globuzma/canaille-globuzma
1
0
Fork 0
forked from Github-Mirrors/canaille
Code Pull requests Activity
2385 commits 5 branches 57 tags 18 MiB
Commit graph

265 commits

Author SHA1 Message Date
Éloi Rivard
e09a3071d4
fix: handle 4xx and 5xx error codes with htmx 2023-12-01 11:49:09 +01:00
Éloi Rivard
8e960d956b
chore: bump to 0.0.36 2023-12-01 09:34:45 +01:00
Éloi Rivard
a7e574f754
feat: use sqlalchemy-utils PasswordType to store and hash user passwords 2023-12-01 09:29:59 +01:00
Éloi Rivard
969f3e980c
fix: password comparision was too permissive on login 2023-11-28 18:10:47 +01:00
Éloi Rivard
aa07059357
fix: password and initalization emails were only sent to the preferred user email address 2023-11-28 17:59:50 +01:00
Éloi Rivard
c2250ec77e
fix: password reset and initialization mail sending 
Password reset and initialization mails were not sent at all the user
  addresses if one email address could not be reached.
 2023-11-28 15:27:08 +01:00
Éloi Rivard
d9dbd8ad0e
fix: crash when LDAP groups are refering to unexisting users 2023-11-28 09:37:37 +01:00
Éloi Rivard
3fb1f29a96
chore: bump to 0.0.35 2023-11-24 15:50:58 +01:00
Éloi Rivard
4e380436d3
fix: disable HTMX boosting during the OIDC dance 2023-11-24 14:45:59 +01:00
Éloi Rivard
d55489f24c
chore: bump to htmx 1.9.9 2023-11-24 14:10:42 +01:00
Éloi Rivard
27639081f0
feat: implement sqlalchemy backend 
Co-authored-by: Loan Robert <loan@yaal.coop>
 2023-11-24 13:57:46 +01:00
Éloi Rivard
d97459dbac
chore: changelog fixes 2023-11-24 13:04:06 +01:00
Éloi Rivard
771d3952a3
feat: OIDC password grant supports other client authentication methods 2023-11-18 19:20:14 +01:00
Éloi Rivard
1fd8af2cf4
refactor: models attributes cardinality is closer to SCIM models 2023-11-17 21:21:25 +01:00
Éloi Rivard
b2988d35eb
chore: python 3.12 support 2023-11-01 20:22:26 +01:00
Éloi Rivard
b765328f7e
chore: bump to 0.0.34 2023-10-02 14:06:13 +02:00
Éloi Rivard
5b039d8f4f
chore: bump to htmx 1.9.6 2023-09-29 12:57:37 +02:00
Éloi Rivard
9c5ef421d0
fix: user deletion on instances without account lockability 2023-09-28 18:27:43 +02:00
Éloi Rivard
cbecb34c4e
chore: bump to fomanticui 2.9.3 2023-09-08 09:07:03 +02:00
Éloi Rivard
a2e3fce204
feat: flask-babel and pytz are now part of the front extras 2023-09-01 10:46:56 +02:00
Éloi Rivard
a7b3d4be88
feat: user login redirections 
if users login during the authorization phase, they
get redirected to the authorization page afterwards
 2023-09-01 09:12:40 +02:00
Éloi Rivard
21ea0238b5
OIDC jwks endpoint do not return empty kid claim 2023-08-26 19:59:44 +02:00
Éloi Rivard
823bba35b4
chore: bump to 0.0.33 2023-08-26 17:39:40 +02:00
Éloi Rivard
55c031171c
chore: bump to 0.0.32 2023-08-17 16:20:06 +02:00
Éloi Rivard
96ccf12ad9
feat: split installation in different extras packages 2023-08-17 14:34:30 +02:00
Éloi Rivard
588ec8792e
Implement a dummy inmemory backend 2023-08-17 12:33:45 +02:00
Éloi Rivard
4642829d80
chore: bump to 0.0.31 2023-08-15 17:16:09 +02:00
Éloi Rivard
5a9df64f68
feat: implement registration process 2023-08-15 16:31:44 +02:00
Éloi Rivard
dd08fd7976
chore: changelog 2023-08-14 17:09:36 +02:00
Éloi Rivard
8fe8494587
feat: validate phone numbers 2023-08-03 19:08:34 +02:00
Éloi Rivard
b4908d5e57
modals are HTML pages instead of JS elements 
This will help providing the very same user experience for users with
and without javascript. We will still be able to re-enable javascript
modals in the future, but this should be done from the ground up, HTML
first and javascript after.
 2023-07-18 18:34:10 +02:00
Éloi Rivard
2da4c92d9e check command considers default backup values 
at least until #138 is implement ...
 2023-07-10 19:50:05 +02:00
Éloi Rivard
4715f643e2 Add a OIDC.REQUIRE_NONCE option to improve compatibility with clients 2023-07-06 17:57:17 +02:00
Éloi Rivard
e3629e9bac Changelog 2023-07-06 09:35:46 +02:00
Éloi Rivard
b3cec8504b Bumped to canaille 0.0.30 2023-07-06 09:13:42 +02:00
Éloi Rivard
fd66f86a72 USER_FILTER is parsed with jinja 2023-07-04 18:34:16 +02:00
Éloi Rivard
10a0ecc090 Added an option to disable javascript 2023-07-03 23:26:39 +02:00
Éloi Rivard
459c308f71 Bump to canaille 0.0.29 2023-06-30 18:46:43 +02:00
Éloi Rivard
2d80eb9ea9 Disabled HTMX boosting on OIDC forms to avoid errors. 2023-06-30 18:39:50 +02:00
Éloi Rivard
ddc1085367 A template variable was misnamed 2023-06-30 10:19:39 +02:00
Éloi Rivard
224ef0b692 Bump to 0.0.27 2023-06-29 18:07:04 +02:00
Éloi Rivard
251e114bc0 Changelog 2023-06-29 15:55:39 +02:00
Éloi Rivard
5dc83bc840 Bump to jquery 3.7.0 2023-06-28 13:32:31 +02:00
Éloi Rivard
bb95978376 Boosts webpages with HTMX 
Fixes #144
Fixes #145
 2023-06-26 17:17:07 +02:00
Éloi Rivard
b7e1590510 User emails and phone numbers are now multiple 2023-06-22 17:55:26 +02:00
Éloi Rivard
371f806695 Renamed User.email in User.emails 2023-06-22 15:15:46 +02:00
Éloi Rivard
a9d9d43152 Configuration entries can be loaded from files. 
Co-authored-by: Sofi <sofi+git@mailbox.org>
 2023-06-15 18:38:37 +02:00
Éloi Rivard
a89544c953 Stop support for python<3.8 2023-06-03 16:12:58 +02:00
Éloi Rivard
9517e2d73c Bumped to 0.0.26 2023-06-03 12:31:48 +02:00
Éloi Rivard
c7f23e845c datetime-local input fields are transformed in UTC server-side 2023-06-01 13:53:32 +02:00
Éloi Rivard
17c2f7a5cd Implemented LDAP ppolicy support. 2023-05-26 15:23:43 +02:00
Éloi Rivard
26dc4d425c Display password recovery button on OIDC login page 2023-05-15 18:06:22 +02:00
Éloi Rivard
70193b3409 CHANGELOG 2023-05-05 13:28:55 +02:00
Éloi Rivard
d483083840 Changelog indications 2023-05-05 11:06:48 +02:00
Éloi Rivard
32bbb623d1 Bumped to 0.0.25 2023-05-05 11:01:36 +02:00
Éloi Rivard
6e6d15fec1 Fixed password initialization mail recipients 2023-05-05 10:53:48 +02:00
Éloi Rivard
6148d8d682 Updated to htmx 1.9.2 2023-05-05 10:43:01 +02:00
Éloi Rivard
edb64cbfe1 ACL filters are no more LDAP filters but user attribute mappings. 2023-04-14 19:53:16 +02:00
Éloi Rivard
4bfbeccc1c Fixed empty models attributes registration 2023-04-13 18:02:20 +02:00
Éloi Rivard
39c5a6fb16 htmx 1.9.0 2023-04-13 14:44:38 +02:00
Éloi Rivard
e2b96af1ee Moved LDAP configuration entry to BACKENDS.LDAP 2023-04-10 20:31:54 +02:00
Éloi Rivard
cc45ed4be9 OIDC.JWT.MAPPING configuration option is really optional 2023-04-10 20:09:47 +02:00
Éloi Rivard
302f111ce4 Merge branch 'refactor' into 'main' 
Renamed user attributes to match SCIM naming convention

See merge request yaal/canaille!123
 2023-04-07 18:15:55 +00:00
Éloi Rivard
fd4b0c8d06 Changelog PR number fix 2023-04-07 20:13:09 +02:00
Éloi Rivard
db3a4a74ff Renamed user attributes to match SCIM naming convention 2023-04-07 20:12:24 +02:00
Éloi Rivard
0800ea185c Bump to 0.0.24 2023-04-07 18:09:44 +02:00
Éloi Rivard
01e0e3d3f5 Fixed avatar update with htmx 2023-04-07 18:05:06 +02:00
Éloi Rivard
a615a52887 Bump to 0.0.23 2023-04-05 14:36:09 +02:00
Éloi Rivard
1f1bb353e0 Dynamic form validation with htmx 2023-03-30 23:22:58 +02:00
Éloi Rivard
f97dc3b2c6 CSRF protection everywhere 2023-03-28 20:30:29 +02:00
Éloi Rivard
dd394391c8 Added last_modified and etag headers on the user photos 2023-03-18 01:29:04 +01:00
Éloi Rivard
61940844e6 Properly handle LDAP date timezones 2023-03-18 00:39:32 +01:00
Éloi Rivard
8e84b016da Organization field support 2023-03-17 17:36:23 +01:00
Éloi Rivard
63852d3f36 Changelog 2023-03-16 19:12:23 +01:00
Éloi Rivard
0ae43c7bd5 Bump to canaille 0.0.22 2023-03-13 10:08:09 +01:00
Éloi Rivard
7eef2748f2 Faker is not imported anymore when the clean command is called 2023-03-13 09:46:17 +01:00
Éloi Rivard
965725fa6e Bump to 0.0.21 2023-03-12 23:40:06 +01:00
Éloi Rivard
2c4c3fb37e Title edition support 2023-03-11 22:34:29 +01:00
Éloi Rivard
4170242073 Address edition support (but not in the OIDC claims yet) 2023-03-11 20:12:50 +01:00
Éloi Rivard
402e60325c departmentNumber edition support #129 2023-03-11 12:55:03 +01:00
Éloi Rivard
39a9410a45 CHANGELOG 2023-03-09 19:31:59 +01:00
Éloi Rivard
5549558366 Removed datatables 2023-03-09 19:31:59 +01:00
Éloi Rivard
a57c86cc2c SMTP SSL fixes 2023-02-28 10:07:08 +01:00
Éloi Rivard
2c2797fbad A populate command can be used to fill the database with random users generated with faker. 2023-02-26 19:48:07 +01:00
Éloi Rivard
7458868f77 Pre-consented clients are displayed in the user consent list, and their consents can be revoked. 2023-02-14 21:56:47 +01:00
Éloi Rivard
d551b1ab35 Revoked consents can be restored 2023-02-14 19:05:43 +01:00
Éloi Rivard
4ff46ce262 CHANGELOG 2023-02-14 13:53:55 +01:00
Éloi Rivard
a96518ef9c Display TOS and policy URI on the consent list page 2023-02-14 13:51:59 +01:00
Éloi Rivard
b059e6e719 Client deletion also delete related objects 2023-01-30 19:58:25 +01:00
Éloi Rivard
15de07d87e Bumped to 0.0.20 2023-01-28 16:23:07 +01:00
Éloi Rivard
63f927830a Fixed dynamic client registration scope management 2023-01-28 14:04:04 +01:00
Éloi Rivard
47fff4c6ed Automatically trims the HTML translated strings 2023-01-22 13:45:59 +01:00
Éloi Rivard
aa087112b6 Updated to datatables 1.13.1 2023-01-22 13:04:24 +01:00
Éloi Rivard
75b339d0ae Updated to jquery 3.6.3 2023-01-22 12:59:11 +01:00
Éloi Rivard
ecaf8f84d9 Updated to fomantic-ui 2.9.1 2023-01-22 12:57:17 +01:00
Éloi Rivard
acd54e4afb Dedicated connectivity test email 2023-01-22 12:49:15 +01:00
Éloi Rivard
952ff3f1e9 Changelog 2023-01-18 23:18:49 +01:00
Éloi Rivard
796758c78b Changelog 2023-01-18 18:12:34 +01:00
Éloi Rivard
9d44967cad Wording and punctuation fixes 2023-01-15 09:31:44 +01:00
Éloi Rivard
8f5b5bab3a CHANGELOG 2023-01-15 09:16:12 +01:00
Éloi Rivard
6ac5107f1a CHANGELOG 2023-01-15 09:13:14 +01:00
Éloi Rivard
9970c09d2b Bumped to 0.0.19 2023-01-14 18:24:14 +01:00
Éloi Rivard
d8bcb0bdf0 Ensures the token expires_in claim and the access_token exp claim have the same value. 2023-01-14 14:59:13 +01:00
Éloi Rivard
2d74df19e6 Bump to 0.0.18 2022-12-28 02:23:00 +01:00
Éloi Rivard
5793a73801 OIDC end_session was not returning the state parameter in the post_logout_redirect_uri 2022-12-27 21:48:44 +01:00
Éloi Rivard
35a63e7cd6 Bumped to 0.0.17 2022-12-26 14:55:12 +01:00
Camille Daniel
7e71789fad fix post requests in oidc clients views 
flash and lazygettext were causing an unexpected bug on post (not get) requests
 2022-12-16 19:15:50 +01:00
Éloi Rivard
6d2e9b2011 Fixed !80 changelog 2022-12-15 18:06:25 +01:00
Éloi Rivard
54f63b427d Merge branch 'group-deletion-button' into 'main' 
Fixed group deletion button

See merge request yaal/canaille!80
 2022-12-15 15:51:20 +00:00
Éloi Rivard
3ed3fd79e3 bump to canaille 0.0.16 2022-12-15 12:45:12 +01:00
Éloi Rivard
482f949c09 Fixed LDAP operational attributes handling 2022-12-15 12:41:31 +01:00
Éloi Rivard
a65f785040 Bump to 0.0.15 2022-12-15 12:00:07 +01:00
Éloi Rivard
7c6fd25524 Add nonce to the claims_supported server metadata list 2022-12-15 11:59:00 +01:00
Éloi Rivard
0440a7ba6e Fixed group deletion button 2022-12-13 18:24:26 +01:00
Éloi Rivard
a3418de239 Implemented RFC7592 OAuth Client Registration Management 2022-12-10 00:22:25 +01:00
Éloi Rivard
f42364e7ad Bumped to authlib 1.2 2022-12-06 17:46:58 +01:00
Éloi Rivard
9e75ef3478 Users can choose their favourite display name 2022-12-02 18:48:21 +01:00
Éloi Rivard
8ba6d2f7cf Bump to 0.0.14 2022-11-29 18:13:02 +01:00
Éloi Rivard
d7e61af4dd Fixed translation mo files packaging. 2022-11-25 21:39:43 +01:00
Éloi Rivard
93f584b339 Bumped to 0.0.13 2022-11-21 17:55:08 +01:00
Éloi Rivard
bb0daf34d7 LDAP 'preferredLanguage' attribute support 2022-11-20 22:52:47 +01:00
Éloi Rivard
77ae9df2a9 Issuer 'ISS' configuration option is not mandatory anymore 2022-11-17 18:10:40 +01:00
Éloi Rivard
154ec9fcd2 FROM_ADDR configuration option is not mandatory anymore 2022-11-16 19:26:33 +01:00
Éloi Rivard
62b62b684f Fixed client preconsent disabling 2022-11-16 17:36:16 +01:00
Éloi Rivard
c36d1bd222 CHANGELOG 2022-11-16 16:46:40 +01:00
Éloi Rivard
ba88f8e44a rfc7591: fixed software statement support 2022-11-15 19:04:42 +01:00
Éloi Rivard
ec749455ce CHANGELOG 2022-11-15 12:13:50 +01:00
Éloi Rivard
1d1c3a21e3 CHANGELOG 2022-11-15 11:46:44 +01:00
Éloi Rivard
ed609c99e9 Apparmor slapd instructions. 
Add instructions on how to avoid apparmor preventing slapd execution for
running unit tests.
 2022-11-14 18:32:31 +01:00
Éloi Rivard
f06d7bcccc CHANGELOG 2022-11-14 18:23:19 +01:00
Éloi Rivard
660b143b45 LDAPObject: fixed a bug in python <-> ldap attributes conversion. 
This should fix the CI.
 2022-11-14 18:15:34 +01:00
Éloi Rivard
4163d2eb13 Stop using the deprecated FLASK_ENV environment variable 2022-11-01 12:56:07 +01:00
Éloi Rivard
5aba60d587 Support for python 3.11 2022-11-01 12:03:57 +01:00
Éloi Rivard
fdb8714094 Fixed a bug happening during RP initiated logout on clients without post_logout_redirect_uri defined 2022-10-26 18:09:02 +02:00
Éloi Rivard
6facd248a9 Fixed a bug on the contacts field in the admin client form following the LDAP schema update of 0.0.12 2022-10-26 17:44:50 +02:00
Éloi Rivard
b11cb4abb7 Bumped to v0.0.12 2022-10-24 10:31:35 +02:00
Éloi Rivard
4f729caf2e Implemented dynamic client registration 2022-10-24 10:00:32 +02:00
Éloi Rivard
bb8576a39f Changelog 2022-10-21 14:33:17 +02:00
Éloi Rivard
e45ad6e21c Implemented a basic WebFinger endpoint. 2022-10-03 18:42:08 +02:00
Éloi Rivard
9100b8fb13 Bumped to 0.0.11 2022-10-03 16:27:17 +02:00
Éloi Rivard
b4c6812adc Changelog 2022-08-01 09:58:12 +02:00
Éloi Rivard
82c8ee3b7a Bumped to 0.0.10 2022-07-07 17:02:16 +02:00
Éloi Rivard
db0fd2d8ba Fixed end-session when user are already disconnected 2022-07-07 16:28:28 +02:00
Éloi Rivard
21a2c306ac Client only return the asked scopes 2022-07-07 16:11:25 +02:00
Éloi Rivard
466d7c6410 Changelog date 2022-06-05 18:30:29 +02:00
Éloi Rivard
95ec09fe54 Implemented RP-initiated logout 2022-06-02 17:56:10 +02:00
Éloi Rivard
b378d27b23 Updated changelog 2022-06-02 17:53:58 +02:00
Éloi Rivard
a1c4f7a278 Bumped to authlib 1 2022-04-10 17:04:38 +02:00
Éloi Rivard
8217d423ad Added an option to disable self edition 2022-04-06 17:54:39 +02:00
Éloi Rivard
f496617f81 Fixed documentation about HIDE_INVALID_LOGINS 2022-04-06 17:34:30 +02:00