Loay
bcc2d99a95
Invalidate sessions after email change
2016-09-19 10:24:30 -04:00
Miroslav Bajtoš
21ff383eb3
Fix double-slash in confirmation URL
...
Fix the code building the URL used in the email-verification email
to prevent double-slash in the URL when e.g. restApiRoot is '/'.
Before:
http://example.com//users/confirm ?...
Now:
http://example.com/users/confirm ?...
2016-09-13 08:52:49 +02:00
Miroslav Bajtoš
9a75ee6f30
Rework email validation to use isemail
...
Drop hand-crafted RegExp in favour of a 3rd-party module that supports
RFC5321, RFC5322 and other relevant standards.
2016-09-06 14:09:00 +02:00
Simon Ho
9db0682b07
Add remoting for KeyValue model TTL feature
2016-08-29 14:46:41 -07:00
Setogit
0f5136d072
Apply g.f to literal strings
2016-08-27 22:42:21 -07:00
Loay
5567917c12
Allow resetPassword if emailVerified
2016-08-26 13:11:42 -04:00
Benjamin Kroeger
4ff9a4c2ef
streamline use if `self`
2016-08-25 12:51:51 +02:00
Benjamin Kroeger
01c1656fc2
resolve related models from correct registry
...
Also modify setup of test servers when ACL was used, force the app
to `loadBuiltinModels` with localRegistry.
2016-08-25 12:51:29 +02:00
Miroslav Bajtoš
88e4de5341
KeyValueModel: add API for listing keys
...
- Expose "keys()" at "GET /keys"
- Add a dummy implementation for "iterateKeys" to serve a useful error
message when the model is not attached correctly.
2016-08-18 10:50:45 +02:00
Rand McKinney
01a9fa2ab2
Update acl.js
...
Fix typo in JS doc.
2016-08-16 10:14:17 -07:00
Miroslav Bajtoš
eec326dc80
Revert globalization of Swagger descriptions
2016-08-15 11:06:05 +02:00
Loay
7aebf0d132
Add bcrypt validation
2016-08-12 21:34:50 -04:00
Miroslav Bajtoš
a259e59afc
common: add KeyValueModel
2016-08-10 14:15:22 +02:00
Candy
bb9a1b5b24
Update globalization string
2016-08-05 15:49:43 -04:00
Candy
b52a7217a9
Add globalization
2016-08-04 15:08:16 -04:00
Miroslav Bajtoš
98816217c9
test: use local registry in test fixtures
...
Use local registry in test fixtures to prevent collision in globally
shared models.
Fix issues discoverd in auth implementation where the global registry
was used instead of the correct local one.
2016-07-27 10:07:49 +02:00
Loay
8f7e032a01
Update user.js
2016-07-25 00:55:55 -04:00
Loay
b53a22bfb3
Fix security issue 580
2016-07-22 17:48:57 -04:00
Loay
ec51e833b6
Fix verificationToken bug
2016-06-17 10:21:59 -04:00
Amir Jafarian
6502309e34
Expose `Replace*` methods
...
*Re-mapping `updateAttributes` endpoint to use
`PATCH` and `PUT`(configurable) verb
*Exposing `replaceById` and `replaceOrCreate` via
`POST` and `PUT`(configurable) verb
2016-06-10 14:56:44 -04:00
David Cheung
817e76e424
Remove unused UserModel properties
...
- credentials
- challenges
- status
- created
- lastUpdated
2016-05-10 14:29:08 -04:00
Simon Ho
363bc4d6c1
Merge pull request #2310 from ambrt/ambrt-patch-1
...
Update user.js
2016-05-09 12:30:17 -07:00
Candy
8ab6fccdea
Remove Change.handleError
2016-05-09 11:45:27 -04:00
Rik
341390a74e
Update user.js
...
allow to change all {href} instances in user.verify() mail into generated url instead of just one
2016-05-08 13:10:56 +02:00
Simon Ho
1559db2ca3
Merge pull request #2269 from supasate/feature/do-not-allow-duplicate-role-name
...
Add feature to not allow duplicate role name
2016-05-04 20:42:13 -07:00
Supasate Choochaisri
d4a869bddf
Add feature to not allow duplicate role name
...
Signed-off-by: Supasate Choochaisri <supasate.c@gmail.com>
2016-05-05 08:18:17 +07:00
Ryan Graham
6964914bab
update copyright statements
2016-05-03 15:50:21 -07:00
Miroslav Bajtoš
35d9fa4b54
Fix role.isOwner to support app-local registry
2016-05-03 14:01:39 +02:00
juehou
dcf88baf68
Resolver support return promise
2016-05-02 17:47:14 -04:00
Miroslav Bajtoš
f9702b0ace
Use eslint with loopback config
...
Drop jshint and jscs in favour of eslint.
Fix style violations.
While we are at this, reduce the max line length from 150 to 100.
2016-04-06 10:45:30 +02:00
Jue Hou
eb09681f21
promise docs
...
Add promise jsdoc in loopback
2016-04-04 12:35:35 -04:00
Candy
0e637962d5
Use new strong-remoting API
2016-02-05 11:11:38 -05:00
Jue Hou
d26d6ff3ed
Promisify Model Change
...
* Change.diff
* Change.findOrCreateChange
* Change.rectifyModelChanges
* Change.prototype.currentRevision
* Change.prototype.rectify
2016-02-04 11:05:23 -05:00
Miroslav Bajtoš
0ad150cb6e
Merge pull request #1851 from gausie/patch-4
...
Hide verificationToken from JSON output
2016-01-25 14:23:52 +01:00
Amir-61
c9be67e4d3
Merge pull request #1908 from strongloop/checkpoint_speedup
...
Checkpoint speedup
2016-01-19 10:25:15 -05:00
Samuel Gaus
2741d50342
Hide verificationToken
...
We should never be showing this publically.
Adds unit test for hiding verification token.
2016-01-12 15:48:03 +00:00
Jue Hou
865789017d
Fix description for User.prototype.hasPassword
2016-01-11 14:28:10 -05:00
Amir Jafarian
08a2786b04
Checkpoint speedup
2016-01-09 01:56:13 -05:00
Miroslav Bajtoš
1b765922c9
Merge pull request #1860 from strongloop/fix/replication-performance
...
Fix replication performance
2015-12-08 19:32:57 +01:00
Miroslav Bajtoš
62d2b0bf0d
change: skip cp lookup on no change
...
Modify `Change.rectify` to look up the current checkpoint only when
there was actually some change made.
This should improve the performance of `rectifyAll` when called from a
regular timer and there were no changes made since the last call.
Before this commit, `rectifyAll` would perform N calls of
`Checkpoint.current` where N is the number of model instances. With
this commit in place, no call is made.
2015-12-08 17:54:26 +01:00
Miroslav Bajtoš
6d040a98ae
Merge pull request #1804 from richardpringle/master
...
Add case-sensitive email option for User model
2015-12-08 12:47:58 +01:00
Miroslav Bajtoš
d2aaca7460
Change: correctly rectify no-change
...
Modify `Change.rectify()` to not make any changes to the Change instance
(most notably to not modify the `checkpoint` field) when the tracked
model instance was not changed.
This should improve the performance of change replication as it reduces
the number of unnecessary replications.
For example, before this commit, every run of `rectifyAll` would
trigger a full sync of all clients, because all change instances would
be moved to the current checkpoint.
2015-12-07 14:13:25 +01:00
David Cheung
c4917819af
Adding properties description for User Model
...
- Added description for `realm` `created` `lastUpdated` `status`
- End of line for descriptions to be peroid
2015-12-04 14:55:01 -05:00
Richard Pringle
2cca83c4ff
Add case-sensitve email option for User model.
2015-12-03 13:18:49 -05:00
Simo Moujami
403e677155
Fix user.resetPassword to fail on email not found
2015-11-02 12:55:24 +01:00
Samuel Gaus
351b8026a0
Do not include redundant ports in verify links
...
If the protocol and port match we can ignore the port for a more
visually appealing link.
2015-10-12 16:24:30 +02:00
wusuopu
ce48521efb
Set application's id property only if it's empty.
...
Fix `Application.resetKeys()` to reset instance id only if it is not
already set. This fixes a bug where each call of resetKeys created
a new instance.
2015-10-12 11:23:33 +02:00
Felipe Oliveira Carvalho
355ff8ee41
Update comment about user ACL to reflect implementation
2015-09-11 21:57:55 -03:00
Farid Nouri Neshat
1cc25923a7
Fix options.to assertion message in user.verify
2015-08-27 00:25:09 +08:00
Raymond Feng
06cece038e
Merge pull request #1584 from strongloop/feature/add-more-acl-utils
...
Enhance the ACL related models
2015-08-13 09:00:32 -07:00