Commit graph

672 commits

Author SHA1 Message Date
Alf Eaton
680c9b9570 Redirect Safari <= 13 to unsupported browsers page (#17123)
GitOrigin-RevId: 8cc508eb7f4f68c5864e102b2d4af9c8920800ae
2024-02-23 09:03:09 +00:00
Alf Eaton
6212f340d3 Allow individual docs to be downloaded from the file tree (#17137)
GitOrigin-RevId: d0b2ce9f3a252e34f452155ed83c3c04e7916ef0
2024-02-22 09:04:48 +00:00
Miguel Serrano
079a86ec53 Merge pull request #17182 from overleaf/msm-add-checks-invite-tests
[web] Add extra checks testing invite creation

GitOrigin-RevId: ae3d28c94b31ac07a81e006c4c3685c4400e0662
2024-02-20 09:04:46 +00:00
Alexandre Bourdin
b662b0742f Merge pull request #17030 from overleaf/ab-fix-sso-enable-clearing-attributes
[web] Fix SSO config update when enabling and block enabling unvalidated config

GitOrigin-RevId: 27b043117d5599d327e2322acd3901fc7286ab6b
2024-02-14 09:05:29 +00:00
Alexandre Bourdin
308708d8a7 Merge pull request #16991 from overleaf/ab-sso-login-url
[web] Change /institutional-login URL to /sso-login

GitOrigin-RevId: 0856f3f63e3bba3431dd554b4b65fe913d8a50fe
2024-02-14 09:05:15 +00:00
Alexandre Bourdin
0d00c3952c Merge pull request #16924 from overleaf/jel-clear-sessions-after-linking
[web] Clear other sessions after linking group SSO for managed users

GitOrigin-RevId: 0671154a34bf67532bad64f1abbdb8a332ab480a
2024-02-14 09:05:10 +00:00
Jakob Ackermann
385d3f9c1b Merge pull request #16980 from overleaf/jpa-join-project-remove-sl-2
[misc] joinProject: pass userId and anonymous access token in body 2/2

GitOrigin-RevId: b1a11941a6d9c7cc779769d1e97d3a0f03bed610
2024-02-13 09:03:39 +00:00
Jakob Ackermann
8523c21158 Merge pull request #16948 from overleaf/jpa-rails-sharelatex-rebranding-step-2
[web] migrate v1 api calls away from ShareLaTeX branded endpoints

GitOrigin-RevId: af08ee029d0cee8f0f171d21b4f2b0b76222b3f8
2024-02-13 09:03:35 +00:00
Jakob Ackermann
974069bf1c Merge pull request #16979 from overleaf/jpa-join-project-remove-sl-1
[misc] joinProject: pass userId and anonymous access token in body 1/2

GitOrigin-RevId: 5d7832246c7262c004c2cd465d62488384b35ee3
2024-02-12 09:03:16 +00:00
David
72eeb5a9ee Merge pull request #16936 from overleaf/dp-mongoose-callback-project-structure-tests
Promisify ProjectStructureTests

GitOrigin-RevId: c554ea42f107a52e792047a22da9aba9b4127644
2024-02-09 09:07:06 +00:00
Jessica Lawshe
03aaee84a3 Merge pull request #16945 from overleaf/ab-fix-sso-managed-users-enrollment
[web] Fix managed users enrollment clearing out SSO linking status

GitOrigin-RevId: b2083b48df1782c426794f16e2cdd767b217256c
2024-02-09 09:06:03 +00:00
Jakob Ackermann
63520c7076 Merge pull request #16859 from overleaf/jpa-sharelatex-cleanup
[misc] ShareLaTeX cleanup - high impact

GitOrigin-RevId: 6dcce9b0f15e30f7afcf6d69c3df36a369f38120
2024-02-09 09:04:11 +00:00
Jakob Ackermann
0596e8d25c Merge pull request #16813 from overleaf/jpa-remove-legacy-registration
[web] remove legacy registration aka the public-registration module

GitOrigin-RevId: 5cbb7ecbc7da5cd0617bd1abd1f5c6eef4c05b3f
2024-02-05 09:04:09 +00:00
Jakob Ackermann
880087945e Merge pull request #16854 from overleaf/jpa-overleaf-integration-core-tests
[web] enable overleaf-integration module when running SaaS tests

GitOrigin-RevId: 36eda6ef448604a55f8dc8daac5ce29af23b6b0b
2024-02-05 09:04:05 +00:00
Jessica Lawshe
596596efb1 Merge pull request #16860 from overleaf/jel-sso-acceptance-tests
[web] Add group SSO helpers for acceptance tests

GitOrigin-RevId: f2cec120582cecb474e705b451d06e9beced7bc9
2024-02-02 09:03:54 +00:00
David
e3513a9d50 Merge pull request #16545 from overleaf/dp-project-owner-delete-labels
Allow project owners to delete history labels

GitOrigin-RevId: 16111337681ac4085db2cf48e9d4c2fa87993b77
2024-01-23 09:03:08 +00:00
Miguel Serrano
51de84664d Merge pull request #16346 from overleaf/msm-remove-underscore
Remove `underscore` in monorepo

GitOrigin-RevId: fd3b92e3e8a940a7a086669232102320c34a89e2
2024-01-09 09:03:58 +00:00
Jimmy Domagala-Tang
ebd2a2f5fe Merge pull request #16353 from overleaf/em-typescript-in-web-backend
Enable type checking in the web backend

GitOrigin-RevId: cc8e34777c89704765fcd9b973aed806c3ae9016
2024-01-04 09:03:43 +00:00
Mathias Jakobsen
c371732e6e Merge pull request #16186 from overleaf/mj-mongo-object-id
[web] Use constructor for ObjectId

GitOrigin-RevId: 9eb8b377ea599605b72af237d1ab12f4d8287162
2023-12-19 09:04:02 +00:00
Alexandre Bourdin
202196dde2 Merge pull request #15808 from overleaf/ab-split-test-dev-toolbar
[web] Split Test Dev Toolbar

GitOrigin-RevId: 630116049a94aceb39d5afc9425b8ec6ee95b944
2023-11-24 09:04:40 +00:00
Brian Gough
3e5273144e Merge pull request #15656 from overleaf/bg-group-sso-login-acceptance-tests
add acceptance tests for group sso login

GitOrigin-RevId: 046d142ab478e45619b3a76d88eac73a808dfa08
2023-11-22 09:04:07 +00:00
Jessica Lawshe
f76563787b Merge pull request #15838 from overleaf/jel-link-sharing-redirect-hash
[web] Save link sharing URL hash as part of redirect

GitOrigin-RevId: 7d067852863b93e3246e5132511031005e333810
2023-11-21 09:04:23 +00:00
Brian Gough
1ff830027f Merge pull request #15726 from overleaf/ab-managed-users-module-cleanup
[web] Managed users / Group SSO module cleanup

GitOrigin-RevId: a24d3278667059248d9563afe44cafca5f87a7c0
2023-11-21 09:03:54 +00:00
Brian Gough
26db8ffa69 Merge pull request #15716 from overleaf/bg-eslint-console-log-in-web-tests
add console.log rule for tests in web eslintrc

GitOrigin-RevId: 166135e379309870fa4fe2d1797cb4c93cf2d877
2023-11-13 09:04:13 +00:00
Miguel Serrano
7f347be7f3 Merge pull request #15658 from overleaf/msm-team-invite-acceptance
[web] Team invite acceptance tests

GitOrigin-RevId: 755a4c483c93cee1ce4403c04db85fcbf4da06c3
2023-11-10 09:03:38 +00:00
Rebeka Dekany
19e6559e2a Merge pull request #15498 from overleaf/rd-input-fields
Onboarding Data Collection (step3)

GitOrigin-RevId: 0e78de5ccb7b7660ab04c904bc2fec4436b36621
2023-11-09 09:02:48 +00:00
Brian Gough
d3adcff0f1 Merge pull request #15544 from overleaf/bg-misc-use-literal-paths
Replace APP_ROOT and other variables with literal paths in web imports

GitOrigin-RevId: 138f03ad9355c8c6c92a206b0e54573234a6f65d
2023-11-02 08:53:03 +00:00
Jessica Lawshe
8da063d640 Merge pull request #15326 from overleaf/jel-link-sharing
[web] Add prefix of token hash to link sharing URLs

GitOrigin-RevId: 4b764c076a335768ab261dd1e181d90ce00fd1a2
2023-10-25 08:04:59 +00:00
Eric Mc Sween
680ebae30b Merge pull request #15172 from overleaf/em-promise-utils
Move util/promises from web into a shared library

GitOrigin-RevId: fe1980dc57b9dc8ce86fa1fad6a8a817e9505b3d
2023-10-20 08:04:05 +00:00
Eric Mc Sween
5b08d76817 Merge pull request #15211 from overleaf/em-remove-sl-history-frontend
Remove SL history frontend

GitOrigin-RevId: f6f98db7792b47f365b46da14fc823ee58787cdb
2023-10-13 08:03:51 +00:00
Alexandre Bourdin
16cfda28e3 Merge pull request #15141 from overleaf/ab-fix-local-acceptance-testing
Fix local acceptance tests configuration

GitOrigin-RevId: d4b3060b240ec748c222c7cc468a4b26442e45b8
2023-10-12 08:03:26 +00:00
Jimmy Domagala-Tang
6ffaeb7a92 Merge pull request #14933 from overleaf/jdt-dependabot-mongo-monorepo
fix: update mongo and dependencies
GitOrigin-RevId: 8ea29e74b9b91bbfa42c3786b6690cff4be660cc
2023-09-27 08:03:56 +00:00
Jakob Ackermann
a2cf7b459c Merge pull request #14902 from overleaf/jpa-node-18-18-0
[misc] upgrade Node.js to latest LTS 18.18.0

GitOrigin-RevId: 96c7171065ceb8797c28efa4ab331d86a84868d2
2023-09-25 08:04:25 +00:00
Brian Gough
67ec78f7c6 Merge pull request #14827 from overleaf/bg-size-limit-for-all-files
add size limit for all streamed files in web

GitOrigin-RevId: 65ab73163bc94a643977f8a0a1fd7418bbf6e365
2023-09-20 08:03:43 +00:00
Miguel Serrano
0f30edf69f Merge pull request #14585 from overleaf/msm-sso-config-modal
[web] SSO Config modal

GitOrigin-RevId: e704afa61fe14390b64ce29a27ccbce7e884b396
2023-09-13 08:03:46 +00:00
Jakob Ackermann
3bc7407ba9 Merge pull request #14696 from overleaf/jpa-lean-mongo-queries
[web] use lean mongo queries

GitOrigin-RevId: 5c9e2cddb2c45835dd9bb87c31b6e9d2b91873fd
2023-09-08 08:04:08 +00:00
Jakob Ackermann
e23c2dafef Merge pull request #14409 from overleaf/jpa-open-source-history-v1-tests
[web] enable history-v1 tests for Server Pro/CE

GitOrigin-RevId: 74119a09c101ed74c37833384722f85b0e3830dd
2023-09-01 08:03:53 +00:00
Brian Gough
bf04275478 Merge pull request #14090 from overleaf/bg-best-reduce-rate-limiter-on-confirmation-email-resend
reduce rate limiter on confirmation emails

GitOrigin-RevId: 87743dd9dac483a68ff82f1185ae1156d60b0575
2023-08-31 08:04:05 +00:00
Jakob Ackermann
3d9e9f6aeb Merge pull request #14565 from overleaf/jpa-add-error-context
[web] add response context to errors of failed logout/login action in CI

GitOrigin-RevId: 9b2e23e243541f87476f8cc71687f9492f615b4d
2023-08-30 08:05:13 +00:00
Jakob Ackermann
6b61d906ba Merge pull request #14562 from overleaf/jpa-disable-connection-checking
[web] workaround for broken detection of idle connections in CI

GitOrigin-RevId: ae9ff2b9b1bf99b56d8eb1af6e035b6ed08f7477
2023-08-30 08:05:02 +00:00
Jakob Ackermann
1ae5c2c2f1 Merge pull request #14530 from overleaf/jpa-check-response-status
[web] check response status code in acceptance tests

GitOrigin-RevId: 119a13f03bb3f1e8bb39340c36a9f2b0649b2bba
2023-08-29 08:04:11 +00:00
Jakob Ackermann
94a4659672 Merge pull request #14382 from overleaf/jpa-change-ci-defaults
[web] use representative defaultFeatures for Server Pro/CE in tests

GitOrigin-RevId: 859187579e8d410f5890e863a46a9440b724c543
2023-08-18 08:05:41 +00:00
Alexandre Bourdin
53131239d0 Merge pull request #14169 from overleaf/revert-14167-revert-14106-ab-ab-group-settings-admin-only
Revert "Revert "[web] Restrict group settings page and managed users activation to group admin""

GitOrigin-RevId: 3e622fe3c25dfa9940351450f55c1441634fbd44
2023-08-10 08:04:24 +00:00
Alf Eaton
c0ab5d498d Set Cache-Control: private for project files (#13750)
GitOrigin-RevId: b111c792a49a8a5e37734b5fcce1a69f4904c1ff
2023-08-04 08:05:31 +00:00
Brian Gough
d2f470450e Merge pull request #13933 from overleaf/bg-managed-users-add-missing-jsdoc-param
refactor getUserValidationStatus in PermissionsManager

GitOrigin-RevId: 80ef8142d3556e47e1d6cb323148f1f1042057aa
2023-07-21 08:04:40 +00:00
Brian Gough
f3ac016566 Merge pull request #13907 from overleaf/bg-managed-users-allow-cancelled-subscriptions
allow cancelled subscriptions for managed users

GitOrigin-RevId: 56262ce4bd4cc93d4e5ea92222c76a874d6cad1e
2023-07-20 08:05:08 +00:00
Brian Gough
f80100fba1 Merge pull request #13662 from overleaf/bg-managed-users-fix-subscription-validator
fix subscription validator for managed users

GitOrigin-RevId: 765c1c11850090f57327fc8b4255d41a16514472
2023-07-17 11:01:27 +00:00
Brian Gough
bc3d6c3636 Merge pull request #13717 from overleaf/bg-managed-users-block-affiliations-fix
fix for block affiliations for managed users

GitOrigin-RevId: cac54288592323ea3f1cd7655d4e2b89ee301002
2023-07-17 10:58:38 +00:00
Miguel Serrano
01e3409eb4 Merge pull request #13485 from overleaf/msm-share-modal-fetch-tokens
[web] Fetch share tokens instead of sending via websocket

GitOrigin-RevId: f97bb91ca3ceb410fe860bf1c7802d8157d9f8b4
2023-07-17 10:48:10 +00:00
Miguel Serrano
78314a0ee0 [web] Fix Null Pointer Error in WikiController in SP (#13393)
* [web] Fix NPE in WikiController

This error prevents the wiki from retrieving
page content in Server Pro

* [web] add `settings.proxyLearn` to SaaS config

GitOrigin-RevId: d137097e08720e8423133a7f59e2fe619fe134be
2023-07-17 10:42:41 +00:00
Brian Gough
efdc2dfca4 Merge pull request #13560 from overleaf/bg-group-policy-tests
add policies and tests for managed users

GitOrigin-RevId: 1f17e0911306b7dba8f4e2ab25a320a08c44702c
2023-07-17 10:42:31 +00:00
Brian Gough
3b60d05074 Merge pull request #13536 from overleaf/bg-implement-managed-users-policy
add missing review comment changes from backend support for managed users

GitOrigin-RevId: 31eab361844da3bb2c46d745127a6aa413c3e242
2023-07-17 10:42:21 +00:00
Mathias Jakobsen
af76768eb7 Merge pull request #13372 from overleaf/mj-captcha-add-email
[web] Add recaptcha to add-email

GitOrigin-RevId: 0540e0dbc3103dcaac87dd7fabeedbc5892c371c
2023-07-17 10:40:08 +00:00
Brian Gough
64ca8ce094 Merge pull request #13530 from overleaf/bg-support-managed-users
add backend support for managed users

GitOrigin-RevId: 61d965949c864013be31206661d2d36b35dd37a1
2023-07-17 10:39:58 +00:00
Miguel Serrano
7e6613a1a0 Merge pull request #13327 from overleaf/msm-web-track-changes-cleanup
[web] Cleanup track-changes from web

GitOrigin-RevId: 8cef709ec5e91e4ffe8cd06826038ed84f36ef67
2023-07-17 10:28:12 +00:00
June Kelly
d68ed0efdf Merge pull request #13140 from overleaf/jk-real-time-disconnect-link-sharing
[real-time] Disconnect relevant users when link-sharing is turned off

GitOrigin-RevId: cf44a30a235717b658a759e8a74ae4d0e5abae47
2023-05-31 08:05:07 +00:00
Jakob Ackermann
915914840a Merge pull request #13083 from overleaf/ds-jpa-project-ownership-change
[web] let invited admins transfer ownership of projects

GitOrigin-RevId: 49da7d42bec089f2278bde8942a63e5538fb5401
2023-05-16 08:05:22 +00:00
Eric Mc Sween
1117bfae20 Merge pull request #13023 from overleaf/em-delete-git-bridge-data
Delete git bridge data when a project is expired

GitOrigin-RevId: a600941831af31ff7712d44e437936cd416fc644
2023-05-16 08:05:07 +00:00
Eric Mc Sween
9528eab43e Merge pull request #13000 from overleaf/em-revert-delete-git-bridge-data
Revert "Delete git bridge data when a project is expired"

GitOrigin-RevId: a8674e040c9ccce3937b6ce244a82cd190c32c97
2023-05-09 08:05:17 +00:00
Eric Mc Sween
264bacab10 Merge pull request #12840 from overleaf/em-expire-project-git-bridge
Delete git bridge data when a project is expired

GitOrigin-RevId: 2f26af2f946ffd8c09f530a7eaadb37522d24a50
2023-05-09 08:05:00 +00:00
Jessica Lawshe
8be17cdb37 Merge pull request #12819 from overleaf/jpa-institutions-lookup
[web] migrate /institutions/ proxies to explicit V1 requests

GitOrigin-RevId: 535da280a6350dacbe2c957d2f2cedaeee02a48a
2023-04-28 08:04:34 +00:00
Eric Mc Sween
5b804ceefd Merge pull request #12654 from overleaf/em-td-upload-filename-encoding
Fix filename encoding of project and file uploads

GitOrigin-RevId: e718c8f8f376772ee13c50c82d26848977e16eef
2023-04-19 08:03:13 +00:00
June Kelly
841df71a1d Merge pull request #12342 from overleaf/jk-password-ux-please-use-another-password
[web] Password UX: 'Please use another password'

GitOrigin-RevId: ca9b26cbcf2dabb27c716da314764ee40ffc83dd
2023-04-12 08:04:13 +00:00
June Kelly
a140e3dc8c Merge pull request #12269 from overleaf/jk-enable-password-similarity-check
[web] Enforce password similarity check

GitOrigin-RevId: 1bc4efebba401663c1db9d209dc560560f160ce0
2023-03-23 09:04:12 +00:00
Eric Mc Sween
21971956b7 Merge pull request #12219 from overleaf/em-camel-case-web
Camel case variables in web

GitOrigin-RevId: 28e61b759b27f71265f33ab64f588374dba610e0
2023-03-22 09:05:04 +00:00
Jakob Ackermann
03f45c02c3 Merge pull request #12276 from overleaf/jpa-batched-update-window
[web] add time based window queries to batchedUpdate

GitOrigin-RevId: e56c01b888cd9749f39d42b77de09bc3fe2d0ec1
2023-03-22 09:04:09 +00:00
Jakob Ackermann
e6a8f3d04f Merge pull request #12297 from overleaf/jpa-primary-email-check-saas
[web] disable primary email check in Server CE/Pro

GitOrigin-RevId: be40160aecae7f19780a67e5cdd9356be232ee22
2023-03-21 09:05:45 +00:00
Jakob Ackermann
ccb0841a50 Merge pull request #12281 from overleaf/jpa-tweak-event-segmentation-filter
[web] tweak analytics event segmentation filter

GitOrigin-RevId: e00fef0ac74edfd7fbace33bf9289f1c6f905b57
2023-03-20 09:03:16 +00:00
Jakob Ackermann
fa5804a3cf Merge pull request #12254 from overleaf/jpa-back-fill-doc-rev
[web] add script for back filling rev=1 for old (deleted) docs

GitOrigin-RevId: 62f5b773fb83ddbf9bb202a592ce2e8f33b5e6b2
2023-03-17 09:03:58 +00:00
Jakob Ackermann
3c9ace481d Merge pull request #11855 from overleaf/jpa-fix-config
[web] fix access-token-encryptor config

GitOrigin-RevId: b16002159a3f0004e83ddb4b0cde3b33211184b3
2023-02-17 09:04:00 +00:00
Jakob Ackermann
dd906df7b7 Merge pull request #11360 from overleaf/jpa-encrypt-2fa-secret
[web] two-factor-authentication: encrypt the secret in the db

GitOrigin-RevId: 86642e13d917b239012229f685ad0210039a6706
2023-02-17 09:03:44 +00:00
June Kelly
53b78ad68b Merge pull request #11590 from overleaf/jk-password-reset-ux-improvements
[web] Password Reset UX Improvements

GitOrigin-RevId: d62575ff965e045823bfb7268db892188cf709ed
2023-02-10 16:33:14 +00:00
June Kelly
ac83dd9bb3 Merge pull request #11353 from overleaf/jk-remove-deprecated-public-access-levels
[web] Disallow deprecated access levels from being set

GitOrigin-RevId: cf276e849692be210a2dc7d896820579efc46952
2023-02-02 09:02:59 +00:00
Eric Mc Sween
75abea72b0 Merge pull request #11492 from overleaf/em-rate-limiter
Move all remaining rate limiters to rate-limiter-flexible

GitOrigin-RevId: 163ab2aebecb281057e552dc75591dd02028990c
2023-01-31 09:03:44 +00:00
Eric Mc Sween
2dbc0e3b3d Merge pull request #11489 from overleaf/em-fix-paypal
Set COOP header to same-origin-allow-popups

GitOrigin-RevId: c8c3751386addb307ee2caf59c228484e8e593c0
2023-01-27 09:05:43 +00:00
Tim Down
9ab12f3b44 Merge pull request #10966 from overleaf/td-add-coop-header
Upgrade Helmet to add some security-related response headers, including COOP

GitOrigin-RevId: fce8538b004f7b3ba6c6ca65ad311957d75b496a
2023-01-24 09:05:27 +00:00
Miguel Serrano
4a84922a2f Merge pull request #11346 from overleaf/msm-config-history-v1-sp
Configuration changes for FPH in CE/SP

GitOrigin-RevId: 990eb0fa6158d4815740413da085759d2cc5e231
2023-01-20 14:13:46 +00:00
Mathias Jakobsen
e8c677f7ad Merge pull request #11036 from overleaf/jpa-cdn-blocked-metric
[web] add metric for blocked cdn

GitOrigin-RevId: bee0fa5af0cc3c5d91deb64c8e32bb7e04dbcc2b
2023-01-05 09:04:04 +00:00
Mathias Jakobsen
38cc3394e3 Merge pull request #10793 from overleaf/mj-split-test-cleanup
Split test clean-up

GitOrigin-RevId: 7dd6178487022cbefcbc85797dacc3f3fbfa17e2
2022-12-21 09:04:04 +00:00
ilkin-overleaf
2675cab92e Merge pull request #10394 from overleaf/ii-password-reset-and-strength-checking
[web] Password reset strength checking and UI updates

GitOrigin-RevId: 442a5c9e7e9d0a61d3ae649f3526bc3c02fd5704
2022-12-07 09:03:36 +00:00
Brian Gough
f8a1da1b47 Merge pull request #10715 from overleaf/jpa-web-share-mongo-pool
[web] share mongo connection pool between Mongoose and native db

GitOrigin-RevId: 8bb2a9dc76880144a8681cb564183906df624cc0
2022-12-02 09:04:02 +00:00
Brian Gough
4589a57774 Merge pull request #10637 from overleaf/bg-delete-user-from-dropbox
delete user data from dropbox

GitOrigin-RevId: d586c73b4500f4fe718927f537ae770356eaefc1
2022-11-29 09:04:33 +00:00
Jakob Ackermann
d4551dc7ce Merge pull request #10442 from overleaf/jpa-convert-archived-trashed
[web] add migration for convert_archived_state script

GitOrigin-RevId: aeea3601a0c5f96e978c3f2a85458687d6d6678e
2022-11-15 09:07:09 +00:00
June Kelly
9e824ac93c Merge pull request #9951 from overleaf/jk-audit-failed-login-attempts
[web] Audit failed login attempts

GitOrigin-RevId: 19325f808f77584891e1e12b5ed7aaa16aa6aec9
2022-10-20 08:03:44 +00:00
Eric Mc Sween
fe963ba692 Merge pull request #9956 from overleaf/em-node-fetch-web
Replace request-promise with fetch in web acceptance tests

GitOrigin-RevId: f50357cdea2d1353d7a82c5346b149018f91823f
2022-10-18 08:03:25 +00:00
Miguel Serrano
74f44e655a Merge pull request #9617 from overleaf/msm-audit-log-collections
Move project/user audit logs to their own collections

GitOrigin-RevId: f6f89b3e2815c0fe5691a79eceb35b77b3c370d8
2022-09-30 08:04:17 +00:00
June Kelly
3288f87dbe [web] Password set/reset: reject current password (redux) (#8956)
* [web] set-password: reject same as current password

* [web] Add 'peek' operation on tokens

This allows us to improve the UX of the reset-password form,
by not invalidating the token in the case where the new
password will be rejected by validation logic.

We give up to three attempts before invalidating the token.

* [web] Add hide-on-error feature to async forms

This allows us to hide the form elements when certain
named error conditions occur.

* [web] reset-password: handle same-password rejection

We also change the implementation to use the new
peekValueFromToken API, and to expire the token explicitely
after it has been used to set the new password.

* [web] Validate OneTimeToken when loading password reset form

* [web] Rate limit GET: /user/password/set

Now that we are peeking at OneTimeToken when accessing this page,
we add rate to the GET request, matching that of the POST request.

* [web] Tidy up pug layout and mongo query for token peeking

Co-authored-by: Mathias Jakobsen <mathias.jakobsen@overleaf.com>
GitOrigin-RevId: 835205cc7c7ebe1209ee8e5b693efeb939a3056a
2022-09-28 08:06:54 +00:00
Alf Eaton
c41c14c697 Remove deprecated grunt code (#9506)
GitOrigin-RevId: 2b19d73c593545aaa9f6eb88143d08c5df39a1be
2022-09-16 08:05:37 +00:00
Eric Mc Sween
19c73cbd73 Merge pull request #9563 from overleaf/em-tpds-merge-metadata
Return metadata from TPDS update endpoint in web

GitOrigin-RevId: 9154be67f7f975807c6e986a5d6fb66013c9a384
2022-09-13 08:05:50 +00:00
Alf Eaton
7c20e7701b Remove mkdirp from web dependencies (#7427)
GitOrigin-RevId: b170371e538ca65fccd5c21f76dc25feec909190
2022-08-22 08:03:41 +00:00
Simon Detheridge
9953822175 Merge pull request #6661 from overleaf/spd-local-tests
Move acceptance test mocks to nonstandard ports and add options for running locally

GitOrigin-RevId: bd8f70ac8d80599daccc51cfe7b90a2ad8d8c3d8
2022-08-10 08:03:45 +00:00
Jakob Ackermann
e5e6be99f8 Merge pull request #9099 from overleaf/jpa-web-graceful-shutdown
[web] introduce graceful shutdown

GitOrigin-RevId: f42793a96f1e0304c57a855241bffa32bb291864
2022-08-05 08:03:27 +00:00
Timothée Alby
95a289b80b Merge pull request #9009 from overleaf/ab-split-tests-saas-check
[web] Skip split test assignment logic when not in SaaS mode

GitOrigin-RevId: 4c370bbc78c5a6828207f3336dfa6af9f4d71e17
2022-07-29 08:04:03 +00:00
Timothée Alby
ff3e659fbb Merge pull request #8897 from overleaf/ta-token-access-anonymous-redirect
Redirect Early on Anonymous Write Token Access Attempts

GitOrigin-RevId: 55e1839c3171a0a6a677ecca2f6bec87aad802bd
2022-07-29 08:03:45 +00:00
Timothée Alby
7f722a006c Merge pull request #8571 from overleaf/ta-token-access-page
Require User Interaction on Token Access Page

GitOrigin-RevId: 2f4c00ba75ebd6bd87d3e770ec8223d736344f5b
2022-07-29 08:03:39 +00:00
Alexandre Bourdin
e9e36737e6 Merge pull request #8957 from overleaf/ab-split-test-controls-badge
[web] SplitTestBadge based on split test phase and badge config

GitOrigin-RevId: e178ca864fd6619ff61a2a84fc1ccb5d54e0a814
2022-07-26 08:04:28 +00:00
M Fahru
574d0eab12 Improve error message when a collaborator tries to refresh a linked file without access to the project (#8884)
* Improve error message when a collaborator tries to refresh a linked file without access to the project

* Move the AccessDeniedError hardcoded error message to translation file

* apply prettier

* remove period (dot) in test hardcoded string

* revert unintended changes

GitOrigin-RevId: 50a5bf46428a96e629e9091cc18068f3ee7084e3
2022-07-21 08:03:32 +00:00
Henry Oswald
5f1abee345 Merge pull request #8939 from overleaf/revert-8882-jk-web-reject-same-password
Revert "[web] Password set/reset: reject current password"

GitOrigin-RevId: f14f970fe93064658a8659537c5cb417e34e2751
2022-07-20 08:04:00 +00:00
June Kelly
d04ea76081 Merge pull request #8882 from overleaf/jk-web-reject-same-password
[web] Password set/reset: reject current password

GitOrigin-RevId: 2c40dda4926d9c68564ae5126b3393b9286bb661
2022-07-20 08:03:36 +00:00
Alexandre Bourdin
21c8b9a47a Merge pull request #8426 from overleaf/ta-error-pages-style
Update General Error Pages Style

GitOrigin-RevId: 04346784c94d5ce6bf3257fd128a3f00da4c4e9e
2022-06-23 08:02:34 +00:00