5572fec9c1
Completely re-structured the project from scratch, wrote a better bootstrap script, changed configuration format to yaml, improved Caddyfile, and more. #15 #16 #20
2023-02-11 17:23:57 +01:00
8599f49857
Refactored CSS and HTML templates and polished UI ( #10 ), changed JavaScript variable names to camelCase, adjusted filenames and some url parameter names in urlpatterns, and more.
2022-11-04 20:35:28 +01:00
1e32e2b5dd
The application now correctly encodes the url query string for the profile-picture name (for security reasons), removed a left-over print-statement
2022-11-03 20:46:10 +01:00
9f270c12b4
Profile pictures are now handled by the application to mitigate possible directory traversals
...
to other sub-directories of the static directory (Admins/Staff with the right to edit user
accounts were able to set a path like ../static/favicon.png for the profile picture - this
isn't a "i'm in, now i have root access and can hack your mom"-vulnerability, but better fix
it before it evolves to one. or a dragon. it's too late for this crap.)
2022-11-02 22:53:04 +01:00
86ea7c0000
Added 'supply' page to create negative register transactions, updated translation
2022-10-15 19:37:01 +02:00
ec7672816a
rename the field 'binary_availability' to 'do_not_count' in model Drink
2022-05-24 18:49:04 +02:00
5b72453dc3
Order drinks by product_name on the home page
2022-05-16 11:00:24 +02:00
c49798a9ea
Initial commit - existing project files
2022-03-16 12:11:30 +01:00
