io mintz
44c03e355f
CSP: remove a bunch of unused mozilla-only domains and FXA domains
2020-11-13 22:24:38 +00:00
Danny Coates
28c48f51d1
set downloadMetadata.status to 404 on unfound downloads. fixes #1501
...
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:52:28 +02:00
Danny Coates
b5ef1785ab
replaced fxa-geodb with load balancer header
...
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:51:28 +02:00
Danny Coates
e909a3bae8
refactored storage, style tweaks
...
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:47:56 +02:00
Danny Coates
4f273eca03
added oauth refresh token support
...
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:46:24 +02:00
timvisee
45d5f41731
Remove Firefox branding from app name in front-end
2020-10-15 18:48:54 +02:00
Danny Coates
ccbcb69666
Merge pull request #1434 from MichaelPeter-Shockoe/master
...
modify connect-src of Content Security Policy to include dynamic wss URL based on configured base URL
2020-07-09 19:37:02 -07:00
Danny Coates
e6ff9e486b
Merge pull request #1063 from hbakhtiyor/patch-1
...
Convert ContentLength of storage to number
2020-07-09 19:34:33 -07:00
Danny Coates
17afd6ad58
Merge pull request #1416 from factorysh/s3_endpoint
...
Choose your endpoint.
2020-07-09 19:33:21 -07:00
Danny Coates
7dd1fcca9b
Merge pull request #1480 from jackyzy823/fxa-csp
...
Handle Content-Security-Policy for self hosting FxA
2020-07-09 19:31:06 -07:00
Danny Coates
3195ee7d16
Merge pull request #1465 from minvs1/redis-retry-configs
...
Allow to set custom retry parameters
2020-07-09 19:17:28 -07:00
jackyzy823
e2876b119d
add configs to handle content-security-policy correctly for custom fxa urls
2020-06-11 21:57:48 +08:00
Danny Coates
89469e3c9c
updated node to 12
2020-04-29 17:38:55 -07:00
minvs1
7aead375d8
Allow to set custom retry parameters
2020-04-21 23:30:39 +03:00
Mathieu Lecarme
97deb78de6
Use the config object.
2020-03-23 15:48:07 +01:00
Mathieu Lecarme
2d22573588
Choose your endpoint.
...
See https://github.com/mozilla/send/issues/1239
2020-03-23 15:48:07 +01:00
Michael Peter
5ff6266a5e
modify connect-src of Content Security Policy to include dynamic wss URL based on configured base URL
2020-01-17 17:47:09 -05:00
Danny Coates
097d3c8377
make geoip lookup optional
2020-01-11 14:06:17 -08:00
Danny Coates
d5c488196d
no-cache harder
2019-09-05 13:33:12 -07:00
Danny Coates
807ecff471
updated sentry libs from raven to @sentry
2019-08-09 11:06:21 -07:00
Danny Coates
6378676c2d
use resumable uploads to GCS
2019-08-07 10:10:42 -07:00
Danny Coates
527040afef
updated ws dependency and slightly improved client side error handling, hung uploads will error instead of hang forever
2019-08-06 14:47:21 -07:00
Danny Coates
c80f9ada65
updated deps
2019-07-29 15:26:11 -07:00
Danny Coates
58191975b9
stubbed /login page for redirect base login flow
2019-07-23 09:27:34 -07:00
Danny Coates
b9c87fd779
updated tailwindcss to 1.0
2019-06-14 11:37:30 -07:00
Danny Coates
23ecb632eb
added signin button color experiment. closes #1306 ( #1320 )
2019-05-03 13:10:56 -04:00
Danny Coates
f603f40f43
added agent to server metrics ( #1321 )
2019-05-03 12:25:12 -04:00
Hugo Abreu
f517c514d8
Defined retry_strategy for redis. Closes #1292
2019-05-02 21:56:28 +01:00
Danny Coates
20b9279eec
added survey dialog. closes #1307
2019-05-01 09:47:04 -07:00
Robert
f94918bebd
Prevent possible download counter race condition
2019-04-19 13:10:49 +02:00
Danny Coates
7f76a279c3
fixed L10N_DEV option
2019-03-31 13:04:16 -07:00
Danny Coates
efea0e5ab0
added gravatar to CSP image-src
2019-03-31 13:04:15 -07:00
Danny Coates
5d19a9d696
fixed dev android for longer file ids
2019-03-31 13:04:15 -07:00
Danny Coates
8cf3b89f91
increase file id to 8 bytes
2019-03-26 09:32:44 -07:00
Danny Coates
ebbb1d05d2
use crypto.timingSafeEqual in hmac and ownerToken authentication
2019-03-14 22:09:34 -07:00
Danny Coates
3e14d3049d
only index / route
2019-03-14 13:17:47 -07:00
Danny Coates
c4891c3866
fixed req.route bug when no routes match
2019-03-14 12:02:36 -07:00
Danny Coates
4e26c6ab75
added robots meta tag
2019-03-14 11:40:01 -07:00
Danny Coates
017bb0d146
wrap openid-config request in try/catch
2019-03-13 12:07:59 -07:00
Danny Coates
e702022d7f
default accept-language to en-US when regexp does not match
2019-03-13 11:30:37 -07:00
Christopher Ramírez
f3fb433531
Fix link to dev.js and prod.js files.
...
The links on readme.md were pointing to no longer existant files.
With this PR these links are updated to the new location of the
files inside the ./bin directory.
2019-03-13 07:45:55 -06:00
Danny Coates
d6becdcf3c
fixed meta image urls
2019-03-12 09:57:26 -07:00
Danny Coates
3b7bf2ae7e
updated pwa theme-color
2019-03-09 16:45:17 -08:00
Danny Coates
7464d46843
removed unused fira bits
2019-03-06 16:37:02 -08:00
Danny Coates
f9fd9940bd
fixed server l10n parse error
2019-03-06 16:36:17 -08:00
Danny Coates
fb0f0f0b5d
added gcp dev to csp
2019-03-06 12:59:54 -08:00
Danny Coates
7f9674f494
fixed size limit on server to include crypto overhead
2019-03-06 10:31:50 -08:00
Danny Coates
445811931f
added accounts.firefox.com to csp connect-src for /metrics-flow
2019-03-05 13:05:51 -08:00
Danny Coates
5e04f367c1
utms for everybody
2019-03-05 12:58:40 -08:00
Danny Coates
421967ea81
updated default config values
2019-02-28 16:39:38 -08:00