Commit graph

23790 commits

Author SHA1 Message Date
Antoine Clausse
5f2718cf29 [web] Make rate-limit on login consistent, prevent "trim/case bypass" (#19555)
* Replace `LoginRateLimiter.processLoginRequest` call by use of `RateLimiterMiddleware`

* Lowercase the email to avoid rate-limit bypass

* Remove unit test "when the users rate limit"

* Use `EmailHelper.parseEmail` to normalize email in `processLoginRequest`

This should address the `trim()` bypass

* Use `.trim().toLowerCase()` instead of `EmailHelper.parseEmail`

We can't use `EmailHelper.parseEmail`, else it breaks the test (and feature): "with username that does not look like an email"

* Add acceptance test for rate limit

* Add comment on rate limits

* Rename `rateLimiter` to `rateLimiterLoginEmail` for clarity

* Make the login rate limits configurable from the settings

GitOrigin-RevId: cf1c3a416745f2b007c85014a5084570d4a049a7
2024-07-30 08:04:26 +00:00
Antoine Clausse
7212c16dde [web] Fix: sendConfirmationEmail promise (!!!) (#19629)
* Fix `sendConfirmationEmail` promise (!!!)

* Fix: No nested promises, and `sendConfirmationEmail`->`sendReconfirmationEmail`

* Add integration test on `/user/emails/send-reconfirmation`

* Update integration test: use the previously generated token

GitOrigin-RevId: f6386abeb06888351eec22fbcb1d3c614ff5c5c5
2024-07-29 08:04:41 +00:00
David
72c7b946ed Merge pull request #19617 from overleaf/dp-tooltip-alignment
Always render math preview tooltip at start of math content

GitOrigin-RevId: b0af7aa3c0920b2a9b9930f27a580018de1d2f52
2024-07-29 08:04:36 +00:00
Antoine Clausse
afd965c04b [web] Remove overleaf-integration overrides for /user/emails/delete & /user/emails/resend_confirmation (#19438)
* Use hooks to call `clearSamlSession`

* Promisify `UserEmailsController.remove`

* Use hook for `userDeleteEmailMiddleware`

* Remove `/user/emails/delete` override

* Remove "removeRoute of `/user/emails/resend-secondary-confirmation`"

That route isn't defined elsewhere

* Promisify `UserEmailsController.resendConfirmation`

* Promisify `UserEmailsController.sendReconfirmation`

* Use hook for `resendConfirmationEmailMiddleware`

* Remove `/user/emails/resend_confirmation` override

* Promisify `tryDeleteUser`

* Proxy `clearSamlSession` through `SAMLHelper`

* Revert "Use hook for `resendConfirmationEmailMiddleware`"

This reverts commit f028d9c8

* Inject `SAMLMiddleware.resendConfirmationEmailMiddleware` in `/user/emails/resend_confirmation`

* Update `middleware` syntax and grammar

* Update tests

* Use Module middleware instead of hook for `userDeleteEmailMiddleware`

* Remove "promises" export of tryDeleteUser

GitOrigin-RevId: 211e194fc1ef82dc452ee4e837dcddd9b23690a0
2024-07-29 08:04:24 +00:00
Jakob Ackermann
7eacbe898e Merge pull request #19608 from overleaf/jpa-git-bridge-e2e
[server-pro] extend e2e test coverage for git-access

GitOrigin-RevId: 3e6f3901037636140470b8169df224c329155598
2024-07-26 08:05:14 +00:00
Jessica Lawshe
606f9eaec7 Merge pull request #19594 from overleaf/jel-light-touch-table-checkmark
[web] Add new green checkmark to plans light touch redesign

GitOrigin-RevId: f6c38e819fdd784ccf39ab09109a33fcd58f23d8
2024-07-26 08:05:02 +00:00
Jessica Lawshe
d3ee849415 Merge pull request #19568 from overleaf/jel-light-touch-table-mobile
[web] Adjustments for mobile view on light touch plans redesign

GitOrigin-RevId: cadbcad321da8a20733b13c65e3f3aa9302e7ea8
2024-07-26 08:04:58 +00:00
Jessica Lawshe
1f432ca5a9 Merge pull request #19447 from overleaf/jel-light-touch-table-final-bits
[web] Updates for the light touch redesign of the plans table

GitOrigin-RevId: 44ba4fde9b192f3792bf295557fa1018c83a2119
2024-07-26 08:04:53 +00:00
Jessica Lawshe
85ec182859 Merge pull request #19446 from overleaf/jel-light-touch-file-reorg
[web] File reorganization of light touch redesign

GitOrigin-RevId: 6ea13a5d0053bdfd71f9d29d417f73f06a492d49
2024-07-26 08:04:48 +00:00
Jessica Lawshe
72821743fc Merge pull request #19415 from overleaf/jel-highlighted-col
[web] Update highlighted column for plans page light touch redesign

GitOrigin-RevId: 98a0d6c34762bb7f4530da9cd6d954c2ae1aae56
2024-07-26 08:04:44 +00:00
Jimmy Domagala-Tang
918c3e7e33 Merge pull request #19301 from overleaf/jdt-collaborator-ai-usage
Prevent AI usage on projects where collaborators have a blocking policy

GitOrigin-RevId: 93bdd9c5accff51a14f0585249e13ed7f1fa4e53
2024-07-26 08:04:35 +00:00
Liangjun Song
22c4caa02d braces security update (#19548)
GitOrigin-RevId: c123874f6c7e3e314da60b95f453fb64796fd866
2024-07-26 08:04:30 +00:00
Jakob Ackermann
96aab63e4b Merge pull request #19593 from overleaf/jpa-fix-e2e
[server-pro] temporary skip part of broken e2e test

GitOrigin-RevId: 79d1f1ac4fe19765a197735e9579a08827538e35
2024-07-25 08:05:28 +00:00
ilkin-overleaf
bef43020cd Merge pull request #19466 from overleaf/ii-bs5-projects-tags
[web] BS5 projects tags

GitOrigin-RevId: 4cdea8ad374c8b0ecba9281e3bde64517e6b0153
2024-07-25 08:05:20 +00:00
Tim Down
e60885aa88 Merge pull request #19347 from overleaf/td-bs5-cypress-css
Move CSS loading in Cypress to individual test spec files

GitOrigin-RevId: 92bb5167cfa81b0bd54acc724efb23b397421ccb
2024-07-25 08:05:16 +00:00
David
d7357b4d62 Merge pull request #19400 from overleaf/dp-duplicate-file-folder-name
Improvements to handling of file/folder upload conflicts

GitOrigin-RevId: 526edf30dfbaec7ee1e03ffd156365f09be25e86
2024-07-25 08:05:08 +00:00
David
c07d2f3fa2 Merge pull request #19528 from overleaf/dp-equation-preview
Equation Preview

GitOrigin-RevId: 98e71e5d2c1a83d6c9fa685eeee1f4b93a5a3da1
2024-07-25 08:05:04 +00:00
M Fahru
a8a655ff3b Reduce spacing between FAQ heading text and FAQ content
GitOrigin-RevId: c4ca73f5651f56f8565069f54417f55ef26700a8
2024-07-25 08:05:00 +00:00
M Fahru
cce68028c6 Reduce plans new discount badge font weight to 500
GitOrigin-RevId: ee00383135e1a9577842f9f1382ea9e243ebe1b6
2024-07-25 08:04:55 +00:00
M Fahru
394d07d03e Merge pull request #19509 from overleaf/mf-contact-support-faq
Implement contact support link below FAQ section

GitOrigin-RevId: 5c22c9807522b3ba88169b759520feb165f3f499
2024-07-25 08:04:51 +00:00
Davinder Singh
c1ff760925 Merge pull request #19508 from overleaf/ds-buy-now-btn-new-design
Plans page - Plans card buy now btn matching the style to Figma

GitOrigin-RevId: a518540d2aa5870b0fb90671c7785b90378ae74f
2024-07-25 08:04:37 +00:00
Davinder Singh
96e290d959 Merge pull request #19515 from overleaf/ds-plans-page-groups-tab-mobile
Plans page ( New Design Mobile )- Adding the features table for groups tab

GitOrigin-RevId: 9b27707f60441a16b67aafab8814635de4444110
2024-07-25 08:04:32 +00:00
Alf Eaton
30074fbe4e Fix "Edit file" link in visual editor tooltip (#19532)
GitOrigin-RevId: 1f196c3d195b69eae8169c9ffc0629f1cdf6d97b
2024-07-24 08:05:29 +00:00
Alf Eaton
2f80e74d8a Set dropup on file tree context menu when needed (#19521)
GitOrigin-RevId: 7817b95c1896fe6ed3fcb37045821fb31b7b4b1f
2024-07-24 08:05:24 +00:00
Alf Eaton
7e136131c0 Promisify Metadata feature (#19361)
GitOrigin-RevId: 962aa9dbbc41a49c2c3120af9a1254a4db85387b
2024-07-24 08:05:19 +00:00
Jakob Ackermann
8c0a78c7e7 Merge pull request #19480 from overleaf/jpa-fast-path-fetch-for-transform
[document-updater] avoid fetching updates to transform when up-to-date

GitOrigin-RevId: 7962d8903a7bc9b572d7c6adfd8f33ad36f30459
2024-07-24 08:05:14 +00:00
Alexandre Bourdin
8e79d72cc2 Merge pull request #19465 from overleaf/ab-modules-middlewares
[web] Support injecting middlewares from modules

GitOrigin-RevId: efbf68d885f839b92f2e601553c7ce54b9d4b6d3
2024-07-24 08:05:09 +00:00
Mathias Jakobsen
34422b1428 Merge pull request #19418 from overleaf/mj-write-and-cite-custom-render
[web] Write & Cite autocomplete prototype

GitOrigin-RevId: f51edb9b1ab9cc2ac8f18277cb291ee87650c213
2024-07-24 08:05:04 +00:00
Mathias Jakobsen
f4896b2152 Merge pull request #19512 from overleaf/mj-def-mathjax
[web] Pass def, let, and (re)newenvironment to mathjax

GitOrigin-RevId: b79b656024bcaddd1bd96a4b9ed297de2de043e3
2024-07-24 08:04:58 +00:00
Jakob Ackermann
291fdd4e30 Merge pull request #19467 from overleaf/jpa-e2e-test-fix
[web] forward "name" on BS3 variant of OLFormControl into DOM

GitOrigin-RevId: 8eb276e767f1aa4b422aca390887b93433681c87
2024-07-24 08:04:53 +00:00
Brian Gough
1a64d37fde Merge pull request #19540 from overleaf:bg-fix-nginx-clsi-config-in-dev-env
synchonise clsi nginx.conf in dev env with production nginx proxy.conf

GitOrigin-RevId: 986c32d7d7d7dbd5245555c3db9b779298465762
2024-07-23 08:04:40 +00:00
roo hutton
fca6c952f8 Merge pull request #19391 from overleaf/rh-readd-collaborator
[web] Re-add collaborator email after removed from invite input

GitOrigin-RevId: 629ac28292978d24323ff2ba53ae1c9987bce9a2
2024-07-23 08:04:35 +00:00
andrew rumble
bfc6ac8745 Add mock for the unlink dropbox endpoint
GitOrigin-RevId: 41293a2cb6ab3cf87d40717e43c0f4888df89fe1
2024-07-23 08:04:28 +00:00
Jakob Ackermann
a099f82c34 Merge pull request #19522 from overleaf/jpa-sort-get-meta
[web] sort getMeta type definitions and enforce sorting via eslint

GitOrigin-RevId: 5b50c4f77facb3f92072597933bdc1c1bf0ecd78
2024-07-23 08:04:14 +00:00
Rebeka Dekany
6cb956b1ff Merge pull request #19472 from overleaf/rd-stylelint-ci
[web] Add Stylelint formatting to the CI

GitOrigin-RevId: f31139f9f6f70aa96214b59db37ad1f79cd1e733
2024-07-23 08:04:09 +00:00
Rebeka Dekany
1648e03e83 Merge pull request #19516 from overleaf/rd-form-focus-invalid
Partial revert "Match :focus-visible pseudo-class with focused style"

GitOrigin-RevId: 1d8af364e3c19f2b3804ab40c36984a9cbd87e3e
2024-07-23 08:04:05 +00:00
CloudBuild
01b7541483 auto update translation
GitOrigin-RevId: 20e88e57620e5a8dd428033238bd6e6bfaef776e
2024-07-22 08:04:55 +00:00
David
277ac91f0e Merge pull request #19390 from overleaf/dp-pdf-tools-teardown
Remove `pdf-controls` feature flag and old controls

GitOrigin-RevId: 807ee0aa6384df354809f4d59b10d00dadef898c
2024-07-22 08:04:22 +00:00
ilkin-overleaf
c005e99a3e Merge pull request #19411 from overleaf/ii-split-tests-helpers
[web] Move split test helper methods to a separate file

GitOrigin-RevId: 9bcb429f2debf8f7ff4b071e32c9cf0038459b97
2024-07-22 08:04:16 +00:00
CloudBuild
710cacad2d auto update translation
GitOrigin-RevId: 9169ad003e3040cffe369da4365cc1f9d7dce336
2024-07-19 08:05:05 +00:00
Jakob Ackermann
2fd1eb5978 Merge pull request #19474 from overleaf/jpa-web-push-asap
[web] push production image concurrent to CDN and Sentry upload

GitOrigin-RevId: ebc1f4dcc05029dbeabc22fcecddef0ba283177e
2024-07-19 08:05:01 +00:00
Rebeka Dekany
f948eeb9f1 Merge pull request #19388 from overleaf/rd-form-focus-visible
[web] Match :focus-visible pseudo-class with focused style

GitOrigin-RevId: 48da2565e27cb02e910ccea029f22fd5f89466ce
2024-07-19 08:04:56 +00:00
ilkin-overleaf
ac0265f4e2 Merge pull request #19471 from overleaf/ii-inputs-fix
[web] Fix inputs to accept custom class names

GitOrigin-RevId: ebef429b5de961b873beccb32874fa8bf815dfb6
2024-07-19 08:04:51 +00:00
Davinder Singh
92947b361f Merge pull request #19386 from overleaf/ds-plans-page-students-tab-plans-cards-new-design-mobile
Plans page (New design mobile version)  - Students tab plans card section

GitOrigin-RevId: e2ea224edcbc084013d101d5d8daef0195678c44
2024-07-19 08:04:47 +00:00
Davinder Singh
a8bddfc58a Merge pull request #19339 from overleaf/ds-plans-page-new-design-plans-features-table-mobile-screen-2
Website redesign - Plans page features table section table header mixin

GitOrigin-RevId: b6eb9625bc962aa6cc5fe22df3c59f368721f0ce
2024-07-19 08:04:42 +00:00
Jakob Ackermann
0f0d562786 Merge pull request #19455 from overleaf/jpa-metrics
[misc] add metrics for document processing/broadcasting

GitOrigin-RevId: d81de0dfb7a91863547631580f3c85f569718130
2024-07-19 08:04:34 +00:00
Domagoj Kriskovic
6afb067737 Hide history-resync updates from "All history" (#19435)
* [web] hide history-resync updates from "All history"

* Revert "[web] hide history-resync updates from "All history""

This reverts commit e9d5e7638eabe2baccf36f8c80bb4cd619e383ea.

* filter history resync update in summarizeUpdates

* used isHistoryResyncUpdate for merging

* remove merging for history-resync

* Revert "remove merging for history-resync"

This reverts commit 6ce48bc3f906867a64c0acc12e2dc61c05436c41.

GitOrigin-RevId: 0335eb9c05815fb66188d453a90dd09531504a55
2024-07-19 08:04:21 +00:00
roo hutton
523e340a0d Merge pull request #19398 from overleaf/rh-rm-ieee-notification
[web] Remove IEEE Collabratec notification

GitOrigin-RevId: 14ec3e50ed4913b815620f5215df59b17fc03054
2024-07-18 08:04:41 +00:00
roo hutton
6c675d947e Merge pull request #19397 from overleaf/rh-link-sharing-visibility
[web] Link sharing links in new share modal visible by default

GitOrigin-RevId: 326352c7c459063bfddf98937e830565c5422ce2
2024-07-18 08:04:36 +00:00
roo hutton
2bed549195 Merge pull request #19235 from overleaf/rh-link-sharing-leave-modal
[web] Confirmation modal when leaving project on sharing updates screen

GitOrigin-RevId: a19201f5157c2e92f98480bc59ad1f405601945d
2024-07-18 08:04:31 +00:00