Commit Graph

905 Commits (16f8ea8c2b8213cf7b61e3dfa4394deb7930f65d)

Author SHA1 Message Date
Luciano Righetti eb95c44528
Merge pull request #151 from righel/fix-test-action
fix: fix test workflow action
2023-09-14 16:16:55 +02:00
Sami Mokaddem 672847b214
chg: [users:acl] Improved waterfall model for CRUD operation and updated UI to reflect them 2023-09-13 09:15:16 +02:00
iglocska b0ebe774b6
fix: [ACL] group admins can view users in their group 2023-09-13 07:18:29 +02:00
iglocska e03a037511
fix: [internal] fixed the function checking if a user belongs to the current User's managed org group 2023-09-13 07:06:31 +02:00
Sami Mokaddem e64f4c341f
fix: [acl:canEditUser] Typo in table name 2023-09-12 15:01:22 +02:00
Sami Mokaddem b2df8192f7
fix: [OrgGroups:checkIfGroupAdmin] Consider site_admins as group admin 2023-09-12 14:31:03 +02:00
Sami Mokaddem 44527bbcb8
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop 2023-09-12 14:28:07 +02:00
iglocska 1a20eaace9
fix: [strict typing] Made Sami's frankenstein setup happy 2023-09-12 14:25:16 +02:00
Sami Mokaddem d5d1f0b572
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop 2023-09-12 14:18:20 +02:00
iglocska 1d9b54348a
fix: [temp] ACL function built up 2023-09-12 14:17:11 +02:00
Sami Mokaddem d2cb072ce6
chg: [ui] Improved reflection of ACL logic in the UI for OrgGroups, Organisations and individuals. 2023-09-12 14:11:15 +02:00
iglocska 4d58b94d58
chg: [VERSION] bump 2023-09-12 11:09:21 +02:00
iglocska c124ebc0d8
fix: [ACL] fixes 2023-09-12 11:08:46 +02:00
iglocska e3f8c38dcd
fix: [org admins] should be able to edit the org 2023-09-12 10:54:06 +02:00
iglocska 69b653dd59
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop 2023-09-12 09:27:57 +02:00
iglocska 16a4a1cde5
new: [org Groups] added
- Org Groups allow user co-management of sub communities
  - Create an org group with a set of organisations
  - assign administrators to an org group
  - org group admins can modify users of the group
2023-09-12 09:26:07 +02:00
Sami Mokaddem 8b4b47775c
chg: [alignments:acl] Reflected ACL logic from individuals to alignments 2023-09-08 09:11:52 +02:00
Sami Mokaddem 367012af36
fix: [individual:edit] Select individuals based on their id and not their user_id 2023-09-07 16:43:30 +02:00
Sami Mokaddem 5aefc37837
chg: [users:edit] Allow users to self edit 2023-09-07 16:11:47 +02:00
Sami Mokaddem 08d2e193dd
chg: [user-settings:edit] Prevent assigning a setting to another user 2023-09-07 15:14:26 +02:00
Sami Mokaddem d46143a37f
chg: [command:summary] Added data about the modified entity 2023-09-07 15:01:13 +02:00
Sami Mokaddem 01356824a2
chg: [navigation:tags] Updated UI to reflect users' permissions 2023-09-06 10:42:08 +02:00
Sami Mokaddem bde01882d9
fix: [navigation:CRUDAction-auditlogs] Make ordering by created field unambigous and hide audit button to non-admin users 2023-09-06 10:17:06 +02:00
Sami Mokaddem 7377e77204
chg: [navigation:individuals] Only show edit and deletion buttons if users are allowed to do it 2023-09-06 09:48:16 +02:00
Sami Mokaddem e7e5c0aebd
chg: [ACL:tags] Relaxed ACL on tags for index and view pages.
FIXME: Adapt changes in the UI to hide add/edit buttons and add link to the sidebar
2023-09-05 10:56:48 +02:00
Sami Mokaddem 9e18f4f0bb
chg: [ACL:individual/add] Allow `org-admin`s to create new individuals 2023-09-05 10:49:23 +02:00
Sami Mokaddem 883f0eb44a
fix: [userSettings:add] Aded check to avoid duplicated setting for the same user 2023-09-05 10:46:25 +02:00
Sami Mokaddem a3c23f46d5
fix: [mailinglist:ACL] Fixed bug in ACL check for access 2023-09-05 10:33:08 +02:00
iglocska 012e120db2
chg: [version] bump 2023-09-04 15:25:04 +02:00
iglocska 3e5ae5271e
chg: [misisng] change 2023-09-04 15:23:21 +02:00
iglocska 78152a884a
Merge branch 'main' into develop 2023-09-04 15:22:42 +02:00
Sami Mokaddem 26cbaf0129
chg: [command:summary] Consider perm meta-fields addition/deletion as uesr edit 2023-09-04 14:43:53 +02:00
Sami Mokaddem 279c69c510
fix: [userSettings:edit] Correctly pre-select user to be edited 2023-09-04 09:34:44 +02:00
Sami Mokaddem 1ea7c796ac
chg: [component:CRUD] Include meta-fields in REST queries and clever pagination support for REST queries 2023-08-29 14:57:48 +02:00
Sami Mokaddem 633ae86886
chg: [command:summary] Added support of user MetaFields
Allow to show addition and deletion of user metafields such as the ones used for permissions
2023-08-29 14:53:03 +02:00
iglocska 8e616180ba
fix: [security] user settings editable by arbitrary user fixed
- as reported by Infigo on behalf of ENISA
2023-08-23 15:08:23 +02:00
iglocska d7bf8af5b1
fix: [internal] user add fix attempt #2 2023-06-28 15:01:26 +02:00
iglocska 82bf3a74c1
chg: [internal] fetch first role if no default is set 2023-06-28 14:59:31 +02:00
iglocska 5028b4cf24
chg: [version] bump 2023-05-31 09:42:15 +02:00
iglocska 52e8a5c6a6
new: [enumerations] added enumerations system
- for string entry fields, simply add lists of values to convert the text entry for values
- helps with maintaining accurate lists
- currently the fields that are valid targets are organisations.nationality, organisations.sector, organisations.type
2023-05-26 16:13:52 +02:00
iglocska 41749ae5a8
fix: [users] added the country information to the index / view 2023-05-25 16:22:49 +02:00
iglocska 7a8eb6ba50
chg: [CRUD] allow for sorting on related model fields
- some hacks to resolve issues with sorting on related fields
2023-05-25 16:11:21 +02:00
Luciano Righetti 9b7c693bb9 fix: fix some deprecation notices in 8.2 2023-04-06 17:59:22 +02:00
Sami Mokaddem abd5dab605
chg: [command:importer] Make sure to use the latest known version of the template 2023-03-31 13:56:06 +02:00
Sami Mokaddem 5f1c99cd53
fix: [security] blind SQL injection in searchAll
- As reported by Zigrin Security
2023-03-25 09:23:45 +01:00
Sami Mokaddem 16a50c08a3
fix: [helper:formFieldMassage] Correctly check for key to avoid debug output 2023-03-21 09:52:28 +01:00
iglocska 61027e9c1e
chg: [version] bump 2023-03-13 15:50:00 +01:00
Sami Mokaddem c2e9fd3b75
chg: [meta-template:index] Added link to metaTemplateNameDirectory 2023-03-13 11:38:32 +01:00
Sami Mokaddem 47bebe5b68
chg: [metaTemplate:update] Gracefully handle case when template on disk is not readable 2023-03-13 11:37:58 +01:00
Sami Mokaddem acb66ac4a0
fix: [individuals:delete] Gracefully catches deletion of individuals associated to a user 2023-03-13 08:05:32 +01:00