Commit Graph

301 Commits

Author SHA1 Message Date
io mintz 44c03e355f CSP: remove a bunch of unused mozilla-only domains and FXA domains 2020-11-13 22:24:38 +00:00
Danny Coates 28c48f51d1
set downloadMetadata.status to 404 on unfound downloads. fixes #1501
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:52:28 +02:00
Danny Coates b5ef1785ab
replaced fxa-geodb with load balancer header
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:51:28 +02:00
Danny Coates e909a3bae8
refactored storage, style tweaks
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:47:56 +02:00
Danny Coates 4f273eca03
added oauth refresh token support
Co-authored-by: timvisee <tim@visee.me>
2020-10-16 15:46:24 +02:00
timvisee 45d5f41731
Remove Firefox branding from app name in front-end 2020-10-15 18:48:54 +02:00
Danny Coates ccbcb69666
Merge pull request #1434 from MichaelPeter-Shockoe/master
modify connect-src of Content Security Policy to include dynamic wss URL based on configured base URL
2020-07-09 19:37:02 -07:00
Danny Coates e6ff9e486b
Merge pull request #1063 from hbakhtiyor/patch-1
Convert ContentLength of storage to number
2020-07-09 19:34:33 -07:00
Danny Coates 17afd6ad58
Merge pull request #1416 from factorysh/s3_endpoint
Choose your endpoint.
2020-07-09 19:33:21 -07:00
Danny Coates 7dd1fcca9b
Merge pull request #1480 from jackyzy823/fxa-csp
Handle Content-Security-Policy for self hosting FxA
2020-07-09 19:31:06 -07:00
Danny Coates 3195ee7d16
Merge pull request #1465 from minvs1/redis-retry-configs
Allow to set custom retry parameters
2020-07-09 19:17:28 -07:00
jackyzy823 e2876b119d add configs to handle content-security-policy correctly for custom fxa urls 2020-06-11 21:57:48 +08:00
Danny Coates 89469e3c9c
updated node to 12 2020-04-29 17:38:55 -07:00
minvs1 7aead375d8 Allow to set custom retry parameters 2020-04-21 23:30:39 +03:00
Mathieu Lecarme 97deb78de6 Use the config object. 2020-03-23 15:48:07 +01:00
Mathieu Lecarme 2d22573588 Choose your endpoint.
See https://github.com/mozilla/send/issues/1239
2020-03-23 15:48:07 +01:00
Michael Peter 5ff6266a5e modify connect-src of Content Security Policy to include dynamic wss URL based on configured base URL 2020-01-17 17:47:09 -05:00
Danny Coates 097d3c8377
make geoip lookup optional 2020-01-11 14:06:17 -08:00
Danny Coates d5c488196d
no-cache harder 2019-09-05 13:33:12 -07:00
Danny Coates 807ecff471
updated sentry libs from raven to @sentry 2019-08-09 11:06:21 -07:00
Danny Coates 6378676c2d
use resumable uploads to GCS 2019-08-07 10:10:42 -07:00
Danny Coates 527040afef
updated ws dependency and slightly improved client side error handling, hung uploads will error instead of hang forever 2019-08-06 14:47:21 -07:00
Danny Coates c80f9ada65
updated deps 2019-07-29 15:26:11 -07:00
Danny Coates 58191975b9
stubbed /login page for redirect base login flow 2019-07-23 09:27:34 -07:00
Danny Coates b9c87fd779
updated tailwindcss to 1.0 2019-06-14 11:37:30 -07:00
Danny Coates 23ecb632eb added signin button color experiment. closes #1306 (#1320) 2019-05-03 13:10:56 -04:00
Danny Coates f603f40f43 added agent to server metrics (#1321) 2019-05-03 12:25:12 -04:00
Hugo Abreu f517c514d8 Defined retry_strategy for redis. Closes #1292 2019-05-02 21:56:28 +01:00
Danny Coates 20b9279eec added survey dialog. closes #1307 2019-05-01 09:47:04 -07:00
Robert f94918bebd Prevent possible download counter race condition 2019-04-19 13:10:49 +02:00
Danny Coates 7f76a279c3
fixed L10N_DEV option 2019-03-31 13:04:16 -07:00
Danny Coates efea0e5ab0
added gravatar to CSP image-src 2019-03-31 13:04:15 -07:00
Danny Coates 5d19a9d696
fixed dev android for longer file ids 2019-03-31 13:04:15 -07:00
Danny Coates 8cf3b89f91
increase file id to 8 bytes 2019-03-26 09:32:44 -07:00
Danny Coates ebbb1d05d2
use crypto.timingSafeEqual in hmac and ownerToken authentication 2019-03-14 22:09:34 -07:00
Danny Coates 3e14d3049d
only index / route 2019-03-14 13:17:47 -07:00
Danny Coates c4891c3866
fixed req.route bug when no routes match 2019-03-14 12:02:36 -07:00
Danny Coates 4e26c6ab75
added robots meta tag 2019-03-14 11:40:01 -07:00
Danny Coates 017bb0d146
wrap openid-config request in try/catch 2019-03-13 12:07:59 -07:00
Danny Coates e702022d7f
default accept-language to en-US when regexp does not match 2019-03-13 11:30:37 -07:00
Christopher Ramírez f3fb433531 Fix link to dev.js and prod.js files.
The links on readme.md were pointing to no longer existant files.
With this PR these links are updated to the new location of the
files inside the ./bin directory.
2019-03-13 07:45:55 -06:00
Danny Coates d6becdcf3c
fixed meta image urls 2019-03-12 09:57:26 -07:00
Danny Coates 3b7bf2ae7e
updated pwa theme-color 2019-03-09 16:45:17 -08:00
Danny Coates 7464d46843
removed unused fira bits 2019-03-06 16:37:02 -08:00
Danny Coates f9fd9940bd
fixed server l10n parse error 2019-03-06 16:36:17 -08:00
Danny Coates fb0f0f0b5d
added gcp dev to csp 2019-03-06 12:59:54 -08:00
Danny Coates 7f9674f494
fixed size limit on server to include crypto overhead 2019-03-06 10:31:50 -08:00
Danny Coates 445811931f
added accounts.firefox.com to csp connect-src for /metrics-flow 2019-03-05 13:05:51 -08:00
Danny Coates 5e04f367c1
utms for everybody 2019-03-05 12:58:40 -08:00
Danny Coates 421967ea81
updated default config values 2019-02-28 16:39:38 -08:00