Age | Commit message (Collapse) | Author |
|
darcs-hash:20080624221758-34904-8ba5bbf95a2f16e9bfebb2c4dbd4d2d357cf958e.gz
|
|
darcs-hash:20080624221437-34904-746bd79dbef949c16095b9b44a9a721288abb989.gz
|
|
darcs-hash:20080624221054-34904-732acfe742c0b1c5e71b604660aa2e657c68a4d4.gz
|
|
darcs-hash:20080624220335-34904-2c4089bf6d1b37b6f613ce89c6fad104727e7487.gz
|
|
darcs-hash:20080624215826-34904-045d8e8cc25195eb045d2a96a526a6d2a9f0c218.gz
|
|
darcs-hash:20080624215033-34904-d5576bf55da26df44f0580c3759ed3edd8597506.gz
|
|
darcs-hash:20080624040548-34904-3b5a78f4ed40db913c82e90fe6955f26aac0f92a.gz
|
|
darcs-hash:20080624031927-34904-4a0c4d5966c8dd840cf6c368bdbe47990a39c074.gz
|
|
Added a checkbox on login or register to remember the current user. If
the login is successful, this sets a cookie with a random code (saved
in the DB). If they come back, and they aren't logged in "normally",
we check to see if they have a rememberme cookie. If so, we log them
in.
However, they can't change settings -- cookie theft is too prevalent.
So we mark a session as having a "real" (password or OpenID) login, or
not. In settings pages, we check to see if the login is "real", and if
not, we redirect to the login page.
darcs-hash:20080624025234-34904-ad20001bf35bf41fcb63a0c357fd929aacc55fdb.gz
|
|
darcs-hash:20080624015616-34904-c1ff985257c8c57aacf68439488d628a8b4d2e38.gz
|
|
darcs-hash:20080624014642-34904-7d4b1b91a3163add6a99146f92360913e172a39a.gz
|
|
darcs-hash:20080624014241-34904-39ace8e82e50e5f50c5980b5fb3256184a7c9050.gz
|
|
darcs-hash:20080624013203-34904-fe87dc6b3b991e9753512b8b7cc192f7610eb1dc.gz
|
|
darcs-hash:20080624001523-34904-8d0c052f12301d86aeb9107149b34f22c94da1c4.gz
|
|
darcs-hash:20080623223641-34904-2758e19c70026a0c169e99d86481d87b0b4bc79c.gz
|
|
darcs-hash:20080622181550-34904-7970919db30ccfc3979fa6c118c29af9eac0c550.gz
|
|
darcs-hash:20080622180437-34904-4b6313f6fd8845232031663c5c2df00dff725183.gz
|
|
darcs-hash:20080622165453-34904-a3bdd2557622e6db3aef88371c22586e2d2fed07.gz
|
|
darcs-hash:20080622164928-34904-04e381d2ac562a31fb3ed3dce300e2c2c456b0d7.gz
|
|
darcs-hash:20080622164928-34904-77df2f698c617e2788cc0db2d902238a5dd522d1.gz
|
|
darcs-hash:20080622164542-34904-e6945828677580ee30b5fb85101928633708f605.gz
|
|
darcs-hash:20080622163241-34904-199b3654328d78c0b9fe2fa85a3ecc1ab0b1262a.gz
|
|
darcs-hash:20080622161917-34904-32528c78b43d501d5994c4f5c74b977ca4d9c618.gz
|
|
darcs-hash:20080622161749-34904-eb2e43aaa3f409accd94a2555f854fb22a297db7.gz
|
|
darcs-hash:20080622161607-34904-d8e042b80fe6acd3cb6ad763216a0b1817752cac.gz
|
|
Rename the confirmemail to more general confirmaddress so we can use
it for Jabber, SMS, or whatever.
darcs-hash:20080622155250-34904-0cbc2895c01769dfb5e7393e6534355b6f5c2ac3.gz
|
|
darcs-hash:20080622153754-34904-b722aa6d0ffa52242b06a8eec1eaa5216d216a4f.gz
|
|
darcs-hash:20080622153220-34904-119cea6c5dbe20e33569287cf9632c07e9768b10.gz
|
|
darcs-hash:20080622152628-34904-9974209ebe964058d00337bc602ef20c10b83f66.gz
|
|
darcs-hash:20080622152306-34904-3d3ab7c02c33efac17d02692a10b4fee2fb013f1.gz
|
|
darcs-hash:20080622151611-34904-1d952df08b5247ab391bb76fd50d7b90498f0c96.gz
|
|
darcs-hash:20080622142015-34904-00feabce7fe73360319d8a9c1372478879bb203a.gz
|
|
darcs-hash:20080622140941-34904-2a0eda21f6a374a9d26107a4bc627fc6de2a7063.gz
|
|
darcs-hash:20080620072632-84dde-d1e1b1593a882b6faa4fcd21c36200398ee49286.gz
|
|
Weirdly, I got in an argument with Tim Berners-Lee in #swig about the
tag URIs I was using in FOAF documents. Eventually, I was convinced
that it's a better thing to use HTTP URLs instead. So, now we have
HTTP URLs.
The tricky thing was for users. Since they can change their names, we
can't use their profile URL, since it includes the name. Instead, I
made up a new action, which simply redirects from a user ID to their
current profile URL. This should be sufficiently long-term.
darcs-hash:20080620071700-84dde-c6145243dc45dd2dff621aff421375d05796057e.gz
|
|
darcs-hash:20080620064824-84dde-1d349cf2add75fbffa7cc763fb5ac8776cce4d03.gz
|
|
darcs-hash:20080620062606-84dde-59be3fd35a01d788f3953e2dba70baefefabfb76.gz
|
|
darcs-hash:20080620052453-5ed1f-4ce9b677b9010b3879bbae1ba9218036f0ad728f.gz
|
|
darcs-hash:20080620051536-5ed1f-231e427832dd20c861eb7a6dc1171315e90f455b.gz
|
|
darcs-hash:20080619183238-84dde-dbe912a40894ec7414e6d5ea0bc40ec527385436.gz
|
|
darcs-hash:20080619173225-84dde-d73961d047f75fa1e3ac4287d35e4c6afb391e84.gz
|
|
darcs-hash:20080619172031-84dde-6b97932d4d51541581c0b220df8ce53cbc51e2da.gz
|
|
darcs-hash:20080619161814-5ed1f-5add55346470e71a53a676d39617062acc0f19bf.gz
|
|
darcs-hash:20080619155154-5ed1f-0bd8ea0c1e7a7ead736483cd516bcf4f999e9deb.gz
|
|
darcs-hash:20080619155042-5ed1f-d814e2ae7f565e7e5cd8c0389071491705117e73.gz
|
|
darcs-hash:20080619153719-5ed1f-da58c447643d24dbfd9d0076c74d8ce4f57c5be3.gz
|
|
Added a check to make sure the user doesn't remove their last OpenID
if they don't also have a password.
Also, put the finishimmediate URL in the publicxrds so that e.g.
Yahoo! doesn't get snippy.
darcs-hash:20080619153231-5ed1f-a5d784ff39b53afdfb0584689188dd78bdb90c41.gz
|
|
darcs-hash:20080619151803-5ed1f-53df3a53f1147233658397c3c6d2cd6a2202b199.gz
|
|
darcs-hash:20080619140505-84dde-d4006afa9507e29e58115f23c4acc5156a571930.gz
|
|
darcs-hash:20080619135603-84dde-1bfd6606f34416eb6f1be4d5c926f6bb198427bd.gz
|