Commit Graph

874 Commits

Author SHA1 Message Date
Nicolas Giard
0425b82c83
fix(kernel): handle SIGTERM graceful shutdown 2022-06-17 17:46:57 -04:00
Nicolas Giard
046e4b98cb
fix(graphql): remove required flag on MailConfig schema 2022-06-11 17:24:53 -04:00
David Wheatley
97a744556b
feat(mail): allow setting of mailer identifying name (#5363) 2022-06-10 23:15:00 -04:00
Nicolas Giard
b78026e49f
fix(auth): handle null SAML authnContext context 2022-06-09 14:25:01 -04:00
El Gato da Great
e3d94f7177
fix: don't push files to git if ignored (#5334)
* fix: don't push files to git if ignored

* tweak: change gitPath var to gitFilePath

* fix: "update" instead of "create" of updated file

Co-authored-by: Jacob Parker <blocckba5her@gmail.com>
Co-authored-by: DevBlocky <16978528+DevBlocky@users.noreply.github.com>
2022-05-26 20:42:14 -04:00
Nicolas Giard
cd33ff0afb
feat(admin): export tool for full migration / backup (#5294)
* feat: export content utility (wip)

* feat: export navigation + groups + users

* feat: export comments + navigation + pages + pages history + settings

* feat: export assets
2022-05-16 01:13:42 -04:00
Nicolas Giard
a37d733523
fix(auth): update SAML authnContext hint text for multiple values 2022-05-14 21:24:14 -04:00
Maximilian Bosch
b345375477
fix(auth): SAML authnContext parameter should be an array (#5290)
* saml auth: `authnContext` must be a list now

This fixes

    this.options.authnContext.forEach is not a function

when trying to login via SAML on wiki-js 2.5.281.

Reason for that is that `authnContext` must be a list now which is
apparently a breaking change that was missed while upgrading
passport-saml[1].

Resolves #5289

[1] https://github.com/node-saml/passport-saml/pull/615

* fix(auth): split authnContext for SAML authenticaiton module

Co-authored-by: Nicolas Giard <github@ngpixel.com>
2022-05-14 21:17:17 -04:00
Erik Bigler
9b40d60261
fix: update to working twitch passport strategy (#5279) 2022-05-13 16:20:09 -04:00
Nicolas Giard
d9076c4ee9
fix: typo in saml auth module 2022-05-09 21:51:40 -04:00
myml
b3731dd26e
fix: handle unicode chars when syncing files using git storage (#5272)
git has the quotopath option enabled by default,
filepaths with unicode characters will be escaped,
causing the wiki to not handle changes.
2022-05-09 21:39:08 -04:00
NGPixel
78d02dc8e5
fix: prevent manage system assignment from manage groups permission 2022-05-09 21:36:13 -04:00
Nicolas Giard
8205c1f243
fix: update saml strategy to use new config options 2022-05-02 00:18:19 -04:00
NGPixel
2cb7b9fb4e
fix: update passport-saml dependency + set cert as required 2022-05-01 18:54:31 -04:00
myml
559b8ae8cf
fix: undefined author in git commit when deleting a page (#5215) 2022-04-30 23:26:06 -04:00
Nicolas Giard
485aa765d0
fix: add sfo3 to digitalocean spaces module 2022-04-29 21:38:39 -04:00
NGPixel
13890a92ab
fix: default comment provider not displaying 2022-04-29 19:36:47 -04:00
Ivan Fedorov
3407ac8829
feat: add X-Mailer header to outgoing emails (#5238)
Co-authored-by: Nicolas Giard <github@ngpixel.com>
2022-04-29 19:00:52 -04:00
Trisztán Piller
de151031ea
feat(auth): OAuth2 access_token in GET query string in userInfoURL (#5188) 2022-04-16 20:39:07 -04:00
Nicolas Giard
a647626a51
fix: external comments template using incorrect page variables 2022-04-14 22:09:45 -04:00
myml
74887baa86
feat(auth): OAuth2 scope support (#5181) 2022-04-12 00:14:02 -04:00
rajatchauhanyti
44b3fd1794
fix: admin - general settings not saving with empty value (#5165) 2022-04-09 02:42:16 -04:00
NGPixel
dc5d8ddeb2
fix: handle page metadata parse failure 2022-04-03 15:59:58 -04:00
NGPixel
05b4053954
fix: encode filenames for assets force download 2022-04-03 15:51:17 -04:00
NGPixel
a50712ea80
fix: handle links to same host but different port as external 2022-04-03 15:48:51 -04:00
Nicolas Giard
a652e43ab1
fix: handle multi social auth strategies 2022-03-25 21:17:04 -04:00
Manuel
1f489a3d8e
fix: handle multiple LDAP strategies (#5116) 2022-03-25 21:11:24 -04:00
Gabriel A. Devenyi
2c83472b63
fix(ldap): typo spelling of distinguished (#5066) 2022-03-01 11:54:06 -05:00
NGPixel
a3bf1f7916
fix: apply locale restrictions to page rules 2022-02-20 19:33:19 -05:00
NGPixel
411802ec2f
fix: check update page access using original page path 2022-02-20 18:46:03 -05:00
Nicolas Giard
3f5388d093
fix(logging): add default fallback for logFormat config 2022-02-18 19:57:15 -05:00
Marián Skrip
de6d4beef9
feat(config): add option to specify default value to env var expansion (#5020)
* feat: Add option to specify default value to env var expansion

* fix: remove unused capturing group for env var replacement

Co-authored-by: Nicolas Giard <github@ngpixel.com>
2022-02-18 19:56:02 -05:00
Marián Skrip
2815f38c52
feat(logging): add option to configure JSON logging (#5022)
* fix: Use logger for logs using console logging

* feat: Add option to configure JSON logging

* fix: use generic logFormat instead of json specific

* fix: use logFormat for docker config

* fix: use logFormat to build winston formatters

Co-authored-by: Nicolas Giard <github@ngpixel.com>
2022-02-18 19:48:22 -05:00
Marián Skrip
69e9ccc636
fix: remove wild log that was possibly for debugging (#5021) 2022-02-18 19:10:13 -05:00
NGPixel
afafb4f4e0
fix: md task list - use same config as client 2022-02-12 17:28:34 -05:00
matthgyver
7988fa62ca
fix: use body parser limit config with fallback value (#4985)
* permit bodyParserLimitSize configuration

set bodyParserLimitSize by default to 1mb
permit modifications by environment variable

* fix: use bodyparserlimit config with fallback default

Co-authored-by: Nicolas Giard <github@ngpixel.com>
2022-02-11 23:42:28 -05:00
Nicolas Giard
8e3af9ac15
feat: use config value for json body parser limit 2022-02-11 23:38:34 -05:00
Nicolas Giard
7b14b39de0
fix: prevent upload bypass via uppercase path 2022-01-29 18:45:51 -05:00
NGPixel
a04f7bd650
fix: force uploads to use auth headers instead of cookie 2022-01-22 19:52:59 -05:00
NGPixel
92fe9d3e31
fix: view source of page version crash (#3297) 2022-01-10 17:20:13 -05:00
NGPixel
e84c15b926
fix: scanSVG incorrect ext reference (#4825) 2021-12-26 17:30:18 -05:00
cybrwshl
802dbd96c3
feat: extends plausible analytics to support self hosted installations (#4824) 2021-12-26 00:17:57 -05:00
NGPixel
79bdd44093
fix: force download of unsafe extensions 2021-12-24 20:18:12 -05:00
NGPixel
57b56d3a5b
fix: validate svg file extension in addition to client mime type 2021-12-24 19:36:30 -05:00
NGPixel
5d3e81496f
fix: sanitize SVG uploads 2021-12-17 21:41:38 -05:00
NGPixel
5173c4802e
fix: use replace instead of replaceAll to support pre-Node16 2021-12-06 14:01:26 -05:00
NGPixel
414033de9d
fix: asset path traversal on windows 2021-12-03 22:30:22 -05:00
Nicolas Giard
87fcfca6d7 feat: add Plausible Analytics module 2021-10-28 22:30:28 -04:00
NGPixel
5911867b21
fix: various OAuth2 fixes 2021-10-15 22:36:30 -04:00
Artur Shaik
87084c66b0
feat: Generic OAuth2 authentication implementation (#3094)
* OAuth2 authentication implementation

This PR shoul fix #2392. Used `passport-oauth2` strategy.

* indentations cleanup

* cleanup code
2021-10-15 22:25:15 -04:00