YunoHost/yunohost
1
0
Fork 0
mirror of https://github.com/YunoHost/yunohost.git synced 2024-09-03 20:06:10 +02:00
Code Issues Projects Releases Packages Wiki Activity
9992 commits 33 branches 409 tags 24 MiB
Commit graph

44 commits

Author SHA1 Message Date
Alexandre Aubin
5975dd4310 Merge remote-tracking branch 'origin/dev' into bookworm 2024-01-14 16:25:02 +01:00
Alexandre Aubin
a44ea14141 Update copyright headers to 2024 using maintenance/update_copyright_headers.sh 2024-01-13 19:26:47 +01:00
Alexandre Aubin
570a22a31c Make linters happy 2023-12-27 04:28:08 +01:00
Alexandre Aubin
7f02fcd985 portalapi/sso: add a first bunch of unit tests 2023-12-27 02:41:24 +01:00
Alexandre Aubin
2be1dccb91 mypy doesn't like the function attribute trick 2023-12-22 00:34:15 +01:00
Alexandre Aubin
6022be5ff1 Prevent unecessary import resulting in catastrophies + lazy-load the session secrets 2023-12-22 00:25:08 +01:00
Alexandre Aubin
38b3cfddd8 quality: make linter gods happy 2023-12-22 00:00:49 +01:00
Alexandre Aubin
c19e2b7b19 auth/portal/acl: allow admins to log on any main domain 2023-12-21 23:52:04 +01:00
Alexandre Aubin
746433c5d1 Whoopsies 2023-12-21 19:48:57 +01:00
Alexandre Aubin
d0f1d9201c auth/portal/acl : add 'user is allowed for domain X' mechanism, such that users can't log in or add mail aliases for a domain they aint allowed to access. The fact that they are able to access a domain is derived from the fact that they have access to at least one app on that domain (actually .. we may want to bypass this check for admins, otherwise this is gonna be hella confusing for fresh intalls). 2023-12-21 18:36:15 +01:00
Alexandre Aubin
9a45a6ccf2 auth/quality: replace os.path stuff with Path from pathlib 2023-12-21 17:18:06 +01:00
Alexandre Aubin
c57a7a4cf0 Zrgrml 2023-12-19 20:08:41 +01:00
Alexandre Aubin
3922ba9c68 Implement similar cookie mechanism for admin api (compared to portal) with static secret (cookies aint invalidated by api restart) and rolling session validity 2023-12-19 20:01:40 +01:00
axolotle
3f320a2358 portal:auth: samesite=None in dev mode 2023-11-30 14:04:13 +01:00
axolotle
246c513796 portal:auth: remove touch in delete_session_cookie 2023-11-29 14:32:11 +01:00
Alexandre Aubin
9a4b0e422d quality: unused import, missing import 2023-11-28 20:19:06 +01:00
Alexandre Aubin
356c081a4f portalapi: implement a proper expiration/prolong mechanism for session cookies 2023-11-28 18:40:49 +01:00
axolotle
4a270b88b6 quality: fix lint + some formatting 2023-11-26 17:42:48 +01:00
axolotle
d65cca5ab1 portal: fix decode error 2023-10-17 14:15:59 +02:00
axolotle
0645d18e67 add host as session cookie info 2023-09-04 16:19:07 +02:00
selfhoster1312
101b5704c4 Serialize the JWT token to a cookie string instead of failing 2023-08-15 12:23:56 +02:00
selfhoster1312
6f8b3fd57f Handle both cookies in the same way (please let me logout) 2023-08-13 23:11:31 +02:00
Alexandre Aubin
704e42a6af portalapi: fix cookie not being deleted because maxage=-1 or something 2023-07-29 19:13:00 +02:00
Alexandre Aubin
ec96558c81 portalapi: add FIXMEs about auth layer 2023-07-15 20:07:18 +02:00
Alexandre Aubin
6c6dd318fb portalapi: implement encrypted password storage in the user's cookie using AES256 2023-07-11 22:39:22 +02:00
Alexandre Aubin
9a5080ea16 portalapi: fix split or user/password in auth code 2023-07-11 17:49:25 +02:00
Alexandre Aubin
a1cf770e1b Merge branch 'dev' into portal-api 2023-07-11 17:11:02 +02:00
Alexandre Aubin
ba4f192557 maintenance: new year, update copyright header 2023-02-02 23:51:14 +01:00
yunohost-bot
b943c69c8b [CI] Format code with Black 2023-02-01 17:10:08 +00:00
yunohost-bot
7c05df05b7 [CI] Format code with Black 2022-10-24 16:59:10 +00:00
Alexandre Aubin
bd7081baf2 maintenance: cleanup .py file headers + automate boring copyright headers... 2022-10-09 18:38:34 +02:00
Alexandre Aubin
ae73e94c3e Friskies pl0x? 2022-10-04 02:00:40 +02:00
Alexandre Aubin
fc14f64821 admins: moar friskies? 2022-09-06 00:35:10 +02:00
Alexandre Aubin
8af721993b
Merge branch 'bullseye' into admins 2022-01-11 16:12:23 +01:00
Alexandre Aubin
6cae524910 Drop the 'admin' user, have 'admins' be a group of Yunohost users instead 2022-01-11 14:53:04 +01:00
Alexandre Aubin
af1937c596
Typo 2022-01-11 12:57:53 +01:00
Alexandre Aubin
45baaead36 Fix typo + unused import 2021-12-26 18:22:33 +01:00
Alexandre Aubin
62808152ee Cookie handling for the new portal API 2021-12-26 16:52:48 +01:00
Alexandre Aubin
1efb50c7ab Iterate on new portal API design: nginx config, cookie format, be able to open a non-root ldap session, 2021-12-25 15:44:14 +01:00
Alexandre Aubin
c01042b51d Merge remote-tracking branch 'origin/moar_session_management_changes' into portal-api 2021-12-25 15:42:02 +01:00
Alexandre Aubin
6aaf47493d Not sure when that started to happen, but bottle will return an empty dict if no valid session cookie found, this shall trigger an exception 2021-12-23 16:55:12 +01:00
Alexandre Aubin
f49f03d11e api: Move cookie session management logic to the authenticator for more flexibility 2021-12-22 19:07:19 +01:00
Alexandre Aubin
2845914d44 WIP: foundation for a new portal API to partially replace SSOwat 2021-12-04 03:27:23 +01:00
Alexandre Aubin
5de9e4fe6a Yolorework the repo dir structure 2021-11-10 17:56:02 +01:00