a954800869
fix(api): fixed internal server error being generated from invalid UTF-8 encoded X-API-KEY
2023-03-22 01:27:52 +00:00
92033aa109
Updated project README to include organization sponsorship reference.
2023-03-21 19:11:30 -04:00
271f483062
Updated project README to include organization sponsorship reference.
2023-03-21 19:09:48 -04:00
1762a5481b
Updated build-and-publish workflow to exclude non-relevant project paths.
2023-03-19 17:06:01 -04:00
419bf35892
Updated build-and-publish workflow to exclude non-relevant project paths.
2023-03-19 17:05:30 -04:00
a187d70470
Updated CodeQL workflow to exclude non-relevant project paths.
2023-03-19 17:03:02 -04:00
f6009ba47b
Updated CodeQL workflow to exclude non-relevant project paths.
2023-03-19 17:02:45 -04:00
55faefeedc
Updated stale thread workflow with updated message verbiage.
...
Updated lock thread workflow to properly exclude threads with specific labels.
2023-03-19 15:11:01 -04:00
236487eada
Updated Security section header of the project README.
2023-03-19 15:11:01 -04:00
976f52ce7a
Corrected minor formatting issue with project's Code of Conduct policy.
2023-03-19 15:11:01 -04:00
4e54b5ae0a
Added GitHub sponsors configuration.
2023-03-19 15:11:01 -04:00
ba19943c64
Updated stale thread workflow with updated message verbiage.
...
Updated lock thread workflow to properly exclude threads with specific labels.
2023-03-19 15:09:52 -04:00
6b9638ca19
Updated Security section header of the project README.
2023-03-19 12:39:44 -04:00
e11f55523d
Corrected minor formatting issue with project's Code of Conduct policy.
2023-03-19 12:36:44 -04:00
506a75300a
Added GitHub sponsors configuration.
2023-03-18 21:45:28 -04:00
80b191bc0d
Updated project README to include donation section.
2023-03-18 20:55:41 -04:00
5acbabaed5
Updated project README to include donation section.
2023-03-18 20:55:20 -04:00
0a66089cad
Updated dependabot configuration to target the dev branch.
2023-03-18 20:49:15 -04:00
522705a52b
Updated dependabot configuration to target the dev branch.
2023-03-18 20:49:01 -04:00
519b8579db
Merge pull request from GHSA-6c8m-4h29-hmmh
...
fix: fix for CVE-2023-0286 & CVE-2023-23931 - cryptography update to 39.0.2
2023-03-18 20:00:05 -04:00
e7547ff8d3
fix: fix for CVE-2023-0286 & CVE-2023-23931 - cryptography update to 39.0.2
2023-03-18 23:56:22 +00:00
b71f9ae5b4
Merge pull request from GHSA-3pcw-h28g-9w3v
...
Upgrade setuptools to 65.5.1 (CVE-2022-40897 fix)
2023-03-18 19:53:41 -04:00
78e8d9950d
fix: upgrade setuptools to fix CVE-2022-40897
2023-03-18 23:38:48 +00:00
ca4bf18f67
Updated invalid value in dependabot workflow.
2023-03-18 19:21:14 -04:00
1918f713e1
Merge remote-tracking branch 'origin/dev' into dev
2023-03-18 19:20:47 -04:00
33614ae102
Updated invalid value in dependabot workflow.
2023-03-18 19:20:36 -04:00
d3da1e43ed
Fix LDAP group restrictions by allowing the use of any combination of groups. ( #1463 )
2023-03-18 19:15:01 -04:00
138532fb95
fix: allow the specification of any combination of groups in LDAP group security configuration
...
Previous behavior required the specification of all three group security groups before the
"Save Settings" button would be enabled.
This adds a check into users.py which checks that the group is set before searching and
removes the javascript preventing the specification of any combination of groups.
Tested:
- Tested all combinations on AD after MR 1238
- Tested all combinations on OpenLDAP
- Tested enabling the Group Security with no groups set which correctly prevents login
Resolves #1462
2023-03-18 20:30:52 +00:00
c24b4b047d
Merge pull request #1461 from nkukard/nkupdates-fix-session-clear
...
fix: fixed session clearing and let logout_user take care of cleanup
2023-03-18 16:05:20 -04:00
defb3e5a48
Merge pull request #1238 from melck/fix-ldap-ad-nested-member
...
Fix LDAP user group search for nested groups #1238
2023-03-18 16:03:48 -04:00
f44ff7d261
fix: fixed session clearing and let logout_user take care of cleanup
...
It seems when logging in and logging out, then logging back in, setting
the session timeout to 5 minutes, then waiting for expiry can cause
a situation when using SQLA-based sessions which results in a NULL field
in the database and causes a persistent 500 Internal Server Error.
As per issue 1439 here is a fix found by @raunz.
Resolves #1439 .
Tested for about 8 hours and tons and tons of expired sessions, could not
reproduce with the fix applied.
2023-03-18 19:14:58 +00:00
340e84ab89
Updated MegaLinter workflow to include a manual dispatch option.
2023-03-18 08:52:39 -04:00
2606ad0395
Updated various yaml files to include proper opening lines.
...
Tweaked the name of the stale threads workflow.
2023-03-18 08:48:34 -04:00
d716f8cc88
Updated various yaml files to include proper opening lines.
...
Tweaked the name of the stale threads workflow.
2023-03-18 08:48:07 -04:00
1aac3c0f0d
Updated the stale issue / PR workflow to include better verbiage for the contribution guide.
...
Also updated the stale issue / PR workflow to exclude security vulnerabilities.
2023-03-17 18:25:33 -04:00
2ca712af49
Updated the stale issue / PR workflow to include better verbiage for the contribution guide.
...
Also updated the stale issue / PR workflow to exclude security vulnerabilities.
2023-03-17 18:25:05 -04:00
92f5071a84
Corrected URL mistake in stale issue / PR workflow.
2023-03-17 18:16:28 -04:00
763f06a830
Corrected URL mistake in stale issue / PR workflow.
2023-03-17 18:16:06 -04:00
98e6b8946f
Updated labels for the issue templates.
2023-03-17 18:03:34 -04:00
3294ed80f3
Updated labels for the issue templates.
2023-03-17 18:03:18 -04:00
1bfb5429a1
Updated stale issue / PR workflow to include proper exceptions.
2023-03-17 17:57:18 -04:00
687571101f
Updated stale issue / PR workflow to include proper exceptions.
2023-03-17 17:56:59 -04:00
1358e47b5b
Corrected project name reference mistake in contribution guide.
2023-03-17 17:48:30 -04:00
ae16e9868a
Corrected project name reference mistake in contribution guide.
2023-03-17 17:48:07 -04:00
a2e5c7d5bc
Corrected an input type mistake in the bug report and feature request templates.
...
Corrected URL mistake in the issue template config.yml file.
Updated project README policy reference URLs to use master branch.
2023-03-17 17:29:45 -04:00
fc6d8505b7
Corrected an input type mistake in the bug report and feature request templates.
...
Corrected URL mistake in the issue template config.yml file.
Updated project README policy reference URLs to use master branch.
2023-03-17 17:29:05 -04:00
31c8577409
Updated project README to include reference to new security policy.
2023-03-17 17:22:08 -04:00
6681d0f5b0
Relocated new security policy to the project root to meet GitHub feature expectations.
2023-03-17 17:22:08 -04:00
0f7c2da814
Updated project README to include references to the new security policy.
...
Moved the project's code of conduct out of the contributions guide and into the appropriate policy file.
Updated the contribution guide to follow the NetBox project format.
Added various issue templates based on the NetBox project formats but updated for PDA.
Added additional GitHub workflows to handle stale and closed issue and PR management.
Removed legacy stale issue workflow that was not in use.
2023-03-17 17:22:08 -04:00
23d6dd1fde
Updated project README to include reference to new security policy.
2023-03-17 16:48:11 -04:00
