parpaing
|
4d03d9460d
|
Passage des couleurs ttlsp
|
2022-04-05 14:45:41 +02:00 |
Alexandre Iooss
|
df5f9b5f1e
|
Harden Django project configuration
Set session and CSRF cookies as secure for production.
Set HSTS header to let browser remember HTTPS for 1 year.
|
2022-03-09 12:12:56 +01:00 |
Yohann D'ANELLO
|
45a10dad00
|
Refresh token expire between 14 days
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-12-23 22:00:08 +01:00 |
Yohann D'ANELLO
|
18a1282773
|
Implement optional scopes : clients can request scopes, but they are not guaranteed to get them
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-12-23 21:59:37 +01:00 |
Yohann D'ANELLO
|
f88eae924c
|
Use local version of Turbolinks instead of using Cloudfare
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-12-13 21:00:34 +01:00 |
Yohann D'ANELLO
|
9628560d64
|
Improve entry search with a debouncer
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-10-04 14:39:53 +02:00 |
Yohann D'ANELLO
|
df3bb71357
|
Serve static files with Nginx only in production to make JavaScript development easier
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-10-04 13:58:48 +02:00 |
Yohann D'ANELLO
|
d809b2595a
|
Pretty money function is invalid in Javascript: it mays display an additional euro
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-28 11:20:57 +02:00 |
Pierre-antoine Comby
|
6b4d18f4b3
|
fix #97
|
2021-09-26 23:03:25 +02:00 |
Pierre-antoine Comby
|
668cfa71a7
|
fix #98
|
2021-09-26 23:02:31 +02:00 |
Yohann D'ANELLO
|
4c17e2a92b
|
Fix wrong banner message
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-13 23:29:51 +02:00 |
Yohann D'ANELLO
|
d965732b65
|
Support multiple addresses for IP-based connection (useful when using IPv4/IPv6 and for ENS -> Crans transition)
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-08 14:52:39 +02:00 |
Yohann D'ANELLO
|
f75dbc4525
|
OAuth2 implementation documentation
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:59:45 +02:00 |
Yohann D'ANELLO
|
9b26207515
|
Rework templates for OAuth2
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:59:43 +02:00 |
Yohann D'ANELLO
|
7ea36a5415
|
[oauth2] Add view to generate authorization link per application with given scopes
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:59:33 +02:00 |
Yohann D'ANELLO
|
898f6d52bf
|
Better templates for OAuth2 authentication
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:59:20 +02:00 |
Yohann D'ANELLO
|
ea092803d7
|
Check permissions per request instead of per user
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:58:05 +02:00 |
Yohann D'ANELLO
|
5e9f36ef1a
|
Store current request rather than user/session/ip
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:58:04 +02:00 |
Yohann D'ANELLO
|
dd639d829e
|
Implement OAuth2 scopes based on permissions
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-09-02 20:58:04 +02:00 |
Yohann D'ANELLO
|
733f145be3
|
BDE members can now use they note even if they are not in the Kfet club
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-08-29 14:39:36 +02:00 |
Yohann D'ANELLO
|
d5ecb72a71
|
Update copyright for 2021
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-14 21:45:56 +02:00 |
Yohann D'ANELLO
|
35ffb36fbd
|
Round amounts to the nearest integer rather than take the floor
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-07 23:47:07 +02:00 |
ourspalois
|
c4c4e9594f
|
couleur 4.0
|
2021-05-22 12:34:31 +02:00 |
ourspalois
|
dc0f3dbcef
|
Changement de couleur 3.0
|
2021-05-22 12:19:29 +02:00 |
ourspalois
|
b3abe9ab18
|
Changement de couleur 2.0
|
2021-05-22 11:53:13 +02:00 |
ourspalois
|
67e170d4a6
|
Bonjour c le changement de couleur
|
2021-05-22 11:30:11 +02:00 |
Yohann D'ANELLO
|
76d1784aea
|
Add OAuth2 authentication for Django Rest Framework
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-09 09:44:25 +01:00 |
Yohann D'ANELLO
|
b5ef937a03
|
Environment file path is absolute
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-09 09:39:57 +01:00 |
Yohann D'ANELLO
|
e95a8b6e18
|
Add normalized name to services
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-03 18:42:51 +01:00 |
Yohann D'ANELLO
|
635adf1360
|
Use cas server to use authentication in other services
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-03 18:13:33 +01:00 |
Yohann D'ANELLO
|
84304971d7
|
Add sample translation file for english
Signed-off-by: Yohann D'ANELLO <yohann.danello@gmail.com>
|
2021-01-19 14:29:12 +01:00 |
ynerant
|
b8b781f9a2
|
Merge branch 'beta' into 'master'
Beta
Closes #84 et #83
See merge request bde/nk20!146
|
2021-01-19 12:40:24 +01:00 |
ynerant
|
8d71783c42
|
Merge branch 'docs' into 'beta'
Docs
See merge request bde/nk20!145
|
2021-01-19 12:01:45 +01:00 |
Yohann D'ANELLO
|
a6f23df7d5
|
Load the good translation file, fixes #85
Signed-off-by: Yohann D'ANELLO <yohann.danello@gmail.com>
|
2021-01-19 11:58:19 +01:00 |
Yohann D'ANELLO
|
d9c97628e2
|
Add Clacks Overhead header on each response. Closes #84
Signed-off-by: Yohann D'ANELLO <yohann.danello@gmail.com>
|
2020-12-31 15:40:18 +01:00 |
Yohann D'ANELLO
|
e60994e065
|
API Documentation
Signed-off-by: Yohann D'ANELLO <yohann.danello@gmail.com>
|
2020-12-23 21:06:30 +01:00 |
Yohann D'ANELLO
|
016ab5a9c9
|
Remove dead code, don't try to cover unnecessary things
Signed-off-by: Yohann D'ANELLO <yohann.danello@gmail.com>
|
2020-12-23 18:45:05 +01:00 |
Yohann D'ANELLO
|
8434c0062c
|
Merge branch 'beta' into JS_translations
# Conflicts:
# apps/note/static/note/js/consos.js
# locale/de/LC_MESSAGES/django.po
# locale/es/LC_MESSAGES/django.po
# locale/fr/LC_MESSAGES/django.po
|
2020-11-16 00:59:26 +01:00 |
Yohann D'ANELLO
|
b9d49d53f2
|
Export JS translation files as static files
|
2020-11-16 00:29:27 +01:00 |
Yohann D'ANELLO
|
5635598bbc
|
Extract strings from javascript files and translate them in french
|
2020-11-15 23:28:41 +01:00 |
Yohann D'ANELLO
|
b58a0c43cd
|
Include auto-generated javascript translation file
|
2020-11-15 22:53:00 +01:00 |
Yohann D'ANELLO
|
d773303d18
|
Add possibility to authenticate an account with its IP address
|
2020-10-19 23:44:56 +02:00 |
Yohann D'ANELLO
|
e5e758f9d9
|
Display banners when a user is no more a BDE or Kfet member
|
2020-10-07 11:46:43 +02:00 |
Yohann D'ANELLO
|
65a2e8c08c
|
Better index page: non-Kfet members will be redirected to their profile page, the account note (when it will be managed) will see the consumption page
|
2020-10-07 11:29:52 +02:00 |
Yohann D'ANELLO
|
fb72385773
|
Warn users that they have to open they Sogé account
|
2020-10-07 10:59:37 +02:00 |
Yohann D'ANELLO
|
c3d613947f
|
Pre-registered users can declare that they opened a bank account in the signup form
|
2020-10-07 10:33:57 +02:00 |
Alexandre Iooss
|
3d733ed6af
|
Use memcached cache
|
2020-09-21 15:13:43 +02:00 |
Alexandre Iooss
|
4f188ca3e5
|
Admin is autodiscovering partially
|
2020-09-21 12:34:34 +02:00 |
Alexandre Iooss
|
72bac75fbd
|
Add Django OAuth toolkit admin
|
2020-09-21 12:15:40 +02:00 |
Alexandre Iooss
|
8052152ea5
|
Add OAuth2 endpoints
|
2020-09-21 11:03:07 +02:00 |