Mirrors/sftpgo
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-08 07:10:56 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,057 Commits 9 Branches 53 Tags
75ebcfeecdc9d24b682f26d942c04aa949900448
Commit Graph

79 Commits

Author SHA1 Message Date
Nicola Murino
16f4031085 oidc: allow login if the password method is disabled 
isLoggedInWithOIDC returns false before login so we need to add
a specific check

Fixes #1879

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-03-29 20:37:24 +01:00
Nicola Murino
11055d49a3 bad host handler: return a generic error message 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2025-01-06 10:08:36 +01:00
Nicola Murino
4897ef35ff do not return if client IP is not allowed in login API response 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-28 18:56:12 +01:00
Nicola Murino
d0f348a46a WebAdmin and REST API: remove too granular permissions 
Our permissions system for admin users is too granular and some
permissions overlap. For example, you can define an administrator
with the "manage_system" permission and not with the "manage_admins"
or "manage_user" permission, but the "manage_system" permission
allows you to restore a backup and then create users and
administrators. The following permissions will be removed:
"manage_admins", "manage_apikeys", "manage_system", "retention_checks",
"manage_event_rules", "manage_roles", "manage_ip_lists". Now you
need to add the "*" permission to replace the removed granular
permissions because the removed permissions allow actions that
should only be allowed to super administrators.
There is no point in having separate, overlapping permissions.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-10 10:51:27 +01:00
Nicola Murino
feaf3ac459 WebAdmin: check CSRF header when deleting blocked hosts 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-09 18:50:31 +01:00
Nicola Murino
6f8bc59756 httpd: allow to configure cache control header 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-08-12 21:52:59 +02:00
Nicola Murino
3462bba3f4 backport from main branch 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-15 12:05:28 +02:00
Nicola Murino
1f8ac8bfe1 REST API: fix token invalidation after password change 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-07 18:21:19 +02:00
Nicola Murino
e7f315659f defender: allow to impose a delay between login attempts 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-24 18:57:54 +02:00
Nicola Murino
d3f42e39db move server version setting to common section 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-01 19:42:09 +02:00
Nicola Murino
e1fdc10ef8 remove robots.txt endpoint 
This reverts #833 because the contributor did not respond to our
request to sign the CLA

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-26 11:00:55 +02:00
Nicola Murino
f38966c6ac WebClient: refactor long-running tasks to improve browser compatibility 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-11 18:19:57 +01:00
Nicola Murino
799fdd7098 allow IPs in defender safe list to exceed max per-host connections 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-27 18:22:21 +01:00
Nicola Murino
12f599fd65 WebUI: skip checks for static resource 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-25 18:19:21 +01:00
Nicola Murino
a577d8b3cd WebAdmin: allow to disable 2FA 
Before it was only possible using REST API

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-23 18:24:07 +01:00
Nicola Murino
de089e51fd Web: allow to require password change and two-factor for admins 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-21 20:45:10 +01:00
Nicola Murino
e61fb42cbc remove metadata plugin 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-17 12:30:47 +01:00
Nicola Murino
ae309d64c4 WebClient: disable indicator if we redirect from the login page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-04 21:13:04 +01:00
Nicola Murino
8385acd0e3 Redirect to two-factor auth page after creating the first admin 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-04 20:58:29 +01:00
Nicola Murino
c23d779280 WebClient: load shares using an async request 
instead of rendering them directly within the template

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-04 14:33:51 +01:00
Nicola Murino
ad80d4e475 WIP new WebAdmin: event rules 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-01 20:32:43 +01:00
Nicola Murino
c85601146d WIP new WebAdmin: event actions 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-31 20:49:25 +01:00
Nicola Murino
d381304136 WIP new WebAdmin: admin/admins pages 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-22 20:22:41 +01:00
Nicola Murino
3f479c5537 WIP new WebAdmin: roles page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-21 16:49:04 +01:00
Nicola Murino
8648351fc7 WIP new WebAdmin: connections page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-20 15:35:05 +01:00
Nicola Murino
91802fad3e WIP new WebAdmin: profile, change password, message pages 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-18 19:18:57 +01:00
Nicola Murino
d939a82225 user: add TLS certificates 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-14 21:36:23 +01:00
Nicola Murino
0722c4369b WIP new WebAdmin: folders page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-14 16:59:27 +01:00
Nicola Murino
5c8214e121 WIP new WebAdmin: groups page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-11 19:26:13 +01:00
Nicola Murino
e1b5d2fe39 WebAdmin: use the new UI for user pages 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-09 19:54:08 +01:00
Nicola Murino
784b7585c1 remove end year from Copyright notice in files 
so we don't have to update all the files every year

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-01-01 11:31:45 +01:00
Nicola Murino
ce0693feda WebUIs: move more shared components to common/base.html 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-12-31 17:35:14 +01:00
Nicola Murino
3e47a4f664 WebAdmin: use the new theme for the login and setup page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-12-30 19:12:22 +01:00
Nicola Murino
3121c35437 WebClient: do not silently overwrite files/directories 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-12-28 18:43:07 +01:00
Nicola Murino
61fe7c39a7 WebClient: allow to pass args for localized errors from the backend 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-12-12 18:04:14 +01:00
Nicola Murino
c71f0426ae WebClient WIP: add support for localizations 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-12-10 16:40:13 +01:00
Nicola Murino
74836af66e WebUI: extract a common struct for all pages 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-25 18:30:56 +01:00
Nicola Murino
ac309cf9a3 WebClient: remove data schema usage from mfa page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-18 20:06:31 +01:00
Nicola Murino
1a765c7ff7 WebClient share: add a download page 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-17 19:10:03 +01:00
Nicola Murino
37b0c229fc Web UI: propagate CSPNonce to templates 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-15 18:48:16 +01:00
Nicola Murino
a1346aa071 httpd: fixed logging of refused requests due to rate limiting/blocklisting 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-08 19:11:00 +01:00
Nicola Murino
6295be786f WebClient: add a ping URL 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-06 19:58:39 +01:00
Nicola Murino
0671178e29 WebClient: fix test cases 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-05 17:30:06 +01:00
Nicola Murino
9322701615 WIP: new WebClient UI 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-05 17:26:29 +01:00
Nicola Murino
4a15775f65 allow to configure ALPN protocols 
Fixes #1406

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-28 12:35:26 +02:00
Nicola Murino
ba9df51b2e fix or suppress lint warnings detected by golangci-lint 1.55.0 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-20 20:31:17 +02:00
Nicola Murino
da0eb5037e httpd: skip StripSlash middleware for URL ending with multiple slashes 
Fixes #1434

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-08 10:40:08 +02:00
Nicola Murino
fac022090d httpd: disable directory index for static files 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-09-08 19:55:45 +02:00
Nicola Murino
63212bb033 remove the legacy PreferServerCipherSuites configuration 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-07 19:11:48 +02:00
Nicola Murino
0413c0471c add a specific permission to manage folders 
creating/updating folders embedded in users is no longer supported.

Fixes #1349

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-07-23 18:48:49 +02:00