darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2025-12-24 09:21:39 -05:00
Code Issues Packages Projects Releases Wiki Activity
2,146 Commits 128 Branches 60 Tags
3d8a58deabfcef13cdbfdd298564b1b16367d329
Commit Graph

2146 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Leo Hemsted
3d8a58deab Merge pull request #837 from alphagov/session-id 
Add current_session_id to the user model, update on login
 2017-02-24 13:50:46 +00:00
Leo Hemsted
2cc7a684e2 Merge pull request #840 from alphagov/xpass 
make xpass fail the test run
 2017-02-24 13:50:31 +00:00
imdadahad
374272de9a Merge pull request #839 from alphagov/revert-831-feat-install-all-wheels-offline 
Revert "Ensure all wheels are installed offline from the wheelhouse directory"
 2017-02-23 17:44:37 +00:00
imdadahad
2548deaae2 Merge pull request #841 from alphagov/fix-update-boto3 
Update boto3
 2017-02-23 17:31:35 +00:00
Imdad Ahad
9ab6d4c68b Update boto3 2017-02-23 17:21:15 +00:00
Leo Hemsted
b296bcaf34 make xpass fail the test run 2017-02-23 16:50:04 +00:00
imdadahad
4ac6043701 Revert "Ensure all wheels are installed offline from the wheelhouse directory" 2017-02-23 16:43:09 +00:00
imdadahad
1254008e2e Merge pull request #831 from alphagov/feat-install-all-wheels-offline 
Ensure all wheels are installed offline from the wheelhouse directory
 2017-02-23 15:58:12 +00:00
Andras Ferencz-Szabo
d30d0ede1e Merge pull request #838 from alphagov/fix_api_host_name 
Remove explicit api_host_name vars from the envs
 2017-02-23 11:34:21 +00:00
bandesz
e3cb908c1a Remove explicit api_host_name vars from the envs 2017-02-23 11:22:58 +00:00
Leo Hemsted
a47672f7e3 Add current_session_id to the user model, update on login 
when we change the last logged in time, set the current session id to
a random uuid

this way, we can compare it to the cookie a user has, and if they
differ then we can log them out

also update user.logged_in_at at 2FA rather than password check, since
that feels more accurate
 2017-02-22 17:30:55 +00:00
imdadahad
978d99f708 Merge pull request #836 from alphagov/fix-remove-old-wheelhouse-contents 
Delete old wheels on build
 2017-02-20 16:01:56 +00:00
Leo Hemsted
312c87cdf1 Merge pull request #832 from alphagov/gsm 
bump utils to 13.6.0 - downgrade non-gsm chars on sms send
 2017-02-20 14:13:10 +00:00
bandesz
9082aeffa3 Make Docker container names unique for PaaS deployment 2017-02-20 13:21:40 +00:00
Imdad Ahad
28944e3952 Delete old wheels on build 2017-02-20 13:09:30 +00:00
bandesz
e5ba8cf02b Fix PaaS deploy in Jenkinsfile 2017-02-20 13:03:19 +00:00
imdadahad
0ac363471b Merge pull request #835 from alphagov/fix-code-deploy-artifact 
Remove target dir before build and include any dotfiles in the zips
 2017-02-20 12:00:38 +00:00
Leo Hemsted
90dab2a32a bump utils to 13.8.0 
brings in character downgrading in SMS previews
 2017-02-20 11:56:32 +00:00
Chris Hill-Scott
22aeb5455c Merge branch 'master' into gsm 2017-02-20 10:13:53 +00:00
Imdad Ahad
952110577f Remove target dir before build and include any dotfiles in the zips 2017-02-20 10:09:59 +00:00
Chris Hill-Scott
87a794b471 Merge pull request #833 from alphagov/bump-utils-no-markdown-links 
Bump utils to turn off Markdown links
 2017-02-17 16:30:52 +00:00
Chris Hill-Scott
7775a36cf3 Merge pull request #821 from alphagov/remove-weekly-stats-endpoints 
Remove weekly stats endpoints
 2017-02-17 14:53:44 +00:00
Leo Hemsted
1dbec34cf9 Merge pull request #834 from alphagov/reset-2fa 
ensure we reset failed_login_count when appropriate
 2017-02-17 11:45:10 +00:00
Leo Hemsted
c30b4d00e7 bump utils to 13.6.0 - downgrade non-gsm chars on sms send 
also refactor test_send_to_providers to use the shiny new db.py
create_*db obj* functions and clean up some of the fixture usage
 2017-02-17 11:26:43 +00:00
Leo Hemsted
0515c51475 replace notify_api with client fixture in user/test_rest.py 2017-02-17 11:02:28 +00:00
Chris Hill-Scott
43173870cb Bump utils to turn off Markdown links 2017-02-17 10:18:52 +00:00
Andras Ferencz-Szabo
ce1fac63ec Merge pull request #828 from alphagov/paas_awslogs 
Add awslogs logging for PaaS
 2017-02-17 09:28:39 +00:00
Leo Hemsted
521872ce63 update_user now resets failed_login_count if password is changed 
until work is done to stop using PUT /user/{id} on the admin app, this
function also needs to reset failed logins, cos it's used during the
forgotten password flow
 2017-02-16 17:39:47 +00:00
bandesz
72dc93c6db Add awslogs logging for PaaS 2017-02-16 17:38:30 +00:00
Leo Hemsted
ac9739f8a2 ensure we reset failed_login_count when appropriate 
in verify_user_password, if succesful we reset the failed_login_count.
now we use failed_login_count for 2FA attempts, we need to make sure we
reset it in other places too, so that people don't get blocked,
especially in the reset-password user journey.

* verify_user_code - if it's succesful, reset the failed_login_count
* update_password - reset failed_login_count because either
  * you're logged in and so it's 0 anyway
  * you're resetting your password via pword reset link, and the old
    count isn't relevant anymore
 2017-02-16 16:00:40 +00:00
Leo Hemsted
d0424e319c Merge pull request #827 from alphagov/stronger-2fa-security 
Set the expiry time on a verify code (2fa) to 10 minutes.
 2017-02-16 13:11:12 +00:00
Leo Hemsted
b4036e062d rework query to use count() 2017-02-16 12:44:40 +00:00
Rebecca Law
ed4b9d34a6 Changes as per code review comments. 
Fix my backward date math :P
 2017-02-15 17:41:07 +00:00
Imdad Ahad
79ae0219e6 Ensure all wheels are installed offline from the wheelhouse directory 2017-02-15 16:57:44 +00:00
Rebecca Law
52342afe3f Add a limit to the number of active 2fa codes that we create. At the moment that is set to 10. 2017-02-15 16:18:05 +00:00
Rebecca Law
9de88c50ba Remove test for resetting the failed_login_count, the admin app will request that. 2017-02-15 15:24:42 +00:00
Rebecca Law
c4bf7a1331 Merge branch 'master' into stronger-2fa-security 2017-02-15 14:20:32 +00:00
Rebecca Law
f2cb5bc699 Merge pull request #830 from alphagov/fix-redis-cache 
Redis cache bug fix when incrementing the cache
 2017-02-15 12:19:03 +00:00
Rebecca Law
07fc71cc4c Fix codestyle 2017-02-15 11:59:31 +00:00
Rebecca Law
74e29708f9 Fix bug where the increment calls set count to 1 if the cache does not exist. 2017-02-15 11:49:19 +00:00
imdadahad
01dcb52389 Merge pull request #825 from alphagov/fix-clear-instance-before-deploy 
Remove app and py3 packages on codedeploy-ment
 2017-02-15 10:54:39 +00:00
Rebecca Law
6674640330 Removed resetting of the login count 2017-02-15 10:54:09 +00:00
Rebecca Law
fb8d3c58d8 Merge pull request #826 from alphagov/add-template-usage-cache 
Add template usage cache
 2017-02-14 16:07:11 +00:00
Rebecca Law
53b7ad0961 Moved the cache key to the utils module. 
Renamed the dao method.
 2017-02-14 14:22:52 +00:00
Rebecca Law
5f48367ee5 Set the expiry time on a verify code (2fa) to 10 minutes. 
When the verify code is wrong or expired increment the failed to login count for the user.
When the verify code is successfully used reset the failed login count to 0.
 2017-02-14 14:04:11 +00:00
Imdad Ahad
2e4b09154e Remove verbose logging of directory creation 2017-02-14 11:37:47 +00:00
Imdad Ahad
5ac3643d9d Cancel uninstalling all py3 packages 2017-02-14 11:36:38 +00:00
Rebecca Law
1c6cfb9bc8 Got the SqlAlchemy query to work 2017-02-14 11:05:23 +00:00
Rebecca Law
681f52b691 Missed some print statements and unused imports. 2017-02-14 09:59:33 +00:00
Rebecca Law
2346634fec Some code clean up, removed print statements. 2017-02-14 09:54:37 +00:00