 'issues/freshdesk/98-staff-ignore-emergency-message'Struan Donald2019-11-15-0/+51
|\
| * allow staff to submit in disabled categoriesStruan Donald2019-11-15-0/+51
| | | | | | | | | | | | | | If a user belongs to a body override the disabled form check upon submission as mostly staff users can submit in those categories. Fixes mysociety/fixmystreet-freshdesk#98
* | Add cobrand-specific XSL to RSS feeds.Matthew Somerville2019-11-15-0/+17
|/
* Merge branch 'admin-auditing'Matthew Somerville2019-11-10-8/+62
|\
| * Add user admin log page.Matthew Somerville2019-11-08-5/+54
| |
| * Store a moderation history on admin report edit.Matthew Somerville2019-11-08-0/+7
| |
| * Add admin log entry for more objects and things.Matthew Somerville2019-11-08-1/+1
| | | | | | | | | | Namely templates, roles, bodies, categories, various user edits, and when using the inspect form and changing category.
| * Factor out admin template code to own controller.Matthew Somerville2019-11-08-2/+0
| |
* | Store email addresses report sent to on the reportMatthew Somerville2019-11-10-0/+3
|/
* Fix password reset on 2FA accounts again.Matthew Somerville2019-11-05-0/+5
| | | | | | Just after fixing it, 3d593bc68 broke it again, because it took anyone who must have 2FA switched on to the must-have-2FA sign up flow, even if they already had 2FA set up.
* Add optional enforced password expiry.Matthew Somerville2019-11-04-0/+28
|
* Record time of password change.Matthew Somerville2019-11-04-1/+3
|
* Merge branch '2fa-improvements'Matthew Somerville2019-10-31-148/+203
|\
| * If 2FA enforced, do it for an email login as well.Matthew Somerville2019-10-30-0/+34
| |
| * Fix password reset on 2FA accounts.Matthew Somerville2019-10-30-0/+23
| |
| * [UK] Mandate 2FA on superusers.Matthew Somerville2019-10-30-7/+13
| |
| * Allow enforcement of 2FA for staff users.Matthew Somerville2019-10-30-15/+111
| |
| * Require code to be entered when activating 2FA.Matthew Somerville2019-10-28-6/+15
| |
| * Allow non-superusers to store 2FA secrets.Matthew Somerville2019-10-28-4/+9
| |
| * Remove unused inspection required/reputation code.Matthew Somerville2019-10-28-120/+0
| |
* | Fix some tests not running offline.Matthew Somerville2019-10-28-4/+6
|/
* Merge remote-tracking branch 'origin/master'Matthew Somerville2019-10-28-0/+47
|\
| * add a get_extra_field method to Extra roleStruan Donald2019-10-28-0/+47
| | | | | | | | | | accepts name or code for finding the field. Useful for checking for individual open311 fields that don't have a value.
* | Allow editing of category name.Matthew Somerville2019-10-25-1/+16
| |
* | Make contact edit note optional on staging sites.Matthew Somerville2019-10-25-1/+1
|/
* [Westminster] Test warnfixes.Matthew Somerville2019-10-14-4/+5
|
* Test warnfix on confirmed comments lacking time.Matthew Somerville2019-10-14-7/+7
|
* [Oxfordshire] Remove defect type front end code.Matthew Somerville2019-10-10-27/+0
|
* [Oxfordshire] Remove raise defect/inspected code.Matthew Somerville2019-10-10-30/+1
|
*---. Merge branches 'use-right-asset-name', 'deadlock', ↵Matthew Somerville2019-10-04-127/+131
|\ \ \ | | | | | | | | | | | | '2469-fancy-admin-category-form' and 'fix-missing-body-message-flash'
| | | * Rename variable that shows missing body message.Matthew Somerville2019-10-03-0/+12
| |_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | As the around page includes a copy of the reporting form (when JS is available), it runs the same templating code that the reporting form does. Part of this code compares the bodies and bodies_to_list stash variables to see whether it needs to display a message about missing body information. Previously both variables were empty on the around page itself, so no message would be shown, but a new bodies variable was added in 4668f81a, which meant the message was now output in the HTML and shown briefly when the map was clicked - until updated by a server response). Rename the variable so that this no longer occurs.
| | * Restructured admin category extra-metadata-formZarino Zappia2019-10-03-66/+56
| |/ |/| | | | | | | | | | | | | | | * Much simplified display of metadata field options. * Fields can now be dragged into the desired order. * Drop-down question form disabling can now have a different message per option. Co-Authored-By: Matthew Somerville <matthew@mysociety.org>
| * Per-test file email addresses.Matthew Somerville2019-10-03-61/+63
|/
* Merge branch '2469-improve-admin-category-form'Matthew Somerville2019-09-30-4/+46
|\
| * Add top disable-form field to admin category form.Matthew Somerville2019-09-30-0/+18
| |
| * Rejig top-level part of admin category form.Matthew Somerville2019-09-30-4/+3
| | | | | | | | Co-Authored-By: Zarino Zappia <mail@zarino.co.uk>
| * Add two new helper functions to Roles::Extra.Matthew Somerville2019-09-30-0/+25
| | | | | | | | For updating/removing an extra field.
* | Merge branch 'zurich-staging'Matthew Somerville2019-09-30-2/+2
|\ \
| * | [Zurich] Allow external body to link to a categoryMatthew Somerville2019-09-30-2/+2
| |/
* | [IsleOfWight] do not send comment recording triage actionStruan Donald2019-09-27-2/+1
| | | | | | | | | | This is only used for audit purposes on FixMyStreet and not required in Confirm.
* | do not send triage comments in alertsStruan Donald2019-09-27-0/+15
| | | | | | | | | | | | add a check into the Alerts script to skip comments that have `triage_report` set in extra. Otherwise we send these our in new_updates alerts.
* | [IsleOfWight] add an admin interface to triage reportsStruan Donald2019-09-27-0/+112
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | On reports with a state of `for_triage` override the `_inspect.html` template to display one which allows only allows the user to change the category from one with a 'Triage' send_method to a non Triage send_method. When saved this records a comment with the original category and the category it was triaged to. This is hidden from the site as it's only used for audit purposes and sending over Open311. This assumes that the triage categories have the same names as the groups of the confirm categories. It uses this to select the first confirm category in the group corresponding to the triage category. This also makes the sidebar geolocation onclick handler check for the presence of the button, as the triage inspect form does not have it.
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-25 10:13:06 +0000