llvy.ltd/casdoor
1
0
Fork 0
mirror of https://github.com/casdoor/casdoor.git synced 2025-07-03 04:10:20 +08:00
Code Issues Packages Projects Releases Wiki Activity
2,778 Commits 28 Branches 1,286 Tags
09f98fd24a612df5d738eb5dfac88dd93adeb924
Commit Graph

263 Commits

Author SHA1 Message Date
Товарищ программист
7f3b2500b3 feat: support webauthn (#407) 
* feat: support webauthn

* Update init.go

* Update user_webauthn.go

* Update UserEditPage.js

* Update WebauthnCredentialTable.js

* Update LoginPage.js

Co-authored-by: Gucheng <85475922+nomeguy@users.noreply.github.com>
 2022-07-12 20:06:01 +08:00
Товарищ программист
b4bf734fe8 fix: fix cors filter (#847) 
* fix: fix cors filter

* Update cors_filter.go

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-07-02 13:45:18 +08:00
aecra
919eaf1df4 fix: fix CORS error after sucessful OPTION (#838) 2022-06-30 21:29:02 +08:00
aecra
7c9370ef90 feat: add CORS filter to fix OPTION request failure (#826) 2022-06-26 01:28:33 +08:00
Resulte Lee
2e42511bc4 feat: support configurable captcha(reCaptcha & hCaptcha) (#765) 
* feat: support configurable captcha(layered architecture)

* refactor & add captcha logo

* rename captcha

* Update authz.go

* Update hcaptcha.go

* Update default.go

* Update recaptcha.go

Co-authored-by: Gucheng <85475922+nomeguy@users.noreply.github.com>
 2022-06-18 16:00:31 +08:00
Roobtyan
f7705931f7 fix: handle WeChat username conflicts (#771) 
* handle username conflicts

* Update auth.go

Co-authored-by: roobtyan <roobtyan@qq.com>
Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-05-31 21:51:41 +08:00
Yixiang Zhao
d52caed3a9 feat: add model page (#757) 
* feat: add model page

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* feat: support config model for permission

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* translation and indentation

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-05-24 18:27:47 +08:00
Gucheng Wang
cf3b46130b Add InvoicePayment() API. 2022-04-26 22:17:53 +08:00
Товарищ программист
b0b3eb0805 fix: fix failure of introspection (#682) 
* fix: fix failure of introspection

* Update token.go

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-04-22 22:45:52 +08:00
akkuman
0bc8c2d15f fix: recover when goroutine panic that will kill main program (#692) 
* fix #684

recover when goroutine panic that will kill main program

* Update util.go

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-04-22 21:59:06 +08:00
Yixiang Zhao
67a0264411 feat: add sync button to execute syncer once (#668) 
* feat: add sync button to execute syncer once

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* fix: requested changes

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* fix: requested changes

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-04-18 16:27:34 +08:00
Товарищ программист
7236cca8cf feat: implement CAS 3.0 (#659) 2022-04-11 21:11:31 +08:00
Yi Zhan
15daf5dbfe feat: add casdoor as saml idp support (#571) 
* feat: add casdoor as saml idp support

Signed-off-by: 0x2a <stevesough@gmail.com>

* fix: merge code

Signed-off-by: 0x2a <stevesough@gmail.com>

* fix: modify response value

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: modify samlResponse generation method

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: generating a response using etree

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: change metadata url

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: modify front-end adaptation

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: recovering an incorrect override

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: change the samlResponse location

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: add relayState support

Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-04-08 23:06:48 +08:00
Товарищ программист
3cf1b990be feat: support CAS with organizations and applications (#621) 2022-04-04 00:09:04 +08:00
Ghost Lee
377e200837 fix: repair the problem that AutoSigninFilter middleware doesn't recognize the access_token request parameter (#569) 
AutoSigninFilter method only checks for `accessToken` request parameters or `Authorization` request header, doesn't recognize `access_token` request parameters, now added, use `utils.GetMaxLenStr()` method to get the maximum length characters
 2022-03-15 12:52:44 +08:00
Yang Luo
4dca3bd3f7 Add Notify() to payment provider. 2022-03-14 02:56:04 +08:00
Yang Luo
32af4a766e Add GetUserPayments() API. 2022-03-13 14:56:21 +08:00
Gucheng Wang
37a26e2a91 Fix delete-resource authz check. 2022-03-11 11:27:52 +08:00
Yang Luo
bf5d4eea48 Add alipay provider. 2022-03-06 22:46:02 +08:00
Leon
ab5af979c8 feat: add Oauth 2.0 Token Introspection(rfc7662) endpoint support (#532) 
Signed-off-by: Leon <leondevlifelog@gmail.com>
 2022-03-03 17:48:47 +08:00
Steve0x2a
2a0dcd746f feat: add token logout endpoint (#526) 
Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-03-02 20:37:31 +08:00
Yang Luo
18aa70dfb2 Fix delete-resource authz failure. 2022-03-01 22:37:23 +08:00
Steve0x2a
d48d515c36 fix: Missing extendedUser in signup webhook (#522) 
Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-03-01 18:25:48 +08:00
Yang Luo
39ab71c5db Add product pages. 2022-02-27 20:09:19 +08:00
Steve0x2a
2c97f8a8b7 feat: add two authentication flow types (#512) 
* feat: add two authentication flow types

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: delete implicit method

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: use a more appropriate name

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: apply suggestion

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: remove redundant code

Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-02-27 14:05:07 +08:00
Steve0x2a
cbc8c58e85 fix: oidc jwks endpoint only return default cert (#506) 
Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-02-21 23:17:16 +08:00
Gucheng Wang
db37f53d6c Update license headers. 2022-02-13 23:39:27 +08:00
Steve0x2a
256b433e57 fix: IsTokenExpired function adjustment (#475) 
* fix: IsTokenExpired function adjustment

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: tokenExpired err

Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-02-07 22:20:36 +08:00
Yang Luo
940aa2bc2d Add payment pages. 2022-02-05 20:13:15 +08:00
Gucheng Wang
479daf4fa4 Improve code format. 2022-01-28 17:45:41 +08:00
Steve0x2a
d129202b95 fix: no database check when using accessToken (#461) 
Signed-off-by: 0x2a <stevesough@gmail.com>
 2022-01-28 15:07:42 +08:00
Steve0x2a
051752340d feat: add userinfo endpoint (#447) 
* feat: add userinfo endpoint

Signed-off-by: 0x2a <stevesough@gmail.com>

* feat: add scope support

Signed-off-by: 0x2a <stevesough@gmail.com>

* fix: modify the endpoint of discovery

Signed-off-by: 0x2a <stevesough@gmail.com>
 2022-01-26 11:56:01 +08:00
Gucheng Wang
c22ab44894 Update import path. 2022-01-20 14:11:46 +08:00
Yang Luo
9b6131890c Add permission page. 2022-01-01 16:28:33 +08:00
Steve0x2a
ffc0a0e0d5 fix: refresh_token endpoint does not work (#410) 
Signed-off-by: 0x2a <stevesough@gmail.com>
 2022-01-01 15:20:49 +08:00
Yang Luo
ff22bf507f Add role page. 2022-01-01 15:11:16 +08:00
Yang Luo
4b65320a96 Support user uploading via xlsx. 2021-12-31 13:00:35 +08:00
Yang Luo
5e8897e41b Make cert work. 2021-12-31 10:02:06 +08:00
Yang Luo
ba1646a0c3 Add cert pages. 2021-12-31 00:36:36 +08:00
Yixiang Zhao
755d912f61 feat: add refresh token mechanism for server side (#336) 
* feat: add refresh token mechanism for server side

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* feat: add refresh token expire configuration UI

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2021-12-18 18:49:38 +08:00
Gucheng Wang
c2110ef59d Add sync pages. 2021-12-17 16:35:45 +08:00
Gucheng Wang
0adb9b0047 Improve parseBearerToken(). 2021-12-13 00:37:13 +08:00
Steve0x2a
00ab156453 fix: support using bearer token to access protected resources (#364) 
* fix: require signed in by bearer token.

Signed-off-by: 0x2a <stevesough@gmail.com>

* fix: utilize existing code refactoring functions

Signed-off-by: 0x2a <stevesough@gmail.com>

* fix: improve the bearer parese function

Signed-off-by: 0x2a <stevesough@gmail.com>
 2021-12-13 00:25:44 +08:00
Yixiang Zhao
113398c36b feat: support SAML and test with aliyun IDaaS (#346) 
* feat: support SAML and test with aliyun IDaaS

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* refactor: refactor saml.go and router

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* fix: add param to getSamlLogin()

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* feat: add inputs to parse metadata automatically and show sp-acs-url, sp-entity-id

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2021-12-06 21:46:50 +08:00
Товарищ программист
07fa438348 feat: update swagger api json with tags (#347) 
Signed-off-by: Товарищ программист <2962928213@qq.com>
 2021-12-03 20:42:36 +08:00
Товарищ программист
bddd57cda8 feat: implement jwks_uri handler in oidc discovery (#334) 
Signed-off-by: Товарищ <2962928213@qq.com>
 2021-11-22 17:47:44 +08:00
Gucheng Wang
0b3742b0b1 Add GetSortedUsers() and GetUserCount() APIs. 2021-11-19 10:51:06 +08:00
Gucheng Wang
54ef2ec09f Expose GetOAuthCode() as API. 2021-11-08 23:28:41 +08:00
Gucheng Wang
30a2fdef37 Make webhook work. 2021-11-07 23:53:17 +08:00
Gucheng Wang
5ec678fa28 Improve record's User field. 2021-11-07 17:20:15 +08:00