Commit graph

138 commits

Author SHA1 Message Date
Andrew Nicolaou
69d5a87861 Fixes API controller tests
The tests mock the mogoose User model and the express Response model
which isn't good. We should find a solution that makes use of
the actual model object.
2019-05-29 12:51:50 -04:00
Andrew Nicolaou
7bfacf08d0 Do not return any keys in API 2019-05-29 12:51:50 -04:00
Andrew Nicolaou
403234ae81 Moves API key creation to server 2019-05-29 12:51:50 -04:00
Vertmo
3b55ff81d2 Hashing keys before storing them 2019-05-29 12:51:50 -04:00
Vertmo
db71a2b7c0 Added DB schema and backend logic for API keys creation and deletion 2019-05-29 12:51:50 -04:00
Cassie Tarakajian
df1219b47a
fixes #850, bundling external libraries was causing a callback to never be called (#1060) 2019-05-02 19:33:16 -04:00
Cassie Tarakajian
8b296a51aa
Fixes #1052, in which you can't save a sketch after uploading a file (#1053)
Fixes #1052, in which a user can't save a sketch after uploading a file
2019-04-24 13:32:23 -04:00
Cassie Tarakajian
7d1901649f
Project synching, for #790 (#1039)
* add isSaving to project reducer, move actions to functions, start work to get comprehensive frontend/backend syncing working

* handle making changes while saving project, handle saving from another window

* add change to handle saving new sketch, and adding new changes while saving
2019-04-17 14:08:33 -04:00
Ankur Ingale
80765e03c7 Fixed Issue #659 (#964)
* Fixed Issue #659

* Undo changes in package.json and package-lock.json

* Resolved error
2019-03-21 17:08:46 -04:00
siddhant1
b6e2c4c983 Migrated from momentjs to date-fns 2019-03-02 15:05:40 +05:30
Oliver Wright
03d7533e2a Serve text-type assets from sketch asset urls - Fixes #839 (#843) 2019-02-22 18:05:56 -05:00
Oliver Wright
e75c98b299 Prevent Race Condition when Updating Project - Fixes #837 (#838) 2019-02-20 16:27:28 -05:00
Cassie Tarakajian
4dcec4baa8 Merge branch 'fix-char-restriction' of git://github.com/GaurangTandon/p5.js-web-editor into GaurangTandon-fix-char-restriction 2019-02-20 14:49:55 -05:00
Oliver Wright
00391a4ef9 Prevent User Information leak Fixes #822 (#823)
Prevents leaking the encrypted password and verification tokens to
the user when they update their account.
2019-02-20 11:08:10 -05:00
Gaurang Tandon
57b5f2f5bb resolve mc 2019-02-10 07:00:48 +05:30
Gaurang Tandon
bd3eed5fd3 reverted some changes and changed to file system safe naming 2019-02-10 06:57:03 +05:30
Cassie Tarakajian
7bd016bac3
fixes #785, update node, and everything else that comes along with that (#810) 2019-01-16 17:56:18 -05:00
Gaurang Tandon
26d65396b4 fixes #568 2018-12-15 12:35:52 +05:30
anaplian
319e68ddb6 Fix async validation in signup form (fixes #742) (#746) 2018-10-29 19:33:37 -04:00
Cassie Tarakajian
54002feb1d change for #727 2018-10-16 11:43:16 -04:00
Cassie Tarakajian
088efaad0c another change for #727, getting warmer 2018-10-16 11:13:01 -04:00
Cassie Tarakajian
63380c5dd8 another change for #727 2018-10-16 10:58:12 -04:00
Cassie Tarakajian
032169e7bc add authorization to file routes 2018-09-19 16:09:12 -04:00
Liang Tang
d5856ba923 Remove authorization from specific routes (#642)
* fixes #569

* update listObjectsInS3ForUser

* update client-side routes

* update aws controller

* update

* redirect to /login when unlogged in
2018-05-29 21:37:10 -07:00
Cassie Tarakajian
9ba507e091 fix server-side lint error 2018-05-08 19:30:33 -07:00
Cassie Tarakajian
bd303b7710 fix even more linting errors 2018-05-08 19:16:04 -07:00
Cassie Tarakajian
c90dac55b7 update eslint and fix linting errors 2018-05-08 19:16:04 -07:00
Cassie Tarakajian
e70b9d618e fix linting errors 2018-02-20 14:22:33 -05:00
Cassie Tarakajian
f05abfcb9a fix for #552 2018-02-20 14:16:58 -05:00
Mr.tang
27d4013585 Fixes #520 (#538)
* Fix #520

* delete consoles

* restore

* return 404 from server side

* fix lint error

* add sketch check for user
2018-02-19 15:21:47 -05:00
Mr.tang
6f5472020c Fixes #517 (#530)
* update download file's name

* fix lint error

* use moment.js

* slugify filename

* fix lint error
2018-02-13 11:28:06 -05:00
Cassie Tarakajian
3307613aec
adds slugify feature for #522 (#523) 2018-02-07 16:00:09 -05:00
Cassie Tarakajian
fb1684ce4b add isAuthenticated middleware, add isAuthenticated middleware to certain routes, make all other routes consistent 2018-01-09 15:57:49 -05:00
Francis Li
76a81bb1a0 Fixes #497 by adding support for an optional new env variable, S3_BUCKET_URL_BASE (#499)
* Fixes #497 by adding support for an optional new env variable, S3_BUCKET_URL_BASE

* Add a section to README about optional S3 bucket URL base configuration.
2017-12-13 14:56:24 -05:00
Cassie Tarakajian
e38474ce40 fix linting errors 2017-11-27 17:32:03 -05:00
Cassie Tarakajian
d03b433cfe add additional logging for CSRF errors, redirect to 404 for invalid embed path 2017-11-27 16:58:53 -05:00
Cassie Tarakajian
28c2bda663 remove console logs to figure out getProjectAsset crash 2017-11-27 16:06:59 -05:00
Cassie Tarakajian
286c725407 add more debugging to getProjectAsset 2017-11-27 15:43:58 -05:00
Cassie Tarakajian
3b33f3acca catch getProjectAsset error 2017-11-27 15:14:50 -05:00
Cassie Tarakajian
c30aba8e78 fix lingering linting errors 2017-10-15 20:27:05 -07:00
Cassie Tarakajian
63b47319d4 fix merge conflict 2017-08-01 16:07:21 -04:00
Zach Rispoli
e987e8f483 Bundle libraries when project is downloaded as zip (New approach) (#376)
* External libraries are bundled with zip when project is downloaded (#44)

* Fix linting errors

* Add a check for valid URLs before trying to bundle a library into project

* Add is-url lib to package.json
2017-07-19 19:56:52 +02:00
Cassie Tarakajian
4684feaff6 fix #394 2017-07-14 15:35:02 -04:00
Cassie Tarakajian
e140702784 Create Asset List View and refactor overlay code (#356)
* start to create asset list

* begin refactoring overlay component to remove duplicate code

* refactoring of overlays, asset list styles

* changes to add size to asset list

* fixes to asset list

* handle case in which a user hasn't uploaded any assets

* fix bug in which asset list only grabbed first asset

* remove console.log

* update overlay exit styling to use icon mixin
2017-07-11 17:37:43 +02:00
Cassie Tarakajian
4476405021 change all email links to update protocol based on node env 2017-06-26 13:48:24 -04:00
Andrew Nicolaou
1dc0c22cb7 Email verification (#369)
* Re-introduce Email Verification code

Revert "Revert "Email verification""
This reverts commit d154d8bff259350523a0f139e844db96c43d2ee1.

* Uses MJML to generate Reset Password email

* Sends Password Reset and Email Confirmation emails using MJML template

* Sends verified status along with user data

* API endpoint for resending email verification confirmation

* Displays verification status on Account page and allows resending

* Send back error string

* Passes email address through to sign/verify helper

* Uses enum-style object to set verified state

* Sends minimal info when user verifies since it can be done without login

* Provides /verify UI and sends confirmation token to API

* Better name for JWT secret token env var

* Adds mail config variables to Readme

* Encrypts email address in JWT

The JWT sent as the token in the Confirm Password URL
can be unencoded by anyone, although it's signature can only
be verified by us. To ensure that no passwords are leaked,
we encrypt the email address before creating the token.

* Removes unused mail templates

* Resets verified flag when email is changed and sends another email

* Moves email confirmation functions next to each other

* Extracts random token generator to helper

* Moves email confirmation actions into Redux

- updates the AccountForm label with a message to check inbox
- show status when verifying email token

* Uses generated token stored in DB for email confirmation

* Sets email confirmation status to verified if logging in from Github

* Sends email using new method on account creation

* Fixes linting errors

* Removes replyTo config
2017-06-26 12:48:28 -04:00
Cassie Tarakajian
1ae37ebaaa fix lingering linting errors 2017-06-13 16:47:36 -04:00
Zach Rispoli
396fc701c7 Fix issue with serving assets inside folders 2017-06-12 13:49:45 -04:00
Zach Rispoli
61afce46ed Server can serve individual assets from projects (fixes #212, fixes #219) 2017-06-01 00:08:11 -04:00
Cassie Tarakajian
7deb3745bf fix #354 2017-05-13 22:23:07 -04:00