{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":634068886,"defaultBranch":"master","name":"nomos","ownerLogin":"lf-","currentUserCanPush":false,"isFork":true,"isEmpty":false,"createdAt":"2023-04-29T00:39:01.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/6652840?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1686771509.756927","currentOid":""},"activityList":{"items":[{"before":"37d99d6d685aee4ed657249a51bc44b96956138b","after":"e1dfb87eb71447eafcafffa5e247064b42cbcb6a","ref":"refs/heads/jade/docker-compose-devenv","pushedAt":"2023-10-05T19:29:34.000Z","pushType":"push","commitsCount":4,"pusher":{"login":"TyIsI","name":null,"path":"/TyIsI","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/3118952?s=80&v=4"},"commit":{"message":"Merge branch 'master' into jade/docker-compose-devenv","shortMessageHtmlLink":"Merge branch 'master' into jade/docker-compose-devenv"}},{"before":null,"after":"96f552335fb3a8f4dce5c928017ba1ebd4d6595e","ref":"refs/heads/jade/db-placeholders","pushedAt":"2023-06-14T19:38:29.756Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"wip on placeholders","shortMessageHtmlLink":"wip on placeholders"}},{"before":null,"after":"b32e4e00577f19beb598511535afe339ec5dfe69","ref":"refs/heads/jade/pin-login-dead-code","pushedAt":"2023-06-01T00:10:31.658Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"tidy: delete unused pin and rfid *login* code\n\nThis is all dead code: the ability to log in with pin or rfid was ripped\nout from the interface in 2015 in\ne44d9f6f9c38c078daa9a54b3873d178213629e6 but nobody removed the\nimplementation.\n\nI cannot conceive of any use case where being able to *log in* with\neither rfid or pin to get your user's privileges is a good idea for\nsecurity reasons, so we should just remove the code altogether. All the\nreasonable use cases for these are better served with what was\nactually built: CheckPin and CheckRfid, executed by a service account on the\nmachine that needs to check pins/rfid credentials and do something based\non them.","shortMessageHtmlLink":"tidy: delete unused pin and rfid *login* code"}},{"before":"e6c7cade85a0d6e138637002564dba45516942d8","after":"32a3827e5424d708799f59d921fd812219e5790d","ref":"refs/heads/jade/otel","pushedAt":"2023-05-09T01:57:01.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"doc(otel): write README and example env vars","shortMessageHtmlLink":"doc(otel): write README and example env vars"}},{"before":null,"after":"994d5b978a4ed4342d530834f42750f18493e2c7","ref":"refs/heads/jade/fix-301","pushedAt":"2023-05-06T00:28:10.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"fix: test failure in EmailTemplateDomainTest::test_Service\n\nFixes #301","shortMessageHtmlLink":"fix: test failure in EmailTemplateDomainTest::test_Service"}},{"before":"c3a4762b4b3eb207de9273e19881e7293e0a9eb1","after":"e6c7cade85a0d6e138637002564dba45516942d8","ref":"refs/heads/jade/otel","pushedAt":"2023-05-06T00:13:41.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"doc(otel): write README and example env vars","shortMessageHtmlLink":"doc(otel): write README and example env vars"}},{"before":"7ab5a4e2463b91603472075e67079609f4c59fa2","after":"c3a4762b4b3eb207de9273e19881e7293e0a9eb1","ref":"refs/heads/jade/otel","pushedAt":"2023-05-06T00:11:32.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"doc(otel): write README and example env vars","shortMessageHtmlLink":"doc(otel): write README and example env vars"}},{"before":"d5fe145c6c531212a8d106adc8e66d6d7052107f","after":"7ab5a4e2463b91603472075e67079609f4c59fa2","ref":"refs/heads/jade/otel","pushedAt":"2023-05-05T23:38:21.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"fix(otel): do not wait for exit handlers to send responses","shortMessageHtmlLink":"fix(otel): do not wait for exit handlers to send responses"}},{"before":"e684d4eebdb633805662253a1372cfb6daa1e025","after":"d5fe145c6c531212a8d106adc8e66d6d7052107f","ref":"refs/heads/jade/otel","pushedAt":"2023-05-05T23:35:42.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"fix(otel): do not wait for exit handlers to send responses","shortMessageHtmlLink":"fix(otel): do not wait for exit handlers to send responses"}},{"before":null,"after":"e684d4eebdb633805662253a1372cfb6daa1e025","ref":"refs/heads/jade/otel","pushedAt":"2023-05-05T07:41:33.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"feat(otel): trace links in headers","shortMessageHtmlLink":"feat(otel): trace links in headers"}},{"before":"fa6b19607bbe8e979d832dda2dfb2a9b90f28802","after":"31dc531d2d79ad639669e305213182a34ec24201","ref":"refs/heads/jade/cookie-security","pushedAt":"2023-04-30T06:24:22.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"fix!: mitigate CSRF by setting aggressive session cookie settings\n\nThere are perhaps still creative bypasses to this, but it should almost\nentirely stop CSRF from happening by preventing the browser sending\nsession cookies on cross-origin requests to the API service. This\nshould, nevertheless, mitigate almost all CSRF.\n\nI chose Strict because we will never send requests to the backend\ndirectly off of links from other sites: the front end is the only thing\nsending requests.\n\nBREAKING CHANGE: if we have some other web site than the membership site\naccessing the API, this would break it. I am not aware of one, but\nplease tell me if there is one.\n\nI also set HttpOnly on the session cookie because there is no\nconceivable reason that JavaScript could ever want to see it.\n\nThese changes will apply on new sessions.\n\nTested locally and the site seems to work.\n\nDocs: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies#define_where_cookies_are_sent","shortMessageHtmlLink":"fix!: mitigate CSRF by setting aggressive session cookie settings"}},{"before":null,"after":"fa6b19607bbe8e979d832dda2dfb2a9b90f28802","ref":"refs/heads/jade/cookie-security","pushedAt":"2023-04-30T06:23:15.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"fix!: mitigate CSRF by setting aggressive session cookie settings\n\nThere are perhaps still creative bypasses to this, but it should almost\nentirely stop CSRF from happening by preventing the browser sending\nsession cookies on cross-origin requests to the API service. This\nshould, nevertheless, mitigate almost all CSRF.\n\nI chose Strict because we will never send requests to the backend\ndirectly off of links from other sites: the front end is the only thing\nsending requests.\n\nBREAKING CHANGE: if we have some other web site than the membership site\naccessing the API, this would break it. I am not aware of one, but\nplease tell me if there is one.\n\nI also set HttpOnly on the session cookie because there is no\nconceivable reason that JavaScript could ever want to see it.\n\nThese changes will apply on new sessions.\n\nTested locally and the site seems to work.","shortMessageHtmlLink":"fix!: mitigate CSRF by setting aggressive session cookie settings"}},{"before":"12e5ec1a7fde21926d1a0d502236d439f48082a9","after":"d7ec2597dca025562e1564175b85b7a17823b92f","ref":"refs/heads/jade/remove-obsolete-pin","pushedAt":"2023-04-30T05:06:10.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"fix: remove obsolete PIN panel on the front-end\n\nThis panel doesn't do anything anymore, and only was used at the old\nspace. This is janky and probably other bits of the front-end and back\nend should be removed for it, but this fixes the immediate issue. I\ndon't understand Angular enough to do that further work.\n\nFixes #287","shortMessageHtmlLink":"fix: remove obsolete PIN panel on the front-end"}},{"before":null,"after":"12e5ec1a7fde21926d1a0d502236d439f48082a9","ref":"refs/heads/jade/remove-obsolete-pin","pushedAt":"2023-04-30T05:05:39.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"fix: obsolete PIN panel on the front-end\n\nThis panel doesn't do anything anymore, and only was used at the old\nspace. This is janky and probably other bits of the front-end and back\nend should be removed for it, but this fixes the immediate issue. I\ndon't understand Angular enough to do that further work.\n\nFixes #287","shortMessageHtmlLink":"fix: obsolete PIN panel on the front-end"}},{"before":"9082da744d6c6d97293be1e4ccebf86a4e8c728f","after":"37d99d6d685aee4ed657249a51bc44b96956138b","ref":"refs/heads/jade/docker-compose-devenv","pushedAt":"2023-04-30T04:51:14.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"feat(docker-compose): use a separate config file for internal nets\n\nThis was causing errors such as the following in docker-compose:\n\n```\nnetwork rabbitmq declared as external, but could not be found\n```\n\nThis is because `external` means that the network should be managed\noutside the lifecycle of the application and must be created first. This\nseems like the incorrect move in this case.","shortMessageHtmlLink":"feat(docker-compose): use a separate config file for internal nets"}},{"before":"1dce1c71de15638f2d1804b04e1ab585159a986c","after":"9082da744d6c6d97293be1e4ccebf86a4e8c728f","ref":"refs/heads/jade/docker-compose-devenv","pushedAt":"2023-04-30T04:45:48.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"feat(docker-compose): use a separate config file for internal nets\n\nThis was causing errors such as the following in docker-compose:\n\n```\nnetwork rabbitmq declared as external, but could not be found\n```\n\nThis is because `external` means that the network should be managed\noutside the lifecycle of the application and must be created first. This\nseems like the incorrect move in this case.","shortMessageHtmlLink":"feat(docker-compose): use a separate config file for internal nets"}},{"before":"ab60dfd1f0f5f78daceb4b49cda41ecac7841366","after":"1dce1c71de15638f2d1804b04e1ab585159a986c","ref":"refs/heads/jade/docker-compose-devenv","pushedAt":"2023-04-30T04:44:50.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"feat(docker-compose): use a separate config file for internal nets\n\nThis was causing errors such as the following in docker-compose:\n\n```\nnetwork rabbitmq declared as external, but could not be found\n```\n\nThis is because `external` means that the network should be managed\noutside the lifecycle of the application and must be created first. This\nseems like the incorrect move in this case.","shortMessageHtmlLink":"feat(docker-compose): use a separate config file for internal nets"}},{"before":"bb2f0d313dae9648f20b040062704b57f5ba9556","after":"ab60dfd1f0f5f78daceb4b49cda41ecac7841366","ref":"refs/heads/jade/docker-compose-devenv","pushedAt":"2023-04-29T01:39:12.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"docs: move docker-compose.md where it will be seen, write up new devenv","shortMessageHtmlLink":"docs: move docker-compose.md where it will be seen, write up new devenv"}},{"before":"d60fddf54a0f202df9cb810dc65a06dc2b8a2c90","after":"bb2f0d313dae9648f20b040062704b57f5ba9556","ref":"refs/heads/jade/docker-compose-devenv","pushedAt":"2023-04-29T01:23:20.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"chore: populate the env template with plausible dev values\n\nWe were also missing some environment variables related to Stripe which\nthe backend was angry about, so I fixed those too.","shortMessageHtmlLink":"chore: populate the env template with plausible dev values"}},{"before":null,"after":"d60fddf54a0f202df9cb810dc65a06dc2b8a2c90","ref":"refs/heads/jade/docker-compose-devenv","pushedAt":"2023-04-29T01:15:41.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"feat(setup): add a script to create an API key for the webhook service\n\nPreviously this was done in the tools/vagrant_provision.sh script, but\nI want to deprecate Vagrant, so we need a second way.","shortMessageHtmlLink":"feat(setup): add a script to create an API key for the webhook service"}},{"before":null,"after":"000d97acf8ee0655eff79ad106e358b299d02b24","ref":"refs/heads/trivialities","pushedAt":"2023-04-29T00:41:30.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"lf-","name":"jade","path":"/lf-","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6652840?s=80&v=4"},"commit":{"message":"tidy: the repo is public; gitignore *all* logs","shortMessageHtmlLink":"tidy: the repo is public; gitignore *all* logs"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAADkHrKYAA","startCursor":null,"endCursor":null}},"title":"Activity · lf-/nomos"}