aboutsummaryrefslogtreecommitdiffstats
path: root/app/controllers
Commit message (Collapse)AuthorAgeLines
...
| | * | Check that a request is publicly visible before generating a download link.Louise Crow2012-12-13-9/+15
| | | |
| | * | Don't offer or allow viewing of an HTML version of a response attachment if ↵Louise Crow2012-12-13-0/+6
| | | | | | | | | | | | | | | | the request is hidden, or requester_only. Google docs viewer won't be able to access it, and our own conversion process currently can produce image files that will then be publicly viewable directly from the webserver (see config/httpd.conf). If necessary we can revisit this code to enable admins and requesters to view the HTML version created by our own conversion without adding these files to a path that is served directly by the web server.
| * | | Don't offer or allow viewing of an HTML version of a request if it is ↵Louise Crow2012-12-13-0/+6
| | | | | | | | | | | | | | | | hidden, or requester_only. Google docs viewer won't be able to access it, and our own conversion process currently produces image files that will then be publicly viewable. If necessary we can revisit this code to enable admins and requesters to view the HTML version created by our own conversion without adding these files to a path that is served directly by the web server.
* | | | Merge branch 'rails_xss' into rails-3-spikeMatthew Landauer2013-01-04-3/+3
|\ \ \ \ | | |_|/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: Gemfile Gemfile.lock app/views/request/_hidden_correspondence.rhtml app/views/request/hidden.rhtml app/views/request/new_please_describe.rhtml app/views/user/show.rhtml lib/i18n_fixes.rb
| * | | Escaping fixes involving the unpleasant mix of translations, html and string ↵Matthew Landauer2013-01-03-3/+3
| | | | | | | | | | | | | | | | interpolation
* | | | Using #request_uri is deprecatedHenare Degan2012-12-11-1/+1
| | | |
* | | | Thought I got this in b0ae75aba63d40146cfbc7e6af27e1d6051f1804 but it must ↵Henare Degan2012-12-11-3/+0
| | | | | | | | | | | | | | | | have been set twice - safety first!
* | | | The with_locale has been removed in Globalize3Henare Degan2012-12-11-12/+12
| | | | | | | | | | | | | | | | | | | | | | | | I think Globalize is supposed to pick up the locale from I18n anyway so I don't know if these are needed. I think I still haven't done the right thing but it's time to move on.
* | | | Remove interlock as it's not compatible with Rails 3 and is unmaintainedHenare Degan2012-12-11-61/+54
| | | |
* | | | Switch to new method nameHenare Degan2012-12-11-12/+12
| | | |
* | | | Disable rescue customisations until we can move it to rackHenare Degan2012-12-11-13/+14
| | | |
* | | | This is deprecated and now set in application.rbHenare Degan2012-12-11-3/+0
| |/ / |/| |
* | | Remove redundant method.Louise Crow2012-12-04-1/+1
| | |
* | | The absence of an API key in an API request should be a permission denied ↵Louise Crow2012-12-03-36/+36
| | | | | | | | | | | | error, so that notification emails don't get sent.
* | | Give the implicit default locale in a URL without locale precedence over the ↵Louise Crow2012-11-28-2/+7
|/ / | | | | | | session in the case where the default locale is not being included in URLs. This allows the user to return to the default locale.
* | Merge remote-tracking branch 'origin/feature/isolate-mail-handling' into developLouise Crow2012-11-20-2/+1
|\ \
| * | Use mail handler method to get mail object from raw data when redelivering a ↵Louise Crow2012-11-15-2/+1
| | | | | | | | | | | | mail from the admin interface.
* | | Merge remote-tracking branch 'openaustralia_github/style_error_pages_fix' ↵Louise Crow2012-11-19-7/+4
|\ \ \ | | | | | | | | | | | | into develop
| * | | Fix styling of error page with current themesMatthew Landauer2012-11-16-7/+4
| | |/ | |/|
* | | Remove debugging action that could easily DOS a serverHenare Degan2012-11-18-6/+0
| |/ |/|
* | Re-route model code that accesses the mail object from field via wrapper methodsLouise Crow2012-11-15-2/+2
| |
* | Add wrapper method so that admin_request_controller doesn't access mail ↵Louise Crow2012-11-15-1/+1
|/ | | | object directly.
* Move methods used only in admin controllers to admin_controller.rbLouise Crow2012-10-30-24/+24
|
* If we're doing admin authentication internally, don't bother with the ↵Louise Crow2012-10-30-7/+15
| | | | request environment, set the admin_name on the session instead.
* Redirect calls to admin_http_auth_user to more generic wrapper ↵Louise Crow2012-10-30-16/+20
| | | | admin_current_user
* Merge remote-tracking branch ↵Louise Crow2012-10-29-0/+2
|\ | | | | | | 'openaustralia_github/sorting_requests_front_page' into develop
| * Always have the newest events at the top of the listMatthew Landauer2012-10-26-0/+2
| |
* | Handle the default blank string passed by Configuration moduleLouise Crow2012-10-25-1/+1
| |
* | Handle a blank convert command more explicitly.Louise Crow2012-10-25-1/+1
|/
* Merge remote-tracking branch ↵Louise Crow2012-10-25-1/+1
|\ | | | | | | 'openaustralia_github/follow-all-requests-description' into develop
| * Add a full stop to the end of this sentenceHenare Degan2012-10-18-1/+1
| |
* | Extract methodMatthew Landauer2012-10-24-32/+1
| |
* | Don't keep recalculating the request statusLouise Crow2012-10-23-14/+15
| |
* | Fix bug where visitors from overseas visit a site which is not officially ↵Matthew Landauer2012-10-19-2/+3
| | | | | | | | live yet
* | Inline temporary variableMatthew Landauer2012-10-19-3/+2
|/
* Merge remote-tracking branch ↵Louise Crow2012-10-17-1/+1
|\ | | | | | | 'openaustralia_github/fix_count_inconsistencies' into develop
| * Don't show internal admin authority on auto generated list on home pageMatthew Landauer2012-10-17-1/+1
| |
* | Merge branch 'release/0.6.7' into developLouise Crow2012-10-17-1/+1
|\ \ | |/ |/|
| * Bugfix - fixed cut and paste error.Louise Crow2012-10-17-1/+1
| |
* | Handle the case where the blog feed already has querystring parameters.Louise Crow2012-10-11-1/+3
|/
* Remove svn tags that are out of date as we are now using gitMatthew Landauer2012-10-09-34/+0
|
* Merge remote-tracking branch 'openaustralia_github/configuration_refactor' ↵Louise Crow2012-10-01-37/+29
|\ | | | | | | | | | | | | into develop Conflicts: config/general.yml-example
| * Inline ConfigHelper force_registration_on_new_requestMatthew Landauer2012-09-25-1/+1
| |
| * Extract configuration with defaults into one moduleMatthew Landauer2012-09-25-36/+28
| |
* | When the list of requests on the frontpage is being filled out with not just ↵Matthew Landauer2012-09-29-0/+3
| | | | | | | | | | | | successful requests make the text and the link reflect that
* | Use new info_requests_count counter cache column on public body when ↵Louise Crow2012-09-26-2/+1
|/ | | | generating front page.
* Merge remote-tracking branch 'openaustralia_github/calendar_days' into developLouise Crow2012-09-24-1/+3
|\
| * Make the way number of days are calculated (either by calendar or working ↵Matthew Landauer2012-09-24-1/+2
| | | | | | | | days) configurable
| * Make HolidayController#due_date use configuration REPLY_LATE_AFTER_DAYSMatthew Landauer2012-09-24-1/+2
| |
| * Rename methodMatthew Landauer2012-09-24-1/+1
| |
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 03:16:59 +0000