Timothée Alby
573b5bedf1
Merge pull request #597 from sharelatex/secure-headers
...
Add security headers
2017-09-12 11:54:11 +02:00
Tim Alby
d6834ff417
add security headers using Helmet
...
- use all Helmet's default headers except `X-DNS-Prefetch-Control`
- use `Referrer-Policy`
- use cache headers when:
- a user is logged in, OR
- a project is displayed
2017-09-12 11:17:59 +02:00
Michael Mazour
3674fd47f7
Merge pull request #28 from overleaf/auth-log-fields
...
Additional log fields for unauthorized requests
2017-09-12 06:53:00 +01:00
Nate Stemen
80c00b13f7
Raising the limit on safari regex count
2017-09-11 11:27:03 +01:00
Brian Gough
2047bd5516
fix broken unit test
2017-09-11 09:44:05 +01:00
Brian Gough
07c46e8248
Merge pull request #58 from sharelatex/bg-increase-incremental-logging
...
log all errors in getProjectDocs
2017-09-11 09:39:10 +01:00
Brian Gough
0d613a6480
Merge pull request #71 from sharelatex/bg-merge-state-and-resource-list-files
...
merge state and resource list files
2017-09-11 08:54:30 +01:00
Brian Gough
5430c8a3c2
Merge pull request #593 from sharelatex/bg-fix-inactive-projects-request
...
avoid error when passing as limit in mongo query
2017-09-11 08:16:28 +01:00
Brian Gough
6d73c48c36
Merge pull request #596 from sharelatex/bg-suppress-incremental-compile-after-errors
...
suppress incremental compile after errors
2017-09-11 08:15:50 +01:00
Brian Gough
2b4c8bd846
clear docupdater project state in deleteAuxFiles
2017-09-08 15:57:29 +01:00
Brian Gough
f34c12fdc7
add endpoint to clear project state
2017-09-08 15:50:26 +01:00
Alasdair Smith
d0b64b317f
Merge pull request #598 from sharelatex/as-improve-auto-compile-ux
...
Improve "infrequent edit" auto compile UX
2017-09-08 14:47:29 +01:00
Joe Green
41e442d403
Add jenkinsfile ( #72 )
...
* create Jenkinsfile
* allow textlive image to be set with env vars
* log error message in test
* use sandboxed compiles variables
* Add SANDBOXED_COMPILES_HOST_DIR var to test config
* add SIBLING_CONTAINER_USER env var
2017-09-08 14:06:04 +01:00
Brian Gough
0a242bac3c
rename saveProjectStateHash to saveProjectState
2017-09-08 13:56:40 +01:00
Brian Gough
215a939d4e
add comment about log.error for excludeVersions
2017-09-08 13:43:22 +01:00
Brian Gough
e8435e3eae
make condition clearer for incremental compile
2017-09-08 13:39:24 +01:00
Shane Kilkelly
7993855dc5
Merge pull request #9 from sharelatex/sk-upgrade-mongojs
...
Upgrade mongojs
2017-09-08 13:33:25 +01:00
Shane Kilkelly
2e403b1fc2
update npm-shrinkwrap.json
2017-09-08 13:10:58 +01:00
Shane Kilkelly
367c822f41
upgrade mongojs, make compatible with node-6
2017-09-08 13:03:42 +01:00
Paulo Reis
98b380f70a
Update translations commit in shrinkwrap.
2017-09-08 12:14:05 +01:00
Alasdair Smith
1b144ed183
Merge pull request #595 from sharelatex/as-fix-share-emails
...
Fix UX issues in email autocompletion in share modal
2017-09-08 11:25:16 +01:00
Alasdair Smith
38eaf82c65
Ensure that time is monotonic when running autocompile
2017-09-08 11:00:46 +01:00
Alasdair Smith
4a490aafbf
Improve UX of triggering autocompile.
...
If a user is making infrequent edits (i.e. if reading and making small
changes), then waiting 5 seconds for a recompile is bad. Therefore we track
the time since the last recompile and use this to decide whether a recompile
should be run. This reduces the time to recompile, unless the user is typing
for a significant amount of time.
2017-09-08 10:42:54 +01:00
Michael Mazour
976419b2d2
More logging fields for unauthorized requests
...
When a request requires authentication, log username, IP address, and the status code returned by the auth attempt. Previously logged projectName only.
2017-09-08 10:15:45 +01:00
Shane Kilkelly
d13fbe4c48
Pin to latest base image
2017-09-08 09:09:42 +01:00
Shane Kilkelly
d14d5002ab
Remove un-used package import
2017-09-08 09:06:48 +01:00
Alasdair Smith
e2523c569e
Filter linting warnings
2017-09-07 17:45:16 +01:00
Brian Gough
66431fc2b8
log any missing files
2017-09-07 16:54:09 +01:00
Shane Kilkelly
d11b11222b
update bson api in migration 3
2017-09-07 15:27:28 +01:00
Brian Gough
03a5ff2e43
skip incremental compile after docupdater error
2017-09-07 15:06:09 +01:00
Brian Gough
c6d2f0f4e1
skip incremental compile after server error
2017-09-07 15:05:42 +01:00
Brian Gough
1e54b4c72c
log all errors in getProjectDocs
2017-09-07 14:12:48 +01:00
Brian Gough
b8e8530a16
fix whitespace
2017-09-07 13:52:34 +01:00
Brian Gough
cbd3e32143
log error if state file is truncacted
2017-09-07 13:52:34 +01:00
Brian Gough
3d1c3a1d27
combine the resource state and resource list
...
to prevent them getting out of sync
2017-09-07 13:52:34 +01:00
Shane Kilkelly
34158a00dd
depend on bson explicitely
2017-09-07 13:23:18 +01:00
Alasdair Smith
624802c28e
Remove unnecessary parens
2017-09-07 11:30:42 +01:00
Alasdair Smith
b7713439bf
Bring back comparsion erroneously removed
2017-09-07 11:30:20 +01:00
Alasdair Smith
9cde236bc8
Add comment explaining lint errors vs compile log errors
2017-09-07 11:28:36 +01:00
Alasdair Smith
a8cdfb7ecc
Track autocompile setting change
2017-09-07 11:13:38 +01:00
Shane Kilkelly
83d13e3ef7
Merge pull request #79 from sharelatex/sk-allow-explicit-ses-email-config
...
add the driver field to email config
2017-09-07 10:21:08 +01:00
Shane Kilkelly
586d1f1599
Merge pull request #531 from sharelatex/sk-allow-explicit-ses-email-config
...
Instantiate the ses client if explicitly specified.
2017-09-07 10:21:01 +01:00
Alasdair Smith
11386eb817
Add option to autocompile, so can be identified in event tracking
2017-09-07 10:20:21 +01:00
Alasdair Smith
8a8d98935b
Remove unnecessary linting check in annotations listener
...
When user starts typing, compile log annotations are replaced with linter ones,
so log errrors can be ignored for this purpose. Because we don't try to
autocompile unless the user types something
2017-09-07 10:04:10 +01:00
Alasdair Smith
0c76b06a97
Increase timeout to 5 seconds
2017-09-07 10:02:48 +01:00
Alasdair Smith
320466a4f7
Catch invalid email address and show specific error message
2017-09-06 13:47:45 +01:00
Shane Kilkelly
575869142c
Add grunt install
command to install-services
2017-09-06 13:37:34 +01:00
Alasdair Smith
79566a9214
Prevent autocomplete on suggestions that don't match
...
The behaviour of the ngTagsInput directive is somewhat counter-intuitive -
typing part of a suggested email will appear as though it matches but pressing
enter will not input the suggestion, but the current typed value.
Disabling add on enter will still allow enter to select the selection, but
prevents selection of the partially typed email/name.
2017-09-06 11:39:30 +01:00
Shane Kilkelly
fd71cd3c0a
Add call to install-services
2017-09-06 11:16:12 +01:00
Shane Kilkelly
4adf7378e2
Merge pull request #559 from sharelatex/sk-node-6
...
Update to node6
2017-09-06 10:51:38 +01:00