team-alpha/railsgoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
80 Commits 1 Branch 0 Tags
af763d40bf02707a2f899323896f53089fa77491
Commit Graph

80 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ken Johnson af763d40bf added the PTO section 2013-05-24 20:54:07 -04:00
Ken Johnson 3fb341553c 401k view, now I need to make sure these stats populate for every user 2013-05-24 20:02:30 -04:00
Ken Johnson 96e0095878 moving in the right direction 2013-05-24 19:51:09 -04:00
Ken Johnson b1b378f451 added seed data, now time to work on the controllers and the view 2013-05-24 19:34:58 -04:00
Ken Johnson b59c85fade I feel like this is fairly important to make sure we avoid causing headaches, lol 2013-05-24 19:19:37 -04:00
Ken Johnson 471c5851c7 okay, so, we have associations rocking 2013-05-24 19:15:36 -04:00
Ken Johnson 0d841124f5 assigned a user id, does not "appear" to have screwed anything up 2013-05-24 15:25:06 -04:00
Ken Johnson 383835d57d added seed data, this closes issue #12 2013-05-24 13:57:48 -04:00
Ken Johnson 2ceb0328c3 added gem 2013-05-24 13:34:28 -04:00
Ken Johnson 31ce6ab1b5 test 2013-05-24 13:19:44 -04:00
Ken Johnson a10ba8c66c aws ignore 2013-05-24 12:42:50 -04:00
Ken Johnson 18740a7226 working on the dashboard, added some pie charts 2013-05-24 00:03:07 -04:00
Ken Johnson 4579d6e916 finished the first XSS example 2013-05-23 20:29:03 -04:00
Ken Johnson dbbb2ce651 finished the first instance of broken auth and sess mgmt 2013-05-23 20:06:24 -04:00
Ken Johnson c71ef0ccfd fixed some broken elements and added content to broken auth 2013-05-23 17:59:59 -04:00
Ken Johnson 9e92619294 refactored remaining tutorials 2013-05-23 17:12:39 -04:00
Ken Johnson 65dc8369e9 refactored url access and misconfig 2013-05-23 17:08:35 -04:00
Ken Johnson 958de07b4a refactored insecure dor 2013-05-23 17:01:43 -04:00
Ken Johnson 4b8b2243c3 refactored xss 2013-05-23 16:59:36 -04:00
Ken Johnson b280d84955 refactored injection 2013-05-23 16:57:18 -04:00
Ken Johnson 51aa8701f2 refactoring tutorial instances into partials for extensibility 2013-05-23 16:55:27 -04:00
Ken Johnson c72178a665 changed formatting of a paragraph element with a class of desc 2013-05-23 16:42:49 -04:00
Ken Johnson f674a57440 awesome. now we show code snippets in a much better way. Peeps who add to the tutorials will need to enclose code w/ <pre class="ruby></pre> 2013-05-23 15:18:39 -04:00
Ken Johnson a877e93780 abstracted out tutorial as I start writing these up, otherwise the html is going to get incredibly cluttered 2013-05-22 13:26:00 -04:00
Ken Johnson 7032fcaaed another fixer upper 2013-05-22 13:07:19 -04:00
Ken Johnson 9a53087361 okay, added some added color enhancements, time to write up some A3 shiz 2013-05-22 12:44:24 -04:00
Ken Johnson e03fd8548c abstracted out the validation js, need to add it to signup, then basically write up broken auth for both lack of pwd complexity and username/password enumeration 2013-05-22 11:47:00 -04:00
Ken Johnson 46c1af43cd okay, I swear, last commit of the night. This adds a pwd confirmation field to account update as well as the relevant js 2013-05-22 03:41:28 -04:00
Ken Johnson c60eea0781 prolly about as close as I am gonna get tonight 2013-05-22 03:30:53 -04:00
Ken Johnson 429794e74f rough version of form validation added to app 2013-05-22 02:35:54 -04:00
Ken Johnson c3cabbbad1 removed those changes 2013-05-21 11:58:57 -04:00
Ken Johnson c36012c76f added back .rvmrc because it caused issues w/ pow 2013-05-21 11:58:24 -04:00
Ken Johnson 775f44a54e using ruby version and ruby gemset instead of .rvmrc 2013-05-21 11:22:24 -04:00
Ken Johnson 671095e030 added a vuln for broken auth and session mgmt, issue #2 2013-05-21 00:58:11 -04:00
Ken Johnson b2e2a1b4b0 moved delete button away from submit button (duh), and changed delete a user to a POST request after realizing a spider might wreak havoc on that and delete all users 2013-05-21 00:42:56 -04:00
Ken Johnson bd95958f17 added delete button 2013-05-20 22:21:00 -04:00
Ken Johnson b6b4f881f2 fixed lack of pagination within js 2013-05-20 17:45:12 -04:00
Ken Johnson b7eb18276e added homepage to the sidebar as well as added JS to mark the sidebar item as active 2013-05-20 17:40:08 -04:00
Ken Johnson 4337cb9a46 made sure the table refreshes after an update 2013-05-20 17:35:24 -04:00
Ken Johnson 2ec81eb0de removed the button x because it caused some finnicky garbage where the alerts stayed closed 2013-05-20 16:56:44 -04:00
Ken Johnson 5fd72fcd6f update users info via ajax is working, yay. Next thing is we need to move the datatables into an ajax call and so that we can refresh the table upon any changes occuring 2013-05-20 16:31:59 -04:00
Ken Johnson 168c19bdc5 fixed broken js, it was due to a typo in an html comment 2013-05-19 12:16:34 -04:00
Ken Johnson f7dbc482bb added a table to manage users 2013-05-17 14:08:18 -04:00
Ken Johnson a279d06b4c created admin controller 2013-05-17 10:25:56 -04:00
Ken Johnson 5f80211580 added an administrative method intended to be used as a before filter within the application controller as well as an is_admin? method 2013-05-16 17:56:31 -04:00
Ken Johnson 10956ed316 unded fix position on sidebar because I realized you cannot see the entire thing even if you scroll down :-( 2013-05-10 12:08:41 -04:00
Ken Johnson 16729c3be6 adding material to the tutorial "home" page 2013-05-09 19:18:43 -04:00
Ken Johnson 648af6a4c8 added a hint dropdown to every tutorial section 2013-05-09 17:59:11 -04:00
Ken Johnson 38e76161c5 made the change systemic 2013-05-09 13:56:50 -04:00
Ken Johnson f11f4895d6 fixed the sidebars 2013-05-09 13:55:38 -04:00