a96ed6b4be
web: modified RPCs to use new consent_type table definitions.
...
Added check consent type function for RPCs and Web forms.
2018-06-04 11:26:39 -05:00
6482527bb5
web: refactored code to remove config option enable_record_optin_consent
...
Now the code uses the enabled flag for the consent_type ENROLL to detmerine if a terms of use
is showed to the user and whether or not consent is recorded for this general terms of use.
2018-06-04 11:26:38 -05:00
1f70734f5f
web: modified privacy prefs code
...
Privacy prefs now loads the the consent_types found in the database table dynamically based on the enabled and privacypref flags introduced.
Removed enable_record_optin_consent config settings. Now the 'enabled' field in consent_type takes its place, one a consent_type by consent_type basis.
2018-06-04 11:26:35 -05:00
b0557ef161
web: updated preferences for stats exports to use new consent table definitions.
2018-05-24 12:03:35 -05:00
cbd1b5cc02
web: added consent table to delete functionality.
2018-05-24 12:02:43 -05:00
35b446f243
web: Update web RPCs to use new consent defintions.
2018-05-24 12:02:31 -05:00
4fa8a9faac
web: Updated database, consent and consent_type tables.
...
Also updated boinc_db.inc to add delete_for_use and reflect new table definitions.
2018-05-24 12:00:00 -05:00
a8d7be5854
web: Misc minor changes.
...
Changed name of consent function to be more generic.
Added translation of ops page text.
2018-05-22 15:40:18 -05:00
284694c704
web: Fixed bug, variable restored.
2018-05-17 14:47:02 -05:00
07607ed41d
web: Fixed bug found by Scrutinizer.
...
Removed unused code.
2018-05-17 14:30:11 -05:00
039db259b5
Merge branch 'master' into sak-useroptin-dbaddconsent
2018-05-17 14:14:33 -05:00
4ad801ff30
web: project privacy preferences modified to add 'consent to data export' option.
...
Added new preferences sub-class for consent table modification.
Added privacy preference form item to record user giving consent to data exports.
User's consent is recorded in the consent table.
2018-05-17 14:07:46 -05:00
16846e4986
web: Make sure that the terms of use file exists as well as opt-in consent project config.
2018-05-17 10:50:23 -05:00
83ea2bc9ec
web: fixing spacing identified by scruitinizer
2018-05-17 09:58:03 -05:00
b6804ab5de
web: add mising closing parenthesis
2018-05-17 09:15:27 -05:00
ae7200490a
web: Make the delay after invalidating the autheniticator something that
...
can be customized by projects in the project.inc file
2018-05-17 08:56:45 -05:00
f799c9c04b
web: fix issues identified by scruitinizer
2018-05-16 16:26:14 -05:00
7172942bb0
web: reorganize code so that error_page is not called in inc files
2018-05-16 16:08:19 -05:00
fdf493e3d4
web: use sensible constant values for times in code (improve
...
readability)
2018-05-16 15:43:49 -05:00
53250e7d27
web: fix bug in change email where the reversal email was only sent to
...
the new email when not using phpmailer
2018-05-15 14:32:07 -05:00
239af2d508
Merge branch 'master' into knr_right_to_erase
...
Conflicts:
html/ops/db_update.php
2018-05-15 13:09:11 -05:00
02a59808b9
Merge pull request #2500 from Uplinger/email_change_notification
...
Email change notification
2018-05-15 09:42:20 -07:00
fecbfa3bd2
Modified the table definition for user table to have email_addr_change_time to be indexed per davids suggestion.
2018-05-10 09:34:39 -05:00
f551dd8776
web/server: when a user deletes their account (wipe), set results in progress
...
and results returned but not yet validated to "Client
Detached/Abandoned" status. Let valid results remain. In all cases set
userid and hostid to 0
2018-05-08 17:15:05 -05:00
e82a6984cd
Fixed Scrutinizer issue where variables were declared blank but declared later with string value in inc/email.inc
2018-05-08 15:14:10 -05:00
6fa9a01ea6
web: Add an opt-in consent form to login workflow.
...
When a user logs in, and they have not yet consented, the user is presented with a form to consent to the Terms of Use. This adds or modifies records in the consent table.
Supported logins are: web form, authenticator, email_link, and ldap.
2018-05-08 14:36:05 -05:00
d433bedd02
web: Fixed bugs found by Scrutinizer.
2018-05-08 10:25:13 -05:00
cbcbb5e34a
Merge remote-tracking branch 'upstream/keith_email' into email_change_notification
...
Conflicts:
html/user/am_set_info.php
html/user/edit_email_form.php
html/user/recover_email.php
2018-05-08 08:28:54 -05:00
2905e50dfe
Cleaned up text within email recovery pages.
...
Also, removed excessive code and added an else statement for cleanup
2018-05-07 22:54:28 -05:00
e874a86dab
Removed call to BoincDb::get() as it called within escape_string function.
2018-05-07 22:50:06 -05:00
d0fcd1e729
Various tweaks to Keith's changes.
...
Keith, call me if you want to discuss any of these.
2018-05-07 16:15:51 -07:00
4720ab77b4
web: fix issue with password hash caused by merge from master
2018-05-07 16:39:58 -05:00
ec98197f23
web: fix bug introduced during merge
2018-05-07 13:31:09 -05:00
cff14c4107
Merge branch 'master' into knr_right_to_erase
...
Conflicts:
html/inc/user_util.inc
2018-05-07 13:09:18 -05:00
f868227915
web/server: change primary key of user_deleted to userid and
...
host_deleted to hostid
2018-05-07 11:17:45 -05:00
0537feba0c
web: Add functionality of consent to Web site and RPCs.
...
create_account RPC modified to record a user's consent.
am_set_info RPC modified to allow for modification of user's consent.
Account registration on Web site modified to show terms_of_use.txt file and record user's consent.
2018-05-04 18:42:05 -05:00
23640e9a8a
web: Add new tables to database.
...
Add tables consent and consent_type. Projects automatically created with a pre-defined consent_type. When projects update database, pre-defined consent_type will be added as well.
2018-05-04 18:40:14 -05:00
bcd853bb4f
web: implementation of wipe account
2018-05-04 17:36:09 -05:00
ae17dfb09e
server: add user_deleted and host_deleted output files for db_dump.
...
Also modify db_dump to exclude user records whose authenticator starts
with 'deleted' or host domain names that equal 'deleted'. Those values
are set by the obfuscate delete method.
2018-05-03 15:31:42 -05:00
b7bb437aba
web: change primary key for user_deleted and host_deleted to simply be
...
id instead of userid and hostid
2018-05-03 10:38:22 -05:00
678f151037
Factor passwd hash logic into a function
...
... rather than having it duplicated in 3 places.
Please review https://boinc.berkeley.edu/trac/wiki/CodingStyle
2018-05-02 20:09:37 -07:00
4002f6d372
web: add logic to insert into user_deleted and host_deleted when account
...
is removed from the system. add task to remove entries from those
tables after 60 days.
2018-05-02 15:36:57 -05:00
4aa5acbc45
Changed email.inc so that it will look for older version of PHPMailer as well as the latest 6.0.x version.
2018-05-02 13:36:16 -05:00
7c9b4ad223
Fixed bug where new email address and change time was not being passed along to email change function
2018-05-02 09:46:34 -05:00
aaf866ebb0
Delete token for email recovery.
2018-05-01 21:30:50 -05:00
e821de2643
web: add logic to insert into user_deleted and host_deleted when
...
deleting a user
2018-05-01 17:08:29 -05:00
762c052315
Merge pull request #2487 from BOINC/dpa_util
...
move random_string() and dtime() from util.inc to util_basic.inc
2018-05-01 14:02:44 -05:00
5914060d4b
web: change names of admin functions to e.g. admin_show_user()
...
to avoid conflict with non-admin versions
2018-05-01 10:47:38 -07:00
69f78a69cd
Fix bug where I was sending it a null string to lookup_prev_email_addr
2018-05-01 12:13:39 -05:00
4785a05784
Fixing missing ending call in function.
2018-05-01 11:11:25 -05:00
Shawn Kwang