korenstin
|
cbf92651f0
|
Returning 403 when you don't have enough permissions
|
2024-08-04 21:58:57 +02:00 |
|
quark
|
c912383f86
|
oups la virgule oublié
|
2024-06-24 22:36:22 +02:00 |
|
quark
|
32830e43fd
|
Modify permission for negative
|
2024-06-24 21:21:22 +02:00 |
|
mcngnt
|
402e19d1ce
|
changed permission for club president
|
2024-03-22 12:27:08 +01:00 |
|
charliep
|
a6b479db19
|
Update 131 files
- /apps/activity/api/serializers.py
- /apps/activity/api/urls.py
- /apps/activity/api/views.py
- /apps/activity/tests/test_activities.py
- /apps/activity/__init__.py
- /apps/activity/admin.py
- /apps/activity/apps.py
- /apps/activity/forms.py
- /apps/activity/tables.py
- /apps/activity/urls.py
- /apps/activity/views.py
- /apps/api/__init__.py
- /apps/api/apps.py
- /apps/api/serializers.py
- /apps/api/tests.py
- /apps/api/urls.py
- /apps/api/views.py
- /apps/api/viewsets.py
- /apps/logs/signals.py
- /apps/logs/apps.py
- /apps/logs/__init__.py
- /apps/logs/api/serializers.py
- /apps/logs/api/urls.py
- /apps/logs/api/views.py
- /apps/member/api/serializers.py
- /apps/member/api/urls.py
- /apps/member/api/views.py
- /apps/member/templatetags/memberinfo.py
- /apps/member/__init__.py
- /apps/member/admin.py
- /apps/member/apps.py
- /apps/member/auth.py
- /apps/member/forms.py
- /apps/member/hashers.py
- /apps/member/signals.py
- /apps/member/tables.py
- /apps/member/urls.py
- /apps/member/views.py
- /apps/note/api/serializers.py
- /apps/note/api/urls.py
- /apps/note/api/views.py
- /apps/note/models/__init__.py
- /apps/note/static/note/js/consos.js
- /apps/note/templates/note/mails/negative_balance.txt
- /apps/note/templatetags/getenv.py
- /apps/note/templatetags/pretty_money.py
- /apps/note/tests/test_transactions.py
- /apps/note/__init__.py
- /apps/note/admin.py
- /apps/note/apps.py
- /apps/note/forms.py
- /apps/note/signals.py
- /apps/note/tables.py
- /apps/note/urls.py
- /apps/note/views.py
- /apps/permission/api/serializers.py
- /apps/permission/api/urls.py
- /apps/permission/api/views.py
- /apps/permission/templatetags/perms.py
- /apps/permission/tests/test_oauth2.py
- /apps/permission/tests/test_permission_denied.py
- /apps/permission/tests/test_permission_queries.py
- /apps/permission/tests/test_rights_page.py
- /apps/permission/__init__.py
- /apps/permission/admin.py
- /apps/permission/backends.py
- /apps/permission/apps.py
- /apps/permission/decorators.py
- /apps/permission/permissions.py
- /apps/permission/scopes.py
- /apps/permission/signals.py
- /apps/permission/tables.py
- /apps/permission/urls.py
- /apps/permission/views.py
- /apps/registration/tests/test_registration.py
- /apps/registration/__init__.py
- /apps/registration/apps.py
- /apps/registration/forms.py
- /apps/registration/tables.py
- /apps/registration/tokens.py
- /apps/registration/urls.py
- /apps/registration/views.py
- /apps/treasury/api/serializers.py
- /apps/treasury/api/urls.py
- /apps/treasury/api/views.py
- /apps/treasury/templatetags/escape_tex.py
- /apps/treasury/tests/test_treasury.py
- /apps/treasury/__init__.py
- /apps/treasury/admin.py
- /apps/treasury/apps.py
- /apps/treasury/forms.py
- /apps/treasury/signals.py
- /apps/treasury/tables.py
- /apps/treasury/urls.py
- /apps/treasury/views.py
- /apps/wei/api/serializers.py
- /apps/wei/api/urls.py
- /apps/wei/api/views.py
- /apps/wei/forms/surveys/__init__.py
- /apps/wei/forms/surveys/base.py
- /apps/wei/forms/surveys/wei2021.py
- /apps/wei/forms/surveys/wei2022.py
- /apps/wei/forms/surveys/wei2023.py
- /apps/wei/forms/__init__.py
- /apps/wei/forms/registration.py
- /apps/wei/management/commands/export_wei_registrations.py
- /apps/wei/management/commands/import_scores.py
- /apps/wei/management/commands/wei_algorithm.py
- /apps/wei/templates/wei/weilist_sample.tex
- /apps/wei/tests/test_wei_algorithm_2021.py
- /apps/wei/tests/test_wei_algorithm_2022.py
- /apps/wei/tests/test_wei_algorithm_2023.py
- /apps/wei/tests/test_wei_registration.py
- /apps/wei/__init__.py
- /apps/wei/admin.py
- /apps/wei/apps.py
- /apps/wei/tables.py
- /apps/wei/urls.py
- /apps/wei/views.py
- /note_kfet/settings/__init__.py
- /note_kfet/settings/base.py
- /note_kfet/settings/development.py
- /note_kfet/settings/secrets_example.py
- /note_kfet/static/js/base.js
- /note_kfet/admin.py
- /note_kfet/inputs.py
- /note_kfet/middlewares.py
- /note_kfet/urls.py
- /note_kfet/views.py
- /note_kfet/wsgi.py
- /entrypoint.sh
|
2024-02-07 02:26:49 +01:00 |
|
bleizi
|
f481ea6acb
|
happy new year (contain annually WEI change and update to follow Django Style Guide)
|
2024-01-11 16:32:37 +01:00 |
|
bleizi
|
0f1e4d2e60
|
check for a model in permission and use that in treasury
|
2023-09-28 18:48:57 +02:00 |
|
Nicolas Margulies
|
d82a1001c4
|
Moved transaction through frienships right to basic rights
|
2023-09-27 16:55:00 +02:00 |
|
Nicolas Margulies
|
4fb0b7d736
|
First pass on a display of users trusting you, added a corresponding right
|
2023-09-01 17:15:13 +02:00 |
|
bleizi
|
103e2d0635
|
add GC anti-VSS
|
2023-08-31 15:25:44 +02:00 |
|
bleizi
|
aedf0e87ba
|
prez BDE can block note
|
2023-08-31 13:46:27 +02:00 |
|
bleizi
|
03d2d5f03e
|
change -50€ to -20€ and doc
|
2023-08-22 21:51:02 +02:00 |
|
bleizi
|
d2057a9f45
|
remove respo-info perm and change Prez BDE prem
|
2023-08-22 21:19:05 +02:00 |
|
bleizi
|
6b1cd3ba7a
|
manage self aliases for BDE member instead of kfet
|
2023-07-24 12:42:44 +02:00 |
|
bleizi
|
e0132b6dc8
|
migration permission
|
2023-07-24 12:20:16 +02:00 |
|
bleizi
|
31e67ae3f6
|
typo
|
2023-07-09 16:06:30 +02:00 |
|
bleizi
|
2839d3de1e
|
club facultatif pour un role lors du changement dans l'interface admin
|
2023-06-22 14:52:11 +02:00 |
|
bleizi
|
30afa6da0a
|
création d'une permission pour faire les crédits uniquement
|
2023-06-12 18:29:23 +02:00 |
|
bleizi
|
84fc77696f
|
see activities: BDE members instead of kfet
|
2023-06-05 19:04:19 +02:00 |
|
bleizi
|
19fc620d1f
|
see kfet members' note for respot
|
2023-06-05 17:26:49 +02:00 |
|
Théo Le Moigne
|
62cf8f9d84
|
forgetted coma
|
2023-03-28 20:41:53 +02:00 |
|
Théo Le Moigne
|
2dd1c3fb89
|
change mask for some perm
|
2023-03-20 22:35:51 +01:00 |
|
Théo Le Moigne
|
c8665c5798
|
change permissions for role
|
2023-03-20 22:21:18 +01:00 |
|
Théo Le Moigne
|
e9f1b6f52d
|
change permanent permissions
|
2023-03-20 17:19:14 +01:00 |
|
Théo Le Moigne
|
1d95ae4810
|
sort perm by number
|
2023-03-20 16:16:32 +01:00 |
|
Théo Le Moigne
|
c429734810
|
fix bug
|
2022-11-12 14:51:22 +01:00 |
|
Nicolas Margulies
|
e29b42eecc
|
Add permissions related to trusting
|
2022-04-13 12:30:22 +02:00 |
|
|
4161248bff
|
Add permissions to view/create/change/delete OAuth2 applications
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2022-03-09 12:06:19 +01:00 |
|
|
18a1282773
|
Implement optional scopes : clients can request scopes, but they are not guaranteed to get them
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-12-23 21:59:37 +01:00 |
|
|
132afc3d15
|
Fix scope view
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-12-15 18:59:23 +01:00 |
|
|
4b6e3ba546
|
Display club transactions only with note rights, fixes #107
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-12-13 20:01:00 +01:00 |
|
|
b204805ce2
|
Add permissions to (un)lock club notes
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-12-13 18:31:36 +01:00 |
|
|
2f28e34cec
|
Fix permissions to lock our own note
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-12-13 18:27:24 +01:00 |
|
|
38ca414ef6
|
Res[pot] can display user information in order to get first/last name in credits
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-10-06 10:44:24 +02:00 |
|
|
654c01631a
|
BDE members can see aliases from other people now
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-10-04 18:29:34 +02:00 |
|
|
62431a4910
|
Treasurers can manage activity entries
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-10-04 13:49:16 +02:00 |
|
|
7edd622755
|
BDE members can now use their note balance for personal transactions
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-08 18:35:36 +02:00 |
|
|
03411ac9bd
|
Don't check permissions in a script
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-08 16:59:44 +02:00 |
|
|
4b03a78ad6
|
Fix password change form from unauthenticated users
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-07 12:57:03 +02:00 |
|
|
ad04e45992
|
PC Kfet can create and update Sogé credits (but not see them)
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-06 11:43:39 +02:00 |
|
|
fbf64db16e
|
Simple test to check permissions with the new OAuth2 implementation
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:59:45 +02:00 |
|
|
a3fd8ba063
|
Bad paste in comment
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:59:45 +02:00 |
|
|
9b26207515
|
Rework templates for OAuth2
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:59:43 +02:00 |
|
|
7ea36a5415
|
[oauth2] Add view to generate authorization link per application with given scopes
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:59:33 +02:00 |
|
|
898f6d52bf
|
Better templates for OAuth2 authentication
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:59:20 +02:00 |
|
|
8be16e7b58
|
Permissions support fully OAuth2 scopes
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:58:05 +02:00 |
|
|
ea092803d7
|
Check permissions per request instead of per user
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:58:05 +02:00 |
|
|
b4d87bc6b5
|
Fix import
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:58:04 +02:00 |
|
|
dd639d829e
|
Implement OAuth2 scopes based on permissions
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:58:04 +02:00 |
|
|
e8f4ca1e09
|
Fix note account
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-08-29 14:40:55 +02:00 |
|