Commit Graph

28 Commits

Author SHA1 Message Date
41e3e817a2 Added error messages to settings.blade.php 2020-08-31 19:50:58 +01:00
42de40e320 Added CSRF protection to settings 2020-08-31 18:34:09 +01:00
faa3a65e2b Added unchecked checkbox workaround 2020-08-31 18:32:08 +01:00
ba3a139d1c Wrapped settings with form-check 2020-08-31 18:13:44 +01:00
25ddf81118 Added form control buttons
Also improved form styling
2020-08-31 18:11:00 +01:00
9431eb5036 Updated options rendering 2020-08-31 18:03:20 +01:00
ca82f5882d Add settings page 2020-08-30 23:06:01 +01:00
5f1f92a9ce Code review
This commit fixes some superficial instances of Broken Access Control 
(https://owasp.org/www-project-top-ten/OWASP_Top_Ten_2017/Top_10-2017_A5-Broken_Access_Control).
There may be some more instances of this, as authorization was only done 
after most of the controllers were done (big mistake).

Some refactoring was also performed, where Route Model Binding with DI 
(dependency injection) was used whenever possible, to increase 
testability of the codebase.
Some reused code was also moved to Helper classes as to enforce DRY; 
There may be some lines of code that are still copy-pasted from other 
parts of the codebase for reuse.

Non-breaking refactoring changes were made, but the app as a whole still 
needs full manual testing, and customised responses to HTTP 500 
responses. Some errors are also not handled gracefully and this wasn't 
checked in this commit.
2020-07-16 21:21:28 +01:00
3693ce3431 Add footer to all dashboard pages 2020-07-16 06:46:20 +01:00
bca6020ab0 Add ability to edit forms and add new fields
This commit adds the ability to edit and modify existing forms.
On the technical side, it also adds a new reusable validation Facade which helps reduce duplicated code.
2020-07-15 06:48:49 +01:00
1f50faaea7 Add ability to preview application 2020-07-12 19:36:12 +01:00
e978a5417b Added ability to delete single application
Also moved User observer code to Application observer
2020-07-12 17:01:33 +01:00
bd0664ce0d Add ability to edit Vacancies 2020-07-11 20:34:26 +01:00
4b390ea536 Added full Vacancy description
Also added support for Markdown
2020-07-11 05:34:12 +01:00
33c16fcf46 Add user directory & isolate authorisation 2020-06-27 19:15:33 +01:00
5a8c080a31 Beta version
This commit is too large to list all changes.
2020-06-27 00:32:33 +01:00
d15c0cb12f Major changes - Vote system now finished 2020-05-30 00:20:39 +01:00
2ff0da3e4f Made Profile & Account Settings functional
Also moved redundant HTML markup to component file for reuse.
Username to UUID converter also added as Middleware
2020-05-13 22:47:51 +01:00
49c1ed4698 Dynamic position rendering for homepage 2020-05-08 01:45:29 +01:00
a4e415943a Add save & update functionality to positions
Tooltips also added, as well as a general configuration file for Mojang Status URL.
Relationships were also added between forms and Vacancies.
Status verification for the dashboard was moved to a Service Provider, where it adds log entries when cache expires.
Authentication controllers were also updated to reflect the new dashboard URL.
2020-05-08 00:24:56 +01:00
290104eea7 Added view forms 2020-05-07 00:36:33 +01:00
f52b249834 Error and success messages from form builder 2020-05-06 23:16:34 +01:00
8d79345095 Store form structure in DB 2020-05-06 05:42:55 +01:00
2df5bf144d Added save function to save button
This commit also improves how forms are parsed by PHP by passing them as arrays, therefore making them easier to process.
Note: One of the files contains a debug statement that will be removed in the next commit
2020-05-06 03:44:39 +01:00
79eaa2ea54 Add dynamic form builder
This form builder still needs some improvements and names for every field.
2020-05-05 05:25:56 +01:00
27794729b9 Added vacancies list 2020-05-03 05:04:26 +01:00
f5bb92b3c8 Add Registered Player listing 2020-05-03 04:31:02 +01:00
cfb8e6bbca Add Staff Member listing 2020-05-03 04:10:33 +01:00