heckyel/mediagoblin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,948 Commits 1 Branch 0 Tags
Commit Graph

2948 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Christopher Allan Webber
6c6e9911f5 Warning that raven plugin is somewhat experimental! 2013-03-29 08:09:26 -05:00
Elrond
2ef2f46e73 Refactor file field checking. 
When uploading, the file field needs some checks, it seems.
So refactor them into check_file_field and use around.
 2013-03-29 12:01:23 +01:00
Hans Lo
c5d341d79d Use WTForms data field in user_pages/views.py 
Missed case in a previous commit.
 2013-03-28 04:26:48 -04:00
Hans Lo
9d140cb842 Use WTForms data field in auth/views.py 2013-03-28 04:26:33 -04:00
Hans Lo
dfa6994d4d auth: whitespace cleanup in views.py 2013-03-28 01:32:44 -04:00
Hans Lo
29f523e1db Use WTForms data field in plugins/oauth/views.py 2013-03-28 00:08:18 -04:00
Hans Lo
c5673a1300 Use WTForms data field in submit/views.py 2013-03-27 23:56:33 -04:00
Hans Lo
dc03850b7a Use WTForms data field in edit/views.py 2013-03-27 23:56:20 -04:00
Elrond
9924cd0fb6 piwigo: Fix pwg_getversion 
This one needs to return just "2.5.0 (Mediagoblin)" instead
of "Piwigo 2...".
 2013-03-26 19:23:22 +01:00
Elrond
79f87b975e piwigo: Start at pwg.images.addSimple. 
Without a session and a logged in user, this can't go much
further.

Misses check for the file upload field.
Need refactored test tool for this.
 2013-03-26 19:19:32 +01:00
Brett Smith
3843697c28 Call is_updated instead of testing it boolean. 2013-03-25 09:20:46 -04:00
Christopher Allan Webber
126c3503a0 Merge remote-tracking branch 'aeva/671_fix_stl' 2013-03-25 08:01:11 -05:00
Aeva Ntsc
50d123b4be Ascii stl files now should have their whitespace stripped when parsing. 2013-03-25 07:55:24 -05:00
Aeva Ntsc
eacb9c4886 Fixed a bug that had binary stls be handled by the ascii stl parser. 2013-03-24 16:12:55 -05:00
Brett Smith
09102e0767 Harden It's Dangerous key management. 
The previous code was theoretically subject to timing attacks, where
an attacker could read the key in between the time it was saved to the
file and when the chmod happened.  This version prevents that by using
umasks to ensure the files always have the right permissions.

This version also avoids using a key that cannot be saved due to some
system setup bug.
 2013-03-24 16:27:20 -04:00
Brett Smith
e84e1cdf12 First tests for the Session class. 2013-03-24 15:46:10 -04:00
Brett Smith
5d1a8815d1 Set a starting value for session.send_new_cookie. 
This makes session.__init__ slightly more complicated but probably
simplifies everything else, especially if we make the class smarter
later by having it track changes itself.
 2013-03-24 15:39:49 -04:00
Brett Smith
9e1fa2396f Remove beaker stuff from the code. 
This is all obsoleted by It's Dangerous.
 2013-03-24 15:10:08 -04:00
Brett Smith
627a721cf6 Delete the session cookie on an empty session. 2013-03-24 14:47:02 -04:00
Brett Smith
c7424612d7 Back sessions with It's Dangerous. 
This is a contribution to #668.
 2013-03-24 14:44:41 -04:00
Christopher Allan Webber
956a87322e Merge remote-tracking branch 'jdshu/649_use_form_data_field' 2013-03-24 13:25:01 -05:00
Christopher Allan Webber
db9ab08a11 Webtest2 breaks response.cookies stuff for some reason. 
I don't understand why but other people do!

This is a terrible commit message and I am sorry for it.
 2013-03-24 13:22:31 -05:00
Hans Lo
2263a4cb5c Use WTForms data field in user_pages/views.py 2013-03-24 13:56:08 -04:00
Joar Wandborg
b06ea4ab46 Updated VideoThumbnailerMarkII, removed old 
Removed the old VideoThumbnailer since it's not used anymore.

VideoThumbnailerMarkII:
Changed the state switching in on_thumbnail_message to only set the
state to "processing thumbnail" if the seek was succesful.

I'm not sure what I'm doing here, but I know at least some of it is
good, and as a whole, it seems to work, so far :)
 2013-03-24 18:49:05 +01:00
Christopher Allan Webber
05eee632f8 Adding documentation on what the $need_arg code in runtests.sh does 2013-03-24 09:51:35 -05:00
Christopher Allan Webber
9430b957e4 Move description of software stack below description of "What's where" 2013-03-24 09:26:04 -05:00
Elrond
bb530c4445 Improve fs security for itsdangerous secret. 
Set mode 700 on the directory, mode 600 on the file.
 2013-03-22 19:12:55 +01:00
Elrond
5a8aae3aba Docs for get_timed_signer_url. 2013-03-22 19:09:19 +01:00
Elrond
5907154a59 Basic itsdangerous infrastructure. 
Implement the basic infrastructure for using itsdangerous
in mediagoblin. Usage instructions will follow.
 2013-03-22 18:46:47 +01:00
Elrond
398d384137 piwigo start at pwg.images.addChunk. 
This function receives part of an upload. Does most
parameter validation, but does not safe the data anywhere
for now.

Also fake pwg.images.exist
 2013-03-21 09:18:07 +01:00
Elrond
cf0816c182 piwigo: Add session.getStatus, improve categories.getList 
- pwg.session.getStatus returns the current user as
  "fake_user".  When we have a session, we'll return
  something better.

- pwg.categories.getList add a name and the parent id for
  its one and only "collection".

- Improve logging a bit.
 2013-03-21 09:18:07 +01:00
Elrond
dc7c26f355 piwigo: Sent a fake cookie. 
shotwell needs a pwg_id cookie to continue.
And really, it's the only cookie it supports, so in the
long run, we need to send a proper session cookie as
pwg_id.
 2013-03-21 09:04:37 +01:00
Elrond
1330abf722 Add warning README.rst and fix pep8. 2013-03-19 23:20:46 +01:00
Elrond
4234fffafa piwigo: Move tool functions into tools.py 2013-03-19 21:58:28 +01:00
Elrond
e4e5948c58 Start at pwg.categories.getList and improve xml output. 
- The xml formatting is now in the main function.
- Add PwgNamedArray to have named lists in xml output.
- Remove gmg.test method
 2013-03-19 21:58:06 +01:00
Elrond
bd3bc0446c piwigo: start xml response encoding, more (fake) methods. 2013-03-19 21:55:31 +01:00
Elrond
427beb08af Starting a piwigo api plugin. 
This one just puts up the basic endpoint, some
infrastructure and a fake login method.

Lots more needed.
 2013-03-19 21:55:31 +01:00
Elrond
997ef97669 Improve release notes formatting. 
The geolocation ini sample needed more indenting and
got a nice "code-block:: ini".
 2013-03-19 18:52:14 +01:00
Christopher Allan Webber
d40bce8594 Point to the Hacking HOWTO 2013-03-18 08:50:29 -05:00
Christopher Allan Webber
6b92dca59d Better description of the structure of the application 2013-03-17 14:16:19 -05:00
Christopher Allan Webber
f6097b2eac Clarification on some original design decisions things. 2013-03-17 13:53:45 -05:00
Christopher Allan Webber
8dad2978e7 A more realistic "con" explaination in the docstring of exif_fix_image_orientation 
Thanks to dnet for catching this.

This commit sponsored by Chester Zeller.  Thanks!
 2013-03-15 09:19:22 -05:00
Christopher Allan Webber
880f396bd9 Remove .pyc files from tarball when running maketarball.sh 2013-03-12 21:36:12 -05:00
Christopher Allan Webber
c56243f08c Changing "evil" submission test-script to be a bash script. 2013-03-12 21:36:12 -05:00
Elrond
340100ee99 Start a storage section. 
With the workbench stuff in it.
 2013-03-12 18:16:16 +01:00
Elrond
e72c30e0e5 Only create api docs for mediagoblin/ 2013-03-12 18:16:16 +01:00
Christopher Allan Webber
80550e22c3 Now in 0.4.0 dev mode! 2013-03-12 12:11:55 -05:00
Christopher Allan Webber
fda5ea7aaa "will now" -> "will not" tyop caught by AVRS... fixed, thanks! 2013-03-12 11:49:39 -05:00
Christopher Allan Webber
b1f0b4b8f9 New version: 0.3.3 ! 2013-03-11 17:26:22 -05:00
Christopher Allan Webber
b0ed6def40 Committing extracted and compiled translations 2013-03-11 17:22:09 -05:00