llvy.ltd/casdoor
1
0
Fork 0
mirror of https://github.com/casdoor/casdoor.git synced 2025-05-23 02:35:49 +08:00
Code Issues Packages Projects Releases Wiki Activity
2,752 Commits 27 Branches 1,251 Tags
Commit Graph

201 Commits

Author SHA1 Message Date
DacongDA
383bf44391
feat: support OIDC device flow: "/api/device-auth" (#3757) 2025-04-30 23:42:26 +08:00
DacongDA
e55cd94298
feat: fix issue that user email is still unverified after signup (#3685) 2025-03-29 21:24:01 +08:00
DacongDA
141372cb86
feat: support face ID provider (#3666) 2025-03-19 22:57:35 +08:00
Anton Berezhnyi
3e7938e5f6
feat: don't panic when provider not found in Login() API (#3659) 2025-03-13 21:35:51 +08:00
WindSpiritSR
5692522ee0
feat: update user language when the language changed on login page (#3628) 2025-03-01 22:28:20 +08:00
DacongDA
9c39179849
feat: fix bug that user forbidden check will be skipped in OAuth login (#3580) 2025-02-13 13:14:44 +08:00
hsluoyz
b3526de675 feat: add checkOrgMasterVerificationCode() 2025-02-06 23:46:22 +08:00
DacongDA
558b168477
feat: can verify OTP during OAuth login (#3531) 
* feat: support verify OTP during OAuth login

* fix: fail to login if mfa not enable

* fix: fail to login if mfa not enable

* fix: fix mfaRequired not valid in saml/auth
 2025-01-27 19:37:26 +08:00
DacongDA
e1b3b0ac6a
feat: allow user use other mfaType in mfa step and skip redundant MFA verification (#3499) 
* feat: allow user use other mfaType in mfa step and skip redundant MFA verification

* feat: improve format
 2025-01-21 20:16:18 +08:00
DacongDA
888a6f2feb
feat: add regex to restrict Email addresses in OAuth provider (#3465) 
* feat: support use regex expression to limit email receiver address

* feat: limit in correct pos

* feat: promote code format

* feat: promote code format

* fix: fix linter issue
 2025-01-02 00:00:57 +08:00
Yang Luo
457c6098a4 feat: fix MFA empty CountryCode bug and show MFA error better in frontend 2024-11-04 16:17:24 +08:00
ZhaoYP 2001
7cd8f030ee
feat: support IP limitation for user entry pages (#3267) 
* feat: support IP limitation for user entry pages

* fix: error message, ip whiteList, check_entry_ip

* fix: perform checks on the backend

* fix: change the implementation of checking IpWhitelist

* fix: add entryIpCheck in SetPassword and remove it from VerifyCode

* fix: remove additional error message pop-ups

* fix: add isRestricted and show ip error in EntryPage.js

* fix: error message

* Update auth.go

* Update check_ip.go

* Update check_ip.go

* fix: update return value of the check function from string to error

* fix: remoteAddress position

* fix: IP whitelist

* fix: clientIp

* fix:add util.GetClientIpFromRequest

* fix: remove duplicate IP and port separation codes and remove extra special characters after clientIp

* fix: gofumpt

* fix: getIpInfo and localhost

---------

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2024-10-15 20:40:14 +08:00
ZhaoYP 2001
e1dea9f697
feat: add organization's PasswordObfuscator to obfuscate login API's password (#3260) 
* feat: add PasswordObfuscator to the login API

* fix: change key error message

* fix: remove unnecessary change

* fix: fix one

* fix: fix two

* fix: fix three

* fix: fix five

* fix: disable organization update when key is invalid

* fix: fix six

* fix: use Form.Item to control key

* fix: update obfuscator.js

* Update obfuscator.go

* Update obfuscator.go

* Update auth.go

* fix: remove real-time key monitoring

---------

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2024-10-03 10:38:37 +08:00
DacongDA
55a52093e8
feat: fix bug that user can signup without invitation code via OAuth (#3084) 
* fix:fix user can signup without invitation code when using 3rd oauth

* fix:use correct i18n translation
 2024-07-29 00:59:02 +08:00
DacongDA
e5f9aab28f
feat: support resetting password on first login (#2980) 
* feat: support reset password in first login

* feat: disable needUpdatePassword when user haven't email and phone and mfa
 2024-06-02 01:00:55 +08:00
DacongDA
23dbb0b926
feat: add response to Records page (#2830) 
* feat: add response to Records page

* feat: improve AddRecord

* feat: remove log and return err

* feat: improve record in signup and record deny

* fix: filter will generate 403 record correctly
 2024-03-22 14:53:38 +08:00
HGZ-20
391a533ce1
feat: add "Face ID" login method (#2782) 
Face Login via face-api.js
 2024-03-16 09:04:00 +08:00
DacongDA
5c4e22288e
feat: improve error handling and code format (#2682) 
* feat: improve error process and code format

* feat: improve error process and code format
 2024-02-07 20:55:33 +08:00
DacongDA
97db54b6b9
feat: full support for wechat official account login (#2677) 
* feat: full support for wechat official account login

* feat: improve provider edit page

* fix: improve i18n format
 2024-02-07 00:00:10 +08:00
dacongda
167c1b0f1b
feat: fix bug in WeChat OA login (#2674) 
* fix: fix the problem of Wechat Official Account login

* fix: fix code format problem

* fix: add error display and fix the code format problem

* fix: i18n problem and code format
 2024-02-05 21:38:12 +08:00
dacongda
e593f5be5b
fix: improve code format (#2665) 
* feat: replace io/ioutils pacakage with io/os package

* fix: add missing error handling
 2024-02-01 23:06:12 +08:00
dacongda
ce0d45a70b
feat: support SAML POST binding (#2661) 
* fix: support saml http post binding

* fix: support saml http post binding

* fix: support saml post binding sp
 2024-02-01 17:28:56 +08:00
Yang Luo
a4524e9996 fix: fix Swagger @Tag 2024-01-15 23:35:40 +08:00
Yang Luo
b469928780 Fix Swagger @router 2024-01-15 23:27:42 +08:00
Yang Luo
39d6bc10f7 Fix GetCaptchaStatus() crash if not logged in 2024-01-13 18:04:38 +08:00
Yang Luo
177f2f2f11 Add userId param to GetAllObjects() API 2024-01-13 18:03:40 +08:00
HGZ-20
ffa54247cd
feat: add LDAP signin method (#2591) 
Add support for LDAP login methods
Add option to control LDAP user in password login method.
 2024-01-08 21:07:34 +08:00
HGZ-20
e3f28e8b4c
feat: Support more flexible login method control (#2566) 2024-01-02 21:11:52 +08:00
xiao-kong-long
e7c015f288
feat: fix comment and configs for successfully generating OpenAPI typescript-axios sdk (#2560) 
* fix: fix swagger.json, successfully generate java sdk

* fix:fix comment and change some content for successfully generating typescript-axios sdk
 2023-12-29 15:12:40 +08:00
xiao-kong-long
21f394847e fix: fix Swagger docs by improving comments 2023-12-23 11:57:18 +08:00
HGZ-20
5499e62d7f
feat: add the FailedSigninLimit and FailedSigninfrozenTime configuration options to the application (#2552) 
Add configuration items to the application to limit the number of logins and the login wait time after the maximum number of errors is reached
feat: #2272

fix: fixed the issue where the token parameter could be set to a negative value
 2023-12-20 22:29:53 +08:00
HGZ-20
dc06eb9948
feat: fix secret information issue in the CAPTCHA provider code (#2531) 2023-12-11 18:01:56 +08:00
Nex Zhu
badfe34755
feat: add "nonce" into the OAuth and OIDC tokens, for some apps require "nonce" to integrate (#2522) 2023-12-01 18:29:39 +08:00
Yang Luo
811999b6cc feat: fix error handling in CheckPassword() related functions 2023-11-20 21:49:19 +08:00
haiwu
0ac2b69f5a
feat: support WeChat Pay via JSAPI (#2488) 
* feat: support wechat jsapi payment

* feat: add log

* feat: update sign

* feat: process wechat pay result

* feat: process wechat pay result

* feat: save wechat openid for different app

* feat: save wechat openid for different app

* feat: add SetUserOAuthProperties for signup

* feat: fix openid for wechat

* feat: get user extra property in buyproduct

* feat: remove log

* feat: remove log

* feat: gofumpt code

* feat: change lr->crlf

* feat: change crlf->lf

* feat: improve code
 2023-11-11 17:16:57 +08:00
Yang Luo
9703f3f712 Support Apple OAuth login now 2023-10-31 23:10:36 +08:00
Yang Luo
98defe617b Add providerItem.SignupGroup 2023-10-20 23:10:43 +08:00
haiwu
b68e291f37
feat: support SAML Custom provider (#2430) 
* 111

* feat: support custom saml provider

* feat: gofumpt code

* feat: gofumpt code

* feat: remove comment

---------

Co-authored-by: hsluoyz <hsluoyz@qq.com>
 2023-10-20 21:11:36 +08:00
Yang Luo
111d1a5786 Use UserInfo's ID in OAuth login 2023-09-23 00:13:13 +08:00
UsherFall
7f298efebc feat: fix Apple OAuth issue (#2338) 
* feat: fix sign in with apple bug

* fix username
 2023-09-18 17:04:03 +08:00
Yang Luo
616629ef99 Refactor CheckLoginPermission() code 2023-09-15 02:47:53 +08:00
haiwu
05b2f00057
feat: support Pricings flow (#2250) 
* feat: fix price display

* feat: support subscription

* feat: fix select-plan-> signup -> buy-plan -> login flow

* feat: support paid-user to login and jump to the pricing page

* feat: support more subscription state

* feat: add payment providers for plan

* feat: format code

* feat: gofumpt

* feat: redirect to buy-plan-result page when user have pending subscription

* feat: response err when pricing don't exit

* Update PricingListPage.js

* Update ProductBuyPage.js

* Update LoginPage.js

---------

Co-authored-by: hsluoyz <hsluoyz@qq.com>
 2023-08-24 23:20:50 +08:00
Yaodong Yu
e5a189e0f4
fix: remove isGlobalAdmin field in user (#2235) 
* refactor: remove isGlobalAdmin field in user

* fix: upload xlsx

* fix: remove field in account table
 2023-08-19 12:23:15 +08:00
haiwu
fec54944dd feat: fix CAS login bug (#2230) 
* fix: cas login

* fix: cas login

* feat: rollback get-default-app change

* fix : move cas restrict logic to GetApplicationLogin()

* fix: format code

* fix: fix getOAuthGetParameters for cas

* fix: fix getOAuthGetParameters for cas

* fix: cas login
 2023-08-19 01:15:41 +08:00
haiwu
d7110ff8bf
feat: support MetaMask provider (#2084) 
* feat: add metamask provider

* feat: add eth login

* feat: check eth sign

* feat: finish metamask signin/signup

* feat: support MetaMask provider link/unlink

* feat: update web/craco.config.js to handle polyfill

* feat: gofumpt idp/metamask.go

* feat: update MetaMask logo path

* feat: support MetaMask avatar
 2023-07-20 17:51:36 +08:00
Yang Luo
d8969e6652 Support EnableSigninSession after SAML login 2023-07-14 11:27:18 +08:00
Yaodong Yu
347d3d2b53
feat: fix bugs in MFA (#2033) 
* fix: prompt mfa binding

* fix: clean session when leave promptpage

* fix: css

* fix: force enable mfa

* fix: add prompt rule

* fix: refactor directory structure

* fix: prompt notification

* fix: fix some bug and clean code

* fix: rebase

* fix: improve notification

* fix: i18n

* fix: router

* fix: prompt

* fix: remove localStorage
 2023-07-07 12:30:07 +08:00
Yaodong Yu
3d4ca1adb1
feat: support custom user mapping (#2029) 
* feat: support custom user mapping

* fix: parse id to string

* Update data.json

* Update data.json

---------

Co-authored-by: hsluoyz <hsluoyz@qq.com>
 2023-07-05 20:35:02 +08:00
Baihhh
91cb5f393a
fix: fix Swagger docs page (#2025) 
Signed-off-by: baihhh <2542274498@qq.com>
 2023-06-30 00:48:39 +08:00
haiwu
807aea5ec7
feat: add tags to application (#2027) 
* feat: add tags to application

* fix: fix for merge master

* feat: update i18n(backend&frontend) for application tags
 2023-06-30 00:04:12 +08:00