db3df9a3ea
Move sftp login details to help dialog
2021-09-22 22:28:05 +02:00
ad7afe8646
Move sso indicator to the bottom and always show for non-admins
2021-09-22 21:59:37 +02:00
c4a3240c22
operator: hide Email section
...
operator cannot list domains
2021-09-22 12:46:59 -07:00
6fbf7890cc
operator: mailbox route has to be protected
...
this is because operator cannot list domains
2021-09-22 12:45:13 -07:00
c37830697a
move the sftp description to operator section
2021-09-22 10:58:12 -07:00
dff2275a9b
add a flag to disable ocsp globally
...
fixes #796
2021-09-22 09:13:16 -07:00
81fa792198
mail: port 465 (TLS) note
2021-09-22 08:48:45 -07:00
5b70c055cc
Fixup accessLevel tests
2021-09-22 12:07:31 +02:00
efa364414f
Fix viable app tests and disable currently broken ones
2021-09-22 11:37:27 +02:00
5883857e8c
sftp: remove requireAdmin setting. deprecated with operators
2021-09-21 22:43:04 -07:00
155baa346b
sftp: remove the requireAdmin setting now that we have operators
2021-09-21 22:39:11 -07:00
629908eb4c
operator: add a limits route to determine max app resource limits
2021-09-21 22:29:19 -07:00
26e9589842
operator: use limits route to get the max memory app can use
2021-09-21 22:29:05 -07:00
b493355cbc
operator: use the new app task status route
2021-09-21 22:19:34 -07:00
214540ebfa
operator: add app task status route
2021-09-21 22:19:20 -07:00
4062872299
operator: use app graphs route
2021-09-21 21:52:59 -07:00
d7bd3dfe7c
operator: add graphs route
2021-09-21 21:50:33 -07:00
4d9af6651a
operator: only show clone and config download button if cloudron admin
2021-09-21 20:01:16 -07:00
0857378801
operator: add app update checker route
2021-09-21 19:58:38 -07:00
a8b50642f2
operator: use new app update check route
2021-09-21 19:55:48 -07:00
f8ed17dd58
Use the new app eventlog route
2021-09-21 19:46:18 -07:00
82d4fdf24e
operator: add route to get app event log
...
we cannot go via /cloudron/eventlog since that requires admin
2021-09-21 19:45:29 -07:00
06e5f9baa1
operators: make the terminal work
2021-09-21 18:27:54 -07:00
aecba53de5
add operators UI
2021-09-21 18:20:18 -07:00
6c9b8c8fa8
apps: fix various operators issues
...
part of #791
2021-09-21 18:20:03 -07:00
fabd0323e1
Add missing await
2021-09-21 17:47:42 -07:00
bb2ad0e986
Implement operator role for apps
...
There are two main use cases:
* A consultant/contractor/external developer is given access to just an app.
* A "service" personnel (say upstream app author) is to be given access to single app
for debugging.
Since, this is an "app admin", they are also given access to apps to be consistent with
the idea that Cloudron admin has access to all apps.
part of #791
2021-09-21 12:30:02 -07:00
f44fa2cf47
apps: hasAccessTo -> canAccess
2021-09-21 10:13:06 -07:00
737412653f
Fix renamed function call
2021-09-21 18:58:18 +02:00
0cfc3e03bb
Use concrete resource name instead of generic "resource"
2021-09-20 22:42:34 -07:00
d1e8fded65
mail: expose 465 for mail submission
...
Port 465 is implicit TLS. rfc8314 is now pushing this as a standard
and some mail clients like outlook have already taken this to heart.
Note that this port is sometimes confused with SMTPS. Unlike SMTPS,
this is being used for "submissions" (by a client) as opposed to
server transfer protocol.
This is more secure than port 587+STARTTLS. We reject credentials
on insecure connections but it's too late.
See also:
https://www.fastmail.help/hc/en-us/articles/360058753834
https://www.agwa.name/blog/post/starttls_considered_harmful
https://linuxguideandhints.com/misc/port465.html
2021-09-20 15:42:16 -07:00
ee62e9c2e7
cloudflare: also show warning for SFTP access
2021-09-20 11:42:55 -07:00
d4313fd6e5
show cloudflare port warning
...
fixes cloudron/box#802
2021-09-20 11:30:27 -07:00
398d9b0343
show manual warning for noop also
2021-09-20 11:13:29 -07:00
867d1dfcbe
manual dns: show setup warning for bare domains as well
2021-09-20 11:06:28 -07:00
d853598c5f
clone: linode warning is obsolete
2021-09-20 10:52:20 -07:00
2a667cb985
attach debug object for background safe()
2021-09-20 10:36:49 -07:00
a36c51483c
no need to re-throw
2021-09-20 10:36:46 -07:00
e2fc785e80
rename getServiceIds to listServices
2021-09-20 09:15:49 -07:00
5a1a439224
Adjust comment about getAll
2021-09-20 18:04:01 +02:00
212d025579
Do not send new login notification if we have ghost user login
2021-09-20 17:56:37 +02:00
f6a74731ba
Create a separate section in the user edit dialog to reset 2fa
2021-09-20 17:25:58 +02:00
7c70b9050d
Fixup ghost tests
2021-09-20 14:59:26 +02:00
ca2cc0b86c
Make cloudron-support --owner-login use the settings table
2021-09-20 13:20:41 +02:00
c6c62de68a
Move ghosts into settings table
2021-09-20 13:05:42 +02:00
f66af19458
page number starts from 1
2021-09-19 18:36:08 -07:00
50c68cd499
notifications: better oom message for redis
...
fixes #795
2021-09-19 17:34:41 -07:00
05b4f96854
eslint: bump ecmaVersion
...
we can now use the optional chaining operator ?. that is available
in node 14
2021-09-19 17:32:01 -07:00
8c66ec5d18
tokens: ID_CLI is never used
2021-09-17 15:21:56 -07:00
66a907ef48
Logout users without 2FA when mandatory 2fa is enabled
...
Fixes #803
2021-09-17 14:52:24 -07:00
Johannes Zellner