* Add service access permissions and migration
`ENABLE_AUTH_<servicename> = True` will have the new permission applied
to the settings configured `DEFAULT_AUTH_GROUP` group or `Member` if
none is configured.
`ENABLE_BLUE_<servicename> = True` will have the new permission applied
to the settings configured `DEFAULT_BLUE_GROUP` group or `Blue` if none
is configured.
* Move views and hooks to permissions based access
* Remove access restriction to services view
Hypothetically non-member/blues could be granted permission to access
services manually as desired now. A user that has no permissions to
access any services will see a blank services list.
* Remove obsolete service settings
* Remove references to obsolete settings
* Adjusted tests to support permissions based access
* Fix incorrectly named permissions
* Add simple get_services generator function
* Added signals for user and groups perm changes
* Update validate_services to support permissions
deactivate_services removed as its surplus to requirements.
* Removed state parameter from validate_services calls
* Update tests to support signals changes
* Fix incorrect call to validate_services task
* Fix validate_services and test
* Add validate_user to changed user groups signal
* Added tests for new signals
* Remove unnecessary post_add signals
* Added documentation for service permissions
* Added detection for members with service active
If there are any service users in the Member or Blue groups active, then
the permission will be added to the respective Member or Blue group.
This means its no longer necessary to maintain the service enablesettings to migrate to permissions based service.
Remove obsolete state based status checking
* Hooks registration, discovery and retrieval module
Will discover @hooks.register decorated functions inside
the auth_hooks module in any installed django app.
* Class to register modular service apps
* Register service modules URLs
* Example service module
* Refactor services into modules
Each service type has been split out into its own django app/module. A
hook mechanism is provided to register a subclass of the ServiceHook
class. The modules then overload functions defined in ServiceHook as
required to provide interoperability with alliance auth. Service modules
provide their own urls and views for user registration and account
management and a partial template to display on the services page. Where
possible, new modules should provide their own models for local data
storage.
* Added menu items hooks and template tags
* Added menu item hook for broadcasts
* Added str method to ServicesHook
* Added exception handling to hook iterators
* Refactor mumble migration and table name
Upgrading will require `migrate mumble --fake-initial` to be run first
and then `migrate mumble` to rename the table.
* Refactor teamspeak3 migration and rename table
Upgrading will require `migrate teamspeak3 --fake-initial`
* Added module models and migrations for refactoring AuthServicesInfo
* Migrate AuthServiceInfo fields to service modules models
* Added helper for getting a users main character
* Added new style celery instance
* Changed Discord from AuthServicesInfo to DiscordUser model
* Switch celery tasks to staticmethods
* Changed Discourse from AuthServicesInfo to DiscourseUser model
* Changed IPBoard from AuthServicesInfo to IpboardUser model
* Changed Ips4 from AuthServicesInfo to Ips4User model
Also added disable service task.
This service still needs some love though. Was always missing a
deactivate services hook (before refactoring) for reasons I'm unsure of
so I'm reluctant to add it without knowing why.
* Changed Market from AuthServicesInfo to MarketUser model
* Changed Mumble from AuthServicesInfo to MumbleUser model
Switched user foreign key to one to one relationship.
Removed implicit password change on user exists.
Combined regular and blue user creation.
* Changed Openfire from AuthServicesInfo to OpenfireUser model
* Changed SMF from AuthServicesInfo to SmfUser model
Added disable task
* Changed Phpbb3 from AuthServicesInfo to Phpbb3User model
* Changed XenForo from AuthServicesInfo to XenforoUser model
* Changed Teamspeak3 from AuthServicesInfo to Teamspeak3User model
* Remove obsolete manager functions
* Standardise URL format
This will break some callback URLs
Discord changes from /discord_callback/ to /discord/callback/
* Removed unnecessary imports
* Mirror upstream decorator change
* Setup for unit testing
* Unit tests for discord service
* Added add main character helper
* Added Discourse unit tests
* Added Ipboard unit tests
* Added Ips4 unit tests
* Fix naming of market manager, switch to use class methods
* Remove unused hook functions
* Added market service unit tests
* Added corp ticker to add main character helper
* Added mumble unit tests
* Fix url name and remove namespace
* Fix missing return and add missing URL
* Added openfire unit tests
* Added missing return
* Added phpbb3 unit tests
* Fix SmfManager naming inconsistency and switch to classmethods
* Added smf unit tests
* Remove unused functions, Added missing return
* Added xenforo unit tests
* Added missing return
* Fixed reference to old model
* Fixed error preventing groups from syncing on reset request
* Added teamspeak3 unit tests
* Added nose as test runner and some test settings
* Added package requirements for running tests
* Added unit tests for services signals and tasks
* Remove unused tests file
* Fix teamspeak3 service signals
* Added unit tests for teamspeak3 signals
Changed other unit tests setUp to inert signals
* Fix password gen and hashing python3 compatibility
Fixes#630
Adds unit tests to check the password functions run on both platforms.
* Fix unit test to not rely on checking url params
* Add Travis CI settings file
* Remove default blank values from services models
* Added dynamic user model admin actions for syncing service groups
* Remove unused search fields
* Add hook function for syncing nicknames
* Added discord hook for sync nickname
* Added user admin model menu actions for sync nickname hook
* Remove obsolete code
* Rename celery config app to avoid package name clash
* Added new style celerybeat schedule configuration
periodic_task decorator is depreciated
* Added string representations
* Added admin pages for services user models
* Removed legacy code
* Move link discord button to correct template
* Remove blank default fields from example model
* Disallow empty django setting
* Fix typos
* Added coverage configuration file
* Add coverage and coveralls to travis config
Should probably use nose's built in coverage, but this works for now.
* Replace AuthServicesInfo get_or_create instances with get
Reflects upstream changes to AuthServicesInfo behaviour.
* Update mumble user table name
* Split out mumble authenticator requirements
zeroc-ice seems to cause long build times on travis-ci and isn't
required for the core projects functionality or testing.
Alter user field to OneToOneField
Migration to enforce uniqueness pre-change
Migration to ensure all users have an AuthServicesInfo
Receiver to automatically create one upon user creation
Replace AuthServicesInfo.get_or_create with get
Prevent deletion of AuthServicesInfo from admin site
Remove add and delete permissions from model.
Get character names in chunks on corpstats update to prevent HTTP400 when requesting >350(ish) names
Include corpstats docs.
Update settings docs.
* Alter Discourse support to act as SSO provider.
Correct service group sync retry queueing.
* Correct default database enviroment variable names.
* Redirect to requested page after succesful login.
* Correct default redirect handling.
Correct attribute used to logout users on Discourse.
Improve logging messages to use parsed path on Discourse.
* Correct task retry syntax using bind=True.
Inherit from base exception so can catch TeamspeakErrors.
* Port to Django 1.10
Initial migrations for current states of all models. Requires faking to retain data.
Removed all references to render_to_response, replacing with render shortcut.
Same for HttpResponseRedirect to render shortcut.
Corrected notification signal import to wait for app registry to finish loading.
* Correct typos from render conversion
* Modify models to suppress Django field warnings
* Script for automatic database conversion
- fakes initial migrations to preserve data
Include LOGIN_URL setting
* Correct context processor import typo
* Removed pathfinder support.
Current pathfinder versions require SSO, not APIs added to database.
Conditionally load additional database definitions only if services are enabled.
Prevents errors when running auth without creating all possible databases.
* Condense context processors
* Include Django 1.10 installation in migrate script
Remove syncdb/evolve, replace with migrate for update script
* Replaced member/blue perms with user state system
Removed sigtracker
Initial migrations for default perms and groups
Removed perm bootstrapping on first run
* Clean up services list
* Remove fleet fittings page
* Provide action feedback via django messaging
Display unread notification count
Correct left navbar alignment
* Stop storing service passwords.
Provide them one time upon activation or reset.
Closes#177
* Add group sync buttons to admin site
Allow searcing of AuthServicesInfo models
Display user main character
* Correct button CSS to remove underlines on hover
* Added bulk actions to notifications
Altered notification default ordering
* Centralize API key validation.
Remove unused error count on API key model.
Restructure API key refresh task to queue all keys per user and await completion.
Closes#350
* Example configuration files for supervisor.
Copy to /etc/supervisor/conf.d and restart to take effect.
Closes#521Closes#266
* Pre-save receiver for member/blue state switching
Removed is_blue field
Added link to admin site
* Remove all hardcoded URLs from views and templates
Correct missing render arguments
Closes#540
* Correct celeryd process directory
* Migration to automatically set user states.
Runs instead of waiting for next API refresh cycle. Should make the transition much easier.
* Verify service accounts accessible to member state
* Restructure project to remove unnecessary apps.
(celerytask, util, portal, registraion apps)
Added workarounds for python 3 compatibility.
* Correct python2 compatibility
* Check services against state being changed to
* Python3 compatibility fixes
* Relocate x2bool py3 fix
* SSO integration for logging in to existing accounts.
* Add missing url names for fleetup reverse
* Sanitize groupnames before syncing.
* Correct trailing slash preventing url resolution
* Alter group name sanitization to allow periods and hyphens
* Correct state check on pre_save model for corp/alliance group assignment
* Remove sigtracker table from old dbs to allow user deletion
* Include missing celery configuration
* Teamspeak error handling
* Prevent celery worker deadlock on async group result wait
* Correct active navbar links for translated urls.
Correct corp status url resolution for some links.
Remove DiscordAuthToken model.
* Implement Discord OAuth
- extend group caching to Discord
- use bot token to manipulate api
- migrate to official API
Addresses #419
* Remove virtualenv wrapper
* Discord OAuth integration playtest corrections
Closes#419
* Automatic rejection of old API IDs
* Added API ID fudge factor
* Added toggle-able options for api key rejection
* Clarified ValidationError message
* Allows automatic update of Discord avatar to EVE avatar
* Initial work on Discourse integration
* Views for discourse
* Discourse group updates
Correct password display
* Removed password functions
Changed delete to suspend user forever
Added unsuspend check to add_user
- without, can only broadcast to own groups
- with, can broadcast to all and every group
Updated form to check request user for permission and groups when generating form
For #159
- prevents exploit of another user entering incorrect password for email yet passing validation using existing token mentioned in #146
- does not protect against same user entering wrong password (I can live with this.)
Periodic task to remove invalid token every 2 hours
Changed how user accounts in discord are handled: endpoint accepts password and email.
Accounts are created with a password(random) and their user email. Need to activate account through link in email.
