Commit Graph

576 Commits

Author SHA1 Message Date
Guillaume Ayoub
3a565e586e Add tox configuration 2012-10-19 12:38:18 +02:00
Ehsanul Hoque
dbc622e8d7 Added HTTP-based authentication
The purpose of this is in order to tie CalDAV accounts to an external web
application. This application must provide a URL end point to which a POST
request can be made, with the username/password sent as the payload. A 200 or
201 response is considered successful authentication. Any other response is
a failure.
2012-09-28 09:52:17 +06:00
Guillaume Ayoub
34a28f7611 Add tests structure 2012-09-15 10:00:13 +02:00
Guillaume Ayoub
4fbd087497 Update .gitignore 2012-09-15 09:59:43 +02:00
Guillaume Ayoub
4c064bcf35 Clean rights from file and remove tests 2012-09-15 09:08:01 +02:00
Guillaume Ayoub
7b15832dbf Merge pull request #12 from matthiasjordan/master
File-based rights and testing
2012-09-14 05:23:24 -07:00
Guillaume Ayoub
e06cfa4de0 Handle "If-None-Match: *" HTTP headers for PUT requests 2012-08-31 17:24:32 +02:00
Matthias Jordan
e08aa6176c Less aggressive logging 2012-08-18 00:36:30 +02:00
Matthias Jordan
0c4562c01d Using different HTTP status codes in some cases where auth or rights are violated 2012-08-18 00:18:22 +02:00
Matthias Jordan
db708a0853 Checking rights only once. Also taking care of mistakenly checking
ownership of events. xmlutils is now unaware of rights.
2012-08-15 22:36:42 +02:00
Matthias Jordan
0722db04fb Extract method 2012-08-15 15:12:18 +02:00
Matthias Jordan
a5eef56a91 Added stuff to .gitignore 2012-08-15 15:02:20 +02:00
Matthias Jordan
58748e748b Fixed comments in config 2012-08-11 01:04:02 +02:00
Matthias Jordan
89f4e8eefc Automatically executing tests in directory 'test' 2012-08-11 00:57:48 +02:00
Matthias Jordan
bc0b74c555 Using collection's URL for logging instead of its name 2012-08-11 00:57:15 +02:00
Matthias Jordan
e3bc6afdd3 Added file-based rights management 2012-08-11 00:56:45 +02:00
Guillaume Ayoub
237f42909a Add owner_write rights manager 2012-08-09 17:32:03 +02:00
Guillaume Ayoub
98bbe61f67 Use relative imports 2012-08-09 17:31:36 +02:00
Guillaume Ayoub
9f446cb261 Fix GET requests 2012-08-09 16:00:31 +02:00
Guillaume Ayoub
17857654b0 Use the same import mechanisms for auth, storage, rights 2012-08-09 15:39:01 +02:00
Guillaume Ayoub
3ddbb80674 Fix OPTIONS requests 2012-08-09 14:29:44 +02:00
Guillaume Ayoub
4fa53d15b3 Fix the auth checking algorithm 2012-08-09 14:15:20 +02:00
Guillaume Ayoub
e33ee8ea7c Small fixes 2012-08-08 18:54:58 +02:00
Guillaume Ayoub
e14bed9f95 Add rights section in config module 2012-08-08 18:45:55 +02:00
Guillaume Ayoub
b4a7ada5f2 is_authorized returns True when no auth method is set 2012-08-08 18:44:25 +02:00
Guillaume Ayoub
45afac5353 Code cleaned and modules renamed
*Radicale is probably broken now*
2012-08-08 18:29:09 +02:00
Guillaume Ayoub
a17ad1b6a3 Un-revert some lost commits 2012-08-08 16:37:18 +02:00
Guillaume Ayoub
eee83bb49c Merge pull request #11 from matthiasjordan/master
Separe authentication and authorization
2012-08-08 06:49:14 -07:00
Matthias Jordan
55a13d4c39 Merge remote-tracking branch 'upstream/master'
Conflicts:
	radicale/__init__.py
	radicale/acl/courier.py
2012-08-04 11:27:51 +02:00
Guillaume Ayoub
7d06d1b4d5 Version set to "git" 2012-08-03 14:37:40 +02:00
Guillaume Ayoub
0cf9b92ce7 Version 0.7.1 2012-08-03 14:37:02 +02:00
Guillaume Ayoub
7ae764fd4b Enhance readability according to PEP8 2012-08-03 14:08:11 +02:00
Guillaume Ayoub
f593ab0fbd Set the maximuml line length to 79 instead of 80 2012-08-03 13:55:52 +02:00
Matthias Jordan
e40e68b528 Separation of authentication and authorization. Separation of read and write authorization.
Static test strategies for authentication. Barely tested. Use at your own risk!
2012-08-03 13:10:20 +02:00
Guillaume Ayoub
a7481a0546 Clean the server's __call__ method, with comments and better variable names 2012-08-03 11:52:30 +02:00
Guillaume Ayoub
9d193b6b30 Don't start Radicale when PID file exists (fixes #890) 2012-08-03 00:29:06 +02:00
Guillaume Ayoub
83baebd750 PEP8 and cleanup for the new IMAP ACL module 2012-07-16 19:09:35 +02:00
Guillaume Ayoub
0daad0b6b2 Merge pull request #8 from zcode/acl/IMAP
New IMAP ACL
2012-07-16 09:16:51 -07:00
Daniel Aleksandersen
e2d9f79dc4 Default config values for IMAP ACL
Hostname ``localhost``on port ``143`` (standard port).
2012-07-05 20:54:33 +02:00
Daniel Aleksandersen
360d4e6411 New IMAP ACL
Secure authentication based on the ``imaplib`` module.

Validating users against a modern IMAP4rev1 server that awaits STARTTLS
on port 143. Legacy SSL (often on legacy port 993) is deprecated and
thus unsupported. STARTTLS is enforced except if host is ``localhost``
as passwords are sent in PLAIN.

Python 3.2 or newer is required for TLS.
2012-07-05 20:52:10 +02:00
Guillaume Ayoub
15f28e9acd Merge pull request #7 from zcode/patch-1
PAM: Return the group database entry
2012-07-04 09:57:11 -07:00
Daniel Aleksandersen
a45b7b7c23 Return the group database entry 2012-07-04 15:56:15 +03:00
Guillaume Ayoub
5a260d33db Merge pull request #6 from antonyc/patch-1
Fix typo in config file for htpasswd* entries
2012-07-02 04:43:14 -07:00
Benjamin Frank
03fc5fc526 Fix Courier ACL
Replaced blacklisting approach with a whitelisting on, thus preventing access
due to responses from authlib not containing the word 'FAIL', e.g. empty ones
(see http://www.courier-mta.org/authlib/README_authlib.html#authpipeproto)
2012-07-02 13:30:28 +02:00
Guillaume Ayoub
ea94ec919e Use the right namespace for adressbook tags 2012-06-28 11:28:42 +02:00
antonyc
c0ed505f78 I tried to start a dev installation with htpasswd and found this typo. 2012-06-23 01:01:45 +04:00
Guillaume Ayoub
cff6c2b43b Return 204 response when an item is modified 2012-06-22 12:29:49 +02:00
Guillaume Ayoub
e471d15f00 Merge branch 'master' of github.com:Kozea/Radicale 2012-06-14 16:36:20 +02:00
Guillaume Ayoub
25c3648d75 Add a dummy filter for item tags
Related to #53
2012-06-14 16:35:32 +02:00
Guillaume Ayoub
186c59cd3a Merge pull request #5 from oswjk/displayname
Set the D:displayname for collections in PROPFIND response
2012-05-24 22:00:53 -07:00