Dan Brown
9b271e559f
Worked on MFA setup required flow
...
- Restructured some of the route naming to be a little more consistent.
- Moved the routes about to be more logically in one place.
- Created a new middleware to handle the auth of people that should be
allowed access to mfa setup routes, since these could be used by
existing logged in users or by people needing to setup MFA on access.
- Added testing to cover MFA setup required flow.
- Added TTL and method tracking to session last-login tracking system.
2021-08-02 22:02:25 +01:00
Dan Brown
4597069083
Added Backup code verification logic
...
Also added testing to cover as part of this in addition to adding the
core backup code handling required.
Also added the standardised translations for switching mfa mode and
adding testing for this switching.
2021-08-02 16:35:37 +01:00
Dan Brown
a3f19ebe96
Added TOTP verification upon access
2021-08-02 15:04:43 +01:00
Dan Brown
1af5bbf3f7
Added login redirect system to confirm/mfa
...
Also continued a bit on the MFA verification system.
Moved some MFA routes to public space using updated login service to get
the current user that is either logged in or last attempted login (With
correct creds).
2021-07-18 16:52:31 +01:00
Dan Brown
78f9c01519
Started on some MFA access-time checks
...
Discovered some difficult edge cases:
- User image loading in header bar when using local_secure storage
- 404s showing user-specific visible content due to content listing on
404 page since user is in semi-logged in state. Maybe need to go
through and change up how logins are handled to centralise and
provide us better control at login time to prevent any auth level.
2021-07-16 23:23:36 +01:00
Dan Brown
f696aa5eea
Added the ability to remove an MFA method
...
Includes testing to cover
2021-07-14 21:27:21 +01:00
Dan Brown
cfc0c593db
Added MFA indicator to user list
...
Also fixed issue with showing incorrect MFA method count on user edit
page changes done in last commit
2021-07-14 20:19:05 +01:00
Dan Brown
bb43acef21
Added MFA setup link on user edit view
2021-07-14 20:06:41 +01:00
Dan Brown
09c2814dc7
Added role based MFA control
...
- Added new DB column for control and role updated create/update actions.
- Created new middleware as a start to actual enforcement logic.
- Added indicator to role list of whether MFA is enforced.
2021-07-03 13:34:48 +01:00
Dan Brown
529971c534
Added backup code setup flow
...
- Includes testing to cover flow.
- Moved TOTP logic to its own controller.
- Added some extra totp tests.
2021-07-02 20:53:33 +01:00
Dan Brown
916a82616f
Complete base flow for TOTP setup
...
- Includes DB storage and code validation.
- Extracted TOTP work to its own service file.
- Still needs testing to cover this side of things.
2021-06-30 22:10:02 +01:00
Dan Brown
d25cd83d8e
Added TOTP generation view and started verification stage
...
Also updated MFA setup view to have settings-like listed interface to
make it possible to extend with extra options in the future.
2021-06-29 22:06:49 +01:00
Dan Brown
efb6a6b457
Started barebones work of MFA system
2021-06-28 22:02:45 +01:00
Dan Brown
3a402f6adc
Review of #2682 , Also added parent deletion link on restore
...
On restore, added a link to the parent deletion restore if any exists
on a cascading parent. Added a test to cover this case to ensure its shown.
Also tweaked default empty state message on recycle bin item list to align
with new column count.
Also done a little existing code cleanup including a getUrl helper on
the deletion items.
Related to #2682 & #2594
2021-06-26 12:12:11 +01:00
Dan Brown
8a9505bf8c
Merge branch 'master' of https://github.com/arjvand/BookStack into arjvand-master
2021-06-26 11:19:21 +01:00
Dan Brown
265f5db03f
Reviewed #2393 , Removed image guessing and added testing
...
For review of meta tag additions as per PR #2393 .
This commit removes any image guesswork and only uses images that have
been set by the author for the specific content.
This also adds tests to cover the expected OG tags.
2021-06-23 20:42:48 +01:00
Dan Brown
58fa7679bc
Merge branch 'create-content-meta-tags' of https://github.com/james-geiger/BookStack into james-geiger-create-content-meta-tags
2021-06-23 20:11:07 +01:00
Dan Brown
9af636bd48
Merge branch 'markdown-export' of https://github.com/nikhiljha/BookStack-1 into nikhiljha-markdown-export
2021-06-22 19:12:24 +01:00
Dan Brown
3dda622f0a
Added a "skip to content" link.
...
Closes #2810
2021-06-15 20:58:45 +01:00
Dan Brown
7d951b842c
Made social account detach a POST request
...
Closes #2808
2021-06-14 22:37:58 +01:00
Dan Brown
bcc01bd8ff
New Crowdin updates ( #2790 )
...
* New translations common.php (Indonesian)
* New translations entities.php (Indonesian)
* New translations errors.php (Indonesian)
* New translations auth.php (Chinese Simplified)
* New translations auth.php (Chinese Simplified)
* New translations errors.php (Indonesian)
* New translations entities.php (Indonesian)
* New translations errors.php (Indonesian)
* New translations settings.php (Indonesian)
* New translations validation.php (Indonesian)
* New translations settings.php (Spanish, Argentina)
2021-06-13 14:04:23 +01:00
Dan Brown
2c34a99248
Merge pull request #2791 from BookStackApp/attachments_open_in_browser
...
Attachment serving without forced download
2021-06-13 14:03:08 +01:00
Dan Brown
58117bcf2d
Extracted not found text into its own simple blade file
...
Related/intended for #2796
2021-06-13 13:53:59 +01:00
Dan Brown
7997300f96
Added front-end toggle and testing of inline attachments
2021-06-06 13:55:56 +01:00
Dan Brown
af7d62799c
New Crowdin updates ( #2787 )
...
* New translations common.php (German)
* New translations common.php (Dutch)
2021-06-04 22:50:48 +01:00
Dan Brown
bb00c331e4
Ordered entity permission roles by display name
...
Closes #2782
2021-06-04 22:36:30 +01:00
Dan Brown
807f92b693
Updated homepage action button colors for consistency
...
Were previously inconsistent with other homepage buttons for non-default
homepage options.
2021-06-04 22:28:38 +01:00
Dan Brown
c5d31ea7b2
Merge branch 'master' of github.com:BookStackApp/BookStack
2021-06-04 22:21:06 +01:00
Dan Brown
ef1bde8bb1
Fixed wrong styles for homepage favourites
...
When using a non-default homepage option.
Fixes #2783
2021-06-04 22:20:11 +01:00
Dan Brown
8897945609
Roll-out and re-fix of croation via crowdin ( #2785 )
...
* New translations auth.php (Croatian)
* New translations activities.php (Croatian)
* New translations activities.php (German Informal)
* New translations common.php (Croatian)
* New translations passwords.php (Croatian)
* New translations settings.php (Czech)
* New translations settings.php (Spanish)
* New translations settings.php (Catalan)
* New translations settings.php (Arabic)
* New translations settings.php (French)
* New translations pagination.php (Croatian)
* New translations settings.php (German)
* New translations settings.php (Danish)
* New translations settings.php (Chinese Simplified)
* New translations settings.php (Hebrew)
* New translations validation.php (Korean)
* New translations validation.php (Croatian)
* New translations settings.php (Hungarian)
* New translations settings.php (Chinese Traditional)
* New translations settings.php (Japanese)
* New translations settings.php (Korean)
* New translations settings.php (Dutch)
* New translations settings.php (Polish)
* New translations settings.php (Portuguese)
* New translations settings.php (Russian)
* New translations settings.php (Slovak)
* New translations settings.php (Slovenian)
* New translations settings.php (Turkish)
* New translations settings.php (Ukrainian)
* New translations settings.php (Vietnamese)
* New translations settings.php (Portuguese, Brazilian)
* New translations settings.php (Indonesian)
* New translations settings.php (Persian)
* New translations settings.php (Spanish, Argentina)
* New translations settings.php (Croatian)
* New translations settings.php (Latvian)
* New translations settings.php (Bosnian)
* New translations settings.php (Norwegian Bokmal)
* New translations settings.php (German Informal)
* New translations entities.php (German Informal)
* New translations settings.php (Italian)
* New translations settings.php (Swedish)
* New translations settings.php (Bulgarian)
* New translations errors.php (German Informal)
* New translations errors.php (Croatian)
* New translations components.php (Croatian)
* New translations entities.php (Croatian)
* New translations pagination.php (Croatian)
* New translations entities.php (Croatian)
* New translations components.php (Croatian)
* New translations errors.php (Croatian)
* New translations settings.php (Croatian)
* New translations validation.php (Croatian)
* New translations passwords.php (Croatian)
* New translations auth.php (Croatian)
* New translations common.php (Croatian)
* New translations activities.php (Croatian)
2021-06-02 22:15:58 +01:00
Dan Brown
9382d647d7
Merge branch 'ffranchina-master'
2021-06-02 21:57:23 +01:00
Dan Brown
0d17d18d07
New Crowdin updates ( #2777 )
...
* New translations common.php (Latvian)
* New translations entities.php (Latvian)
* New translations activities.php (Italian)
* New translations common.php (Italian)
* New translations entities.php (Italian)
* New translations errors.php (Italian)
* New translations settings.php (Italian)
* New translations common.php (Spanish, Argentina)
* New translations entities.php (Spanish, Argentina)
* New translations activities.php (Spanish, Argentina)
* New translations common.php (Spanish, Argentina)
* New translations common.php (French)
* New translations common.php (Swedish)
* New translations activities.php (Swedish)
* New translations common.php (Swedish)
* New translations entities.php (Swedish)
* New translations errors.php (Swedish)
* New translations settings.php (Swedish)
* New translations validation.php (Bulgarian)
* New translations validation.php (Bulgarian)
* New translations common.php (Bulgarian)
* New translations validation.php (Bulgarian)
* New translations settings.php (Bulgarian)
* New translations activities.php (Indonesian)
* New translations settings.php (Bulgarian)
* New translations common.php (Bulgarian)
* New translations entities.php (Bulgarian)
* New translations activities.php (Turkish)
* New translations settings.php (Bulgarian)
* New translations components.php (Bulgarian)
* New translations activities.php (Russian)
* New translations common.php (Russian)
* New translations entities.php (Russian)
* New translations common.php (Russian)
* New translations entities.php (Russian)
2021-06-02 21:56:53 +01:00
Dan Brown
24eef03fb9
Added croatian to required arrays/lists
2021-06-02 21:55:30 +01:00
Dan Brown
e51352e1a4
Added back in commas, reset settings language array
...
Related to #2784
2021-06-02 21:50:38 +01:00
Francesco Franchina
fc7b8c49fb
Adding Croatian translation files
2021-06-02 17:32:31 +02:00
Dan Brown
54bac17ef0
New Crowdin updates ( #2764 )
2021-05-30 15:10:11 +01:00
Dan Brown
c4f5ab12cf
Aligned export and revision shown date format
...
As raised in #2771
2021-05-30 00:02:32 +01:00
Dan Brown
d62cdd58d3
Upgraded php and npm deps
...
- Sass upgrade had some breaking changes where division was used
hence updated for newer sass version support.
2021-05-29 13:08:28 +01:00
Dan Brown
ed6ec341df
Added testing to cover next/previous navigation
...
For #2511
2021-05-29 12:49:10 +01:00
Dan Brown
0cfff6ab6f
Reviewed and refactored next/previous navigation button implementation
...
- Updated styling to include item name.
- Extracted used text to translations.
- Updated the design to better suit the surrounding blocks.
- Removed newly added model/repo methods.
- Moved core logic out of controller and instead into a "NextPreviousContentLocator"
helper with re-uses the output from the book-tree generation.
- Also added the system to chapters.
For #2511
2021-05-29 12:39:41 +01:00
Dan Brown
7ca66c5d5e
Merge branch 'prev-next-button' of https://github.com/shubhamosmosys/BookStack into shubhamosmosys-prev-next-button
2021-05-26 22:13:19 +01:00
Dan Brown
9cbea1eb08
Updated drawing upload error to shown/handle server limit errors
...
Closes #2740
2021-05-26 18:23:27 +01:00
Dan Brown
1a2d374f24
Revert "Added app logo to outgoing emails"
...
This reverts commit e32929029b
.
2021-05-26 17:13:59 +01:00
Dan Brown
e32929029b
Added app logo to outgoing emails
...
Required changing the header bar of the email to be solid color to match
the configuration of the main app header since otherwise colors may not
work together.
Closes #2577
2021-05-26 17:11:03 +01:00
Dan Brown
d326417edc
Added name input autofocus on shelves, books and chapters
...
Closes #1956
2021-05-26 15:25:23 +01:00
Dan Brown
a3a8fef6b2
Made users header interface more adaptable
...
Search input was stacking on create button on default desktop view
due when viewing in russian due to combined width exceeding container.
Made into normal flexbox instead.
Closes #2147
2021-05-26 15:20:35 +01:00
Dan Brown
0c16334426
Merge branch 'master' of github.com:BookStackApp/BookStack
2021-05-25 00:06:13 +01:00
Dan Brown
600f8cd142
Added origin verification to postMessage usage.
...
Closes #2769
2021-05-25 00:05:20 +01:00
Nickolas Gupton
7a6f21648a
Fixes minor vulnerability when using target="_blank" on links (RSPEC-5148)
2021-05-24 16:17:08 -04:00
Dan Brown
3eaf03a7ac
Reviewed tag in seach work
...
- Refactored some tag code bits while reviewing.
- Updated tag design in search listing to be more subtle.
- Moved tags out of entity-list-item-basic template and instead moved
them into entity-list-item, below the existing content.
- Tweaked existing tag colors a little.
- Changed tag icon to be more tag-like.
- Added tag-on-search test case.
Review of #2487 , Related to #2462
2021-05-24 16:12:09 +01:00