summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2016-02-28update distributing.rst (done)Steve Piercy
- minor grammar - clean up sdist output
2016-02-28update tests.rst (done)Steve Piercy
- minor grammar - mention BaseTest class - clean up test output
2016-02-28Merge pull request #2379 from stevepiercy/feature/alchemy-scaffold-update-authcnSteve Piercy
wiki2 authentication bug fix
2016-02-28apply change to all src/*/user.pySteve Piercy
2016-02-28Merge pull request #2380 from stevepiercy/feature/alchemy-scaffold-updateSteve Piercy
wiki2 authorization (done)
2016-02-28wiki2 revert unnecessary hmac stuffSteve Piercy
2016-02-28wiki2 authorization (done)Steve Piercy
- minor grammar and syntax - align order of bullet points for NewPage and PageResource with code - synch up "viewing app in browser" sections between authentication and authzn
2016-02-27grammar fixSteve Piercy
2016-02-27wiki2 authentication bug fix and improvement against timing attackSteve Piercy
- Bytes type does not have encode method. The expected_hash retrieved from the database is a bytes object. - Use hmac.compare_digest instead of == to avoid timing attacks as a recommended security best practice. See https://www.python.org/dev/peps/pep-0466/ https://bugs.python.org/issue21306 and https://codahale.com/a-lesson-in-timing-attacks/ for details. Note, however, this was not backported to py2.6. For a tutorial, I am OK with stating this will not work on Python 2.6 with a clear warning note at the start of the tutorial and on the authentication step.
2016-02-27Merge pull request #2378 from stevepiercy/feature/alchemy-scaffold-updateSteve Piercy
update authentication, design
2016-02-26update authentication (done)Steve Piercy
- remove highlighting from some code blocks because it didn't make sense and added visual noise and dissonance - minor grammar and syntax
2016-02-26minor grammarSteve Piercy
2016-02-26Merge pull request #2375 from stevepiercy/feature/alchemy-scaffold-updateSteve Piercy
update definingviews (done)
2016-02-26update definingviews (done)Steve Piercy
- minor grammar and syntax
2016-02-24Merge pull request #2373 from stevepiercy/feature/alchemy-scaffold-updateSteve Piercy
update definingmodels (done)
2016-02-24update definingmodels (done)Steve Piercy
- minor grammar and syntax
2016-02-23Merge pull request #2366 from stevepiercy/feature/alchemy-scaffold-updateSteve Piercy
update definingmodels (WIP)
2016-02-23update definingmodels (WIP)Steve Piercy
- minor grammar and syntax - define hashing and its purpose
2016-02-22Merge pull request #2364 from stevepiercy/feature/alchemy-scaffold-updateSteve Piercy
update installation and basiclayout
2016-02-22update basiclayoutSteve Piercy
- minor grammar and syntax - insert complete mymodel.py code
2016-02-22update installationSteve Piercy
- update command line output to reflect changes to scaffold - fix inconsistent heading levels - add spacing to separate sections - minor grammar and syntax
2016-02-21Merge pull request #2363 from stevepiercy/feature/alchemy-scaffold-updateSteve Piercy
revert a couple of the reversions
2016-02-21revert a couple of the reversionsSteve Piercy
2016-02-21Remove references to pipBert JW Regeer
2016-02-21Merge pull request #2361 from ergo/patch-1Michael Merickel
Fix the import from meta
2016-02-21Fix the import from metaMarcin Lulek
2016-02-21Merge pull request #2357 from stevepiercy/feature/alchemy-scaffold-updateSteve Piercy
wiki2 docs update WIP
2016-02-21oopsie, include installation in commitSteve Piercy
2016-02-21wiki2 docs update WIPSteve Piercy
- minor grammar, .rst syntax - add pip to glossary - add pip instructions, commented until 1.7 is released
2016-02-18Merge pull request #2334 from mmerickel/feature/alchemy-scaffold-update-tweaksMichael Merickel
object-level security and tons of other small improvements to the wiki2 tutorial
2016-02-18update tests chapterMichael Merickel
2016-02-18add fallback for next_urlMichael Merickel
2016-02-18add webtest and tests_require to setup.pyMichael Merickel
2016-02-18update the authorization chapterMichael Merickel
2016-02-16add first cut at source for authorization chapterMichael Merickel
2016-02-16remove whitespaceMichael Merickel
2016-02-16use page.name to prepare for contextMichael Merickel
2016-02-16add a new authentication chapterMichael Merickel
2016-02-14implement the authentication example codeMichael Merickel
2016-02-14split routes into a separate moduleMichael Merickel
2016-02-14fix unicode issues with check_passwordMichael Merickel
2016-02-13highlight more appropriate lines in viewsMichael Merickel
2016-02-13fix syntaxMichael Merickel
2016-02-13improve the views section by removing quirks and explaining transactionsMichael Merickel
2016-02-12update the views/models with setup.py developMichael Merickel
2016-02-12forward port changes to models / scripts to later chaptersMichael Merickel
2016-02-12add the bcrypt dependencyMichael Merickel
2016-02-12update the models chapter with the new user modelMichael Merickel
2016-02-12let's go ahead and bite off more than we can chew by adding object-securityMichael Merickel
we'll allow anyone to create pages, not just editors finally we'll allow page creators of pages to edit their pages even if they are not editors
2016-02-12create an actual user model to prepare for securityMichael Merickel
generated by cgit v1.2.3 (git 2.25.1) at 2026-02-02 12:03:40 +0000