about summary refs log tree commit diff
path: root/spec/controllers/application_controller_spec.rb
AgeCommit message (Collapse)Author
2019-07-22Change unconfirmed user login behaviour (#11375)Eugen Rochko
Allow access to account settings, 2FA, authorized applications, and account deletions to unconfirmed and pending users, as well as users who had their accounts disabled. Suspended users cannot update their e-mail or password or delete their account. Display account status on account settings page, for example, when an account is frozen, limited, unconfirmed or pending review. After sign up, login users straight away and show a simple page that tells them the status of their account with links to account settings and logout, to reduce onboarding friction and allow users to correct wrongly typed e-mail addresses. Move the final sign-up step of SSO integrations to be the same as above to reduce code duplication.
2019-07-07Remove Atom feeds and old URLs in the form of `GET /:username/updates/:id` ↵Eugen Rochko
(#11247)
2018-10-04Lint pass (#8876)aus-social
2018-08-23Add ability to change an instance default theme from the administration ↵Jakub Mendyk
panel (#7092) (#8381) * Add default_settings class method to ScopedSettings ScopedSettings was extended to use value of unscoped setting instead of only using defaults set in config/settings.yml for selected settings. This adds possibility for admins to set default values of users' settings, for example default theme (as requested in #7092). * Add ability to change an instance default theme Closes #7092
2018-04-21Use raw status code on have_http_status (#7214)Yamagishi Kazutoshi
2018-04-03Improve require_admin! and require_staff! filters (#7018)Emelia Smith
Previously these returns 302 redirects instead of 403s, which meant posting links to admin pages in slack caused them to unfurl, rather than stay as a link. Additionally, require_admin! doesn't appear to be actively used, on require_staff!
2018-01-07Fix force_ssl conditional (#6201)Yamagishi Kazutoshi
2017-06-07Use "match_array" only for order independent assertions (#3626)unarist
2017-06-01Spec response for forgery (#3248)Akihiko Odaki (@fn_aki@pawoo.net)
Remove protect_from_forgery in ApiController, which is disabled by the following skip_before_action, as well.
2017-05-31Keep ENV['LOCAL_HTTPS'] with ApplicationControllerSpec (fix random fail) (#3479)Yamagishi Kazutoshi
* Keep ENV['LOCAL_HTTPS'] with ApplicationControllerSpec (fix random fail) * use climate_control
2017-05-22Cover ApplicationController more in spec (#3230)Akihiko Odaki
2017-05-22single_user_mode? always returns boolean (#3215)Akihiko Odaki
This change also adds a specification for the method.