| File TODO changed (mode: 100644) (index 09f92c2..f657fd7) |
| 1 |
1 |
== Where I stopped last time == |
== Where I stopped last time == |
| 2 |
2 |
[ ] test docker |
[ ] test docker |
| 3 |
|
[ ] AGPL nu apare pe prima pagina! Si sintem singurii! |
|
| 4 |
|
[ ] Fix "Enterprise" test in main.html |
|
|
3 |
|
[ ] rg_ssh_totp_verify_ip: strange: why I give error if the list is empty |
|
4 |
|
but the user is not enrolled?! |
|
5 |
|
If user is not enrolled, we return FALSE! |
|
6 |
|
Audit all calls to verify_ip! |
| 5 |
7 |
[ ] |
[ ] |
| 6 |
8 |
|
|
| 7 |
9 |
== BEFORE NEXT RELEASE == |
== BEFORE NEXT RELEASE == |
|
10 |
|
[ ] When I start the virtual machine, can I connect to console tu run the build |
|
11 |
|
script instead connecting by other means? To not have to modify |
|
12 |
|
the image... |
|
13 |
|
[ ] Resize root partition to gain space and resize after boot. |
|
14 |
|
[ ] Add instructions to resize the base image: |
|
15 |
|
qemu-img resize Fedora-$TYPE-armhfp-25-1.3-sda.raw +10G |
|
16 |
|
Do not forget about the filesystem! |
|
17 |
|
[ ] Re-test with a "'" inside the user name. wh_cloud test fails! |
|
18 |
|
[ ] Add possibility to reject white space changes. |
|
19 |
|
[ ] Add possibility to enforce a minimum lenght commit message. |
|
20 |
|
Add hints on how to do it. |
|
21 |
|
[ ] LOW: Generate an internal CA, allow clients to download certificates |
|
22 |
|
generated by this CA and verify them, to be able to act like ssh. |
|
23 |
|
[ ] Low: add CURLOPT_PINNEDPUBLICKEY for webhooks. |
|
24 |
|
[ ] Add login token for http authentication! |
|
25 |
|
[ ] Make sure ETag is activated. |
|
26 |
|
[ ] Add a hint on how to delete all files in a repository. |
|
27 |
|
[ ] patreon.com? |
|
28 |
|
[ ] Add U2F support (see U2F Zero for free software/hardware) |
|
29 |
|
[ ] LOW: act as a CA and allow users to download certificates so wwe can use |
|
30 |
|
http as ssh? |
|
31 |
|
[ ] wh: add possibility to add public variables (values is public) or |
|
32 |
|
private variables (value cannot be retrieved) which will be provided |
|
33 |
|
inside hook. How it applies to CI? |
|
34 |
|
[ ] Add 'delete account' unit testing. |
|
35 |
|
[ ] We need to set default rights for a user/group. |
|
36 |
|
Seems 'R' (delete account) is given by default. But, where? |
|
37 |
|
Ah, it is the owner! |
|
38 |
|
[ ] LOW: Allow build image to be persistent. |
|
39 |
|
[ ] Deleting an account will not delete all stuff related (user_remove) |
|
40 |
|
[ ] add to rg somrthing like: https://letsencrypt.org/become-a-sponsor/ |
|
41 |
|
[ ] wh: add support for OpenWhisk, similar with Amazon's Lambda |
|
42 |
|
[ ] On contributions page, as a way to help: recommend crowdfunding organzations. |
|
43 |
|
[ ] SSH: the ratelimit may block some users? |
|
44 |
|
[ ] Because HTTPS impact on performance, declare public objects as 'public'! |
|
45 |
|
[ ] Update texts using the first LWN article. |
|
46 |
|
[ ] wiki: a user can choose to use the main repo for wiki or a separate one. |
|
47 |
|
In former case, we need to specify the folder. |
|
48 |
|
[ ] How users can help: write a Wikipedia article |
|
49 |
|
[ ] Integrate RocketGit in most distributions. |
|
50 |
|
[ ] We need to warn the user that she/he is bound to the ToS even if only |
|
51 |
|
visiting the site. |
|
52 |
|
[ ] compare: add a No to privacy concerns: https://lwn.net/Articles/706700/ |
|
53 |
|
[ ] Deleting api keys seems to not working: wrong event is stored in db! |
|
54 |
|
[ ] Testing apikeys, a real e-mail is sent instead of setting a var in cache! |
|
55 |
|
[ ] Add a simple tutorial: add a C program, push-it ... CI ... get the binary |
|
56 |
|
[ ] Investigate https://github.com/pa11y/pa11y in a CI stage (html checker) |
|
57 |
|
Why not also tidy? |
| 8 |
58 |
[ ] ft: check apikey e-mail to have the correct info. |
[ ] ft: check apikey e-mail to have the correct info. |
| 9 |
59 |
[ ] wh: lambda: if we get code 400, we do not set the cache correctly. |
[ ] wh: lambda: if we get code 400, we do not set the cache correctly. |
| 10 |
60 |
[ ] wh: cloud - if we do not provide some events, we trigger no error! |
[ ] wh: cloud - if we do not provide some events, we trigger no error! |
| |
| 13 |
63 |
[ ] wh: after edit, the order is changed! We must sort them! |
[ ] wh: after edit, the order is changed! We must sort them! |
| 14 |
64 |
[ ] lambda: Secret access key is not masked when we edit the hook! |
[ ] lambda: Secret access key is not masked when we edit the hook! |
| 15 |
65 |
We must allow the change but do not show it! |
We must allow the change but do not show it! |
| 16 |
|
[ ] Use IdentitiesOnly=yes when talk about .ssh/config file. Maybe also disable |
|
| 17 |
|
password login. |
|
| 18 |
66 |
[ ] test: do a test for rg_authorize command: upload a key and check by fp |
[ ] test: do a test for rg_authorize command: upload a key and check by fp |
| 19 |
67 |
[ ] test: add one for SSH AuthorizedKeysCommand |
[ ] test: add one for SSH AuthorizedKeysCommand |
| 20 |
68 |
[ ] LOW: add fuzzers for checking code. |
[ ] LOW: add fuzzers for checking code. |