Commit graph

321 commits

Author SHA1 Message Date
Cassie Tarakajian
7b6a755ef4 add meta viewport tag 2018-05-02 13:14:05 -07:00
Cassie Tarakajian
96646d0d73 update references to p5.js to latest version 2018-05-02 12:44:16 -07:00
Cassie Tarakajian
fa2f3fb444 fix crash in example fetch script 2018-05-02 12:29:38 -07:00
Cassie Tarakajian
9daa0a35f8 fix linting errors in #556 2018-05-02 12:16:20 -07:00
Bharathvaj
bc36a79b94 Move examples username and password to .env file (#556)
* Move examples username and password to .env file

* Update README.md

* Update examples.js

* Update examples.js
2018-05-02 12:15:33 -07:00
Madhurjya Pegu
307091ad3c Solving #553 Addition of google oauth 2.0 for easy login (#608)
* google oauth added

* google credentials 

updated .env description for google oauth

* changes done wrt review
2018-04-18 13:38:02 -07:00
Himanshu
ae1e13fd11 Adding basic meta tags. (#565)
* Adding basic meta tags.

* Update index.html

* Changing description.

* Added meta to 404error
2018-03-08 16:16:48 -05:00
Dhruvdutt Jadhav
51f39c003e Clean explicit json parse (#584) 2018-03-01 18:13:19 -05:00
Dhruvdutt Jadhav
3efe3d20f7 chore: fix linting issues (#570) 2018-02-26 15:05:02 -05:00
Cassie Tarakajian
e70b9d618e fix linting errors 2018-02-20 14:22:33 -05:00
Cassie Tarakajian
f05abfcb9a fix for #552 2018-02-20 14:16:58 -05:00
Joey Lee
2a92d87b52 Updated generative-design branch ref to master (#552)
* replaced () with {} to fix implicit return error

* added first version of fetching generative-design examples

* ignore local testing files

* formatting

* updated examples-gg-latest

* updated examples-gg-latest.js

- data files not served via rawgit - hallelujah!
- added jquery

* updated p5 version

* refactoring and code cleanup

* added comment

* comment out link to svgFiles - unused

* moved commented code

* fixed conflicts

* linted examples-gg-latest

* changed branch ref to master

* rm spaces
2018-02-20 13:01:22 -05:00
Mr.tang
27d4013585 Fixes #520 (#538)
* Fix #520

* delete consoles

* restore

* return 404 from server side

* fix lint error

* add sketch check for user
2018-02-19 15:21:47 -05:00
Cassie Tarakajian
7c421d5e15 fix minor crash in generative design example fetch 2018-02-15 15:33:07 -05:00
Mr.tang
6f5472020c Fixes #517 (#530)
* update download file's name

* fix lint error

* use moment.js

* slugify filename

* fix lint error
2018-02-13 11:28:06 -05:00
Cassie Tarakajian
daeed8749d
fixes #528 (#536) 2018-02-09 16:32:06 -05:00
Joey Lee
6faf52f61e Added script to download and save all generative-design project examples to p5-web-editor (#526)
* replaced () with {} to fix implicit return error

* added first version of fetching generative-design examples

* ignore local testing files

* formatting

* updated examples-gg-latest

* updated examples-gg-latest.js

- data files not served via rawgit - hallelujah!
- added jquery

* updated p5 version

* refactoring and code cleanup

* added comment

* comment out link to svgFiles - unused

* moved commented code

* fixed conflicts

* linted examples-gg-latest
2018-02-08 16:02:35 -05:00
Cassie Tarakajian
3307613aec
adds slugify feature for #522 (#523) 2018-02-07 16:00:09 -05:00
Cassie Tarakajian
86318795ef update p5 versions to latest 2018-02-01 17:17:05 -05:00
Cassie Tarakajian
6cd71acb81
update list of mime types and move to common server and client file (#511)
Fixes #476 and fixes #450
2018-02-01 16:45:19 -05:00
Cassie Tarakajian
c50f64c0f3 fix linting errors 2018-01-09 16:21:40 -05:00
Cassie Tarakajian
81f7c53a1b update script to migrate assets to cdn url 2018-01-09 16:12:02 -05:00
Cassie Tarakajian
fb1684ce4b add isAuthenticated middleware, add isAuthenticated middleware to certain routes, make all other routes consistent 2018-01-09 15:57:49 -05:00
Francis Li
2f29d6add1 Fixes #500 removes CSRF token setting in cookie and validation on request (#501) 2018-01-08 16:12:55 -05:00
Cassie Tarakajian
b45e53483f try moving url if key does not exist 2018-01-08 15:01:43 -05:00
Cassie Tarakajian
9cf50aa8d5 keep playing with logging 2018-01-08 14:57:49 -05:00
Cassie Tarakajian
faae16d930 add more logging 2018-01-08 14:44:32 -05:00
Cassie Tarakajian
b4833a6fb1 log userid 2018-01-08 14:41:27 -05:00
Cassie Tarakajian
26b37b6ec7 add logging, call file cb if key does not exist 2018-01-08 14:39:33 -05:00
Cassie Tarakajian
3f5420d437 don't crash if file doesn't exist 2018-01-08 14:34:56 -05:00
Cassie Tarakajian
d58d8ea0bd finish moving migration of projects to username folder to chunks 2018-01-08 14:26:51 -05:00
Cassie Tarakajian
899b5c9710 update migration to move assets to under user id 2018-01-08 13:51:35 -05:00
Cassie Tarakajian
a11e37116a fix callback mismatch 2017-12-27 12:29:36 -05:00
Cassie Tarakajian
4d5f18b1de remove console.log 2017-12-27 12:23:04 -05:00
Cassie Tarakajian
6612919f96 remove stray async 2017-12-27 12:22:12 -05:00
Cassie Tarakajian
fbc0dd40da process all files 2017-12-27 12:20:59 -05:00
Cassie Tarakajian
d4f78e0800 another fix 2017-12-27 12:20:04 -05:00
Cassie Tarakajian
665b1440d3 only use async 2017-12-27 12:18:23 -05:00
Cassie Tarakajian
00e49d647e change move bucket name to use async 2017-12-27 12:04:52 -05:00
Cassie Tarakajian
b2ee44a6c2 only save files that need to be saved 2017-12-26 22:23:45 -05:00
Cassie Tarakajian
754518bf77 fix syntax error 2017-12-26 22:21:41 -05:00
Cassie Tarakajian
9127d8f553 trying this again 2017-12-26 22:21:02 -05:00
Cassie Tarakajian
362a9702f4 maybe use await correctly now? 2017-12-26 22:17:53 -05:00
Cassie Tarakajian
434ee8e013 using await for the first time 2017-12-26 22:08:20 -05:00
Cassie Tarakajian
f196c4ebf8 more debugging 2017-12-26 21:57:44 -05:00
Cassie Tarakajian
ce89d6cc78 there is going to be a string of terrible commit messages while i fix this and the world will have to accept this 2017-12-26 21:55:56 -05:00
Cassie Tarakajian
cdd4f1c29b need to limit the number of projects loaded into runtime memory... 2017-12-26 21:54:09 -05:00
Cassie Tarakajian
0ba9f33f09 more debugging for migration 2017-12-26 21:50:45 -05:00
Cassie Tarakajian
ad269d60c6 add printing project name for debugging 2017-12-26 21:49:44 -05:00
Cassie Tarakajian
6abaf99899 for testing, exit after first file 2017-12-26 21:48:37 -05:00
Cassie Tarakajian
1c0da9320f actually save project in db migration 2017-12-26 21:47:11 -05:00
Cassie Tarakajian
9880ec5070 add database migration to move s3 bucket 2017-12-26 21:43:49 -05:00
Francis Li
76a81bb1a0 Fixes #497 by adding support for an optional new env variable, S3_BUCKET_URL_BASE (#499)
* Fixes #497 by adding support for an optional new env variable, S3_BUCKET_URL_BASE

* Add a section to README about optional S3 bucket URL base configuration.
2017-12-13 14:56:24 -05:00
Francis Li
c820b6258f Fixes #494 removes extra / in webpack url references in index.html (#495) 2017-12-08 15:07:54 -05:00
Francis Li
aadd533061 Fixes #491 adds support for a configurable cache-control max-age setting for serving static assets, with a default of 1d on production and 0 elsewhere (#492) 2017-12-08 15:01:39 -05:00
Francis Li
82ca755362 Fixes #489, only logs request in development (#490) 2017-12-08 14:50:53 -05:00
Cassie Tarakajian
03eae2f1ef fixes #479 and fixes #449 2017-11-28 14:48:50 -05:00
Cassie Tarakajian
e38474ce40 fix linting errors 2017-11-27 17:32:03 -05:00
Cassie Tarakajian
44f02d1159 add csrf token debugging 2017-11-27 17:26:32 -05:00
Cassie Tarakajian
d03b433cfe add additional logging for CSRF errors, redirect to 404 for invalid embed path 2017-11-27 16:58:53 -05:00
Cassie Tarakajian
28c2bda663 remove console logs to figure out getProjectAsset crash 2017-11-27 16:06:59 -05:00
Cassie Tarakajian
286c725407 add more debugging to getProjectAsset 2017-11-27 15:43:58 -05:00
Cassie Tarakajian
3b33f3acca catch getProjectAsset error 2017-11-27 15:14:50 -05:00
Cassie Tarakajian
fd284358c2 fix #466 2017-10-30 15:36:09 -04:00
Cassie Tarakajian
c30aba8e78 fix lingering linting errors 2017-10-15 20:27:05 -07:00
Akarshit Wal
20bc8633d7 Login and signup page not visible after login (#431)
* Login and signup page not visible after login

* Redirect added on server side
2017-09-29 11:52:20 -07:00
Cassie Tarakajian
63b47319d4 fix merge conflict 2017-08-01 16:07:21 -04:00
Zach Rispoli
e987e8f483 Bundle libraries when project is downloaded as zip (New approach) (#376)
* External libraries are bundled with zip when project is downloaded (#44)

* Fix linting errors

* Add a check for valid URLs before trying to bundle a library into project

* Add is-url lib to package.json
2017-07-19 19:56:52 +02:00
Cassie Tarakajian
4684feaff6 fix #394 2017-07-14 15:35:02 -04:00
Cassie Tarakajian
57402cca8b catch migration error 2017-07-11 11:53:38 -04:00
Cassie Tarakajian
0bac435c72 debug asset migration 2017-07-11 11:51:56 -04:00
Cassie Tarakajian
3b36cd1e9c fix asset migration script 2017-07-11 11:50:23 -04:00
Cassie Tarakajian
e140702784 Create Asset List View and refactor overlay code (#356)
* start to create asset list

* begin refactoring overlay component to remove duplicate code

* refactoring of overlays, asset list styles

* changes to add size to asset list

* fixes to asset list

* handle case in which a user hasn't uploaded any assets

* fix bug in which asset list only grabbed first asset

* remove console.log

* update overlay exit styling to use icon mixin
2017-07-11 17:37:43 +02:00
Cassie Tarakajian
0532990314 update p5 version to latest 2017-06-26 15:11:42 -04:00
Andrew Nicolaou
6cbc376d6e CSRF/XSS protection (#374)
* /api endpoints only allows requests with application/json Content-Type

Otherwise sends 406 Unacceptable

* Uses CSRF token

The CSRF token is sent as the cookie 'XSRF-TOKEN' on all HTML page
requests. This token is  picked up automatically by axios
and sent to the API with all requests as an 'X-XSRF-TOKEN' header.
The middleware runs on all routes and verifies that the token matches
what's stored in the session.
2017-06-26 13:58:58 -04:00
Cassie Tarakajian
4476405021 change all email links to update protocol based on node env 2017-06-26 13:48:24 -04:00
Andrew Nicolaou
1dc0c22cb7 Email verification (#369)
* Re-introduce Email Verification code

Revert "Revert "Email verification""
This reverts commit d154d8bff259350523a0f139e844db96c43d2ee1.

* Uses MJML to generate Reset Password email

* Sends Password Reset and Email Confirmation emails using MJML template

* Sends verified status along with user data

* API endpoint for resending email verification confirmation

* Displays verification status on Account page and allows resending

* Send back error string

* Passes email address through to sign/verify helper

* Uses enum-style object to set verified state

* Sends minimal info when user verifies since it can be done without login

* Provides /verify UI and sends confirmation token to API

* Better name for JWT secret token env var

* Adds mail config variables to Readme

* Encrypts email address in JWT

The JWT sent as the token in the Confirm Password URL
can be unencoded by anyone, although it's signature can only
be verified by us. To ensure that no passwords are leaked,
we encrypt the email address before creating the token.

* Removes unused mail templates

* Resets verified flag when email is changed and sends another email

* Moves email confirmation functions next to each other

* Extracts random token generator to helper

* Moves email confirmation actions into Redux

- updates the AccountForm label with a message to check inbox
- show status when verifying email token

* Uses generated token stored in DB for email confirmation

* Sets email confirmation status to verified if logging in from Github

* Sends email using new method on account creation

* Fixes linting errors

* Removes replyTo config
2017-06-26 12:48:28 -04:00
Cassie Tarakajian
1ae37ebaaa fix lingering linting errors 2017-06-13 16:47:36 -04:00
Zach Rispoli
396fc701c7 Fix issue with serving assets inside folders 2017-06-12 13:49:45 -04:00
Zach Rispoli
61afce46ed Server can serve individual assets from projects (fixes #212, fixes #219) 2017-06-01 00:08:11 -04:00
Mathura MG
82207a50d3 Accessibility (#361)
* add p5 interceptor submodule

* update package

* remoce interceptor

* update interceptor;

* merge scripts

* change postinstall script

* refactor interceptor files

* remove merge conflicts

* change source files

* add registry class

* provide seperate outputs for text and grid

* switch textOutput to boolean

* make both modules usable together

* update interceptor for safari

* fix grid label

* add sound output as well

* change file strucure

* change constants

* change input lables

* switch submodule branch

* change variable name

* change grid to table

* remove role from table elements

* switch submodule branch
2017-05-31 15:23:30 -04:00
Cassie Tarakajian
8e1a65daed fixes #344, update sketches to by default use p5 version 0.5.10 2017-05-24 12:20:38 -04:00
Cassie Tarakajian
7deb3745bf fix #354 2017-05-13 22:23:07 -04:00
Cassie Tarakajian
15346c9a00 more to test object copying 2017-05-13 21:46:58 -04:00
Cassie Tarakajian
dc9ad0eea9 log errors in s3 object copy 2017-05-13 21:38:48 -04:00
Cassie Tarakajian
3c6049ceef duplicate is probably less broken than it was 2017-05-13 21:17:58 -04:00
Cassie Tarakajian
66833d22b6 fix #351, increase limit for body-parser 2017-05-10 15:07:40 -04:00
Andrew Nicolaou
ae668f681e HTTPS UI switch (#335)
* Checkbox to toggle project's serveSecure flag

This doesn't yet persist or reload the page.

* Help button that shows modal to explain feature

* Extracts protocol redirection to helper

* Returns promise from saveProject() action to allow chaining

* Setting serveSecure flag on project redirects after saving project

* Set serveSecure on Project model in API and client

* Redirect to correct protocol when project is loaded
2017-05-03 11:46:12 -04:00
Cassie Tarakajian
a4a1a36f02 #330 add google analytics 2017-04-13 14:49:45 -04:00
Cassie Tarakajian
2a9ea85ed8 #339 add region to .env 2017-04-13 14:39:03 -04:00
Cassie Tarakajian
40b3e26f24 #339 make duplication backwards compatible with old s3 links 2017-04-13 14:17:30 -04:00
Andrew Nicolaou
7be45ce875 Search for existing user account using Github emails (#337)
* Tries to match user account from list of emails in Github API

Requests the 'user:email' scope from Github which returns the private
emails associated with the user's account.

* Centres GitHub button in layout
2017-04-13 12:04:10 -04:00
Cassie Tarakajian
aaa5e868e2 make inital changes for #169--need to migrate the locations of a user's s3 files to be namespaced under their userid 2017-04-06 14:34:14 -04:00
Cassie Tarakajian
23560c7879 delete file from s3 if data environment variable is undefined 2017-04-05 23:23:38 -04:00
Cassie Tarakajian
8392acdf3f delete files based on S3, with a date to be backwards compatible 2017-04-05 23:23:38 -04:00
Cassie Tarakajian
75b49d10a9 add function to delete file from s3 2017-04-05 23:23:38 -04:00
Cassie Tarakajian
fa04054d28 duplicating files works 2017-04-05 23:23:38 -04:00
Cassie Tarakajian
f01a58353b initial commit to cloning files on S3, untested 2017-04-05 23:23:37 -04:00
Andrew Nicolaou
dc801ccf7f Force HTTPS redirection for log in and sign up (#319)
* Higher-order component to force some routes to HTTPS

* Force all user-management routes to HTTPS

* Redirect to sourceProtocol as route unmounts.

By default, no redirection occurs if sourceProtocol is not explicitly
defined.

* Sets serveSecure flag on new projects and usea after forcing protocol

The flag is set to `false` on all projects and as the UI has no way to
change this, it always redirects to HTTP after a signup/login action.

* Move HoC to be with other top-level components

* Server should respond to account page request

* Serves AccountView over HTTPS

* Turns HTTPS redirection off in development by default

Will log to the browser console any redirection that would
have happened. Added a line in the README about how to
enable this for testing in development.
2017-03-30 12:36:26 -04:00
Andrew Nicolaou
a1121e2e6b Enable CORS for all origins and requests on API (#324)
* Enable CORS for all origins and requests on API

* Whitelist CORS origins: *.p5js.org in production and also localhost in development
2017-03-23 14:53:16 -04:00