log

age author description
Sun, 04 Dec 2011 03:05:21 +0000 Brian Neal Some users are still having problems with the pop-up login. I think they are actually getting 403s because of the CSRF protection. So I have modified the base template to always have a javascript variable called csrf_token available when they aren't logged in. The ajax_login.js script was then modified to send this value with the ajax post. Fingers crossed.
Sat, 03 Dec 2011 20:46:41 +0000 Brian Neal Added the rate_limit_clear management command, to delete IP addresses from the rate limit datastore.
Sat, 03 Dec 2011 19:13:38 +0000 Brian Neal Refactor the logic in the rate limiter decorator. Check to see if the request was ajax, as the ajax view always returns 200. Have to decode the JSON response to see if an error occurred or not.
Sat, 03 Dec 2011 16:25:15 +0000 Brian Neal Made some tweaks to the ajax login javascript.
Sat, 03 Dec 2011 15:07:01 +0000 Brian Neal Changed the lockout time on logins to 2 minutes.
Sat, 03 Dec 2011 03:25:04 +0000 Brian Neal For #240, make the login dialog a bit taller so no scroll bar appears on Firefox.