costin
6aff08cddc
Fix bug in unregistering old devices, if the oldest didn't include the id.
2010-12-08 23:46:49 +00:00
burke.davey
c65fcced21
Update SDK. Turn on experiment.
2010-10-24 19:26:30 +00:00
costin
c24fa2c027
Add check for empty registration id
2010-09-25 00:09:20 +00:00
costin
1e277ec754
Possible fix for re-registration bug, if the device id is not changed.
2010-09-25 00:08:00 +00:00
costin
71684cb5cf
Fix issue with multiple devices and upgrade. The 'bare' registration will be removed if registrations with ID are found - which is not worse than
...
having a single device. Also fix few PersistentManager bugs - removal must be done with same PM, previous code was leaving one unclossed.
2010-09-18 06:03:10 +00:00
burke.davey
ac5cb5d77d
Fix JDO so it returns blank not null strings. All unregistration to prune multiple devices (in case duplicates were accidentally introduced inan unorthodox upgrade. Misc cleanups.
2010-09-16 23:28:25 +00:00
burke.davey
0cde7bf17c
Bug fix
2010-09-13 14:07:20 +00:00
burke.davey
bf8fce0fe3
Bug fixes.
2010-09-12 23:40:37 +00:00
burke.davey
44a2ab3f9d
Refactoring (phone-to-chrome now uses same code paths as chrome-to-phone). Bumped version number.
2010-09-12 21:56:06 +00:00
costin
fdd86e78c0
Better fix suggested by Dave: trim title first, trim sel if still needed. Refactored
...
the code a bit to be testable ( test needs a bit of cleanup, later ).
2010-09-10 00:05:41 +00:00
costin
1e833c971f
Make title optional. Trim title, sel if the message is too long.
2010-09-09 23:28:04 +00:00
burke.davey
b581e46278
Remove superfluous import
2010-08-30 20:38:22 +00:00
costin
f887a71bed
Add support for multiple devices. Chrome extension will send to all until it is modified to specify a device by ID or name.
...
This change also removes the legacy code that had security problems, i.e. accepting GET and requests without the XSRF header.
If a registration is reported as invalid ( i.e. application uninstalled ) - we clean up our database.
2010-08-30 20:25:41 +00:00
burke.davey
9b3454aaef
Add browser channel support and bump SDK ver to 1.3.6
2010-08-30 20:22:55 +00:00
burke.davey
8b3be565c5
Expand XSS regex
2010-08-04 04:54:48 +00:00
burke.davey
a1424f809f
Change regex for Firefox
2010-07-22 01:44:08 +00:00
burke.davey
05ded87c1c
Add extret permissible values for Firefox.
...
Deprecate GET for send.
Log version number only if not supported as warning.
2010-07-19 00:59:48 +00:00
burke.davey
b1c50187d4
XSS protection in signin / signout.
...
XSRF protection for register / unregister.
Support only v3 and upwards.
Rev to version 4.
2010-07-19 00:15:37 +00:00
burke.davey
a6fefc655a
Fix problem with new primitive field in JDO - see http://code.google.com/appengine/docs/java/datastore/dataclasses.html#Object_Fields_and_Entity_Properties
2010-07-12 21:52:38 +00:00
costin
82d9b03eb9
Add per-device 'debug' option, allow OAuth auth, more GET->POST conversions.
2010-06-21 22:37:07 +00:00
burke.davey
11e794d477
Turn on XSRF for Firefox
2010-06-17 22:44:43 +00:00
burke.davey
9d7e78abea
Rollback XSS for Firefox temporarily
2010-06-12 00:35:33 +00:00
burke.davey
f3d8665f9e
Turn on XSS protection.
...
Explicit device not registered error.
2010-06-12 00:11:50 +00:00
burke.davey
6d5b57de0d
Change GET to POST.
...
Neater login experience.
Signout option.
Improved options / about page.
Set correct version on Chrome Extension.
Changed appengine version to 3.
Update appengine SDK version in Eclipse prefs.
2010-06-09 16:32:50 +00:00
burke.davey
c63f9ff2b5
Bug
2010-05-26 23:40:30 +00:00
burke.davey
12af156d26
Log error to upgrade
2010-05-26 00:22:52 +00:00
burke.davey
af2cec6c34
XSRF protection
2010-05-25 23:17:15 +00:00
burke.davey
006c846e99
Embarrassing bug fix. (Time to start code reviews).
2010-05-24 12:36:32 +00:00
burke.davey
379ed80936
Fix status code (say if the account can't be authorized)
2010-05-23 18:34:20 +00:00
burke.davey
24f849073e
Fix npe
2010-05-23 13:44:03 +00:00
burke.davey
4ad00c31d6
Handle selection
2010-05-22 22:00:55 +00:00
daveburke
fb546ea471
Project import
2010-05-20 14:55:05 +00:00
