332f374e01
chg: [sharing group index] add button now has the new checkaccess conditions applied
2021-12-01 14:26:20 +01:00
1e31f4d1dd
new: [ACL Helper] check access for controller / action pair for given user
...
- accesible everywhere in the UI
2021-12-01 14:25:34 +01:00
e408f29a05
chg: [appcontroller] minor changes
...
- getRoleAccess now returns array format
- moved setting of view variables behind a rest check, to avoid additional unused actions for API queries
- current user's role access matrix passed to view via "roleAccess"
2021-12-01 14:24:32 +01:00
fbb1a52724
new: [ACL component] new functionalities
...
- getRoleAccess now returns either URLs or arrays
- array format allows for easy checking of controller + action pairs
2021-12-01 14:22:02 +01:00
392faa60e4
new: [ACL] getRoleAccess endpoint added
...
- prints all valid URLs for the current user's role
2021-11-30 00:00:05 +01:00
c7d40d42c7
fix: [ACL] added missing entries
2021-11-29 23:37:41 +01:00
22be309dc2
fix: [ACL] fix wildcard controller checks failing
2021-11-28 23:42:22 +01:00
7fa0537cfd
fix: [encryption keys] only show valid options when creating keys as a user
2021-11-27 23:51:32 +01:00
c71c978761
Merge branch 'main' into develop
2021-11-26 11:05:17 +01:00
2406e31b72
fix: [user add] form fixes
2021-11-26 10:53:24 +01:00
2eb2459936
fix: [forms] added missing password form field
2021-11-26 10:52:44 +01:00
15d738aa77
fix: [forms] dropdowns overriding values from request
2021-11-26 10:51:58 +01:00
312229751b
fix: [keycloak] enrollment org_id issues fixed
2021-11-25 11:55:51 +01:00
a8e03aa996
Merge branch 'develop' into main
2021-11-25 00:58:17 +01:00
cc5c750de8
chg: [audit log] change field renamed to changed
...
- change is a reserved keyword
- this way quoting of field names is no longer needed in the cakePHP settings
2021-11-25 00:57:31 +01:00
a4f6e06e7a
fix: [roles index] correctly allow site admins to modify / remove roles
2021-11-25 00:55:36 +01:00
b981b3f942
fix: [conflict] resolved in user_org update script
2021-11-25 00:43:22 +01:00
35464623e1
Merge branch 'develop' into main
2021-11-25 00:36:43 +01:00
1ee895cedf
Merge branch 'main' into develop
2021-11-25 00:36:25 +01:00
033f6d7f97
fix: [typo] organisations != oganisations
2021-11-25 00:02:16 +01:00
c2cefb4311
fix: [user init] generation fixed
2021-11-24 23:59:34 +01:00
b009191aa6
fix: [migrations] user org further fixes
2021-11-24 23:39:27 +01:00
94457d3b97
fix: [migration] userorg migration fixed
2021-11-24 23:36:24 +01:00
c7768921fb
fix: [user init] explicit uuid creation removed
...
- added behavior wherever it was missing
2021-11-24 23:32:17 +01:00
716f6b1147
fix: [default user creation] explicitly create UUIDs
2021-11-24 23:24:04 +01:00
999f4c8539
fix: [migration:user_org] Fixed if org_id column does not exist
2021-11-24 22:49:40 +01:00
e8e1a16673
chg: [search_all] Added drafty support of meta-fields
2021-11-24 22:39:22 +01:00
7d576bcd67
Merge branch 'main' of github.com:cerebrate-project/cerebrate into main
2021-11-24 15:08:33 +01:00
eb0a67327a
fix: [initial user] generation fixed
...
- requires a default organisation + org link now
2021-11-24 14:46:34 +01:00
2ac32911bb
fix: [mysql] action field renamed without renaming the index
2021-11-24 13:50:20 +01:00
19b98a0df4
fix: [mysql] renamed field without renaming the associated index
2021-11-24 13:48:20 +01:00
8ca22760e0
fix: [mysql] create if exists rather than drop + create
...
- made sense early in development, however, it no longer does
2021-11-24 13:47:10 +01:00
c647ae95eb
fix: typo in mysql.sql
2021-11-24 13:44:12 +01:00
8c8aba3fbc
Merge branch 'develop' into main
2021-11-24 01:53:10 +01:00
4bcdf9534a
chg: [cakephp] version bump
2021-11-24 01:52:03 +01:00
bacb3dc85e
fix: [API] fixed broken API
...
- don't call functions specifically meant for the UI when in an ACL context
- also fixed breaking issues with the logging
2021-11-24 01:50:55 +01:00
92fee87a7f
fix: [keycloak] when enrolling users in keycloak, use the user organisation_id instead of the individual's first alias
2021-11-24 01:34:15 +01:00
3cc857c42f
fix: [auditlog] use insert() rather than save() as that is not available in the behavior
...
- fixes exception on logging deletes, blocking any actual deletions
2021-11-24 01:33:26 +01:00
22e4a90af0
chg: [ACL] tightened ACL for several controllers
...
- org admins now have access to new functionalities, added ACL for them
- Affected controllers:
- Authkeys, encryptionkeys, users, sharinggroups
- sets defaults/restricts access accordingly
2021-11-24 01:32:05 +01:00
0fe7f4f931
new: [CRUD] added additional features to the CRUD component
...
- conditions passable to add/edit/index/delete
- refactored get() requests internally to finds to accomodate for additional parameters
- delete() now takes a params[] array as a second argument
2021-11-24 01:30:28 +01:00
5483357e1c
chg: [ACL] fix permissions for org admins
...
- also, fix a bug with the simple permissions being ignored
2021-11-24 01:29:39 +01:00
dad310f434
chg: [appcontroller] include user org in loaded user object during authentication
...
- also log username as username rather than name
2021-11-24 01:28:52 +01:00
6d7a555368
chg: [index views] slight changes
...
- hide inaccessible action buttons on org index
- add owner to sharing group index
2021-11-24 01:28:01 +01:00
e708730e97
chg: [roles] hide action buttons on the role index when they wouldn't be available anyway
2021-11-24 01:27:14 +01:00
ed848e9cee
chg: [sharing groups] show owner org on the index
2021-11-24 01:26:55 +01:00
061f3fc468
chg: [profile] added org to profile menu
2021-11-24 01:26:29 +01:00
81ab202917
chg: [templates] org fields added to user templates
2021-11-24 01:25:57 +01:00
e5e4e74cae
chg: [users] associated with orgs
2021-11-24 01:25:32 +01:00
9619989a94
new: [migration] organisation_id added to users
...
- also, grab the first org for a default
2021-11-24 01:24:25 +01:00
18b78e8eec
fix: [audit log] filtering now uses request_action rather than the renamed action field
2021-11-17 16:04:57 +01:00
iglocska