52e8a5c6a6
new: [enumerations] added enumerations system
...
- for string entry fields, simply add lists of values to convert the text entry for values
- helps with maintaining accurate lists
- currently the fields that are valid targets are organisations.nationality, organisations.sector, organisations.type
2023-05-26 16:13:52 +02:00
41749ae5a8
fix: [users] added the country information to the index / view
2023-05-25 16:22:49 +02:00
5f1c99cd53
fix: [security] blind SQL injection in searchAll
...
- As reported by Zigrin Security
2023-03-25 09:23:45 +01:00
47bebe5b68
chg: [metaTemplate:update] Gracefully handle case when template on disk is not readable
2023-03-13 11:37:58 +01:00
6fc568e80e
new: [metaTemplateNameDirectory] Added index to see the known template and their associated saved meta-templates
2023-02-27 12:16:36 +01:00
26c038b25b
chg: [settings:cerebrate] Improved check before saving debug level
2023-02-27 11:12:54 +01:00
59f8608d50
new: [user:permissionLimitation] Added current permission status while in `add` or `edit` context
...
Also moved the notification key from meta-fields to meta-template-fields
2023-02-24 15:22:18 +01:00
a427686388
chg: [user:permissionRestriction] Move check from beforeSave to ApplicationRule
2023-02-24 15:02:08 +01:00
0833a8c0e4
fix: [individual:getValidToEdit] Restricted ACL to prevent one org_admin to edit another from the same org
2023-02-24 11:18:48 +01:00
0850c92e89
chg: [users:index] Added setting to allow the deletion of users
...
Fix #119
2023-02-16 15:07:06 +01:00
adad45baf6
chg: [metaTemplate:updateStrategyDelete] Restored strategy to update a template and delete conflicting metafields
2023-02-16 13:51:36 +01:00
97a151aff5
new: [metaTemplate:metaFieldMigration] Added support of force migrate
...
Remove conflicting meta-fields and migrate non-conflicting ones
2023-02-16 13:35:38 +01:00
27673b54c9
chg: [metaTemplate:migrateMetaField] Ignore metafield with empty value
2023-02-16 09:32:27 +01:00
20eebd097d
new: [meta-template] Improvement of the update system
...
- Changed default update strategy from `create_new` to `update_existing`
- Added mechanism to automatically migrate meta-fields to newest template
- Improved validation and conflict detection strategies
- Fixed various UI bugs and improved QoL
2023-02-14 14:42:35 +01:00
3fcb58c081
chg: [brood:queryIndex] Added support of pagination and filtering
2023-02-13 15:39:25 +01:00
aa9225ba90
fix: [metaFields] Fixed typo in function
2023-02-13 15:16:10 +01:00
0ac81af82a
fix: [metaTemplateDirectory:create] Added gracefully handle uniqueness
2023-02-13 15:14:43 +01:00
25e63b710a
fix: [user:rearrangeForAPI] Fixed support of metafields
2023-02-13 15:13:33 +01:00
7cda322223
fix: [users:view] Temporary measure to gracefully catch connection issue with keycloak
2023-01-18 15:47:59 +01:00
79a97efa70
Merge branch 'chg-sync-improvements' into develop-unstable
2023-01-18 15:40:54 +01:00
9ae446bb5d
fix: [behavior:authKeycloak] Correctly URLEncode username
2023-01-17 09:25:43 +01:00
025dcd9054
chg: [alignment] Added validation rule to avoid duplicates
2023-01-17 09:24:36 +01:00
d9df6ed4c3
fix: [permissionLimitations] Prevent error for org without users
2023-01-17 09:23:24 +01:00
13bb031167
fix: [keycloak status] - handle gracefully if user not found in KC
...
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2023-01-03 15:41:09 +01:00
a5eb016fc4
fix: [security] disallow multiple individuals with the same e-mail address
...
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2023-01-03 15:30:26 +01:00
e0f92aa8e0
fix: [validation] Tightened the validation rules for users to avoid 500 errors when the requirements are not met
...
- ensure that username is unique
- (optional) ensure that individual->user assignment is unique
- (optional) ensure that usernames are e-mail addresses
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2023-01-03 15:03:06 +01:00
da2f904554
fix: [security] reworked the Individual handling of user creations / modifications
...
- creating a new user with the e-mail address of an already existing individual should NOT overwrite the first/last name fields
- it merely connects the individual to the new user
- disallow changing the individual behind an existing user altogether
- allow capturing individuals without updates
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2022-12-23 16:47:44 +01:00
256bfa8702
fix: [users] handle saving of a user without KC
2022-12-16 15:32:29 +01:00
d4c827c662
fix: [kc] attribute update fixed
2022-12-14 06:46:42 +01:00
675cac8944
new: [custom attribute saving] wip
2022-12-14 06:22:04 +01:00
35a395c68c
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop
2022-12-13 15:45:44 +01:00
0b052aaebf
fix: [users:view] Gracefully handle the case where user exist in cerebrate but not in keycloak
2022-12-13 15:44:37 +01:00
d9330a1ddc
chg: [param] order changed
2022-12-13 11:00:30 +01:00
8c94aae994
fix: [behavior:notifyAdmin] Removed required parameter after optional
2022-12-13 10:56:05 +01:00
d293cb52f8
chg: [behavior:keycloak] Gracefully handle issues while syncing with keycloak
2022-12-12 16:56:51 +01:00
178a5b658f
chg: [behavior:keycloak] Perform case insensitive comparison
...
For both cerebrate and keycloak users
2022-12-12 16:49:52 +01:00
e366da6171
fix: [behavior:keycloak] Trying to lower fever the best I can
2022-12-12 08:45:02 +01:00
af622dd19b
new: [users:view] Added keycloak status showing the potential differences between Cerebrate and Keycloak
2022-12-09 11:54:34 +01:00
b121399304
fix: [user:checkPermissionRestriction] Refactor the function to support more edge-cases
2022-12-08 15:39:28 +01:00
9a2e94989f
fix: [permissionlimitation:getLimitations] Mirror the permission limit if only one scope (global or org) is defined
2022-12-08 15:38:04 +01:00
409c116ad7
chg: [permissionlimitation:validation] Added rule for max_occurence
2022-12-08 15:35:02 +01:00
4ab9761fb5
fix: [behavior:notifyAdmins] Typo resetting a variable
2022-12-08 10:25:13 +01:00
f3ee43ed46
chg: [user:NotifyAdminBehavior] Track modification on meta_fields
2022-12-08 10:24:09 +01:00
c61c16c83c
fix: [user:beforeSave] Make sure variable is initialized
2022-12-08 10:19:28 +01:00
53f669e25c
new: [sync+meta_fields] Initial work on meta_field synchronisation and meta_template_directory - WiP
...
The new directory allows to ingest meta_fields without knowing their associated meta_template. Improved the way data is re-arranged, how meta-templates are saved and a helper widget showing the difference local objects have with their remote counter-part
2022-12-07 14:54:28 +01:00
3dddd96eeb
chg: [element:metafield_panel] Metafield now relying on their index type when being displayed on singleViews
2022-11-28 12:12:01 +01:00
41e425cfa2
new: [metaTemplateField] Added `index_type` virtual property to use the correct index_table element
2022-11-15 14:54:44 +01:00
84069cfe40
chg: [metaTemplateField] More generic way to specify form type
2022-11-14 15:45:28 +01:00
b6fdf37d54
fix: [metafields:dropdown] Patched saving multiple fields with custom value
2022-11-14 15:38:50 +01:00
b53f2681b4
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into feature-metafield-dropdown
2022-11-14 14:53:02 +01:00
iglocska