1
0
Fork 0
forked from OpenNeo/impress
Commit graph

32 commits

Author SHA1 Message Date
5601511ad5 xss vulnerability in outfits#show
This one was actually pretty darn clever - nobody's abused it, but
I was reading a blog post where someone described this type of
issue, I realized it was a brilliant attack, and then realized
DTI was vulnerable. Oops. Thanks for the solution, Jamie!

http://jamie-wong.com/2012/08/22/what-i-did-at-khan-academy/#XSS+Fix
2012-10-20 17:56:38 -05:00
54ca5881fe add thumbnails to outfits#show via open graph 2012-07-29 16:45:12 -04:00
70cf262387 remove campaign banner from most pages 2011-10-10 22:06:46 -05:00
c930397123 edit campaign copy now that image mode is public 2011-08-07 19:52:35 -04:00
f9de777c79 update campaign: upgrade complete 2011-08-05 00:12:17 -04:00
163d74fe07 donate update, campaign complete 2011-08-04 10:25:57 -04:00
4f0e7899b7 Your Items intro text polishing 2011-07-31 00:59:29 -04:00
358840076c closet lists, round one 2011-07-29 10:52:04 -04:00
e6c419c7e0 give user paths a canonical tag 2011-07-26 18:56:14 -04:00
02ef70f749 simplify closet hangers view, replace user_is?(@user) with !public_perspective? 2011-07-20 12:39:18 -04:00
77818471c5 closet hangers page has nice remove button 2011-07-15 23:14:26 -04:00
437b1c052d quantity form on your items page 2011-07-15 17:21:18 -04:00
d5641dddbb user closet display 2011-07-14 13:56:20 -04:00
7640369332 drop donate bar into items, outfits#show 2011-07-09 11:45:30 -04:00
323cf772bc actually dynamic progress bar, on home page too 2011-07-01 15:38:13 -04:00
5ecd5f3ce4 donate page noninteractive 2011-06-28 13:24:40 -04:00
443b144f29 image mode 2011-06-27 15:33:34 -04:00
cd947b61b3 hide titles for items index and show from main body 2011-05-13 08:20:29 -04:00
b7fb5a952b Revert "implement head.js"
This reverts commit 12ffa33f4f.
2010-12-06 18:50:13 -05:00
12ffa33f4f implement head.js 2010-12-05 21:18:52 -05:00
0399e0a38f remove tell the world link 2010-11-30 16:52:38 -05:00
d8da87cbd9 ignore cap files, move auth config to yaml file 2010-11-13 10:37:57 -05:00
6b92c2aa33 loading current user outfit list, deleting outfits, toggling star 2010-11-11 13:43:22 -05:00
1dd2ccb00b lovely interface for saving outfits. still no reading them yet 2010-11-10 16:59:54 -05:00
1fd98fb191 basic interaction with fake outfits 2010-11-08 20:40:03 -05:00
a5b119a9bc contributions viewing 2010-11-06 11:52:58 -04:00
2d550724f0 bulk add pets 2010-11-05 20:09:03 -04:00
c8acdc4e8d working home page 2010-11-05 18:45:05 -04:00
bfb53ee81f add ?return_to to login urls 2010-10-18 18:17:08 -04:00
7939b0570b put userbar where it belongs 2010-10-18 18:10:50 -04:00
4d4ded3c11 items controller, basic view 2010-05-15 13:47:46 -04:00
87fc4bdf05 rails 3 2010-05-14 18:12:31 -04:00