Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Anti-GDPR1 #1393

Merged
merged 1 commit into from
Jun 3, 2018
Merged

Anti-GDPR1 #1393

merged 1 commit into from
Jun 3, 2018

Conversation

Martii
Copy link
Member

@Martii Martii commented Jun 3, 2018
edited
Loading

  • Optionally restore browser session maxAge default (technically should be 2 weeks from last check) for those who need it... this is on a trial basis. If you are doing something then this really shouldn't be needed. Please use sparingly. If we find a Userscript setting this automatically it may be eligible for removal. Play nice.

Ref:

Related to #604

@Martii
Anti-GDPR1
3660e10 
* Optionally restore browser session maxAge default *(technically should 2 weeks from last check)* for those who need it... this is on a trial basis. If you are doing something then this really shouldn't be needed. Please use sparingly. If we find a Userscript setting this automatically it may be eligible for removal. Play nice.

Ref:
* https://openuserjs.org/discuss/Stay_logged_in_for_more_then_1_hour

Related to OpenUserJS#604
@Martii Martii added enhancement Something we do have implemented already but needs improvement upon to the best of knowledge. security Usually relates to something critical. DB Pertains inclusively to the Database operations. CODE Some other Code related issue and it should clearly describe what it is affecting in a comment. labels Jun 3, 2018
@Martii Martii merged commit 3e66461 into OpenUserJS:master Jun 3, 2018
@Martii Martii deleted the sessionOptionalRestore branch June 3, 2018 01:27
Martii added a commit to Martii/OpenUserJS.org that referenced this pull request Jun 3, 2018
@Martii
More accurate labeling
7b9fb95 
Post OpenUserJS#1393
@Martii Martii mentioned this pull request Jun 3, 2018
Merged
Martii added a commit that referenced this pull request Jun 3, 2018
@Martii
More accurate labeling (#1394)
4cd6d91 
Post #1393 

Auto-merge
@Martii
Copy link
Member Author

Martii commented Jun 3, 2018

This does not reload last setting on purpose... the saving might go away after the trial since it's technically not needed.

Martii added a commit to Martii/OpenUserJS.org that referenced this pull request Jun 3, 2018
@Martii
Don't unsave
c09d6d3 
Post OpenUserJS#1393
@Martii Martii mentioned this pull request Jun 3, 2018
Merged
Martii added a commit that referenced this pull request Jun 3, 2018
@Martii
Don't unsave (#1395)
3c39c4e 
Post #1393 

Auto-merge
Martii added a commit to Martii/OpenUserJS.org that referenced this pull request Jun 4, 2018
@Martii
Extend to prefs
88d98d5 
* Rearrange this a bit for less abuse

Post OpenUserJS#1393
@Martii Martii mentioned this pull request Jun 4, 2018
Merged
Martii added a commit that referenced this pull request Jun 4, 2018
@Martii
Extend to prefs (#1398)
99c284e 
* Rearrange this a bit for less abuse

Post #1393 

Auto-merge
Martii added a commit to Martii/OpenUserJS.org that referenced this pull request Jun 8, 2018
@Martii
Some Code styling and refactor
34b762a 
* Make this code look more like the others and place some in sessions lib
* Remove some unused identifiers from prior patch
* Retag some comments a bit
* Some STYLEGUIDE.md compliance
* Stop slinging around some functions on return again

Post OpenUserJS#1393
@Martii Martii added the UI Pertains inclusively to the User Interface. label Jun 8, 2018
@Martii Martii mentioned this pull request Jun 8, 2018
Merged
Martii added a commit that referenced this pull request Jun 8, 2018
@Martii
Some Code styling and refactor (#1410)
b48dd88 
* Make this code look more like the others and place some in sessions lib
* Remove some unused identifiers from prior patch
* Retag some comments a bit
* Some STYLEGUIDE.md compliance
* Stop slinging around some functions on return again

Post #1393

Auto-merge
Martii added a commit to Martii/OpenUserJS.org that referenced this pull request Jun 11, 2018
@Martii
GDPR5
a3177aa 
* Destroy session instead of just blanking out the User object \*confused as to why this was done but pre-me joining\*
* This is another session leak discovered last week and is our current orphan from OpenUserJS#1409... will clean up in a while
* One comment typo that's been elusive every time I want to fix it

NOTES:
* Now satisfied with "logout" destroy as it seems to be working well every test... so removed fallback
* "There... is... another... \*gasp\*" * Yoda *(working on twiddling to create a fix for it)*

Related to OpenUserJS#604 OpenUserJS#1201 and OpenUserJS#1393
@Martii Martii mentioned this pull request Jun 11, 2018
Merged
Martii added a commit that referenced this pull request Jun 11, 2018
@Martii
GDPR5 (#1411)
d58b8f8 
* Destroy session instead of just blanking out the User object *(and cookie)* \*confused as to why this was done but pre-me joining\*
* This is another session leak discovered last week and is our current orphan from #1409... will clean up in a while
* One comment typo that's been elusive every time I want to fix it

NOTES:
* Now satisfied with "logout" destroy as it seems to be working well every test... so removed fallback
* "There... is... another... \*gasp\*" * Yoda *(working on twiddling to create a fix for it)*

Related to #604 #1201 and #1393
Martii added a commit to Martii/OpenUserJS.org that referenced this pull request Jun 12, 2018
@Martii
GDPR8
c3ee2ee 
* Use very short session before successful auth. Session "bleeding" briefly mentioned at OpenUserJS#1411 . This is "expanded" after successful auth.
* Output `originalMaxAge` for sync check in *express-session* via MongoDB
* Don't easily expose improper/expired callbacks. Part of OpenUserJS#37
* Remove some currently unneeded `return` statements already captured by block braces

Related to OpenUserJS#604 OpenUserJS#1201 OpenUserJS#1202 and OpenUserJS#1393
@Martii Martii mentioned this pull request Jun 12, 2018
Merged
Martii added a commit that referenced this pull request Jun 12, 2018
@Martii
GDPR8 (#1416)
8c35610 
* Use very short session before successful auth. Session "bleeding" briefly mentioned at #1411 . This is "expanded" after successful auth.
* Output `originalMaxAge` for sync check in *express-session* via MongoDB
* Don't easily expose improper/expired callbacks. Part of #37
* Remove some currently unneeded `return` statements already captured by block braces

Related to #604 #1201 #1202 and #1393 

Auto-merge
@github-actions github-actions bot locked as resolved and limited conversation to collaborators May 5, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
CODE Some other Code related issue and it should clearly describe what it is affecting in a comment. DB Pertains inclusively to the Database operations. enhancement Something we do have implemented already but needs improvement upon to the best of knowledge. security Usually relates to something critical. UI Pertains inclusively to the User Interface.
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@Martii