summaryrefslogtreecommitdiff
path: root/docs/tutorials/wiki2/src
AgeCommit message (Collapse)Author
2016-04-09- add missing filesSteve Piercy
2016-04-09add result of installation step in wiki2 tutorial, but using the recently ↵Steve Piercy
updated scaffold from master and normalize its version to 1.7. See #2104.
2016-02-28redirect to edit page when user attempts to add page that already existsSteve Piercy
- update src/*/views/default.py - update src/*/routes.py - write new test - revise docs, double-checking line counts and highlighting
2016-02-28apply change to all src/*/user.pySteve Piercy
2016-02-28wiki2 revert unnecessary hmac stuffSteve Piercy
2016-02-27wiki2 authentication bug fix and improvement against timing attackSteve Piercy
- Bytes type does not have encode method. The expected_hash retrieved from the database is a bytes object. - Use hmac.compare_digest instead of == to avoid timing attacks as a recommended security best practice. See https://www.python.org/dev/peps/pep-0466/ https://bugs.python.org/issue21306 and https://codahale.com/a-lesson-in-timing-attacks/ for details. Note, however, this was not backported to py2.6. For a tutorial, I am OK with stating this will not work on Python 2.6 with a clear warning note at the start of the tutorial and on the authentication step.
2016-02-18update tests chapterMichael Merickel
2016-02-18add fallback for next_urlMichael Merickel
2016-02-18add webtest and tests_require to setup.pyMichael Merickel
2016-02-16add first cut at source for authorization chapterMichael Merickel
2016-02-16remove whitespaceMichael Merickel
2016-02-16use page.name to prepare for contextMichael Merickel
2016-02-14implement the authentication example codeMichael Merickel
2016-02-14split routes into a separate moduleMichael Merickel
2016-02-14fix unicode issues with check_passwordMichael Merickel
2016-02-13improve the views section by removing quirks and explaining transactionsMichael Merickel
2016-02-12forward port changes to models / scripts to later chaptersMichael Merickel
2016-02-12update the models chapter with the new user modelMichael Merickel
2016-02-12let's go ahead and bite off more than we can chew by adding object-securityMichael Merickel
we'll allow anyone to create pages, not just editors finally we'll allow page creators of pages to edit their pages even if they are not editors
2016-02-12create an actual user model to prepare for securityMichael Merickel
2016-02-11copy layout and templates from views to authorizationMichael Merickel
2016-02-10move security into one placeMichael Merickel
2016-02-10update 404 templatesMichael Merickel
2016-02-10explain the base layout.jinja2 template and notfound viewMichael Merickel
2016-02-10several simple refactoringsMichael Merickel
- move auth from default.py to auth.py - rename errors to notfound - drop basic templates (mytemplate.jinja2, layout.jinja2)
2016-02-10split login from forbiddenMichael Merickel
2016-02-08fix functional testsMichael Merickel
2016-02-08fix jinja2 none testMichael Merickel
2016-02-08fix tests to get the bind from dbsession_factory properlyMichael Merickel
2016-02-08[wip] update tests in wiki2 tutorialMichael Merickel
2016-02-08expose the session factory on the registryMichael Merickel
2016-02-07update authorization chapter of wiki2 tutorialMichael Merickel
2016-02-07update definingviews chapter of wiki2 tutorialMichael Merickel
2016-02-07update definingmodels chapter of wiki2 tutorialMichael Merickel
2016-02-04fix the Base importMichael Merickel
2016-02-04update source for basiclayoutMichael Merickel
2015-12-02- add comment to NAMING_CONVENTION per 9b12c01168cb756ec36351d7414cad95e87f6581Steve Piercy
2015-12-02- rewrite wiki2/tests.rst (removed an obsolete reference to testing models, ↵Steve Piercy
per 2885a7b96545c037109d7999319f74869a640050) - add wiki2/src/tests/ files. special thanks to @ppaez
2015-11-16- complete rewrite of wiki2/authorization.rstSteve Piercy
- add wiki2/src/authorization/ files - improve <title> tag in views/tutorial/templates/edit.jinja2
2015-11-15wrap content with <p>Steve Piercy
2015-11-14commit new wiki2/src/views/tutorial filesSteve Piercy
2015-11-13update wiki2/src/views and wiki2/definingviews.rstSteve Piercy
2015-11-12Restore progress after backing changes out of master.Michael Merickel
This reverts commit 049e670aef9ea5611561546fd5c0e2dd6152b9b7.
2015-11-12Merge branch 'master' into feature/alchemy-scaffold-updateTres Seaver
Conflicts: docs/tutorials/wiki2/basiclayout.rst
2015-11-12update wiki2/src/models and wiki2/definingmodels.rstSteve Piercy
2015-11-12basiclayout/tutorial - models, scripts, static, templatesSteve Piercy
- use package instead of single file - add tests.py from scaffold - update basiclayout.rst with models section
2015-11-11basiclayout/tutorial - viewsSteve Piercy
- use package instead of single file - add tests.py from scaffold - update basiclayout.rst with views section
2015-11-11basiclayout/tutorial/setup.py - update template binding from chameleon to jinja2Steve Piercy
2015-11-11Revert "update wiki2/src/basiclayout/tutorial"Steve Piercy
2015-11-11- update basiclayout/tutorial/__init__.pySteve Piercy
- update section "Application configuration with ``__init__.py``" - move WIP to "Content Models with ``models.py``", wrapped by Sphinx comments
generated by cgit v1.2.3 (git 2.25.1) at 2026-01-12 10:17:37 +0000