Commit Graph

199 Commits

Author SHA1 Message Date
Khanh Ngo
10d915ef92 Merge branch 'master' of github.com:ngoduykhanh/PowerDNS-Admin 2018-11-21 10:24:48 +07:00
Khanh Ngo
5f049debe5 Adding Flask-SeaSurf module for CSRF protection. 2018-11-21 10:24:33 +07:00
Robert Kerr
6395d81916 Fix typo Use -> User 2018-11-12 20:25:56 +00:00
ymage
f28b501c7c Add missing Remember Me input name 2018-11-05 01:19:51 +01:00
Khanh Ngo
d3972b659a Add record helper for TXT type. #380 2018-10-30 09:55:31 +07:00
Khanh Ngo
e273921195 Merge remote-tracking branch 'chriscpritchard/master' 2018-10-25 15:26:42 +07:00
Khanh Ngo
a39f5c622c
Avoid searching for AD user's memberOf while it is missing and LDAP_GROUP_SECURITY_ENABLED is ON 2018-10-24 13:30:19 +07:00
Khanh Ngo
95b4de65dd
Add validation for Ldap operation group input 2018-10-24 11:23:19 +07:00
Chris Pritchard
8a20d3f2d8
migrated to authlib 2018-10-22 02:33:46 +01:00
Chris Pritchard
396ce14b9f
OIDC (#1)
Implemented OIDC using authlib
2018-10-21 23:38:12 +01:00
odumasFR
de3d1b3665
Merge branch 'master' into activedirectory_authent 2018-10-09 08:31:18 +02:00
odumasFR
2e5013ae73
Resolve conflict for merge
Typo correction
2018-10-05 08:46:14 +02:00
Josh Soref
e81a44fbc1 spelling: requirement 2018-10-02 07:25:26 +00:00
Josh Soref
3c7da371d2 spelling: privilege 2018-10-02 07:23:41 +00:00
Josh Soref
2efb674230 spelling: comparison 2018-10-02 07:06:06 +00:00
Josh Soref
5909de99e9 spelling: admin 2018-10-02 06:56:50 +00:00
Olivier DUMAS
bee6d1560f Do not use service login/password for AD authentication 2018-09-12 17:28:05 +02:00
Khanh Ngo
9a4eebfd42
Fix sidebar toggling 2018-09-10 14:56:05 +07:00
Khanh Ngo
ccd2d8c31a Code adjustment as LGTM.com 2018-09-06 11:35:54 +07:00
Khanh Ngo
67dd626c65
Fix the user role checking in History routes 2018-09-04 17:58:13 +07:00
Khanh Ngo
c8d72f5bba
Merge pull request #345 from ngoduykhanh/user_role_adjustment
Adding Operator role and Code adjustment
2018-09-04 17:42:55 +07:00
Khanh Ngo
902e63a64e
Fixing typo 2018-09-04 13:10:55 +07:00
Khanh Ngo
fe07030487
Only Administrator users can remove the history 2018-09-04 13:02:19 +07:00
Khanh Ngo
0081adff36
Sort record list alphabetically if python version < 3.6 2018-09-04 08:57:41 +07:00
Khanh Ngo
26c2b5e169
Adjustment in setting handler to work without initial DB. Discussed in #350 2018-09-03 17:27:09 +07:00
Khanh Ngo
c13d616a7f
Merge pull request #353 from tmuncks/user-dropdown-colors
Change user-dropdown button colors
2018-09-03 11:28:44 +07:00
Thomas M Steenholdt
2dedf54991 Change user-dropdown button colors
Making it a little more evident, that there are buttons there.
2018-09-02 12:29:23 -02:00
Khanh Ngo
c7689e7ce7
Fix domain template record modification #346 2018-09-02 17:01:43 +07:00
Khanh Ngo
3481af149b
Add option to allow user to create domain 2018-09-01 17:53:05 +07:00
Khanh Ngo
43830e5e63
Fix js code as suggestion from LGTM 2018-08-31 21:57:52 +07:00
Khanh Ngo
3457d9214a Adding Operator role 2018-08-31 11:57:06 +07:00
Khanh Ngo
07e1bcdc47
Bug fixes. Adjustment in user input validation 2018-08-25 14:53:10 +07:00
Khanh Ngo
b338b64795
Update basic help for setting section 2018-08-22 17:45:37 +07:00
Khanh Ngo
421ea627d8
#237. Allow LDAP user to use OTP 2018-08-22 09:43:33 +07:00
Khanh Ngo
9506315a46 manage records_allow_to_edit setting in DB 2018-08-22 08:36:53 +07:00
Khanh Ngo
74a7b5a3b7 Migrate more config values to db 2018-08-21 13:26:27 +07:00
Khanh Ngo
8af7a6ac9e
Adjustment in travis ci configs. Fix importing during first time running db upgrade 2018-08-20 17:21:32 +07:00
Khanh Ngo
0b7580c82f
Read powerdns api setting from DB 2018-08-20 09:59:19 +07:00
Khanh Ngo
f8f4ddcc85
Add validation for authentication setting form 2018-08-19 22:08:14 +07:00
Khanh Ngo
babf62bae0
Fix Github/Google oAuth 2018-08-19 15:29:50 +07:00
Khanh Ngo
ada6f844ff
Read LDAP config from DB instead of file. Adjustment in site titles 2018-08-18 22:42:18 +07:00
Khanh Ngo
4b9349c83e
Create DB config for pdns and authentication setting 2018-08-18 18:41:59 +07:00
Khanh Ngo
7b5c74cc7d
Merge pull request #330 from tmuncks/add-user-edit
Add option to edit users from the comfort of the UI
2018-08-14 08:52:20 +07:00
Thomas M Steenholdt
fe4616d609 Do user.otp_secret check properly 2018-08-13 01:33:29 -02:00
Thomas M Steenholdt
539e6bc562 Fix double refresh when activating 2FA
When toggling Two Factor Authentication, it often takes a few tries to get it to work.
The toggle function ends up reloading the page in two different places, effectively creating a race condition.

This fixes that problem

(cherry picked from commit 6b9fc897bc02ff857a968e76ed49f1b0f2108bb5)
2018-08-12 07:48:34 -02:00
Thomas M Steenholdt
0ac33aa3c4 Add option to edit users from the comfort of the UI
Update user management feature to allow editing user details directly in the admin user interface.

Also added an option to reset the two factor authentication data of a user, for when that's needed (lost device, technical issues etc).

(cherry picked from commit 3139616282a18c11463c6ecf78888417b2ac1c35)
2018-08-12 07:47:37 -02:00
Khanh Ngo
178e25f8f7
Fix domain table modal to prevent removing several record at the same time 2018-07-05 13:58:27 +07:00
Khanh Ngo
d9baaa4d60 Fix #302 2018-07-05 09:57:08 +07:00
Thomas M Steenholdt
31305a3048 Add setting to allow/disallow quick editing of records
Adds an `allow_quick_edit` setting, using the improved setting handling logic from PR #287 to toggle whether records are editable by simply clicking the row or not.

Aims to fix #288
2018-06-24 00:25:33 -02:00
Thomas M Steenholdt
6c8a3ac36c Move setting definitions into code (rather than database).
For a setting to be useful, the code has to be able to make sense of it anyway. For this reason it makes sense, that the available settings are defined within the code, rather than in the database, where a missing row has previously caused problems. Instead, settings are now written to the database, when they are changed.

So instead of relying on the database initialization process to create all available settings for us in the database, the supported settings and their defaults are now in a `defaults` dict in the Setting class. With this in place, we can stop populating the `setting` table as a part of database initialization and it will be much easier to support new settings in the future (we no longer need to do anything to the database, to achieve that).

Another benefit is that any changes to default values will take effect automatically, unless the admin has already modified that setting to his/her liking.

To make it easier to get the value of a setting, falling back to defaults etc, a new function `get` has been added to the Setting class. Call it as `Setting().get('setting_name'), and it will take care of returning a setting from the database or return the default value for that setting, if nothing was found.

The `get` function returns `None`, if the setting passed to the function, does not exist in the `Setting.defaults` dict - Indicating that we don't know of a setting by that name.
2018-06-21 22:06:38 -02:00