llvy.ltd/casdoor
1
0
Fork 0
mirror of https://github.com/casdoor/casdoor.git synced 2025-05-25 08:20:31 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,938 Commits 27 Branches 1,253 Tags
Commit Graph

536 Commits

Author SHA1 Message Date
Nekotoxin
4d48517be9
fix: fix the No.0 bug(for all sign up methods) (#535) 2022-03-04 13:06:21 +08:00
Leon
178cf7945d
feat: improve token introspection endpoint (#534) 
* feat: add introspection endpoint to oidc discovery endpoint

* fix: let introspect endpoint handle formData as spec define.

Signed-off-by: Leon <leondevlifelog@gmail.com>
 2022-03-04 08:54:33 +08:00
Leon
ab5af979c8
feat: add Oauth 2.0 Token Introspection(rfc7662) endpoint support (#532) 
Signed-off-by: Leon <leondevlifelog@gmail.com>
 2022-03-03 17:48:47 +08:00
Yixiang Zhao
83a6b757a4
fix: password leakage vulnerability caused by pagination (#527) 
* fix: password leakage vulnerability caused by pagination

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* fix: unsafe get-app-login response fields

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-03-02 20:58:16 +08:00
Steve0x2a
2a0dcd746f
feat: add token logout endpoint (#526) 
Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-03-02 20:37:31 +08:00
Steve0x2a
697b3e4998
feat: add implicit flow support (#520) 
* feat: add implicit flow support

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: idp support in implicit flow

Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-03-01 19:09:59 +08:00
Steve0x2a
d48d515c36
fix: Missing extendedUser in signup webhook (#522) 
Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-03-01 18:25:48 +08:00
Nekotoxin
4915963c52
fix: member No.0 bug (#516) 
* fix: member No.0 bug

* Update account.go

* fix: member No.0 bug

* fix: member No.0 bug

* Update account.go
 2022-02-28 19:42:11 +08:00
Nekotoxin
759a1421e5
feat: add the 'karma' prop to table User (#518) 
* feature: feat : add the 'karma' prop to table User

* feat: add the 'karma' prop to table User
 2022-02-28 16:25:09 +08:00
Gucheng Wang
c14bf9fdab Fix bug in first name, last name checking 2022-02-28 13:17:05 +08:00
Yang Luo
39ab71c5db Add product pages. 2022-02-27 20:09:19 +08:00
Steve0x2a
2c97f8a8b7
feat: add two authentication flow types (#512) 
* feat: add two authentication flow types

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: delete implicit method

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: use a more appropriate name

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: apply suggestion

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: remove redundant code

Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-02-27 14:05:07 +08:00
Yang Luo
21392dcc14 Support user's first name and last name. 2022-02-27 14:02:52 +08:00
Steve0x2a
cbc8c58e85
fix: oidc jwks endpoint only return default cert (#506) 
Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-02-21 23:17:16 +08:00
Steve0x2a
a33076ada4
feat: add AD-FS support (#505) 
Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-02-20 15:01:48 +08:00
Steve0x2a
274096fe9d
fix: empty iss return (#503) 
Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-02-18 12:36:11 +08:00
Steve0x2a
661abd6b6e
feat: add steam support (#497) 
* feat: add steam support

Signed-off-by: 0x2a <stevesough@gmail.com>

* fix: wrong name

Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-02-16 19:57:46 +08:00
Yixiang Zhao
4122c94205
feat: add pagination for LdapSyncPage and fix the bug Ldap auto-sync cannot disable (#496) 
* feat: add pagination for LdapSyncPage

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* fix: Ldap auto sync cannot disable

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-02-15 23:03:53 +08:00
Gucheng Wang
0bd86baf4d Fix crash in incremental ID. 2022-02-14 22:58:26 +08:00
Gucheng Wang
db37f53d6c Update license headers. 2022-02-13 23:39:27 +08:00
Steve0x2a
f85f4c0cf8
feat: add infoflow idp support (#472) 
* feat: add infoflow internal backend support

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* feat: add infoflow idp support

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: copyright and comment

Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-02-05 21:54:38 +08:00
Yang Luo
940aa2bc2d Add payment pages. 2022-02-05 20:13:15 +08:00
Steve0x2a
d943d5cc61
fix: oauth params null value error (#465) 
Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-01-30 17:58:54 +08:00
Gucheng Wang
19ed35f964 Add getOriginFromHost(). 2022-01-29 23:43:25 +08:00
Gucheng Wang
a8502d1173 Fix GetIdProvider() bug. 2022-01-29 09:52:48 +08:00
Steve0x2a
051752340d
feat: add userinfo endpoint (#447) 
* feat: add userinfo endpoint

Signed-off-by: 0x2a <stevesough@gmail.com>

* feat: add scope support

Signed-off-by: 0x2a <stevesough@gmail.com>

* fix: modify the endpoint of discovery

Signed-off-by: 0x2a <stevesough@gmail.com>
 2022-01-26 11:56:01 +08:00
Steve0x2a
630b84f534
feat: add PKCE support (#434) 
* feat: add PKCE support

Signed-off-by: Steve0x2a <stevesough@gmail.com>

* fix: error output when challenge is empty

Signed-off-by: Steve0x2a <stevesough@gmail.com>
 2022-01-21 09:29:19 +08:00
Gucheng Wang
c22ab44894 Update import path. 2022-01-20 14:11:46 +08:00
Gucheng Wang
030c1caa50 Fix bug in IsGlobalAdmin(). 2022-01-15 23:23:14 +08:00
Gucheng Wang
dee9bac110 Show signupApplication in user edit page. 2022-01-15 18:29:10 +08:00
Gucheng Wang
b91b4aec91 Allow global admin to modify username. 2022-01-13 23:20:10 +08:00
Yang Luo
9b6131890c Add permission page. 2022-01-01 16:28:33 +08:00
Yang Luo
ff22bf507f Add role page. 2022-01-01 15:11:16 +08:00
Bingchang Chen
445d3c9d0e
feat: support spring security oauth2 (#408) 
Signed-off-by: abingcbc <abingcbc626@gmail.com>
 2021-12-31 19:55:34 +08:00
Yang Luo
2fcc8f5bfe Support app user in SetPassword(). 2021-12-31 13:32:18 +08:00
Yang Luo
4b65320a96 Support user uploading via xlsx. 2021-12-31 13:00:35 +08:00
Yang Luo
5e8897e41b Make cert work. 2021-12-31 10:02:06 +08:00
Yang Luo
ba1646a0c3 Add cert pages. 2021-12-31 00:36:36 +08:00
Yang Luo
519fd655cf Add GetMaskedApplication() and GetMaskedApplications(). 2021-12-29 20:04:39 +08:00
Yang Luo
377ac05928 Don't clear session in SetPassword(). 2021-12-28 23:07:09 +08:00
Yang Luo
d5f802ec7d Support IdCard in signup page. 2021-12-28 17:48:24 +08:00
Yang Luo
64d3b7e87f Add EnableSigninSession to app. 2021-12-28 17:15:47 +08:00
Yixiang Zhao
10a85f2386
feat: add server-side search, filter and sorter for all pages (#388) 
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2021-12-25 10:55:10 +08:00
Yang Luo
7cfece3019 Add GetMaskedProvider() and GetMaskedProviders(). 2021-12-21 00:20:12 +08:00
Yixiang Zhao
755d912f61
feat: add refresh token mechanism for server side (#336) 
* feat: add refresh token mechanism for server side

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* feat: add refresh token expire configuration UI

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2021-12-18 18:49:38 +08:00
Gucheng Wang
16cc64f08d Fix translation. 2021-12-18 11:42:56 +08:00
Gucheng Wang
318cf52b33 Refactor the original db code. 2021-12-18 01:08:03 +08:00
Gucheng Wang
07f9a9ee96 Add more fields to syncer. 2021-12-17 20:33:03 +08:00
Gucheng Wang
c2110ef59d Add sync pages. 2021-12-17 16:35:45 +08:00
Steve0x2a
2f70e77e53
fix: wrong sub return and docker-compose boolean value error. (#375) 
* fix: wrong sub return

Signed-off-by: 0x2a <stevesough@gmail.com>

* fix: yaml bool value must be enclosed in quotes

Signed-off-by: 0x2a <stevesough@gmail.com>
 2021-12-16 11:10:25 +08:00