Permalink
Commits on Nov 1, 2012
Commits on Oct 30, 2012
  1. Make working with the Zendesk API more practical

    jamiecobbett committed Oct 30, 2012
    This should allow developers/designers to keep the working
    production credentials (needed to view almost every page) in
    their local checkout, without it being committed and published.
  2. Make all of the forms actually work

    jamiecobbett committed Oct 30, 2012
    From the point where we moved to Rails, the forms weren't working
    outside of automated tests. This is because we didn't have the CSRF
    token set inside each form, but - unless you were paying close attention
    - it looked like it had succeeded because the CSRF error triggered
    an OAuth loop which ended in the user being shown the homepage, rather
    than any kind of error.
    
    By using the form_tag helper, we get the CSRF token (authenticity_token)
    and UTF8 detection magic to boot.
Commits on Oct 22, 2012
Commits on Oct 19, 2012
  1. Completely remove file upload support

    jamiecobbett committed Oct 19, 2012
    Previously, we'd just deleted the form elements. This
    wouldn't prevent a malicious request from uploading a
    malicious file attachment. So let's remove all upload/
    attachment support so that it can't (plus it was code
    that was "dead" from an intended execution perspective.
Commits on Oct 18, 2012
  1. Merge pull request #1 from alphagov/sso_on_rails

    john-griffin committed Oct 18, 2012
    Use gds-sso, but without any permissions
  2. Use gds-sso, but without any permissions

    jamiecobbett committed Oct 18, 2012
    This means that to be able to use the app, you must have an active
    signonotron2 account. We can't support permissions, but that's OK,
    we don't need to.
  3. Add unicorn

    john-griffin committed Oct 18, 2012
  4. Add jenkins script

    john-griffin committed Oct 18, 2012
  5. Add useful README

    jamiecobbett committed Oct 18, 2012
Commits on Oct 17, 2012
  1. Add publish tool action

    john-griffin committed Oct 17, 2012
  2. Add general form

    john-griffin committed Oct 17, 2012
  3. Add campaign action

    john-griffin committed Oct 17, 2012
  4. Don't use development credentials in test mode

    jamiecobbett committed Oct 17, 2012
    Reduce the chance of working credentials getting into test stubs.
  5. Test GET create_user

    jamiecobbett committed Oct 17, 2012
  6. Add remove user support

    john-griffin committed Oct 17, 2012