2025-07-22 18:52:28 +02:00
19 changed files with 92 additions and 285 deletions
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@ -25,7 +25,7 @@ before_script:
 pre-commit-check:
  <<: *only-default
  stage: pre-commit
-  image: python:3.11-bookworm
+  image: python:3.11-bullseye
  # variables:
  #   PRE_COMMIT_HOME: ${CI_PROJECT_DIR}/.cache/pre-commit
  # cache:
@ -53,7 +53,7 @@ secret_detection:
 test-3.8-core:
  <<: *only-default
-  image: python:3.8-bookworm
+  image: python:3.8-bullseye
  script:
    - tox -e py38-core
  artifacts:
@ -65,7 +65,7 @@ test-3.8-core:
 test-3.9-core:
  <<: *only-default
-  image: python:3.9-bookworm
+  image: python:3.9-bullseye
  script:
    - tox -e py39-core
  artifacts:
@ -77,7 +77,7 @@ test-3.9-core:
 test-3.10-core:
  <<: *only-default
-  image: python:3.10-bookworm
+  image: python:3.10-bullseye
  script:
    - tox -e py310-core
  artifacts:
@ -89,7 +89,7 @@ test-3.10-core:
 test-3.11-core:
  <<: *only-default
-  image: python:3.11-bookworm
+  image: python:3.11-bullseye
  script:
    - tox -e py311-core
  artifacts:
@ -101,7 +101,7 @@ test-3.11-core:
 test-3.12-core:
  <<: *only-default
-  image: python:3.12-bookworm
+  image: python:3.12-rc-bullseye
  script:
    - tox -e py312-core
  artifacts:
@ -113,7 +113,7 @@ test-3.12-core:
 test-3.8-all:
  <<: *only-default
-  image: python:3.8-bookworm
+  image: python:3.8-bullseye
  script:
    - tox -e py38-all
  artifacts:
@ -125,7 +125,7 @@ test-3.8-all:
 test-3.9-all:
  <<: *only-default
-  image: python:3.9-bookworm
+  image: python:3.9-bullseye
  script:
    - tox -e py39-all
  artifacts:
@ -137,7 +137,7 @@ test-3.9-all:
 test-3.10-all:
  <<: *only-default
-  image: python:3.10-bookworm
+  image: python:3.10-bullseye
  script:
    - tox -e py310-all
  artifacts:
@ -149,7 +149,7 @@ test-3.10-all:
 test-3.11-all:
  <<: *only-default
-  image: python:3.11-bookworm
+  image: python:3.11-bullseye
  script:
    - tox -e py311-all
  artifacts:
@ -162,7 +162,7 @@ test-3.11-all:
 test-3.12-all:
  <<: *only-default
-  image: python:3.12-bookworm
+  image: python:3.12-rc-bullseye
  script:
    - tox -e py312-all
  artifacts:
@ -174,7 +174,7 @@ test-3.12-all:
 build-test:
  stage: test
-  image: python:3.11-bookworm
+  image: python:3.11-bullseye
  before_script:
    - python -m pip install --upgrade pip
@ -193,13 +193,13 @@ build-test:
 test-docs:
  <<: *only-default
-  image: python:3.11-bookworm
+  image: python:3.11-bullseye
  script:
    - tox -e docs
 deploy_production:
  stage: deploy
-  image: python:3.11-bookworm
+  image: python:3.11-bullseye
  before_script:
    - python -m pip install --upgrade pip
--- a/allianceauth/init.py
+++ b/allianceauth/init.py
@ -5,7 +5,7 @@ manage online service access.
 # This will make sure the app is always imported when
 # Django starts so that shared_task will use this app.
-__version__ = '4.2.1'
+__version__ = '4.1.0'
 __title__ = 'Alliance Auth'
 __url__ = 'https://gitlab.com/allianceauth/allianceauth'
 NAME = f'{__title__} v{__version__}'
--- a/allianceauth/analytics/tasks.py
+++ b/allianceauth/analytics/tasks.py
@ -101,33 +101,6 @@ def analytics_daily_stats():
                    event_type='Stats')
    for appconfig in apps.get_app_configs():
        if appconfig.label in [
            "django_celery_beat",
            "bootstrapform",
            "messages",
            "sessions",
            "auth",
            "staticfiles",
            "users",
            "addons",
            "admin",
            "humanize",
            "contenttypes",
            "sortedm2m",
            "django_bootstrap5",
            "tokens",
            "authentication",
            "services",
            "framework",
            "notifications"
            "eveonline",
            "navhelper",
            "analytics",
            "menu",
            "theme"
        ]:
            pass
        else:
        analytics_event(namespace='allianceauth.analytics',
                        task='send_extension_stats',
                        label=appconfig.label,
--- a/allianceauth/apps.py
+++ b/allianceauth/apps.py
@ -5,5 +5,26 @@ from django.core.checks import Warning, Error, register
 class AllianceAuthConfig(AppConfig):
    name = 'allianceauth'
-    def ready(self) -> None:
+
-        import allianceauth.checks # noqa
+@register()
 def check_settings(app_configs, **kwargs):
    from django.conf import settings
    errors = []
    if hasattr(settings, "SITE_URL"):
        if settings.SITE_URL[-1] == "/":
            errors.append(Warning(
                "'SITE_URL' Has a trailing slash. This may lead to incorrect links being generated by Auth."))
    else:
        errors.append(Error(
            "No 'SITE_URL' found is settings. This may lead to incorrect links being generated by Auth or Errors in 3rd party modules."))
    if hasattr(settings, "CSRF_TRUSTED_ORIGINS"):
        if hasattr(settings, "SITE_URL"):
            if settings.SITE_URL not in settings.CSRF_TRUSTED_ORIGINS:
                errors.append(Warning(
                    "'SITE_URL' not found in 'CSRF_TRUSTED_ORIGINS'. Auth may not load pages correctly until this is rectified."))
    else:
        errors.append(Error(
            "No 'CSRF_TRUSTED_ORIGINS' found is settings, Auth may not load pages correctly until this is rectified"))
    return errors
--- a/allianceauth/authentication/templates/authentication/dashboard.html
+++ b/allianceauth/authentication/templates/authentication/dashboard.html
@ -7,7 +7,7 @@
    {% translate "Dashboard" %}
 {% endblock %}
 {% block content %}
-    <div class="row">
+    <div class="d-flex justify-content-around align-self-center flex-wrap">
        {% for dash in views %}
            {{ dash | safe }}
        {% endfor %}
--- a/allianceauth/authentication/templates/authentication/dashboard_characters.html
+++ b/allianceauth/authentication/templates/authentication/dashboard_characters.html
@ -1,5 +1,5 @@
 {% load i18n %}
-<div id="aa-dashboard-panel-characters" class="col-12 col-xl-8 mb-3">
+<div id="aa-dashboard-panel-characters" class="col-12 col-xl-8 align-self-stretch p-2 ps-0 pe-0 ps-xl-0 pe-xl-2">
    <div class="card h-100">
        <div class="card-body">
            {% translate "Characters" as widget_title %}
--- a/allianceauth/authentication/templates/authentication/dashboard_groups.html
+++ b/allianceauth/authentication/templates/authentication/dashboard_groups.html
@ -1,5 +1,5 @@
 {% load i18n %}
-<div id="aa-dashboard-panel-membership" class="col-12 col-xl-4 mb-3">
+<div id="aa-dashboard-panel-membership" class="col-12 col-xl-4 align-self-stretch py-2 ps-xl-2">
    <div class="card h-100">
        <div class="card-body">
            {% translate "Membership" as widget_title %}
--- a/allianceauth/checks.py
+++ b/allianceauth/checks.py
@ -1,179 +0,0 @@
 from typing import List
 from django import db
 from django.core.checks import CheckMessage, Error, register, Warning
 from allianceauth.utils.cache import get_redis_client
 from django.utils import timezone
 from packaging.version import InvalidVersion, Version as Pep440Version
 from celery import current_app
 from django.conf import settings
 from sqlite3.dbapi2 import sqlite_version_info
 """
 A = System Packages
 B = Configuration
 """
@register()
 def django_settings(app_configs, **kwargs) -> List[CheckMessage]:
    errors: List[CheckMessage] = []
    if hasattr(settings, "SITE_URL"):
        if settings.SITE_URL[-1] == "/":
            errors.append(Warning("'SITE_URL' Has a trailing slash. This may lead to incorrect links being generated by Auth.", hint="", id="allianceauth.checks.B005"))
    else:
        errors.append(Error("No 'SITE_URL' found is settings. This may lead to incorrect links being generated by Auth or Errors in 3rd party modules.", hint="", id="allianceauth.checks.B006"))
    if hasattr(settings, "CSRF_TRUSTED_ORIGINS") and hasattr(settings, "SITE_URL"):
        if settings.SITE_URL not in settings.CSRF_TRUSTED_ORIGINS:
            errors.append(Warning("'SITE_URL' not found in 'CSRF_TRUSTED_ORIGINS'. Auth may not load pages correctly until this is rectified.", hint="", id="allianceauth.checks.B007"))
    else:
        errors.append(Error("No 'CSRF_TRUSTED_ORIGINS' found is settings, Auth may not load pages correctly until this is rectified", hint="", id="allianceauth.checks.B008"))
    return errors
@register()
 def system_package_redis(app_configs, **kwargs) -> List[CheckMessage]:
    errors: List[CheckMessage] = []
    try:
        redis_version = Pep440Version(get_redis_client().info()['redis_version'])
    except InvalidVersion:
        errors.append(Warning("Unable to confirm Redis Version"))
        return errors
    if redis_version.major == 7 and redis_version.minor == 2 and timezone.now() > timezone.datetime(year=2025, month=8, day=31, tzinfo=timezone.utc):
        errors.append(Error(f"Redis {redis_version.public} in Security Support only, Updating Suggested", hint="https://redis.io/docs/latest/operate/oss_and_stack/install/install-redis/install-redis-on-linux/", id="allianceauth.checks.A001"))
    elif redis_version.major == 7 and redis_version.minor == 0:
        errors.append(Warning(f"Redis {redis_version.public} in Security Support only, Updating Suggested", hint="https://redis.io/docs/latest/operate/oss_and_stack/install/install-redis/install-redis-on-linux/", id="allianceauth.checks.A002"))
    elif redis_version.major == 6 and redis_version.minor == 2:
        errors.append(Warning(f"Redis {redis_version.public} in Security Support only, Updating Suggested", hint="https://redis.io/docs/latest/operate/oss_and_stack/install/install-redis/install-redis-on-linux/", id="allianceauth.checks.A018"))
    elif redis_version.major in [6, 5]:
        errors.append(Error(f"Redis {redis_version.public} EOL", hint="https://redis.io/docs/latest/operate/oss_and_stack/install/install-redis/install-redis-on-linux/", id="allianceauth.checks.A003"))
    return errors
@register()
 def system_package_mysql(app_configs, **kwargs) -> List[CheckMessage]:
    errors: List[CheckMessage] = []
    for connection in db.connections.all():
        if connection.vendor == "mysql":
            try:
                mysql_version = Pep440Version(".".join(str(i) for i in connection.mysql_version))
            except InvalidVersion:
                errors.append(Warning("Unable to confirm MySQL Version"))
                return errors
            # MySQL 8
            if mysql_version.major == 8 and mysql_version.minor == 4 and timezone.now() > timezone.datetime(year=2032, month=4, day=30, tzinfo=timezone.utc):
                errors.append(Error(f"MySQL {mysql_version.public} EOL", hint="https://dev.mysql.com/doc/mysql-apt-repo-quick-guide/en/", id="allianceauth.checks.A004"))
            elif mysql_version.major == 8 and mysql_version.minor == 3:
                errors.append(Warning(f"MySQL {mysql_version.public} Non LTS", hint="https://dev.mysql.com/doc/mysql-apt-repo-quick-guide/en/", id="allianceauth.checks.A005"))
            elif mysql_version.major == 8 and mysql_version.minor == 2:
                errors.append(Warning(f"MySQL {mysql_version.public} Non LTS", hint="https://dev.mysql.com/doc/mysql-apt-repo-quick-guide/en/", id="allianceauth.checks.A006"))
            elif mysql_version.major == 8 and mysql_version.minor == 1:
                errors.append(Error(f"MySQL {mysql_version.public} EOL", hint="https://dev.mysql.com/doc/mysql-apt-repo-quick-guide/en/", id="allianceauth.checks.A007"))
            elif mysql_version.major == 8 and mysql_version.minor == 0 and timezone.now() > timezone.datetime(year=2026, month=4, day=30, tzinfo=timezone.utc):
                errors.append(Error(f"MySQL {mysql_version.public} EOL", hint="https://dev.mysql.com/doc/mysql-apt-repo-quick-guide/en/", id="allianceauth.checks.A008"))
            elif mysql_version.major < 8:  # This will also catch Mariadb 5.x
                errors.append(Error(f"MySQL or MariaDB {mysql_version.public} EOL", hint="https://dev.mysql.com/doc/mysql-apt-repo-quick-guide/en/", id="allianceauth.checks.A009"))
    return errors
@register()
 def system_package_mariadb(app_configs, **kwargs) -> List[CheckMessage]:
    errors: List[CheckMessage] = []
    for connection in db.connections.all():
        if connection.vendor == "mysql":  # Still to find a way to determine MySQL vs MariaDB
            try:
                mariadb_version = Pep440Version(".".join(str(i) for i in connection.mysql_version))
            except InvalidVersion:
                errors.append(Warning("Unable to confirm MariaDB Version"))
                return errors
            # MariaDB 11
            if mariadb_version.major == 11 and mariadb_version.minor == 4 and timezone.now() > timezone.datetime(year=2029, month=5, day=19, tzinfo=timezone.utc):
                errors.append(Error(f"MariaDB {mariadb_version.public} EOL", hint="https://mariadb.org/download/?t=repo-config", id="allianceauth.checks.A010"))
            elif mariadb_version.major == 11 and mariadb_version.minor == 2:
                errors.append(Warning(f"MariaDB {mariadb_version.public} Non LTS", hint="https://mariadb.org/download/?t=repo-config", id="allianceauth.checks.A018"))
                if timezone.now() > timezone.datetime(year=2024, month=11, day=21, tzinfo=timezone.utc):
                    errors.append(Error(f"MariaDB {mariadb_version.public}  EOL", hint="https://mariadb.org/download/?t=repo-config", id="allianceauth.checks.A011"))
            elif mariadb_version.major == 11 and mariadb_version.minor == 1:
                errors.append(Warning(f"MariaDB {mariadb_version.public} Non LTS", hint="https://mariadb.org/download/?t=repo-config", id="allianceauth.checks.A019"))
                if timezone.now() > timezone.datetime(year=2024, month=8, day=21, tzinfo=timezone.utc):
                    errors.append(Error(f"MariaDB {mariadb_version.public} EOL", hint="https://mariadb.org/download/?t=repo-config", id="allianceauth.checks.A012"))
            elif mariadb_version.major == 11 and mariadb_version.minor in [0, 3]:  # Demote versions down here once EOL
                errors.append(Error(f"MariaDB {mariadb_version.public} EOL", hint="https://mariadb.org/download/?t=repo-config.", id="allianceauth.checks.A013"))
            # MariaDB 10
            elif mariadb_version.major == 10 and mariadb_version.minor == 11 and timezone.now() > timezone.datetime(year=2028, month=2, day=10, tzinfo=timezone.utc):
                errors.append(Error(f"MariaDB {mariadb_version.public} EOL", hint="https://mariadb.org/download/?t=repo-config.", id="allianceauth.checks.A014"))
            elif mariadb_version.major == 10 and mariadb_version.minor == 6 and timezone.now() > timezone.datetime(year=2026, month=7, day=6, tzinfo=timezone.utc):
                errors.append(Error(f"MariaDB {mariadb_version.public} EOL", hint="https://mariadb.org/download/?t=repo-config", id="allianceauth.checks.A0015"))
            elif mariadb_version.major == 10 and mariadb_version.minor == 5 and timezone.now() > timezone.datetime(year=2025, month=6, day=24, tzinfo=timezone.utc):
                errors.append(Error(f"MariaDB {mariadb_version.public} EOL", hint="https://mariadb.org/download/?t=repo-config", id="allianceauth.checks.A016"))
            elif mariadb_version.major == 10 and mariadb_version.minor in [0, 1, 2, 3, 4, 7, 9, 10]:  # Demote versions down here once EOL
                errors.append(Error(f"MariaDB {mariadb_version.public} EOL", hint="https://mariadb.org/download/?t=repo-config", id="allianceauth.checks.A017"))
    return errors
@register()
 def system_package_sqlite(app_configs, **kwargs) -> List[CheckMessage]:
    errors: List[CheckMessage] = []
    for connection in db.connections.all():
        if connection.vendor == "sqlite":
            try:
                sqlite_version = Pep440Version(".".join(str(i) for i in sqlite_version_info))
            except InvalidVersion:
                errors.append(Warning("Unable to confirm SQLite Version"))
                return errors
            if sqlite_version.major == 3 and sqlite_version.minor < 27:
                errors.append(Error(f"SQLite {sqlite_version.public} Unsupported by Django", hint="https://pkgs.org/download/sqlite3", id="allianceauth.checks.A020"))
    return errors
@register()
 def sql_settings(app_configs, **kwargs) -> List[CheckMessage]:
    errors: List[CheckMessage] = []
    for connection in db.connections.all():
        if connection.vendor == "mysql":
            try:
                if connection.settings_dict["OPTIONS"]["charset"] != "utf8mb4":
                    errors.append(Error(f"SQL Charset is not set to utf8mb4 DB:{connection.alias}", hint="https://gitlab.com/allianceauth/allianceauth/-/commit/89be2456fb2d741b86417e889da9b6129525bec8", id="allianceauth.checks.B001"))
            except KeyError:
                errors.append(Error(f"SQL Charset is not set to utf8mb4 DB:{connection.alias}", hint="https://gitlab.com/allianceauth/allianceauth/-/commit/89be2456fb2d741b86417e889da9b6129525bec8", id="allianceauth.checks.B001"))
            # This hasn't actually been set on AA yet
            # try:
            #     if connection.settings_dict["OPTIONS"]["collation"] != "utf8mb4_unicode_ci":
            #         errors.append(Error(f"SQL Collation is not set to utf8mb4_unicode_ci DB:{connection.alias}", hint="https://gitlab.com/allianceauth/allianceauth/-/commit/89be2456fb2d741b86417e889da9b6129525bec8", id="allianceauth.checks.B001"))
            # except KeyError:
            #     errors.append(Error(f"SQL Collation is not set to utf8mb4_unicode_ci DB:{connection.alias}", hint="https://gitlab.com/allianceauth/allianceauth/-/commit/89be2456fb2d741b86417e889da9b6129525bec8", id="allianceauth.checks.B001"))
        # if connection.vendor == "sqlite":
    return errors
@register()
 def celery_settings(app_configs, **kwargs) -> List[CheckMessage]:
    errors: List[CheckMessage] = []
    if current_app.conf.broker_transport_options != {'priority_steps': [0, 1, 2, 3, 4, 5, 6, 7, 8, 9], 'queue_order_strategy': 'priority'}:
        errors.append(Error("Celery Priorities are not set correctly", hint="https://gitlab.com/allianceauth/allianceauth/-/commit/8861ec0a61790eca0261f1adc1cc04ca5f243cbc", id="allianceauth.checks.B003"))
    if current_app.conf.broker_connection_retry_on_startup != True:
        errors.append(Error("Celery broker_connection_retry_on_startup not set correctly", hint="https://gitlab.com/allianceauth/allianceauth/-/commit/380c41400b535447839e5552df2410af35a75280", id="allianceauth.checks.B004"))
    return errors
 # IDEAS
 # Any other celery things weve manually changed over the years
 # I'd be happy to add Community App checks, old versions the owners dont want to support etc.
 # Check Default Collation on DB
 # Check Charset Collation on all tables
--- a/allianceauth/framework/templates/framework/dashboard/widget-title.html
+++ b/allianceauth/framework/templates/framework/dashboard/widget-title.html
@ -1,7 +1,7 @@
 {#Usage:#}
 {#    {% include "framework/dashboard/widget-title.html" with title="Foobar" %}#}
-<div class="text-center">
+<div class="d-flex align-items-center">
    <h4 class="ms-auto me-auto mb-3">
        {{ title }}
    </h4>
--- a/allianceauth/optimer/templates/optimer/dashboard.ops.html
+++ b/allianceauth/optimer/templates/optimer/dashboard.ops.html
@ -1,7 +1,7 @@
 {% load i18n %}
 {% load evelinks %}
-<div class="col-12 mb-3">
+<div class="col-12 align-self-stretch py-2">
    <div class="card h-100">
        <div class="card-body">
            {% translate "Upcoming Fleets" as widget_title %}
--- a/allianceauth/templates/allianceauth/admin-status/esi_check.html
+++ b/allianceauth/templates/allianceauth/admin-status/esi_check.html
@ -1,5 +1,5 @@
 {% load i18n %}
-<div id="esi-alert" class="col-12 collapse">
+<div id="esi-alert" class="col-12 align-self-stretch py-2 collapse">
    <div class="alert alert-warning">
        <p class="text-center ">{% translate 'Your Server received an ESI error response code of ' %}<b id="esi-code">?</b></p>
        <hr>
@ -23,7 +23,7 @@
            console.log("ESI Check: ", JSON.stringify(responseJson, null, 2));
            const status = responseJson.status;
-            if (status !== 200) {
+            if (status != 200) {
                elemCode.textContent = status
                elemMessage.textContent = responseJson.data.error;
                new bootstrap.Collapse(elemCard, {
--- a/allianceauth/templates/allianceauth/admin-status/overview.html
+++ b/allianceauth/templates/allianceauth/admin-status/overview.html
@ -2,7 +2,7 @@
 {% load humanize %}
 {% if notifications %}
-    <div id="aa-dashboard-panel-admin-notifications" class="col-12 mb-3">
+    <div id="aa-dashboard-panel-admin-notifications" class="col-12 align-self-stretch pb-2">
        <div class="card">
            <div class="card-body">
                {% translate "Alliance Auth Notifications" as widget_title %}
@ -46,7 +46,7 @@
    </div>
 {% endif %}
-<div class="col-12 mb-3">
+<div class="col-12 align-self-stretch py-2">
    <div class="card">
        <div class="card-body row">
            <div id="aa-dashboard-panel-software-version" class="col-xl-6 col-lg-12 col-md-12 col-sm-12">
--- a/allianceauth/templates/allianceauth/error.html
+++ b/allianceauth/templates/allianceauth/error.html
@ -1,14 +1,10 @@
 {% extends "allianceauth/base-bs5.html" %}
 {% load theme_tags %}
 {% block page_title %}
    {{ error_title }}
 {% endblock page_title %}
 {% block content %}
    <div class="d-flex flex-column" style="height: calc(100vh - {% header_padding_size %}); margin-top: -1rem; margin-bottom: -1rem;">
        <div class="d-flex flex-grow-1 justify-content-center align-items-center">
    <div>
        {% include "framework/header/page-header.html" with title=error_title %}
@ -32,6 +28,4 @@
        <p class="text-center">{{ error_message }}</p>
    </div>
        </div>
    </div>
 {% endblock content %}
--- a/allianceauth/timerboard/templates/timerboard/dashboard.timers.html
+++ b/allianceauth/timerboard/templates/timerboard/dashboard.timers.html
@ -1,7 +1,7 @@
 {% load i18n %}
 {% load evelinks %}
-<div class="col-12 mb-3">
+<div class="col-12 align-self-stretch py-2">
    <div class="card h-100">
        <div class="card-body">
            {% translate "Upcoming Timers" as widget_title %}
--- a/docker/.env.example
+++ b/docker/.env.example
@ -1,7 +1,7 @@
 PROTOCOL=https://
 AUTH_SUBDOMAIN=%AUTH_SUBDOMAIN%
 DOMAIN=%DOMAIN%
-AA_DOCKER_TAG=registry.gitlab.com/allianceauth/allianceauth/auth:v4.2.1
+AA_DOCKER_TAG=registry.gitlab.com/allianceauth/allianceauth/auth:v4.1.0
 # Nginx Proxy Manager
 PROXY_HTTP_PORT=80
--- a/docker/Dockerfile
+++ b/docker/Dockerfile
@ -1,5 +1,5 @@
 FROM python:3.11-slim
-ARG AUTH_VERSION=v4.2.1
+ARG AUTH_VERSION=v4.1.0
 ARG AUTH_PACKAGE=allianceauth==${AUTH_VERSION}
 ENV AUTH_USER=allianceauth
 ENV AUTH_GROUP=allianceauth
@ -9,21 +9,21 @@ ENV AUTH_HOME=/home/allianceauth
 # Setup user and directory permissions
 SHELL ["/bin/bash", "-c"]
-RUN groupadd -g 61000 ${AUTH_GROUP} && \
+RUN groupadd -g 61000 ${AUTH_GROUP}
-    useradd -g 61000 -l -m -s /bin/false -u 61000 ${AUTH_USER}
+RUN useradd -g 61000 -l -M -s /bin/false -u 61000 ${AUTH_USER}
 RUN mkdir -p ${STATIC_BASE} \
    && chown ${AUTH_USERGROUP} ${STATIC_BASE} \
    && mkdir -p ${AUTH_HOME} \
    && chown ${AUTH_USERGROUP} ${AUTH_HOME}
-RUN mkdir -p ${STATIC_BASE}/myauth/static \
+# Install build dependencies
-    && chown ${AUTH_USERGROUP} ${STATIC_BASE}/myauth/static
+RUN apt-get update && apt-get upgrade -y && apt-get install -y \
    libmariadb-dev gcc git pkg-config
-# Install Build Dependencies
+# Install python dependencies
-RUN apt-get update \
+RUN pip install --upgrade pip
-    && apt-get upgrade -y  \
+RUN pip install wheel gunicorn
-    && apt-get install -y --no-install-recommends libmariadb-dev gcc git pkg-config \
+RUN pip install ${AUTH_PACKAGE}
    && apt-get clean \
    && rm -rf /var/lib/apt/lists/*
 # Install AA and Dependencies
 RUN pip install --no-cache-dir ${AUTH_PACKAGE} gunicorn
 # Switch to non-root user
 USER ${AUTH_USER}
@ -33,6 +33,7 @@ WORKDIR ${AUTH_HOME}
 RUN allianceauth start myauth
 COPY /allianceauth/project_template/project_name/settings/local.py ${AUTH_HOME}/myauth/myauth/settings/local.py
 RUN allianceauth update myauth
 RUN mkdir -p ${STATIC_BASE}/myauth/static
 RUN echo 'alias auth="python $AUTH_HOME/myauth/manage.py"' >> ~/.bashrc && \
    source ~/.bashrc
--- a/docker/custom.dockerfile
+++ b/docker/custom.dockerfile
@ -1,8 +1,6 @@
 ARG AA_DOCKER_TAG
 FROM $AA_DOCKER_TAG
-WORKDIR ${AUTH_HOME}
+RUN cd /home/allianceauth
 COPY /conf/requirements.txt requirements.txt
-RUN --mount=type=cache,target=~/.cache \
+RUN pip install -r requirements.txt
    pip install -r requirements.txt
--- a/docs/development/custom/framework/templates.md
+++ b/docs/development/custom/framework/templates.md
@ -35,7 +35,7 @@ To ensure the dashboard widgets have a unified style, we provide a template part
 To use it, you can use the following code in your dashboard widget template:
 ```django
-<div id="my-app-dashboard-widget" class="col-12 mb-3">
+<div id="my-app-dashboard-widget" class="col-12 align-self-stretch py-2">
    <div class="card">
        <div class="card-body">
            {% translate "My Widget Title" as widget_title %}
--- a/pyproject.toml
+++ b/pyproject.toml
@ -18,7 +18,6 @@ authors = [
 requires-python = ">=3.8"
 classifiers = [
    "Environment :: Web Environment",
    "Framework :: Celery",
    "Framework :: Django",
    "Framework :: Django :: 4.2",
    "Intended Audience :: Developers",