jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
3,113 Commits 33 Branches 583 Tags
ce28449734fba3fa453473790966e2101d7c4396
Commit Graph

82 Commits

Author SHA1 Message Date
Girish Ramakrishnan
c0f944c1bf use safe.require instead 2016-07-12 11:37:44 -07:00
Girish Ramakrishnan
743a8650f0 Add ability to setup a ghost account for caas 2016-07-12 11:01:02 -07:00
Johannes Zellner
d91fe9223c Dedupe the user.verify*() code 2016-06-23 11:58:10 +02:00
Johannes Zellner
4776a005a5 Remove redundant client TYPE_*s 2016-06-08 14:09:06 +02:00
Girish Ramakrishnan
dc8fd2eab3 do not use userdb directly 2016-06-07 10:01:14 -07:00
Johannes Zellner
226537de04 Move client TYPE_* to clients.js 2016-06-03 15:05:00 +02:00
Johannes Zellner
725e1debcc Provide getByAppIdAndType() by clients.js 2016-06-03 14:47:06 +02:00
Johannes Zellner
304cfed5a9 Result of password setting is now a plain token identifier 2016-06-03 13:00:07 +02:00
Girish Ramakrishnan
036740f97b filter out correct fields in the route code 2016-06-03 00:04:17 -07:00
Girish Ramakrishnan
f4958d936c return groupIds in get user route 2016-06-03 00:00:11 -07:00
Girish Ramakrishnan
80ca69a128 user.update does not need the user object 2016-06-02 23:53:06 -07:00
Girish Ramakrishnan
097d23c412 move logic to model code 2016-06-02 23:29:43 -07:00
Johannes Zellner
3d40cf03b1 Pass down the reason why the user conflicts 2016-06-02 15:39:21 +02:00
Girish Ramakrishnan
82cd215ffa merge bad fields and pass error.message correctly in REST responses 2016-06-02 00:12:21 -07:00
Girish Ramakrishnan
75c1731443 do not add app mailboxes to database 
a) we don't allow .app pattern in database for aliases and mailboxes
b) the addons already know about app names separately
 2016-05-30 01:38:43 -07:00
Girish Ramakrishnan
b37226d4d1 fix ui issues 2016-05-30 00:07:58 -07:00
Girish Ramakrishnan
ebdd6d8a31 add missing require 2016-05-29 23:15:55 -07:00
Girish Ramakrishnan
a05b6ad78d delete mailbox on user delete 2016-05-29 21:02:51 -07:00
Girish Ramakrishnan
ec71390d0b autocreate mailbox when username is available 2016-05-29 19:14:01 -07:00
Girish Ramakrishnan
badc524ff2 '-' has special meaning haraka 
so do '.app' instead
 2016-05-26 10:58:30 -07:00
Girish Ramakrishnan
b3f53099f0 allow only alpha numerals in username 2016-05-25 21:36:20 -07:00
Girish Ramakrishnan
d84e584222 add some username tests 2016-05-23 14:56:09 -07:00
Girish Ramakrishnan
42cc8249f8 reserve usernames with -app in them 2016-05-18 21:45:02 -07:00
Girish Ramakrishnan
de055492ef set username restriction to 2 chars 2016-05-18 11:05:45 -07:00
Girish Ramakrishnan
3c4ca8e9c8 reserve more usernames 2016-05-17 12:47:10 -07:00
Johannes Zellner
3adf91afed Add setShowTutorial() api to users.js 2016-05-06 13:56:26 +02:00
Johannes Zellner
778371b818 Only send out mails if the admin group has changed 2016-05-04 13:55:14 +02:00
Girish Ramakrishnan
ffedbdfa13 various minor fixes to eventlog 2016-05-02 10:01:23 -07:00
Girish Ramakrishnan
1f31fe6f8f make user.remove and user.update add eventlog 2016-05-01 20:11:11 -07:00
Girish Ramakrishnan
37bdd2672b make user.create take auditSource 2016-05-01 20:01:34 -07:00
Johannes Zellner
18f3733d6e Simplify the password change logic 
We now can use verifyPassword and this makes
user.changePassword() route obsolete
 2016-04-17 19:17:03 +02:00
Girish Ramakrishnan
916d97f7bd reserve the no-reply mailbox 2016-04-15 11:09:25 -07:00
Girish Ramakrishnan
d095899aef add note that admin@fqdn is reserved as well 2016-04-14 13:34:41 -07:00
Johannes Zellner
101ce62ef3 Move username and email lowercasing to where it belongs 
Fixes #592
 2016-04-14 16:25:48 +02:00
Girish Ramakrishnan
ed78bd05c8 reserve the "admin" username 2016-04-13 16:50:20 -07:00
Girish Ramakrishnan
c24d7e7b3c do not crash on duplicate email 2016-04-13 14:47:35 -07:00
Johannes Zellner
b205212bf2 Explicitly verifyWithUsername() and offer a verify() userId based 2016-04-05 16:27:04 +02:00
Johannes Zellner
3051d4c22a This is actually a callback, doh 2016-04-05 09:28:41 +02:00
Johannes Zellner
b32a0bcfad Do not allow empty username on createOwner() 2016-04-05 09:28:41 +02:00
Johannes Zellner
61c79aab23 Add asserts for user.createOwner() 2016-04-05 09:28:41 +02:00
Johannes Zellner
c73213b2f2 Handle username conflict in account setup 2016-04-05 09:28:41 +02:00
Johannes Zellner
31bd5cdee3 Fix typo, userdb.del() wants an id 2016-04-05 09:28:41 +02:00
Johannes Zellner
65c6806109 Send full user information on deletion, not just the uuid 2016-04-05 09:28:41 +02:00
Johannes Zellner
0b1dcd2940 Use userdb.getByUsername() instead of get() 2016-04-05 09:27:32 +02:00
Johannes Zellner
726d154890 Make user id a uuid.v4() and allow empty usernames 2016-04-05 09:27:32 +02:00
Johannes Zellner
fcfd1dceac Deliver the resetToken when an invite was sent 2016-04-04 18:41:51 +02:00
Johannes Zellner
b1004de358 Notify admins about newly added admin 2016-03-09 06:16:21 +01:00
Johannes Zellner
ecf7575dd3 UserError.NOT_ALLOWED is not unused 2016-02-11 11:32:48 +01:00
Johannes Zellner
98a7f44dc1 Check for last admin not required anymore 
This is now prevented by the fact that an admin
cannot remove itself from the admin group. There
remains a race, just like before, where two admins could
trigger an admin group removal of the other admin in parallel
and the calls are in a state after admin flag check of
the used tokens. This can only be prevented with a db constraint
in the end.
 2016-02-11 11:30:21 +01:00
Johannes Zellner
163ceef527 Remove the admin toggle route 2016-02-11 11:26:35 +01:00