GitLab

SizeLimit will trigger an LDAP error if there are too many results,
which is not what we expect.

Mailing lists have a slightly different concept of "ownership" and we
shouldn't automatically disable them.

Fixes issue #16.

Fixes issue #15.

Intermediate improvements to validation

See merge request !10

Required for fetching a specific resource in LDAP-aware validators.

In preparation of supporting validators that take into account the
identity of the requestor (as per issue #11).

This is part of the fix to issue ai3/accountadmin#17 and is
required for compatibility with existing DAV objects in our
legacy database.

Replace all password checks with calls to the auth-server

See merge request !9

Run a real auth-server daemon for testing, using the test LDAP server
for authentication.

And remove useless debug logging from actions_test.

Properly delegates authentication to the git.autistici.org/id/auth
server, removing all embedded password checks for both privileged
requests and account recovery.

The Auth object only captures the information we actually need and
use, and it's nicer not to spread SSO handling all over the place.

Do not log anything on encoding failures.

The user and all associated resources will have their status set to
'inactive'.

Fixes issue #12.

Fixes issue #10.

Add webappdb lookups for website resources

See merge request !8

Previously we were dropping these on the floor without any possibility
for the client to detect this case, because external parent ID
references (i.e. pointing at objects already in the database, rather
than temporary resource IDs in the same CreateResources request) were
dropped silently in the sortResourcesByDepth() function...