11819bf14c
Squashing changes associated with pg
2020-04-17 15:38:24 -04:00
ad311cdda1
added openshift configs
2020-03-01 13:57:00 -05:00
e5a03e4da6
pg update and config.hosts
2020-02-29 18:52:33 -05:00
8c4e4283cd
update database.yml to support openshift posgresql db
2020-02-28 21:49:12 -05:00
23d145129d
Upgraded Ruby to 2.7.0-preview1 and Rails to 6.0.0 - fixed 1 spec
2019-09-09 15:13:29 -04:00
213bb0cfa4
Fixed i18n.fallbacks warning msg
2018-12-26 10:50:00 -05:00
c4f0b91534
use more idiomatic syntax for routes
2017-12-12 15:07:42 -06:00
9902345291
chore(rubocop): giganto rubocop commit.
...
muahahahah
2017-12-05 18:46:21 -06:00
284cd8811c
feat(rubocop): use rubocop-github
2017-12-05 18:38:32 -06:00
3b16f04edd
Merge pull request #278 from jmmastey/updated-minified-js
...
@jmmastey LGTM 👍
Good call on removing the stock photos that shipped with this as well as updating libs and removing cruft. Thank you as always 🙇
2017-11-16 09:47:08 -05:00
ba7e9a7845
fixing rubocop config to remove github references
2017-11-14 11:11:43 -05:00
26b24a1ca5
removing github rubocop gem and adding the config into the project directly.
2017-11-14 10:44:05 -05:00
0ac072e7e8
update fullcalendar js library, plus styles etc
2017-10-23 21:10:22 -05:00
f5a8e0c6a8
upgrade jQuery dataTable library, with minified version
2017-10-23 20:53:55 -05:00
97e8b82e0c
bug(password): fixes URL for password reset
2017-10-06 19:52:37 -05:00
ba684f95ec
restore mysql environment to working
2017-01-19 16:10:47 -06:00
54b8c291ea
upgrade(rails 5): no longer use rake to invoke rake tasks, use rails
...
though I left the case alone where the command would previously been
just `bundle exec rake`, as doing the same doesn't work for rails.
2017-01-19 13:59:40 -06:00
79b306fcae
Fix METHOD for forgot_password route
2016-06-01 17:59:48 +02:00
8ddcd96917
Fixed PTO error page
2016-01-07 13:36:36 -05:00
edf9a6d560
Upgraded ruby to 2.2.4 and gems: sprockets-rails and bundler
2015-12-18 10:51:26 -05:00
0604fa3c4e
Fixed config.serve_static_assets DEPRECATION WARNING
2015-08-21 11:34:57 -04:00
5c62c1b021
the setting was incorrect and did not match what we show in the tutorial
2015-08-18 12:27:20 -04:00
10014e1378
Fixed configs found during running 'rails server'
2015-04-09 15:23:40 -04:00
890b77bdaf
Upgraded 5 gems by rebuilding Gemfile.lock file
2015-03-28 10:46:52 -04:00
a6e5ba63cc
Merge pull request #197 from OWASP/tuts
...
This removes tutorials from the local copy of railsgoat in favor of the wiki
2015-03-27 15:04:05 -07:00
efe81fb6a6
okay, a lot of changes but this basically gets us out of tutorials being hosted locally
2015-03-25 19:32:12 -04:00
9838cf2bad
Resynced with parent repo
2015-03-23 13:11:40 -04:00
7e3e35e3d3
disabling livereload and updating mailcatcher settings
2015-03-21 13:44:28 -04:00
f8c771a84b
Merge branch 'master' of github.com:OWASP/railsgoat into tuts
2015-03-20 18:46:51 -04:00
9e7eb02cde
Merge branch 'master' of https://github.com/OWASP/railsgoat
...
Conflicts:
Gemfile.lock
2015-02-26 09:13:15 -05:00
b2c8e6cf8d
Merge branch 'master' of github.com:OWASP/railsgoat
2015-02-23 21:30:37 -05:00
1eee953f62
adding render vuln
2015-02-23 20:36:53 -05:00
ca0526ccc9
Upgraded to Rails 4.0.13; Rebuilt Gemfile.lock file
2015-01-10 09:45:51 -05:00
907045488d
this change allows the app to get the csrf fixes working when running rake training
2015-01-09 11:40:37 -05:00
09ba2b3270
going to dynamically load the tutorial page depending on the route folks decide to take
2015-01-06 19:43:23 -05:00
80e1ede02b
Added Fred's Strong Parameter work
2014-12-28 17:20:39 -05:00
ea8e9901f4
On branch strong-params
...
Your branch is behind 'origin/strong-params' by 1 commit, and can be fast-forwarded.
I'll pull to catch up after this commit
Change code to whitelist params
Remove attr_accessible lines
Add strong_params to Gemfile, since this branch is still on Rails 3
Mixin to ActiveRecord::Base ActiveModel::ForbiddenAttributesProtection
Use an initializer for the mixin
2014-12-05 15:04:01 -05:00
0957033457
Upgraded to Ruby 2.1.3; Changed timeout value
2014-09-19 19:00:40 -04:00
74d047507a
Changed timeout to 25000 for all envs
2014-09-19 11:12:32 -04:00
1ea0c2ddbb
More Rails 4.0 upgrade changes
...
1. Compared existing branch with empty Rails 4.0 project and
made changes as needed.
2. Fix find/first warning.
3. Fix sqlite timeout issue.
-- config/database.yml
-- spec/vulnerabilities/insecure_dor_spec.rb
2014-09-13 13:44:07 -04:00
23513cf8d2
Initial Rails 4.0.x upgrade
2014-09-07 13:00:54 -04:00
88ed0e2b50
need to create the bar graph version, write up the remaining parts of the tutorial, and ensure it did not break the DOM vuln
2014-07-29 17:56:33 -05:00
561e404e29
Fixes #142 with dynamic ActionMailer url options
2014-07-25 23:04:19 -05:00
2a12765933
slight change to make our cookie even more insecure
2014-06-27 12:05:50 -04:00
8595954096
removed alert when an error is thrown
2014-05-26 16:58:26 -04:00
8ed2714f3f
changed constantize to metaprogramming for the addition of tutorials specific to metaprogramming flaws. In addition, the messages portion of the app needed some generic TLC so I have removed the "new" view in order to bring that functionality into the seed message page/view.
2014-05-20 14:25:45 -04:00
fceeb94b05
adding mysql env to bundler require
2014-04-17 23:08:55 -04:00
c0ea2c87a5
adding mysql environment for mysql sql injection tests
2014-04-17 23:03:46 -04:00
6975f94381
adding routes. catching nulls
2014-04-17 20:18:39 -04:00
3f63480022
Added Analytics function to track user hits by ip address, referrer and user agent
2014-04-17 20:03:50 -04:00
Ken Toler