Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

tracker: add security splash page as index #159

Open
wants to merge 5 commits into
base: master
Choose a base branch
from

Conversation

SantiagoTorres
Copy link
Collaborator

More information on how to submit vulnerablities on arch linux
components and infrastructure, as well as how to report issues with
packages is necessary to ease the vulnerablity disclosure process.

Some previous discussion happened here

@SantiagoTorres SantiagoTorres force-pushed the add-security-information-page branch 2 times, most recently from ac3f741 to 3ce4591 Compare June 26, 2019 22:35
tracker/templates/home.html Outdated Show resolved Hide resolved
tracker/templates/home.html Outdated Show resolved Hide resolved
Copy link
Member

@jelly jelly left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please fix the security wiki page url

@SantiagoTorres
Copy link
Collaborator Author

Thanks for the review. I addressed your comments (I believe), @jelly

jelly
jelly previously approved these changes Jul 30, 2019
More information on how to submit vulnerablities on arch linux
components and infrastructure, as well as how to report issues with
packages is necessary to ease the vulnerablity disclosure process.

Signed-off-by: Santiago Torres <[email protected]>
@SantiagoTorres
Copy link
Collaborator Author

Just rebased. Cheers!

The old behavior that followed a login attempt was to redirect to the
index, which used to be the index (equivalent to index_vulnerable). With
the new security splash page, this behavior breaks. While it is still up
to discussion whether the after-login behavior should be to redirect to
the security splash page instead of index_vulnerable, for now we still
need to keep the existing behavior. Rewire the redirects on from
tracker.index to tracker.index_vulnerable on the login views. Finally,
update test_login to reflect this behavior.

Signed-off-by: Santiago Torres <[email protected]>
test_index used to have a test that targeted the '/' url. Since index
does not respond to that url anymore, the test should be removed.
Instead, a simpler version of the same test is added on a new module
called test_home.

Signed-off-by: Santiago Torres <[email protected]>
@SantiagoTorres SantiagoTorres force-pushed the add-security-information-page branch from 0debf98 to 7345545 Compare March 9, 2021 00:26
tracker/templates/home.html Outdated Show resolved Hide resolved
@jelly
Copy link
Member

jelly commented Mar 9, 2021

Overal LGTM

Comment on lines +25 to +26
<li><a href="https://www.archlinux.org/people/developers/#allan">Allan McRae</a>
<tt>6645 B0A8 C700 5E78 DB1D 7864 F99F FE0F EAE9 99BD</tt></li>
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we remove Allan? @anthraxx

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants