This repository has been archived by the owner. It is now read-only.
Permalink
Switch branches/tags
Commits on May 27, 2014
Commits on May 26, 2014
  1. Merge pull request #4129 from fmarier/dnt-policy

    6a68 committed May 26, 2014
    Add a Do Not Track policy
Commits on May 25, 2014
  1. Merge pull request #4132 from mozilla/goldilocks-fix

    6a68 committed May 25, 2014
    Fix typo in getRPAPI; forced all RPs to Goldilocks
Commits on May 23, 2014
Commits on May 15, 2014
  1. Add a Do Not Track policy

    fmarier committed May 15, 2014
    This will prevent Persona from being blocked by privacy-protecting
    add-ons such as the EFF's Privacy Badger.
    
    https://www.eff.org/privacybadger#how_to_comply_with_dnt
    
    The temporary policy is copied verbatim from https://www.eff.org/files/dnt-policy-preliminary.txt
    
    EFForg/privacybadgerfirefox-legacy#98
Commits on Apr 23, 2014
  1. Merge pull request #4120 from jrgm/update-rpm-spec-for-0.10.x

    6a68 committed Apr 23, 2014
    update rpm spec for nodejs 0.10.x
Commits on Apr 20, 2014
Commits on Apr 17, 2014
  1. Merge pull request #4122 from yesyayen/dev

    ozten committed Apr 17, 2014
    changed old MV address to New MV address
  2. changed old MV address to New MV address

    yesyayen committed Apr 17, 2014
    from -650 Castro Street, Suite 300
     -Mountain View,
     -CA 94041-2072
    to,
     +331 E. Evelyn Avenue
     +Mountain View, 
     +CA 94041
  3. changed old MV address to New MV address

    yesyayen committed Apr 17, 2014
    from -650 Castro Street, Suite 300
     -Mountain View,
     -CA 94041-2072
    to,
     +331 E. Evelyn Avenue
     +Mountain View, 
     +CA 94041
  4. changed old MV address to New MV address

    yesyayen committed Apr 17, 2014
    from -650 Castro Street, Suite 300
     -Mountain View,
     -CA 94041-2072
    to,
     +331 E. Evelyn Avenue
     +Mountain View, 
     +CA 94041
Commits on Apr 10, 2014
Commits on Apr 3, 2014
  1. Merge pull request #4115 from mozilla/kick-the-can

    seanmonstar committed Apr 3, 2014
    Disable tests that cause weird errors, sometimes.
  2. Disable tests that cause weird errors, sometimes.

    callahad committed Apr 3, 2014
    Fixes #4114 (kinda).
    
    If any one of the commented tests is enabled, the QUnit tests start failing
    intermittantly in all versions of IE, but no other browsers. It seems like
    stale state is somehow hanging around, but it's not consistent, and it doesn't
    follow any particular pattern.
    
    E.g., it's just as easy to get a pass-pass-fail set of runs as it is to get
    fail-fail-pass.
    
    Since we previously had *no* QUnit tests for navigator.id.watch, and given that
    it's intermittant, I'm leaning toward this being something strange with the test
    suite, rather than a new error.
    
    I suggest disabling these specific test cases for now, and rigorously manually
    testing IE before going to production.
Commits on Apr 1, 2014
  1. Merge pull request #4113 from jrgm/fix-no-sniff-content-type

    callahad committed Apr 1, 2014
    fix a couple of js urls to send as content-type application/javascript to work with IE nosniff
Commits on Mar 29, 2014
  1. add cache-control, access-control-allow-origin, and vary headers to m…

    jrgm committed Mar 29, 2014
    …atch all other js file headers
Commits on Mar 27, 2014
  1. Merge pull request #4100 from jrgm/fixish-for-client-sessions-and-oop…

    6a68 committed Mar 27, 2014
    …-ssl
    
    set secureProxy=true when running behind an ssl proxy
Commits on Mar 23, 2014
  1. Merge pull request #4108 from Osmose/rp-branding

    seanmonstar committed Mar 23, 2014
    Fix #3866 - Use RP branding on login popup in main site.
Commits on Mar 17, 2014
Commits on Mar 10, 2014
  1. Merge pull request #4071 from seanmonstar/allow-false

    callahad committed Mar 10, 2014
    allow loggedInUser: false
Commits on Mar 8, 2014
  1. Merge pull request #4101 from jrgm/auto-test-fix-for-797894f

    6a68 committed Mar 8, 2014
    Fix automation-tests for 797894f "Require a password-level authentication when confirming an email"
Commits on Mar 3, 2014
Commits on Feb 24, 2014
  1. Fix automation-tests for 797894f "Require a password-level authentica…

    jrgm committed Feb 24, 2014
    …tion when confirming an email"
Commits on Feb 17, 2014
  1. Merge pull request #4094 from khuevu/dev

    seanmonstar committed Feb 17, 2014
    Fixes #3270: The xhr_delay error message doesn't specify which W...
Commits on Feb 16, 2014
  1. Fix for issue #3270: The xhr_delay error message doesn't specify whic…

    khuevu committed Feb 16, 2014
    …h WSAPI call is timing out
Commits on Feb 14, 2014
  1. Merge pull request #4093 from seanmonstar/cookies

    6a68 committed Feb 14, 2014
    fix for cookies 0.3.8 not in lockdown.json
Commits on Feb 13, 2014
  1. Merge pull request #4063 from seanmonstar/sessions-up

    callahad committed Feb 13, 2014
    bumped client-sessions and hood
  2. Merge pull request #4091 from p0ffsrule/dev

    seanmonstar committed Feb 13, 2014
    Changed timeout to 2 hours
    
    Fixes #3333
  3. Changed timeout to 2 hours

    p0ff committed Feb 13, 2014
Commits on Feb 7, 2014
  1. Require a password-level authentication when confirming an email

    fmarier committed Jan 16, 2014
    Since a successful email confirmation leads to an authentication
    level of "password", we should ensure that the user is already
    authenticated at that level before going ahead with it.
    
    https://bugzilla.mozilla.org/show_bug.cgi?id=908716
  2. Check each component of the relay frame origin separately

    fmarier committed Aug 9, 2013
    The current check against the origin we craft will succeed in the
    case of a URL which merely starts with the same text as the
    crafted origin.
    
    An example is a URL like "http://example.com@hostile.com" which
    would match an origin like "http://example.com".
    
    https://bugzilla.mozilla.org/show_bug.cgi?id=878485