powerdns-admin

mirror of https://github.com/cwinfo/powerdns-admin.git synced 2025-06-14 20:16:05 +00:00

Author	SHA1	Message	Date
jbe-dw	fc56a168c8	Merge pull request #1174 from gunet/ping-no-login-required Login requirement removal for /ping endpoint	2022-04-25 16:22:21 +02:00
ManosKoukoularis	5040cf5282	Merge pull request #1159 from AdvanticGmbH/html_entity_domain_fix Decode domain record data and comment from HTML entity to text	2022-04-25 12:49:10 +03:00
KostasMparmparousis	4d6c6224b4	Login requirement removal for /ping endpoint	2022-04-20 13:31:23 +03:00
Vasileios Markopoulos	e891333971	Merge pull request #1166 from LordVeovis/fix/saml Fix broken SAML login from `9c00e48f`	2022-04-13 10:16:58 +03:00
Vasileios Markopoulos	c9c82d4244	Merge pull request #1118 from cropalato/master Fixing AD login if there is a infinity loop in memberOf groups.	2022-04-13 10:15:54 +03:00
Veovis	bd92c5946c	Fix broken SAML login from `9c00e48f`	2022-04-12 17:14:54 +02:00
Ricardo Melo	ee0511ff4c	[Fix] AD recursive problem - Fixing #1011[https://github.com/PowerDNS-Admin/PowerDNS-Admin/issues/1011]	2022-04-11 08:49:38 -04:00
Vasileios Markopoulos	098224eed1	Merge pull request #1123 from gunet/log-dnssec-enabling Log DNSSEC status change for a domain	2022-04-11 15:21:59 +03:00
ManosKoukoularis	9e90dde144	Merge pull request #1158 from AdvanticGmbH/domain_xss Render domain data table fields only as text	2022-04-11 13:05:43 +03:00
Vasileios Markopoulos	0ab2610064	Merge pull request #1165 from gunet/update_repo_url Updated repository URL	2022-04-11 12:26:15 +03:00
vmarkop	9c62208c2e	Updated repository URL	2022-04-11 12:21:34 +03:00
jbe-dw	8cf2985335	Merge pull request #979 from mirko/make-onelogin-pkg-optional routes/index.py: Make package 'onelogin.saml2.utils' optional	2022-04-07 13:37:00 +02:00
jbe-dw	33f1c6ad61	Merge pull request #1027 from mirko/add-WWW-Authenticate-header-for-dyndns dyndns: Respond with HTTP header 'WWW-Authenticate' to unauthed requests	2022-04-07 13:31:03 +02:00
AdvanticGmbH	b534eadf19	Decode domain record data and comment from HTML entity to text	2022-04-04 14:43:02 +02:00
AdvanticGmbH	e596de37f4	Render Name, Type, Status, TTL, Data and Edit as text	2022-04-04 14:16:40 +02:00
AdvanticGmbH	930932d131	Render domain data table fields only as text	2022-04-04 14:06:31 +02:00
jbe-dw	13ff4df9f9	Merge pull request #1122 from gunet/auth_type_log_fix Fixed LDAP Authenticator Type logging	2022-04-03 14:59:48 +02:00
jbe-dw	c6de972ed8	Merge pull request #1101 from decryptus/master [BUG] Fixed delete zone from API	2022-04-03 00:29:47 +02:00
jbe-dw	bff020443f	Merge pull request #1154 from jbe-dw/fixBackendContentType fix: Set Content-Type on backend API calls	2022-04-02 21:36:56 +02:00
Jérôme BECOT	17b4269e1b	fix: Set Content-Type on backend API calls	2022-03-30 23:39:00 +02:00
ManosKoukoularis	be7b657437	Merge pull request #1124 from gunet/refresh-on-login Refresh on csrf token expiration	2022-03-30 10:37:29 +03:00
Vasileios Markopoulos	74efcc7cf7	Merge pull request #1152 from gunet/werkzeug-import-fix Fixed werkzeug dependency	2022-03-29 10:50:13 +03:00
vmarkop	c9d97642b3	Fixed werkzeug dependency	2022-03-29 10:30:19 +03:00
Vasileios Markopoulos	35f2fde0a8	Merge pull request #1148 from gunet/jinja-depedency-fix jinja-dependency-fix	2022-03-27 15:26:22 +03:00
KostasMparmparousis	063d259af8	jinja-dependency-fix	2022-03-27 15:19:35 +03:00
Vasileios Markopoulos	60e58a3895	Merge pull request #1136 from gunet/itsdangerous Pinned compatible itsdangerous version to requirements	2022-03-27 14:50:58 +03:00
vmarkop	5d8e277b3f	pinned compatible itsdangerous version	2022-02-28 11:35:24 +02:00
ManosKoukoularis	fcb8287f14	Update login.html	2022-02-25 12:59:23 +02:00
kkmanos	10603fbb36	fixed csrf expiration for login page	2022-02-17 18:10:06 +02:00
kkmanos	e21f53085d	added DNSSEC enabling/disabling to history logs	2022-02-17 17:40:48 +02:00
vmarkop	36cee8cddc	Fixed 'LOCAL' Authenticator Type showing for LDAP auth	2022-02-17 17:34:54 +02:00
kkmanos	b9cf7245a5	fixed csrf expiration for login page	2022-02-17 17:02:11 +02:00
Adrien Delle Cave	6982e0107c	Typo in routes/api.py	2022-01-20 12:49:37 +01:00
Adrien Delle Cave	e2fe84a7c5	Merge branch 'master' of https://github.com/PowerDNS-Admin/PowerDNS-Admin	2022-01-20 07:58:12 +01:00
dapillc	cd94b5c0ac	Update API.md (#1100 ) armless > harmless	2022-01-19 17:49:30 +02:00
Adrien Delle Cave	98bd9634a4	[BUG] Fixed delete zone from API	2022-01-19 13:50:12 +01:00
zoeller-freinet	0b2ad520b7	History table: relocate HTML for modal window (#1090 ) - Store HTML for modal window inside an invisible <div> element instead of inside the <button> element's value attribute - Mark history.detailed_msg as safe as it is already manually run through the template engine beforehand and would be broken if escaped a second time	2022-01-01 21:20:01 +01:00
Christian	302e793665	Add button for admin page in single Domain view (#1076 ) * Added button for admin page in domain overview	2021-12-31 00:55:59 +01:00
RGanor	328780e2d4	Revert "Merge branch 'master' into master" This reverts commit `ca4c145a18`, reversing changes made to `7808febad8`.	2021-12-25 16:17:54 +02:00
RGanor	ca4c145a18	Merge branch 'master' into master	2021-12-25 16:10:18 +02:00
zoeller-freinet	7808febad8	login.html: don't suggest previous OTP tokens This change has been tested to work with: - Chromium 96.0.4664.93 - Firefox 95.0 - Edge 96.0.1054.57	2021-12-17 12:48:11 +01:00
dependabot[bot]	9ef0f2b8d6	Bump python-ldap from 3.3.1 to 3.4.0 Bumps [python-ldap](https://github.com/python-ldap/python-ldap) from 3.3.1 to 3.4.0. - [Release notes](https://github.com/python-ldap/python-ldap/releases) - [Commits](https://github.com/python-ldap/python-ldap/compare/python-ldap-3.3.1...python-ldap-3.4.0) --- updated-dependencies: - dependency-name: python-ldap dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>	2021-12-17 12:08:19 +01:00
Vasileios Markopoulos	94a923a965	Add 'otp_force' basic setting (#1051 ) If the 'otp_force' and 'otp_field_enabled' basic settings are both enabled, automatically enable 2FA for the user after login or signup, if needed, by setting a new OTP secret. Redirect the user to a welcome page for scanning the QR code. Also show the secret key in ASCII form on the user profile page for easier copying into other applications.	2021-12-17 11:41:51 +01:00
Jérôme BECOT	0da9b2185e	fix: Error in the swagger AccountSummary definition	2021-12-08 23:11:13 +01:00
zoeller-freinet	07f0d215a7	PDNS-API: factor in 'dnssec_admins_only' basic setting (#1055 ) `GET cryptokeys/{cryptokey_id}` returns the private key, which justifies that the setting is honored in this case.	2021-12-06 22:38:16 +01:00
Khanh Ngo	fc8367535b	chore: remove funding and sponsor badges (#1073 )	2021-12-08 17:44:44 +01:00
Jérôme BECOT	d2f35a4059	fix: Check user zone create/delete permission Co-authored-by: zoeller-freinet <86965592+zoeller-freinet@users.noreply.github.com>	2021-12-05 14:16:45 +01:00
zoeller-freinet	737e1fb93b	routes/admin.py: DetailedHistory: backward-compatibility See https://github.com/ngoduykhanh/PowerDNS-Admin/pull/1066	2021-12-04 17:38:48 +01:00
zoeller-freinet	f0008ce401	routes/admin.py: refactor DetailedHistory - Run HTML through the template engine, preventing XSS from various vectors - Fix uncaught exception when a history entry about domain template deletion is processed - Adapt indentation to 4 space characters per level	2021-12-04 16:09:53 +01:00
Dominic Zöller	6f12b783a8	models.user: get_accounts(): order by name The order of account names returned by User.get_accounts() affects the order account names are displyed in on /domain/add if the current user neither has the Administrator role nor the Operator role and the `allow_user_create_domain` setting is enabled at the same time. If the current user does have the Administrator or Operator role, routes.domain.add() already returns accounts ordered by name, so this change makes it consistent.	2021-12-04 16:09:15 +01:00

1 2 3 4 5 ...

1069 Commits