Thibault Duplessis
dc27f532b4
provide sessionId in app JSON, and accept it as header or param
2018-07-05 13:25:20 +02:00
Isaac Levy
9c92554a2f
Fix RefRegex
...
I also verified the other new regexs compile.
2018-06-28 00:17:36 -04:00
Isaac Levy
d5952be49a
Revert "Revert "Merge pull request #4420 from isaacl/stringOpts""
...
This reverts commit ae1afb645d
.
2018-06-28 00:06:25 -04:00
Thibault Duplessis
ae1afb645d
Revert "Merge pull request #4420 from isaacl/stringOpts"
...
This reverts commit 8dcddaa104
, reversing
changes made to 37e803307f
.
2018-06-27 06:36:03 +02:00
Isaac Levy
c5f7db1790
Various regex opts
...
- Prefer unanchored matching over `.*<pattern>.*`
- Prefer possessive matching when possible, which
is faster is nearly every circumstance and universal use
minimizes bad regex behavior
- guard <string>.replace, which is slow in jdk below 9.
even at jdk 9, indexOf is faster than replace for misses,
but the performacne isn't much different.
2018-06-25 00:43:16 -04:00
Niklas Fiekas
83babe9f73
let /auth/set-fp answer 204 ( fixes #4411 )
2018-06-20 23:42:28 +02:00
Thibault Duplessis
718a9f588a
batch select puzzles after given ID
2018-06-04 16:57:04 +02:00
Thibault Duplessis
920a2c4413
tweak api param
2018-05-21 14:18:10 +02:00
Thibault Duplessis
999cf6f7d8
/api/account/playing API endpoint
2018-05-21 14:10:22 +02:00
Thibault Duplessis
2d87373446
fix ipban login
2018-05-12 08:48:53 -05:00
Thibault Duplessis
680759f946
implement user tournament custom start date - closes #4353
2018-05-11 18:47:45 -05:00
Thibault Duplessis
52f0f12dfb
no longer reload forum posts on homepage
2018-05-11 22:34:31 +02:00
Thibault Duplessis
f111dca3a2
use cached tournament ranking to fix provisional player bug
...
The former method returned the same rank for all players
with the same rating until the tournament starts,
because they all had the same magic score
2018-05-11 18:38:19 +02:00
Thibault Duplessis
62d263c238
CSP enabled live setting
2018-05-11 02:41:54 +02:00
Thibault Duplessis
f9ac82f827
on dev and stage, every user has the Beta permission
2018-05-11 01:32:22 +02:00
Thibault Duplessis
7386978d33
tweak tournament creation rate limits
2018-05-11 01:10:22 +02:00
Thibault Duplessis
c4404dc5e0
fix tourney creation form for web/mobile/oauth
2018-05-11 00:36:39 +02:00
Thibault Duplessis
d67aaa0996
OAuth2 endpoint to create tournaments
2018-05-10 23:39:15 +02:00
Thibault Duplessis
8a0b3eb826
return proper challenge error in mobile API
2018-05-10 18:05:29 +02:00
Thibault Duplessis
ebb1ee24f2
delete RoundApiBalancer
2018-05-09 21:43:37 +02:00
Thibault Duplessis
54fbb92d68
implement literate PGN export
2018-05-09 19:16:47 +02:00
Vincent Velociter
a4107d94fc
Add study chat data to mobile api
2018-05-09 09:49:44 +02:00
Thibault Duplessis
049f8637e4
we should have HTTP 1.1 everywhere now
2018-05-09 04:39:07 +02:00
Thibault Duplessis
7f7088c357
code tweaks
2018-05-08 21:27:05 +02:00
Thibault Duplessis
2157c815f2
refactor ndjson streams
2018-05-08 16:31:38 +02:00
Thibault Duplessis
4e859c89ce
implicit results are dangerous
2018-05-08 03:30:02 +02:00
Thibault Duplessis
6c13e4431b
reuse isPage
2018-05-08 03:08:22 +02:00
Niklas Fiekas
62e180a6b5
use Option[Nonce] instead of stub
2018-05-08 02:55:47 +02:00
Thibault Duplessis
ba8996da19
only generate nonce for actual page requests (not XHR or WS)
2018-05-08 02:19:25 +02:00
Thibault Duplessis
134287091e
move nonce from Context to PageData
2018-05-08 01:51:10 +02:00
Thibault Duplessis
a56f5b88d2
supercharge game export by IDs
...
See https://lichess.org/api#operation/gamesExportIds
2018-05-08 01:51:10 +02:00
Thibault Duplessis
dcb2a5f424
mobile API request
2018-05-08 01:51:10 +02:00
Thibault Duplessis
3ca98b77fa
remove deprecated API
...
use https://lichess.org/api#operation/gamesExportUsername instead
2018-05-08 01:51:10 +02:00
Thibault Duplessis
987606dbd9
better stream team members
2018-05-08 01:51:10 +02:00
Thibault Duplessis
6225b48ca7
better stream team members
2018-05-08 01:51:10 +02:00
Niklas Fiekas
a9403f93f8
apply csp almost everywhere
2018-05-07 19:21:33 +02:00
Thibault Duplessis
03d2bd91ac
download games played against a specific opponent
2018-05-07 02:34:46 +02:00
Thibault Duplessis
e89b7f1ef1
improve export of a single game
2018-05-07 02:17:23 +02:00
Thibault Duplessis
3428119b3c
unify game exports
2018-05-07 02:10:47 +02:00
Thibault Duplessis
f83fedfc2e
stream games as application/x-ndjson
2018-05-07 01:26:42 +02:00
Thibault Duplessis
4ffed3ede3
support JSON in new game export API
2018-05-07 00:56:13 +02:00
Thibault Duplessis
eed7f88031
refactor shit like there's a tomorrow
2018-05-07 00:40:17 +02:00
Niklas Fiekas
a3431461aa
hasher rate limiting for 2fa forms
2018-05-06 21:52:59 +02:00
Thibault Duplessis
f21fd02625
add missing hasher rate limiter
2018-05-06 21:48:56 +02:00
Thibault Duplessis
a58139560f
fix password rate limiter
2018-05-06 21:46:52 +02:00
Thibault Duplessis
d7a7ad3f9f
Merge branch '2fa'
...
* 2fa: (33 commits)
22FA login wording
improve 2fa feedback
fix login form error message
2fa login form
let enabling 2fa terminate all other sessions
totpDefault -> currentTotp, totp(period) can be private
XHR login form
use Seq.has in ToptSecret.verify
login with ToptToken - WIP
white border around qrcode required for dark theme
license header for qrcode.min.js
trans invalidAuthenticationToken
hide 2fa as beta
allow mods to disable 2fa
load totp secret in user object
allow to disable 2fa again
fixes from code review
remove wrapping div
more tests
actually enable totp
...
2018-05-06 21:17:14 +02:00
Thibault Duplessis
c33f4582b0
use oauth token for cli requests
2018-05-06 20:00:51 +02:00
Thibault Duplessis
d014095998
improve 2fa feedback
2018-05-06 19:29:13 +02:00
Thibault Duplessis
e6f5b8fdbf
2fa login form
2018-05-06 19:10:18 +02:00
Niklas Fiekas
4fd644e10b
let enabling 2fa terminate all other sessions
2018-05-06 18:16:15 +02:00