NoLog.cz/decide.nolog.cz
6
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
969 commits 1 branch 0 tags 22 MiB
Commit graph

31 commits

Author SHA1 Message Date
Jeldrik Hanschke
7c523357dc
upgrade ember to 3.10 (#235) 
Also adds a handy shortcut to run the bundlesize tests: `yarn test:bundlesize`.
 2019-07-13 10:26:30 +02:00
sappor0
c23ba1f6fb Using bootstrap 4 and related UI refresh (#205) 
Changes at a glance:

- Switch from BS3 to BS4
- Polishing of some UI elements (low-hanging fruit for UX)
- Mobile-friendly layout.
 2019-06-07 11:22:13 +02:00
jelhan
25c9e38691
use relative URLs for assets (#202) 
Assets must be referenced using relative URLs cause otherwise croodle
can't be served from subdirectories.

Can't add tests for this one cause ember requires absolute assets URLs
for testing.
 2019-05-28 22:40:14 +02:00
jelhan
25b9bf0aba
CSP: allow image source self to fix favicon in chrome (#172) 2019-03-13 21:32:26 +01:00
Jeldrik Hanschke
480ceb5e08 provide Content-Security-Policy by meta tag 
Having both a Content-Security-Policy (CSP) in meta tag and per header
works fine together. They are merged and the strongest one is applied.
It makes Croodle safer for all users even if the hoster does not apply CSP
for some reason (e.g. they can't set custom headers).

It's still a good idea to recommend using a CSP header cause that ones
are applied earlier - even so this shouldn't be a problem cause we ensure
that CSP meta tag is present before any other link, style or script element.
 2019-02-23 23:56:49 +01:00
Jeldrik Hanschke
de52f7afd4 CSP referrer is deprecated, Referrer-Policy header should be used instead 2019-02-23 23:56:49 +01:00
Jeldrik Hanschke
06a92b947f refactor: replace bootstrap-datepicker by ember-power-calendar 
Also renders two linked calendars if there is enough space.

Closes #143
 2019-01-20 17:08:16 +01:00
Jeldrik Hanschke
11265cb82d deps: upgrade ember to 2.18 2018-12-29 20:23:19 +01:00
jelhan
2ac3bfacdb Fix: do not link assets with absolut paths to support serving from subdirectory 
Bug introduced by 632c36eb12
 2017-08-31 16:12:45 +02:00
jelhan
632c36eb12 updates dependencies and fixes property modified twice in a single render deprecations 2017-08-01 09:48:48 +02:00
jelhan
13598fbe1b include catalan and italian locales for moment and bootstrap-datepicker 2017-07-28 10:52:22 +02:00
jelhan
364147f4b6 fix build issue by updating ember-moment 2017-07-25 17:17:39 +02:00
jelhan
fd0d7ffd39 update ember to 2.8 and ember-cli to 2.9.0-beta.1 2016-09-20 02:01:26 +02:00
jelhan
3cf26d7221 make CSP even a little bit more restrictive 2016-09-03 18:51:38 +02:00
rugk
1dd23ab59b
Bring dev and stable CSP header in sync 
Uses the most secure combination of these two.
 2016-09-03 16:26:57 +02:00
jelhan
e735587c93 update floatThead and drop CSP unsafe-inline requirement 
Closes #90
 2016-08-23 11:43:58 +02:00
jelhan
94ded4e723 do not override Date.parse 
https://github.com/emberjs/data/pull/4396
 2016-08-18 00:20:30 +02:00
jelhan
2a75db5304 Update to chartjs 2.x 
enhancements:
* responsive charts
* native support for stacked bars
* CSP: script-src: unsafe-inline is not needed anymore #90
 2016-08-12 23:09:43 +02:00
jelhan
425758e054 query params support was landed in ember 1.7.0 release in august 2014 
http://emberjs.com/blog/2014/08/23/ember-1-7-0-released.html#toc_query-params
 2016-02-16 02:30:06 +01:00
jelhan
8f08e57d1d fix some more code style issues 2016-01-28 23:48:14 +01:00
jelhan
c1dfa16eed update ember-i18n 2015-11-20 02:18:19 +01:00
jelhan
12706d7d57 do not lookup encryption key by application container due this breaks tests in travis 2015-08-20 14:12:28 +02:00
jelhan
398453c1e4 do encryption / decryption in serializer 
before it was done as computed properties of model

accessing encryption key in serializer is done via global application var.
this should be removed in long-term
 2015-08-19 22:00:01 +02:00
jelhan
1f955d4e93 update ember-moment 2015-08-01 11:41:41 +02:00
jelhan
34330cb730 remove version from package.json; having version as git tag is enough 2015-07-02 15:39:14 +02:00
jelhan
bbb8a231cc fix test in browser 2015-01-24 15:35:50 +01:00
jelhan
f0a09d9aee handle connection issues on user save: 
* show error message (modal)
* provide retry button

fixes #66
 2015-01-21 01:30:14 +01:00
jelhan
4b2f287e8f fix content security policy issue 
Should remove 'script-src' 'unsafe-eval' in future for better security.
It's required by modenizr.
 2015-01-16 16:38:47 +01:00
jelhan
7dec3c47ca migration to ember-cli 2014-11-01 18:00:46 +01:00
jelhan
7a241bd311 first steps to ember-cli 2014-10-30 21:44:22 +01:00
jelhan
b066b8806c Starting to move to Ember App Kit 2014-07-06 17:37:54 +02:00