tyler.durden/icingaweb2
1
0
Fork 0
mirror of https://github.com/Icinga/icingaweb2.git synced 2025-08-16 23:38:11 +02:00
Code Issues Packages Projects Releases Wiki Activity
13,736 Commits 133 Branches 76 Tags
Commit Graph

13736 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
jabdoa2
5287ecf4d4
Allow token refresh for external auth 
When using Icingaweb2 with external auth (such as OIDC) your token will eventually expire and the user has to relogin via the external provider. However, this does not work on ajax requests (as they cannot redirect the user). Most external auth plugins (such as mod_oidc) will return 401 instead of a redirect when they detect ajax requests. Icingaweb2 will show a 401 in a few places (example here: https://community.icinga.com/t/401-unauthorized-in-icingaweb2-with-external-auth/9563). With this change icingaweb2 will reload the window instead which in turn will trigger a redirect to the IDP. In most cases the user should get redirected back and should not even notice that his OIDC token got renewed.
 2023-03-29 17:52:13 +02:00
Johannes Meyer
4b6df1bef9 Release version 2.11.4 2023-01-26 12:53:47 +01:00
Johannes Meyer
693bed1710 Raise version to 2.11.4 2023-01-26 09:42:18 +01:00
Johannes Meyer
299ef68102 Update CHANGELOG.md 2023-01-26 09:42:18 +01:00
Johannes Meyer
74c8e24884 Update AUTHORS 2023-01-26 09:42:18 +01:00
Johannes Meyer
fdcfdfa3de
Merge pull request #4988 from Icinga/dkr-env 
Provide the behaviour the Docker images patch into us by ourselves
 2023-01-26 09:35:39 +01:00
Alexander A. Klimov
73dcf2bc89 setup: welcome page: on Docker remove redundant instructions 2023-01-24 11:23:58 +01:00
Alexander A. Klimov
3784fe80b7 LoggingConfigForm: on Docker default to webserver log 2023-01-24 11:23:34 +01:00
Alexander A. Klimov
0031108160 icingacli setup config webserver apache: add trailing / to Alias dir 
if the Alias URI (e.g. /) has a trailing /. Otherwise Apache says 403.
 2023-01-18 13:55:45 +01:00
Johannes Meyer
04c9edeccc
Merge pull request #4986 from Icinga/enhance-module-test-compatibility 
Enhance module test compatibility
 2023-01-18 12:18:54 +01:00
Johannes Meyer
0803a1bbdc test: Support multiple paths in ICINGAWEB_MODULES_DIR 2023-01-18 12:07:11 +01:00
Johannes Meyer
93bac9443d test: Expect internal test dependencys in php/Lib 
Loading internal test dependencies did previously only work
if placed directly inside `php`. No module does this at this
time.
 2023-01-18 12:03:54 +01:00
Johannes Meyer
23c4ae2469 test: Don't require Mockery the legacy way 
Installing locally as composer library is now the only way.
 2023-01-18 12:02:38 +01:00
Yonas Habteab
6d2a585de9 TemporaryLocalFileStorage: Fix unexpected crash in destructor 2023-01-16 14:15:43 +01:00
Johannes Meyer
e542982de0 Fix some reflected XSS bugs 
fixes #4979
 2023-01-12 09:55:57 +01:00
Johannes Meyer
8837fea7a4 Libraries: Only attempt a partial match if the library name contains a slash 
fixes #4971
 2023-01-12 09:54:42 +01:00
Johannes Meyer
cbf8cfc738 js: Transmit X-Icinga-AutoSubmittedBy upon autosubmits 
This header contains the name or id of the element responsible
for triggering the automatic form submission.
 2023-01-12 09:54:18 +01:00
Johannes Meyer
96179182e4
Merge pull request #4976 from Icinga/do-not-disable-all-inputs-on-form-submit 
js: Only disable submit buttons on form submit
 2023-01-12 09:53:45 +01:00
Johannes Meyer
4641d8e820 js: Don't disable inputs upon auto-submits at all 2023-01-12 09:39:31 +01:00
Johannes Meyer
7cea0d78e4 js: Only disable submit buttons on form submit 
Previously all `input` elements (text, date, number, ...)
got also disabled. This is unecessary.
 2023-01-12 09:39:31 +01:00
Johannes Meyer
d3f4ffe35c
Create SECURITY.md 2023-01-11 17:12:28 +01:00
Valentina Da Rold
963c3168b1 Check if url is external in validation function 
refs: #4970
 2023-01-11 14:09:43 +01:00
Eric Lippmann
39b91684d8
Merge pull request #4974 from Icinga/UpdateCheckoutAction 
Update Checkout Action to v3
 2023-01-10 09:57:46 +01:00
Eric Lippmann
57c52cadfa
Merge pull request #4964 from Icinga/packaging 
Packaging Adjustments
 2023-01-10 08:56:58 +01:00
Eric Lippmann
7855293302 Remove packages/ 
Moved to the packaging repository.
 2023-01-09 16:14:15 +01:00
Eric Lippmann
03e3cf9c82 doc: No longer offer manual steps to install SELinux policy 
The policy will be moved to the packaging repository and all RPM-based
distributions will provide the policy package.
 2023-01-09 16:14:15 +01:00
Eric Lippmann
d41ebeb6bc Schema path is now always /usr/share/icingaweb2/schema 2023-01-09 16:14:15 +01:00
Eric Lippmann
7c9e0ab91e Export ignore 2023-01-09 16:13:30 +01:00
Eric Lippmann
e8683b23f8 Rename COPYING to LICENSE 2023-01-09 16:13:30 +01:00
Timm Ortloff
9aa4a954a9 CI: Update Checkout Action to v3 2023-01-09 13:05:18 +01:00
Johannes Meyer
9a17c6c054 Release version 2.11.3 2022-12-14 13:26:54 +01:00
Johannes Meyer
d0a83a646c Release version 2.11.3 2022-12-14 13:21:01 +01:00
Johannes Meyer
5ae72c792c Update CHANGELOG.md 2022-12-14 13:21:01 +01:00
Johannes Meyer
27dc5f5e32 Update AUTHORS 2022-12-14 13:21:01 +01:00
Johannes Meyer
12af81d4c3 css: Support fieldsets wrapped by .control-group 2022-12-14 13:15:50 +01:00
Alexander A. Klimov
522d041505 icingacli test php unit: pass through phpunit exit code 
so that GHA knows if something failed.
 2022-12-08 11:11:22 +01:00
Johannes Meyer
b3332c751c
Merge pull request #4962 from Icinga/upgrade-dompdf 
Upgrade dompdf
 2022-12-07 15:15:04 +01:00
Johannes Meyer
f67499c74d Pdf: Use dompdf's new autoloader 2022-12-07 15:03:58 +01:00
Johannes Meyer
bb54956dbb vendor: Upgrade dompdf to v2.0.1 2022-12-07 15:03:58 +01:00
Johannes Meyer
a6af690040
Merge pull request #4963 from Icinga/upgrade-htmlpurifier 
Upgrade HTMLPurifier
 2022-12-07 15:03:22 +01:00
Johannes Meyer
d53d730aa3 HTMLPurifier: Fix file flags 2022-12-07 14:59:44 +01:00
Johannes Meyer
7df5045420 vendor: Upgrade HTMLPurifier to v4.16.0 2022-12-07 14:52:32 +01:00
Johannes Meyer
0096f43e0d
Merge pull request #4958 from Icinga/fix/browser-print-dialog-result-4957 
Fix browser print dialog result
 2022-12-07 13:05:06 +01:00
Johannes Meyer
723eaae08c print.less: Make sure that client print attempts work fine 2022-12-07 11:57:48 +01:00
Johannes Meyer
b89da2f865 Visitor: Force light mode when printing pages 2022-12-07 11:57:48 +01:00
Johannes Meyer
b1574e4bee ConfigMenu: Fix incorrect shared navigation url 
fixes #4953
 2022-12-07 11:57:23 +01:00
Johannes Meyer
8cd892359d form.js: Don't ignore autosubmit elements 
A while ago this already has changed so that autosubmit
responses are guaranteed to be applied. Thus this
exception is now obsolete.

fixes #4942
 2022-12-07 11:57:10 +01:00
Johannes Meyer
3187a4e549 InternalUrlValidator: Also check the scheme 2022-12-07 11:56:43 +01:00
Johannes Meyer
965aac11ef RoleController: Always perform a permission check 2022-12-07 11:56:17 +01:00
Johannes Meyer
ec7fb82a94 login: Don't redirect to external resources 
fixes #4945
 2022-12-07 11:54:45 +01:00