- KLS-398 - Upgrade django to 3.2.18
- KLS-459 - Upgrade directory-components to version 39.0.2
- KLS-334 patch future 0.18.3
- Bump certifi from 2020.12.5 to 2022.12.7
- KLS-113 - Bump Django from 3.2.15 to 3.2.16
- KLS-236 upgrade pillow to 9.3.0
- Update python version of Docker
- GLS-380 - Upgrade package to use Django 3.2 (small patch)
- GLS-380 - Upgrade package to use Django 3.2
- GLS-336 - Resend verification code if expired code is entered
- GLS-403 - Upgrade CF's Python buildpack and Python runtime versions
- GLS-333 - Return 401 response from LoginView if user is unverified
- GLS-226 - Data retentions refactor
- GLS-41 - Added hashed id attribute to users on Activity Stream endpoint
- GLS-91 - Add management command for data retention notifications
- GLS-132 - Add filter for inactive users
- GLS-22 - Integrates the new account verification journey when trying to reset the password of an unverified account
- GLS-91 - Data retentions notification bugfix
- GP2-3911 - Email Verification
- GP2-3381 - Improve password reset notifications
- GP2-3859 - Create Profile with optional Phone Number
- GP2 - 3180 VFM add user hashID
- GP2-3381 - Improve password reset notifications
- GP2-3859 - Create Profile with optional Phone Number
- GP2 - 3180 VFM add user hashID
- GP2-3412 - Add no-index tag in legacy URL signin page
- GP2-3406 - Notifications for already registered users on sign-up
- GP2-3344 - Make account verification token based
- GP2-3152 - Verification code rate limiting + reduced expiry time
- GP2-3074 - pipeline vfm survey add questions object
- GP2-3646 - Migrate existing product and market data to the product/market baskets
- GP2-3260 - Password reset validation fix
- No-ticket - removed adhoc script for data notification
- GP2-3017 - Added test for partial user profile update
- GP2-2445 - JSON widget for VFM answer admin
- GP2-2867 - Dockerise d-sso
- Noticket - fix test
- NOTICKET - Fix verification code expiration date when regenerating
- GP2-3260 - Password reset validation fix
- GP2-3104 - Treating upper and lowercase emails as being the same from User creation API endpoint
- GP2-2867 - Dockerise d-sso
- NOTICKET - Fix verification code expiration date when regenerating
- GP2-3260 - Password reset validation fix
- GP2-3104 - Treating upper and lowercase emails as being the same from User creation API endpoint
- GP2-2841 - Standardisation of python buildpack
- GP2-2718 - Removal of forms api data
- no-ticket - dependencies upgrade
- GP2-3010 - added adhoc script for notification
- NOTICKET - Refactor GOV notification response
- GP2-2380 - Bump directory-components
- GP2-2327 - Expose social login attribute
- GP2-2225 - forgotten password notification social accounts
- NOTICKET - Remove social provider in settings confusing as it's stored in django admin
- GP2-2554 - error-page-update-links
- GP2-2135 - User data storage
- GP2-2388 - Added field for Data retention admin UI
- GP2-2381 - Updated contact link in footer via upgrading directory-component
- GP2-2353 - VFM final page back button
- GP2-2256 - magna header for BAU pages
- GP2-2332 - upgraded directory-components package
- NOTICKET - upgrade python 3.9.2
- No ticket - Python version bump to 2.9.2
- GBAU-949 - Password reset page failing
- GP2-2176 - Value for Money Questions
- No ticket - Upgraded cryptography package
- No ticket - update Activity Steam endpoint to deny requests from public network
- GP2-1722 - Data retention statistics model
- GP2-1720 - Added final check for notification before archive users
- No ticket - Upgraded cryptography package
- No ticket - update Activity Steam endpoint to deny requests from public network
- GP2-1719 - Add segmentation to profile
- GP2-1721 - Added script to notifying user for deletion as per data retention policy
- GP2-1068 - adopt Black auto-formatting + provide optional pre-commit config
- No ticket - added Activity Stream endpoint to list users
- GBAU-869 - Terminate session on logout from outside SSO
- GP2-1068 - adopt Black auto-formatting + provide optional pre-commit config
- GAA-27 - directory-components version bump
- No ticket - Lesson completed delete fix
- No ticket - no profile linked in pic key error
- GP2-763 - Add social auth to profile
- GBAU-217 - data retention: added management command to archive users
- GP2-36 - Lesson completed model
- GP2-238 - page visit model
- GP2-94 - Send welcome email on social login
- TT-2332- remove old sso sign-up
- TT-2285 - Add an option to create test users via testapi
- no ticket - Create user profile on social signup
- MVP-295 - Expose social profile image
- no ticket - replace test Factories in TestAPI views with regular models
- AA-115 - Update tests to use correct test email domain
- No ticket - Prevent embedding in an iframe
- No ticket - upgrade Pillow to fix security vulnerability
- No ticket - v3-cipipeline manifest.yml file fix
- TT-2254 - Cleaned up obsolete settings
- XOT-1296 - replace cookie banner with cookie modal
- No ticket - CVE-2020-5236 & CVE-2020-7471: Potential SQL injection via StringAgg(delimiter)
- TT-2234 - upgrade staff sso foruser id
- TT-2248 - Facilitate .internal domain communication
- TT-1096 - redirect to resend verification code if not provided code
- TT-1614 - set secure flag on sso_display_logged_in
- GTRANSFORM-385 - Business sso response to include first/last name
- TT-1798 implement-staff-sso
- TT-2197 Add testapi endpoint to SSO to delete users created by automated tests
- No ticket - Upgrade Django
- TT-2188 - Add GDRP admin filter
- TT-1304 - Upgrade sentry client
- TT-1080 - Login user automatically after password reset
- No ticket - Added django settings janitor
- Expose user profile on user retrieve endpoint
- TT-1673 - Redirect to enrolment after login if no company or personal details
- TT-1760 - added user profile update
- TT-1808: Update directory components to add "no-validate" no cache middleware
- No ticket - Upgrade django to 1.11.23 for vulnerability fix
- No ticket - Fix vulnerability with yarn
- No ticket - Cleared up old settings
- TT-1758 - Fix breadcrumbs on change password page
- TT-1779 - Fix login hanging
- TT-1614 - CRSF httponly
- TT-1834 - Fix bad spacing on login page
- TT-1823 - Send unverified users to verification page on login
- TT-1952 - Removing loop for individual users to select business type on login
- TT-1927 - Fix duplicate error messages on login page
- No ticket - Add feature flag to "start now" on sign in page
- No Ticket - Adding missing models to admin view
- TT-990 - Making job title optional in user profile to accomodate individual user profile.
- TT-1573 - Expose has_user_profile on session user retrieval
- No ticket - Send user to SSO profile enrolment instead of SSO register page
- No ticket - Upgrade vulnerable django version to django 1.11.22
- GTRANSFORM-245 - UserID Anonymisation extension for GA360
- TT-1556 incorrect use of ul lists
- [TT-1353] - Prevent attempting to create multiple user profiles for the same user
- Upgraded urllib3 to fix vulnerability
- Prevent already encrypted password being re-encrypted when user is saved in admin.
- Upgrade django-restframework to 3.9.1 to fix XSS vulnerability
- no ticket - fix the page title on sign in
- no ticket - upgrade django to fix security vulnerability
- no ticket - upgrade django rest framework to fix security vulnerability