github/reddit
1
1
Fork 0
mirror of https://github.com/reddit-archive/reddit.git synced 2026-01-25 23:08:22 -05:00
Code Issues Packages Projects Releases Wiki Activity
3,812 Commits 1 Branch 0 Tags
bb8f4b1b57274ca7723c8a0ffee6fcfccf5f7ff8
Commit Graph

3812 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Max Goodman
bb8f4b1b57 password reset: Validate token before affecting user session. 
Thanks to /u/largenocream for reporting this.
 2013-11-21 16:02:52 -08:00
Max Goodman
00df060e47 multis: Add missing VModhash to PUT_multi_description. 
Thanks to /u/largenocream for reporting this.
 2013-11-21 16:02:42 -08:00
Max Goodman
2e9383e582 Remove dead client side cnameframe parameter. 
Thanks to /u/largenocream for reporting this.
 2013-11-21 16:02:33 -08:00
Max Goodman
54548ee34c js.py: Handle languages for which translations do not exist. 
This helps when testing language subdomains that aren't translated
locally.
 2013-11-21 16:01:51 -08:00
Max Goodman
dfe8359246 Prevent policy page date from wrapping mid-line. 2013-11-21 16:01:51 -08:00
Andre D
3b0bf9d755 Fix vulnerabilities in setting friend and ban notes. 
Thanks to /u/largenocream for reporting this.
 2013-11-20 10:33:48 -08:00
Neil Williams
9f5a48f97f Don't allow non-admins to even generate admin cookies. 
They weren't usable due to the checks in reddit_base, but it's safer to
not even generate 'em.

Thanks to /u/largenocream for reporting this.
 2013-11-20 10:33:43 -08:00
Max Goodman
7547315410 Count CORS request origin stats. 2013-11-19 16:51:04 -08:00
Max Goodman
15dceb4f62 Allow CORS requests for unauthenticated JSON resources. 2013-11-19 16:51:04 -08:00
Max Goodman
cb24083a32 js.py: Remove LocalizedModule dependency on strings.py. 
Since strings now get sourced from gettext-style markings rather than
strings.py, this is no longer needed.
 2013-11-19 16:51:04 -08:00
Max Goodman
75719fdde4 Remove old dragonage static files. 2013-11-19 16:51:04 -08:00
Max Goodman
9e6deebb6f Add temporary Secret Santa sidebar link. 2013-11-19 16:51:04 -08:00
Max Goodman
ba55a6e68f Parameterize SideBox link target attribute. 2013-11-19 16:51:04 -08:00
Brian Simpson
b557e1297e StripeController: add handling for charge dispute events. 2013-11-19 09:55:48 -05:00
Brian Simpson
954b8b1147 GoldSubscription: use correct check for paypal subscription. 2013-11-19 09:55:48 -05:00
Brian Simpson
0a623d87c4 StripeController: don't raise exception for recent charges. 2013-11-19 09:55:42 -05:00
Brian Simpson
5943242ad7 analytics: run on comments pages for promote links. 2013-11-19 09:54:44 -05:00
Brian Simpson
794f4175b4 PromoteReport: PromoCampaign end_date is not inclusive. 2013-11-19 09:54:44 -05:00
Brian Simpson
4f63023747 get_total_run: Fix handling for house campaigns. 2013-11-19 09:54:44 -05:00
Brian Simpson
ccf4c9c2c4 Gold: redirect to subscription page if use tries to resubscribe. 2013-11-19 09:54:44 -05:00
Brian Simpson
b9d932d233 Don't allow multiple gold subscriptions. 2013-11-19 09:54:44 -05:00
Brian Simpson
64bffb2903 StripeController: don't cancel subscription if the charge was attempted. 2013-11-19 09:54:44 -05:00
Brian Simpson
dcecc09aa6 ProfileBar: attribute is 'paypal_subscr_id'. 2013-11-19 09:54:44 -05:00
Brian Simpson
42bf5b2ced StripeController: handle charge.failed with insufficient information. 2013-11-19 09:54:44 -05:00
Brian Simpson
0d0ac728eb StripeController: handle exception when customer isn't found. 2013-11-19 09:54:44 -05:00
Brian Simpson
210dd1b3fe Store stripe customer id in Account.gold_subscr_id. 
We need to do lookups of Account by stripe customer id and
gold_subscr_id has an index. Previously was using a new attribute
stripe_customer_id which didn't have an index and lookups were too
slow.
 2013-11-19 09:54:44 -05:00
Brian Simpson
1784c60562 GoldPaymentController: secret code must be unique. 
create_claimed_gold attempts to create a row in the gold table and
will fail if secret is not unique.
 2013-11-19 09:54:44 -05:00
Brian Simpson
d6e2425284 StripeController: fix typo in cancel_subscription. 2013-11-19 09:54:44 -05:00
Brian Simpson
b824f80810 StripeController: handle case where description is None. 2013-11-19 09:54:33 -05:00
Neil Williams
5dc0e7e367 Factor activity fuzzing out of Subreddit.get_accounts_active. 
This allows liveupdate to reuse the same code.
 2013-11-19 14:33:28 -08:00
Neil Williams
0e7758db89 Remove unused util interleave_lists. 2013-11-19 14:33:19 -08:00
Neil Williams
c3c2f200fc read_secrets: Don't transform INI options on output. 2013-11-19 12:43:28 -08:00
Francesco Frassinelli
f7c2ebb6ef Added missing netcat dependency 
netcat is needed (tested on Ubuntu 12.04.3 LTS x86_64)
 2013-11-19 12:16:58 -08:00
Neil Williams
3366083663 Create a vault for secret tokens and move some into it. 
This is intended to reduce the number of critical secrets stored in the
INI file.  An initial subset of secrets is moved into the vault to test
things out.
 2013-11-19 12:16:58 -08:00
Neil Williams
342ad24409 Factor out INI file parsing into util. 2013-11-19 12:16:58 -08:00
Brian Simpson
484ac3b850 CassandraCache: convert 0 time to None ttl. 2013-11-15 05:00:14 -05:00
Brian Simpson
7a0b633c73 GoldSubscription: convert pennies to a float before doing math on it. 2013-11-15 05:00:14 -05:00
Brian Simpson
2315e77e6d Raise NotFound if full name type is not thing or relation. 2013-11-15 05:00:14 -05:00
Brian Simpson
d2d325ce7f CreditGild needs a value for period. 2013-11-15 05:00:14 -05:00
Brian Simpson
929e1db472 Need to use hasattr to check for stripe_customer_id. 2013-11-15 05:00:14 -05:00
Brian Simpson
5c64272668 complete_gold_purchase is a classmethod of GoldPaymentController. 2013-11-15 05:00:14 -05:00
Brian Simpson
1a03651dee Don't allow multiple gold subscriptions on an account. 2013-11-15 05:00:14 -05:00
Brian Simpson
19d9968455 Don't PM users with gold subscription about expiration. 2013-11-15 05:00:14 -05:00
Brian Simpson
89ffb73378 Renable submit button on all stripe exceptions. 2013-11-15 05:00:14 -05:00
Brian Simpson
a0d39d680e Stripe gold subscriptions. 2013-11-15 05:00:14 -05:00
Brian Simpson
8db4d6721a Show a status message immediately when user submits credit card. 2013-11-15 05:00:14 -05:00
Brian Simpson
e20e9eb7a0 ipn: move state to Webhook object. 2013-11-15 05:00:02 -05:00
Brian Simpson
89f6f1ad9c Delete cython versions of normalized_hot. 2013-11-14 02:09:21 -05:00
Brian Simpson
82a1e0dde7 find_preview_comments/links: use sr rather than c.site. 2013-11-14 02:09:21 -05:00
Brian Simpson
380140f0aa Use sgm to cache each subreddit's normalized_hot links. 2013-11-14 02:09:14 -05:00