growstuff

mirror of https://github.com/Growstuff/growstuff.git synced 2026-03-30 20:51:23 -04:00

Author	SHA1	Message	Date
pozorvlak	24dd02a439	Merge pull request #829 from CloCkWeRX/upgrade_db_cleaner Upgrade database cleaner gem	2015-09-23 21:17:14 +01:00
Daniel O'Connor	83929cc8ee	Add the ability to run feature tests via selenium if you configure it, or run specs with GROWSTUFF_CAPYBARA_DRIVER=selenium bundle exec rake spec:features/	2015-09-15 11:28:30 +09:30
Daniel O'Connor	be87d2861a	Upgrade database cleaner gem, so that https://github.com/DatabaseCleaner/database_cleaner/pull/364 is available to us.	2015-09-15 10:29:29 +09:30
Daniel O'Connor	cafd49c143	Name: jquery-rails Version: 3.1.2 Advisory: CVE-2015-1840 Criticality: Unknown URL: https://groups.google.com/forum/#!topic/ruby-security-ann/XIZPbobuwaY Title: CSRF Vulnerability in jquery-ujs and jquery-rails Solution: upgrade to >= 4.0.4, ~> 3.1.3	2015-08-12 16:59:14 +09:30
Daniel O'Connor	7c7c66348c	Name: rest-client Version: 1.7.2 Advisory: CVE-2015-3448 Criticality: Unknown URL: http://www.osvdb.org/show/osvdb/117461 Title: Rest-Client Gem for Ruby logs password information in plaintext Solution: upgrade to >= 1.7.3 Name: rest-client Version: 1.7.2 Advisory: CVE-2015-1820 Criticality: Unknown URL: https://github.com/rest-client/rest-client/issues/369 Title: rubygem-rest-client: session fixation vulnerability via Set-Cookie headers in 30x redirection responses Solution: upgrade to >= 1.8.0	2015-08-12 16:57:58 +09:30
Daniel O'Connor	00ae4ed49f	Name: paperclip Version: 4.2.1 Advisory: CVE-2015-2963 Criticality: Medium URL: https://robots.thoughtbot.com/paperclip-security-release Title: Paperclip Gem for Ruby vulnerable to content type spoofing Solution: upgrade to >= 4.2.2	2015-08-12 16:23:48 +09:30
Daniel O'Connor	7b30c4237b	Name: activesupport Version: 4.1.9 Advisory: CVE-2015-3227 Criticality: Unknown URL: https://groups.google.com/forum/#!topic/rubyonrails-security/bahr2JLnxvk Title: Possible Denial of Service attack in Active Support Solution: upgrade to >= 4.2.2, ~> 4.1.11, ~> 3.2.22 Name: activesupport Version: 4.1.9 Advisory: CVE-2015-3226 Criticality: Unknown URL: https://groups.google.com/forum/#!topic/ruby-security-ann/7VlB_pck3hU Title: XSS Vulnerability in ActiveSupport::JSON.encode Solution: upgrade to >= 4.2.2, ~> 4.1.11	2015-08-11 10:28:07 +09:30
Anthony Atkinson	bc9a025788	Merge branch 'dev' into notification_pagination	2015-08-01 11:38:01 -04:00
Anthony Atkinson	cbb50df8d0	Resolved #562 - Pagination of notifications.	2015-07-25 13:18:30 -04:00
Anthony Atkinson	fad9eddbc4	Addition of guard gem to assist in quicker testing.	2015-07-22 16:00:45 -04:00
AELOGICA	0816b6b114	Added link to owner's profile from seeds', plantings', and harvests' index	2015-07-13 10:42:06 +08:00
gabrielsandoval	f73bb81eb6	Made sunniness icons transparent	2015-07-10 11:17:11 +08:00
Miles Gould	8ce7c25374	Upgrade poltergeist to v1.6. Poltergeist v1.5.1 is nearly a year old, and relies on PhantomJS 1.8, which is 2.5 years old and increasingly hard to find in OS package managers.	2015-05-06 12:15:22 +01:00
Mackenzie Morgan	1f23e1a646	merge from upstream	2015-02-01 22:08:28 -05:00
Mackenzie Morgan	7ca89908cd	merge from upstream	2015-02-01 22:00:52 -05:00
Mackenzie Morgan	6aa37e6e26	adding CMS via comfortable mexican sofa gem	2015-02-01 00:27:04 -05:00
Shiho Takagi	2aa30475e9	merge	2015-02-01 00:14:52 +11:00
Mackenzie Morgan	d436fd86f8	use ruby-units to handle conversion. note: the deploy task isn't working and i don't know why	2015-01-31 00:22:35 -05:00
pozorvlak	d5cc3f300a	Merge pull request #664 from pozorvlak/travis_containers Deployment from Travis containers	2015-01-23 11:00:11 +00:00
Miles Gould	531a0bd9ea	Roll our own heroku maintenance:(on\|off) script This allows us to use maintenance mode without installing the full Heroku toolbelt, which we can't do on the (much faster!) container-based infrastructure. We add a (temporary) deployment to my sandbox from the travis_containers branch: muckingabout with one branch for both container-based and VM-based approaches was starting to get confusing.	2015-01-21 00:36:47 +00:00
Rocky Jaiswal	7950c577e9	Add quiet_assets to reduce noise in dev environment.	2015-01-20 19:45:29 +01:00
Shiho Takagi	b4cd151a03	merge from upstream	2015-01-17 14:09:45 +11:00
Rocky Jaiswal	31a7011260	update to latest patch on rails 4.1	2015-01-15 15:25:21 +01:00
Shiho Takagi	ba3a1f6298	Integrate Elasticsearch and implement crop search against scientific_name	2015-01-15 19:28:28 +11:00
Taylor Griffin	007f7112a7	replaced caching using observers with a key-based (and simplified) caching system	2014-12-19 21:17:43 +11:00
Taylor Griffin	a35a573b2b	update follow member code to be rails 4 compatible	2014-12-14 14:51:18 +11:00
Miles Gould	c446ea9232	Upgrade libv8 to v3.16.14.7. The old version was breaking `bundle install` on OS X.	2014-12-13 11:56:18 +00:00
Miles Gould	4b90f6385b	Merge branch 'dev' into load_alternate_names Conflicts: Gemfile.lock script/deploy-tasks.sh	2014-12-01 10:47:10 +00:00
Taylor Griffin	c83b01bbb7	catch up with dev	2014-11-18 22:59:43 +11:00
Taylor Griffin	fb595de457	edited configuration and dependencies	2014-11-18 22:24:58 +11:00
Taylor Griffin	acbd3f9a9e	implement strong parameters instead of protected attributes	2014-11-18 20:08:54 +11:00
Taylor Griffin	56b4f8a221	mimick old FriendlyId behavior when calling find on a model - therefore, Model.find not Model.friendly.find (this probably needs review)	2014-11-16 20:21:34 +11:00
Taylor Griffin	868e5c2079	upgrade jquery-ui-rails gem and config	2014-11-16 12:41:57 +11:00
Taylor Griffin	8e79199766	wip: upgrading rspec	2014-11-15 22:55:37 +11:00
Taylor Griffin	40a88b5b09	tests run but fail like whoa	2014-11-15 21:44:55 +11:00
Skud	68dfdbeba1	Merge branch 'finish-plantings-javascript' of github.com:tygriffin/growstuff into tygriffin-finish-plantings-javascript Conflicts: Gemfile Gemfile.lock	2014-11-13 10:57:55 +11:00
Taylor Griffin	f8df8803ab	catch up with upstream dev	2014-11-11 19:57:16 +11:00
Taylor Griffin	af9aa690ba	Merge branch 'dev' of https://github.com/Growstuff/growstuff into finish-plantings-javascript	2014-11-11 18:37:30 +11:00
pozorvlak	24d276da37	Merge pull request #420 from Skud/plantingreminder Planting reminder	2014-11-07 14:31:43 +00:00
Taylor Griffin	9b10a7c3ce	write shared example group for append date	2014-10-23 22:18:52 +11:00
Taylor Griffin	f62ce257da	catch up with upstream dev	2014-10-23 19:00:55 +11:00
Taylor Griffin	e9d1d11535	add append date functionality for planting finished on garden show page and planting list page	2014-10-21 19:43:51 +11:00
Taylor Griffin	c244da8b73	make English fallback language	2014-10-21 07:24:08 +11:00
Taylor Griffin	a6508b5c9f	replace debugger with byebug	2014-10-20 22:47:13 +11:00
Miles Gould	af87c9db47	Remove debugger gem It wouldn't install under Ruby 2.1.2, and we weren't using it anyway.	2014-10-19 17:24:18 +01:00
Skud	9ededef54d	Added tests for content of planting reminder email	2014-10-18 14:00:22 +01:00
Skud	f18feaa131	Merge branch 'dev' of https://github.com/Growstuff/growstuff into plantingreminder	2014-10-18 11:23:30 +01:00
pozorvlak	41d63f8f92	Merge pull request #417 from tygriffin/I18n I18n	2014-10-18 11:11:25 +01:00
Skud	8e6a57c442	Attempt at writing tests for planting reminder email (Test are broken) OK, so I decided to use the capybara_email gem to write these tests. It's basically working but there's a problem with the has_link matcher. Basically the emails sent by ActionMailer have URLs like http://localhost:8080... whereas the tests asking for planting_url() or similar are looking for http://example.com... I don't understand AT ALL why there is this discrepancy, but it looks like ActionMailer is using the settings from the development environment, instead of the testing environment. WHYYYYYY??? I'm pushing this up so that maybe someone else can figure it out, because I'm stumped.	2014-10-15 15:52:13 +01:00
Taylor Griffin	d1e0bdb534	toggling planting finished clears the finished at field or populates it with a cached value	2014-10-12 09:53:09 +11:00

1 2 3 4

163 Commits