haskell/yesod
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,830 Commits 42 Branches 853 Tags 10 MiB
7839de4dbd
Commit Graph

4830 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael Snoyman
7839de4dbd
Replace call to connPrepare with getStmtConn (fixes #1635) 2019-10-29 13:25:53 +02:00
Michael Snoyman
eb9432c01d
Simplify CI 2019-10-27 07:40:39 +02:00
Michael Snoyman
9b93e97a80
Merge pull request #1634 from betlgtu/master 
Translated message "CurrentPassword" for russian language.
 2019-10-27 07:35:29 +02:00
Виталий Котляров
ddc71e665b Translated message "CurrentPassword" for russian language. 2019-10-26 23:08:38 +03:00
Michael Snoyman
b5fb6caca0
Merge branch 'master' of github.com:yesodweb/yesod 2019-10-10 06:44:12 +03:00
Michael Snoyman
5fb58470fe
Merge pull request #1632 from yesodweb/addBasicAuthToYesodTest 
Add Basic Auth support to yesod-test
 2019-10-10 06:44:00 +03:00
Michael Snoyman
b788310519
Not compatible with nightly right now 2019-10-10 06:43:51 +03:00
Maximilian Tagher
e4c493d199 .. 2019-10-09 16:11:54 -07:00
Maximilian Tagher
ffd5ba0474 Add Basic Auth support to yesod-test 
This allows setting username/password for HTTP basic auth, similar to the --user flag of curl.
 2019-10-09 16:08:37 -07:00
Michael Snoyman
c8aeb61ace
Merge pull request #1631 from yogsototh/rss-2.0 
Support categories for Atom and RSS newsfeed
 2019-10-02 13:37:54 +03:00
Yann Esposito (Yogsototh)
3a7bff1537
Feedback fixes 2019-10-02 09:07:55 +02:00
Yann Esposito (Yogsototh)
a0d35dfe4c
add support for RSS categories 2019-09-30 22:12:27 +02:00
Michael Snoyman
2a71af250f
Merge pull request #1628 from sestrella/areq_and_wreq_custom_error_message 
Customize `areq` and `wreq` error message
 2019-09-10 11:24:45 +03:00
Sebastián Estrella
32ecbd056d Customize areq and wreq error message 2019-09-10 00:42:21 -05:00
Michael Snoyman
f054bac0e0
Version bump 2019-09-08 09:45:29 +03:00
Michael Snoyman
904644c577
Merge pull request #1627 from DanBurton/yesod-core-th-2-15-fix 
Add new CPP branch for template-haskell >= 2.15
 2019-09-08 08:58:27 +03:00
Dan Burton
ed69d69347 Add new CPP branch for template-haskell >= 2.15 2019-09-06 13:04:21 -04:00
Michael Snoyman
ba1e48308c
Merge pull request #1623 from jezen/master 
Increase CI timeout
 2019-08-27 14:54:46 +03:00
Jezen Thomas
d82baf83b6
Increase CI timeout 
The build on Azure DevOps is currently failing as the build-time is
exceeding 120 minutes. Hopefully 180 minutes should be sufficient.
 2019-08-27 12:19:29 +02:00
Michael Snoyman
50a3242507
Merge pull request #1622 from jezen/master 
Add jsAttributesHandler
 2019-08-26 16:25:46 +03:00
Jezen Thomas
46af7bfb76
Cleanup 2019-08-26 13:49:57 +02:00
Jezen Thomas
d1e4fd485b
Make jsAttributesHandler use jsAttributes 
This addresses this comment:

https://github.com/yesodweb/yesod/pull/1622#discussion_r317467498
 2019-08-26 12:05:30 +02:00
Jezen Thomas
59988f46a1
Add jsAttributesHandler 
This adds `jsAttributesHandler` to run arbitrary Handler code before
building the attributes map for the script tag generated by `widgetFile`.
This is useful if you need to add a randomised nonce value to that tag.

Closes https://github.com/yesodweb/yesod/issues/1621
 2019-08-23 21:57:48 +02:00
Michael Snoyman
2c2531c499
Merge pull request #1619 from 3v0k4/auth-dummy-json 
Dummy: Add support for JSON submissions
 2019-08-23 09:10:30 +03:00
3v0k4
baa6bfb3a8 Dummy: Check for JSON first 2019-08-23 00:48:17 +02:00
Michael Snoyman
d7a29977bf
Merge pull request #1617 from league/url-encode 
URL-encode POST parameters in yesod-test
 2019-08-20 09:10:21 +03:00
Michael Snoyman
56e85572d4
Merge pull request #1620 from jezen/master 
Move JavaScript form submission to script block
 2019-08-20 09:08:55 +03:00
Christopher League
fa90ab19ca Update changelog 2019-08-19 15:57:15 -04:00
Jezen Thomas
d385ada853
Move JavaScript form submission to script block 
If someone wants their website to score a good grade on a security
vulnerability scanner like Mozilla Observatory, they will need to enable
the Content Security Policy header. When using CSP, it is possible to
explicitly allow inline JavaScript in `<script>` tags by specifying the
sha256 of the snippet. However the same is _not_ true of any JavaScript
included in a HTML attribute like `onload`.

This changes moves the JavaScript form submission out of the `onload`
HTML attribute and into a `<script>` tag so the user can add the hash of
this script to their explicitly-allowed `script-src` list, and they can
avoid using undesirable CSP rules like `unsafe-inline`.

Without explicitly allowing this script when using CSP, the script would
fail and the user would have to click the button to continue.
 2019-08-19 20:56:00 +02:00
3v0k4
657b790a3d Dummy: Add support for JSON submissions 2019-08-19 19:25:37 +02:00
James Burton
d8ebb95c96
Added Multi Input Form Functionality (#1601) 2019-08-16 04:30:20 +01:00
Christopher League
08a9632eba yesod-test: correction to PR for multipart 2019-08-13 11:58:11 -04:00
Christopher League
3f98190645 Bump version to 1.6.6.2 2019-08-13 10:39:44 -04:00
Christopher League
a79f73a040 yesod-test: url-encode addPostParam keys & values 
Fixes #1616
 2019-08-13 10:34:57 -04:00
Christopher League
ac66323394 yesod-test: failing tests for encoding errors 
Related to issue #1616
 2019-08-13 10:29:21 -04:00
Michael Snoyman
37c0df8dc1
Merge pull request #1613 from jezen/master 
Add mreqMsg
 2019-07-18 14:52:35 +03:00
Jezen Thomas
e5e39f353d
Implement mreq in terms of mreqMsg 2019-07-18 13:56:19 +03:00
Jezen Thomas
14ade1ad98
Add mreqMsg 
When a form has multiple `mreq` fields and the user submits a form with
more than one of these values missing, they see an ambiguous collection
of "Value is required" messages. The `mreqMsg` function allows you to
provide your own MsgValueRequired message for a better UX.
 2019-07-18 11:11:02 +03:00
Michael Snoyman
bc73850173
Merge pull request #1608 from leifmetcalf/ignore 
Trivial: add stack.yaml.lock to .gitignore
 2019-07-07 20:18:19 +03:00
Michael Snoyman
1af6f243f6
Merge pull request #1607 from leifmetcalf/patch-1 
Trivial: use git clone --recurse-submodules instead of --recursive
 2019-07-07 20:17:17 +03:00
Leif Metcalf
048148824c
Ignore stack.yaml.lock 2019-07-06 14:22:32 +12:00
Leif Metcalf
6eb597052a
Use git clone --recurse-submodules 2019-07-06 14:00:11 +12:00
Michael Snoyman
636f35b081
Merge pull request #1605 from mmilata/html-typo 
Trivial: remove comma from <form> tag
 2019-06-18 21:46:36 -07:00
Martin Milata
b4d3e01afb Remove comma from <form> tag 2019-06-18 01:56:32 +02:00
Michael Snoyman
af038b75f8
Merge pull request #1604 from jprider63/optional-labels 
Optional labels
 2019-06-16 06:28:08 -07:00
James Parker
0f8441eb73 Updated changelog. 2019-06-15 09:45:32 -04:00
James Parker
4424abe449 Hide bootstrap labels when empty 2019-06-11 14:09:54 -04:00
Steven Leiva
c90c50911c
Merge pull request #1598 from StevenXL/update-clearcreds 
clearCreds redirect behavior depends on request type.
 2019-05-24 10:20:55 -05:00
patrick brisbin
e470f1a3f8 Version bump 2019-05-21 12:10:03 -04:00
patrick brisbin
096049e0e3 sendClose and sendPing act in m () 
The previous type signature was attempting to read the Connection off of
the m in WebSocketsT m, rather than the WebSocketsT itself. This was
likely a typo that happened to type-check. The types for these now align
with the rest of the API, read the Connection off of WebSocketsT, and
make no demands of the m other than MonadIO.

Fixes #1599.
 2019-05-21 12:10:03 -04:00