feat: add tzdata package in Dockerfile to fix timezone issue (#2857 )

Add tzdata to resolve possible time zone errors
fix: Dismiss google one tap after logged in by setting disableCancelOnUnmount to false (#2854 )
2025-08-26 09:10:22 +08:00 · 2024-04-07 14:27:45 +08:00 · 2024-04-05 23:39:33 +08:00 · 2024-04-05 20:10:13 +08:00 · 2024-04-02 21:54:16 +08:00 · 2024-03-30 23:24:59 +08:00
8 changed files with 74 additions and 5 deletions
--- a/1
+++ b/1
@@ -16,6 +16,7 @@ ARG USER=casdoor

 RUN sed -i 's/https/http/' /etc/apk/repositories
 RUN apk add --update sudo
+RUN apk add tzdata
 RUN apk add curl
 RUN apk add ca-certificates && update-ca-certificates

--- a/conf/app.conf
+++ b/conf/app.conf
@@ -15,6 +15,7 @@ socks5Proxy = "127.0.0.1:10808"
 verificationCodeTimeout = 10
 initScore = 0
 logPostOnly = true
+isUsernameLowered = false
 origin =
 originFrontend =
 staticBaseUrl = "https://cdn.casbin.org"
--- a/controllers/provider.go
+++ b/controllers/provider.go
@@ -141,6 +141,20 @@ func (c *ApiController) GetProvider() {
 	c.ResponseOk(object.GetMaskedProvider(provider, isMaskEnabled))
 }

+func (c *ApiController) requireProviderPermission(provider *object.Provider) bool {
+	isGlobalAdmin, user := c.isGlobalAdmin()
+	if isGlobalAdmin {
+		return true
+	}
+
+	if provider.Owner == "admin" || user.Owner != provider.Owner {
+		c.ResponseError(c.T("auth:Unauthorized operation"))
+		return false
+	}
+
+	return true
+}
+
 // UpdateProvider
 // @Title UpdateProvider
 // @Tag Provider API
@@ -159,6 +173,11 @@ func (c *ApiController) UpdateProvider() {
 		return
 	}

+	ok := c.requireProviderPermission(&provider)
+	if !ok {
+		return
+	}
+
 	c.Data["json"] = wrapActionResponse(object.UpdateProvider(id, &provider))
 	c.ServeJSON()
 }
@@ -184,11 +203,17 @@ func (c *ApiController) AddProvider() {
 		return
 	}

-	if err := checkQuotaForProvider(int(count)); err != nil {
+	err = checkQuotaForProvider(int(count))
+	if err != nil {
 		c.ResponseError(err.Error())
 		return
 	}

+	ok := c.requireProviderPermission(&provider)
+	if !ok {
+		return
+	}
+
 	c.Data["json"] = wrapActionResponse(object.AddProvider(&provider))
 	c.ServeJSON()
 }
@@ -208,6 +233,11 @@ func (c *ApiController) DeleteProvider() {
 		return
 	}

+	ok := c.requireProviderPermission(&provider)
+	if !ok {
+		return
+	}
+
 	c.Data["json"] = wrapActionResponse(object.DeleteProvider(&provider))
 	c.ServeJSON()
 }
--- a/object/user.go
+++ b/object/user.go
@@ -833,6 +833,11 @@ func AddUser(user *User) (bool, error) {
 		}
 	}

+	isUsernameLowered := conf.GetConfigBool("isUsernameLowered")
+	if isUsernameLowered {
+		user.Name = strings.ToLower(user.Name)
+	}
+
 	affected, err := ormer.Engine.Insert(user)
 	if err != nil {
 		return false, err
@@ -846,6 +851,8 @@ func AddUsers(users []*User) (bool, error) {
 		return false, fmt.Errorf("no users are provided")
 	}

+	isUsernameLowered := conf.GetConfigBool("isUsernameLowered")
+
 	// organization := GetOrganizationByUser(users[0])
 	for _, user := range users {
 		// this function is only used for syncer or batch upload, so no need to encrypt the password
@@ -869,6 +876,10 @@ func AddUsers(users []*User) (bool, error) {
 				return false, err
 			}
 		}
+
+		if isUsernameLowered {
+			user.Name = strings.ToLower(user.Name)
+		}
 	}

 	affected, err := ormer.Engine.Insert(users)
--- a/web/src/App.js
+++ b/web/src/App.js
@@ -374,6 +374,7 @@ class App extends Component {
                        });
                      }}
                      onLoginSuccess={(redirectUrl) => {
+                        window.google?.accounts?.id?.cancel();
                        if (redirectUrl) {
                          localStorage.setItem("mfaRedirectUrl", redirectUrl);
                        }
--- a/web/src/UserEditPage.js
+++ b/web/src/UserEditPage.js
@@ -13,7 +13,7 @@
 // limitations under the License.

 import React from "react";
-import {Button, Card, Col, Form, Input, InputNumber, List, Result, Row, Select, Space, Spin, Switch, Tag} from "antd";
+import {Button, Card, Col, Form, Input, InputNumber, List, Result, Row, Select, Space, Spin, Switch, Tag, Tooltip} from "antd";
 import {withRouter} from "react-router-dom";
 import {TotpMfaType} from "./auth/MfaSetupPage";
 import * as GroupBackend from "./backend/GroupBackend";
@@ -407,7 +407,17 @@ class UserEditPage extends React.Component {
            {Setting.getLabel(i18next.t("general:Password"), i18next.t("general:Password - Tooltip"))} :
          </Col>
          <Col span={22} >
-            <PasswordModal user={this.state.user} userName={this.state.userName} organization={this.getUserOrganization()} account={this.props.account} disabled={disabled} />
+            {
+              (this.state.user.name === this.state.userName) ? (
+                <PasswordModal user={this.state.user} userName={this.state.userName} organization={this.getUserOrganization()} account={this.props.account} disabled={disabled} />
+              ) : (
+                <Tooltip placement={"topLeft"} title={i18next.t("user:You have changed the username, please save your change first before modifying the password")}>
+                  <span>
+                    <PasswordModal user={this.state.user} userName={this.state.userName} organization={this.getUserOrganization()} account={this.props.account} disabled={true} />
+                  </span>
+                </Tooltip>
+              )
+            }
          </Col>
        </Row>
      );
--- a/web/src/auth/ForgetPage.js
+++ b/web/src/auth/ForgetPage.js
@@ -21,7 +21,7 @@ import * as Setting from "../Setting";
 import i18next from "i18next";
 import {SendCodeInput} from "../common/SendCodeInput";
 import * as UserBackend from "../backend/UserBackend";
-import {CheckCircleOutlined, KeyOutlined, LockOutlined, SolutionOutlined, UserOutlined} from "@ant-design/icons";
+import {ArrowLeftOutlined, CheckCircleOutlined, KeyOutlined, LockOutlined, SolutionOutlined, UserOutlined} from "@ant-design/icons";
 import CustomGithubCorner from "../common/CustomGithubCorner";
 import {withRouter} from "react-router-dom";
 import * as PasswordChecker from "../common/PasswordChecker";
@@ -443,6 +443,18 @@ class ForgetPage extends React.Component {
    );
  }

+  stepBack() {
+    if (this.state.current > 0) {
+      this.setState({
+        current: this.state.current - 1,
+      });
+    } else if (this.props.history.length > 1) {
+      this.props.history.goBack();
+    } else {
+      Setting.redirectToLoginPage(this.getApplicationObj(), this.props.history);
+    }
+  }
+
  render() {
    const application = this.getApplicationObj();
    if (application === undefined) {
@@ -456,6 +468,9 @@ class ForgetPage extends React.Component {
      <React.Fragment>
        <CustomGithubCorner />
        <div className="forget-content" style={{padding: Setting.isMobile() ? "0" : null, boxShadow: Setting.isMobile() ? "none" : null}}>
+          <Button type="text" style={{position: "relative", left: Setting.isMobile() ? "10px" : "-90px", top: 0}} size={"large"} onClick={() => {this.stepBack();}}>
+            <ArrowLeftOutlined style={{fontSize: "24px"}} />
+          </Button>
          <Row>
            <Col span={24} style={{justifyContent: "center"}}>
              <Row>
--- a/web/src/auth/GoogleLoginButton.js
+++ b/web/src/auth/GoogleLoginButton.js
@@ -52,7 +52,7 @@ export function GoogleOneTapLoginVirtualButton(prop) {
      redirectUri = `${redirectUri}?state=${state}&code=${encodeURIComponent(code)}`;
      Setting.goToLink(redirectUri);
    },
-    disableCancelOnUnmount: true,
+    disableCancelOnUnmount: false,
  });

 }
Author	SHA1	Message	Date
无别	800f0ed249	feat: add tzdata package in Dockerfile to fix timezone issue (#2857 ) Add tzdata to resolve possible time zone errors	2024-04-07 14:27:45 +08:00
xyt	6161040c67	fix: Dismiss google one tap after logged in by setting disableCancelOnUnmount to false (#2854 ) * fix: Google One Tap should be hidden after logged in * Change the call location for google.accounts.id.cancel() * fix: hide google one tap after login by set disableCancelOnUnmount to false	2024-04-05 23:39:33 +08:00
xyt	1d785e61c6	feat: Google One Tap should be hidden after logged in (#2853 ) * fix: Google One Tap should be hidden after logged in * Change the call location for google.accounts.id.cancel()	2024-04-05 20:10:13 +08:00
Yang Luo	0329d24867	feat: add isUsernameLowered to config	2024-04-02 21:54:16 +08:00
Yang Luo	fb6f3623ee	feat: add requireProviderPermission()	2024-03-30 23:24:59 +08:00
DacongDA	eb448bd043	fix: fix permission problem in provider (#2848 )	2024-03-30 23:18:03 +08:00
xyt	ea88839db9	feat: add back button in forget password page (#2847 ) * feat: add back button in forget password page * fix: can't step back when directly entering forgot password page * feat: forget password page always return to login page * feat: if has history then go back to history & change style * Update ForgetPage.js * fix: reset button position * Update ForgetPage.js * Update ForgetPage.js --------- Co-authored-by: Eric Luo <hsluoyz@qq.com>	2024-03-30 23:17:47 +08:00
Yang Luo	cb95f6977a	fix: fix PasswordModal error when changing username	2024-03-30 12:28:55 +08:00
Eric Luo	9067df92a7	feat: revert "feat: Support metamask mobile login" (#2845 ) This reverts commit `bfa2ab63ad`.	2024-03-30 00:36:25 +08:00
HGZ-20	bfa2ab63ad	feat: Support metamask mobile login (#2844 )	2024-03-30 00:08:52 +08:00