team-alpha/railsgoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
265 Commits 1 Branch 0 Tags
cf1b5dc124e40705467131fa4f3a9393739a36ef
Commit Graph

265 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael McCabe cf1b5dc124 updating description with owasp 2013 description 2013-11-12 13:55:24 -05:00
cktricky 64f2ad9f9e very minor sidebar change 2013-10-14 08:46:21 -04:00
cktricky f9bbbe0a54 oops 2013-10-14 08:44:09 -04:00
cktricky 6897996394 merged 2013-10-14 08:42:27 -04:00
cktricky 940181f397 merged some content 2013-10-14 08:39:20 -04:00
cktricky d2bc7d740a minor fix 2013-10-14 08:36:52 -04:00
cktricky a65a20a647 Merge branch 'master' of github.com:OWASP/railsgoat into top-10-2013 2013-10-14 08:29:39 -04:00
cktricky f02895351d removed a bit of cruft, also activated the sidebar item when working within the messages section 2013-10-13 23:17:18 -04:00
Ken Johnson e4ee11cbdc Merge pull request #56 from mccabe615/master 
Adding messaging system
 2013-10-13 20:08:28 -07:00
cktricky 7a101a9bb5 fix for issue #44 2013-10-13 21:50:25 -04:00
cktricky 16bd465633 this appears to fix the problem with our accordion not working correctly. I couldnt find a reason to use bootstrap.js anyways. 2013-10-13 21:50:25 -04:00
Mike McCabe 8c17a3df0e adding messaging function, needs tests... 2013-10-13 21:49:17 -04:00
cktricky afbd8d53b6 fix for issue #44 2013-10-12 17:04:57 -04:00
cktricky a67b3546b1 this appears to fix the problem with our accordion not working correctly. I couldnt find a reason to use bootstrap.js anyways. 2013-10-12 16:14:10 -04:00
Mike McCabe b0a5248c05 adding read data to seeds 2013-10-12 13:38:47 -04:00
Mike McCabe 8686f6b9d3 adding messages mvc to allow users to send messages. 2013-10-11 16:03:37 -04:00
Mike McCabe dbd0c2548d making full_name method public 2013-10-11 16:03:37 -04:00
Mike McCabe 5177e60669 adding better errors gem 2013-10-11 16:03:36 -04:00
cktricky 30987e6fe9 added to address issue #55 2013-10-11 16:03:36 -04:00
cktricky 20a7a62cbe added to address issue #55 2013-10-11 12:19:24 -04:00
cktricky e2c4fb4bd8 change to the user model based on a merge with master. Master is the correct code 2013-10-11 12:04:19 -04:00
Ken Johnson 2ff4dc1aee Merge pull request #53 from mccabe615/master 
One more spec and a rake task
 2013-10-09 12:05:07 -07:00
Mike McCabe c9231233e5 make test go into pending unless salt attribute defined for travis 2013-10-09 14:24:10 -04:00
mccabe615 79915519b1 Update README.md 2013-10-09 13:25:54 -04:00
Mike McCabe 77a3940530 adding training rake task to ease running training specs 2013-10-09 13:20:30 -04:00
Mike McCabe 82387a1f92 updating spec to fail if salt is not defined 2013-10-09 13:18:32 -04:00
Mike McCabe e999c02506 adding password hashing spec 2013-10-09 12:55:00 -04:00
Ken Johnson 88d5920a7a Merge pull request #52 from mccabe615/master 
A bundle of changes
 2013-10-09 08:41:50 -07:00
Mike McCabe c9a64b9e82 adding simple sqlmap gauntlt script, WIP 2013-10-09 11:09:15 -04:00
Mike McCabe bbed455178 verifying user exists before trying to update 2013-10-09 11:08:39 -04:00
Mike McCabe a93159c9f2 adding launchy 2013-10-09 11:07:13 -04:00
Mike McCabe d13f3d7f44 Merge branch 'master' of github.com:mccabe615/railsgoat 2013-10-07 15:23:51 -04:00
Mike McCabe 9b3181eef9 moving vulnerability tests and adding password complexity test 2013-10-07 15:23:38 -04:00
mccabe615 829b566c29 Update README.md 2013-10-07 15:23:37 -04:00
mccabe615 30f432e8a0 Update README.md 2013-10-07 15:23:37 -04:00
Mike McCabe 73f3272aa1 adding flash message with validation errors, and redirect to sign_up 2013-10-07 15:23:37 -04:00
Mike McCabe cc7535af30 adding env variable to run vulnerability tests 2013-10-07 15:23:37 -04:00
Mike McCabe 19ee423d8d pinning dbcleaner to lower version due to https://github.com/bmabey/database_cleaner/issues/224 2013-10-07 15:23:37 -04:00
Mike McCabe 398c1bbe83 moving vulnerability tests and adding password complexity test 2013-10-07 14:20:42 -04:00
mccabe615 0b5be6d55e Update README.md 2013-10-07 14:05:50 -04:00
mccabe615 82e40fe581 Update README.md 2013-10-07 14:05:27 -04:00
Mike McCabe d9eadddfe3 adding flash message with validation errors, and redirect to sign_up 2013-10-07 13:47:33 -04:00
Mike McCabe d0d5165c6c adding env variable to run vulnerability tests 2013-10-07 13:46:55 -04:00
Mike McCabe 0d15dd0a6c pinning dbcleaner to lower version due to https://github.com/bmabey/database_cleaner/issues/224 2013-10-07 13:35:39 -04:00
Ken Johnson b3c309e776 Merge pull request #51 from chrismo/readme_for_capybara 
Additions to README
 2013-10-07 09:34:00 -07:00
chrismo e71834b830 Additions to README 2013-10-07 10:21:33 -05:00
Ken Johnson 83a16baf44 Merge pull request #49 from chrismo/capybara 
Added notice and removed spoilers from spec names.
 2013-10-03 17:54:55 -07:00
chrismo 525dfa1717 Added notice and removed spoilers from spec names. 2013-10-03 11:00:43 -05:00
Ken Johnson 538d01e5cf Merge pull request #48 from chrismo/capybara 
MOAR CAPYBARA
 2013-10-02 16:31:54 -07:00
chrismo 4ccdca8984 Fixed model specs, some of which I broke. 
There's a fight here between DatabaseCleaner strategies - simpler to use
the default :transaction for model specs, but Capybara lives in a
different world where different connections are in play and
:transactions don't work. So, while introducing the more cumbersome
(though with more control) DatabaseCleaner gem and its truncation
strategy, I forgot to make sure the model specs had the fixtures present
that they depend on. This is fixed up now.

The user spec for invalid email was also failing - the regex there is
not savvy enough to handle rejecting two @ signs, so I made the invalid
value something still invalid to get it passing -- real regex validation
of email is ... impossible, so we'll roll with this and move on.
 2013-10-02 17:53:12 -05:00