casdoor

mirror of https://github.com/casdoor/casdoor.git synced 2025-05-23 02:35:49 +08:00

Author	SHA1	Message	Date
HGZ-20	5499e62d7f	feat: add the `FailedSigninLimit` and `FailedSigninfrozenTime` configuration options to the application (#2552 ) Add configuration items to the application to limit the number of logins and the login wait time after the maximum number of errors is reached feat: #2272 fix: fixed the issue where the token parameter could be set to a negative value	2023-12-20 22:29:53 +08:00
Yang Luo	a42594859f	feat: improve enforce() and batchEnforce() API response	2023-12-20 11:41:54 +08:00
HGZ-20	dc06eb9948	feat: fix secret information issue in the CAPTCHA provider code (#2531 )	2023-12-11 18:01:56 +08:00
Yang Luo	85cb68eb66	feat: unbind LDAP clients if not used any more	2023-12-02 17:51:25 +08:00
Yang Luo	947dcf6e75	Fix "All" roles bug in permission edit page	2023-12-02 15:26:52 +08:00
Yang Luo	113c27db73	Improve logout's id_token_hint logic	2023-12-02 02:13:34 +08:00
Nex Zhu	badfe34755	feat: add "nonce" into the OAuth and OIDC tokens, for some apps require "nonce" to integrate (#2522 )	2023-12-01 18:29:39 +08:00
Yang Luo	811999b6cc	feat: fix error handling in CheckPassword() related functions	2023-11-20 21:49:19 +08:00
Yang Luo	e9b7d1266f	Fix API typo: /get-global-certs	2023-11-13 14:22:40 +08:00
Yang Luo	d3ed6c348b	Improve GetOAuthToken() API's parameter handling	2023-11-13 02:30:32 +08:00
haiwu	0ac2b69f5a	feat: support WeChat Pay via JSAPI (#2488 ) * feat: support wechat jsapi payment * feat: add log * feat: update sign * feat: process wechat pay result * feat: process wechat pay result * feat: save wechat openid for different app * feat: save wechat openid for different app * feat: add SetUserOAuthProperties for signup * feat: fix openid for wechat * feat: get user extra property in buyproduct * feat: remove log * feat: remove log * feat: gofumpt code * feat: change lr->crlf * feat: change crlf->lf * feat: improve code	2023-11-11 17:16:57 +08:00
Yang Luo	498cd02d49	feat: add GetAllowedApplications() in user's app homepage	2023-11-08 09:48:31 +08:00
Lars Lehtonen	b985bab3f3	fix: fix dropped errors in GetUser() (#2470 ) * controllers: fix dropped errors * Update user.go --------- Co-authored-by: hsluoyz <hsluoyz@qq.com>	2023-11-01 23:07:24 +08:00
aiden	477a090aa0	feat: when logging in with OAuth2 and authenticating via WebAuthn, retrieve the application from the clientId (#2469 ) * fix: #2304 * fix: when logging in with OAuth2 and authenticating via WebAuthn, retrieve the application from the clientId. --------- Co-authored-by: aidenlu <aiden_lu@wochacha.com>	2023-11-01 18:40:05 +08:00
Yang Luo	9703f3f712	Support Apple OAuth login now	2023-10-31 23:10:36 +08:00
Yang Luo	1bf5497d08	Improve error handling for GetUser()	2023-10-31 14:01:37 +08:00
Yang Luo	cf10738f45	Fix typo in AddUserKeys()	2023-10-31 13:31:12 +08:00
Yang Luo	98defe617b	Add providerItem.SignupGroup	2023-10-20 23:10:43 +08:00
haiwu	b68e291f37	feat: support SAML Custom provider (#2430 ) * 111 * feat: support custom saml provider * feat: gofumpt code * feat: gofumpt code * feat: remove comment --------- Co-authored-by: hsluoyz <hsluoyz@qq.com>	2023-10-20 21:11:36 +08:00
aiden	432a5496f2	fix: skip checking password when the code is provided (#2425 ) Co-authored-by: aidenlu <aiden_lu@wochacha.com>	2023-10-19 18:25:25 +08:00
Yang Luo	3f53591751	Improve verification no provider error message	2023-10-18 15:32:12 +08:00
Yang Luo	2ee4aebd96	Fix error handling in GetSamlMeta()	2023-10-15 17:02:40 +08:00
Yang Luo	150e3e30d5	Support app user in API authentication	2023-10-15 15:20:57 +08:00
Yang Luo	43d849086f	Fix 127.0.0.1 bug in isHostIntranet()	2023-10-13 23:29:37 +08:00
Pedro Padron	983da685a2	feat: support calling get-user API by only email, phone or userId without owner (#2398 )	2023-10-13 02:48:55 +08:00
haiwu	440d87d70c	feat: support SCIM protocol (#2393 ) * 111 * feat: support scim/Users GET and POST request * feat: support scim/Users DELETE/PATCH/PUT request * feat: better support scim/Users PATCH request * feat: fix scim/Users logic * feat: gofumpt * feat: fix bug in scim/Users * feat: fix typo --------- Co-authored-by: hsluoyz <hsluoyz@qq.com>	2023-10-12 00:13:16 +08:00
Yang Luo	4de716fef3	Improve UploadResource()	2023-10-11 01:27:29 +08:00
Yang Luo	81a8b91e3f	Fix enforcer policy add and delete	2023-09-27 00:18:21 +08:00
Yang Luo	329a6a8132	Fix get-pricing and get-plan API null error handling	2023-09-25 22:11:08 +08:00
Yang Luo	111d1a5786	Use UserInfo's ID in OAuth login	2023-09-23 00:13:13 +08:00
Yang Luo	f40d44fa1c	Refactor out GenerateIdForNewUser()	2023-09-20 22:45:00 +08:00
Dmitry Buryanov	3b2820cbe3	feat: make redirect_uri really optional in logout route (#2342 )	2023-09-18 21:47:49 +08:00
UsherFall	7f298efebc	feat: fix Apple OAuth issue (#2338 ) * feat: fix sign in with apple bug * fix username	2023-09-18 17:04:03 +08:00
Yang Luo	1276da4daa	Check old password for normal user in SetPassword()	2023-09-15 10:21:02 +08:00
Yang Luo	616629ef99	Refactor CheckLoginPermission() code	2023-09-15 02:47:53 +08:00
Yang Luo	b633ecdcf2	Fix bug that cannot access application's public certificate for non "admin" owner	2023-09-15 00:56:40 +08:00
Yaodong Yu	a12ba7fb85	feat: allow CORS for UserInfo API in OIDC (#2313 )	2023-09-13 18:11:13 +08:00
haiwu	08a0092974	feat: fix alipay payment provider (#2330 ) * feat: support alipay payment provider * feat: update notify params * feat: update root cert * feat: update ProviderEditPage.js * feat: gofumpt	2023-09-13 17:30:51 +08:00
haiwu	16cd09d175	feat: support wechat pay (#2312 ) * feat: support wechat pay * feat: support wechat pay * feat: update wechatpay.go * feat: add router /qrcode	2023-09-07 15:45:54 +08:00
YunShu	559a91e8ee	feat: fix bug that failed to set password after changing username (#2296 ) * fix: failed to set password after changing username When we add a new member to an organization using Casdoor, Casdoor will automatically generate a member with a random username, such as "user_qvducc". When we change the username, for example, to "yunshu", an issue arises where we are unable to successfully edit the password. This is because Casdoor searches for a user based on `owner/username`, and before any changes are saved, the username in the database remains "user_qvducc". However, the frontend uses `orgName/yunshu` instead of `orgName/user_qvducc` to send the request to change the password. As a result, the backend cannot find the user and the password change fails. * Update user.go --------- Co-authored-by: hsluoyz <hsluoyz@qq.com>	2023-09-03 00:04:48 +08:00
Yang Luo	e584a6a111	Support using "?allowEmpty=1" to bypass empty displayName check in update-user API	2023-09-02 11:59:07 +08:00
Cattī Crūdēlēs	0c5c308071	fix: sendCasAuthenticationResponseErr when pgtUrlObj if not valid url (#2287 ) * fix: sendCasAuthenticationResponseErr when pgtUrlObj if not valid url check pgtUrlObj.Scheme first will cause panic if url.Parse returns error. * Update cas.go --------- Co-authored-by: hsluoyz <hsluoyz@qq.com>	2023-09-01 22:26:57 +08:00
Yang Luo	0b859197da	Fix CAS "/proxyValidate" API	2023-09-01 21:47:26 +08:00
Yang Luo	3078409343	Add CertPublicKey to Application	2023-09-01 21:16:51 +08:00
Yang Luo	6715efd781	Fix enforcer edit page	2023-08-31 17:32:36 +08:00
haiwu	953be4a7b6	feat: support subscription periods (yearly/monthly) (#2265 ) * feat: support year/month subscription * feat: add GetPrice() for plan * feat: add GetDuration * feat: gofumpt * feat: add subscription mode for pricing * feat: restrict auto create product operation * fix: format code * feat: add period for plan,remove period from pricing * feat: format code * feat: remove space * feat: remove period in signup page	2023-08-30 17:13:45 +08:00
Yang Luo	988b26b3c2	Return error for RunSyncer()	2023-08-27 02:22:37 +08:00
Yang Luo	a637707e77	Fix null bug in IsAdminOrSelf()	2023-08-26 10:39:46 +08:00
Yaodong Yu	7970edeaa7	feat: password and invitation code verification rules (#2258 )	2023-08-25 21:16:21 +08:00
Yang Luo	fb0949b9ed	Fix docker cannot get version bug	2023-08-25 11:49:47 +08:00

1 2 3 4 5 ...

575 Commits