01458fb0f5
this reduces the error but we still need to rescue the file not found error. for another day.
2013-10-23 18:28:24 -04:00
7c1d52320a
does not fix the error that occurs (as it should, but that we want to obfuscate) when a command is injected into, however, it does pass the build and does not break the entire call
2013-10-23 17:11:28 -05:00
a921f2118d
minor fix
2013-10-22 17:08:27 -04:00
6fa175ac61
a little fix for the error running the command injection spec. basically capturing the error from cp and sending it to the gutter
2013-10-22 11:31:47 -04:00
bd066068ff
Upgraded Rails from 3.2.13 to 3.2.15. Removed unneeded "~>" gem numbers in Gemfile.
2013-10-22 10:29:57 -04:00
3820b78066
fixing this function that was not explicitly using the params
2013-10-22 10:16:09 -04:00
b7c3b04c74
this seems to have fixed a nuisance error within our unit-tests. Issue #57
2013-10-22 00:58:48 -04:00
d2bc7d740a
minor fix
2013-10-14 08:36:52 -04:00
f02895351d
removed a bit of cruft, also activated the sidebar item when working within the messages section
2013-10-13 23:17:18 -04:00
e4ee11cbdc
Merge pull request #56 from mccabe615/master
...
Adding messaging system
2013-10-13 20:08:28 -07:00
7a101a9bb5
fix for issue #44
2013-10-13 21:50:25 -04:00
16bd465633
this appears to fix the problem with our accordion not working correctly. I couldnt find a reason to use bootstrap.js anyways.
2013-10-13 21:50:25 -04:00
8c17a3df0e
adding messaging function, needs tests...
2013-10-13 21:49:17 -04:00
afbd8d53b6
fix for issue #44
2013-10-12 17:04:57 -04:00
a67b3546b1
this appears to fix the problem with our accordion not working correctly. I couldnt find a reason to use bootstrap.js anyways.
2013-10-12 16:14:10 -04:00
b0a5248c05
adding read data to seeds
2013-10-12 13:38:47 -04:00
8686f6b9d3
adding messages mvc to allow users to send messages.
2013-10-11 16:03:37 -04:00
dbd0c2548d
making full_name method public
2013-10-11 16:03:37 -04:00
5177e60669
adding better errors gem
2013-10-11 16:03:36 -04:00
30987e6fe9
added to address issue #55
2013-10-11 16:03:36 -04:00
20a7a62cbe
added to address issue #55
2013-10-11 12:19:24 -04:00
2ff4dc1aee
Merge pull request #53 from mccabe615/master
...
One more spec and a rake task
2013-10-09 12:05:07 -07:00
c9231233e5
make test go into pending unless salt attribute defined for travis
2013-10-09 14:24:10 -04:00
79915519b1
Update README.md
2013-10-09 13:25:54 -04:00
77a3940530
adding training rake task to ease running training specs
2013-10-09 13:20:30 -04:00
82387a1f92
updating spec to fail if salt is not defined
2013-10-09 13:18:32 -04:00
e999c02506
adding password hashing spec
2013-10-09 12:55:00 -04:00
88d5920a7a
Merge pull request #52 from mccabe615/master
...
A bundle of changes
2013-10-09 08:41:50 -07:00
c9a64b9e82
adding simple sqlmap gauntlt script, WIP
2013-10-09 11:09:15 -04:00
bbed455178
verifying user exists before trying to update
2013-10-09 11:08:39 -04:00
a93159c9f2
adding launchy
2013-10-09 11:07:13 -04:00
d13f3d7f44
Merge branch 'master' of github.com:mccabe615/railsgoat
2013-10-07 15:23:51 -04:00
9b3181eef9
moving vulnerability tests and adding password complexity test
2013-10-07 15:23:38 -04:00
829b566c29
Update README.md
2013-10-07 15:23:37 -04:00
30f432e8a0
Update README.md
2013-10-07 15:23:37 -04:00
73f3272aa1
adding flash message with validation errors, and redirect to sign_up
2013-10-07 15:23:37 -04:00
cc7535af30
adding env variable to run vulnerability tests
2013-10-07 15:23:37 -04:00
19ee423d8d
pinning dbcleaner to lower version due to https://github.com/bmabey/database_cleaner/issues/224
2013-10-07 15:23:37 -04:00
398c1bbe83
moving vulnerability tests and adding password complexity test
2013-10-07 14:20:42 -04:00
0b5be6d55e
Update README.md
2013-10-07 14:05:50 -04:00
82e40fe581
Update README.md
2013-10-07 14:05:27 -04:00
d9eadddfe3
adding flash message with validation errors, and redirect to sign_up
2013-10-07 13:47:33 -04:00
d0d5165c6c
adding env variable to run vulnerability tests
2013-10-07 13:46:55 -04:00
0d15dd0a6c
pinning dbcleaner to lower version due to https://github.com/bmabey/database_cleaner/issues/224
2013-10-07 13:35:39 -04:00
b3c309e776
Merge pull request #51 from chrismo/readme_for_capybara
...
Additions to README
2013-10-07 09:34:00 -07:00
e71834b830
Additions to README
2013-10-07 10:21:33 -05:00
83a16baf44
Merge pull request #49 from chrismo/capybara
...
Added notice and removed spoilers from spec names.
2013-10-03 17:54:55 -07:00
525dfa1717
Added notice and removed spoilers from spec names.
2013-10-03 11:00:43 -05:00
538d01e5cf
Merge pull request #48 from chrismo/capybara
...
MOAR CAPYBARA
2013-10-02 16:31:54 -07:00
4ccdca8984
Fixed model specs, some of which I broke.
...
There's a fight here between DatabaseCleaner strategies - simpler to use
the default :transaction for model specs, but Capybara lives in a
different world where different connections are in play and
:transactions don't work. So, while introducing the more cumbersome
(though with more control) DatabaseCleaner gem and its truncation
strategy, I forgot to make sure the model specs had the fixtures present
that they depend on. This is fixed up now.
The user spec for invalid email was also failing - the regex there is
not savvy enough to handle rejecting two @ signs, so I made the invalid
value something still invalid to get it passing -- real regex validation
of email is ... impossible, so we'll roll with this and move on.
2013-10-02 17:53:12 -05:00
Mike McCabe