IT4Change/Ocelot-Social
3
0
Fork 0
mirror of https://github.com/IT4Change/Ocelot-Social.git synced 2025-12-13 07:45:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,053 Commits 5 Branches 2 Tags
Commit Graph

1417 Commits

Author SHA1 Message Date
dependabot-preview[bot]
a6309aeb70
build(deps): bump @hapi/joi from 16.1.4 to 16.1.5 in /backend 
Bumps [@hapi/joi](https://github.com/hapijs/joi) from 16.1.4 to 16.1.5.
- [Release notes](https://github.com/hapijs/joi/releases)
- [Changelog](https://github.com/hapijs/joi/blob/master/CHANGELOG.md)
- [Commits](https://github.com/hapijs/joi/compare/v16.1.4...v16.1.5)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-03 05:21:23 +00:00
Robert Schäfer
cfdf9dad2c
Merge pull request #1711 from Human-Connection/407-change_your_email_address 
407 change your email address
 2019-10-02 17:43:19 +02:00
Robert Schäfer
c1235003c5
Merge pull request #1794 from Human-Connection/dependabot/npm_and_yarn/backend/cross-env-6.0.2 
build(deps): bump cross-env from 6.0.0 to 6.0.2 in /backend
 2019-10-02 15:51:36 +02:00
Robert Schäfer
9a08de347c
Merge pull request #1788 from Human-Connection/1663-moderators-admins-always-see-posts 
Update Post query for blockedByUsers
 2019-10-02 15:50:55 +02:00
dependabot-preview[bot]
54061ccf88
build(deps): bump cross-env from 6.0.0 to 6.0.2 in /backend 
Bumps [cross-env](https://github.com/kentcdodds/cross-env) from 6.0.0 to 6.0.2.
- [Release notes](https://github.com/kentcdodds/cross-env/releases)
- [Changelog](https://github.com/kentcdodds/cross-env/blob/master/CHANGELOG.md)
- [Commits](https://github.com/kentcdodds/cross-env/compare/v6.0.0...v6.0.2)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-02 07:26:41 +00:00
mattwr18
f0d096fcab Prefer guard clause to avoid database call 
- follow @roschaefer's PR review
 2019-10-02 09:20:13 +02:00
dependabot-preview[bot]
8e8fff21b7
build(deps): bump metascraper-description in /backend 
Bumps [metascraper-description](https://github.com/microlinkhq/metascraper) from 5.7.5 to 5.7.6.
- [Release notes](https://github.com/microlinkhq/metascraper/releases)
- [Changelog](https://github.com/microlinkhq/metascraper/blob/master/CHANGELOG.md)
- [Commits](https://github.com/microlinkhq/metascraper/compare/v5.7.5...v5.7.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-02 05:40:33 +00:00
roschaefer
1e31a0c620 fix: remove previous email address on change 
This will allow you to change back to your previous email address: The
backend won't complain because of a user who owns that email address
already.
 2019-10-02 01:55:14 +02:00
roschaefer
e6f8bbac9b fix: remove copy+paste oversights 
In the registration resolvers, it makes sense to immediately resolve if
an email address has been found (because you can re-send the
registration email).

In this case, we use the helper method only to trigger the `UserInputError`.
 2019-10-02 01:54:28 +02:00
roschaefer
6ffafff288 fix: ensure no other user owns a new email address 
`BELONGS_TO` means a user owns an email address. `PRIMARY_EMAIL` means a
user authenticates with that email.

So right now, you get a proper error message if you try to change your
email back to your old email address (because you own it already).

I will make sure to delete the old email so this will be no problem
anymore. But maybe in the future we might have multiple email addresses
per user and then it makes a big difference to use `PRIMARY_EMAIL` or
`BELONGS_TO`.
 2019-10-02 01:31:23 +02:00
roschaefer
6a7970200f refactor: EmailAddr.Request -> UnverifiedEmailAddr. 2019-10-02 01:21:56 +02:00
roschaefer
5848e6af18 Fix a TODO by @alina-beck 2019-10-02 00:54:01 +02:00
roschaefer
e116d52992 Use EmailAddressRequest and validate email 2019-10-02 00:54:01 +02:00
Alina Beck
707cf741de write text for verification email 2019-10-02 00:54:01 +02:00
roschaefer
2b490e00d7 wrap email templates in standard layout to minimize duplicate code 2019-10-02 00:54:01 +02:00
roschaefer
e51124f316 Resolvers for EmailAddress implemented 2019-10-02 00:54:01 +02:00
roschaefer
8c13234af9 Handle edge case 
It might be that people try to register email addresses that they don't own. Then if the actual owner tries to add this email address, she should not get a unique constraint violation. Instead the email will be re-used.

Is this a security issue? Because we re-use the nonce? 🤔
 2019-10-02 00:54:01 +02:00
roschaefer
73d5abd724 Implement AddEmail resolver 2019-10-02 00:54:01 +02:00
roschaefer
3b6cd55c0f Implement unauthenticated part 2019-10-02 00:54:01 +02:00
roschaefer
8a05de5b2d Sketch backend test to change Email Address 2019-10-02 00:54:01 +02:00
dependabot-preview[bot]
c3e7b3938a
Bump metascraper-audio from 5.7.5 to 5.7.6 in /backend 
Bumps [metascraper-audio](https://github.com/microlinkhq/metascraper) from 5.7.5 to 5.7.6.
- [Release notes](https://github.com/microlinkhq/metascraper/releases)
- [Changelog](https://github.com/microlinkhq/metascraper/blob/master/CHANGELOG.md)
- [Commits](https://github.com/microlinkhq/metascraper/compare/v5.7.5...v5.7.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-01 21:10:18 +00:00
Robert Schäfer
7ecb9d8bed
Merge pull request #1778 from Human-Connection/dependabot/npm_and_yarn/backend/metascraper-publisher-5.7.6 
Bump metascraper-publisher from 5.7.4 to 5.7.6 in /backend
 2019-10-01 23:07:09 +02:00
mattwr18
478f6fef1c Fix query builder/test 2019-10-01 20:57:45 +02:00
dependabot-preview[bot]
30ea40a8a9
Bump metascraper-publisher from 5.7.4 to 5.7.6 in /backend 
Bumps [metascraper-publisher](https://github.com/microlinkhq/metascraper) from 5.7.4 to 5.7.6.
- [Release notes](https://github.com/microlinkhq/metascraper/releases)
- [Changelog](https://github.com/microlinkhq/metascraper/blob/master/CHANGELOG.md)
- [Commits](https://github.com/microlinkhq/metascraper/compare/v5.7.4...v5.7.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-01 15:52:40 +00:00
Robert Schäfer
da9ddf1040
Merge pull request #1780 from Human-Connection/dependabot/npm_and_yarn/backend/eslint-6.5.1 
Bump eslint from 6.4.0 to 6.5.1 in /backend
 2019-10-01 17:51:28 +02:00
Robert Schäfer
809bb7cc30
Merge pull request #1782 from Human-Connection/dependabot/npm_and_yarn/backend/metascraper-url-5.7.6 
Bump metascraper-url from 5.7.5 to 5.7.6 in /backend
 2019-10-01 17:51:09 +02:00
Robert Schäfer
540d41cd75
Merge pull request #1783 from Human-Connection/dependabot/npm_and_yarn/backend/metascraper-logo-5.7.6 
Bump metascraper-logo from 5.7.5 to 5.7.6 in /backend
 2019-10-01 17:50:52 +02:00
mattwr18
8aa7f376b6 Update Post query for blockedByUsers 
- Admin/Moderators see Posts even if they are blocked
 2019-10-01 17:45:09 +02:00
mattwr18
13ba93eecd
Merge pull request #1781 from Human-Connection/dependabot/npm_and_yarn/backend/graphql-middleware-4.0.1 
Bump graphql-middleware from 3.0.5 to 4.0.1 in /backend
 2019-10-01 10:32:04 +02:00
dependabot-preview[bot]
6c6fdcc951
Bump metascraper-logo from 5.7.5 to 5.7.6 in /backend 
Bumps [metascraper-logo](https://github.com/microlinkhq/metascraper) from 5.7.5 to 5.7.6.
- [Release notes](https://github.com/microlinkhq/metascraper/releases)
- [Changelog](https://github.com/microlinkhq/metascraper/blob/master/CHANGELOG.md)
- [Commits](https://github.com/microlinkhq/metascraper/compare/v5.7.5...v5.7.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-01 08:27:41 +00:00
dependabot-preview[bot]
345bec59be
Bump metascraper-url from 5.7.5 to 5.7.6 in /backend 
Bumps [metascraper-url](https://github.com/microlinkhq/metascraper) from 5.7.5 to 5.7.6.
- [Release notes](https://github.com/microlinkhq/metascraper/releases)
- [Changelog](https://github.com/microlinkhq/metascraper/blob/master/CHANGELOG.md)
- [Commits](https://github.com/microlinkhq/metascraper/compare/v5.7.5...v5.7.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-01 08:27:27 +00:00
mattwr18
96ac4ba4d3
Merge pull request #1777 from Human-Connection/dependabot/npm_and_yarn/backend/metascraper-youtube-5.7.6 
Bump metascraper-youtube from 5.7.5 to 5.7.6 in /backend
 2019-10-01 10:26:33 +02:00
mattwr18
857c2228ec
Merge pull request #1776 from Human-Connection/dependabot/npm_and_yarn/backend/babel/preset-env-7.6.2 
Bump @babel/preset-env from 7.6.0 to 7.6.2 in /backend
 2019-10-01 10:26:19 +02:00
mattwr18
0dd66b9675
Merge pull request #1775 from Human-Connection/dependabot/npm_and_yarn/backend/metascraper-soundcloud-5.7.6 
Bump metascraper-soundcloud from 5.7.4 to 5.7.6 in /backend
 2019-10-01 10:25:37 +02:00
dependabot-preview[bot]
8829b37df8
Bump eslint from 6.4.0 to 6.5.1 in /backend 
Bumps [eslint](https://github.com/eslint/eslint) from 6.4.0 to 6.5.1.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/eslint/eslint/compare/v6.4.0...v6.5.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-01 08:24:47 +00:00
dependabot-preview[bot]
1d677d2f97
Bump graphql-middleware from 3.0.5 to 4.0.1 in /backend 
Bumps [graphql-middleware](https://github.com/prisma/graphql-middleware) from 3.0.5 to 4.0.1.
- [Release notes](https://github.com/prisma/graphql-middleware/releases)
- [Commits](https://github.com/prisma/graphql-middleware/compare/v3.0.5...v4.0.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-01 05:22:19 +00:00
dependabot-preview[bot]
439c308cc1
Bump metascraper-youtube from 5.7.5 to 5.7.6 in /backend 
Bumps [metascraper-youtube](https://github.com/microlinkhq/metascraper-youtube) from 5.7.5 to 5.7.6.
- [Release notes](https://github.com/microlinkhq/metascraper-youtube/releases)
- [Commits](https://github.com/microlinkhq/metascraper-youtube/commits)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-01 05:20:10 +00:00
dependabot-preview[bot]
10fdc9205f
Bump @babel/preset-env from 7.6.0 to 7.6.2 in /backend 
Bumps [@babel/preset-env](https://github.com/babel/babel) from 7.6.0 to 7.6.2.
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/master/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/compare/v7.6.0...v7.6.2)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-01 05:19:39 +00:00
dependabot-preview[bot]
25bdedc565
Bump metascraper-soundcloud from 5.7.4 to 5.7.6 in /backend 
Bumps [metascraper-soundcloud](https://github.com/microlinkhq/metascraper-soundcloud) from 5.7.4 to 5.7.6.
- [Release notes](https://github.com/microlinkhq/metascraper-soundcloud/releases)
- [Commits](https://github.com/microlinkhq/metascraper-soundcloud/commits)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-01 05:19:05 +00:00
dependabot-preview[bot]
0d134d1dc6
Bump metascraper-author from 5.7.4 to 5.7.6 in /backend 
Bumps [metascraper-author](https://github.com/microlinkhq/metascraper) from 5.7.4 to 5.7.6.
- [Release notes](https://github.com/microlinkhq/metascraper/releases)
- [Changelog](https://github.com/microlinkhq/metascraper/blob/master/CHANGELOG.md)
- [Commits](https://github.com/microlinkhq/metascraper/compare/v5.7.4...v5.7.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-10-01 05:18:36 +00:00
Robert Schäfer
39bb0e3c81
Merge pull request #1766 from Human-Connection/dependabot/npm_and_yarn/backend/metascraper-lang-5.7.6 
Bump metascraper-lang from 5.7.4 to 5.7.6 in /backend
 2019-10-01 00:27:26 +02:00
Robert Schäfer
64149846b7
Merge pull request #1771 from Human-Connection/dependabot/npm_and_yarn/backend/metascraper-date-5.7.6 
Bump metascraper-date from 5.7.4 to 5.7.6 in /backend
 2019-10-01 00:26:59 +02:00
Robert Schäfer
6665a40c1d
Merge pull request #1751 from Human-Connection/fix-lodash-security-warning 
fix: Github's security vulnerability warning
 2019-09-30 19:20:00 +02:00
Robert Schäfer
28f8d1d550
Merge pull request #1725 from Human-Connection/dependabot/npm_and_yarn/backend/babel/node-7.6.2 
Bump @babel/node from 7.6.1 to 7.6.2 in /backend
 2019-09-30 17:51:10 +02:00
dependabot-preview[bot]
7e94af19d3
Bump metascraper-date from 5.7.4 to 5.7.6 in /backend 
Bumps [metascraper-date](https://github.com/microlinkhq/metascraper) from 5.7.4 to 5.7.6.
- [Release notes](https://github.com/microlinkhq/metascraper/releases)
- [Changelog](https://github.com/microlinkhq/metascraper/blob/master/CHANGELOG.md)
- [Commits](https://github.com/microlinkhq/metascraper/compare/v5.7.4...v5.7.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-09-30 15:50:48 +00:00
Robert Schäfer
23992cfef5
Merge pull request #1757 from Human-Connection/email-middleware-config 
fix email middleware transport config
 2019-09-30 17:50:36 +02:00
dependabot-preview[bot]
e876bee38e
Bump metascraper-lang from 5.7.4 to 5.7.6 in /backend 
Bumps [metascraper-lang](https://github.com/microlinkhq/metascraper) from 5.7.4 to 5.7.6.
- [Release notes](https://github.com/microlinkhq/metascraper/releases)
- [Changelog](https://github.com/microlinkhq/metascraper/blob/master/CHANGELOG.md)
- [Commits](https://github.com/microlinkhq/metascraper/compare/v5.7.4...v5.7.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-09-30 15:50:12 +00:00
Robert Schäfer
79376006b5
Merge pull request #1758 from Human-Connection/dependabot/npm_and_yarn/backend/nodemon-1.19.3 
Bump nodemon from 1.19.2 to 1.19.3 in /backend
 2019-09-30 17:49:02 +02:00
Robert Schäfer
b7320f247d
Merge pull request #1759 from Human-Connection/dependabot/npm_and_yarn/backend/metascraper-title-5.7.6 
Bump metascraper-title from 5.7.5 to 5.7.6 in /backend
 2019-09-30 17:48:38 +02:00
Robert Schäfer
4baf509568
Merge pull request #1761 from Human-Connection/dependabot/npm_and_yarn/backend/metascraper-image-5.7.6 
Bump metascraper-image from 5.7.5 to 5.7.6 in /backend
 2019-09-30 17:48:21 +02:00