leviathonbeast/lldap
1
0
Fork 0
mirror of https://github.com/lldap/lldap.git synced 2026-03-31 15:07:48 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,114 Commits 22 Branches 11 Tags
main
Commit Graph

368 Commits

Author SHA1 Message Date
Simon Broeng Jensen 1b58ac61f4 server: fix serving of frontend after PR #1079 (#1090) 
Had changed behaviour to serve the gz compressed wasm package
with the uncompressed handler.
 2025-01-29 13:25:03 +01:00
tyami94 f46e5375df server: Allow custom path to front-end assets 2025-01-28 19:37:12 +01:00
Simon Broeng Jensen 0799b6bc26 server: include preserved case in user attribute value search 
Extends the generated UserRequestFilter with an OR'ed clause for
the attribute value in both it's original case and lowercased.
 2025-01-22 10:37:04 +01:00
Simon Broeng Jensen f5fbb31e6e server, app: Add validation for attribute names (#1075) 
This commit adds support for basic validation of attribute
names at creation, and also in the schema overview. Both
user and group attributes are validated with the same rules.

For now, attribute names will be considered valid, if they
only contain alphanumeric characters and dashes.

Validation has been added the following places:

- In graphql API, for creation of both user and group attributes.
  Request will be rejected, if attribute name is invalid.

- In frontend, before submitting a request to create a new user
  or group attribute. Rejection here will show an error message
  including a list of the invalid characters used.

As this change adds stricter validation to attributes, and, since
the rationale for this is partly compatibility with other LDAP
systems, this change also adds a warning in the schema overviews
to any attribute using invalid characters.
 2025-01-22 09:57:47 +01:00
Simon Broeng Jensen 33fb59f2f7 server: Add support for querying GroupId with LDAP filters 2025-01-20 17:07:53 +01:00
Valentin Tolmer f417427635 Prevent starting up if the JWT secret is not given 
Similarly, don't create the admin if the password is not given
 2024-12-24 19:40:26 +01:00
Valentin Tolmer 8397d536d9 chore: bump version to 0.6.2-alpha 2024-11-22 22:55:53 +01:00
Valentin Tolmer acd39d20b1 release: 0.6.1 2024-11-22 22:47:49 +01:00
Valentin Tolmer 0ddeab8caa server: Fix schema migration from v8 for sqlite and postgres 
Neither supports limits, but we can delete all the duplicate memberships and re-insert a single one
 2024-11-21 23:34:37 +01:00
Jan Düpmeier e982908768 cargo,auth,server: update opaque-ke => 0.7 2024-11-17 13:34:01 +01:00
Valentin Tolmer 713dbde4cb server: Fix the instructions to silence the key_seed warning 2024-11-14 22:27:32 +01:00
Valentin Tolmer b8c06ebd75 chore: bump version to 0.6.1-alpha 2024-11-09 22:25:13 +01:00
Valentin Tolmer 098745ebc9 release: 0.6.0 2024-11-09 21:46:49 +01:00
Valentin Tolmer 95337e2cd8 server: Remove session-wide logging, add session_uuid to message logs 2024-11-04 21:47:26 +01:00
Valentin Tolmer 143eb70bee server: Only use a single connection with SQlite 
Several writer connections can lock the DB and cause other inserts to fail.

A single connection should be enough given the usual workloads
 2024-10-30 15:35:47 +01:00
Valentin Tolmer 35fe521cbe server: Correctly handle removal of the display_name attribute 2024-10-29 15:33:46 +01:00
Valentin Tolmer c8601b9169 server: Correctly handle attempts to probe for password resets 2024-10-28 20:09:46 +01:00
Valentin Tolmer f0fcc88f1d server: Fix env warning for nested keys 2024-10-28 16:23:25 +01:00
Valentin Tolmer c08ddecd32 server: Fix missing lowercasing when changing passwords through LDAP 2024-10-28 16:06:25 +01:00
Valentin Tolmer a190fe7ddf server: return custom attributes when asked for all attributes 2024-10-26 19:07:08 +02:00
Valentin Tolmer 52c917d967 server: improve key_seed warning 2024-10-22 00:48:40 +02:00
Valentin Tolmer f01daae6a8 server: Fix env variable warning 2024-10-22 00:48:29 +02:00
Valentin Tolmer 305b272cdf app: Add support for group attributes 2024-10-22 00:37:38 +02:00
Valentin Tolmer 56eee6908e server: Add a way to print raw logs 
If the variable LLDAP_RAW_LOG is set, the logs will be both formatted with tracing_forest and printed raw
 2024-10-10 21:27:36 +02:00
Valentin Tolmer 17bcd7645b app: Clean up code, don't error on admin empty email 2024-10-05 23:10:40 +02:00
Austin Alvarado dcba3d17dc app: Add support for user-created attributes 
Note: This PR doesn't handle errors around Jpeg files very well.

Co-authored-by: Bojidar Marinov <bojidar.marinov.bg@gmail.com>
Co-authored-by: Austin Alvarado <pixelrazor@gmail.com>
 2024-09-30 23:53:14 +02:00
Valentin Tolmer 1f3f73585b server: Add logging for password resets, add name for successful opaque logins 2024-09-26 22:51:34 +02:00
Valentin Tolmer 0c6a92a8fa server: Clarify logging of login attempts and failures 2024-09-26 20:43:19 +02:00
Valentin Tolmer 10a820f2a2 server: detect anonymous binds and return a correct error 2024-09-11 22:19:58 +02:00
Valentin Tolmer 01f97f5ed4 server: clean up the expected keys 2024-09-10 23:25:33 +02:00
Valentin Tolmer f14aa2284c server: Detect unknown env variables (e.g. due to typos) 2024-09-08 21:45:36 +02:00
Valentin Tolmer 65e2103365 server: Simplify the debug print of various structs 
And use derive_more more liberally to simplify the impls
 2024-09-08 00:43:58 +02:00
Valentin Tolmer 5db0072cfa server: clarify SMTP error message 
SMTP docs for many email providers use SSL to mean SSL/TLS, and TLS to mean STARTTLS, causing endless confusion. This should hopefully help.
 2024-09-07 23:50:43 +02:00
Valentin Tolmer 1d8d3eb73f server: Fix attribute name 2024-09-07 22:27:20 +02:00
Valentin Tolmer 6cf0f6df06 server: map email and display_name from attributes into user fields 2024-08-28 00:25:23 +02:00
Valentin Tolmer b1384818d2 server: Add a is_readonly attribute to the schema 2024-08-27 23:04:24 +02:00
Valentin Tolmer 3ec44a58be server: Allow password reset every time the server starts 2024-08-26 12:53:25 +02:00
Valentin Tolmer 2c79a40a73 server: Mask the details of SMTP errors, sleep when failing to send an email 2024-08-21 16:19:13 +02:00
Valentin Tolmer dc26f97117 server: Fix compilation on Windows 2024-08-18 20:12:03 +02:00
Valentin Tolmer 09c5d9f925 server: Fix implementation of attribute present filter 
Instead of just doing a schema check, this actually looks for users that have a value for this attribute.
 2024-08-16 23:56:02 +02:00
Valentin Tolmer ee7f9c9f41 server: Update ldap3_proto dependency 2024-08-16 23:47:06 +02:00
Valentin Tolmer fa9c503de7 server: Add support for memberOf with plain user names, relax hard errors 
This should help when the client sends some invalid-looking queries as part of a bigger filter
 2024-08-16 23:21:20 +02:00
Bojidar Marinov 049a360506 server: Lookup first_name/last_name in the right list of attributes (#943) 
Note the std::mem::take(&mut user.attributes) further up that zeroes out user.attributes
 2024-07-31 23:55:07 +02:00
Valentin Tolmer 6f46ffd1e4 clippy: new fixes 2024-06-16 12:18:46 +02:00
Valentin Tolmer 22623bfab1 server: Fix user search for multiple memberOf 2024-03-18 22:02:12 +01:00
Valentin Tolmer 13720c101c server: silence clippy warnings 2024-02-27 08:22:58 +01:00
Valentin Tolmer a1eb708cf3 server: Add missing unique indices on lowercase email/group names, fix memberof lookup 2024-02-26 10:53:51 +01:00
Valentin Tolmer 5c5b87d5af app,server: Switch /reset/step1 to a POST request 
Otherwise, caching can become an issue. Also, it's not an idempotent request.
 2024-02-09 00:20:31 +01:00
Valentin Tolmer 96f5b31e0c server: Add graphQL methods to manage custom LDAP object classes 2024-02-06 22:39:05 +01:00
Valentin Tolmer 4955b7fac1 server: Add support for the custom LDAP object classes in LDAP filters 2024-02-06 22:39:05 +01:00