add pagination to /api/users

add support of id based filtering

add num_pages field to users api output

add tests for paging data and ability to parse page_size from request

using ListAPIView and DRF filters

Disallow unfiltered lists

Updated docstrings

added avatar url field

muhhshoaib/security-change-user-password-requirements-685: handled password complexity scenarios messages according to Chris Suggestions

muhhshoaib/security-change-user-password-requirements-685: changed the chracteres storage from sets to lists

 muhhshoaib/adding_start_and_end_date_fields_to_course_objects_1302:added start and end date fields in course module

muhhshoaib/adding_start_and_end_date_fields_to_course_objects_1302: changes in the start and end dates

asadiqbal08/add_is_active_flag_to_userlist_in_group:[1291] Added is_active flag to user list in a group

Add logging message

asadiqbal08/api_support_title_field_userprofile: [MCKIN-1241] Added support for title field to edX user profile

fixes

cdodge/get-ip-restriction-list-from-config: change settings name to make clearer and make sure we are getting values from lms.envs.json

cdodge/make-some-middleware-optional: allow for runtimes to specify which pieces of middleware should be removed. This helps with some performance characteristics.

cdodge/fire-progress-on-html-module-render: modify the xmodule HTML to fire a progress event to record the fact that the user visited that content

asadiqbal08/api-address-based-restriction:API Security: IP address based restriction added MCKIN-1108

uncomment the code

initial commit

add tests

back out config change

mattdrayer/api-userdetailpostfix: Addressed several issues related to updating user/profile information

FInal fix

Added new API to get enrolled and not enrolled users in Course Content
Group: MCKIN-1027

Also contains:

* Changes base on Matt's Feedback
* Further changes based on Matt's feedback

cdodge/fix-updates-parsing: seems like studio now uses a different HTML formatting, e.g. sections & articles rather than ol & li

make backwards compatible to read older versions of Studio produced updates

add some tests

apply_group_type_fiter_1013 added request parameter in delete function of UserCoursesDetail
https://github.com/edx-solutions/edx-platform/pull/43

Includes:
* Initial API implementation
* API_KEY header fix
* Fixed indentation error
* move api from common to lms
* Course-Group Relationships
* wip
* add parsing of overview content blob
* initial implementation
* get course updates API method
* get course static tabs API methods
* add unit tests
* fix some merge conflicts and remove some extra print statements picked up in rebase
* better constrain some of the course url regexs to expect a triple for courseId
* add ability to enroll users into courses
* wip
* add queryable group lists
* add a GET endpoint to /api/groups/{groupid}/courses to get the list of courses associated with the group (program)
* return the display names when listing all courses in a group (program)
* create optimized course tree query API endpoint
* make sure group profile data is properly serialized and deserialized. There appears to be a difference between how the Django test client handles things. Disabling unit test for now to unblock UI devs
* null guard
* fix broken unit test
* add GET endpoint to group/user relationships
* Added Security to session api as requested in #785
* Storing passoword history of user and validation for user's email and username
* Moved security tests to lms also
* add two FEATURE flag overrides to enable the security features
* remove unnecessary settings overrides (because they are 'feature flags')
* Adding ratelimiting on login api
* Migrated from Function-Based Views to Class-Based-Views
* Create new Account/Login Audit Log
* The API should provide for an audit log when a user creates a new account or logs into the system.
* UserList.post() now creates UserProfile, UserPreference records
* Group Profile fix
* Filter group subgroups by group type
* Application reorganization
* Name is now required during group creation
* Added null check for profile name
* User must reset password functionality added
* User must reset password dunctionality added
* Added user password reset functionality
* Add password reset api and implemented Password history
* Remove unused imports, password reset message text

Included commits:
* xblock-external-ui: Include CSRF token in the API answer
* xblock-external-ui: Adds support for CORS headers (cross-domain request)
* xblock-external-ui: Include full path when building local_url
* xblock-external-ui: Fix TestHandleXBlockCallback & bok_choy, add tests
* xblock-external-ui: Only return `instance` in `_invoke_xblock_handler()`
* xblock-external-ui: Group resources by hash tag to avoid duplicate loads
* xblock-external-ui: Alternate referer check for CORS requests
* session-cookie-httponly: Allow to disable httponly on session cookies
* remove errant log message
* xblock-no-anonymous: Fail early if the XBlock view is called anonymously

Switch requirements loading to paver - custom.txt is loaded by ansible

Added:
* mentoring
* image-explorer
* dragndrop (v1/v2)
* ooyala
* group project
* discussion
* adventure

Cypress online help update

disable course discovery feature by default in devstack.