778 Commits (084dcd69d1591586ee4752101e675d5f0ac6dcdc)

Author	SHA1	Message	Date
NGPixel	084dcd69d1	fix: strip directory traversal sequences from asset paths	4 years ago
NGPixel	b0f61d6605	feat: rocket.chat auth module	4 years ago
Иван	79c5b8fac2	fix: security html module removes allow attribute from iframes (#2354) ... * fix: secure html module removes allowfullscreen, allow and frameborder attributes from iframes * Apply suggestions from code review fix: remove deprecated attributes for iframe in secure html module Co-authored-by: Nicolas Giard <github@ngpixel.com>	4 years ago
Riccardo Re	660b78d9e2	fix: support permissions by tags for basic db search engine (#2416) ... This code will allow the "search" component to correctly filter pages by usergroup permissions based on tags instead of paths Co-authored-by: Riccardo Re <riccardo.re@clevermind.cloud>	4 years ago
NGPixel	1404d6343e	fix: API key incorrectly forces token revalidation	4 years ago
NGPixel	8f6cba262f	fix: draw.io svgs are no longer removed with linebreaks (#2415)	4 years ago
NGPixel	02c3c66084	fix: checkExclusiveAccess incorrectly includes root admin	4 years ago
NGPixel	7c0d6e2883	fix: prevent write:groups from self-promoting	4 years ago
NGPixel	f988c5f811	fix: logout URL endpoint option for oauth2 module	4 years ago
NGPixel	9009816290	fix: 2fa qr code - handle special chars in site title	4 years ago
NGPixel	aa96e97028	fix: force lowercase for email on local auth	4 years ago
NGPixel	5295e413be	fix: bypass page rule check for global permission check + handle missing page extra field	4 years ago
Rus	68d31af7af	fix: discord auth module new URL. (#2390) ... Change "discordapp.com" to "discord.com"	4 years ago
NGPixel	78417524b3	feat: ldap avatar support	4 years ago
NGPixel	794ecc6ef6	fix: new install local auth not enabled (#2375)	4 years ago
NGPixel	9f1ba0a32f	fix: elastic apm rum client script	4 years ago
NGPixel	af054257bd	fix: 2.5.108 migration (2)	4 years ago
NGPixel	0ce63c8ef7	fix: 2.5.108 migration	4 years ago
NGPixel	60f2a2a8d9	fix: migration error for new installs	4 years ago
NGPixel	ef739de970	feat: purge history utility	4 years ago
NGPixel	8490fc1267	feat: handle disabled auth strategies	4 years ago
NGPixel	17f8071abe	fix: LDAP missing reqToCallback	4 years ago
NGPixel	062a0b7979	feat: logout by auth strategy + keycloak implementation	4 years ago
jaljo	cda1f1e805	feat: export creation date in dumped content (#2345) ... * Export creation date in dumped content * date_creation -> dateCreated Co-authored-by: Joris Langlois <joris.langlois@knplabs.com>	4 years ago
NGPixel	ae733392f3	feat: password reset	4 years ago
NGPixel	4dcf664040	fix: handle removed auth strategies	4 years ago
NGPixel	e319355017	feat: enable/disable TFA per user	4 years ago
NGPixel	32d67adee1	feat: social login providers with dynamic instances	4 years ago
moonkey124	a7ddafd4aa	fix: incorrect error name for 1017 (#2331) ... Fixed a copy and paste mistake ***NO_CI***	4 years ago
NGPixel	8c205b6950	fix: site title check + UI fixes + 2FA setup on account verify	4 years ago
NGPixel	f72530bf84	refactor: deps update + 2FA setup + verify	4 years ago
Dan Nicholson	d5d368cd33	feat: fix + enable OIDC auth method (#2282) ... * fix: pass userinfo URL in oidc strategy The userinfo URL from the definition was not being provided to the passport strategy, which resulted in a type error trying to resolve the user's profile. Furthermore, the name of the defined URL was inconsistent with all other authentication method URLs. * fix: pass all necessary scopes to oidc auth method When no scopes are provided, passport-openidconnect uses only `openid`, which does not contain the username or email address. Include `profile` and `email` to ensure the necessary claims are included. * fix: update oidc method to call processProfile correctly Now the profile object and providerKey are passed to processProfile. The usernameClaim no longer has any use as the email address is the username. * fix: mark oidc authentication method as available	4 years ago
Marks Polakovs	95b6a7ad82	fix: resolve tags on pages in GraphQL (#2247)	4 years ago
Seyed Sajad Kahani	15bca54bdf	fix: change language in edit, history and source pages (#2194) ... * change language in edit, history and source pages * fix: remove unnecessary i18n locale switch for download page Co-authored-by: Nicolas Giard <github@ngpixel.com>	4 years ago
Higor Tavares	06c372d53f	fix: foreign key constraint when page have comments (#2199) ... * Solving foreing key contraint when page have comments * Update pages.js remove indentation changes Co-authored-by: Higor Tavares <paulo.freire@dellead.com>	4 years ago
NGPixel	26af63a80b	fix: login input hints	4 years ago
NGPixel	4cd6fe8a56	fix: unauthorized admin should receive 403 code	4 years ago
NGPixel	4f16dd0c81	fix: admin permissions + restrict nav settings	4 years ago
NGPixel	10f17c5712	feat: redirect on login based on group	4 years ago
NGPixel	be499e5795	fix: auth strategy dependent username label	4 years ago
NGPixel	52d0af19b4	feat: diagram rendering + post-processor (wip)	4 years ago
Regev Brody	b2ff064d34	fix: stream assets from storage local locations (#2087)	4 years ago
NGPixel	57f5cbd5b6	misc: knex update for mssql constraint bug	4 years ago
NGPixel	1ced9649c7	feat: enforce 2fa admin setting + hide local on login screen	4 years ago
NGPixel	b2f292cc39	fix: MSSQL migration 2.5.1	4 years ago
NGPixel	31661b2cb3	fix: token renewal date	4 years ago
NGPixel	b475795595	feat: login bg + bypass + hide local option	4 years ago
NGPixel	5282a82afe	fix: wait for sideload locales before server start (#1248)	4 years ago
Nicolas Giard	c009cc1392	feat: new login experience (#2139) ... * feat: multiple auth instances * fix: auth setup + strategy initialization * feat: admin auth - add strategy * feat: redirect on login - group setting * feat: oauth2 generic - props definitions * feat: new login UI (wip) * feat: new login UI (wip) * feat: admin security login settings * feat: tabset editor indicators + print view improvements * fix: code styling	4 years ago
Regev Brody	1c4829f70f	fix: tags filtered by access (#2100)	4 years ago