Update 2024-01-23

[ebrensi]

I got contacted by Strava about some privacy issues with the app, and they threatened to disable my API access unless I fix it. The issue is that the app displays all activities that the user gave it permissions to access. So, if you as a user allowed heatflask access to your private activities and shared a link to your map, people could see all of your private activities. The way it should work is that if you are logged in as yourself, you can see all of your private activities on your map, but someone else with a link to your map will only see your public activities. Until I fix that, if a you as a user do not want anyone seeing your private activities, don't give heatflask access to them when you sign up. Or delete your heatflask account and start another one with stricter permissions.

So I'm doing some rewriting again. I haven't touched the master branch for years, and that is what is currently running in the cloud at www.heatflask.com. If you look at the branches here you'll see that there have been a few attempted re-writes that I had to abandon.

This time, instead of trying to re-write the whole thing (which really does need to be done), I am just going to try and update the backend first and leave the frontend as is, just fixing the privacy problem. Then, if I have time, I will update the frontend to use proper bundling and update a bunch of stuff, most notably the map API to MapBox.

The current working branch is new-old.