llvy.ltd/casdoor
1
0
Fork 0
mirror of https://github.com/casdoor/casdoor.git synced 2025-05-24 08:11:54 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,805 Commits 27 Branches 1,253 Tags
Commit Graph

771 Commits

Author SHA1 Message Date
Yang Luo
5f054c4989 Fix product links 2023-07-28 15:08:45 +08:00
Ilya Sulimanov
59da104463
fix: update ldap admin pwd only if changed (#2146) 
* fix ldap pwd update

* fix: linter

* fix: simplify check
 2023-07-27 17:49:15 +08:00
June
6a952952a8
fix: unmask application for org admin (#2138) 
* feat: unmask application with user admin

* Update application.go

---------

Co-authored-by: hsluoyz <hsluoyz@qq.com>
 2023-07-26 17:17:49 +08:00
June
b5e9084e5d
feat: en/decodeURI in permission/role name (#2137) 2023-07-26 13:08:35 +08:00
June
55d5ae10f2
fix: fix infinite loop in containsRole() (#2136) 2023-07-25 20:53:08 +08:00
Yang Luo
6986dad295 Use arg to control createDatabaseForPostgres() 2023-07-25 18:36:15 +08:00
Yaodong Yu
949feb18af
feat: add basic enforcer manager (#2130) 
* feat: add basic enforcer manager

* chore: generate swagger
 2023-07-25 17:17:59 +08:00
Yaodong Yu
3c4112dd44
refactor: optimize the code to getEnforcer (#2120) 2023-07-24 14:02:34 +08:00
haiwu
b7a37126ad
feat: restrict redirectUrls for CAS login (#2118) 
* feat: support cas restricted login

* feat: add cas login i18n

* feat: add CheckCasService for all cas api

* feat: gofumpt

* feat: replace 404

* feat: reuse i18n

* feat: delete CheckCasService

* Update token_cas.go

* Update LoginPage.js

* Update token_cas.go

---------

Co-authored-by: hsluoyz <hsluoyz@qq.com>
 2023-07-24 11:47:31 +08:00
Yang Luo
09f40bb5ce Fix id of "/api/get-resource" API 2023-07-23 11:33:48 +08:00
Yang Luo
fc9528be43 Add createDatabaseForPostgres() 2023-07-22 16:19:13 +08:00
imp2002
58e8f9f90b
feat: fix Effect in Casbin rule (#2103) 
* fix: Add `Effect` to Casbin rule of role

fix: https://github.com/casdoor/casdoor/issues/2102

* Update permission_enforcer.go

---------

Co-authored-by: hsluoyz <hsluoyz@qq.com>
 2023-07-21 18:01:37 +08:00
Yang Luo
e850e33f37 Fix error message of missing cert when login 2023-07-20 19:45:22 +08:00
haiwu
d7110ff8bf
feat: support MetaMask provider (#2084) 
* feat: add metamask provider

* feat: add eth login

* feat: check eth sign

* feat: finish metamask signin/signup

* feat: support MetaMask provider link/unlink

* feat: update web/craco.config.js to handle polyfill

* feat: gofumpt idp/metamask.go

* feat: update MetaMask logo path

* feat: support MetaMask avatar
 2023-07-20 17:51:36 +08:00
Yang Luo
38f031bc86 Show access secret if isAdminOrSelf is true in get-user and get-account APIs 2023-07-19 19:14:53 +08:00
Yang Luo
5c441d195c Add Effect to Casbin rule of add-permission 2023-07-19 18:52:22 +08:00
Yaodong Yu
0639564d27
fix: check group name cannot be same as organization name (#2090) 2023-07-19 11:37:28 +08:00
Yang Luo
6c647818ca feat: add "Sender number" input for Twilio SMS provider 2023-07-18 22:46:56 +08:00
Yang Luo
1f37c80177 feat: refactor code to add getStorageProvider() 2023-07-17 15:59:37 +08:00
Yaodong Yu
7924fca403
fix: hidden bug of "like" query (#2082) 2023-07-16 17:11:32 +08:00
UsherFall
854a74b73e
feat: fix the error when user uploads avatar to minio (https) (#2078) 
* fix: Error reported when user uploads avatar to minio (https)

* Update provider.go

---------

Co-authored-by: hsluoyz <hsluoyz@qq.com>
 2023-07-14 15:58:30 +08:00
Yang Luo
0a0c1b4788 Fix "Groups is immutable" bug when updating a user 2023-07-13 00:03:18 +08:00
Yang Luo
438c999e11 Add password mask to /get-ldaps and /get-ldap APIs 2023-07-12 23:21:47 +08:00
Yang Luo
caec1d1bac Only consider x509 certs in /.well-known/jwks API 2023-07-12 22:39:39 +08:00
Yaodong Yu
de9eeaa1ef
fix: init groups modify rule with admin (#2054) 2023-07-11 09:49:49 +08:00
Yaodong Yu
347d3d2b53
feat: fix bugs in MFA (#2033) 
* fix: prompt mfa binding

* fix: clean session when leave promptpage

* fix: css

* fix: force enable mfa

* fix: add prompt rule

* fix: refactor directory structure

* fix: prompt notification

* fix: fix some bug and clean code

* fix: rebase

* fix: improve notification

* fix: i18n

* fix: router

* fix: prompt

* fix: remove localStorage
 2023-07-07 12:30:07 +08:00
Gucheng Wang
6edfc08b28 Refactor the code 2023-07-07 00:13:05 +08:00
Yaodong Yu
3d4ca1adb1
feat: support custom user mapping (#2029) 
* feat: support custom user mapping

* fix: parse id to string

* Update data.json

* Update data.json

---------

Co-authored-by: hsluoyz <hsluoyz@qq.com>
 2023-07-05 20:35:02 +08:00
Yang Luo
855259c6e7 feat: improve getOriginFromHost() for local machine name 2023-07-05 09:51:08 +08:00
Yang Luo
f3aed0b6a8 Fix null panic in GetOrganizationByUser() 2023-07-03 14:56:14 +08:00
Denis Plynskiy
eee9b8b9fe
feat: add organization context select box for admin (#2013) 
* feat: organization as context

* feat: organization as context with backend filtration

* Update app.conf

* update app.conf and hide organization select for mobile.

---------

Co-authored-by: dplynsky <dplynsky@ptsecurity.com>
Co-authored-by: hsluoyz <hsluoyz@qq.com>
 2023-06-30 01:32:34 +08:00
haiwu
807aea5ec7
feat: add tags to application (#2027) 
* feat: add tags to application

* fix: fix for merge master

* feat: update i18n(backend&frontend) for application tags
 2023-06-30 00:04:12 +08:00
Yaodong Yu
1c42b6e395
fix: refactor the idp and regex code (#2030) 
* refactor: validate util and idp

* chore: clean code

* chore: clean code
 2023-06-29 21:44:14 +08:00
Yaodong Yu
0a8c2a35fe
feat: add TOTP multi-factor authentication (#2014) 
* feat: add totp multi-factor authentication

* feat: add license

* feat:i18n and update yarn.lock

* feat:i18n

* fix: i18n
 2023-06-24 18:39:54 +08:00
XDTD
d1e734e4ce
fix: set the default value of user.Groups for syncer (#2016) 
fix: set the default value of user.Groups for syncer
 2023-06-24 18:29:50 +08:00
XDTD
68f032b54d fix: add isReadOnly for syncer (#2015) 
* feat: add read only mod for syncer

* feat: change readOnlyEnable to isReadOnly
 2023-06-24 17:56:41 +08:00
June
1780620ef4
feat: handle error when permission not found (#2012) 2023-06-24 00:30:43 +08:00
June
463b3ad976
fix: refactor and optimize Enforce() API (#2009) 2023-06-22 17:45:24 +08:00
June
2c2ddfbb92
feat: optimize batch-enforce (#1997) 2023-06-22 14:40:09 +08:00
Alex OvsInc
cadb533595
fix: unsafe verification username in CheckUsername (#2006) 
* Customization of the initialization file

* Unsafe verification username in CheckUsername
 2023-06-21 23:20:23 +08:00
Yang Luo
a3b0f1fc74 feat: add owner to getUserByWechatId() 2023-06-21 21:29:53 +08:00
Yaodong Yu
c391af4552
feat: improve MFA by using user's own Email and Phone (#2002) 
* refactor: mfa

* fix: clean code

* fix: clean code

* fix: fix crash and improve robot
 2023-06-21 18:56:37 +08:00
Alex OvsInc
6ebca6dbe7
fix: Gosec/sec fixes (#2004) 
* Customization of the initialization file

* fix: G601 (CWE-118): Implicit memory aliasing in for loop

* fix: G304 (CWE-22): Potential file inclusion via variable

* fix: G110 (CWE-409): Potential DoS vulnerability via decompression bomb
 2023-06-21 18:55:20 +08:00
Xinhao Yuan
f6f4d44444
feat: remove url.JoinPath() to be compatible with Go 1.17 (#1995) 2023-06-20 17:44:40 +08:00
Yaodong Yu
65716af89e
feat: deprecate the user group relation table (#1990) 
* fix: deprecate the user group relation table

* fix: clean code

* fix: fix trigger

* Update group.go

---------

Co-authored-by: hsluoyz <hsluoyz@qq.com>
 2023-06-19 19:08:45 +08:00
Yang Luo
d9c4f401e3 Fix error in downloadImage() 2023-06-19 17:52:01 +08:00
Yang Luo
58aa7dba6a Fix groups in GetUserInfo() 2023-06-19 11:06:55 +08:00
Yang Luo
29fc820578 Set User.groups to [] 2023-06-19 09:42:17 +08:00
Yaodong Yu
d0ac265c91
fix: Deprecate the id field in group (#1987) 2023-06-18 23:33:13 +08:00
Yang Luo
7884e10ca3 Refactor adapter's owner and organization 2023-06-18 00:22:12 +08:00