Mirrors/sftpgo
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-07 06:40:54 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,057 Commits 9 Branches 53 Tags
2.6.x
Commit Graph

102 Commits

Author SHA1 Message Date
Nicola Murino
d0f348a46a WebAdmin and REST API: remove too granular permissions 
Our permissions system for admin users is too granular and some
permissions overlap. For example, you can define an administrator
with the "manage_system" permission and not with the "manage_admins"
or "manage_user" permission, but the "manage_system" permission
allows you to restore a backup and then create users and
administrators. The following permissions will be removed:
"manage_admins", "manage_apikeys", "manage_system", "retention_checks",
"manage_event_rules", "manage_roles", "manage_ip_lists". Now you
need to add the "*" permission to replace the removed granular
permissions because the removed permissions allow actions that
should only be allowed to super administrators.
There is no point in having separate, overlapping permissions.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-10 10:51:27 +01:00
Nicola Murino
65e8e2c1d4 don't allow admins to change their own permissions 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-09 20:33:03 +01:00
Nicola Murino
5c163ed592 EventManager: allow to define the allowed system commands 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-09 19:14:45 +01:00
Nicola Murino
7d24a4852c WebAdmin SMTP: ensure current config is not nil 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-10-15 18:23:28 +02:00
Nicola Murino
87fdc1dec1 Web: add CheckRedirect to pages using baselogin.html 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-10-12 12:54:32 +02:00
Nicola Murino
c74f391caf EventManager: filter action execution based on event status 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-09-27 20:49:04 +02:00
Nicola Murino
3462bba3f4 backport from main branch 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-15 12:05:28 +02:00
Nicola Murino
5d24d665bd add an util method to convert []byte to string 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-08 19:01:58 +02:00
Nicola Murino
0a8a0ee771 revert #450 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-27 10:50:25 +02:00
Nicola Murino
2bcf05ca45 refactor for secrets management in API and private key handling in SFTPFs 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-26 16:17:24 +02:00
Nicola Murino
1196727448 dataretention: remove ignore_user_permissions 
Required permissions are now automatically granted as for any other
filesystem action

Fixes #1564

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-01 15:07:03 +02:00
Nicola Murino
cc9a0d4dc2 add time-based access restrictions 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-17 11:30:03 +01:00
Nicola Murino
4d357a6a57 EventManager: allow to check for inactive users 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-04 19:48:10 +01:00
Nicola Murino
de089e51fd Web: allow to require password change and two-factor for admins 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-21 20:45:10 +01:00
Nicola Murino
e5836c8118 WebUI: add a JSON helper function 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-04 18:16:10 +01:00
Nicola Murino
71e01ab26d new WebAdmin: add test cases 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-03 12:42:05 +01:00
Nicola Murino
ad80d4e475 WIP new WebAdmin: event rules 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-01 20:32:43 +01:00
Nicola Murino
c85601146d WIP new WebAdmin: event actions 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-31 20:49:25 +01:00
Nicola Murino
143d4611ba WIP new WebAdmin: events page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-28 19:38:01 +01:00
Nicola Murino
69da5c10c6 WIP new WebAdmin: configs page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-27 12:48:15 +01:00
Nicola Murino
d01fccf28c WIP new WebAdmin: maintenance page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-26 21:03:41 +01:00
Nicola Murino
9fcff83f8f WIP new WebAdmin: status page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-25 19:26:51 +01:00
Nicola Murino
8180b75ef1 WIP new WebAdmin: IP lists pages 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-24 19:23:15 +01:00
Nicola Murino
d381304136 WIP new WebAdmin: admin/admins pages 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-22 20:22:41 +01:00
Nicola Murino
e38350e8b3 WIP new WebAdmin: role page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-21 17:19:25 +01:00
Nicola Murino
3f479c5537 WIP new WebAdmin: roles page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-21 16:49:04 +01:00
Nicola Murino
8648351fc7 WIP new WebAdmin: connections page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-20 15:35:05 +01:00
Nicola Murino
73b2573b14 WIP new WebAdmin: two factor auth page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-18 20:25:07 +01:00
Nicola Murino
91802fad3e WIP new WebAdmin: profile, change password, message pages 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-18 19:18:57 +01:00
Nicola Murino
5ac99ee556 WIP new WebAdmin: folder page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-16 19:51:37 +01:00
Nicola Murino
d939a82225 user: add TLS certificates 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-14 21:36:23 +01:00
Nicola Murino
0722c4369b WIP new WebAdmin: folders page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-14 16:59:27 +01:00
Nicola Murino
1a0f734a9c WIP new WebAdmin: remove some hard coded strings 
so they can be localized

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-14 09:41:39 +01:00
Nicola Murino
bf94f8b87c WIP new WebAdmin: group page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-14 09:09:42 +01:00
Nicola Murino
5c8214e121 WIP new WebAdmin: groups page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-11 19:26:13 +01:00
Nicola Murino
86eab21be8 WebAdmin: fix parsing form field 
some field names changed with the new UI

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-10 18:49:20 +01:00
Nicola Murino
e1b5d2fe39 WebAdmin: use the new UI for user pages 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-09 19:54:08 +01:00
Nicola Murino
ca880f6cbb WebAdmin: completed base page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-01 20:09:15 +01:00
Nicola Murino
784b7585c1 remove end year from Copyright notice in files 
so we don't have to update all the files every year

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-01 11:31:45 +01:00
Nicola Murino
3e47a4f664 WebAdmin: use the new theme for the login and setup page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-12-30 19:12:22 +01:00
Nicola Murino
61fe7c39a7 WebClient: allow to pass args for localized errors from the backend 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-12-12 18:04:14 +01:00
Nicola Murino
c71f0426ae WebClient WIP: add support for localizations 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-12-10 16:40:13 +01:00
Nicola Murino
74836af66e WebUI: extract a common struct for all pages 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-25 18:30:56 +01:00
Nicola Murino
ed828458ab WebUI add title to all pages 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-25 18:11:10 +01:00
Nicola Murino
37b0c229fc Web UI: propagate CSPNonce to templates 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-15 18:48:16 +01:00
Nicola Murino
c5c5860012 ssh: allow to configure public key auth algorithms 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-09 20:03:04 +01:00
Nicola Murino
654ce2e349 s3: allow to skip TLS verification 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-05 19:27:11 +01:00
Nicola Murino
e54fd46a9e SQL providers: make sure we don't exceed the allowed placeholders 
Fixes #1415

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-09-12 19:15:40 +02:00
Nicola Murino
6c482a248d portable mode: add WebClient 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-10 19:02:55 +02:00
Nicola Murino
830116bcf2 shares: allow to force an expiration date 
this is a soft requirement, users can reactivate expired shares by
updating the expiration date

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-07 19:07:20 +02:00