Commit Graph

136 Commits

Author SHA1 Message Date
Igor Scheller 64e4d168e0 migration: Order by migrated and append not migrated 2019-07-21 20:54:17 +02:00
msquare 6df62659da show password recovery always, fix test 2019-07-21 19:17:41 +02:00
msquare 1e16f4c47e
Merge pull request #624 from MyIgel/version
Added version to credits and metrics page
2019-07-21 13:38:05 +02:00
Igor Scheller 51a3c6eb44 ErrorHandler: Remove some form fields before serialization 2019-07-21 13:24:47 +02:00
Igor Scheller 4582f808f0 Added version to credits and metrics page 2019-07-21 03:19:19 +02:00
Igor Scheller fece50ca09 Basic coverage tests of logger classes for 100% unit tests coverage 2019-07-20 23:58:14 +02:00
Igor Scheller b9cb7d57fd Basic coverage tests of logger classes for 100% unit tests coverage 2019-07-16 02:59:33 +02:00
Igor Scheller b25924e868 Allow nested rules (not and optional) 2019-07-16 01:39:54 +02:00
Igor Scheller 6743106d9a Replaced validation with `respect/validation` 2019-07-10 13:34:15 +02:00
Igor Scheller 6d5ada2522 Added validation to AuthController 2019-07-09 22:27:34 +02:00
Igor Scheller 7414f9b23d Implemented Validation for controllers 2019-07-09 21:43:18 +02:00
Igor Scheller 508695efb2 Replaced gettext translation with package
This allows to check if no translation is available
2019-07-08 01:58:06 +02:00
Igor Scheller f90ab26fee Moved translation helpers to sub namespace 2019-07-08 01:58:06 +02:00
Igor Scheller e9f157ec5c Renderer: Added shared data 2019-07-08 01:58:06 +02:00
Igor Scheller bcce2625a8 Implemented AuthController for login
* Moved /login functionality to AuthController
* Refactored password handling logic to use the Authenticator
2019-07-08 01:57:59 +02:00
Igor Scheller e06affae17 Added tests to HomeController 2019-06-14 04:15:20 +02:00
Igor Scheller 6ed891fc04 Added logout via AuthController 2019-06-12 10:24:02 +02:00
Igor Scheller 2e51fbff9d Added / route with redirects 2019-06-12 10:21:20 +02:00
Igor Scheller e948091066 Replaced old /api endpoint with ApiController 2019-06-12 10:20:08 +02:00
Igor Scheller 93e578e555 Added html content sniffer 2019-06-12 10:20:08 +02:00
Igor Scheller 1f433694d2 Tests: Fix type warning 2019-06-12 02:56:18 +02:00
Igor Scheller 236197faf8 Upgraded external components 2019-06-03 21:36:58 +02:00
Igor Scheller 819677c902 Use self references and fix class naming 2019-04-25 18:17:19 +02:00
Igor Scheller 8da8805f5d Replaced functions with mb_* equivalents 2019-04-25 18:17:19 +02:00
Igor Scheller 79c92da8c1 Formatting
```bash
php-cs-fixer fix --allow-risky=yes --rules=@PSR2,psr4,mb_str_functions.php_unit_construct,php_unit_ordered_covers,trailing_comma_in_multiline_array --rules='{"array_syntax": {"syntax":"short"}}' [tests/|src/]
```
2019-04-25 18:17:19 +02:00
Igor Scheller 9930668837 Fixed test coverage 2019-04-25 17:56:06 +02:00
Igor Scheller c74fa7955d phpunit: Upgrade to version 8, fixed tests, formatting
Use `dms/phpunit-arraysubset-asserts` after `assertArraySubset` got deprecated
2019-04-25 17:56:06 +02:00
Igor Scheller 58ca7113f3 PSR-7: Replaced implementation with `Nyholm\Psr7` 2019-04-17 13:11:39 +02:00
Igor Scheller d9f898a0bb Bugfix: Replaced Diactoros with Symfony PsrHttpFactory to use PhpExtended\HttpMessage implementation
Prevents warnings that get converted to errors when run in dev mode
2019-04-16 20:20:56 +02:00
Igor Scheller 43b7b5c117 migration: Exclude add_angel_supporter_permissions from unit tests 2018-12-30 15:17:01 +01:00
Igor Scheller 491ee37651 Don't save sessions permanently on api and metrics paths
closes #530 (Session on API calls)
2018-12-28 20:35:44 +01:00
Igor Scheller b1d8fede46 user: allow up to 40 characters for dect numbers
closes #309 (EPVPN number in DECT field is shortened)
closes #529 (For dect numbers are only 5 digits allowed)
2018-12-22 12:03:24 +01:00
Igor Scheller 330356043d credits: Allow customization 2018-12-22 12:01:23 +01:00
Igor Scheller 393db49294 Renderer: Added twig extension for markdown rendering 2018-12-22 12:01:23 +01:00
Igor Scheller b3f059ad04 metrics: Added vouchers and tshirts 2018-12-22 11:31:33 +01:00
Igor Scheller 9a2f246511 metrics: Added more stats 2018-12-19 22:36:42 +01:00
Igor Scheller c5621b82cf Implemented /metrics endpoint and reimplemented /stats
closes #418 (/metrics endpoint)

Usage:
```yaml
scrape_configs:
  - job_name: 'engelsystem'
    static_configs:
    - targets: ['engelsystem.example.com:80']
```
2018-12-19 22:36:42 +01:00
Igor Scheller 3c8d0eeb44 ErrorHandler: Don't wrap the response if a content-type is defined 2018-12-19 22:36:42 +01:00
Igor Scheller c9d7e88cc7 Implemented controller permissions 2018-12-02 12:53:31 +01:00
Igor Scheller 55beca95cd Refactoring: Throw HttpAuthExpired on csrf token mismatch 2018-12-02 12:53:31 +01:00
Igor Scheller 9788c5095a Implemented HttpException 2018-12-02 12:53:31 +01:00
Igor Scheller c33940f64a Moved permission checks to Authenticator class 2018-12-02 12:53:31 +01:00
Igor Scheller f845a5ab8b Added caching for templating and routing
See #486 (Implement caching)
2018-11-24 16:30:36 +01:00
Igor Scheller 944c29b964 Require POST for sending forms
* Ensure that the form is submitted with a post request
* Replaced several links with forms

Closes #494 (Security Vulnerability)
2018-11-21 19:24:36 +01:00
Igor Scheller fd37c9d60e Added additional headers 2018-11-21 19:24:36 +01:00
Igor Scheller 23c0fae36f Added csrf middleware 2018-11-21 19:24:36 +01:00
Igor Scheller 4e09ee3eb2 Replaced more user related stuff
(Contains some buggy stuff too...)
2018-10-31 13:43:23 +01:00
Igor Scheller 2dcb7cc2de Replaced some global `$user` variables 2018-10-31 13:43:23 +01:00
Igor Scheller d15946df2d Changed `src/` code and templates to use the new user model 2018-10-31 13:43:23 +01:00
Igor Scheller 8e62c4c52c Added new user models 2018-10-31 13:43:23 +01:00