openproject

Commit Graph

Author	SHA1	Message	Date
Alexander Bach	2cff5e9864	Show user name when forcing password change	9 years ago
Markus Kahl	9af0e26623	make user creation/invitation work with plugins ...	9 years ago
Jan Sandbrink	2fb41301de	Fix activation in case a non-existing token is passed looks like the original author intended to use the method I am using now and just forgot to update the call...	9 years ago
Markus Kahl	871375bbc0	register: clear placeholder name(s); refactoring	9 years ago
Markus Kahl	47479ba28b	refactoring	9 years ago
Markus Kahl	ac8a096488	polish considering remarks through review and houndci	9 years ago
Markus Kahl	06f20c94b2	fixed self registration; manual activation of invited users	9 years ago
Markus Kahl	f37520ad19	feature spec for user creation and activation	9 years ago
Markus Kahl	b3176866f2	removed signup screen; show OmniAuth opts in register view	9 years ago
Markus Kahl	43e18dd00c	switch to user invitation by default this changes quite many flows. With this user self registration is a separate flow to what happens when an admin creates a user. Users created by admins are 'invited' instead of 'registered'.	9 years ago
Markus Kahl	98ba7ce333	basic user invitation prototype	9 years ago
Stefan Botzenhart	868d764a97	Use activejob deliver_now method (removes deprecation warning)	9 years ago
Alex Coles	ec1bb39f9b	Fix syntax (w/Rubocop) in (Rails) controllers Signed-off-by: Alex Coles <alex@alexbcoles.com>	9 years ago
Alex Coles	57618b25ec	Replace dynamic finder usages with #find_by, etc. This patch replaces all dynamic finders, for the sake of consistency, although only some methods are deprecated. See: https://github.com/rails/activerecord-deprecated_finders#active-record-deprecated-finders * Revert some `User#find_by_login` usages in cuke steps accidentally removed in `74228b59`. User Story # 20325 Signed-off-by: Alex Coles <alex@alexbcoles.com>	9 years ago
Alex Coles	e0191e759c	Update year in copyright header to 2015 [ci skip]	10 years ago
Alex Coles	0532e87a40	Minor spacing fixes in AccountController [ci skip] Signed-off-by: Alex Coles <alex@alexbcoles.com>	10 years ago
Alex Coles	bb0e6e6aa5	Fix syntax (w/Rubocop) in (Rails) controllers Signed-off-by: Alex Coles <alex@alexbcoles.com>	10 years ago
Alex Coles	336446c59d	Use 1.9+ Hash syntax in (Rails) controllers Signed-off-by: Alex Coles <alex@alexbcoles.com>	10 years ago
Markus Kahl	2ed52b163d	only use exit screen if login is required to view anything at all	10 years ago
Markus Kahl	d6401e79f5	polish	10 years ago
Markus Kahl	89731db2d1	some refactoring; test display of instructions	10 years ago
Markus Kahl	bbd4cad404	fix: #14385 (direct login infinite redirect loop)	10 years ago
Markus Kahl	c25f92576c	only append origin if back_url is given	10 years ago
Markus Kahl	9dc9d69000	redirect to last URL after direct omniauth login	10 years ago
Michael Frister	ee31c8de7d	Omniauth: Add after_login, remove on_success After a successfull login seems to be a much clearer description of when the callback will be executed than "on successful authorization". E.g. it's not clear whether ending up on the registration page also indicates successful authorization (which it does in the OmniAuth sense, but not in the OpenProject sense). The after login callback is called each time a user is logged in, no matter whether that happens via regular Omniauth login or after completing the registration process and being automatically logged in (when automated account activation is enabled).	10 years ago
Markus Kahl	41603b0f43	on_success callback for Authorization	10 years ago
Markus Kahl	c9a3dd87bd	put #disable_password_login? into OP Configuration	10 years ago
Till Breuer	2c4483544c	Merge branch 'dev' into feature/adding-and-removing-watchers Conflicts: app/assets/javascripts/angular/work_packages/controllers/work-package-details-controller.js karma/tests/controllers/work-package-details-controller-test.js lib/api/v3/work_packages/work_package_representer.rb	10 years ago
Markus Kahl	a572c6af7f	properly qualify OmniauthLogin everywhere	10 years ago
Markus Kahl	1e1ac3a742	fixed allow_registration?	10 years ago
Markus Kahl	f8770d5e93	block password-related functionality (e.g. lost)	10 years ago
Jens Ulferts	9a2268cc7a	fixes references to OmniauthLogin	10 years ago
Markus Kahl	100f3d00c6	also disable login per post	10 years ago
Markus Kahl	902654a91d	omniauth direct login	10 years ago
Michael Frister	98f81665db	CSRF Protection: Prevent login CSRF	11 years ago
Markus Kahl	e624f84c87	log login directly during omniauth procedure	11 years ago
Markus Kahl	8c94da8d89	log last login for omniauth too added tests	11 years ago
Michael Frister	d02fde7c40	Fix flash message shown when an account is inactive Show different messages depending on whether the user is locked or registered. In the latter case, also show different messages depending on the self_registration setting (manual activation vs. mail).	11 years ago
Michael Frister	d29f5b8421	Fix flash message shown when an account is inactive Show different messages depending on whether the user is locked or registered. In the latter case, also show different messages depending on the self_registration setting (manual activation vs. mail).	11 years ago
Michael Frister	c91d04981e	Show error on attempt to register with disabled self registration This happens for normal registration as well as registration via omniauth. This also changes the redirect to not go to / and go to signin_url instead.	11 years ago
Philipp Tessenow	281b8d8e5b	extract omniauth logic from AccountController into separate omniauth concern	11 years ago
Philipp Tessenow	49c8bec8ec	extract methods from omniauth_login	11 years ago
Philipp Tessenow	759775b37a	small refactorings in ApplicationController#omniauth_login	11 years ago
kgalli	a0af103553	Removal of unnecessary CGI.unescape for back url	11 years ago
kgalli	2a43d74e88	Bugfix for back url if registration is performed via omniauth	11 years ago
Michael Frister	40982532b0	Omniauth: Fix user redirect after pending account and login When registering an account, the account was pending and the user logged in from the same login page after activation, the user was redirected to the authentication provider (at least that's what the back_url was being set to, this would probably have been blocked later by redirect_back_or_default). Setting the back_url explicitly has the advantage of redirecting the user to the original page where the user clicked on the Omniauth link.	11 years ago
Michael Frister	cd6fb1dcd4	Redirect user back to original page when logging in via omniauth	11 years ago
Michael Frister	e00d26d604	AccountController: Remove unused open_id_authenticate	11 years ago
kgalli	2dbff1fbb2	Log warning if omniauth error occurs but show generic message to user	11 years ago
Michael Frister	c5d1d58fad	AccountController: Refactor registration via AuthSource into own method	11 years ago

1 2 3

149 Commits (19c317e86689bf276adf95e003a84939571b887d)