Vadim Aleksandrov
6f4cc42805
Fix issue with LDAP search filter. It is necessary to bracket the expression with additional filter conditions
2018-02-09 15:32:50 +03:00
Vadim Aleksandrov
cff534890f
Deny to delete 'SOA' record
2018-02-07 22:47:52 +03:00
Vadim Aleksandrov
52a5789c85
Add first working draft of domain templating functionality
2018-02-07 22:30:29 +03:00
thomasDOTde
049a8a4547
optimized domain permission check for normal users
2017-12-04 22:18:28 +01:00
NomenNescio
620b0b55e8
replaced non-existent method with code that checks whether user has rights on the domain at hand
2017-12-04 14:00:30 +01:00
thomasDOTde
971d6b2e28
fixed issue when not using LDAP
2017-11-10 12:28:42 +01:00
thomasDOTde
d65efe477a
ensure authentication isn't possible without password
2017-11-06 23:36:11 +01:00
thomasDOTde
9e719a3a98
fixed merge
2017-11-03 00:00:04 +01:00
Thomas
2354eb69c3
Merge branch 'master' into ldap_group_security
2017-11-02 23:23:36 +01:00
Paul Hooijenga
9a4021d5e5
Add access control for non-admin users
...
(cherry picked from commit 6e5b704)
2017-11-01 21:40:15 +01:00
Paul Hooijenga
5d09daf8eb
Fix dashboard domain query for non-admin users
2017-09-15 15:14:04 +02:00
Maysara Abdulhaq
28c7a195e8
add LDAP direct binding and GROUP_SECURITY
2017-09-03 14:23:18 -04:00
Maysara A
501c5292ab
binding with user credentials instead of preset LDAP user/pass
2017-07-24 21:08:25 -04:00
Khanh Ngo
b6ed658cbd
Merge pull request #156 from petersipos/feature/automatic-reverse-domain-creation
...
Feature/automatic reverse domain creation
2016-12-10 12:38:44 +07:00
SIPOS, Peter
72e3a82e9e
Change reverse domain creation order
...
With refactoring the get_reverse_domain_name
function, we change the reverse domain checking to
a reverse order. In this way we check the lowest class
(more specific) reverse zone first. When an existing domain found we use it to create the reverse PTR records. If no one existing can be find, The most specific address will be used.
2016-11-28 08:39:07 +01:00
SIPOS, Peter
e6e3c39778
Add get_reverse_domain_name functionality
...
In this way the reverse it is possible to create
auto-ptr records in higher ip classes (eg. class A in IPv4).
Only works with existing higher class domain.
If is isn't find higher class domain, create a lowest class domain, and add there the reverse PTRs.
Also works with IPv6!
2016-11-21 19:44:10 +01:00
SIPOS, Peter
b9f95da906
Implement of checking existing higher class ip reverse zones
...
iteratively checking of existing domains with higher IP
classes. When this function find an existing higher class
domain return with that reverse address. eg. 192.in-addr.arpa
If it is not find any existing higher class domain it returns with the lowest class domain reverse domain name. eg, 39.168.192.in-addr.arpa
2016-11-21 19:40:43 +01:00
SIPOS, Peter
d7db0d5e7a
Fix create reverse domain function
...
Using of wrong variable
2016-11-21 19:36:43 +01:00
SIPOS, Peter
c53d9ace89
Extend reverse domain regexp with classes
...
With this modification it can be possible, to detect
custom IP classes for domains. It just need to
modify the multipler in regexp {4} or {1}.
In the future it will works automaticly, but not now
2016-11-21 16:55:03 +01:00
SIPOS, Peter
cc1a3def5d
Add setting read and extra check to adding an auto-ptr record
...
It is using domain sepcific or global auto-ptr setting
to determine the using of auto-ptr creation.
2016-11-21 13:46:54 +01:00
SIPOS, Peter
3911935e3b
Add an extra check into reverse domain creation
...
and also import strtobool
2016-11-21 13:45:17 +01:00
SIPOS, Peter
94b0d26142
Delete settings related to domain on domain deleting
...
Because this bug domain deleting isn't possible when
a domain specific attribute is set (eg. dyndns).
This modification delete domain settings before domain
deleting.
2016-11-21 13:30:16 +01:00
SIPOS, Peter
c81deb0044
Fix SOE-EDIT-API value in reverse-domain creation
2016-11-18 08:30:24 +01:00
SIPOS, Peter
7d72cf6088
Put a "." char in a safe way to the records name fields end
...
First of all we cut all of dot char at the end of the rstring and than we put one there.
this way we make sure that our string contains just
one dot at its end.
2016-11-17 15:04:07 +01:00
SIPOS, Peter
3dbbfc16ce
Implement auto-ptr deleting functionality
...
this way we safely remove the corresponding auto created reverse ptr
2016-11-17 11:37:09 +01:00
SIPOS, Peter
58ef114f7f
Move auto-ptr functionality into a new function
2016-11-17 11:35:09 +01:00
SIPOS, Peter
43f1289b98
Remove unnecessary record field in Record.delete()
...
refferring to pdns api documentation the fields inside the
of the entry delete json is not necessary.
2016-11-17 11:32:28 +01:00
SIPOS, Peter
d224bd6798
Fix typo error
2016-11-17 11:29:01 +01:00
SIPOS, Peter
3d7511f013
Add reverse PTR record adding to reverse domain
...
At this point we just create the new records and we don't
care about the record updates, so now this is a little bit buggy.
2016-11-16 15:15:35 +01:00
SIPOS, Peter
0e8a41f58e
Move dns.reversename import to head of models.py
...
It is necessary because we use this function it the
pretty_ipv6_ptr don't turned on.
2016-11-16 15:13:02 +01:00
SIPOS, Peter
f430ed014b
Add reverse domain creation into Record.apply()
...
When a record successefully added to a domain, it will
try to create a reverse lookup domain for that record.
In this point we aren't create the records yet...
2016-11-16 14:12:40 +01:00
SIPOS, Peter
562b7e2053
Add create_reverse_domain function to Domain
...
This function will create automatically the reverse lookup
domain for the applied record of a Domain.
And also grant the privileges from the original Domain.
2016-11-16 14:09:13 +01:00
SIPOS, Peter
bbb71f401c
Add try block into domain.get_id_by_name function
...
If we try to check if a domain exists, and we fetch with
get_id_by_name() function it will return with None if
the domain not exists, and return the id when yes.
2016-11-16 14:03:14 +01:00
bergzand
28f3dba050
Fix issue #133 . Store hash as '*' for external users
...
Set password to '*' for users created by the create_user method. Should cause an invalid password hash for non local users added to the database
2016-09-28 10:50:37 +02:00
Felix Kaechele
d7a218a212
Ensure correct encoding when hashing and verifying
...
Depending on the database backend the string might not be UTF-8 encoded.
This makes sure that the hashing function works regardless of that.
Signed-off-by: Felix Kaechele <felix@kaechele.ca>
2016-09-17 07:25:05 -07:00
Felix Kaechele
9b8c85c5c1
Replace onetimepass with pyotp
...
pyotp is more common and better maintained
Signed-off-by: Felix Kaechele <felix@kaechele.ca>
2016-09-17 06:37:20 -07:00
Khanh Ngo
460b4b65fe
Adjust field length in History table
2016-09-13 14:07:48 +07:00
CMGS
04e068787a
refactor, make model more pythonic
2016-08-25 14:35:48 +08:00
Khanh Ngo
4a8e607ed2
Adjustment to not require PRETTY_IPV6_PTR config key by default.
2016-08-25 10:00:47 +07:00
Khanh Ngo
02bd378391
Merge pull request #118 from jallakim/pretty-ipv6-ptr
...
Pretty IPv6 PTR. Use the actual IPv6 address when editing PTR.
2016-08-25 09:51:10 +07:00
CMGS
4a3c4b53cc
set user object id after created
2016-08-23 10:52:35 +08:00
Joachim Tingvold
8908c7d69b
Cosmetics.
2016-08-19 23:07:36 +00:00
Joachim Tingvold
671a319e93
Pretty IPv6 PTR. Use the actual IPv6 address when editing PTR.
...
Rather than dealing with ip6.arpa-dotted-strings from hell, you can
now edit IPv6 PTR-records using the IPv6 address.
2016-08-19 23:04:20 +00:00
Joachim Tingvold
28796ed286
Fix issue where records could get deleted when different TTL.
2016-07-27 15:01:23 +00:00
Joachim Tingvold
0d1aa7971b
Use correct TTL in updates.
2016-07-26 18:34:56 +00:00
Ivan Filippov
d093c1976d
Add per-domain settings. Allows ondemand dyndns A records. Fixes #61 .
...
This commit adds a new table to store per-domain settings, so a database
migrate/upgrade will be required. The first use-case is to allow dyndns
updates to create a record if one doesn't yet exist but only if the
per-domain setting is set.
2016-07-05 19:22:57 -06:00
Khanh Ngo
6307656e97
Fix dnssec update when reload the domain information.
2016-07-04 22:12:24 +07:00
CaptainQwark
9db71eaef5
fix for updates on pdns 4.0.0-rc2+ and remove flask.ext deprecation warnings
2016-07-01 21:46:13 +02:00
Khanh Ngo
e3bf71f496
Remove print statement
2016-06-29 00:25:55 +07:00
Khanh Ngo
c7efb85feb
Fix bugs in #53
2016-06-29 00:22:11 +07:00
Khanh Ngo
7f5a57f80c
Bug fix
2016-06-26 20:53:29 +07:00
Khanh Ngo
981c38cacb
Add dyndns feature
2016-06-20 16:32:14 +07:00
Khanh Ngo
f4e2c3b3df
Add OTP authentication feature
2016-06-16 15:36:05 +07:00
Khanh Ngo
af7402096e
Add the adjustment from @CaptainQwark in PR #49
2016-06-16 10:31:36 +07:00
Ivan Filippov
39564f9c6e
Add 'default_record_table_size' setting to allow changing table size.
...
Fixes #36 .
2016-06-08 19:23:08 -06:00
Khanh Ngo
b0e863863c
Adjustment to add multiple records which have same name and type. Add trailing dot in the record's content
2016-06-08 11:00:55 +07:00
Khanh Ngo
fb51bce1f8
Adjustment to update records in pdns 4.x.x
2016-06-07 17:05:41 +07:00
Khanh Ngo
23972ff09f
Adjustment to support add/show domains in pdns v4.x.x
2016-06-07 15:20:56 +07:00
Khanh Ngo
382807fdd7
Adjustment to support new api url format in pdns 4.x.x
2016-06-07 13:50:31 +07:00
Ivan Filippov
98ddd7302b
Add initial support for PDNS-Admin settings management.
2016-04-29 15:36:37 -06:00
xbulat
437a9fe1b6
Add more options to ldap
2016-04-28 15:53:50 +00:00
Ivan Filippov
a0483adf63
Merge branch 'master' into ldap_group_security
2016-04-19 13:13:07 -06:00
Khanh Ngo
a9cd4911b9
Fix dnssec data type to be compatible with Postgresql
2016-04-14 12:19:02 +07:00
Ivan Filippov
942ca47103
Merge remote-tracking branch 'upstream/master' into ldap_group_security
...
Conflicts:
app/models.py
config_template.py
2016-04-13 09:56:46 -06:00
Khanh Ngo
53b4fe2f8b
Adjustment in application config
2016-04-13 11:13:59 +07:00
Ivan Filippov
5914c3cc86
Add group-based security implementation for non-AD LDAP servers.
2016-04-12 21:12:51 -06:00
Ivan Filippov
05944e8585
Don't require LDAP group parameters if LDAP_GROUP_SECURITY is not chosen
2016-04-11 10:22:40 -06:00
Ivan Filippov
d417cfb8dc
Initial support for LDAP group based security.
2016-04-11 06:11:02 -06:00
Ivan Filippov
64531999f6
Fixes issue ngoduykhanh/PowerDNS-Admin#11 .
...
This change populates the 'role' and 'setting' tables to their initial
states via the create_db.py script which removes a step from the initial
setup. We now also search for roles instead of expecting them to be at
certain IDs.
2016-04-11 03:40:44 -06:00
Khanh Ngo
990bbe5260
Add DNSSEC information into domain list. Adjustemnt in domain list table
2016-03-24 20:01:08 +07:00
Chuyen Vo
02323d2fad
Fix AD searchfilter
2016-03-17 17:45:50 +07:00
Chuyen Vo
7c6801158d
Update models.py
...
Update AD search filter
2016-03-17 10:35:53 +07:00
Khanh Ngo
a4df1e47fe
Allow to set SOA-EDIT-API option when create new domain (zone)
2016-03-05 17:04:12 +07:00
Khanh Ngo
c94e24c985
Adjustment to add multiple records which described issue #5
2016-02-11 16:54:15 +07:00
Khanh Ngo
0df70276ea
Add default priority in record data used by previous pdns version
2016-02-09 15:18:58 +07:00
Khanh Ngo
52bb2b2208
Fixing bug in checking user password in Default Aunthentication method
2015-12-25 11:23:52 +07:00
Khanh Ngo
9d65e2ad17
Change to promote first register user to Administrator
2015-12-17 22:35:04 +07:00
Khanh Ngo
5d06195795
Adjustment in user_profile template. Add avatar uploading support
2015-12-17 00:50:28 +07:00
Khanh Ngo
28882b57b1
Add UserProfile page
2015-12-16 14:21:30 +07:00
Khanh Ngo
2dac8205f6
Initial commit
2015-12-13 16:34:12 +07:00