YunoHost/SSOwat
1
0
Fork 0
mirror of https://github.com/YunoHost/SSOwat.git synced 2024-09-03 20:06:27 +02:00
Code Issues Projects Releases Packages Wiki Activity

Commit graph

  • d088a5bab5 Translated using Weblate (Indonesian) cjdw 2024-08-04 10:54:58 +0000
  • 81a104c952
         Merge 5c21718800 into 4826e7aa09 YunoHost Bot 2024-08-04 01:48:23 +0200
  • 5c21718800 Translated using Weblate (Indonesian) cjdw 2024-08-01 13:06:50 +0000
  • 829abc82f2 Update changelog for 12.0.1 debian/12.0.1 bookworm Alexandre Aubin 2024-07-26 22:27:29 +0200
  • 4738beba20 Translated using Weblate (Indonesian) cjdw 2024-07-24 16:27:18 +0000
  • 56db72d68b Translated using Weblate (Indonesian) cjdw 2024-07-15 11:49:17 +0000
  • b5b4ad25d7 Translated using Weblate (Polish) Kuba Bazan 2024-06-24 20:51:30 +0000
  • ad3f4d820a
         Merge 0b7ab4698b into 4826e7aa09 Salamandar 2024-06-07 22:05:44 +0200
  • 4826e7aa09 Fix changelog upper/lowercase for 11.2.1.1 dev debian/11.2.1.1 Alexandre Aubin 2024-05-20 00:43:30 +0200
  • 542a87f780 Update 11.2.1 debian/11.2.1 OniriCorpe 2024-05-20 00:27:57 +0200
  • 9c8482f2f2 chores: add make_changelog script OniriCorpe 2024-05-20 00:23:39 +0200
  • 9f0ca46717
         Merge pull request #227 from yunohost-bot/weblate-yunohost-ssowat OniriCorpe 2024-05-08 01:31:29 +0200
  • 25eb766389 Translated using Weblate (French) OniriCorpe 2024-05-07 23:10:50 +0000
  • 7a4d99b077
         Merge pull request #229 from YunoHost/add-the-possibility-to-change-the-logging-level Alexandre Aubin 2024-03-29 18:49:13 +0100
  • e31509252c
         add the possibility to change the logging level Kay0u 2024-03-29 17:01:06 +0100
  • 8ff76e1441
         Merge pull request #228 from orhtej2/patch-1 Alexandre Aubin 2024-03-26 18:35:18 +0100
  • b5a5478055
         Explicitly set logging level to DEBUG Mateusz 2024-03-26 01:09:01 +0100
  • 0b333c5829 Translated using Weblate (German) Gregor 2024-03-23 22:42:52 +0000
  • e990ac5bc7
         Merge pull request #226 from yunohost-bot/weblate-yunohost-ssowat OniriCorpe 2024-03-23 20:17:55 +0100
  • c8e17aad2e Translated using Weblate (Catalan) xaloc33 2024-03-23 11:28:47 +0000
  • 1276a2160f Translated using Weblate (Swedish) Bram 2024-03-23 05:00:57 +0000
  • bffb2ce730
         Merge pull request #225 from yunohost-bot/weblate-yunohost-ssowat Alexandre Aubin 2024-03-20 18:44:03 +0100
  • 1058bca3ed Translated using Weblate (French) OniriCorpe 2024-03-09 02:55:12 +0000
  • dad24738e2 Translated using Weblate (French) OniriCorpe 2024-03-07 03:46:52 +0000
  • accdb66e43
         Merge pull request #224 from yunohost-bot/weblate-yunohost-ssowat Alexandre Aubin 2024-02-02 22:00:15 +0100
  • ff3e9054be Translated using Weblate (Spanish) Carlos Solís 2024-01-31 15:39:48 +0000
  • a44988a120 Epic bug because some vars not initialized as nil Alexandre Aubin 2024-01-31 01:30:11 +0100
  • c7a6ee12df
         Merge 5ed18f7b84 into 38a6f23f38 Alexandre Aubin 2024-01-31 01:23:10 +0100
  • 5ed18f7b84 Condition typo ~.~ Alexandre Aubin 2024-01-31 00:15:46 +0100
  • 55d893a80f Remove tmp comment Alexandre Aubin 2024-01-30 21:11:03 +0100
  • b2fe0da547 Clarify code 400 return in edge case where there's no default portal redirection Alexandre Aubin 2024-01-30 21:10:17 +0100
  • e877b2ee85 Make some variables explicitly local Alexandre Aubin 2024-01-30 20:55:16 +0100
  • f6090f86d6 Have 'cookie_secret' as capslocked to make it ~obvious it's a global/constant Alexandre Aubin 2024-01-30 20:52:23 +0100
  • 46d3b2420b zzzzz Alexandre Aubin 2024-01-30 20:24:08 +0100
  • 447fc0d587 auth header: unfortunately some apps such as nextcloud do need the password to be sent, so let's add more semantic to enable password only for some apps.. Alexandre Aubin 2024-01-30 19:40:28 +0100
  • 27f7faaf62 Replace the old perm_user_remote_user_var_in_nginx_conf with protect_against_basic_auth_spoofing such that every perm is protected against auth spoofing by default Alexandre Aubin 2024-01-30 19:35:47 +0100
  • d0683f01c4 Typo Alexandre Aubin 2024-01-30 19:05:56 +0100
  • 0566f31c4b Auth header : apparently doesn't work as expect if password is emtpy, so let's add a dummy char Alexandre Aubin 2024-01-30 17:44:26 +0100
  • 96725a1742 Added translation using Weblate (Korean) Weblate 2024-01-25 13:39:28 +0100
  • e9a335eaf7 Simplify/optimize url/acl matching algorithm : drop support for legacy lua regexes, only use regexes for actual regexes, otherwise use a simple 'startswith' check Alexandre Aubin 2023-12-23 20:39:07 +0100
  • 493ba581bb Remove the part that injects the password inside the Authorization header ... in the vast majority of cases, only the username should be necessary and trusted by the app Alexandre Aubin 2023-12-23 20:08:35 +0100
  • 72968e7486 Translated using Weblate (German) Christian Wehrli 2023-12-10 16:06:44 +0000
  • e4278b7d3a Add a way to return 401 instead of redirecting to the SSO login page Félix Piédallu 2023-12-08 10:33:53 +0100
  • f81ae9d5c5 Add a query string 'msg=access_denied' when denying access to a logged-in user, such that we may display it nicely on the frontend? Alexandre Aubin 2023-11-28 19:59:13 +0100
  • 3336464481 auth: also confirm that the cookie was delivered for this domain (or parent) Alexandre Aubin 2023-11-28 19:57:57 +0100
  • 6263195756 ew, /tabz/ Alexandre Aubin 2023-11-28 19:26:03 +0100
  • d6d775f0dc Uuuuh how was it even supposed to work eh Alexandre Aubin 2023-11-28 19:13:59 +0100
  • 31a325dc8c Typoz Alexandre Aubin 2023-11-28 18:13:12 +0100
  • 6223239e94 implement proper expiration/prolong mechanism for cookies Alexandre Aubin 2023-11-28 18:04:29 +0100
  • b0b128f53d Remove unused 'redirected_regex' mechanism, + we don't need the label and show_tile property on acls Alexandre Aubin 2023-10-07 17:38:52 +0200
  • 8d2acdd174 Fix the boring case where the cookie secret doesnt exist yet Alexandre Aubin 2023-10-03 20:30:59 +0200
  • a3d54635e0 Prevent epic crash when domain_portal_urls or permissions are not defined in the conf Alexandre Aubin 2023-10-03 19:58:55 +0200
  • 769f5f9cfa access.lua: add special 'default' key in 'domain_portal_urls' to handle case where we reach an unmanaged domain Alexandre Aubin 2023-09-29 14:31:30 +0200
  • cac360bee9 access.lua: move helper at the top with the other sugar stuff Alexandre Aubin 2023-09-29 14:30:36 +0200
  • 99749decdc access.lua: rework again ACL check because the previous code sometimes ended up with error 500 because of permission = nil Alexandre Aubin 2023-09-29 14:30:14 +0200
  • 12466db0d7 debian: we need lua-cjson, dependency for the jwt thing Alexandre Aubin 2023-09-29 14:28:26 +0200
  • aa7f607750 debian: we need lua-filesystem dependency Alexandre Aubin 2023-09-28 19:31:13 +0200
  • a2dc0bfb08 cleanup: remove dummy portal example Alexandre Aubin 2023-09-27 20:35:57 +0200
  • a130dec731 debian: propagate changes to install declarations Alexandre Aubin 2023-09-27 20:35:35 +0200
  • 53700e72e9 Merge remote-tracking branch 'origin/dev' into bookworm Alexandre Aubin 2023-09-27 20:34:04 +0200
  • e6ffae75bd
         Merge pull request #217 from YunoHost/portal-api Alexandre Aubin 2023-09-27 18:50:21 +0200
  • e04e601455 Merge remote-tracking branch 'origin/bookworm' into portal-api Alexandre Aubin 2023-09-27 18:49:28 +0200
  • ea9e084688
         Merge pull request #220 from selfhoster1312/lua-optimizations Alexandre Aubin 2023-09-27 18:43:26 +0200
  • 46352e6a7f
         fix cached_jwt_verify signature Alexandre Aubin 2023-09-27 18:43:13 +0200
  • 809a2a93b6
         Merge pull request #221 from orhtej2/pcre2 Alexandre Aubin 2023-09-08 19:59:28 +0200
  • 2880d1cfb9 Fix helper for bookworm. orhtej2 2023-09-08 19:57:36 +0200
  • 5eff85928e Cache JWT crypto work, only check auth on non-public routes selfhoster1312 2023-09-02 17:36:18 +0000
  • 38a6f23f38
         Merge pull request #219 from yunohost-bot/weblate-yunohost-ssowat Alexandre Aubin 2023-08-31 17:29:31 +0200
  • 79d0e7b497 Translated using Weblate (Kabyle) ButterflyOfFire 2023-08-27 21:33:53 +0000
  • c56db445a0
         [enh] User doc ljf (zamentur) 2023-08-23 11:29:17 +0200
  • d1d17d3370 Reintroduce the remote-user header on this branch selfhoster1312 2023-08-14 22:14:54 +0200
  • 5da36abb74
         Merge pull request #215 from selfhoster1312/epic_refactoring Alexandre Aubin 2023-08-13 18:55:02 +0200
  • 5fcfd9ede6 Do not 500 when a requested domain is not configured for SSOWat selfhoster1312 2023-08-13 18:17:52 +0200
  • 1b44ec4898 Merge branch 'dev' into bookworm Tagada 2023-07-20 15:55:18 +0200
  • 1ac6388242 Misc fixes after tests on the battlefield Alexandre Aubin 2023-07-18 01:26:56 +0200
  • c68f90b83e Update changelog for 11.2 debian/11.2 Alexandre Aubin 2023-07-17 16:34:57 +0200
  • 85591a5744
         Merge pull request #214 from yunohost-bot/weblate-yunohost-ssowat Alexandre Aubin 2023-07-17 15:48:29 +0200
  • 6044595ca1 Merge remote-tracking branch 'origin/dev' into epic_refactoring Alexandre Aubin 2023-07-16 00:49:43 +0200
  • 24b7630d3c epic refactoring: refactor the 'portal url' logic, we shall now have a dict mapping domains to portal urls (which is anyway imposed by cookie management unless we reintroduce complex cross-domain authentication...) Alexandre Aubin 2023-07-15 21:27:40 +0200
  • 93ee6371ae refactoring: drop the complex redirection check which was meant to check the callback URLs ... this is to be handled in the future new portal (or whatever is going to implement the callback redirection logic) Alexandre Aubin 2023-07-15 21:22:27 +0200
  • 02952d0202 Moar epic refactoring ... merge 'helpers.lua' inside 'access.lua' to reduce complexity ... Alexandre Aubin 2023-07-15 19:51:31 +0200
  • df094ea0e3 Cleanup unused stuff Alexandre Aubin 2023-07-13 16:41:17 +0200
  • 429db4e2d5 Translated using Weblate (Japanese) motcha 2023-07-11 14:31:20 +0000
  • ea0bc8a89c portalapi: propagate changes on the new API, decrypt the AES256-encrypted password found in user cookie to be able to construct the basic auth headers Alexandre Aubin 2023-07-11 22:41:09 +0200
  • 40389a9aff
         Merge pull request #213 from yunohost-bot/weblate-yunohost-ssowat Alexandre Aubin 2023-07-11 16:34:00 +0200
  • 936ae051fc Translated using Weblate (Japanese) motcha 2023-07-09 05:45:51 +0000
  • 2e2c37700b Added translation using Weblate (Japanese) Weblate 2023-07-09 04:32:44 +0200
  • 5d207184fd debian: we need lua-ldap >=1.3.1, version 1.3.0 is buggy Alexandre Aubin 2023-06-13 14:33:33 +0200
  • c0e38b19a0 rex_pcre is now rex_pcre2 Alexandre Aubin 2023-05-15 17:22:50 +0200
  • 8554e696f3
         Merge pull request #211 from yunohost-bot/weblate-yunohost-ssowat Alexandre Aubin 2023-05-08 15:47:31 +0200
  • 09914c6c4d Translated using Weblate (Indonesian) Neko Nekowazarashi 2023-05-04 11:32:43 +0000
  • 5dd7c7269f Update changelog for 12.0.0 Alexandre Aubin 2023-05-04 20:32:20 +0200
  • d8965d5b7b bookworm/debian: lua-rex-pcre is now lua-rex-pcre2 ? Alexandre Aubin 2023-05-04 20:03:05 +0200
  • 548bdbd684 Translated using Weblate (Indonesian) Neko Nekowazarashi 2023-04-25 08:15:12 +0000
  • 86a4c8a3f3 Translated using Weblate (German) Christian Wehrli 2023-03-10 17:59:11 +0000
  • 0b7ab4698b Add a new setting to redirect unknown URLs to either the SSO portal or a 404 page Félix Piédallu 2023-03-10 13:34:59 +0100
  • f0829a93ab Translated using Weblate (Indonesian) Neko Nekowazarashi 2023-02-27 16:51:47 +0000
  • 5828a627ec Translated using Weblate (Indonesian) Neko Nekowazarashi 2023-02-22 15:18:52 +0000
  • bedcc33fb8 Translated using Weblate (Chinese (Simplified)) Poesty Li 2023-02-06 17:38:45 +0000
  • fa8be3795e Update changelog for 11.1.4 debian/11.1.4 Alexandre Aubin 2023-02-01 20:28:33 +0100