fba70d888b
Remove tokenScopes
...
decided that the UI won't use this any more and will just the admin flag
2018-08-03 10:07:23 -07:00
2a49569805
Send admin flag in the profile
2018-08-03 09:34:25 -07:00
ff73bc121f
Make tokenScope plural
2018-06-18 15:10:02 -07:00
ad6bc191f9
Make hasScopes take an array
2018-06-17 21:06:17 -07:00
f24a099e79
Remove user.admin property
...
The UI will now base itself entirely off the scopes of the token
2018-06-17 16:49:56 -07:00
156ffb40c9
Remove scope from users.get
2018-06-17 16:07:20 -07:00
e8d9597345
Fix various error codes
...
401 - bad password/wrong password
403 - authenticated but not authorized
409 - conflict
2018-06-15 23:15:30 -07:00
d5b594fade
return the scope as part of the user profile
...
send canonical scope in the profile response
2018-05-01 13:25:47 -07:00
b5f8ca6c16
Fix nasssty typo
2018-04-29 17:50:12 -07:00
d8acf92929
UserError -> UsersError
2018-04-29 11:22:15 -07:00
4fd58fb46b
Rename user.js to users.js
2018-04-29 11:19:04 -07:00
50d7ade0d9
Remove unused property on set 2fa secret
2018-04-27 08:20:12 +02:00
0d58a6bf33
Send 2fa auth status with profile info
2018-04-26 16:29:40 +02:00
fbba636fb3
Handle more 2fa route errors
2018-04-26 16:14:37 +02:00
9cd6333cf7
2fa routest work with the req.user object
2018-04-26 15:12:14 +02:00
6574b22cf6
Add 2fa routest and business logic
2018-04-26 08:46:35 +02:00
9f29438b34
Allow changing fallbackEmail via the profile api
2018-01-22 15:55:55 +01:00
48d557b242
Replace alternateEmail with fallbackEmail
2018-01-21 14:50:24 +01:00
536c16929b
Remove showTutorial
2017-01-17 09:11:34 -08:00
a0ef86f287
Remove now unused tutorial route and business logic
...
We can bring that back again if needed
2017-01-17 12:50:59 +01:00
58b5613c6b
Send alternateEmail with profile and user rest api
2016-09-28 11:08:11 +02:00
94ee636254
No need to again check the groups for admin
...
This is already in user.get() which is attached to req.user
2016-07-12 10:11:04 -07:00
80ca69a128
user.update does not need the user object
2016-06-02 23:53:06 -07:00
462440bb30
do not check for password in profile route
...
This is already checked by the verifyPassword middleware based on
the token type.
When using dev tokens, this check barfs for lack of password field
even when none is required.
2016-06-02 14:26:01 -07:00
bdd14022d6
Report user conflict message all the way through the rest routes
2016-06-02 15:41:07 +02:00
8eeee712aa
Remove unused require
2016-06-02 14:14:16 +02:00
0f62faa198
All our tokens are now representing an user with a profile
2016-06-02 14:13:57 +02:00
60ce6b69ee
profile updates must be POST
2016-06-02 00:31:41 -07:00
82cd215ffa
merge bad fields and pass error.message correctly in REST responses
2016-06-02 00:12:21 -07:00
d41eb81b3d
Add new profile/ route to set the showTutorial field
2016-05-06 13:56:40 +02:00
d7a34bbf68
remove profile action
2016-05-01 20:14:21 -07:00
1f31fe6f8f
make user.remove and user.update add eventlog
2016-05-01 20:11:11 -07:00
71219c6af7
add eventlog hooks
2016-04-30 14:05:19 -07:00
c511019d79
remove jslint hint
2016-04-30 11:53:46 -07:00
18f3733d6e
Simplify the password change logic
...
We now can use verifyPassword and this makes
user.changePassword() route obsolete
2016-04-17 19:17:03 +02:00
fabe55622e
Fix the first bunch of profile tests
2016-04-17 16:49:09 +02:00
a7d22a1972
Add specific user profile routes
2016-04-17 16:22:39 +02:00
Girish Ramakrishnan