Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
58,450 Commits 1 Branch 0 Tags
079f43f40d399cfc0da17039b6dede4e06bda2fb
Commit Graph

3988 Commits

Author SHA1 Message Date
John Eskew
62f3171c46 Add test for bulk email optout mgmt cmd. 2018-10-17 15:10:15 -04:00
bmedx
d9950f5754 Adds an API to bulk delete completed retirements 2018-10-17 14:06:17 -04:00
Michael Youngstrom
8c6e568fef dont assume the user's id 2018-10-17 13:44:00 -04:00
Nimisha Asthagiri
dc56a63e03 Remove deprecated JwtBuilder 
ARCH-248
 2018-10-17 07:43:59 -04:00
Robert Raposa
fbc59231fc Update edx-drf-extensions to 2.0.0. 
Note: this version update is backward incompatible.

ARCH-255
 2018-10-17 01:00:34 -04:00
J Eskew
dfbdfe0469 Merge pull request #19112 from edx/jeskew/add_mgmt_cmd_user_org_email_optin 
Mgmt cmd to bulk opt-out user/org combos from email.
 2018-10-16 11:45:30 -04:00
John Eskew
eef0e8c907 Mgmt cmd to bulk opt-out user/org combos from email. 2018-10-16 11:08:13 -04:00
Calen Pennington
8d6b7ee7f3 Merge pull request #19093 from cpennington/org-to-site-config 
Add a facility for getting the SiteConfiguration that an org belongs to
 2018-10-15 14:08:59 -04:00
Michael Youngstrom
e2d5235697 Merge pull request #19102 from edx/youngstrom/cms-remove-ratelimit 
Fix flaky TestUserPreferenceMiddleware tests for xdist
 2018-10-15 13:56:20 -04:00
Calen Pennington
996eceb6f9 Add a facility for getting the SiteConfiguration that an org belongs to 2018-10-15 13:28:30 -04:00
Nimisha Asthagiri
7ab5e7be63 Merge pull request #19103 from edx/arch/refactor-oauth-scopes-tests 
Shared mixin for testing OAuth Scopes and various Auth
 2018-10-15 11:32:12 -04:00
Michael Youngstrom
3da94170f5 Switch auth backends for cms as well 2018-10-15 11:14:25 -04:00
Douglas Hall
a824543e23 Merge pull request #19100 from edx/douglashall/login_refresh_csrf_exempt 
Mark the refresh access token view as exempt from CSRF protection.
 2018-10-15 10:25:55 -04:00
Douglas Hall
4817dd3f61 Mark the refresh access token view as exempt from CSRF protection. 2018-10-15 09:44:17 -04:00
Dillon-Dumesnil
4d37779f58 Merge pull request #19051 from edx/cstenson/unicode_normalization 
Add unicode normalization to passwords.
 2018-10-15 09:41:20 -04:00
Nimisha Asthagiri
f844e765fb Create shared test mixin for testing OAuth Scopes and various Auth. 
ARCH-168
 2018-10-13 16:21:01 -04:00
Cali Stenson
9c57cd1770 Add unicode normalization to passwords. 
LEARNER-4283
 2018-10-12 15:47:15 -04:00
Robert Raposa
863f86c411 Move and rename redirect helper. 
- Rename is_safe_redirect to is_safe_login_or_logout_redirect.
- Moved is_safe_login_or_logout_redirect to user_authn.

ARCH-256
 2018-10-12 13:33:09 -04:00
Alex Dusenbery
e5473f5396 Add the read API for course gradebook data (single and multiple users). 2018-10-12 10:48:34 -04:00
Nimisha Asthagiri
afd0e488ce Merge pull request #19085 from edx/arch/consistent-cookie-expiration 
Consistent expiration for all login-related cookies
 2018-10-11 13:15:57 -04:00
Dillon Dumesnil
b258f019b3 Fixing location of automatic password reset email 2018-10-11 12:09:41 -04:00
Nimisha Asthagiri
2b8a9d5148 Consistent expiration for all login-related cookies 2018-10-10 22:13:28 -04:00
Nimisha Asthagiri
16605fa9c2 Merge pull request #19074 from edx/arch/fix-expiration 
Fix overriding of token expiration in DOT (ARCH-246)
 2018-10-10 16:59:16 -04:00
Dillon Dumesnil
deb758c808 Added in tests for the new password validation. Fixed old tests that 
relied on the old configuration values and old way of validating
passwords. Also improved registration page by always showing error
messages rather than hiding them on leaving the field.
 2018-10-10 11:06:30 -04:00
Dillon Dumesnil
4fa27f98dc Implementing django password validators for edX. This involves removing 
the old validate password method and configuration values in favor of
AUTH_PASSWORD_VALIDATORS, a list of validators to use to check a
password. These include some that come straight from Django and some
that were written according to Django's specifications. This work also
included maintaining the current messaging as instruction text and
passing along restrictions for the password field.
 2018-10-10 10:58:21 -04:00
rabiaiftikhar
aac430da34 EDUCATOR-3213 make Global EdX Staff able to view all forum posts 2018-10-10 12:01:23 +05:00
Nimisha Asthagiri
13d4091a1a Fix overriding of token expiration in DOT (ARCH-246) 2018-10-08 17:43:25 -04:00
Omar Al-Ithawi
ceacfc8a75 edX-ACE support for email change messages 2018-10-08 20:43:09 +03:00
Troy Sankey
f9488a8502 Merge pull request #19043 from edx/pwnage101/also-prevent-retired-email-reuse-via-account-settings-PLAT-2334 
Prevent retired email reuse via account settings
 2018-10-05 13:59:20 -04:00
Michael Terry
c90edab169 Bundle an SQL query for performance 
We were doing many individual SQL queries for certificates when
awarding program certs. It's possible this was contributing to
high SQL load. Instead, let's bundle those queries up into a larger
one.

LEARNER-6490
 2018-10-05 12:43:47 -04:00
Troy Sankey
5b9bb005bd Prevent retired email reuse via account settings 
PLAT-2334
 2018-10-04 15:38:03 -04:00
Diana Huang
02c15bf563 Refactor password reset email and send after failure. 2018-10-04 15:22:24 -04:00
Hasnain Naveed
6c31a78f3d Merge pull request #19001 from edx/hasnain-naveed/WL-1645 
WL-1645 | Suppressing Error Alerts for WL Programs without Program Ce…
 2018-10-04 13:29:20 +05:00
Robert Raposa
eca340d2e1 Merge pull request #18989 from edx/robrap/ARCH-241-logout-redirect 
ARCH-241: Add ability to redirect to subdomain for logout.
 2018-10-03 15:06:11 -04:00
J Eskew
d447c6c9b5 Merge pull request #19045 from edx/jeskew/PLAT_2146_again_add_username_retirement_check 
Check for retired usernames as well as existing ones in validation.
 2018-10-03 14:57:50 -04:00
Robert Raposa
027c53e61e Add ability to redirect to subdomain for logout. 
ARCH-241
 2018-10-03 12:13:14 -04:00
Douglas Hall
602d2fb221 Merge pull request #19044 from edx/douglashall/csrf-protection-decision 
Add decisions record related to frontend apps and CSRF protection.
 2018-10-03 12:11:08 -04:00
Douglas Hall
dec77f2ad3 Add decisions record related to frontent apps and CSRF protection. 2018-10-03 11:28:58 -04:00
Nimisha Asthagiri
1c1088358c Merge pull request #19031 from edx/arch/login-service-migration 
Login service user creation - data migration
 2018-10-02 20:45:42 -04:00
John Eskew
aacdce17d4 Check for retired usernames as well as existing ones in validation. 2018-10-02 17:23:11 -04:00
Michael Youngstrom
ed594a9983 Patch random.random from the factory's namespace 2018-10-02 13:08:33 -04:00
Nimisha Asthagiri
2a170549b4 Login service user creation - data migration 2018-10-02 12:26:50 -04:00
J Eskew
873eb40896 Revert "Check for username retirement in validation endpoint." 2018-10-02 11:10:21 -04:00
J Eskew
8dc4900eb0 Merge pull request #18990 from edx/jeskew/PLAT_2146_add_username_retirement_check 
Check for username retirement in validation endpoint.
 2018-10-01 15:04:46 -04:00
Nimisha Asthagiri
31a1ad4a09 Merge pull request #18999 from edx/arch/refactor-jwt-builder 
JWT Cookies
 2018-10-01 13:45:15 -04:00
Nimisha Asthagiri
02ba5fb0e8 Login service support for JWT Cookies 2018-10-01 13:08:40 -04:00
John Eskew
fba2a8b5dc Check for retired usernames as well as existing ones in validation. 2018-10-01 11:00:19 -04:00
hasnain-naveed
282fe39337 WL-1645 | Suppressing Error Alerts for WL Programs without Program Certificates. 2018-10-01 18:58:43 +05:00
Ahsan Ulhaq
ee7555e85f update usage of SessionAuthenticationAllowInactiveUser 
LEARNER-6469
 2018-10-01 17:52:52 +05:00
Ned Batchelder
f2dac46681 Merge pull request #18475 from appsembler/omar/ace-enroll-email 
Convert instructor email messages to ACE
 2018-09-27 16:44:08 -04:00