|
9977e1614b
|
Allow external redirect for render host and LTI
We only use the `launch_presentation_return_url` provided to the @provider, in order to prevent using an open redirect.
|
2022-12-05 22:38:13 +01:00 |
|
|
ffe96d9223
|
Remove I18n.translation_present? monkey patch
|
2022-12-04 15:03:28 +01:00 |
|
|
574e99eddd
|
Fix rubocop offenses - Requires Ruby 3.1+
|
2022-11-25 11:10:06 +01:00 |
|
|
4f0b8c3c42
|
Reduce usage of @current_user (use helper instead)
|
2022-11-02 12:27:38 +01:00 |
|
|
a4e791e3de
|
Always render templates in Controller specs
|
2022-11-02 12:25:33 +01:00 |
|
|
58548555a5
|
Shell: Add file system browser to retrieve arbitrary files
|
2022-10-29 18:49:18 +02:00 |
|
|
fb9672c7a4
|
FileTree: Allow output as hash, convert to JSON separately
|
2022-10-29 18:49:18 +02:00 |
|
|
ad8743a7d0
|
FileTree: Show more distinct icons where possible
|
2022-10-29 18:49:18 +02:00 |
|
|
dd1f4b0ac8
|
Merge pull request #939 from openHPI/refactor_proforma_import_export
Refactor Proforma Import/Export
|
2022-10-26 17:58:48 +02:00 |
|
|
c75f52f2c8
|
Fix Rubocop offenses
|
2022-10-24 12:28:50 +02:00 |
|
|
a9c85c0a1f
|
Fix Rubocop offenses
|
2022-10-06 00:45:06 +02:00 |
|
|
f7515362a1
|
Set Content-Type to fixed value for all download actions
|
2022-10-05 21:46:17 +02:00 |
|
|
42688ed1c9
|
Prefer authentication token for session if present
|
2022-10-05 21:34:19 +02:00 |
|
|
a5da7d1f84
|
Remove outdated HTTP status codes
See https://github.com/openHPI/codeocean/pull/1349#pullrequestreview-1091652523
|
2022-10-05 13:11:43 +02:00 |
|
|
ba821bd18b
|
Change HTTP status codes for Poseidon in accordance with recent changes.
See https://github.com/openHPI/poseidon/pull/159
|
2022-10-05 13:11:43 +02:00 |
|
|
3263d4f838
|
Respect subpath for (render_)protected_upload_path
|
2022-09-28 11:06:15 +02:00 |
|
|
d6cd06550d
|
add default values to meta_data
fix specs
|
2022-09-26 20:46:40 +02:00 |
|
|
4b00eb1e8c
|
Allow internal users to switch their current study group
|
2022-09-26 16:30:54 +02:00 |
|
|
eb188dcd71
|
Add privilegedExecution flag to database and Poseidon Strategy
|
2022-09-24 22:32:41 +02:00 |
|
|
b866221353
|
rename route
|
2022-09-24 21:08:18 +02:00 |
|
|
77999f75df
|
set proglang based on exenv
try to guess exenv based on proglang
|
2022-09-24 15:24:12 +02:00 |
|
|
16c00ec136
|
Add support for signed URLs used by the render_file function
|
2022-09-23 21:35:22 +02:00 |
|
|
5881795d5f
|
Memorize config options instead of reading them from file over and over again
|
2022-09-23 21:35:22 +02:00 |
|
|
0e7c38657f
|
Allow teachers to access internal users and manage them in their study groups
|
2022-09-22 19:24:26 +02:00 |
|
|
e3018c1847
|
Refactor consumer factory
|
2022-09-22 19:24:26 +02:00 |
|
|
964048927a
|
Updated teacher_in_study_group? method to check for common teacher role
|
2022-09-22 19:24:26 +02:00 |
|
|
936c11e31f
|
Refactor authentication token for new study-group-based authorization
|
2022-09-22 19:24:26 +02:00 |
|
|
cb1b163b30
|
Always create a default study group for new consumers
|
2022-09-22 19:24:26 +02:00 |
|
|
521626275f
|
Use create for all users in specs where necessary
|
2022-09-22 19:24:26 +02:00 |
|
|
9c9f45ff77
|
Redefine user roles with their role in a study group
|
2022-09-22 19:24:26 +02:00 |
|
|
ec4c6207f0
|
Refactor internal_users_controller_spec to prevent invalid objects
|
2022-09-22 19:24:26 +02:00 |
|
|
79571a3287
|
Allow build-in coverage report for RubyMine
|
2022-09-22 19:24:26 +02:00 |
|
|
7e9967e2bf
|
Fix rubocop offenses
|
2022-09-16 01:03:55 +02:00 |
|
|
d02a1eae81
|
Validate password strength for internal users
|
2022-09-14 12:19:25 +02:00 |
|
|
f1aa004284
|
Use controller method for 404 responses
|
2022-09-14 01:01:14 +02:00 |
|
|
006c794f54
|
Fix rubocop offenses
|
2022-09-14 00:31:47 +02:00 |
|
|
dba3aac800
|
Merge branch 'master' into refactor_proforma_import_export
|
2022-09-13 22:47:50 +02:00 |
|
|
5ec2c7f5bc
|
refactor role finding logic for convert_task_to_exercise
add specs
|
2022-09-13 22:47:12 +02:00 |
|
|
0a16f589e9
|
Use X-Sendfile to transmit native files and handle file uploads
|
2022-09-06 01:21:40 +02:00 |
|
|
813c3f50af
|
Touch file location before setting a symlink in specs
|
2022-09-04 19:15:15 +02:00 |
|
|
22cd202e9d
|
Refactor reject_illegal_file_attributes check
* Improve readability of method
* Add a new check for the author of a submission
|
2022-09-04 11:42:36 +02:00 |
|
|
49f4f0e6c5
|
Refactor exercise_controller and move more checks to policy
* We introduce a custom handler for Pundit::NotAuthorizedError
|
2022-09-04 00:05:13 +02:00 |
|
|
87737e50a2
|
Fix Rubocop offenses
|
2022-09-03 00:10:11 +02:00 |
|
|
e00d1772ca
|
Disallow markup for RfC emails
|
2022-09-02 18:14:14 +02:00 |
|
|
9050f02b7a
|
Add additional test case for new CodeOcean::File#read method
|
2022-09-02 17:52:24 +02:00 |
|
|
b6837e9539
|
Refactor validity of token authentication
|
2022-09-02 16:56:19 +02:00 |
|
|
e77223e628
|
Refactor send_thank_you_note method and according specs
|
2022-09-02 16:56:19 +02:00 |
|
|
5ace779d0c
|
fix and add specs
|
2022-08-31 20:51:58 +02:00 |
|
|
e5879eb606
|
Simplify permission specs
* Remove iteration if not required
* Unify usage of parentheses for `permissions` call
|
2022-08-22 17:51:57 +02:00 |
|
|
e0c2c7b806
|
Hide score button if exercise has no tests
We check for all teacher-defined assessments (linter and unit tests) to determine whether scoring should be possible
|
2022-08-22 17:51:57 +02:00 |
|