Add example config for the Caddy HTTP server
kenny
2018-03-07 12:46:10 +0100
2bb7e62837Fixed improper formatting for the resize constant
ReAnzu
2018-03-03 00:47:05 -0600
addd2afdaaConfiguration gate for feature * Put source and thumbnail deletion functionality behind configuration * Updated tests with new configuration parameter
ReAnzu
2018-03-02 23:13:32 -0600
bedc03b18fRevision 3 can't exist yet, default to 0 for other lengths.
ReAnzu
2018-03-02 22:50:20 -0600
76c5c202b1Updated migration * Modified migration to do an in place update of the password revision based on the hash length
ReAnzu
2018-03-02 22:47:22 -0600
cb1f79ae98Address pull request comments * Not married to the constants on mime, but atleast standardized them * Moved application/ogg to a constant to be consistent * Removed extraneous newlines * appeased pycodestyle * TODO: ideas for how to let a post have multiple source formats?
ReAnzu
2018-03-01 02:39:57 -0600
3276662c39Address pull request comments * Added column password_revision. This field will default to 0, which all passwords will have till they're updated. After that each password hash method has a revision. * appeased pycodestyle
ReAnzu
2018-03-01 02:24:15 -0600
8dc24f0da7Address pycodestyle comments and extraneous newlines
ReAnzu
2018-03-01 01:41:08 -0600
cf409ffb09The created user should always be the payload returned.
ReAnzu
2018-03-01 01:29:36 -0600
ac8d683581Added auto conversion options to the config for gif to mp4 and webm * webm conversion is slow, but better quality than mp4 conversion and with a typically smaller file size * tags are copied over from the original upload * Snapshots are generated for the new auto posts
ReAnzu
2018-02-24 01:06:11 -0600
eaf2fb15f8Allow thumbnails to be generated even if ffmpeg throws warnings
ReAnzu
2018-02-24 01:48:10 -0600
0815c99740Delete thumbnails and post source immediately on post delete
ReAnzu
2018-02-24 01:57:31 -0600
0cd5600163Changed password setup to use libsodium and argon2id * Regular SHA256 hashing for passwords is inadequate as modern GPU's can hash generate billions of hashes per second. * Added code to auto migrate old passwords to the new password_hash if the existing password_hash matches either of the legacy password generation schemes (SHA1 or SHA256). * Added migration to support new password_hash format length * Added auth tests
ReAnzu
2018-02-24 23:45:00 -0600
8792db0004users:create:any permission and UI update * Added functionality for administrators to directly add users to the application * Added permission users:create:any to handle level that users are allowed to create other users * Moved old permission users:create to users:create:self
ReAnzu
2018-02-23 22:05:58 -0600
5c929356bfMerge branch 'master' into github-master
ReAnzu
2018-02-27 22:40:35 -0600
148ed9700fMerge branch 'develop' into 'master'
ReAnzu
2018-02-27 22:32:33 -0600
d9b3160437Fixed existing tests, added new tests around endpoints, authentication, and password hash hardening
ReAnzu
2018-02-27 22:29:38 -0600
187ab77ebdResolved a few failing tests due to config issues
ReAnzu
2018-02-27 19:29:58 -0600
70a42c9df2Resolved the logout issue for when users:create:any is executed. * Resolved an issue where user_tokens:*:any permissions didn't operate on the correct user. * Updated user_token -> user_tokens permissions to mirror other permissions.
ReAnzu
2018-02-27 18:34:37 -0600
05d2785ec6Added a Manage tokens tab to the user panel
ReAnzu
2018-02-27 18:14:07 -0600
23268ded75ignoring local data folder
ReAnzu
2018-02-27 11:26:38 -0600
22cf806220Added versioning, cleaned up API documentation, fixed endpoints, resolved logout diplay update issue
ReAnzu
2018-02-26 21:47:01 -0600
d0b423e91cUpdated API documentation for the new user-token endpoints
ReAnzu
2018-02-26 20:45:51 -0600
deb70e5f28Tokens now correctly delete themselves
ReAnzu
2018-02-26 19:53:56 -0600
f11f4e9313Revert "Cleanup func imports, and small formatting changes."
ReAnzu
2018-02-26 19:52:02 -0600
796563f772Cleanup func imports, and small formatting changes.
ReAnzu
2018-02-25 17:30:48 -0600
a526a56767Users are only authenticated against their password on login, and to retrieve a token. * Passwords are wiped from the app and cookies after login and token retrieval * Tokens are revoked at the end of the session/logout * If the user chooses the "remember me" option, the token is stored in the cookie * A user interface to revoke tokens will be added
ReAnzu
2018-02-25 04:44:02 -0600
d6ee744777Added migration to support new password_hash format
ReAnzu
2018-02-25 00:05:15 -0600
0e5fbde097Changed password setup to use libsodium and argon2id * regular SHA256 is not secure * added code to auto migrate old passwords to the new password_hash if the existing password_hash matches either of the old password generation schemes.
ReAnzu
2018-02-24 23:45:00 -0600
2383e75aa5Merge branch 'master' into github-master
ReAnzu
2018-02-24 01:59:59 -0600
838ced3aaeDelete thumbnails and post images immediately on post delete
ReAnzu
2018-02-24 01:57:31 -0600
4f612a6f64Allow for thumbnails to be generated even on ffmpeg warnings
ReAnzu
2018-02-24 01:48:10 -0600
90044eacd2Added auto conversion option for gif to mp4,webm * webm conversion is slow, but better quality than mp4 conversion and with a typically smaller filesize
ReAnzu
2018-02-24 01:06:11 -0600
bc947a14aeWorking on adding functionality for administrators to directly add users to the application
ReAnzu
2018-02-23 22:05:58 -0600
40ac9185b3Revert "Added the ability to disable registration in the config file"
ReAnzu
2018-02-23 20:58:19 -0600
a5211d9483Added the ability to disable registration in the config file
ReAnzu
2018-02-23 18:09:37 -0600
a1fbeb91a0server/users: fix checking passwords with colons
rr-
2018-02-10 14:03:43 +0100
Michael Serajnik
ReAnzu
ReAnzu
Marcin Kurczewski
kenny
ReAnzu
Robin Appelman