drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mangelnde Rechteprüfung in python-tahrir
Name: |
Mangelnde Rechteprüfung in python-tahrir |
|
ID: |
FEDORA-2014-2239 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 19 |
|
Datum: |
Di, 4. März 2014, 08:33 |
|
Referenzen: |
Keine Angabe |
|
Applikationen: |
python-tahrir |
|
Originalnachricht |
Name : python-tahrir Product : Fedora 19 Version : 0.5.1 Release : 1.fc19 URL : http://pypi.python.org/pypi/tahrir Summary : A pyramid app for issuing your own Open Badges Description : tahrir is a Pyramid app for issuing your own Open Badges.
https://wiki.mozilla.org/Badges
------------------------------------------------------------------------------- - Update Information:
Fix openid login from untrusted provider. ------------------------------------------------------------------------------- - ChangeLog:
* Sun Feb 9 2014 Ralph Bean <rbean@redhat.com> - 0.5.1-1 - Latest upstream. - Added bugfix openid. - Added flash messages when badges are awarded and in the admin panel. * Tue Dec 17 2013 Ralph Bean <rbean@redhat.com> - 0.5.0-1 - Latest upstream with authz delegation. - FOAF metadata included via RDFa. - UTC timezone used everywhere. - Enhanced view for invitations. * Mon Nov 18 2013 Ralph Bean <rbean@redhat.com> - 0.4.5-1 - Added a heartbeat url for haproxy. * Mon Nov 18 2013 Ralph Bean <rbean@redhat.com> - 0.4.4-1 - Latest upstream - Optimized json leaderboard. - Fixed profile typeerror. - Re-add description to the badge tooltip. - Tweaks to the admin panel. - New RSS feed for latest badges. - Various css fixups. * Fri Oct 25 2013 Ralph Bean <rbean@redhat.com> - 0.4.3-1 - Many new changes: - Reporting system. - User profile editing. - Rss feed of new badges. - Login tracking - FOAF fixes. - Version in footer. - Diff users. - Show date badge was awarded. - Fix bad link on badge page. - Drop old patches. * Tue Sep 10 2013 Ralph Bean <rbean@redhat.com> - 0.4.1-3 - More patching of the leaderboard template... * Tue Sep 10 2013 Ralph Bean <rbean@redhat.com> - 0.4.1-2 - Apply patch to fix leaderboard template. * Tue Sep 10 2013 Ralph Bean <rbean@redhat.com> - 0.4.1-1 - Latest upstream with various optimizations. * Wed Aug 28 2013 Ralph Bean <rbean@redhat.com> - 0.4.0-2 - Add dependency on python-webhelpers. * Mon Aug 26 2013 Ralph Bean <rbean@redhat.com> - 0.4.0-1 - Latest upstream. - Take advantage of enhanced tahrir-api for fedmsg and rank caching. - Publish fedmsg messages on rank change. - More consitent user links. - Css fixes and style updates. - RSS feeds per-user and per-badge. - Temporarily revert the sqlalchemy version requirement. * Fri Aug 16 2013 Ralph Bean <rbean@redhat.com> - 0.3.5-3 - Copy the fedora-sitedocs contents in /usr/share/ * Thu Aug 15 2013 Ralph Bean <rbean@redhat.com> - 0.3.5-2 - Add requires on python-openid as per https://github.com/fedora-infra/tahrir/issues/154 * Thu Aug 15 2013 Ralph Bean <rbean@redhat.com> - 0.3.5-1 - Bugfixes to the about page. - CSS fixes to the user page. * Thu Aug 15 2013 Ralph Bean <rbean@redhat.com> - 0.3.4-2 - Update sqlalchemy version in awk statement. * Thu Aug 15 2013 Ralph Bean <rbean@redhat.com> - 0.3.4-1 - Modern sqlalchemy requirement. - Social media links. - First try at FOAF metadata on user pages. - Added configurable FAQ and footer. - New default avatar - Load JS and images over https when appropriate. - Fix some fatal errors on the leaderboard json api. * Tue Aug 13 2013 Ralph Bean <rbean@redhat.com> - 0.3.3-1 - Optimizations to the leaderboard. - Bugfix to 404s for user. - Ability to edit your profile. - Default issuer in the badge builder. * Sun Aug 11 2013 Ralph Bean <rbean@redhat.com> - 0.3.2-1 - Enhancements to the "explore" view. * Sun Aug 11 2013 Ralph Bean <rbean@redhat.com> - 0.3.1-1 - Some more css and presentation facelifting. - Make leaderboard respect opt-out https://github.com/fedora-infra/tahrir/pull/146 - Consistent user links https://github.com/fedora-infra/tahrir/pull/144 - Fix badge links https://github.com/fedora-infra/tahrir/pull/145 - JSON api for leaderboard https://github.com/fedora-infra/tahrir/pull/147 - User-specific JSON api endpoint https://github.com/fedora-infra/tahrir/pull/149 * Fri Aug 9 2013 Ralph Bean <rbean@redhat.com> - 0.3.0-1 - Add JSON API from Ricky Elrod. - Some CSS fixups. * Mon Aug 5 2013 Ralph Bean <rbean@redhat.com> - 0.2.9-1 - Limit the relative leaderboard to only 5 people instead of 10. - Emit fedmsg messages when invitations are claimed. * Thu Aug 1 2013 Ralph Bean <rbean@redhat.com> - 0.2.8-1 - Fix a login user-creation bug. - Fix trailing comma on tags. - Fix trailing slash on emails. * Thu Aug 1 2013 Ralph Bean <rbean@redhat.com> - 0.2.7-1 - Reorganize avatars around openid identifiers for ease-of-use. * Tue Jul 30 2013 Ralph Bean <rbean@redhat.com> - 0.2.6-1 - More facelifting. - Ability for users to opt-out. * Thu Jul 18 2013 Ralph Bean <rbean@redhat.com> - 0.2.5-3 - Remove version constraint on python-moksha-wsgi. It is behaving oddly. * Thu Jul 18 2013 Ralph Bean <rbean@redhat.com> - 0.2.5-2 - python-dateutil is singular, not plural. * Thu Jul 18 2013 Ralph Bean <rbean@redhat.com> - 0.2.5-1 - More facelifting. - Websocket updates for the frontpage. * Tue Jul 16 2013 Ralph Bean <rbean@redhat.com> - 0.2.3-2 - Added requirement on python-docutils. * Tue Jul 16 2013 Ralph Bean <rbean@redhat.com> - 0.2.3-1 - Latest upstream with more botox. * Thu Jul 11 2013 Ralph Bean <rbean@redhat.com> - 0.2.2-2 - Added requirement for python-dogpile-cache * Wed Jul 10 2013 Ralph Bean <rbean@redhat.com> - 0.2.2-1 - Latest upstream with more cosmetic surgery. * Wed Jul 3 2013 Ralph Bean <rbean@redhat.com> - 0.2.1-1 - Remove old patch (shipped with upstream now). - More facelift stuff in progress. * Mon Jul 1 2013 Ralph Bean <rbean@redhat.com> - 0.2.0-2 - Add requirement on python-qrcode. * Wed Jun 26 2013 Ralph Bean <rbean@redhat.com> - 0.2.0-1 - Massive facelift. * Thu Jun 13 2013 Ralph Bean <rbean@redhat.com> - 0.1.9-3 - Conditionalize sqlalchemy forward compat package for epel6. * Wed Mar 13 2013 Ralph Bean <rbean@redhat.com> - 0.1.9-2 - Copy static directory as a directory (typofix). * Wed Mar 13 2013 Ralph Bean <rbean@redhat.com> - 0.1.9-1 - Latest upstream with modernized apache config. * Mon Mar 11 2013 Ralph Bean <rbean@redhat.com> - 0.1.8-3 - Use modname macro where applicable. - Add deps on python-velruse and python-anykeystore. - Also added server deps on httpd and mod_wsgi. - Install configuration alongside the code. - Copy static files to /usr/share/ ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update python-tahrir' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|