6 files changed, 730 insertions, 125 deletions
diff --git a/config/application.rb b/config/application.rb
index fc8e0059e..ff72df015 100644
--- a/config/application.rb
+++ b/config/application.rb
@@ -61,7 +61,6 @@ module Alaveteli
     config.action_dispatch.rack_cache = nil
 
     config.after_initialize do |app|
-       require 'routing_filters.rb'
        # Add a catch-all route to force routing errors to be handled by the application,
        # rather than by middleware.
        app.routes.append{ match '*path', :to => 'general#not_found' }
@@ -69,11 +68,16 @@ module Alaveteli
 
     config.autoload_paths << "#{Rails.root.to_s}/lib/mail_handler"
     config.autoload_paths << "#{Rails.root.to_s}/lib/attachment_to_html"
+    config.autoload_paths << "#{Rails.root.to_s}/lib/health_checks"
 
     # See Rails::Configuration for more options
     ENV['RECAPTCHA_PUBLIC_KEY'] = ::AlaveteliConfiguration::recaptcha_public_key
     ENV['RECAPTCHA_PRIVATE_KEY'] = ::AlaveteliConfiguration::recaptcha_private_key
 
+    if RUBY_VERSION.to_f >= 1.9
+        config.middleware.insert 0, Rack::UTF8Sanitizer
+    end
+
     # Insert a bit of middleware code to prevent uneeded cookie setting.
     require "#{Rails.root}/lib/whatdotheyknow/strip_empty_sessions"
     config.middleware.insert_before ::ActionDispatch::Cookies, WhatDoTheyKnow::StripEmptySessions, :key => '_wdtk_cookie_session', :path => "/", :httponly => true
diff --git a/config/general.yml-example b/config/general.yml-example
index 0f32f6192..22d4d45aa 100644
--- a/config/general.yml-example
+++ b/config/general.yml-example
@@ -1,260 +1,772 @@
 # general.yml-example:
 # Example values for the "general" config file.
 #
+# Documentation on configuring Alaveteli is available at
+# http://alaveteli.org/docs/customising/
+#
 # Configuration parameters, in YAML syntax.
 #
 # Copy this file to one called "general.yml" in the same directory.  Or
 # have multiple config files and use a symlink to change between them.
+#
+# Default values for these settings can be found in
+# RAILS_ROOT/lib/configuration.rb
+#
+# ==============================================================================
 
 # Site name appears in various places throughout the site
+#
+# SITE_NAME - String name of the site (default: 'Alaveteli')
+#
+# Examples:
+#
+#   SITE_NAME: 'Alaveteli'
+#   SITE_NAME: 'WhatDoTheyKnow'
+#
+# ---
 SITE_NAME: 'Alaveteli'
 
 # Domain used in URLs generated by scripts (e.g. for going in some emails)
-DOMAIN: '127.0.0.1:3000'
+#
+# DOMAIN - String domain or IP address (default: 'localhost:3000')
+#
+# Examples:
+#
+#   DOMAIN: '127.0.0.1:3000'
+#   DOMAIN: 'www.example.com'
+#
+# ---
+DOMAIN: 'www.example.org'
 
-# If true forces everyone (in the production environment) to use encrypted connections
-# (via https) by redirecting unencrypted connections. This is *highly* recommended
-# so that logins can't be intercepted by naughty people.
+# If true forces everyone (in the production environment) to use encrypted
+# connections (via https) by redirecting unencrypted connections. This is
+# *highly* recommended so that logins can't be intercepted by naughty people.
+#
+# FORCE_SSL - Boolean (default: true)
+#
+# ---
 FORCE_SSL: true
 
 # ISO country code of country currrently deployed in
 # (http://en.wikipedia.org/wiki/ISO_3166-1_alpha-2)
+#
+# ISO_COUNTRY_CODE - String country code (default: GB)
+#
+# Examples:
+#
+#   ISO_COUNTRY_CODE: GB
+#
+# ---
 ISO_COUNTRY_CODE: GB
 
 # This is the timezone that times and dates are displayed in
 # If not set defaults to UTC.
-TIME_ZONE: Australia/Sydney
+#
+# TIME_ZONE - String time zone (default: UTC)
+#
+# Examples:
+#
+#   TIME_ZONE: Australia/Sydney
+#   TIME_ZONE: Europe/London
+#
+# ---
+TIME_ZONE: UTC
 
 # These feeds are displayed accordingly on the Alaveteli "blog" page:
-BLOG_FEED: 'https://www.mysociety.org/category/projects/whatdotheyknow/feed/'
-TWITTER_USERNAME: 'whatdotheyknow'
+#
+# BLOG_FEED - String url to the blog feed (default: nil)
+#
+# Examples:
+#
+#   BLOG_FEED: https://www.mysociety.org/category/projects/whatdotheyknow/feed/
+#
+# ---
+BLOG_FEED: ''
+
+# If you want a twitter feed displayed on the "blog" page, provide the
+# widget ID and username.
+#
+# TWITTER_USERNAME - String Twitter username (default: nil)
+#
+# Examples:
+#
+#   TWITTER_USERNAME: 'whatdotheyknow'
+#
+# ---
+TWITTER_USERNAME: ''
+
 # Set the widget_id to get the Twitter sidebar on the blog page.
 # To get one https://twitter.com/settings/widgets
+#
+# TWITTER_WIDGET_ID - String widget ID (default: false)
+#
+# Examples:
+#
+#   TWITTER_WIDGET_ID: '833549204689320031'
+#
+# ---
 TWITTER_WIDGET_ID: ''
 
-# Locales we wish to support in this app, space-delimited
-AVAILABLE_LOCALES: 'en es'
+# The locales you want your site to support. If there is more than one, use
+# spaces betwween the entries.
+#
+# AVAILABLE_LOCALES – String of space-separated locales (default: nil)
+#
+# Examples:
+#
+#   AVAILABLE_LOCALES: 'en es'
+#
+# ---
+AVAILABLE_LOCALES: 'en'
+
+# Nominate one of the AVAILABLE_LOCALES locales as the default
+#
+# DEFAULT_LOCALE – String locale (default: nil)
+#
+# Examples:
+#
+#   DEFAULT_LOCALE: 'en'
+#
+# ---
 DEFAULT_LOCALE: 'en'
+
+# Should Alaveteli try to use the default language of the user's browser?
+#
+# USE_DEFAULT_BROWSER_LANGUAGE - Boolean (default: true)
+#
+# Examples:
+#
+#   USE_DEFAULT_BROWSER_LANGUAGE: true
+#
+# ---
 USE_DEFAULT_BROWSER_LANGUAGE: true
 
-# If you don't want the default locale to be included in URLs generated
-# by the application, set this to false
+# Normally, Alaveteli will put the locale into its URLs, like this
+# www.example.com/en/body/list/all. If you don't want this behaviour whenever
+# the locale is the default one, set INCLUDE_DEFAULT_LOCALE_IN_URLS to false.
+#
+# INCLUDE_DEFAULT_LOCALE_IN_URLS: Boolean (default: true)
+#
+# Examples:
+#
+#   INCLUDE_DEFAULT_LOCALE_IN_URLS: false
+#
+# ---
 INCLUDE_DEFAULT_LOCALE_IN_URLS: true
 
-# How many days should have passed before an answer to a request is officially late?
+# The REPLY...AFTER_DAYS settings define how many days must have passed before
+# an answer to a request is officially late. The SPECIAL case is for some types
+# of authority (for example: in the UK, schools) which are granted a bit longer
+# than everyone else to respond to questions.
+#
+# REPLY_LATE_AFTER_DAYS - Integer (default: 20)
+# REPLY_VERY_LATE_AFTER_DAYS - Integer (default: 40)
+# SPECIAL_REPLY_VERY_LATE_AFTER_DAYS - Integer (default: 60)
+#
+# Examples:
+#
+#   REPLY_LATE_AFTER_DAYS: 20
+#   REPLY_VERY_LATE_AFTER_DAYS: 40
+#   SPECIAL_REPLY_VERY_LATE_AFTER_DAYS: 60
+#
+# ---
 REPLY_LATE_AFTER_DAYS: 20
 REPLY_VERY_LATE_AFTER_DAYS: 40
-# We give some types of authority like schools a bit longer than everyone else
 SPECIAL_REPLY_VERY_LATE_AFTER_DAYS: 60
-# Whether the days above are given in working or calendar days. Value can be "working" or "calendar".
-# Default is "working".
+
+# The WORKING_OR_CALENDAR_DAYS setting can be either "working" (the default) or 
+# "calendar", and determines which days are counted when calculating whether a
+# request is officially late.
+#
+# WORKING_OR_CALENDAR_DAYS - String in [working, calendar] (default: working)
+#
+# Examples:
+#
+#   WORKING_OR_CALENDAR_DAYS: working
+#   WORKING_OR_CALENDAR_DAYS: calendar
+#
+# ---
 WORKING_OR_CALENDAR_DAYS: working
 
-# example public bodies for the home page, semicolon delimited - short_names
-# Comment out if you want this to be auto-generated. WARNING: this is slow & don't use production!
-FRONTPAGE_PUBLICBODY_EXAMPLES: 'tgq'
+# Specify which public bodies you want to be listed as examples on the home
+# page, using their short_names. If you want more than one, separate them with
+# semicolons. List is auto-generated if not set.
+#
+# *Warning:* this is slow — don't use in production!
+#
+# FRONTPAGE_PUBLICBODY_EXAMPLES - String semicolon-separated list of public
+#                                 bodies (default: nil) 
+#
+# Examples:
+#
+#   FRONTPAGE_PUBLICBODY_EXAMPLES: 'tgq'
+#   FRONTPAGE_PUBLICBODY_EXAMPLES: 'tgq;foo;bar'
+#
+# ---
+FRONTPAGE_PUBLICBODY_EXAMPLES: ''
 
-# URLs of themes to download and use (when running rails-post-deploy
-# script). Earlier in the list means the templates have a higher
-# priority.
+# URLs of themes to download and use (when running the rails-post-deploy
+# script). The earlier in the list means the templates have a higher priority.
+#
+# THEME_URLS - Array of theme URLs (default: [])
+#
+# Examples:
+#
+#   THEME_URLS:
+#     - 'git://github.com/mysociety/alavetelitheme.git'
+#     - 'git://github.com/mysociety/whatdotheyknow-theme.git'
+#
+# ---
 THEME_URLS:
- - 'git://github.com/mysociety/alavetelitheme.git'
+  - 'git://github.com/mysociety/alavetelitheme.git'
 
-# When rails-post-deploy installs the themes it will try this branch first
-# (but only if this config is set). If the branch doesn't exist it will fall
-# back to using a tagged version specific to your installed alaveteli version.
-# If that doesn't exist it will back to master.
+# When rails-post-deploy installs the themes, it will try to use the branch
+# specified by THEME_BRANCH first. If the branch doesn't exist it will fall
+# back to using a tagged version specific to your installed alaveteli version,
+# and if that doesn't exist it will fall back to master.
+#
+# THEME_BRANCH - Boolean (default: false)
+#
+# Examples:
+#
+#   # Use the develop branch if it exists, otherwise fall back as described
+#   THEME_BRANCH: 'develop'
+#
+#   # try the use-with-alaveteli-xxx branch/tag, otherwise fall back to HEAD
+#   THEME_BRANCH: false
+#
+# ---
 THEME_BRANCH: false
 
-# Whether a user needs to sign in to start the New Request process
+# Does a user needs to sign in to start the New Request process?
+#
+# FORCE_REGISTRATION_ON_NEW_REQUEST - Boolean (default: false)
+#
+# ---
 FORCE_REGISTRATION_ON_NEW_REQUEST: false
 
-
-## Incoming email
-# Your email domain, e.g. 'foifa.com'
+# Your email domain for incoming mail.
+#
+# INCOMING_EMAIL_DOMAIN – String domain (default: localhost)
+#
+# Examples:
+#
+#   INCOMING_EMAIL_DOMAIN: 'localhost'
+#   INCOMING_EMAIL_DOMAIN: 'foifa.com'
+#
+# ---
 INCOMING_EMAIL_DOMAIN: 'localhost'
 
-# An optional prefix to help you distinguish FOI requests, e.g. 'foi+'
-INCOMING_EMAIL_PREFIX: ''
+# An optional prefix to help you distinguish FOI requests.
+#
+# INCOMING_EMAIL_PREFIX - String (default: foi+)
+#
+# Examples:
+#
+#   INCOMING_EMAIL_PREFIX: ''             # No prefix
+#   INCOMING_EMAIL_PREFIX: 'alaveteli+'
+#
+# ---
+INCOMING_EMAIL_PREFIX: 'foi+'
 
-# used for hash in request email address
+# Used for hash in request email address.
+#
+# INCOMING_EMAIL_SECRET - String (default: dummysecret)
+#
+# Examples:
+#
+#   INCOMING_EMAIL_SECRET: '11ae 4e3b 70ff c001 3682 4a51 e86d ef5f'
+#
+# ---
 INCOMING_EMAIL_SECRET: 'xxxx xxxx xxxx xxxx xxxx xxxx xxxx xxxx'
 
-# used as envelope from at the incoming email domain for cases where we don't care about failure
+# Used as envelope from at the incoming email domain for cases where you don't
+# care about failure.
+#
+# BLACKHOLE_PREFIX - String (default: do-not-reply-to-this-address)
+#
+# Examples:
+#
+#   BLACKHOLE_PREFIX: 'do-not-reply-to-this-address'
+#   BLACKHOLE_PREFIX: 'do-not-reply'
+#
+# ---
 BLACKHOLE_PREFIX: 'do-not-reply-to-this-address'
 
-## Administration
-
-# The emergency user
+# Emergency admin user login username. YOU SHOULD CHANGE THIS.
+#
+# ADMIN_USERNAME - String (default: nil)
+#
+# Examples:
+#
+#   ADMIN_USERNAME: 'admin-alaveteli'
+#
+# ---
 ADMIN_USERNAME: 'adminxxxx'
+
+# Emergency admin user login password. YOU SHOULD CHANGE THIS.
+#
+# ADMIN_USERNAME - String (default: nil)
+#
+# Examples:
+#
+#   ADMIN_PASSWORD: 'b38bCHBl;28'
+#
+# ---
 ADMIN_PASSWORD: 'passwordx'
+
+# Disable the emergency admin user?
+#
+# DISABLE_EMERGENCY_USER - Boolean (default: false)
+#
+# ---
 DISABLE_EMERGENCY_USER: false
 
-# Set this to true, and the admin interface will be available to anonymous users
+# Set this to true, and the admin interface will be available to anonymous
+# users. Obviously, you should not set this to be true in production
+# environments.
+#
+# SKIP_ADMIN_AUTH - Boolean (default: false)
+#
+# ---
 SKIP_ADMIN_AUTH: false
 
-# Email "from" details
-CONTACT_EMAIL: 'postmaster@localhost'
-CONTACT_NAME: 'Alaveteli Webmaster'
+# Email "from" email address
+#
+# CONTACT_EMAIL: String email address (default: contact@localhost)
+#
+# ---
+CONTACT_EMAIL: 'contact@localhost'
+
+# Email "from" name
+#
+# CONTACT_NAME - String contact name (default: Alaveteli)
+#
+# ---
+CONTACT_NAME: 'Alaveteli'
+
+# Email "from" email address for track messages
+#
+# TRACK_SENDER_EMAIL - String email address (default: contact@localhost)
+#
+# ---
+TRACK_SENDER_EMAIL: 'contact@localhost'
 
-# Email "from" details for track messages
-TRACK_SENDER_EMAIL: 'postmaster@localhost'
-TRACK_SENDER_NAME: 'Alaveteli Webmaster'
+# Email "from" name for track messages
+#
+# TRACK_SENDER_NAME - String contact name (default: Alaveteli)
+#
+# ---
+TRACK_SENDER_NAME: 'Alaveteli'
 
-# Where the raw incoming email data gets stored; make sure you back
+# Directory where the raw incoming email data gets stored; make sure you back
 # this up!
+#
+# RAW_EMAILS_LOCATION - String path (default: files/raw_emails)
+#
+# ---
 RAW_EMAILS_LOCATION: 'files/raw_emails'
 
-# Secret key for signing cookie_store sessions
+# Secret key for signing cookie_store sessions. Make it long and random.
+#
+# COOKIE_STORE_SESSION_SECRET - String (default: 'this default is insecure as
+#                                       code is open source, please override
+#                                       for live sites in config/general; this
+#                                       will do for local development')
+#
+# Examples:
+#
+#   COOKIE_STORE_SESSION_SECRET: 'uIngVC238Jn9NsaQizMNf89pliYmDBFugPjHS2JJmzOp8'
+#
+# ---
 COOKIE_STORE_SESSION_SECRET: 'your secret key here, make it long and random'
 
 # If present, puts the site in read only mode, and uses the text as reason
 # (whole paragraph). Please use a read-only database user as well, as it only
-# checks in a few obvious places.
+# checks in a few obvious places. Typically, you do not want to run your site
+# in read-only mode.
+#
+# READ_ONLY - String (default: nil)
+#
+# Examples:
+#
+#   READ_ONLY: 'The site is not currently accepting requests while we move the
+#   server.'
+#
+# ---
 READ_ONLY: ''
 
-# Is this a staging or dev site (1) or a live site (0).
-# Controls whether or not the rails-post-deploy script
-# will create the file config/rails_env.rb file to force
-# Rails into production environment.
-STAGING_SITE: 1
+# Is this a staging or development site? If not, it's a live production site.
+# This setting controls whether or not the rails-post-deploy script will create
+# the file config/rails_env.rb file to force Rails into production environment.
+#
+# STAGING_SITE: Integer in [0, 1]
+#
+# Examples:
+#
+#   # For staging or development:
+#   STAGING_SITE: 1
+#
+#   # For production:
+#   STAGING_SITE: 0
+#
+# ---
+STAGING_SITE: 0
 
-# Recaptcha, for detecting humans. Get keys here: http://recaptcha.net/whyrecaptcha.html
+# Recaptcha, for detecting humans. Get keys here:
+# http://recaptcha.net/whyrecaptcha.html
+#
+# RECAPTCHA_PUBLIC_KEY - String (default: 'x')
+#
+# ---
 RECAPTCHA_PUBLIC_KEY: 'x'
+
+# Recaptcha, for detecting humans. Get keys here:
+# http://recaptcha.net/whyrecaptcha.html
+#
+# RECAPTCHA_PRIVATE_KEY - String (default: 'x')
+#
+# ---
 RECAPTCHA_PRIVATE_KEY: 'x'
 
 # Number of days after which to send a 'new response reminder'
+#
+# NEW_RESPONSE_REMINDER_AFTER_DAYS – Array of Integers (default: [3, 10, 24])
+#
+# Examples:
+#
+#   NEW_RESPONSE_REMINDER_AFTER_DAYS: [3, 7]
+#
+# ---
 NEW_RESPONSE_REMINDER_AFTER_DAYS: [3, 10, 24]
 
-# For debugging memory problems.  If true, the app logs
-# the memory use increase of the Ruby process due to the
-# request (Linux only).  Since Ruby never returns memory to the OS, if the
-# existing process previously served a larger request, this won't
-# show any consumption for the later request.
+# For debugging memory problems. If true, Alaveteli logs the memory use
+# increase of the Ruby process due to the request (Linux only). Since Ruby
+# never returns memory to the OS, if the existing process previously served a
+# larger request, this won't show any consumption for the later request.
+#
+# DEBUG_RECORD_MEMORY - Boolean (default: false)
+#
+# ---
 DEBUG_RECORD_MEMORY: false
 
-# Currently we default to using pdftk to compress PDFs.  You can
-# optionally try Ghostscript, which should do a better job of
-# compression.  Some versions of pdftk are buggy with respect to
-# compression, in which case Alaveteli doesn't recompress the PDFs at
-# all and logs a warning message "Unable to compress PDF"; which would
-# be another reason to try this setting.
-USE_GHOSTSCRIPT_COMPRESSION: true
+# Currently we default to using pdftk to compress PDFs. You can optionally try
+# Ghostscript, which should do a better job of compression. Some versions of
+# pdftk are buggy with respect to compression, in which case Alaveteli doesn't
+# recompress the PDFs at all and logs a warning message "Unable to compress
+# PDF" — which would be another reason to try this setting.
+#
+# USE_GHOSTSCRIPT_COMPRESSION - Boolean (default: false)
+#
+# ---
+USE_GHOSTSCRIPT_COMPRESSION: false
 
-# mySociety's gazeteer service.  Shouldn't change.
+# Alateveli uses mySociety's gazeteer service to determine country from
+# incoming IP address (this lets us suggest an Alaveteli in the user's country
+# if one exists). You shouldn't normally need to change this.
+#
+# GAZE_URL - String (default: http://gaze.mysociety.org)
+#
+# Examples:
+#
+#   GAZE_URL: http://gaze.example.org
+#
+# ---
 GAZE_URL: http://gaze.mysociety.org
 
-# The email address to which non-bounce responses should be forwarded
+# The email address to which non-bounce responses to emails sent out by
+# Alaveteli should be forwarded
+#
+# FORWARD_NONBOUNCE_RESPONSES_TO - String (default: user-support@localhost)
+#
+# Examples:
+#
+#   FORWARD_NONBOUNCE_RESPONSES_TO: user-support@example.com
+#
+# ---
 FORWARD_NONBOUNCE_RESPONSES_TO: user-support@localhost
 
-# Path to a program that converts an HTML page in a file to PDF.  It
-#should take two arguments: the URL, and a path to an output file.
+# Path to a program that converts an HTML page in a file to PDF. Also used to
+# download a zip file of all the correspondence for a request. It should take
+# two arguments: the URL, and a path to an output file.
+#
 # A static binary of wkhtmltopdf is recommended:
 # http://code.google.com/p/wkhtmltopdf/downloads/list
 # If the command is not present, a text-only version will be rendered
 # instead.
+#
+# HTML_TO_PDF_COMMAND - String (default: nil)
+#
+# Examples:
+#
+#   HTML_TO_PDF_COMMAND: /usr/local/bin/wkhtmltopdf
+#   HTML_TO_PDF_COMMAND: /usr/local/bin/wkhtmltopdf-amd64
+#
+# ---
 HTML_TO_PDF_COMMAND: /usr/local/bin/wkhtmltopdf-amd64
 
-# Exception notifications
-EXCEPTION_NOTIFICATIONS_FROM: do-not-reply-to-this-address@example.com
+# Email address used for sending exception notifications.
+#
+# EXCEPTION_NOTIFICATIONS_FROM - String (default: nil)
+#
+# Examples:
+#
+#   EXCEPTION_NOTIFICATIONS_FROM: do-not-reply-to-this-address@example.com
+#
+# ---
+EXCEPTION_NOTIFICATIONS_FROM: do-not-reply-to-this-address@localhost
+
+# Email address(es) used for receiving exception notifications.
+#
+# EXCEPTION_NOTIFICATIONS_TO - Array of Strings (default: nil)
+#
+# Examples:
+#
+#   EXCEPTION_NOTIFICATIONS_TO:
+#     - robin@example.com
+#     - seb@example.com
+#
+# ---
 EXCEPTION_NOTIFICATIONS_TO:
- - robin@example.org
- - seb@example.org
+  - alaveteli@localhost
 
 # This rate limiting can be turned off per-user via the admin interface
+#
+# MAX_REQUESTS_PER_USER_PER_DAY - Integer (default: 6)
+#
+# Examples:
+#
+#   MAX_REQUESTS_PER_USER_PER_DAY: 1
+#   MAX_REQUESTS_PER_USER_PER_DAY: '' # No limit
+#
+# ---
 MAX_REQUESTS_PER_USER_PER_DAY: 6
 
+# If you're running behind Varnish set this to work out where to send purge
+# requests. Otherwise, don't set it.
+#
+# VARNISH_HOST - String (default: nil)
+#
+# Examples:
+#
+#   VARNISH_HOST: localhost
+#
+# ---
+VARNISH_HOST: null
 
-# This is used to work out where to send purge requests.  Should be
-# unset if you aren't running behind varnish
-VARNISH_HOST: localhost
-
-# Adding a value here will enable Google Analytics on all non-admin pages for non-admin users.
+# Adding a value here will enable Google Analytics on all non-admin pages for
+# non-admin users.
+#
+# GA_CODE - String (default: nil)
+#
+# Examples:
+#
+#   GA_CODE: 'AB-8222142-14'
+#
+# ---
 GA_CODE: ''
 
-# If you want to override *all* the public body request emails with your own
-# email so that request emails that would normally go to the public body
-# go to you, then uncomment below and fill in your email.
-# Useful for a staging server to play with the whole process of sending requests
-# without inadvertently sending an email to a real authority
-#OVERRIDE_ALL_PUBLIC_BODY_REQUEST_EMAILS: test-email@foo.com
+# If you want to override all the public body request emails with your own
+# email address so that request emails that would normally go to the public
+# body go to you, use this setting. This is useful for a staging server, so you
+# can play with the whole process of sending requests without inadvertently
+# sending an email to a real authority.
+# Leave blank ('') to send requests to the real authority emails.
+#
+# OVERRIDE_ALL_PUBLIC_BODY_REQUEST_EMAILS - String (default: nil)
+#
+# Examples:
+#
+#   OVERRIDE_ALL_PUBLIC_BODY_REQUEST_EMAILS: test-email@example.com
+#
+# ---
+OVERRIDE_ALL_PUBLIC_BODY_REQUEST_EMAILS: ''
 
-# Search path for external commandline utilities (such as pdftohtml, pdftk, unrtf)
+# Search path for external commandline utilities (such as pdftohtml, pdftk,
+# unrtf)
+#
+# UTILITY_SEARCH_PATH - Array of Strings
+#                       (default: ["/usr/bin", "/usr/local/bin"])
+#
+# Examples:
+#
+#  UTILITY_SEARCH_PATH: ["/usr/bin"]
+#  UTILITY_SEARCH_PATH: ["/usr/local/bin", "/opt/bin"]
+#
+# ---
 UTILITY_SEARCH_PATH: ["/usr/bin", "/usr/local/bin"]
 
-# Path to your exim or postfix log files that will get sucked up by script/load-mail-server-logs
+# Path to your exim or postfix log files that will get sucked up by
+# script/load-mail-server-logs
+#
+# MTA_LOG_PATH - String (default: /var/log/exim4/exim-mainlog-*)
+#
+# Examples:
+#
+#   MTA_LOG_PATH: '/var/log/exim4/exim-mainlog-*'
+#
+# ---
 MTA_LOG_PATH: '/var/log/exim4/exim-mainlog-*'
 
-# Whether we are using "exim" or "postfix" for our MTA
-MTA_LOG_TYPE: "exim"
+# Are you using "exim" or "postfix" for your Mail Transfer Agent (MTA)?
+#
+# MTA_LOG_TYPE - String (default: exim)
+#
+# Examples:
+#
+#   MTA_LOG_TYPE: exim
+#   MTA_LOG_TYPE: postfix
+#
+# ---
+MTA_LOG_TYPE: exim
 
 # URL where people can donate to the organisation running the site. If set,
 # this will be included in the message people see when their request is
 # successful.
+#
+# DONATION_URL - String (default: nil)
+#
+# Examples:
+#
+#   DONATION_URL: http://www.mysociety.org/donate
+#
+# ---
 DONATION_URL: "http://www.mysociety.org/donate/"
 
-# If you set this to 'true' then a page of statistics on the
-# performance of public bodies will be available:
+# If PUBLIC_BODY_STATISTICS_PAGE is set to true, Alaveteli will make a page of
+# statistics on the performance of public bodies (which you can see at
+# /body_statistics).
+#
+# PUBLIC_BODY_STATISTICS_PAGE - Boolean (default: false)
+#
+# ---
 PUBLIC_BODY_STATISTICS_PAGE: false
 
 # The page of statistics for public bodies will only consider public
-# bodies that have had at least this number of requests:
-MINIMUM_REQUESTS_FOR_STATISTICS: 50
+# bodies that have had at least the number of requests set by
+# MINIMUM_REQUESTS_FOR_STATISTICS.
+#
+# MINIMUM_REQUESTS_FOR_STATISTICS - Integer (default: 100)
+#
+# ---
+MINIMUM_REQUESTS_FOR_STATISTICS: 100
 
-# If only some of the public bodies have been translated into every
-# available locale, you can allow a fallback to the default locale for
-# listing of public bodies.
+# If you would like the public body list page to include bodies that have no
+# translation in the current locale (but which do have a translation in the
+# default locale), set this to true.
+#
+# PUBLIC_BODY_LIST_FALLBACK_TO_DEFAULT_LOCALE - Boolean (default: false)
+#
+# ---
 PUBLIC_BODY_LIST_FALLBACK_TO_DEFAULT_LOCALE: false
 
 # If true, while in development mode, try to send mail by SMTP to port
-# 1025 (the port the mailcatcher listens on by default):
+# 1025 (the port the mailcatcher listens on by default)
+#
+# USE_MAILCATCHER_IN_DEVELOPMENT - Boolean (default: true)
+#
+# ---
 USE_MAILCATCHER_IN_DEVELOPMENT: true
 
-# Use memcached to cache HTML fragments for better performance. Will
+# Use memcached to cache HTML fragments for better performance. This will
 # only have an effect in environments where
 # config.action_controller.perform_caching is set to true
+#
+# CACHE_FRAGMENTS - Boolean (default: true)
+#
+# ---
 CACHE_FRAGMENTS: true
 
-# The default bundle path is vendor/bundle; you can set this option to
-# change it.
+# The default bundle path is vendor/bundle; you can set this option to change it
+#
+# BUNDLE_PATH - String
+#
+# Examples:
+#
+#   BUNDLE_PATH: vendor/bundle
+#   BUNDLE_PATH: /var/alaveteli/bundle
+#
+# ---
 BUNDLE_PATH: vendor/bundle
 
 # In some deployments of Alaveteli you may wish to install each newly
 # deployed version alongside the previous ones, in which case certain
-# files and resources should be shared between these installations:
-# for example, the 'files' directory, the 'cache' directory and the
+# files and resources should be shared between these installations.
+# For example, the 'files' directory, the 'cache' directory and the
 # generated graphs such as 'public/foi-live-creation.png'.  If you're
 # installing Alaveteli in such a setup then set SHARED_FILES_PATH to
-# the directory you're keeping these files under.  Otherwise, leave it
+# the directory you're keeping these files under. Otherwise, leave it
 # blank.
+#
+# SHARED_FILES_PATH - String
+#
+# Examples:
+#
+#   SHARED_FILES_PATH: /var/www/alaveteli/shared
+#
+# ---
 SHARED_FILES_PATH: ''
 
 # If you have SHARED_FILES_PATH set, then these options list the files
-# and directories that are shared; i.e. those that the deploy scripts
-# should create symlinks to from the repository.
+# that are shared; i.e. those that the deploy scripts should create symlinks to
+# from the repository.
+#
+# SHARED_FILES - Array of Strings
+#
+# Examples:
+#
+#   SHARED_FILES:
+#     - config/database.yml
+#     - config/general.yml
+#
+# ---
 SHARED_FILES:
- - config/database.yml
- - config/general.yml
- - config/rails_env.rb
- - config/newrelic.yml
- - config/httpd.conf
- - public/foi-live-creation.png
- - public/foi-user-use.png
- - config/aliases
+  - config/database.yml
+  - config/general.yml
+  - config/rails_env.rb
+  - config/newrelic.yml
+  - config/httpd.conf
+  - public/foi-live-creation.png
+  - public/foi-user-use.png
+  - config/aliases
+
+# If you have SHARED_FILES_PATH set, then these options list the directories
+# that are shared; i.e. those that the deploy scripts should create symlinks to
+# from the repository.
+#
+# SHARED_DIRECTORIES - Array of Strings
+#
+# Examples:
+#
+#   SHARED_DIRECTORIES:
+#     - files/
+#     - cache/
+#
+# ---
 SHARED_DIRECTORIES:
- - files/
- - cache/
- - lib/acts_as_xapian/xapiandbs/
- - log/
- - tmp/pids
- - vendor/bundle
- - public/assets
+  - files/
+  - cache/
+  - lib/acts_as_xapian/xapiandbs/
+  - log/
+  - tmp/pids
+  - vendor/bundle
+  - public/assets
 
 # Allow some users to make batch requests to multiple authorities. Once
 # this is set to true, you can enable batch requests for an individual
 # user via the user admin page.
-
+#
+# ALLOW_BATCH_REQUESTS - Boolean (default: false)
+#
+# ---
 ALLOW_BATCH_REQUESTS: false
 
-# Should we use the responsive stylesheets?
+# Use the responsive base stylesheets and templates, rather than those that
+# only render the site at a fixed width. They allow the site to render nicely
+# on mobile devices as well as larger screens. Set this to false if you want to
+# continue using fixed width stylesheets.
+#
+# RESPONSIVE_STYLING - Boolean (default: true)
+#
+# ---
 RESPONSIVE_STYLING: true
diff --git a/config/initializers/alaveteli.rb b/config/initializers/alaveteli.rb
index 9ea6428ba..2ca85579a 100644
--- a/config/initializers/alaveteli.rb
+++ b/config/initializers/alaveteli.rb
@@ -10,7 +10,7 @@ load "debug_helpers.rb"
 load "util.rb"
 
 # Application version
-ALAVETELI_VERSION = '0.19'
+ALAVETELI_VERSION = '0.20.0.0'
 
 # Add new inflection rules using the following format
 # (all these examples are active by default):
@@ -44,7 +44,6 @@ require 'world_foi_websites.rb'
 require 'alaveteli_external_command.rb'
 require 'quiet_opener.rb'
 require 'mail_handler'
-require 'public_body_categories'
 require 'ability'
 require 'normalize_string'
 require 'alaveteli_file_types'
@@ -54,6 +53,9 @@ require 'theme'
 require 'xapian_queries'
 require 'date_quarter'
 require 'public_body_csv'
+require 'category_and_heading_migrator'
+require 'public_body_categories'
+require 'routing_filters'
 
 AlaveteliLocalization.set_locales(AlaveteliConfiguration::available_locales,
                                   AlaveteliConfiguration::default_locale)
@@ -62,3 +64,4 @@ AlaveteliLocalization.set_locales(AlaveteliConfiguration::available_locales,
 if Rails.env == 'test' and ActiveRecord::Base.configurations['test']['constraint_disabling'] == false
   require 'no_constraint_disabling'
 end
+
diff --git a/config/initializers/health_checks.rb b/config/initializers/health_checks.rb
new file mode 100644
index 000000000..7fd1d3dda
--- /dev/null
+++ b/config/initializers/health_checks.rb
@@ -0,0 +1,23 @@
+Rails.application.config.after_initialize do
+    user_last_created = HealthChecks::Checks::DaysAgoCheck.new(
+                         :failure_message => _('The last user was created over a day ago'),
+                         :success_message => _('The last user was created in the last day')) do
+                           User.last.created_at 
+                         end
+
+    incoming_message_last_created = HealthChecks::Checks::DaysAgoCheck.new(
+                                      :failure_message => _('The last incoming message was created over a day ago'),
+                                      :success_message => _('The last incoming message was created in the last day')) do
+                                        IncomingMessage.last.created_at 
+                                    end
+
+    outgoing_message_last_created = HealthChecks::Checks::DaysAgoCheck.new(
+                                      :failure_message => _('The last outgoing message was created over a day ago'),
+                                      :success_message => _('The last outgoing message was created in the last day')) do
+                                        OutgoingMessage.last.created_at 
+                                    end
+
+    HealthChecks.add user_last_created
+    HealthChecks.add incoming_message_last_created
+    HealthChecks.add outgoing_message_last_created
+end
diff --git a/config/initializers/secure_headers.rb b/config/initializers/secure_headers.rb
new file mode 100644
index 000000000..99730e6b2
--- /dev/null
+++ b/config/initializers/secure_headers.rb
@@ -0,0 +1,24 @@
+::SecureHeaders::Configuration.configure do |config|
+
+    # https://tools.ietf.org/html/rfc6797
+    if AlaveteliConfiguration::force_ssl
+        config.hsts = { :max_age => 20.years.to_i, :include_subdomains => true }
+    else
+        config.hsts = false
+    end
+    # https://tools.ietf.org/html/draft-ietf-websec-x-frame-options-02
+    config.x_frame_options = "sameorigin"
+
+    # http://msdn.microsoft.com/en-us/library/ie/gg622941%28v=vs.85%29.aspx
+    config.x_content_type_options = "nosniff"
+
+    # http://msdn.microsoft.com/en-us/library/dd565647%28v=vs.85%29.aspx
+    config.x_xss_protection = { :value => 1 }
+
+    # https://w3c.github.io/webappsec/specs/content-security-policy/
+    config.csp = false
+
+    # https://www.nwebsec.com/HttpHeaders/SecurityHeaders/XDownloadOptions
+    config.x_download_options = false
+end
+
diff --git a/config/routes.rb b/config/routes.rb
index f557e681b..4b2eb5695 100644
--- a/config/routes.rb
+++ b/config/routes.rb
@@ -61,6 +61,8 @@ Alaveteli::Application.routes.draw do
     match '/request/:url_title/download' => 'request#download_entire_request', :as => :download_entire_request
     ####
 
+    resources :health_checks, :only => [:index]
+
     resources :request, :only => [] do
         resource :report, :only => [:new, :create]
     end
@@ -153,6 +155,7 @@ Alaveteli::Application.routes.draw do
     match '/help/api' => 'help#api', :as => :help_api
     match '/help/credits' => 'help#credits', :as => :help_credits
     match '/help/:action' => 'help#action', :as => :help_general
+    match '/help' => 'help#index'
     ####
 
     #### Holiday controller
@@ -179,6 +182,24 @@ Alaveteli::Application.routes.draw do
     match '/admin/body/mass_tag_add' => 'admin_public_body#mass_tag_add', :as => :admin_body_mass_tag_add
     ####
 
+    #### AdminPublicBodyCategory controller
+    scope '/admin', :as => 'admin' do
+        resources :categories,
+                  :controller => 'admin_public_body_categories'
+    end
+    ####
+
+    #### AdminPublicBodyHeading controller
+    scope '/admin', :as => 'admin'  do
+        resources :headings,
+                  :controller => 'admin_public_body_headings',
+                  :except => [:index] do
+                      post 'reorder', :on => :collection
+                      post 'reorder_categories', :on => :member
+        end
+    end
+    ####
+
     #### AdminPublicBodyChangeRequest controller
     match '/admin/change_request/edit/:id' => 'admin_public_body_change_requests#edit', :as => :admin_change_request_edit
     match '/admin/change_request/update/:id' => 'admin_public_body_change_requests#update', :as => :admin_change_request_update
@@ -247,10 +268,28 @@ Alaveteli::Application.routes.draw do
     match '/admin/censor/edit/:id' => 'admin_censor_rule#edit', :as => :admin_rule_edit
     match '/admin/censor/update/:id' => 'admin_censor_rule#update', :as => :admin_rule_update
     match '/admin/censor/destroy/:censor_rule_id' => 'admin_censor_rule#destroy', :as => :admin_rule_destroy
+
+    scope '/admin', :as => 'admin' do
+        resources :info_requests, :only => [] do
+            resources :censor_rules,
+                      :controller => 'admin_censor_rule',
+                      :only => [:new, :create],
+                      :name_prefix => 'info_request_'
+        end
+    end
+
+    scope '/admin', :as => 'admin' do
+        resources :users, :only => [] do
+            resources :censor_rules,
+                      :controller => 'admin_censor_rule',
+                      :only => [:new, :create],
+                      :name_prefix => 'user_'
+        end
+    end
     ####
 
     #### AdminSpamAddresses controller
-    scope '/admin' do
+    scope '/admin', :as => 'admin' do
         resources :spam_addresses,
                   :controller => 'admin_spam_addresses',
                   :only => [:index, :create, :destroy]