globuzma/canaille-globuzma
1
0
Fork 0
forked from Github-Mirrors/canaille
Code Pull requests Activity
2026 commits 5 branches 57 tags 18 MiB
Commit graph

2026 commits

This branch
This branch
All branches
Author SHA1 Message Date
sebastien
88986147d3 updates pybabel translations 2024-11-12 09:19:38 +01:00
sebastien
c13b590cd9 final tests for password compromise investigation failure 2024-11-12 09:18:55 +01:00
sebastien
8284a41234 refacto for tests 2024-11-12 09:17:22 +01:00
sebastien
8104bbf03e adds new condition to help with tests and inform correctly the user with sending mail to admins if compromise password check failed 2024-11-08 15:19:11 +01:00
sebastien
834eaaa2c4 refacto test 2024-11-08 15:16:38 +01:00
sebastien
d951c2e18d new tests on failure of api request with htmx and without SMTP 2024-11-08 15:15:12 +01:00
sebastien
f173a66793 adds new tests for compromised_password_check_failure situation. 2024-11-07 15:51:21 +01:00
sebastien
9844818280 Merge branch '179-check-passwords-on-compromised-password-databases' of gitlab.com:yaal/canaille into 179-check-passwords-on-compromised-password-databases 2024-11-07 10:34:12 +01:00
sebastien
e6a9f2dcc6 Merge branch 'main' of gitlab.com:yaal/canaille into 179-check-passwords-on-compromised-password-databases 2024-11-07 09:15:29 +01:00
Éloi Rivard
52060266a2
chore: run Gitlab CI coverage step with python 3.12 until zxcvbn supports 3.13 2024-11-06 20:14:52 +01:00
Éloi Rivard
c6c7a8b686
chore: fix uv attributes in GHA 2024-11-06 20:13:16 +01:00
Éloi Rivard
6c4ef023cb
fix: disable zxcvbn for Python 3.13 
https://github.com/fief-dev/zxcvbn-rs-py/issues/2
 2024-11-06 19:23:43 +01:00
Éloi Rivard
a23a9b3ecc
doc: changelog update 2024-11-06 19:20:09 +01:00
Éloi Rivard
4fff9fa5a6 Merge branch 'issue-200-uv' into 'main' 
Migrate from poetry to uv

Closes #200

See merge request yaal/canaille!187
 2024-11-06 15:07:06 +00:00
sebastien
289176a086 replaces 'pwned' by 'compromised' 2024-11-06 15:57:51 +01:00
Éloi Rivard
c57244b9fa
fix: zxcvbn compilation in demo 
until https://github.com/fief-dev/zxcvbn-rs-py/issues/2 is fixed, it is
needed to manually force the compatibility with Python 3.13
 2024-11-06 15:21:15 +01:00
Éloi Rivard
6a6350e368
fix: with LDAP backend, edition the admin group would fail 
The `match_filter` method evaluate filters, and queries objects from their ids.
The value was stored in the `filter` arg, but being a dict it was
re-used during the following calls of `match_filter`.
After editing the `admin` group (by adding or removing an user), a new page is displayed, and as always it checks the user permissions.
The user permission check would call `match_filter` then compare an
updated version of the admin group (with one less or one new user) with
an unfortunate *cached* version in the `match_filter` `filter` arg.
With the SQL or the memory backend the comparision would be successful,
but it is not with the LDAP backend.
This resulted in permission loss for users after editing the `admin`
group. Being a method default value edited, it would remain until the
Canaille service was reloaded.

Related to https://stackoverflow.com/questions/1132941/least-astonishment-and-the-mutable-default-argument
 2024-11-06 15:00:57 +01:00
sebastien
56f0c9b51b hotfix api url following manual failed request tests 2024-11-06 13:51:50 +01:00
sebastien
025da08fd3 adds flash message for user when password compromise investigation failed. 2024-11-06 13:05:32 +01:00
sebastien
fa3a5f6616 gets the emails of each admin to send them the compromised_password_check_failure_mail 2024-11-06 12:56:35 +01:00
Éloi Rivard
fe8e1160ab
refactor: move session related methods in a dedicated file 2024-11-06 09:10:43 +01:00
sebastien
b47c949239 adds tests for check if password is compromised or not 2024-11-05 16:59:03 +01:00
sebastien
9708809714 updates file names, variable names to be clearer. 2024-11-05 16:18:45 +01:00
sebastien
ff871f1340 updates tests with compromised password check with api HIBP 2024-11-05 15:44:25 +01:00
sebastien
ca7f718353 adds mail sending to admin if failure of api HIBP request to check if password is compromised 2024-11-05 15:43:15 +01:00
Éloi Rivard
fb5c1bac15
chore: minimum authlib version is 1.3.0 2024-11-05 08:59:24 +01:00
Éloi Rivard
6503945f7a
chore: set minimum pycountry dependency to 23.12.7 2024-11-04 23:21:00 +01:00
sebastien
093397256b fix url typo 2024-11-04 11:15:32 +01:00
sebastien
0acbb40ecd consumes haveibeenpwned API directly 2024-11-04 08:55:55 +01:00
Éloi Rivard
f70b71db18
chore: dependency upgrade 2024-11-02 17:17:13 +01:00
Éloi Rivard
6a57a37377
tests: fix tox python versions 2024-11-02 16:57:52 +01:00
Éloi Rivard
f56d715543
doc: use uv in the RTD compilation 2024-11-01 22:25:22 +01:00
Éloi Rivard
adafa43ddc
chore: use 'uv-venv-lock-runner' as the default tox-uv runner 2024-11-01 14:18:10 +01:00
sebastien yaal
f4e222a24c
Translated using Weblate (French) 
Currently translated at 100.0% (380 of 380 strings)

Translation: Canaille/Canaille
Translate-URL: https://hosted.weblate.org/projects/canaille/canaille/fr/
 2024-11-01 10:00:27 +01:00
Éloi Rivard
6df18de6e7
fix: quotes around the gitlab yaml variables 2024-10-31 20:08:40 +01:00
Éloi Rivard
45457b3cc9
tests: tox minversions environment use python 3.10 2024-10-31 19:44:41 +01:00
Éloi Rivard
0656811313
chore: set setuptools minimum version to 50.0.0 2024-10-31 19:24:13 +01:00
Éloi Rivard
2a5ca26a59
chore: fix a minimum versions for the development dependencies 2024-10-31 19:05:57 +01:00
Éloi Rivard
3fe501e32e
chore: install cargo in the demo Docker image 
this was missing to allow the zxcvbn dependency to compile
 2024-10-31 18:58:30 +01:00
Éloi Rivard
ce1ea3f6c3
chore: set a minimum version for coverage 2024-10-31 18:55:12 +01:00
Éloi Rivard
2195c686a6
tests: fix zxcvbn compilation with Python 3.13 
temporarily, until this is fixed upstream
https://github.com/fief-dev/zxcvbn-rs-py/issues/2
 2024-10-31 18:40:11 +01:00
Éloi Rivard
885ba0f48c
chore: migrate to uv 2024-10-31 09:49:53 +01:00
gallegonovato
8af6263b2f
Translated using Weblate (Spanish) 
Currently translated at 100.0% (380 of 380 strings)

Translation: Canaille/Canaille
Translate-URL: https://hosted.weblate.org/projects/canaille/canaille/es/
 2024-10-29 23:11:51 +01:00
Hosted Weblate
161293bf53
Update translation files 
Updated by "Update PO files to match POT (msgmerge)" hook in Weblate.

Translation: Canaille/Canaille
Translate-URL: https://hosted.weblate.org/projects/canaille/canaille/
 2024-10-28 22:17:56 +01:00
Éloi Rivard
05cc09ab74 Merge branch 'password-strength' into 'main' 
Password strength

See merge request yaal/canaille!182
 2024-10-28 21:17:47 +00:00
sebastien yaal
a4bd03f71c feat: password strength indicator 2024-10-28 21:17:47 +00:00
Éloi Rivard
6b5e3e1a8e
fix: py310 unit tests 
For some reasons, list["Client"] does not resolve the ForwardRef in
python 3.10 as it does with typing.List["Client"], which in the end
breaks the memory backend model accessors.
 2024-10-28 21:41:55 +01:00
Éloi Rivard
0b51b01031
refactor: apply ruff migrations for python 3.10+ 2024-10-28 09:13:00 +01:00
Éloi Rivard
37adb66e06
chore: lower the minimum sphinx version 2024-10-28 08:55:42 +01:00
Éloi Rivard
ebbeb13542
chore: fix pre-commit version in Gitlab CI 
Until the docformatter hook is fixed
https://github.com/PyCQA/docformatter/issues/293
 2024-10-28 08:51:53 +01:00