llvy.ltd/casdoor
1
0
Fork 0
mirror of https://github.com/casdoor/casdoor.git synced 2025-05-23 18:54:03 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,092 Commits 27 Branches 1,253 Tags
Commit Graph

479 Commits

Author SHA1 Message Date
Resulte Lee
8da50b7893
feat: extend managed accounts for get-account api (#1068) 
* feat: add get-extend-account api

* feat: extend managed accounts for get-account api

* fix go-linter err

* Use GetApplicationsByOrganizationName
 2022-08-30 00:57:27 +08:00
Gucheng Wang
c62983d734 Use conf.GetConfigString() 2022-08-29 21:26:00 +08:00
q1anx1
411d76798d
fix: fix upload file security issue (#1063) 
* fix: fix upload file security issue

* fix: fix
 2022-08-25 11:34:09 +08:00
Yixiang Zhao
7b0b426a76
feat: check model grammar when saving and provide a ACL model as init data (#1062) 
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-08-24 17:21:05 +08:00
conghuhu
a383af0ebc
feat: fix token info not contains roles and permissions (#1060) 
* fix: fix token info not contains roles and permissions

feat: remove repeated code for obtaining roles and permissions in user controller

* Update user.go

* Update user.go

* Update token.go

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-08-24 01:41:26 +08:00
Resulte Lee
c1fe547939
fix: not start countdown if SMS fails to send (#1057) 2022-08-22 23:06:41 +08:00
Gucheng Wang
2d3d1167bb Fix HasPromptPage() for signup items 2022-08-22 11:51:20 +08:00
Resulte Lee
1f11d22c1c
fix: add managed account table for supporting Chrome extension to auto login (#1030) 
* feat: add manage accounts table(support chrome extension to auto login)

* fix go lint err

* rename manageAccounts to managedAccounts

* expand up&down buttom column width

* rename ManagedAccountsTable to ManagedAccountTable
 2022-08-22 00:25:39 +08:00
疯魔慕薇
08a1e7ae32
fix: keep phone/email unique. (#1038) 
Signed-off-by: 疯魔慕薇 <kfanjian@gmail.com>

Signed-off-by: 疯魔慕薇 <kfanjian@gmail.com>
 2022-08-20 12:14:08 +08:00
Yixiang Zhao
80c0940e30
feat: initialize the default permission (#1029) 
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-08-19 11:59:35 +08:00
Yixiang Zhao
8e9ed1205b
feat: support RBAC with domains model and add adapter to specify the table name for policy storage (#1020) 
* feat: support RBAC with domains model and add adapter to specify the table name for policy storage

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* fix some bugs

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* add i18n

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-08-18 11:49:32 +08:00
q1anx1
aedef1eea1
feat(login): add login limit (#1023) 
* feat(login): add login limit

* chore: rename vars

* chore: use `string`

* fix: clear the signin error times after succeessfull login

* chore: modify code position
 2022-08-17 01:39:53 +08:00
疯魔慕薇
2dcdfbe6d3
fix: error login logic of mobile phone login (#1017) 
* fix: #1016

1. Limit username cannot be digital.
2. Check avoid repeat register with same phone or email.

Signed-off-by: 疯魔慕薇 <kfanjian@gmail.com>

* Update check.go

Signed-off-by: 疯魔慕薇 <kfanjian@gmail.com>
Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-08-16 00:14:26 +08:00
Gucheng Wang
c92d34e27c Add GetPermissionsBySubmitter() 2022-08-15 14:09:12 +08:00
Yixiang Zhao
dfbf7753c3
feat: support RBAC model in permission (#1006) 
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-08-15 10:24:26 +08:00
leoshine
ba732b3075
feat: use staticBaseUrl for all static resources (#1015) 
* feat: modify system image link

* Update App.less

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-08-15 09:18:21 +08:00
Ryao
6676cc8ff3
fix: add JTI name to JWT token (#989) 
* feat: add jti to jwt

* fix

* fix
 2022-08-11 14:32:47 +08:00
Gucheng Wang
f716a0985f Add disableSsl to provider. 2022-08-09 23:38:35 +08:00
Mikey
79119760f2
style: golint (#988) 2022-08-09 16:50:49 +08:00
Mikey
802995ed16
refactor: remove WeChat unionId to properties (#985) 2022-08-08 18:43:12 +08:00
Gucheng Wang
f914e8e929 Add permission_enforcer.go 2022-08-07 23:57:06 +08:00
Yixiang Zhao
dc33b41107
feat: expose some casbin APIs (#955) 
* feat: expose some casbin APIs

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* feat: add BatchEnforce API

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* fix: solve requested changes

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-08-07 23:42:45 +08:00
Gucheng Wang
32b4d98c2a Add ExtendProductWithProviders(). 2022-08-07 15:45:06 +08:00
q1anx1
2ea58cd639
chore(style): use gofumpt to fmt go code (#967) 2022-08-07 12:26:14 +08:00
Artem
aafdc546fa
fix: panic when creating a user in a non-existent org (#969) 2022-08-06 22:30:56 +08:00
Gucheng Wang
d55ae7d1d2 Enable some other DBs 2022-08-04 20:28:09 +08:00
Yang Luo
1600615aca Support sqlite3 DB 2022-07-31 18:11:18 +08:00
Mikey
2bb8491499
fix: unable to get user if profile is private (#936) 2022-07-31 10:54:41 +08:00
Mikey
293283ed25
feat: add get user by phone (#934) 
* fix: check reset phone & email modify rules

* Update verification.go

* Update organization.go

* feat: add get user by phone

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-07-31 01:02:28 +08:00
q1anx1
9cb519d1e9
fix: Admins should not be allowed to add third-party login for their members (#932) 
* feat: admin can unlink the other user

* feat: global admin can unlink other user

* fix
 2022-07-30 23:11:02 +08:00
Yixiang Zhao
fb9b8f1662
fix: skip the duplicated users when sync users (#928) 
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-07-30 22:24:23 +08:00
Mikey
2fec3f72ae
fix: check reset phone & email modify rules (#927) 
* fix: check reset phone & email modify rules

* Update verification.go

* Update organization.go

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-07-30 18:17:13 +08:00
Resulte Lee
155660b0d7
feat: get user api return roles and permissions (#929) 2022-07-30 17:31:56 +08:00
q1anx1
3dd56195d9
fix: fix the problem of link error (#923) 2022-07-28 21:52:10 +08:00
SLingyu
4e3eedf246
feat: fix bug that the default permission prevents admin to login in (#907) 
* fix:The certs page is displayed incorrectly

* Translations for each language are added

* Replace the variables certificat with Certificat with certificate and Certificate

* Replace the variables certificat with Certificat with certificate and Certificate

* Variable names are more accurate

* Variable names are more accurate

* Modify the variable name

* fix: Default action prevents admin to login in
 2022-07-24 23:36:55 +08:00
SLingyu
8e98fc5a9f
feat: rename all publicKey occurrences to certificate (#894) 
* fix:The certs page is displayed incorrectly

* Translations for each language are added

* Replace the variables certificat with Certificat with certificate and Certificate

* Replace the variables certificat with Certificat with certificate and Certificate

* Variable names are more accurate

* Variable names are more accurate

* Modify the variable name
 2022-07-23 09:40:51 +08:00
Gucheng Wang
3e4dbc2dcb fix: URL bug in getUploadFileUrl function 2022-07-20 17:49:11 +08:00
Yang Luo
8c7f235ee1 Fix bug in uploadFile()'s URL. 2022-07-17 14:29:06 +08:00
Yixiang Zhao
117dec4542
feat: failed to sync keycloak users in the PostgreSQL database (#886) 
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
 2022-07-16 12:14:35 +08:00
waltcow
895cdd024d
fix: Typo in user model xorm tag (#883) 2022-07-15 12:01:27 +08:00
q1anx1
f0b0891ac9
feat: query user by userId (#879) 
* feat: add `getUserByUserId` func

* Update user.go

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-07-14 21:46:13 +08:00
Gucheng Wang
6e70f0fc58 Refactor CheckAccessPermission(). 2022-07-13 00:50:32 +08:00
Yixiang Zhao
2bca424370
feat: implement access control using casbin (#806) 
* feat: implement access control using casbin

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* chore: sort imports

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* fix: remove

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>

* Update auth.go

Co-authored-by: Gucheng <85475922+nomeguy@users.noreply.github.com>
 2022-07-13 00:34:35 +08:00
Gucheng Wang
de49a45e19 Add escapePath for getUploadFileUrl(). 2022-07-12 23:24:24 +08:00
Товарищ программист
7f3b2500b3
feat: support webauthn (#407) 
* feat: support webauthn

* Update init.go

* Update user_webauthn.go

* Update UserEditPage.js

* Update WebauthnCredentialTable.js

* Update LoginPage.js

Co-authored-by: Gucheng <85475922+nomeguy@users.noreply.github.com>
 2022-07-12 20:06:01 +08:00
Bingchang Chen
208dc11d25
fix: set SessionOn always true (#877) 
* fix: set SessionOn always true

* Update adapter.go

Co-authored-by: Gucheng <85475922+nomeguy@users.noreply.github.com>
 2022-07-11 12:36:20 +08:00
Bingchang Chen
61773d3173
fix: support user-defined clientId&Secret (#862) 2022-07-06 19:27:59 +08:00
Bingchang Chen
ec29621547
feat: init from configuration file (#858) 
* feat: init from configuration file

* Update init_data.json.template

* Update init_data.go

Co-authored-by: Yang Luo <hsluoyz@qq.com>
 2022-07-05 00:36:22 +08:00
Gucheng Wang
f37fd6ba87 Fix empty arg bug in getPermanentAvatarUrl(). 2022-07-03 19:31:12 +08:00
aecra
f0431701c9
fix: fix OAuth error response (#835) 
* fix: fix OAuth error response

* fix: provide more detailed error messages for TokenError
 2022-07-01 14:53:34 +08:00