Nemcio/meanTorrent
1
0
Fork 0
mirror of https://github.com/taobataoma/meanTorrent.git synced 2026-03-18 01:50:37 +01:00
Code Issues Packages Projects Releases Wiki Activity
709 Commits 4 Branches 0 Tags
cd5db4ad4df2c8797aa28ce44f4e90a3173e44d7
Commit Graph

709 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ilan Biala
cd5db4ad4d Merge pull request #575 from pgrodrigues/0.4.0 
Abstract the local strategy login error to thwart hackers
 2015-06-03 19:39:19 -04:00
Liran Tal
716925b29f Merge pull request #579 from lirantal/0.4.0-backport-local-config-feature-553 
porting pull request from master to 0.4.0 branch: Local environment ariables to address issue #553 #557
 2015-06-01 10:53:55 +03:00
Ilan Biala
801ba33d98 Merge pull request #576 from simison/patch-8 
Remove unused hasAuthorization and requiresLogin
 2015-05-31 18:12:22 -03:00
Liran Tal
1ea9f55600 porting pull request from master to 0.4.0 branch: Local environment variables to address issue #553 #557 2015-05-31 11:54:17 +03:00
Mikael Korpela
fcb6f90293 Remove un-used hasAuthorization and requiresLogin 
Looks like these aren't needed now that we have ACL.
 2015-05-29 00:36:07 +03:00
Pedro Rodrigues
e11ffda6e5 Add some abstraction to local strategy login error 2015-05-28 16:56:49 +01:00
Ilan Biala
3ea400f354 Merge pull request #548 from jloveland/generate-sslcerts 
Add SSL support back into 0.4.0
 2015-05-28 06:42:23 -04:00
Ilan Biala
f24ce6550e Ignore ALL .log files at gitignore 
Closes #523
 2015-05-17 23:19:05 -04:00
Ilan Biala
556497913d Merge pull request #565 from simison/patch-7 
Add fonts and svgs to gzip compression pattern
 2015-05-17 11:05:45 -04:00
Ilan Biala
6fddcf4d04 Merge pull request #549 from vepasto/patch-5 
Hide email address when reseting password
 2015-05-17 11:03:56 -04:00
Mikael Korpela
fea436f815 Add fonts and svgs to gzip compression pattern 
I think it's good to have these here "just in case", even the seed project wouldn't have any fonts/svgs. These are just so common filetypes at any project.

Thoughts?
 2015-05-16 14:10:14 +03:00
jloveland
3e1d0b5f84 adding ssl back in 2015-05-08 07:01:41 -07:00
Veikko Karsikko
c800c0a18f Hide email address and remove trailing whitespaces 
Email address should not be shown to client
 2015-05-07 14:26:17 +03:00
Ilan Biala
426ce9e8cc Merge pull request #531 from pgrodrigues/0.4.0 
Remove more unused requires
 2015-04-23 21:31:59 -04:00
Pedro Rodrigues
b2d76b82e5 Remove more unused requires 2015-04-23 17:51:58 +01:00
Ilan Biala
9a9db2692b Merge pull request #529 from pgrodrigues/0.4.0 
Remove unused passport require
 2015-04-23 06:46:50 -04:00
Pedro Rodrigues
7f1b46b0d7 Remove unused passport require 2015-04-23 11:09:45 +01:00
Ilan Biala
90dbbb60e6 Merge pull request #522 from simison/patch-4 
Fix typo in gitignore
 2015-04-19 10:40:49 -04:00
Mikael Korpela
b7f24c655c Fix typo at gitignore 2015-04-17 17:17:36 +03:00
Ilan Biala
25974a64ec Merge pull request #516 from tcwd/0.4.0 
Remove duplicate crypto require in modules/users/server/controllers/users/users.password.server.controller.js
 2015-04-14 09:47:37 -04:00
Edward Sun
0dbab180a9 Removed duplicate include for crypto 2015-04-13 12:08:30 -04:00
Ilan Biala
8b9a625fe4 Merge pull request #509 from simison/patch-1 
Fix headers to HTML5 format
 2015-04-08 08:28:06 -04:00
Mikael Korpela
238bbe1ad8 Fix headers to HTML5 format 
Headers were a weird mixture of html5 and xhtml. Now it's pure html5.


Use this as doctype if you really want it to be xhtml, but I don't see why would you want that with Angular:
```html
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
```
 2015-04-08 11:26:27 +02:00
Liran Tal
bb37d1b09a Merge pull request #498 from ilanbiala/0.4.0 
Update connect-mongo to support Mongoose 4.0.0
 2015-04-04 10:57:06 +03:00
Ilan Biala
dc6f74dec5 Update connect-mongo to support Mongoose 4.0.0 2015-03-28 19:35:54 -04:00
Liran Tal
79ec94662e Merge pull request #497 from ilanbiala/0.4.0 
Update dependencies
 2015-03-28 12:37:01 +03:00
Ilan Biala
1fa147e372 Update dependencies 2015-03-27 22:26:03 -04:00
Liran Tal
77535bdf2d Merge pull request #458 from ilanbiala/0.4.0 
Reset password script
 2015-03-27 09:57:02 +03:00
Ilan Biala
e1496dc01c Reset password script 2015-03-26 22:32:56 -04:00
Ilan Biala
a0495eabbd Merge pull request #463 from adamwalz/0.4.0 
Update glob to 5.0.0
 2015-03-11 18:51:12 -04:00
Adam Walz
dd0cdfcc40 Bump glob to version 5.0 2015-03-09 15:46:35 -07:00
Ilan Biala
cabb4c4c6a Merge pull request #453 from reblace/#450 
Fix hanging gulp because mongoose connections are left open. Fixes #450.
 2015-03-09 12:50:14 -04:00
Liran Tal
61f1a22c91 Merge pull request #376 from rmuch/fix-salt-encoding-merge-0.4.0 
Correctly encode and decode password salt (0.4.0)
 2015-03-08 14:17:33 +02:00
Rupert Muchembled
08f1750d94 Correctly encode and decode password salt 
The user password salt should be encoded with Base64 before being saved
to the database.

The current code adds an unecessary step of converting the result of
crypto.randomBytes() (which already returns a SlowBuffer) to a Base64
string and back again to a Buffer, and misses the final step of
converting the Buffer's bytes back to a Base64 string.

Because of this, the salt stored in the database is garbled. This is
inconvenient when manipulating the data in a terminal or text editor.

When generating the password hash, the crypto.pbkdf2Sync() method
creates a new Buffer directly from the data supplied. Due to the
incorrect encoding of the salt, entropy is lost at this step,
weakening the security of stored passwords against brute force attacks.
 2015-03-07 22:10:38 +00:00
reblace
6d0363fe70 Merge branch '0.4.0' of https://github.com/meanjs/mean into #450 2015-03-07 12:04:32 -05:00
reblace
9f45e63a20 #450 minor formatting fixes. 2015-03-07 11:21:47 -05:00
reblace
b61d6a7c8b #450 Fixing unrelated jshint warnings 2015-03-07 11:14:53 -05:00
Ilan Biala
69b0588531 Merge pull request #456 from dotch/0.4.0 
removed unused gulp-watch dependency
 2015-03-06 19:36:06 -05:00
dotch
7876fad50e removed unused gulp-watch dependency 2015-03-07 01:26:49 +01:00
reblace
ffde5e8067 #450 Use the error reported by mocha. Added some comments explaining 
what's going on in the mocha task.
 2015-03-06 15:17:58 -05:00
reblace
5f57f9d6f2 #450 Now the mocha task synchronously calls mongoose connect and 
disconnect.
 2015-03-06 14:18:33 -05:00
Ilan Biala
6f09033617 Fix Gulp throwing errors 2015-03-05 22:57:42 -05:00
Ilan Biala
71c4d4b555 Cleanly track mongoose connection in test task sequence 2015-03-05 22:32:00 -05:00
Ilan Biala
81c2847571 Properly track DB disconnect 2015-03-05 22:30:35 -05:00
Ilan Biala
6cce3d0952 Gulp now closes the mongoose connection 
Fixes #450.
 2015-03-05 22:04:43 -05:00
Ilan Biala
e954a20e2f Disconnect method to close DB connection 2015-03-05 22:01:36 -05:00
Ilan Biala
9e1a6aab66 Merge pull request #445 from dotch/0.4.0 
update gulp-sass to ensure Node 0.12 compatibility
 2015-03-03 18:01:21 -05:00
dotch
75bb6f2c2c update gulp-sass to ensure node-0.12 compatibility 2015-03-03 23:21:47 +01:00
Ilan Biala
709c27f975 Merge pull request #421 from vepasto/0.4.0 
Wait for async savings and removing in mocha tests
 2015-02-23 06:28:24 -05:00
Veikko Karsikko
1897ef985b Wait for async saving and removing 2015-02-23 09:33:26 +02:00