Permalink
Commits on Apr 12, 2017
  1. Merge branch 'release/0.18.3'

    ralphbean committed Apr 12, 2017
  2. 0.18.3

    ralphbean committed Apr 12, 2017
Commits on Apr 7, 2017
  1. Merge pull request #406 from ralphbean/feature/no-env-validation

    Remove env validation.
    ralphbean committed on GitHub Apr 7, 2017
Commits on Apr 6, 2017
  1. Remove env validation.

    We have a case where we want the environment to be something other than dev,
    stg, or prod.  I figure there's not really a reason to enforce any convention
    in the code like this.
    ralphbean committed Apr 5, 2017
  2. Merge pull request #405 from ralphbean/feature/fix-test-mock

    Fix a mock used by the test suite.
    ralphbean committed on GitHub Apr 6, 2017
Commits on Apr 5, 2017
Commits on Mar 14, 2017
  1. Merge pull request #402 from fedora-infra/feature/backlog-validation

    Remove artifical keys from datagrepper backlog to pass validation.
    ralphbean committed on GitHub Mar 14, 2017
  2. Remove artifical keys from datagrepper backlog to pass validation.

    Today, when fedmsg-hub starts up, it tries to read in its backlog of
    messages from datagrepper in case it missed anything.  It successfully
    gets the list, but then every single one of the messages fails
    validation.
    
    There's a gist here that demonstrates what needs to happen to make this
    work:  https://gist.github.com/ralphbean/b532ad3bc4a8333fa03d4e4e48451885
    
    There are two changes required.  This one here, in fedmsg, and another in
    fedora-infra/datanommer#87.
    ralphbean committed Mar 14, 2017
Commits on Jan 18, 2017
  1. Merge pull request #395 from fedora-infra/feature/no-relay-producers

    Fedmsg-relay shouldn't run producers.
    ralphbean committed on GitHub Jan 18, 2017
  2. Fedmsg-relay shouldn't run producers.

    If another package happens to be installed in the system, running
    `fedmsg-relay` shouldn't inadvertently start that thing.
    ralphbean committed Jan 18, 2017
Commits on Jan 12, 2017
  1. 0.18.2

    puiterwijk committed Jan 12, 2017
  2. Fix validation logic in the base consumer

    The base consumer is intended to only derive its validation switch from the
    on-disk configuration if the child class doesn't override the
    validate_signatures switch.
    
    There was a bug here where the default value provided in the base class made it
    appear as if *all* child consumers had turned *off* validation, which is
    incorrect.
    
    This fix turns on signature validation by default while preserving the ability
    of child consumers to override the on-disk configuration in special cases.
    
    Fixes: CVE-2017-1000001
    Reviewed-by: Patrick Uiterwijk <puiterwijk@redhat.com>
    ralphbean committed with puiterwijk Jan 12, 2017
  3. 0.18.2

    puiterwijk committed Jan 12, 2017
  4. Fix validation logic in the base consumer

    The base consumer is intended to only derive its validation switch from the
    on-disk configuration if the child class doesn't override the
    validate_signatures switch.
    
    There was a bug here where the default value provided in the base class made it
    appear as if *all* child consumers had turned *off* validation, which is
    incorrect.
    
    This fix turns on signature validation by default while preserving the ability
    of child consumers to override the on-disk configuration in special cases.
    
    Fixes: CVE-2017-1000001
    Reviewed-by: Patrick Uiterwijk <puiterwijk@redhat.com>
    ralphbean committed with puiterwijk Jan 12, 2017
Commits on Jan 11, 2017
  1. Merge pull request #392 from sijis/fix/multiline_json

    Handle multiline json
    pypingou committed on GitHub Jan 11, 2017
Commits on Jan 10, 2017
  1. Merge pull request #394 from sijis/doc/publish_messages

    Update publishing sample code
    pypingou committed on GitHub Jan 10, 2017
Commits on Dec 14, 2016
Commits on Dec 13, 2016
  1. Update publishing sample code

    sijis committed Dec 13, 2016
Commits on Dec 2, 2016
  1. Merge pull request #391 from sijis/fixes/library_branding

    Library branding
    ralphbean committed on GitHub Dec 2, 2016
Commits on Dec 1, 2016
  1. Fix title line markup

    sijis committed Dec 1, 2016
  2. Update project description

    Used the suggested content from issue #383.
    sijis committed Nov 24, 2016
  3. Fix spacing in text

    sijis committed Nov 24, 2016
  4. 0.18.1

    ralphbean committed Dec 1, 2016
  5. Merge pull request #393 from fedora-infra/fix-stomp

    Only check for stomp messages after we decoded any ZMQMessage
    ralphbean committed on GitHub Dec 1, 2016
  6. Only check for stomp messages after we decoded any ZMQMessage

    Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
    puiterwijk committed Dec 1, 2016
Commits on Nov 30, 2016
  1. Handle multiline json

    sijis committed Nov 30, 2016
Commits on Nov 11, 2016
  1. Merge pull request #390 from fedora-infra/feature/drop-old-six

    Drop old testcases against old python-six.
    ralphbean committed on GitHub Nov 11, 2016
Commits on Nov 10, 2016
  1. Drop old testcases against old python-six.

    It used to be 1.7 on RHEL7, but they upgraded and we only have to worry about 1.9 now.
    ralphbean committed Nov 10, 2016