5ec46f551c
Merge pull request #169 from untitaker/issue143
...
Fix #143
2014-06-15 09:58:12 +02:00
030436327a
Fix #143
...
Since all iCalendar objects have VCALENDAR inside them, that tag is
absolutely meaningless (in this context).
2014-06-04 22:55:35 +02:00
8673717838
Allow tilde expansion for htpasswd file
...
Call os.path.expanduser on the location given by the config parameter.
This will allow to use settings like
htpasswd_filename = ~/.config/radicale/users
2014-05-14 01:42:19 +02:00
d5724d717d
Rely on dulwich <= 0.9.5 for python2.6 tests
2014-05-06 19:00:59 +02:00
6021f16866
Fix owner_* methods ( fix #151 )
2014-05-06 15:15:58 +02:00
1ab07d84e6
Add some documentation about the "user" key in the "regex" rights module
2014-04-16 18:56:57 +02:00
799dbfe612
Fix "authenticated" method
2014-04-16 17:05:20 +02:00
58370ef641
Add python 3.4 in setup.py
2014-04-15 18:24:44 +02:00
2aaa8f06fc
Add python3.4 support in tox
2014-04-15 18:11:19 +02:00
3e893a3420
Merge pull request #142 from mike-perdide/authenticated_feature
...
Adding a new "authenticated" ACL type.
2014-04-15 16:48:19 +02:00
4b8308a3ec
Merge pull request #140 from mike-perdide/regex_file_coherence
...
Regex file coherence
2014-04-15 16:47:39 +02:00
aabebb5578
Adding a new "authenticated" ACL type.
...
When set, all authenticated users will have rw permissions on all
collections, but no anonymous user will be able to read or write any
collection.
2014-04-09 00:02:39 +02:00
963e21212b
Renaming the regex.py methods args for coherence.
2014-04-09 00:02:09 +02:00
6677dbcdc9
Moving the debug log at the proper place.
...
If we don't do this, we might get the following in the logs:
2014-04-08 20:00:59,354 - DEBUG: Section 'r' matches
2014-04-08 20:00:59,354 - DEBUG: Section 'r' does not match
which is a bit confusing.
2014-04-09 00:02:03 +02:00
d053257643
Merge pull request #129 from mkai/_py26_ciphers_fix
...
Add SSL ciphers argument only if supported, fixes Python 2.6 compat
2014-03-19 14:13:29 +01:00
0dee34b3a8
Add SSL ciphers argument only if supported, fixes Python 2.6 compat
2014-03-19 14:04:25 +01:00
45f8e76643
Revert "Follow the depth in REPORT requests"
...
This reverts commit 9556508b2a
2014-03-05 19:26:42 +01:00
9556508b2a
Follow the depth in REPORT requests
2014-03-04 01:37:14 +01:00
066dffd614
Cut line
2014-03-04 01:08:56 +01:00
3bd5b8f0fc
Let's try to release 0.9 beta 1
2014-02-24 23:26:40 +01:00
152e5494d3
Use flup or flipflop in fcgi script
2014-02-24 20:05:14 +01:00
f9ce1d0e6d
Remove the backend/type split for rights in configuration
2014-02-05 14:11:40 +01:00
f6a6e77fb0
Typo fixes in config file
2014-02-05 13:58:30 +01:00
df85a8c990
Update NEWS
2014-02-05 13:17:01 +01:00
2ad8b57305
Merge branch 'apache_auth' of git://github.com/jaesivsm/Radicale into jaesivsm-apache_auth
...
Conflicts:
radicale/__init__.py
2014-02-05 13:09:37 +01:00
701df2d201
Use environ.get instead of try/except
2014-02-05 13:01:49 +01:00
f7c7746643
Merge pull request #99 from horazont/fix-preauth
...
Fix issues if authentication is done by web server
2014-02-05 12:59:45 +01:00
c953211175
Merge pull request #100 from chripo/fix-access
...
Fix access
2014-02-05 12:47:43 +01:00
00674fe8b0
Merge pull request #95 from chripo/easy-connect
...
Easy connect
2014-02-05 12:38:09 +01:00
3aa992e518
Find collections if necessary
2014-01-19 20:11:47 +01:00
90d82d044c
Fix access to collections
...
under certain conditions it was possible to pass the final access control
if-clause. the master branch granted access if:
if ((read_allowed_items or write_allowed_items)
and (not user or auth.is_authenticated(user, password))) or
function == self.options or not items:
the easy-connect branch from pull request #95 adds:
(is_authenticated and function == self.propfind) or
the last `or not items` condition levers out the previous authentication and
access control. that isn't that big secuity issue because in this case there
are no collection and items at all. but "bad" and anonymous users could gather
data and information which not destined for them.
this commit fixes and simplifies the if-clause.
2014-01-19 20:04:37 +01:00
387e1fee76
Fix calendar/addressbook-home-set in PROPFIND response
2014-01-19 19:35:53 +01:00
d09b16c5ad
Fix principal-collection-set in PROPFIND response
2014-01-19 19:35:53 +01:00
83db27303f
Respond to all authenticated PROPFIND requests
2014-01-19 19:35:46 +01:00
b9ff564c1f
not only apache uses REMOTE_USER
...
removing the apache mention to make the config more "webserver agnostic"
2014-01-15 23:01:36 +01:00
18ea7e4942
removing the user and password getting from main __call__ function
2014-01-15 22:40:33 +01:00
34163c5020
making radicale support authenticated user from apache
2014-01-15 09:50:22 +01:00
d9df9a36e1
Fix issues if authentication is done by web server
...
This patch fixes `user` always being None if the authentication is
offloaded to the webserver, as it is suggested in the documentation.
For normal access, this is not a problem, but it becomes a problem if a
client wants to get the current-user-principal, for which the user name
is required.
2014-01-14 20:46:47 +01:00
e2dbdd4d96
Merge pull request #97 from rngtng/fix-manifest
...
Fix wrong filename in Manifest
2014-01-13 04:43:19 -08:00
39efc3b781
fix wrong filename in Manifest
2014-01-10 20:32:22 +01:00
2ddec14535
Fix principal URLs in PROPFIND response
2014-01-05 21:22:53 +01:00
97efc1c86f
Update NEWS
2013-12-30 13:54:14 +01:00
a4a2c7e206
Merge pull request #93 from hovel/master
...
Custom handlers for auth and storage, simplified tests structure, added rights management backends
2013-12-30 04:45:49 -08:00
1362976400
fixed default config
2013-12-29 18:30:53 +04:00
1d0418594d
Allow attach custom rights backend, small fix in default config file
2013-12-29 15:13:35 +04:00
017df0ddcf
Simplified tests structure
2013-12-28 14:40:29 +04:00
3b0328ca1e
Allow attach custom storage backend
2013-12-28 14:15:35 +04:00
a91a7790c5
Allow attach custom auth handler
2013-12-28 13:31:32 +04:00
dca10fa14e
Different rights management backends
...
Initially only one backend - regular expressions based
2013-12-25 03:44:24 +04:00
3ee47dd242
Update NEWS
2013-12-24 12:14:25 +01:00
