5453 Commits

All Branches

Search

Author	SHA1	Message	Date
Benjamin Dauvergne	09d8a676f9	api: do not clobber HTTP verb methods in viewsets (#50919)	2021-02-08 16:12:07 +01:00
Benjamin Dauvergne	7514632fe6	auth_oidc: enforce SameSite=Lax on the state cookie (#48347) ... SameSite=Lax is needed for the cookie to be sent by the browser during redirection chain from the provider. We could just depend on the fact that cookie without SameSite are Lax by default, but it's better to be explicit.	2021-02-08 16:00:04 +01:00
Benjamin Dauvergne	2eeb1c6067	ldap: removed unused setting group_dn_template (#50922)	2021-02-08 15:59:19 +01:00
Benjamin Dauvergne	8e0f0b69b0	ldap: add group_basedn to _DEFAULTS (#50922)	2021-02-08 15:59:19 +01:00
Benjamin Dauvergne	69254370cb	ldap: transition to lowercase dn from case mixed in sessions (#50908)	2021-02-05 18:48:42 +01:00
Benjamin Dauvergne	19a8dfc2bd	ldap: ignore case of group distinguished names (#50908)	2021-02-05 18:48:42 +01:00
Benjamin Dauvergne	2a5f5c3ef3	debian: fix typo in debian/control	2021-02-05 17:54:52 +01:00
Benjamin Dauvergne	71b3ca06c2	auth_saml: report user creation errors (#50834)	2021-02-04 11:52:00 +01:00
Benjamin Dauvergne	e5f368bec9	misc: control similarity threshold for fts (#50781)	2021-02-04 11:44:05 +01:00
Benjamin Dauvergne	1c8c8117ff	auth_saml: log mapping errors during user creation (#48784)	2021-02-03 20:39:39 +01:00
Frédéric Péters	ab6ee43978	settings: mark laposte.net as well-known domain, not laposte.fr (#50765)	2021-02-02 14:51:32 +01:00
Benjamin Dauvergne	e45f693512	custom_user: search email by subtring or trigram in FTS search (#50732)	2021-02-02 10:47:09 +01:00
Benjamin Renard	62654a29a7	ldap: make user_attributes.from_ldap case insensitive (#50528)	2021-02-01 11:04:33 +01:00
Frédéric Péters	ade4c6399f	registration: restore paragraph/bold style in completion message (#50700)	2021-01-30 16:42:08 +01:00
Benjamin Dauvergne	8e191dcc22	misc: add migration to fix absence of immutable_unaccent() (#50462)	2021-01-28 22:40:53 +01:00
Benjamin Dauvergne	51becec7cf	api_views: order users as free_text_search() when `q` is used (#50536)	2021-01-27 11:40:37 +01:00
Benjamin Dauvergne	4c029ae062	api_views: order users as in the model (#49899)	2021-01-27 11:40:37 +01:00
Benjamin Dauvergne	9cec4cfef9	manager: remove default ordering for user's table (#50534)	2021-01-27 11:40:37 +01:00
Benjamin Dauvergne	95e35f371f	manager: order link column by last_name first (#50535)	2021-01-27 11:40:37 +01:00
Frédéric Péters	ab7d3db5ef	manager: load jquery first (#49872)	2021-01-27 08:18:42 +01:00
Benjamin Dauvergne	1ff8790da0	settings: decrease A2_DUPLICATES_THRESHOLD to 0.2 (#50445) ... The original limit of 0.7 is kept for the find-duplicates web-service API.	2021-01-25 12:04:33 +01:00
Paul Marillonnet	e306d5afbf	add missing string in previous translation update	2021-01-23 10:46:25 +01:00
Paul Marillonnet	04224c478a	translation update	2021-01-22 12:19:54 +01:00
Benjamin Dauvergne	961403a666	use honeypot field to detect robots on registration form (#50108)	2021-01-22 11:10:03 +01:00
Benjamin Dauvergne	ab66385315	custom_user: specialize free_text_search for common search terms (#49957)	2021-01-19 15:21:07 +01:00
Benjamin Dauvergne	f4908a01f4	tests: use pytest style (#49957)	2021-01-19 15:21:07 +01:00
Benjamin Dauvergne	c98b0f2347	authentic2: add full text search to AttributeValue (#49957)	2021-01-19 15:21:07 +01:00
Benjamin Dauvergne	3cb60a412f	custom_user: index User.username and User.email (#49957)	2021-01-19 15:21:07 +01:00
Valentin Deniaud	511d1d222e	api_views: prevent crash with statistics and old DRF (#49447)	2021-01-19 14:39:23 +01:00
Serghei Mihai	230cec28eb	idp_oidc: fix MissingParameter initialization (#50217)	2021-01-18 10:59:48 +01:00
Frédéric Péters	78dff608b8	manager: do not wrap journal timestamps (#50055)	2021-01-12 14:33:28 +01:00
Valentin Deniaud	09c68bddc3	manager: check permissions before showing add user button (#49893)	2021-01-12 14:10:49 +01:00
Benjamin Dauvergne	081a4e5798	utils: fix subscript checking for python 3.9 (#49608)	2021-01-08 12:01:28 +01:00
Benjamin Dauvergne	ae5a9c0b3d	translation update	2021-01-04 12:13:12 +01:00
Valentin Deniaud	1d09697079	manager: do without disabled add user button on users page (#45338)	2021-01-04 11:44:31 +01:00
Frédéric Péters	a6eb71ac63	build: update to use origin/main	2020-12-26 15:21:15 +01:00
Benjamin Dauvergne	f904f03a57	do not store username in password reset tokens (#49131)	2020-12-18 14:50:14 +01:00
Frédéric Péters	71183a9730	misc: add autocompletion support for separated number and street fields (#48918)	2020-12-18 12:04:31 +01:00
Frédéric Péters	69b9e72ad8	tests: adapt test_massive_role_parenting to change in Operation (#49592)	2020-12-18 12:04:31 +01:00
Benjamin Dauvergne	9eb5264024	restore password reset only for active users (#49131) ... Bug introduced in commit from #48264	2020-12-18 07:45:55 +01:00
Benjamin Renard	1f2ea15580	Add A2_RESET_PASSWORD_ID_LABEL parameter (#49131)	2020-12-18 07:45:55 +01:00
Benjamin Renard	fd248ebb89	Allow users to provide their email or username for password reset process (#49131)	2020-12-18 07:45:55 +01:00
Benjamin Dauvergne	02f00a2046	translation update	2020-12-15 15:26:43 +01:00
Valentin Deniaud	d098a6fcf4	api_views: allow dates in statistics datetime filters (#49485)	2020-12-15 14:20:00 +01:00
Benjamin Dauvergne	12fd246aeb	django_rbac: replace Operation.name by a registry (#49142) ... There is no need to store the operation label in the database.	2020-12-15 12:13:07 +01:00
Valentin Deniaud	32de734b5a	csv_import: use absolute URL for password reset (#49479)	2020-12-15 11:30:26 +01:00
Benjamin Dauvergne	ea62c3f8ca	tests: update test_check_and_repair_managers_of_roles (#48372)	2020-12-15 11:08:02 +01:00
Benjamin Dauvergne	95b4528228	misc: remove update_roles_admins post_migrate (#48372)	2020-12-15 11:08:02 +01:00
Benjamin Dauvergne	bdb80f27e8	misc: add checks and repairs on admin roles permissions and ou (#48372)	2020-12-15 11:08:02 +01:00
Benjamin Dauvergne	c0c98c2da5	misc: fix check of manager's roles ou (#48372)	2020-12-15 11:08:02 +01:00