Open
Conversation
…to md5 The hashing algorithm has been changed in cd60646. However, there are Open edX operators who maintain backward compatibility of anonymous user IDs after past rotations of their Django secret key. For them, altering the hashing algorithm was a breaking change that made their analytics inconsistent. (cherry picked from commit 746e4fe) (cherry picked from commit ff6d92f) (cherry picked from commit 7245bdc) (cherry picked from commit 6da7f58) (cherry picked from commit ee3aa4a) (cherry picked from commit 5641d8e) (cherry picked from commit 3150d9e)
fix: give superusers all studio permissions (cherry picked from commit 8ef55754f4a529cc6b784298320fcdb8b415bd83) (cherry picked from commit 8e281a9) (cherry picked from commit f552973) (cherry picked from commit 6de7b64) feat: eSHE Instructor role Adds the eSHE Instructor role, which inherits Course Staff permissions, but isn't able to enroll / un-enroll students and can't assing course team roles unless in combination with Course Staff / Instructor / Discussion admin roles. (cherry picked from commit 5d160c2) (cherry picked from commit a21b4f0) feat: Teaching Assistant role (cherry picked from commit 176de06) (cherry picked from commit 7ef00c0) (cherry picked from commit a0d8806) (cherry picked from commit 45f6593) (cherry picked from commit 7e5756a)
When a user authenticates using SAML, but their accounts aren't linked, they land on the login page with the message to link their accounts. If the `OC_REDIRECT_ON_TPA_UNLINKED_ACCOUNT` value is not set, they are redirected to `/undefined`. This commit checks that the `redirectURL` is a valid non-empty string before performing the redirect. The bug was introduced in 91f8d36, so this can be safely dropped once that temporary commit is removed from our branches. For Redwood, the relevant commit hash is 64f5dea. Internal-ref: https://tasks.opencraft.com/browse/BB-9010 (cherry picked from commit 9ade4ea) (cherry picked from commit b801f99) (cherry picked from commit 21787b7) (cherry picked from commit ed2d2b5)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
6 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
feat: allow switching anonymous user ID hashing algorithm from shake to md5
The hashing algorithm has been changed in cd60646. However, there are Open edX
operators who maintain backward compatibility of anonymous user IDs after past
rotations of their Django secret key. For them, altering the hashing algorithm
was a breaking change that made their analytics inconsistent.
(cherry picked from commit 746e4fe)
(cherry picked from commit ff6d92f)
(cherry picked from commit 7245bdc)
(cherry picked from commit 6da7f58)
(cherry picked from commit ee3aa4a)
(cherry picked from commit 5641d8e)
(cherry picked from commit 3150d9e)
temp: Add configuration option to redirect to external site when TAP account is unlinked
(cherry picked from commit e83a8c8f82849644cf95534cde3fe149e4f11916)
(cherry picked from commit 0c831dc)
(cherry picked from commit c596bf3)
(cherry picked from commit 64f5dea)
(cherry picked from commit 7b12b00)
(cherry picked from commit 4fe3892)
feat: all eSHE role features squashed in one commit
fix: give superusers all studio permissions
(cherry picked from commit 8ef55754f4a529cc6b784298320fcdb8b415bd83)
(cherry picked from commit 8e281a9)
(cherry picked from commit f552973)
(cherry picked from commit 6de7b64)
feat: eSHE Instructor role
Adds the eSHE Instructor role, which inherits Course Staff permissions,
but isn't able to enroll / un-enroll students and can't assing course
team roles unless in combination with Course Staff / Instructor /
Discussion admin roles.
(cherry picked from commit 5d160c2)
(cherry picked from commit a21b4f0)
feat: Teaching Assistant role
(cherry picked from commit 176de06)
(cherry picked from commit 7ef00c0)
(cherry picked from commit a0d8806)
(cherry picked from commit 45f6593)
(cherry picked from commit 7e5756a)
feat: add a feature flag to disable dates tab for all courses
(cherry picked from commit 88bb2a4)
(cherry picked from commit d10faab)
(cherry picked from commit 7cd0665)
fix: prevent redirects to /undefined after saml auth
When a user authenticates using SAML, but their accounts aren't linked,
they land on the login page with the message to link their accounts. If the
OC_REDIRECT_ON_TPA_UNLINKED_ACCOUNTvalue is not set, they are redirected to/undefined. This commit checks that theredirectURLis a valid non-emptystring before performing the redirect.
The bug was introduced in 91f8d36, so this can be safely dropped once that
temporary commit is removed from our branches. For Redwood, the relevant
commit hash is 64f5dea.
Internal-ref: https://tasks.opencraft.com/browse/BB-9010
(cherry picked from commit 9ade4ea)
(cherry picked from commit b801f99)
(cherry picked from commit 21787b7)
(cherry picked from commit ed2d2b5)
feat: allow Bearer auth for sequence metadata
(cherry picked from commit 3ba4ab1)
(cherry picked from commit 35b0d4b)
(cherry picked from commit 14bdaa5)
feat: User agreements API for generic agreement records
This change adds a new kind of generic user agreement that allows plugins or
even the core platform to record a user's acknowledgement of an agreement.
(cherry picked from commit dc0383f)
(cherry picked from commit 2481c0e)
(cherry picked from commit 924ae00)
(cherry picked from commit 4729d73)
fix: prevent null start date in course details (fix: prevent null start date in course details #792)
(cherry picked from commit e9b6154)
(cherry picked from commit 80dcd3d)