Commits · 957b4c1f9bb57ec0a4f896795ba5358e2cb9ce9a · ai3 / accountserver

10 Feb, 2020 2 commits
- Add the missing golang.org/x/sys/cpu vendor dependency · 957b4c1f
  ale authored Feb 10, 2020
  
  957b4c1f
- Update id/auth to fix bug with empty ldap.params.attrs definition · 41886a25
  ale authored Feb 10, 2020
  
  41886a25
09 Feb, 2020 5 commits

Fix integration tests with a real auth-server · ef7deacb

ale authored Feb 09, 2020

Run a real auth-server daemon for testing, using the test LDAP server
for authentication.

ef7deacb

Change default auth-server names · 8569c2c7
ale authored Feb 09, 2020
```
And remove useless debug logging from actions_test.
```
8569c2c7
Oops, fix artifact from rebase · 7cc40227
ale authored Feb 09, 2020

7cc40227

Replace all password checks with calls to the auth-server · 042e0283

ale authored Feb 09, 2020

Properly delegates authentication to the git.autistici.org/id/auth
server, removing all embedded password checks for both privileged
requests and account recovery.

042e0283

Replace explicit usage of SSO ticket with an Auth object · 552f7506

ale authored Feb 09, 2020

The Auth object only captures the information we actually need and
use, and it's nicer not to spread SSO handling all over the place.

552f7506

06 Feb, 2020 3 commits
- Upgrade go-common (enforce rpc timeouts) · 99691cb7
  ale authored Feb 06, 2020
  
  99691cb7
- Lint fixes to the audit logging · 0bc28aae
  ale authored Feb 06, 2020
```
Do not log anything on encoding failures.
```
  0bc28aae
- Add an audit log entry when disabling a user · e806fa4f
  ale authored Feb 06, 2020
  
  e806fa4f
05 Feb, 2020 1 commit

Add API to disable users · 51e37609

ale authored Feb 05, 2020

The user and all associated resources will have their status set to
'inactive'.

Fixes issue #12.

51e37609

21 Jan, 2020 1 commit
- Encode "bool" LDAP attrs as true/false instead of yes/no · 23f7ab21
  ale authored Jan 21, 2020
  
  23f7ab21
15 Jan, 2020 2 commits
- Add creation date to all resources · 6a90ae2c
  ale authored Jan 15, 2020
```
Fixes issue #10.
```
  6a90ae2c
- Add a list of forbidden domains that can't be created · cb2259cf
  ale authored Jan 15, 2020
  
  cb2259cf
06 Jan, 2020 1 commit
- Update ai3/go-common/clientutil · fcd599da
  ale authored Jan 06, 2020
  
  fcd599da
05 Jan, 2020 1 commit
- Merge branch 'freewvs' into 'master' · 7f46e527
  ale authored Jan 05, 2020
```
Add webappdb lookups for website resources

See merge request !8
```
  7f46e527
04 Jan, 2020 1 commit
- Add webappdb lookups for website resources · ea4bfd53
  ale authored Jan 04, 2020
  
  ea4bfd53
22 Nov, 2019 2 commits

Do not allow account recovery for inactive users · 1833a56c
ale authored Nov 22, 2019

1833a56c

Allow creation of resources referencing pre-existing ParentIDs · e2364a1a

ale authored Nov 22, 2019

Previously we were dropping these on the floor without any possibility
for the client to detect this case, because external parent ID
references (i.e. pointing at objects already in the database, rather
than temporary resource IDs in the same CreateResources request) were
dropped silently in the sortResourcesByDepth() function...

e2364a1a

16 Nov, 2019 4 commits
- Add an option to send audit logs directly to syslog · 3f8ea064
  ale authored Nov 16, 2019
  
  3f8ea064
- Mark audit logs with log_type=account_audit · 5673fb56
  ale authored Nov 16, 2019
  
  5673fb56
- Split availability check from user validation too · eef4b6e1
  ale authored Nov 16, 2019
```
And fix an issue where validHostedEmail() was no longer checking for
availability in email alias validation.
```
  eef4b6e1
- Add an UpdateResource action · 0bb4fb1e
  ale authored Nov 16, 2019
```
Since this requires validating an *existing* resource, we also split
out the availability checks in the validation code from the
syntactical validation, which is a good thing anyway.
```
  0bb4fb1e
08 Nov, 2019 2 commits
- Forgot to update the test for previous commit · f59d9c94
  ale authored Nov 08, 2019
  
  f59d9c94
- Allow underscores in usernames · 82c65294
  ale authored Nov 08, 2019
  
  82c65294
26 Oct, 2019 1 commit

Create a custom validator for newsletters · 51549bab

ale authored Oct 26, 2019

Now that we're no longer reusing the List metadata field in the
Resource, we have to adapt the validators.

51549bab

20 Oct, 2019 1 commit
- Fix a typo in the newsletter template function · f2a3ab80
  ale authored Oct 20, 2019
  
  f2a3ab80
18 Oct, 2019 1 commit
- Remove 'public' attribute from newsletters · b49f4e6d
  ale authored Oct 18, 2019
```
All newsletters are public anyway.
```
  b49f4e6d
16 Oct, 2019 2 commits
- Merge branch 'add_newsletters' into 'master' · 25ee8846
  ale authored Oct 16, 2019
```
Add newsletters

See merge request !7
```
  25ee8846
- Add templating for newsletter resources · c0f324f2
  ale authored Oct 16, 2019
```
Will set common attributes (status, shard, etc) on newly created
newsletters, just as we do for mailing lists.
```
  c0f324f2
14 Oct, 2019 1 commit
- Add validators for newsletter resources · 35dd72de
  ale authored Oct 14, 2019
  
  35dd72de
13 Oct, 2019 1 commit
- Merge remote-tracking branch 'origin/master' into add_newsletters · 8426627f
  putro authored Oct 13, 2019
  
  8426627f
06 Oct, 2019 1 commit
- Set JSON metadata tags in CheckResourceAvailability req/resp types · 6d3d9981
  ale authored Oct 06, 2019
  
  6d3d9981
09 Sep, 2019 3 commits
- Merge branch 'distrib' into 'master' · 48fa0495
  ale authored Sep 09, 2019
```
Distrib

Closes #9

See merge request !6
```
  48fa0495
- Add instrumentation to the User cache · a428be94
  ale authored Sep 09, 2019
```
So we can monitor its effectiveness and validate design choices.
```
  a428be94
- Simplify the internal cache API · 05ad3165
  ale authored Sep 09, 2019
  
  05ad3165
26 Aug, 2019 2 commits
- Add distributed cache invalidation (optimistic) · 7edf17df
  ale authored Aug 26, 2019
  
  7edf17df
- Add leader-forwarding mode for write requests · 9cbc4225
  ale authored Aug 26, 2019
```
Write requests can be forwarded to a 'leader' accountserver instance.
```
  9cbc4225
22 Aug, 2019 1 commit

Add missing validations and an availability API endpoint · b790a71a

ale authored Aug 22, 2019

Previously some resource types were not validating requests for
uniqueness (the creation would have failed later, at database commit
time).

The availability API allows unauthenticated callers (i.e. everyone) to
query for existence of a specific resource, or resources that would
conflict with it in the global namespace. It's basically a public
validation check, meant so that applications that let users create
accounts can provide early feedback on availability.

b790a71a

03 Aug, 2019 1 commit
- Allow the LDAP model to distinguish resource types based on subtree · 34f46d7f
  ale authored Aug 03, 2019
```
Lets us tell mailing lists and newsletters apart as different resources.
```
  34f46d7f