summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2013-09-02Separate directories for code and dataTzafrir Cohen
2013-09-02post- scripts: handle configuration filesTzafrir Cohen
2013-08-27Debian packagingTzafrir Cohen
2013-06-26Merge pull request #11 from tomgalloway/masterNick Daly
Withsqlite is now added as a submodule.
2013-04-25Added withsqlite submodule.Tom Galloway
2013-04-24If needed instead of an elif.Tom Galloway
2013-04-23Add hosting and auto-archive-creation.Nick Daly
The makefile has three new targets: 1. hosting: Publish repository and automagically build the archives to serve to clients. 2. current-checkout.tar.gz: Create an archive of the current project directory. 3. current-repository.tar.gz: Create an archive of the current project directory along with the source repository metadata so that the archive is a full checkout of the project.
2013-04-23Merged with James's upstream.Nick Daly
Hope I did it right. If I screwed up, withsqlite is borked.
2013-03-23Updated links issue.Nick Daly
2013-03-23Unify authentication errors.Nick Daly
Give the same error if the username doesn't exist or if the password is wrong. If we deliver separate errors, we tell the attacker whether they've picked a valid password or not. Also, if username doesn't exist, hash the password anyway to avoid this timing side-channel attack: 1. Invalid Username: A. User tries to log in with invalid username. B. User name is not found in database. C. Password is never hashed. 2. Invalid Password: A. User tries to log in with valid username. B. User name is found in database. C. Password is hashed. Given that proper password hashing will take a minute, *not* hashing the password takes so much less time that we've effectively indicated to the attacker that the username didn't exist, regardless of the error message. This way, no such error occurs.
2013-03-23Don't crash if we couldn't import ExMachina.Nick Daly
2013-03-23Added "run make".Nick Daly
2013-03-23Build files are now stored in ./vendor/Nick Daly
2013-02-12template fiddling, but who cares. We're going to simplify that way down and ↵James Vasile
likely delete this file.
2013-02-12add text hidden typeJames Vasile
2013-02-12more intro screen workJames Vasile
2013-02-09remove order line (we don't need it). Don't require auth for firstbootJames Vasile
2013-02-09log the html root for debugging purposesJames Vasile
2013-02-09First boot hijacks root if neededJames Vasile
2013-02-09start to handle state storage and transitionJames Vasile
2013-02-09remove dead code, edit directions to user, minor bug fixJames Vasile
2013-02-09Make template handle columns, stop using many different versionsJames Vasile
* adjust template to remove nav and top menu for first boot * base on login_nav.tmpl * add login and nav to template * no need for two_cols, don't populate nav unless one exists
2013-02-09use 'with' construct to open fileJames Vasile
2013-02-09new commitsJames Vasile
2013-02-09resolve conflictJames Vasile
2013-02-09adjust name of sqlite file bc withsqlite will add the extensionJames Vasile
2013-02-09don't track backup text files, don't worry about cherrypy.configJames Vasile
2013-02-09Adjust how modules are importedJames Vasile
* change to u. notation for util, since from foo import * is evil * make import vendor.foo possible * vendor dir is part of the repo now, no need to mkdir * use the vendor.foo notation
2013-02-08Yay for first boot screensJames Vasile
* import withsqlite into plinth.py and start detecting first boot * new url page and start on forms * update license intro and (c) statement
2013-02-08added some more documentationJames Vasile
2013-02-07use my repoJames Vasile
2013-02-07add __init__.pyJames Vasile
2013-02-07Update withsqliteJames Vasile
2013-02-07bit of Makefile reorganizationJames Vasile
2013-02-07adjust makefile to use submodulesJames Vasile
2013-02-07add ex machina as a submoduleJames Vasile
2013-02-07add withsqlite as a subprojectJames Vasile
2013-02-07add missing pieces to make uninstallJames Vasile
2013-02-07remove some lies from READMEJames Vasile
2013-02-07quote the wildcards in rsync excludesJames Vasile
2013-02-07Don't set DESTDIR in the MakefileJames Vasile
See http://www.gnu.org/prep/standards/html_node/DESTDIR.html#DESTDIR
2013-02-07no need for this with the new cfg parsingJames Vasile
2013-02-07Fix paths in installed versionJames Vasile
* Read python.config from script dir * Make dirs for pid and run Maybe making DESTDIR/var/run during make install is not needed because we can expect the target system to have /var/run, but if it's missing the CherryPy engine will fail when it tries to write the pid. So I added it.
2013-02-07Fix CherryPy ConfigJames Vasile
* fixed improperly specified path * don't write cherrpy.config, just pass it as a dict
2013-02-07no need to write a cherryp.configJames Vasile
2013-02-07Makefile improvementsJames Vasile
* Remove commented out git pull lines. We shouldn't update so automatically. * Use rsync because it gives us --exclude * Put docs where the webserver can find them
2013-02-07put man page in place during make installJames Vasile
2013-02-06tell people to use the issue tracker if they want to complain about a 404James Vasile
2013-02-06silencing some things in MakefileJames Vasile
2013-02-06copy sample configJames Vasile
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-20 15:06:09 +0000