Commit graph

248 commits

Author SHA1 Message Date
dependabot[bot]
b0ae35f73a Bump rack from 1.6.11 to 1.6.12 (PR #713)
Bumps [rack](https://github.com/rack/rack) from 1.6.11 to 1.6.12.
- [Release notes](https://github.com/rack/rack/releases)
- [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rack/rack/compare/1.6.11...1.6.12)

Signed-off-by: dependabot[bot] <support@github.com>
2019-12-19 12:59:08 +00:00
dependabot[bot]
f84e111b79 Bump rack-cors from 1.0.3 to 1.0.6
Bumps [rack-cors](https://github.com/cyu/rack-cors) from 1.0.3 to 1.0.6.
- [Release notes](https://github.com/cyu/rack-cors/releases)
- [Changelog](https://github.com/cyu/rack-cors/blob/master/CHANGELOG.md)
- [Commits](https://github.com/cyu/rack-cors/compare/v1.0.3...v1.0.6)

Signed-off-by: dependabot[bot] <support@github.com>
2019-11-16 00:30:19 +01:00
Martin Meyerhoff
5d82f16c70 Lock SQLite3 to < 1.4 2019-11-12 06:51:24 +01:00
Patrick Gansterer
39aff78f11 Remove protected_attributes gem
We do not enforce the rules, so removing it and switching the existing
annotations to strong_parameters does not make our situation worse.
2019-10-29 18:09:24 +01:00
Patrick Gansterer
bee671c90e Remove deprecated and obsolete quiet_assets gem
As of sprockets-rails version 3.1.0 the same functionality can be
enabled via config.assets.quiet.
2019-10-29 09:40:22 +01:00
wvengen
6d9c35db20 Move to apparition for integration tests 2019-10-28 17:58:14 +00:00
wvengen
8823ca2060 Bundle update (except capybara) 2019-10-28 17:58:14 +00:00
wvengen
84319d2c1a Update midi-smtp-server and silence test messages 2019-10-28 17:58:14 +00:00
wvengen
f2cb17bcd6 Upgrade factory_bot, faker 2019-10-28 17:58:14 +00:00
wvengen
900cc91197 API documentation and spec setup 2019-04-03 17:08:38 +00:00
Tom Carchrae
0d9acd3082 localize without errors applying to non-string values 2019-04-03 17:07:46 +00:00
wvengen
bb4d9d132c Add missing explicit dependency (#640) 2019-03-27 16:50:12 +01:00
Patrick Gansterer
c56a936aea Bundle update (CVE-2018-16468, CVE-2018-16471, CVE-2018-16476) 2018-12-18 16:27:52 +01:00
wvengen
110c7cc3e9 API v1 user endpoint 2018-10-13 20:41:47 +02:00
wvengen
fd96b6ccc1
Prepare for API v1 (PR #570) 2018-10-13 20:16:35 +02:00
wvengen
d9ae0d11b0
Bundle update (CVE-2018-3760, requires Ruby 2.3, PR #561) 2018-10-13 20:04:00 +02:00
wvengen
6ee1ce51f0 Bundle update nokogiri rails-html-sanitizer (CVE-2017-15412, CVE-2018-3741) 2018-03-24 15:35:43 +01:00
wvengen
3afbeb1be3 Bundle update nokogiri sinatra (CVE-2017-15412, CVE-2018-7212) 2018-03-16 14:25:14 +01:00
wvengen
f5bea41ccf
Remove Capistrano (#491, PR #521) 2017-10-28 19:50:02 +02:00
wvengen
8a5c130875 Bundle update 2017-10-27 23:21:31 +02:00
Patrick Gansterer
da1ebe915c Use deface in wiki plugin 2017-10-26 21:23:51 +02:00
Patrick Gansterer
c3927e4013 Enable documents plugin by default 2017-10-12 20:46:39 +02:00
Patrick Gansterer
380bd62168 Bundle update #470 2017-10-09 22:23:23 +02:00
wvengen
5ca61dca82 Bundle update 2017-10-01 00:23:10 +02:00
Patrick Gansterer
185f682f6c Remove useless text from received mails via the email_reply_trimmer gem 2017-09-30 18:06:03 +02:00
Patrick Gansterer
7d594bf391 Move SMTP server from messages plugin into core 2017-09-30 13:44:04 +02:00
Patrick Gansterer
0edc780ec7 Add Discourse plugin 2017-09-22 13:58:00 +02:00
wvengen
6fddef354d Bundle update nokogiri and mail (CVE-2017-5029, CVE-2015-9097) 2017-07-31 23:32:19 +02:00
Robin Schneider
897d31e340 Install all dependencies in an authenticated way (https)
git:// is unauthenticated!!!
2017-04-10 09:26:33 +02:00
wvengen
240decb4f3 Relax deface version (fixes USN-3235-1) 2017-04-01 16:09:27 +02:00
wvengen
b857b10814 Fix specs after update (switching to webkit) 2017-04-01 15:18:56 +02:00
wvengen
ddf7402a3b Bundle update (includes CVE-2017-5946) 2017-04-01 15:18:56 +02:00
Patrick Gansterer
3a49e79548 Add mini-smtp-server gem dependency 2017-02-04 07:17:17 +01:00
wvengen
9e53b01ca3 Update Gemfile versions where it doesn't break things 2016-06-11 19:42:14 +02:00
wvengen
c2dc1d8697 Bundle update 2016-06-11 19:23:46 +02:00
Patrick Gansterer
749791bb7a Add possibility to add an attachment to an invoice #345 2016-05-06 15:04:58 +02:00
wvengen
2e2efec5e7 Get rid of coffeescript. 2016-04-25 20:34:30 +02:00
wvengen
61189dc035 Bundle update 2016-04-07 16:07:58 +02:00
Patrick Gansterer
4e35e2d58e Add handling for message reply via email
If the reply_email_domain configuration is set the messages plugin will
use unique Reply-To addresses for every email. They contain enough
information to reconstruct the message context and a hash to avoid
user forgery and spam.
A mail transfer agent must be configured to call the new rake task
foodsoft:parse_reply_email for incoming mails. The rake task requires
the receipt of the mail in the RECIPIENT variable and the raw message
via standard input. An example invocation would look like:
rake foodsoft:parse_reply_email RECIPIENT=f.1.1.HASH < test.eml
2016-03-04 18:11:27 +01:00
wvengen
9f919c3e54 Bundle update (for CVE-2016-2098) 2016-03-02 23:10:01 +01:00
wvengen
d6bf09b0b8 Fix failing tests 2016-02-18 23:52:07 +01:00
wvengen
a1a7bb02fe Bundle update 2016-02-01 16:41:52 +01:00
wvengen
73bd2c6a8e Bundle update nokogiri (fixes CVEs)
https://github.com/sparklemotion/nokogiri/pull/1378
2015-12-19 11:31:04 +01:00
wvengen
44ee63d156 Bundle update nokogiri 2015-11-26 11:54:26 +01:00
wvengen
61a5314b95 Bundle update 2015-09-05 15:09:37 +02:00
wvengen
9efa9d5d43 Handle errors using Gaffe 2015-07-21 00:08:17 +02:00
wvengen
ae4979a3f0 Lock protected_attributes version to make tests succeed (for now) 2015-07-20 23:55:44 +02:00
wvengen
faa69bfcca Bundle update 2015-07-20 23:04:16 +02:00
wvengen
49f2e505d0 Bundle update 2015-06-22 17:20:26 +02:00
wvengen
12dae9cee8 Use inherited_resources rubygem 2015-06-05 14:59:54 +02:00
wvengen
f5a7c4c90a Bundle update 2015-05-30 19:12:33 +02:00
wvengen
491ca00949 Update roo 2015-05-30 19:09:58 +02:00
wvengen
7f9c99f849 Use main ice_cube gem now feature is merged 2015-05-30 18:31:49 +02:00
wvengen
a34c462c59 Bundle update 2015-05-08 20:20:51 +02:00
wvengen
b3196e0a12 Use tokeninput as dependency 2015-05-08 17:56:08 +02:00
wvengen
f049da7573 Bundle update 2015-05-02 15:28:21 +02:00
wvengen
aa7a2a31ae Bundle update & restructure tests (RSpec 3) 2015-04-25 17:14:37 +02:00
wvengen
07ba6f0535 Import multiple spreadsheet formats. Make upload work like sync. 2015-04-11 02:52:57 +02:00
wvengen
3d964b7bcf Bundle update 2015-04-11 01:44:23 +02:00
wvengen
8d8a64d613 Bundle update 2015-03-20 17:16:50 +01:00
wvengen
987f14c226 Add missing gem (since Rails 4.2 upgrade) 2015-01-16 20:22:32 +01:00
wvengen
c31d015434 Bundle update (and fix spec that started failing) 2015-01-14 21:20:14 +01:00
wvengen
7bc9d0ede6 Upgrade to rails 4.2 2015-01-02 17:43:44 +01:00
wvengen
b080fb5fda bundle update 2014-12-15 21:15:47 +01:00
wvengen
7ac3f54709 bundle update 2014-12-10 20:07:26 +01:00
wvengen
a278004c11 Merge pull request #330 from foodcoops/feature/plugin-move
Move plugins to separate directory.
2014-12-02 23:37:22 +01:00
wvengen
219eb71bc9 Allow to specify an order schedule for new orders. 2014-11-23 00:38:13 +01:00
wvengen
6aa8ee7968 Move plugins to separate directory. 2014-11-22 00:43:24 +01:00
wvengen
6e990fed4c Upgrade to rails 4.1 2014-11-21 14:37:56 +01:00
wvengen
fe38e168bd bundle update 2014-10-16 20:57:44 +02:00
Benjamin Meichsner
4718255015 Updated selecium-webdriver to 2.43.0.
Works now with recent firefox/ubuntu.
2014-09-21 12:37:47 +02:00
wvengen
7a9dd4edec bundle update 2014-09-02 15:49:50 +02:00
wvengen
da2b5b54d0 fix pdf generation after last bundle update (complements 61a1efdfcf) 2014-09-02 15:41:43 +02:00
wvengen
21838e9c84 prepare for RSpec 3.0 2014-08-19 11:53:01 +02:00
wvengen
61a1efdfcf bundle update 2014-08-19 10:50:10 +02:00
wvengen
fcd2cd8713 update documentation generation 2014-06-23 17:51:20 +02:00
wvengen
b1d085c618 bundle update 2014-06-23 17:51:19 +02:00
wvengen
a43020463d normalize article and category attributes (closes foodcoops#294) 2014-06-23 17:51:19 +02:00
wvengen
06bed3698f upgrade rails-settings-cached & bundle update 2014-06-23 17:51:19 +02:00
wvengen
f2c755d2fb fix Gemfile (rspec would fail) 2014-06-23 17:51:18 +02:00
wvengen
8c0df3b4e8 edit order user-interface update
also closes foodcoops#145
2014-06-23 17:51:18 +02:00
wvengen
24b0628825 add yard documentation config 2014-06-23 17:51:18 +02:00
wvengen
ea2ae21923 bundle update 2014-06-23 17:51:18 +02:00
wvengen
caed27948d add meta_request gem for debugging 2014-05-17 16:01:17 +02:00
wvengen
f221af4992 bundle update (rails CVEs) 2014-05-13 17:01:27 +02:00
wvengen
0bbe5ebcee bundle update 2014-05-13 17:01:27 +02:00
wvengen
ce0ee6773a bundle update 2014-05-13 17:01:26 +02:00
wvengen
a12dbde671 bundle update 2014-05-13 17:01:25 +02:00
Robert Waltemath
7556c753d0 Extract message system to plugin. 2014-05-13 17:01:25 +02:00
wvengen
c25d4d3f4f use ruby-units for unit parsing (closes foodcoops/foodsoft#200)
Conflicts:
	Gemfile
	Gemfile.lock
2014-05-13 17:01:25 +02:00
wvengen
7841245795 migrate to Rails 4.0 (closes foodcoops#214)
Conflicts:
	Gemfile.lock
2014-02-24 12:46:28 +01:00
wvengen
775137f7c0 bundle update
Forcing rails to version 3.2.17 because of CVE-2014-0081
Forcing net-ssh to version 2.7.0 because of https://github.com/net-ssh/net-ssh/issues/148
2014-02-19 16:54:58 +01:00
wvengen
e88810e4a7 fix "Mysql2::Error: This connection is in use by" in spec for Rails 4
Conflicts:
	Gemfile
	Gemfile.lock
2014-02-10 15:58:52 +01:00
wvengen
ca234f0b70 deployment with Capistrano 3 (affects foodcoops#148) 2014-01-15 13:58:24 +01:00
wvengen
abb3770d08 bundle update 2014-01-08 14:39:17 +01:00
Manuel Wiedenmann
0d0ff90a64 adds an RSS feed for pages/all 2014-01-04 20:12:01 +01:00
wvengen
b4dfa50409 bundle update 2013-12-18 11:10:00 +01:00
wvengen
147365cba1 update coverage and use coveralls.io 2013-12-16 23:11:39 +01:00
wvengen
2408545496 bundle update (fixes rails vulnerability) 2013-12-04 21:07:50 +01:00
wvengen
8ac7cbf96f retry tests as a workaround for fragile integration tests (closes foodcoops#205) 2013-11-21 00:29:24 +01:00