Philip Molares
9f34b5ec24
chore(backend): enhance .env.example
...
In an effort to make the example file more directly usable. This adds `HD_AUTH_LOCAL_ENABLE_LOGIN` and `HD_AUTH_LOCAL_ENABLE_REGISTER` to have an authentication method directly available.
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-24 22:43:23 +01:00
Avinash
dae3b9d8dc
fix(frontend): add error prop to password input
...
Signed-off-by: Avinash <avinash.kumar.cs92@gmail.com>
2023-01-24 21:19:46 +01:00
Sheogorath
58819f6018
docs(SECURITY): Shift vulnerability reporting directly to GitHub
...
This patch adjust the SECURITY.md to follow a new workflow, which
results in reports ending up on GitHub without going through my mailbox,
this frees resources on my side as well as reducing the bus factor.
Since most of the time, I do an editorial copy of the content of the
E-Mail into GitHub's vulnerability template, this should help to reduce
manual processes.
Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
2023-01-24 20:07:39 +01:00
renovate[bot]
3bae6d9637
chore(deps): lock file maintenance
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-23 01:50:46 +00:00
renovate[bot]
a59a93c005
fix(deps): update dependency emoji-picker-element to v1.15.1
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-23 01:29:55 +00:00
Philip Molares
527881ea16
refactor(patches): remove unnecessary patches for lib0
...
These patches are now included in the library itself.
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-22 20:42:46 +01:00
renovate[bot]
c8d4f0dc18
fix(deps): update dependency lib0 to v0.2.60
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-22 20:42:46 +01:00
renovate[bot]
e90de3cf04
chore(deps): update docker/metadata-action action to v4.3.0
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-22 14:47:47 +01:00
renovate[bot]
3c47200fa5
chore(deps): update docker/build-push-action action to v3.3.0
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-22 14:46:43 +01:00
renovate[bot]
e285d4f0da
chore(deps): update linters
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-22 14:46:27 +01:00
renovate[bot]
b5258da551
fix(deps): update dependency rimraf to v4
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-22 14:45:20 +01:00
renovate[bot]
7e7f387e39
chore(deps): update dependency @testing-library/dom to v8.20.0
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-22 13:23:36 +01:00
renovate[bot]
eb04cdee83
chore(deps): update dependency @codemirror/commands to v6.2.0
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-22 13:19:11 +01:00
renovate[bot]
b0ed01d756
fix(deps): update dependency @uiw/react-codemirror to v4.19.7
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-22 12:48:22 +01:00
renovate[bot]
c322d855af
chore(deps): update bobheadxi/deployments action to v1.4.0
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-22 11:25:15 +01:00
renovate[bot]
e241da2da9
chore(deps): update nextjs monorepo to v13.1.4
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-21 23:24:27 +01:00
renovate[bot]
ddcd046622
chore(deps): update dependency pymdown-extensions to v9.9.2
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-21 23:07:19 +01:00
renovate[bot]
21d8f0876d
fix(deps): update dependency abcjs to v6.1.8
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-21 23:07:03 +01:00
renovate[bot]
844a363ecc
chore(deps): update dependency eslint-config-next to v13.1.4
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-21 23:05:45 +01:00
renovate[bot]
6f88272fb1
chore(deps): update dependency @types/react to v18.0.27
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-21 23:05:36 +01:00
renovate[bot]
b1c1f320ea
chore(deps): update github/codeql-action action to v2.1.39
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-21 23:05:26 +01:00
renovate[bot]
6b3da367be
chore(deps): update dependency mkdocs-material to v9.0.6
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-21 21:07:38 +00:00
Philip Molares
a36d2d2db6
fix: typo in SECURITY.md
...
Also moved all links to the bottom for easier changing of urls
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-21 13:06:27 +01:00
renovate[bot]
cb946e0a3a
chore(deps): update dependency @types/jest to v29.2.6
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-21 11:31:12 +01:00
renovate[bot]
faa8da8204
chore(deps): update nextjs monorepo to v13.1.2
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-17 22:47:12 +01:00
renovate[bot]
9356651684
chore(deps): update dependency ts-jest to v29.0.5
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-17 19:30:31 +01:00
renovate[bot]
3915a05e24
chore(deps): update typescript-eslint monorepo to v5.48.2
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-17 19:29:22 +01:00
renovate[bot]
cb1058c915
fix(deps): update dependency node-fetch to v2.6.8
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-17 18:35:46 +01:00
renovate[bot]
aa59f57856
chore(deps): update dependency @codemirror/language to v6.4.0
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-17 18:35:22 +01:00
renovate[bot]
90a1d45f82
chore(deps): update github/codeql-action action to v2.1.38
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-16 16:00:07 +00:00
renovate[bot]
cf9131c06e
chore(deps): update dependency prettier to v2.8.3
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-16 11:54:32 +00:00
renovate[bot]
e39cf83377
chore(deps): update codemirror
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-16 07:05:57 +00:00
renovate[bot]
200d4ccab1
chore(deps): update node.js to fda9816
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-16 03:24:49 +00:00
Philip Molares
16b1065a51
feat(frontend): add fork awesome linter
...
This linter will tell users that their fork awesome icon is deprecated and will stop working in the future and that they should replace it with a new bootstrap icon.
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-16 00:05:33 +01:00
Philip Molares
e2c4e2eccf
feat(frontend): add fork awesome linter
...
This linter will tell users that their fork awesome icon is deprecated and will stop working in the future and that they should replace it with a new bootstrap icon.
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-16 00:05:33 +01:00
Philip Molares
eacd81cb9c
fix(frontend): verify that callback could be run in create-non-existing-note-hint.test.tsx
...
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-15 22:38:45 +01:00
Philip Molares
5f238e9651
docs(frontend): expand CreateNonExistingNoteHint docs
...
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-15 22:38:45 +01:00
renovate[bot]
13316d3e1a
chore(deps): update dependency pymdown-extensions to v9.9.1
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-15 19:00:31 +01:00
renovate[bot]
788d7377a2
chore(deps): update dependency mkdocs-material to v9.0.5
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-15 18:37:20 +01:00
Erik Michelson
2225057ebe
misc(apidocs): move URL route of API docs
...
This makes the Swagger UI route more consistent to the real API routes.
Especially, the "private" prefix of the private API docs was irritating.
Additionally, this commit adds a rule to the Caddyfile for proxying the API docs to the backend.
Signed-off-by: Erik Michelson <github@erik.michelson.eu>
2023-01-15 18:20:25 +01:00
Erik Michelson
d52fc55ef3
feat(apidocs): use real version number
...
Signed-off-by: Erik Michelson <github@erik.michelson.eu>
2023-01-15 18:20:25 +01:00
Philip Molares
8ee2d809c7
test(backend): add regression test for issue #3135
...
When a PasswordTooWeakError is encountered the newly created user should be removed again. This should prevent registration error from "burning" usernames for further use.
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-15 18:15:28 +01:00
Philip Molares
47d1765b12
refactor(backend): don't create local user if password is too weak
...
This prevents the previous problem that the backend created a user that was then not correctly removed again
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-15 18:15:28 +01:00
Philip Molares
45e70434c4
refactor(frontend): error handling in the auth/local api route
...
This now uses the new error code for a disabled registration (403) and also handles error where the password is too weak (400).
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-15 18:14:01 +01:00
Philip Molares
0ec9edc07d
test(backend): change registration disabled error code
...
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-15 18:14:01 +01:00
Philip Molares
c39a9430a2
feat(backend): add RegistrationDisabledError
...
This error is thrown by RegistrationEnabledGuard instead of directly throwing an http error.
The new RegistrationDisabledError is mapped to the Forbidden HTTP code 403, since this better represents the actual error.
Signed-off-by: Philip Molares <philip.molares@udo.edu>
2023-01-15 18:14:01 +01:00
renovate[bot]
50e3452574
chore(deps): update actions/cache action to v3.2.3
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-14 21:55:58 +01:00
renovate[bot]
9a1e33fdc4
chore(deps): update dependency eslint-config-next to v13.1.2
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-14 20:54:26 +00:00
renovate[bot]
e3edae8d64
chore(deps): update node.js to ab3603c
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-14 21:20:17 +01:00
renovate[bot]
aa3d666fa8
chore(deps): update actions/upload-artifact digest to 65d8626
...
Signed-off-by: Renovate Bot <bot@renovateapp.com>
2023-01-14 21:19:49 +01:00