Manually apply an angularjs digest cycle when invitations_worker returns.
It seems web workers are outside the digest cycle and a digest must be manually invoked in the worker callback. Otherwise changes in the model (e.g. flags that make alerts temporarily visible) may not...
View ArticleSame as 7d37812239d2a066d5a50bb10d295e659e09770c but for the rest of worker...
Same as 7d378122 but for the rest of worker callbacks in any angular services that use web workers.
View ArticleRemoved .erb extension from coffeescript file that didn't really need it.
We use .erb in the asset pipeline to enable the use of the asset_path helper in coffeescript files. This is very useful to get the actual URL of a web worker's javascript file, which we need to invoke...
View ArticleUse Rails helper strip_tags to remove potentially dangerous tags from url,...
Use Rails helper strip_tags to remove potentially dangerous tags from url, fetch_url and title attributes of Feed model. Those three attributes are entered by the user, and therefore cannot be trusted....
View ArticleSanitize folder title using a plaintext sanitizer, instead of an HTML sanitizer.
This makes more sense and avoids the user entering malicious input.
View ArticleSanitize entry attributes with the appropiate Sanitizer method, depending on...
Sanitize entry attributes with the appropiate Sanitizer method, depending on whether they are plain text or HTML. This is functionally equivalent to the way it was done before, but sanitization code is...
View ArticleRemoved strict sanitizer configuration that is no longer used.
This config was used with the Sanitize gem to sanitize plaintext attributes, which should have no markup. Now we use strip_tags from a Rails helper, which is actually more correct (and avoids problems...
View ArticleSanitization returns an empty string, instead of nil, if the input string is ...
This helps assuring attributes have a not-nil value.
View ArticleAdd loofah gem to bundle.
It is a sanitization gem used by the rails sanitizer. It has a feature that the Sanitize gem lacks: it can be told not to escape HTML entities when sanitizing.
View ArticleSanitize plaintext with Loofah gem.
This is necessary because Loofah, unlike Sanitize, can be told not to escape HTML entities in the sanitized text. This is necessary to sanitize URLs entered by the user, otherwise & characters get...
View ArticleDo not attempt to record deployments in New Relic.
It seems this feature has not been available in the free NewRelic tier for some time.
View ArticleAfter clicking in the feed link under an entry title, hide entry tooltips.
This fixes a bug in which the tooltip associated to the feed link under the entry title did not disappear after clicking on the link.
View ArticleWhen using keyboard shortcuts to select a sidebar link, hide any entry...
When using keyboard shortcuts to select a sidebar link, hide any entry tooltips that are currently visible. This fixes a bug in which entry tooltips could remain on the page after selecting a sidebar...
View ArticleFixed a bug that made selecting a sidebar link with keyboard shortcuts fail i...
Fixed a bug that made selecting a sidebar link with keyboard shortcuts fail if the entries list was empty.
View ArticleWhen checking if an entry already exists as part of a feed refresh, sanitize...
When checking if an entry already exists as part of a feed refresh, sanitize the entry guid before the check. This is necessary because the Entry model sanitizes the guid (it is an outside input that...
View ArticleIn feeds that do not have a url tag in entries, but an enclosure tag with an...
In feeds that do not have a url tag in entries, but an enclosure tag with an url attribute instead (e.g. itunes podcasts), use the enclosure URL as the entry URL. Before this, the URL in these cases...
View Article
