canaille-globuzma

Author	SHA1	Message	Date
sebastien	909896077d	refacto password validation by adds chanes in class PasswordResetForm instead of in functions, AND readds validators in registration function because of required caracter of the password fields	2024-12-23 10:42:49 +01:00
sebastien	2f1b44d4d9	creates a new function for all password form verifications	2024-12-23 10:42:49 +01:00
sebastien	1d5c4b9fa9	restores comparison between 'password' and 'confirmation' and validators in reset form	2024-12-23 10:42:49 +01:00
sebastien	4bdd2de8f2	restores comparison between 'password' and 'confirmation' in registration form	2024-12-23 10:42:49 +01:00
Éloi Rivard	a20ba92064	refactor: rename 'themes' module in 'templating'	2024-12-22 15:59:09 +01:00
Éloi Rivard	527869b6dd	refactor: use 'mfa' term instead of '2fa'	2024-12-21 23:02:04 +01:00
sebastien	6f219b54e8	updates with new path for templates	2024-12-19 12:25:38 +01:00
sebastien	0fb3d588b9	adds password expiry policy with a new method on User class	2024-12-19 11:20:26 +01:00
Éloi Rivard	ad875455b8	doc: document templates	2024-12-19 10:08:09 +01:00
Éloi Rivard	fe8929d992	refactor: move templates in a common directory without this, theming was broken because it needs one single directory for templates.	2024-12-19 00:17:03 +01:00
Éloi Rivard	44c5669d97	doc: prefer 'multi-factor' over 'two-factor' term	2024-12-12 12:04:40 +01:00
Félix Rohrlich	e1d70ef8cd	feat : Added sms OTP authentication and multi-factor authentication methods chaining	2024-12-10 11:27:18 +01:00
Félix Rohrlich	6d48ce9043	feat: Added email OTP authentication	2024-12-10 11:27:18 +01:00
Félix Rohrlich	c8e774ab46	refactor: moved reset-mfa cli function and added documentation and test cases for it	2024-12-10 11:27:18 +01:00
Félix Rohrlich	b01e8323d8	feat : Added HOTP authentication and CLI Multi-factor authentication reset	2024-12-10 11:27:18 +01:00
Félix Rohrlich	74e0c8d635	feat : Added time one-time password (TOTP) authentication	2024-12-10 11:27:18 +01:00
Éloi Rivard	6d8799d052	refactor: use the Features class to know if a feature is available instead of simply looking at the configuration	2024-12-05 12:20:30 +01:00
Éloi Rivard	19159c5a80	refactor: use @example.com for email placeholders	2024-11-20 23:42:58 +01:00
sebastien	ae9c1309b9	adds pre-visualization mail buttons when api request on HIBP have failed in canaille/core/templates/mails/admin.html	2024-11-13 16:20:30 +01:00
sebastien	e6a9f2dcc6	Merge branch 'main' of gitlab.com:yaal/canaille into 179-check-passwords-on-compromised-password-databases	2024-11-07 09:15:29 +01:00
Éloi Rivard	fe8e1160ab	refactor: move session related methods in a dedicated file	2024-11-06 09:10:43 +01:00
sebastien	ca7f718353	adds mail sending to admin if failure of api HIBP request to check if password is compromised	2024-11-05 15:43:15 +01:00
sebastien	0acbb40ecd	consumes haveibeenpwned API directly	2024-11-04 08:55:55 +01:00
sebastien yaal	a4bd03f71c	feat: password strength indicator	2024-10-28 21:17:47 +00:00
Éloi Rivard	0b51b01031	refactor: apply ruff migrations for python 3.10+	2024-10-28 09:13:00 +01:00
Félix Rohrlich	603eab0b3c	refactor : added proper security logging level and refactored change email logging	2024-10-21 11:17:55 +02:00
Félix Rohrlich	038e6c094e	feat: Added security logs for email update, forgotten password mail, token emission/refresh/revokation, new consent, consent revokation #177	2024-10-14 14:04:39 +02:00
Félix Rohrlich	545fb2d342	feat: change password events are logged in #177	2024-10-09 15:55:01 +02:00
Éloi Rivard	cfabcc485c	chore: automitaclly fix typos	2024-09-11 09:33:42 +02:00
Éloi Rivard	b46102bb75	fix: crash for passwordless users at login when no SMTP server was configured	2024-05-14 23:15:41 +02:00
Éloi Rivard	3fb5d0149d	fix: SMTP feature can be disabled again	2024-05-14 23:04:32 +02:00
Éloi Rivard	43f9f328a5	refactor: factorize features definition	2024-05-14 22:53:47 +02:00
Éloi Rivard	e44b2bf469	tests: fix CI	2024-05-03 22:35:57 +02:00
Éloi Rivard	16c3021a8f	refactor: Rename BaseBackend in Backend	2024-05-03 22:25:20 +02:00
Éloi Rivard	473a262ea2	refactor: move BackendModel.reload to Backend.reload	2024-05-03 22:25:20 +02:00
Éloi Rivard	2ccdaeadf6	refactor: move BackendModel.delete to Backend.delete	2024-05-03 22:22:08 +02:00
Éloi Rivard	09588e0f48	refactor: move BackendModel.save to Backend.save	2024-05-03 22:22:06 +02:00
Éloi Rivard	44573713ed	refactor: move BackendModel.get to Backend.get	2024-05-03 21:54:03 +02:00
Éloi Rivard	ccde88b1bf	refactor: BackendModel.get() is now Backend.instance	2024-05-03 21:46:28 +02:00
Éloi Rivard	8425b2a3b8	refactor: move BackendModel.query to Backend.query	2024-05-03 21:42:54 +02:00
Éloi Rivard	98b26ee6f3	fix: translatable f-string	2024-05-01 18:39:59 +02:00
Éloi Rivard	69019763d4	feat: group member removal can be achieved from the group edition page	2024-04-28 19:47:57 +02:00
Éloi Rivard	ebcaaeaded	tests: fix GHA For some reasons, webp mimetypes failed to be guessed on GHA.	2024-04-27 14:06:20 +02:00
Éloi Rivard	382dbcaf1a	feat: add 'autocomplete' tag on the password form	2024-04-17 12:36:39 +02:00
Éloi Rivard	f9989a960b	feat: locked users cannot be impersonated	2024-04-12 12:12:08 +02:00
Éloi Rivard	42dc023288	fix: display the menu bar on error pages	2024-04-09 22:06:08 +02:00
Éloi Rivard	920395c27f	feat: sign in/out events are logged in #177	2024-04-09 10:04:26 +02:00
Éloi Rivard	053156ec18	feat: additional messages on password endpoint errors when attempt_login is not found on the session, add a warning to be displayed on the login page after redirection	2024-04-09 09:20:38 +02:00
Éloi Rivard	5aaccca4cf	fix: display an error message when trying to remove the last user from a group	2024-04-08 14:44:15 +02:00
Éloi Rivard	fe2665ae32	fix: LDAP user group removal	2024-04-08 14:15:28 +02:00

1 2

59 commits