canaille-globuzma/CHANGES.rst

810 lines
18 KiB
ReStructuredText
Raw Normal View History

2024-11-12 08:31:39 +00:00
[0.0.57] - Unreleased
---------------------
Added
^^^^^
2024-11-19 14:17:09 +00:00
- Password compromission check :issue:`179`
- :attr:`~canaille.core.configuration.CoreSettings.ADMIN_EMAIL` and
:attr:`~canaille.core.configuration.CoreSettings.ENABLE_PASSWORD_COMPROMISSION_CHECK` and
:attr:`~canaille.core.configuration.CoreSettings.API_URL_HIBP`
:issue:`179`
- Implement OIDC client_credentials flow. :issue:`207`
- Button in the client admin page to create client tokens.
2024-11-12 08:31:39 +00:00
Changed
^^^^^^^
- PostgreSQL and MySQL extras does not rely on libraries that need to be compiled.
- ``.env`` files are not loaded by default. The ``ENV_FILE`` env var must be passed so ``.env`` files are loaded.
2024-11-07 12:53:31 +00:00
[0.0.56] - 2024-11-07
2024-09-20 07:08:45 +00:00
---------------------
2024-11-06 18:20:09 +00:00
Fixed
^^^^^
- With LDAP backend, updating another user groups could result in a permission lost for the editor. :issue:`202`
Added
^^^^^
2024-11-06 18:20:09 +00:00
- :attr:`~canaille.core.configuration.CoreSettings.MAX_PASSWORD_LENGHT` and
:attr:`~canaille.core.configuration.CoreSettings.MIN_PASSWORD_LENGHT` configuration options :issue:`174`
2024-11-24 18:25:25 +00:00
- Password strength visual indicator. :issue:`174`
- Security events logs. :issue:`177`
- Support for Python 3.13. :pr:`186`
2024-10-07 12:18:30 +00:00
Changed
^^^^^^^
2024-11-24 18:25:25 +00:00
- Update to `HTMX` 2.0.3. :pr:`184`
- Migrate the Python project management tool from poetry to uv. :pr:`187`
- The ``sql`` package extra is now split between ``sqlite``, ``postgresql`` and ``mysql``.
2024-10-07 12:18:30 +00:00
2024-09-20 07:08:45 +00:00
Removed
^^^^^^^
2024-11-24 18:25:25 +00:00
- End support for Python 3.9. :pr:`179`
2024-09-20 07:08:45 +00:00
2024-08-30 11:29:51 +00:00
[0.0.55] - 2024-08-30
2024-08-30 11:23:23 +00:00
---------------------
Changed
^^^^^^^
- Use poetry-core build backend. :pr:`178`
2024-07-25 14:53:15 +00:00
[0.0.54] - 2024-07-25
2024-05-08 07:33:26 +00:00
---------------------
Added
^^^^^
2024-11-24 18:25:25 +00:00
- Group member removal can be achieved from the group edition page. :issue:`192`
- Model management commands. :issue:`117` :issue:`54`
Changed
^^^^^^^
- Model `identifier_attributes` are fixed.
2024-11-24 18:25:25 +00:00
- Bump to `HTMX` 1.9.12. :pr:`172`
2024-05-14 08:39:34 +00:00
Fixed
^^^^^
2024-11-24 18:25:25 +00:00
- Dark theme colors for better readability.
- Crash for passwordless users at login when no SMTP server was configured.
2024-05-14 08:39:34 +00:00
2024-04-22 16:11:50 +00:00
[0.0.53] - 2024-04-22
---------------------
Added
^^^^^
2024-11-24 18:25:25 +00:00
- `env_prefix` :meth:`~canaille.create_app` variable can select the environment var prefix.
2024-04-22 14:40:44 +00:00
[0.0.52] - 2024-04-22
---------------------
Added
^^^^^
2024-11-24 18:25:25 +00:00
- `env_file` create_app variable can customize/disable the .env file.
Changed
^^^^^^^
- Locked users cannot be impersonated anymore.
2024-11-24 18:25:25 +00:00
- Minimum Python requirement is 3.9.
2024-04-09 20:06:36 +00:00
[0.0.51] - 2024-04-09
---------------------
Changed
^^^^^^^
- Display the menu bar on error pages.
2024-04-09 19:51:19 +00:00
[0.0.50] - 2024-04-09
---------------------
Added
^^^^^
2024-11-24 18:25:25 +00:00
- Sign in/out events are logged in. :issue:`177`
Fixed
^^^^^
2024-11-24 18:25:25 +00:00
- `HTMX` and `JAVASCRIPT` configuration settings.
- Compatibility with old sessions IDs.
2024-04-08 16:24:34 +00:00
[0.0.49] - 2024-04-08
---------------------
2024-04-08 12:15:28 +00:00
Fixed
^^^^^
- LDAP user group removal.
- Display an error message when trying to remove the last user from a group.
2024-04-08 12:15:28 +00:00
2024-04-08 09:01:02 +00:00
[0.0.48] - 2024-04-08
---------------------
Fixed
^^^^^
2024-11-24 18:25:25 +00:00
- LDAP ``objectClass`` guessing exception.
2024-04-08 08:51:32 +00:00
[0.0.47] - 2024-04-08
---------------------
2024-04-08 08:50:37 +00:00
Fixed
^^^^^
- Lazy permission loading exception.
2024-04-08 08:37:17 +00:00
[0.0.46] - 2024-04-08
---------------------
Fixed
^^^^^
2024-11-24 18:25:25 +00:00
- Saving an object with the LDAP backend keeps the ``objectClass`` un-managed by Canaille. :pr:`171`
2024-04-04 13:32:07 +00:00
[0.0.45] - 2024-04-04
---------------------
Changed
^^^^^^^
2024-11-24 18:25:25 +00:00
- Internal indexation mechanism of :class:`~canaille.backends.memory.model.MemoryModel`.
2024-04-04 13:32:07 +00:00
2024-03-29 16:37:11 +00:00
[0.0.44] - 2024-03-29
---------------------
2024-03-29 16:15:35 +00:00
Fixed
^^^^^
2024-11-24 18:25:25 +00:00
- Fix the default LDAP ``USER_FILTER`` value.
- Fix the OIDC feature detection.
2024-03-29 16:15:35 +00:00
2024-03-29 11:11:15 +00:00
[0.0.43] - 2024-03-29
---------------------
2020-11-06 10:44:25 +00:00
2024-11-24 18:25:25 +00:00
.. warning::
Configuration files must be updated.
2024-03-27 20:17:30 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2024-03-27 20:17:30 +00:00
2024-11-24 18:25:25 +00:00
- Add ``created`` and ``last_modified`` datetime for all models.
- Sitemap to the documentation. :pr:`169`
- Configuration management with `pydantic-settings`. :issue:`138` :pr:`170`
2024-03-27 20:17:30 +00:00
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
2024-11-24 18:25:25 +00:00
- Use default Python logging configuration format. :issue:`188` :pr:`165`
- Bump to `HTMX` 1.99.11. :pr:`166`
- Use the standard tomllib Python module instead of `toml` starting from Python 3.11. :pr:`167`
2024-03-27 20:18:58 +00:00
- Use shibuya as the documentation theme :pr:`168`
2023-12-29 16:17:58 +00:00
[0.0.42] - 2023-12-29
2024-03-28 13:35:01 +00:00
---------------------
2023-12-29 16:17:58 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
- Avoid to fail on imports if ``cryptography`` is missing.
2023-12-25 19:16:23 +00:00
[0.0.41] - 2023-12-25
2024-03-28 13:35:01 +00:00
---------------------
2023-12-25 19:16:23 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-24 18:25:25 +00:00
- OIDC support for the ``create`` value of the ``prompt`` parameter. :issue:`185` :pr:`164`
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-24 18:25:25 +00:00
- Correctly set up :attr:`~canaille.oidc.basemodels.Client.audience` during OIDC dynamic registration.
- ``post_logout_redirect_uris`` was ignored during OIDC dynamic registration.
- Group field error prevented the registration form validation.
2023-12-22 17:04:39 +00:00
[0.0.40] - 2023-12-22
2024-03-28 13:35:01 +00:00
---------------------
2023-12-22 17:04:39 +00:00
2023-12-22 17:00:07 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-26 17:43:02 +00:00
- The ``THEME`` setting can be a relative path.
2023-12-22 17:00:07 +00:00
2023-12-22 17:02:23 +00:00
[0.0.39] - 2023-12-15
2024-03-28 13:35:01 +00:00
---------------------
2023-12-22 17:02:23 +00:00
2023-12-15 09:50:53 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2023-12-15 09:50:53 +00:00
2024-11-24 18:25:25 +00:00
- Crash when no ACL were defined.
- OIDC Userinfo endpoint is also available in POST.
- Fix redirection after password reset. :issue:`159`
2023-12-15 09:50:53 +00:00
2023-12-15 09:25:54 +00:00
[0.0.38] - 2023-12-15
2024-03-28 13:35:01 +00:00
---------------------
2023-12-15 09:25:54 +00:00
2023-12-01 21:09:54 +00:00
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
2023-12-01 21:09:54 +00:00
2024-11-24 18:25:25 +00:00
- Convert all the `PNG` pictures in `Webp`. :pr:`162`
- Update to Flask 3. :issue:`161` :pr:`163`
2023-12-01 21:09:54 +00:00
2023-12-01 11:11:59 +00:00
[0.0.37] - 2023-12-01
2024-03-28 13:35:01 +00:00
---------------------
2023-12-01 11:11:59 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-24 18:25:25 +00:00
- Handle 4xx and 5xx error codes with HTMX. :issue:`171` :pr:`161`
2023-12-01 08:33:25 +00:00
[0.0.36] - 2023-12-01
2024-03-28 13:35:01 +00:00
---------------------
2023-12-01 08:33:25 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
- Avoid crashing when LDAP groups references unexisting users.
- Password reset and initialization mails were only sent to the
preferred user email address.
- Password reset and initialization mails were not sent at all the user
addresses if one email address could not be reached.
2024-09-11 07:33:42 +00:00
- Password comparison was too permissive on login.
- Encrypt passwords in the SQL backend.
2023-11-24 14:49:58 +00:00
[0.0.35] - 2023-11-25
2024-03-28 13:35:01 +00:00
---------------------
2023-11-24 14:49:58 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2023-11-24 12:04:06 +00:00
- Refresh token grant supports other client authentication methods. :pr:`157`
2023-11-24 14:49:58 +00:00
- Implement a SQLAlchemy backend. :issue:`30` :pr:`158`
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
- Model attributes cardinality is closer to SCIM model. :pr:`155`
2024-11-24 18:25:25 +00:00
- Bump to `HTMX` 1.9.9. :pr:`159`
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-24 18:25:25 +00:00
- Disable `HTMX` boosting during the OIDC dance. :pr:`160`
2023-10-02 12:06:13 +00:00
[0.0.34] - 2023-10-02
2024-03-28 13:35:01 +00:00
---------------------
2023-10-02 12:06:13 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
- Canaille installations without account lockabilty could not
delete users. :pr:`153`
Added
2024-03-28 14:31:55 +00:00
^^^^^
- If users register or authenticate during a OAuth Authorization
phase, they get redirected back to that page afterwards.
:issue:`168` :pr:`151`
2024-11-26 17:43:02 +00:00
- The `flask-babel` and `pytz` libraries are now part of the `front` packaging extras.
2024-11-24 18:25:25 +00:00
- Bump to `fomantic-ui` 2.9.3. :pr:`152`
- Bump to `HTMX` 1.9.6. :pr:`154`
- Support for Python 3.12. :pr:`155`
2023-08-26 15:39:40 +00:00
[0.0.33] - 2023-08-26
2024-03-28 13:35:01 +00:00
---------------------
2023-08-26 15:39:40 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-26 17:43:02 +00:00
- OIDC jwks endpoint do not return empty `kid` claim.
2023-08-26 15:39:40 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2023-08-26 15:39:40 +00:00
2024-11-26 17:43:02 +00:00
- Documentation details on the Canaille models.
2023-08-26 15:39:40 +00:00
2023-08-17 14:20:06 +00:00
[0.0.32] - 2023-08-17
2024-03-28 13:35:01 +00:00
---------------------
2023-08-17 14:20:06 +00:00
2023-04-15 11:00:02 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2023-04-15 11:00:02 +00:00
2024-11-24 18:25:25 +00:00
- Additional inmemory backend. :issue:`30` :pr:`149`
- Installation extras. :issue:`167` :pr:`150`
2023-04-15 11:00:02 +00:00
2023-08-15 15:14:02 +00:00
[0.0.31] - 2023-08-15
2024-03-28 13:35:01 +00:00
---------------------
2023-08-15 15:14:02 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-24 18:25:25 +00:00
- Configuration option to disable the forced usage of OIDC `nonce` parameter. :pr:`143`
- Validate phone numbers with a regex. :pr:`146`
- Email verification. :issue:`41` :pr:`147`
- Account registration. :issue:`55` :pr:`133` :pr:`148`
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
- The `check` command uses the default configuration values.
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
2024-11-24 18:25:25 +00:00
- Modals do not need use Javascript at the moment. :issue:`158` :pr:`144`
2023-07-06 07:13:42 +00:00
[0.0.30] - 2023-07-06
2024-03-28 13:35:01 +00:00
---------------------
2023-07-06 07:13:42 +00:00
2024-11-24 18:25:25 +00:00
.. warning::
Configuration files must be updated.
Check the new format with ``git diff 0.0.29 0.0.30 canaille/conf/config.sample.toml``
2023-07-04 16:34:16 +00:00
2023-07-03 21:26:39 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2023-07-03 21:26:39 +00:00
2024-11-26 17:43:02 +00:00
- Configuration option to disable Javascript. :pr:`141`
2023-07-03 21:26:39 +00:00
2023-07-04 16:34:16 +00:00
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
2023-07-04 16:34:16 +00:00
2024-11-26 17:43:02 +00:00
- The configuration parameter ``USER_FILTER`` is parsed with Jinja.
2024-11-24 18:25:25 +00:00
- Configuration use ``PRIVATE_KEY_FILE`` instead of ``PRIVATE_KEY`` and ``PUBLIC_KEY_FILE`` instead of ``PUBLIC_KEY``.
2023-07-04 16:34:16 +00:00
2023-06-30 16:44:29 +00:00
[0.0.29] - 2023-06-30
2024-03-28 13:35:01 +00:00
---------------------
2023-06-30 16:44:29 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-24 18:25:25 +00:00
- Disabled `HTMX` boosting on OIDC forms to avoid errors.
2023-06-30 08:19:39 +00:00
[0.0.28] - 2023-06-30
2024-03-28 13:35:01 +00:00
---------------------
2023-06-30 08:19:39 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2023-06-30 08:19:39 +00:00
- A template variable was misnamed.
2023-06-29 16:07:04 +00:00
[0.0.27] - 2023-06-29
2024-03-28 13:35:01 +00:00
---------------------
2023-06-29 16:07:04 +00:00
2024-11-24 18:25:25 +00:00
.. warning::
2024-11-26 17:43:02 +00:00
Configuration files must be updated.
2024-11-24 18:25:25 +00:00
Check the new format with ``git diff 0.0.26 0.0.27 canaille/conf/config.sample.toml``
2023-06-22 13:14:07 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
- Configuration entries can be loaded from files if the entry key has a *_FILE* suffix
and the entry value is the path to the file. :issue:`134` :pr:`134`
- Field list support. :issue:`115` :pr:`136`
2024-11-24 18:25:25 +00:00
- Pages are boosted with `HTMX`. :issue:`144` :issue:`145` :pr:`137`
2023-06-28 11:32:31 +00:00
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
2023-06-28 11:32:31 +00:00
2024-11-24 18:25:25 +00:00
- Bump to jquery 3.7.0. :pr:`138`
2023-06-28 11:32:31 +00:00
2023-06-27 16:49:23 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2023-06-27 16:49:23 +00:00
2024-11-24 18:25:25 +00:00
- Profile edition when the user RDN was not ``uid``. :issue:`148` :pr:`139`
2023-06-27 16:49:23 +00:00
2023-06-03 13:37:24 +00:00
Removed
2024-03-28 14:31:55 +00:00
^^^^^^^
2023-06-03 13:37:24 +00:00
2024-11-24 18:25:25 +00:00
- Stop support for Python 3.7. :pr:`131`
2023-06-03 13:37:24 +00:00
2023-06-03 10:31:48 +00:00
[0.0.26] - 2023-06-03
2024-03-28 13:35:01 +00:00
---------------------
2023-06-03 10:31:48 +00:00
2022-11-01 11:25:21 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2022-11-01 11:25:21 +00:00
2024-11-24 18:25:25 +00:00
- Implemented account expiration based on OpenLDAP ppolicy overlay. Needs OpenLDAP 2.5+.
2022-11-01 11:25:21 +00:00
:issue:`13` :pr:`118`
- Timezone configuration entry. :issue:`137` :pr:`130`
2022-11-01 11:25:21 +00:00
2023-05-05 11:28:55 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2023-05-05 11:28:55 +00:00
- Avoid setting ``None`` in JWT claims when they have no value.
- Display password recovery button on OIDC login page. :pr:`129`
2023-05-05 11:28:55 +00:00
2023-05-05 09:01:36 +00:00
[0.0.25] - 2023-05-05
2024-03-28 13:35:01 +00:00
---------------------
2024-11-24 18:25:25 +00:00
.. warning::
Configuration files must be updated.
Check the new format with ``git diff 0.0.25 0.0.24 canaille/conf/config.sample.toml``
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
- Renamed user model attributes to match SCIM naming convention. :pr:`123`
2024-11-24 18:25:25 +00:00
- Moved OIDC related configuration entries in ``OIDC``.
- Moved ``LDAP`` configuration entry to ``BACKENDS.LDAP``.
- Bumped to `HTMX` 1.9.0. :pr:`124`
- ACL filters are no more LDAP filters but user attribute mappings. :pr:`125`
2024-11-24 18:25:25 +00:00
- Bumped to `HTMX` 1.9.2. :pr:`127`
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
- ``OIDC.JWT.MAPPING`` configuration entry is really optional now.
2024-11-24 18:25:25 +00:00
- Fixed empty model attributes registration. :pr:`125`
- Password initialization mails were not correctly sent. :pr:`128`
2023-04-07 16:09:44 +00:00
[0.0.24] - 2023-04-07
2024-03-28 13:35:01 +00:00
---------------------
2023-04-07 16:09:44 +00:00
2023-04-07 16:05:06 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2023-04-07 16:05:06 +00:00
2023-04-07 18:13:09 +00:00
- Fixed avatar update. :pr:`122`
2023-04-07 16:05:06 +00:00
2023-04-05 12:32:20 +00:00
[0.0.23] - 2023-04-05
2024-03-28 13:35:01 +00:00
---------------------
2023-04-05 12:32:20 +00:00
2023-03-17 16:35:05 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2023-03-17 16:35:05 +00:00
- Organization field. :pr:`116`
- ETag and Last-Modified headers on user photos. :pr:`116`
2024-11-24 18:25:25 +00:00
- Dynamic form validation. :pr:`120`
2023-03-17 16:35:05 +00:00
2023-03-16 18:12:23 +00:00
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
2023-03-16 18:12:23 +00:00
- UX rework. Submenu addition. :pr:`114`
2023-03-17 23:38:56 +00:00
- Properly handle LDAP date timezones. :pr:`117`
2023-03-16 18:12:23 +00:00
2023-03-28 18:30:29 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2023-03-28 18:30:29 +00:00
- CSRF protection on every forms. :pr:`119`
2023-03-13 09:08:09 +00:00
[0.0.22] - 2023-03-13
2024-03-28 13:35:01 +00:00
---------------------
2023-03-13 09:08:09 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-24 18:25:25 +00:00
- The `Faker` library is not imported anymore when the `clean` command is called.
2023-03-12 22:40:06 +00:00
[0.0.21] - 2023-03-12
2024-03-28 13:35:01 +00:00
---------------------
2023-03-12 22:40:06 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2023-02-14 12:53:55 +00:00
- Display TOS and policy URI on the consent list page. :pr:`102`
2024-11-24 18:25:25 +00:00
- Admin token deletion. :pr:`100` :pr:`101`
2023-02-14 17:43:43 +00:00
- Revoked consents can be restored. :pr:`103`
- Pre-consented clients are displayed in the user consent list,
and their consents can be revoked. :issue:`69` :pr:`103`
- A ``populate`` command can be used to fill the database with
random users generated with faker. :pr:`105`
2023-02-28 09:07:08 +00:00
- SMTP SSL support. :pr:`108`
2023-03-09 18:30:53 +00:00
- Server side pagination. :issue:`114` :pr:`111`
2023-03-11 11:52:36 +00:00
- Department number support. :issue:`129`
2024-11-24 18:25:25 +00:00
- Address edition support (but not in the OIDC claims yet). :pr:`112`
- Title edition support. :pr:`113`
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-24 18:25:25 +00:00
- Client deletion also deletes related :class:`~canaille.oidc.basemodels.Consent`, :class:`~canaille.oidc.basemodels.Token` and
:class:`~canaille.oidc.basemodels.AuthorizationCode` objects. :issue:`126` :pr:`98`
2023-02-23 17:32:17 +00:00
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
2023-02-23 17:32:17 +00:00
2024-11-24 18:25:25 +00:00
- Removed the `DataTables` Javascript library.
2023-02-23 17:32:17 +00:00
2023-01-28 15:01:15 +00:00
[0.0.20] - 2023-01-28
2024-03-28 13:35:01 +00:00
---------------------
2023-01-28 15:01:15 +00:00
2023-01-15 08:13:14 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2023-01-15 08:13:14 +00:00
2023-01-18 22:18:49 +00:00
- Spanish translation. :pr:`85` :pr:`88`
2024-11-24 18:25:25 +00:00
- Dedicated connectivity test email. :pr:`89`
- Update to jquery 3.6.3. :pr:`90`
- Update to fomantic-ui 2.9.1. :pr:`90`
- Update to DataTables 1.13.1. :pr:`90`
2023-01-15 08:13:14 +00:00
2023-01-15 08:16:12 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2023-01-15 08:16:12 +00:00
- Fix typos and grammar errors. :pr:`84`
- Fix wording and punctuations. :pr:`86`
2024-11-24 18:25:25 +00:00
- Fix HTML lang tag. :issue:`122` :pr:`87`
- Automatically trims the HTML translated strings. :pr:`91`
- Fixed dynamic registration scope management. :issue:`123` :pr:`93`
2023-01-15 08:16:12 +00:00
2023-01-14 17:24:14 +00:00
[0.0.19] - 2023-01-14
2024-03-28 13:35:01 +00:00
---------------------
2023-01-14 17:24:14 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
- Ensures the token `expires_in` claim and the `access_token` `exp` claim
have the same value. :pr:`83`
2022-12-28 01:23:00 +00:00
[0.0.18] - 2022-12-28
2024-03-28 13:35:01 +00:00
---------------------
2022-12-28 01:23:00 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
- OIDC end_session was not returning the ``state`` parameter in the
2024-11-24 18:25:25 +00:00
``post_logout_redirect_uri``. :pr:`82`
2022-12-26 13:55:12 +00:00
[0.0.17] - 2022-12-26
2024-03-28 13:35:01 +00:00
---------------------
2022-12-15 17:06:16 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2022-12-15 17:06:16 +00:00
- Fixed group deletion button. :pr:`80`
- Fixed post requests in oidc clients views. :pr:`81`
2022-12-15 17:06:16 +00:00
2022-12-15 11:45:12 +00:00
[0.0.16] - 2022-12-15
2024-03-28 13:35:01 +00:00
---------------------
2022-12-15 11:45:12 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
- Fixed LDAP operational attributes handling.
2022-12-15 11:00:07 +00:00
[0.0.15] - 2022-12-15
2024-03-28 13:35:01 +00:00
---------------------
2022-12-15 11:00:07 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-26 17:43:02 +00:00
- User can chose their display name. :pr:`77`
- Bumped to Authlib 1.2. :pr:`78`
- Implemented :rfc:`RFC7592 <7592>` OAuth 2.0 Dynamic Client Registration Management
2024-11-24 18:25:25 +00:00
Protocol. :pr:`79`
2024-11-26 17:43:02 +00:00
- Add the ``nonce`` parameter to the ``claims_supported`` server metadata list.
2022-11-29 17:13:02 +00:00
[0.0.14] - 2022-11-29
2024-03-28 13:35:01 +00:00
---------------------
2022-11-25 20:39:22 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-26 17:43:02 +00:00
- Fixed translation catalogs packaging.
2022-11-25 20:39:22 +00:00
2022-11-21 16:50:22 +00:00
[0.0.13] - 2022-11-21
2024-03-28 13:35:01 +00:00
---------------------
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
- Fixed a bug on the contacts field in the admin client form following
2024-11-24 18:25:25 +00:00
the LDAP schema update of 0.0.12.
- Fixed a bug happening during RP initiated logout on clients without
`post_logout_redirect_uri` defined.
- Gitlab CI fix. :pr:`64`
2022-11-14 17:23:19 +00:00
- Fixed `client_secret` display on the client administration page. :pr:`65`
2022-11-15 10:46:44 +00:00
- Fixed non-square logo CSS. :pr:`67`
2022-11-15 11:00:34 +00:00
- Fixed schema path on installation. :pr:`68`
- Fixed RFC7591 ``software_statement`` claim support. :pr:`70`
2022-11-16 16:36:16 +00:00
- Fixed client preconsent disabling. :pr:`72`
2022-11-01 10:49:26 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2022-11-01 10:49:26 +00:00
- Python 3.11 support. :pr:`61`
2024-11-26 17:43:02 +00:00
- ``apparmor`` slapd configuration instructions in the documentation page for contributions. :pr:`66`
- ``preferredLanguage`` attribute support. :pr:`75`
2022-11-01 10:49:26 +00:00
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
- Replaced the use of the deprecated `FLASK_ENV` environment variable by
`FLASK_DEBUG`.
2022-11-16 15:46:40 +00:00
- Dynamically generate the server metadata. Users won't have to copy and
manually edit ``oauth-authorizationserver.json`` and
``openid-configuration.json``. :pr:`71`
- The `FROM_ADDR` configuration option is not mandatory anymore. :pr:`73`
- The `JWT.ISS` configuration option is not mandatory anymore. :pr:`74`
2022-10-24 08:31:35 +00:00
[0.0.12] - 2022-10-24
2024-03-28 13:35:01 +00:00
---------------------
Added
2024-03-28 14:31:55 +00:00
^^^^^
- Basic WebFinger endpoint. :pr:`59`
2024-11-24 18:25:25 +00:00
- Bumped to FomanticUI 2.9.0.
- Implemented Dynamic Client Registration. :pr:`60`
2022-08-11 10:26:52 +00:00
[0.0.11] - 2022-08-11
2024-03-28 13:35:01 +00:00
---------------------
2022-08-01 07:58:12 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2022-08-01 07:58:12 +00:00
- Default theme has a dark variant. :pr:`57`
2022-08-11 10:26:52 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2022-08-11 10:26:52 +00:00
- Fixed missing ``canaille`` binary. :pr:`58`
2022-07-07 15:02:16 +00:00
[0.0.10] - 2022-07-07
2024-03-28 13:35:01 +00:00
---------------------
2022-07-07 14:05:34 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2022-07-07 14:05:34 +00:00
2022-07-07 15:02:16 +00:00
- Online demo. :pr:`55`
2022-07-07 14:05:34 +00:00
- The consent page was displaying scopes not supported by clients. :pr:`56`
- Fixed end session when user are already disconnected.
2022-07-07 14:05:34 +00:00
2022-06-05 16:30:29 +00:00
[0.0.9] - 2022-06-05
2024-03-28 13:35:01 +00:00
--------------------
Added
2024-03-28 14:31:55 +00:00
^^^^^
- ``DISABLE_PASSWORD_RESET`` configuration option to disable password recovery. :pr:`46`
- ``edit_self`` ACL permission to control user self edition. :pr:`47`
2024-11-24 18:25:25 +00:00
- `RP-initiated logout` implementation. :pr:`54`
2022-06-02 15:53:58 +00:00
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
2022-06-02 15:53:58 +00:00
2024-11-24 18:25:25 +00:00
- Bumped to Authlib 1. :pr:`48`
- Various documentation improvements. :pr:`50`
- Use poetry instead of setuptools as project management tool. :pr:`51`
2024-11-26 17:43:02 +00:00
- Additional tests for the OIDC ``nonce`` parameter. :pr:`52`
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
- ``HIDE_INVALID_LOGIN`` behavior and default value.
2024-11-24 18:25:25 +00:00
- Compiled translation catalogs are not versioned anymore. :pr:`49` :pr:`53`
[0.0.8] - 2022-03-15
2024-03-28 13:35:01 +00:00
--------------------
2022-03-15 11:15:18 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2022-03-15 11:15:18 +00:00
2024-11-24 18:25:25 +00:00
- Fixed dependencies.
[0.0.7] - 2022-03-15
2024-03-28 13:35:01 +00:00
--------------------
2022-03-15 11:15:18 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2024-11-24 18:25:25 +00:00
- Fixed spaces and escaped special char in LDAP ``cn/dn`` attributes. :pr:`43`
2022-03-15 11:15:18 +00:00
2022-03-08 18:43:18 +00:00
[0.0.6] - 2022-03-08
2024-03-28 13:35:01 +00:00
--------------------
2022-03-08 18:43:18 +00:00
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
2022-03-08 18:43:18 +00:00
- Access token are JWT. :pr:`38`
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2022-03-08 18:43:18 +00:00
2024-11-24 18:25:25 +00:00
- Default groups on invitations. :pr:`41`
- LDAP schemas are shipped within the Canaille package. :pr:`42`
2022-03-08 18:43:18 +00:00
2022-03-03 09:58:25 +00:00
[0.0.5] - 2022-02-17
2024-03-28 13:35:01 +00:00
--------------------
2022-03-03 09:58:25 +00:00
Changed
2024-03-28 14:31:55 +00:00
^^^^^^^
2022-03-03 09:58:25 +00:00
2024-11-24 18:25:25 +00:00
- LDAP model objects have new identifiers. :pr:`37`
2022-03-03 09:58:25 +00:00
2022-03-08 18:43:18 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2022-03-08 18:43:18 +00:00
2024-11-24 18:25:25 +00:00
- Admin menu dropdown display. :pr:`39`
- ``GROUP_ID_ATTRIBUTE`` configuration typo. :pr:`40`
2022-03-08 18:43:18 +00:00
2022-02-16 18:41:17 +00:00
[0.0.4] - 2022-02-16
2024-03-28 13:35:01 +00:00
--------------------
2022-02-16 18:41:17 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2022-02-16 18:41:17 +00:00
2024-11-24 18:25:25 +00:00
- Client pre-authorization. :pr:`11`
- LDAP permissions check with the check command. :pr:`12`
2022-02-16 18:41:17 +00:00
- Update consents when a scope required is larger than the scope of an already
2024-11-24 18:25:25 +00:00
given consent. :pr:`13`
- Theme customization. :pr:`15`
- Logging configuration. :pr:`16`
- Installation command. :pr:`17`
- Invitation links. :pr:`18`
- Advanced permissions. :pr:`20`
- An option to not use OIDC. :pr:`23`
- Disable some features when no SMTP server is configured. :pr:`24`
- Login placeholder dynamically generated according to the configuration. :pr:`25`
- Added an option to tune object IDs. :pr:`26`
- Avatar support. :pr:`27`
- Dynamical and configurable JWT claims. :pr:`28`
- UI improvements. :pr:`29`
- Invitation links expiration. :pr:`30`
- Invitees can choose their IDs. :pr:`31`
- LDAP backend refactoring. :pr:`35`
Fixed
^^^^^
- Fixed ghost members in a group. :pr:`14`
- Fixed email sender names. :pr:`19`
- Fixed filter being not escaped. :pr:`21`
- Demo script good practices. :pr:`32`
- Binary path for Debian. :pr:`33`
2022-02-16 18:41:17 +00:00
- Last name was not mandatory in the forms while this was mandatory
2024-11-24 18:25:25 +00:00
in the LDAP server. :pr:`34`
- Spelling typos. :pr:`36`
2022-02-16 18:41:17 +00:00
2021-10-13 10:18:45 +00:00
[0.0.3] - 2021-10-13
2024-03-28 13:35:01 +00:00
--------------------
2021-10-13 10:18:45 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2021-10-13 10:18:45 +00:00
2024-11-24 18:25:25 +00:00
- Two-steps sign-in. :issue:`49`
2021-10-13 10:18:45 +00:00
- Tokens can have several audiences. :issue:`62` :pr:`9`
- Configuration check command. :issue:`66` :pr:`8`
2024-09-11 07:33:42 +00:00
- Groups management. :issue:`12` :pr:`6`
2021-10-13 10:18:45 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2021-10-13 10:18:45 +00:00
- Introspection access bugfix. :issue:`63` :pr:`10`
- Introspection sub claim. :issue:`64` :pr:`7`
2020-11-06 10:44:25 +00:00
2021-01-06 16:42:16 +00:00
[0.0.2] - 2021-01-06
2024-03-28 13:35:01 +00:00
--------------------
2021-01-06 16:42:16 +00:00
2020-11-06 10:44:25 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2020-11-06 10:44:25 +00:00
- Login page is responsive. :issue:`1`
- Adapt mobile keyboards to login page fields. :issue:`2`
- Password recovery interface. :issue:`3`
- User profile interface. :issue:`4`
2024-11-24 18:25:25 +00:00
- Renamed the project *Canaille*. :issue:`5`
2020-11-06 10:44:25 +00:00
- Command to remove old tokens. :issue:`17`
- Improved password recovery email. :issue:`14` :issue:`26`
2024-11-24 18:25:25 +00:00
- Use Flask `SERVER_NAME` configuration variable instead of `URL`. :issue:`24`
2020-11-06 10:44:25 +00:00
- Improved consents page. :issue:`27`
- Admin user page. :issue:`8`
- Project logo. :pr:`29`
- User account self-deletion can be enabled in the configuration with `SELF_DELETION`. :issue:`35`
2020-12-11 12:02:44 +00:00
- Admins can impersonate users. :issue:`39`
- Forgotten page UX improvement. :pr:`43`
2020-11-23 16:32:40 +00:00
- Admins can remove clients. :pr:`45`
2021-01-01 14:00:05 +00:00
- Option `HIDE_INVALID_LOGIN` that can be unactivated to let the user know if
the login he attempt to sign in with exists or not. :pr:`48`
2021-01-06 16:20:50 +00:00
- Password initialization mail. :pr:`51`
2020-11-06 10:44:25 +00:00
Fixed
2024-03-28 14:31:55 +00:00
^^^^^
2020-11-06 10:44:25 +00:00
- Form translations. :issue:`19` :issue:`23`
- Avoid to use Google Fonts. :issue:`21`
Removed
2024-03-28 14:31:55 +00:00
^^^^^^^
2020-11-06 10:44:25 +00:00
- 'My tokens' page. :issue:`22`
[0.0.1] - 2020-10-21
2024-03-28 13:35:01 +00:00
--------------------
2020-11-06 10:44:25 +00:00
Added
2024-03-28 14:31:55 +00:00
^^^^^
2020-11-06 10:44:25 +00:00
- Initial release.