Иван
79c5b8fac2
fix: security html module removes allow attribute from iframes ( #2354 )
* fix: secure html module removes allowfullscreen, allow and frameborder attributes from iframes
* Apply suggestions from code review
fix: remove deprecated attributes for iframe in secure html module
Co-authored-by: Nicolas Giard <github@ngpixel.com>
4 years ago
Riccardo Re
660b78d9e2
fix: support permissions by tags for basic db search engine ( #2416 )
This code will allow the "search" component to correctly filter pages by usergroup permissions based on tags instead of paths
Co-authored-by: Riccardo Re <riccardo.re@clevermind.cloud>
4 years ago
NGPixel
1404d6343e
fix: API key incorrectly forces token revalidation
4 years ago
NGPixel
8f6cba262f
fix: draw.io svgs are no longer removed with linebreaks ( #2415 )
4 years ago
NGPixel
02c3c66084
fix: checkExclusiveAccess incorrectly includes root admin
4 years ago
NGPixel
7c0d6e2883
fix: prevent write:groups from self-promoting
4 years ago
NGPixel
f988c5f811
fix: logout URL endpoint option for oauth2 module
4 years ago
NGPixel
9009816290
fix: 2fa qr code - handle special chars in site title
4 years ago
NGPixel
aa96e97028
fix: force lowercase for email on local auth
4 years ago
NGPixel
5295e413be
fix: bypass page rule check for global permission check + handle missing page extra field
4 years ago
Rus
68d31af7af
fix: discord auth module new URL. ( #2390 )
Change "discordapp.com" to "discord.com"
4 years ago
NGPixel
78417524b3
feat: ldap avatar support
4 years ago
NGPixel
794ecc6ef6
fix: new install local auth not enabled ( #2375 )
4 years ago
NGPixel
9f1ba0a32f
fix: elastic apm rum client script
4 years ago
NGPixel
af054257bd
fix: 2.5.108 migration (2)
4 years ago
NGPixel
0ce63c8ef7
fix: 2.5.108 migration
4 years ago
NGPixel
60f2a2a8d9
fix: migration error for new installs
4 years ago
NGPixel
ef739de970
feat: purge history utility
4 years ago
NGPixel
8490fc1267
feat: handle disabled auth strategies
4 years ago
NGPixel
17f8071abe
fix: LDAP missing reqToCallback
4 years ago
NGPixel
062a0b7979
feat: logout by auth strategy + keycloak implementation
4 years ago
jaljo
cda1f1e805
feat: export creation date in dumped content ( #2345 )
* Export creation date in dumped content
* date_creation -> dateCreated
Co-authored-by: Joris Langlois <joris.langlois@knplabs.com>
4 years ago
NGPixel
ae733392f3
feat: password reset
4 years ago
NGPixel
4dcf664040
fix: handle removed auth strategies
4 years ago
NGPixel
e319355017
feat: enable/disable TFA per user
4 years ago
NGPixel
32d67adee1
feat: social login providers with dynamic instances
4 years ago
moonkey124
a7ddafd4aa
fix: incorrect error name for 1017 ( #2331 )
Fixed a copy and paste mistake
***NO_CI***
4 years ago
NGPixel
8c205b6950
fix: site title check + UI fixes + 2FA setup on account verify
4 years ago
NGPixel
f72530bf84
refactor: deps update + 2FA setup + verify
4 years ago
Dan Nicholson
d5d368cd33
feat: fix + enable OIDC auth method ( #2282 )
* fix: pass userinfo URL in oidc strategy
The userinfo URL from the definition was not being provided to the
passport strategy, which resulted in a type error trying to resolve the
user's profile. Furthermore, the name of the defined URL was
inconsistent with all other authentication method URLs.
* fix: pass all necessary scopes to oidc auth method
When no scopes are provided, passport-openidconnect uses only `openid`,
which does not contain the username or email address. Include `profile`
and `email` to ensure the necessary claims are included.
* fix: update oidc method to call processProfile correctly
Now the profile object and providerKey are passed to processProfile. The
usernameClaim no longer has any use as the email address is the
username.
* fix: mark oidc authentication method as available
4 years ago
Marks Polakovs
95b6a7ad82
fix: resolve tags on pages in GraphQL ( #2247 )
4 years ago
Seyed Sajad Kahani
15bca54bdf
fix: change language in edit, history and source pages ( #2194 )
* change language in edit, history and source pages
* fix: remove unnecessary i18n locale switch for download page
Co-authored-by: Nicolas Giard <github@ngpixel.com>
4 years ago
Higor Tavares
06c372d53f
fix: foreign key constraint when page have comments ( #2199 )
* Solving foreing key contraint when page have comments
* Update pages.js
remove indentation changes
Co-authored-by: Higor Tavares <paulo.freire@dellead.com>
4 years ago
NGPixel
26af63a80b
fix: login input hints
4 years ago
NGPixel
4cd6fe8a56
fix: unauthorized admin should receive 403 code
4 years ago
NGPixel
4f16dd0c81
fix: admin permissions + restrict nav settings
4 years ago
NGPixel
10f17c5712
feat: redirect on login based on group
4 years ago
NGPixel
be499e5795
fix: auth strategy dependent username label
4 years ago
NGPixel
52d0af19b4
feat: diagram rendering + post-processor (wip)
4 years ago
Regev Brody
b2ff064d34
fix: stream assets from storage local locations ( #2087 )
4 years ago
NGPixel
57f5cbd5b6
misc: knex update for mssql constraint bug
4 years ago
NGPixel
1ced9649c7
feat: enforce 2fa admin setting + hide local on login screen
4 years ago
NGPixel
b2f292cc39
fix: MSSQL migration 2.5.1
4 years ago
NGPixel
31661b2cb3
fix: token renewal date
4 years ago
NGPixel
b475795595
feat: login bg + bypass + hide local option
4 years ago
NGPixel
5282a82afe
fix: wait for sideload locales before server start ( #1248 )
4 years ago
Nicolas Giard
c009cc1392
feat: new login experience ( #2139 )
* feat: multiple auth instances
* fix: auth setup + strategy initialization
* feat: admin auth - add strategy
* feat: redirect on login - group setting
* feat: oauth2 generic - props definitions
* feat: new login UI (wip)
* feat: new login UI (wip)
* feat: admin security login settings
* feat: tabset editor indicators + print view improvements
* fix: code styling
4 years ago
Regev Brody
1c4829f70f
fix: tags filtered by access ( #2100 )
4 years ago
Regev Brody
41327dd1e8
feat: support MultiMarkdown tables ( #2126 )
4 years ago
TakeruDMC
cf3a48a6fa
fix: "undefined" error on deletePage by git storage ( #2132 )
4 years ago