701df2d201
Use environ.get instead of try/except
2014-02-05 13:01:49 +01:00
f7c7746643
Merge pull request #99 from horazont/fix-preauth
...
Fix issues if authentication is done by web server
2014-02-05 12:59:45 +01:00
3aa992e518
Find collections if necessary
2014-01-19 20:11:47 +01:00
90d82d044c
Fix access to collections
...
under certain conditions it was possible to pass the final access control
if-clause. the master branch granted access if:
if ((read_allowed_items or write_allowed_items)
and (not user or auth.is_authenticated(user, password))) or
function == self.options or not items:
the easy-connect branch from pull request #95 adds:
(is_authenticated and function == self.propfind) or
the last `or not items` condition levers out the previous authentication and
access control. that isn't that big secuity issue because in this case there
are no collection and items at all. but "bad" and anonymous users could gather
data and information which not destined for them.
this commit fixes and simplifies the if-clause.
2014-01-19 20:04:37 +01:00
387e1fee76
Fix calendar/addressbook-home-set in PROPFIND response
2014-01-19 19:35:53 +01:00
d09b16c5ad
Fix principal-collection-set in PROPFIND response
2014-01-19 19:35:53 +01:00
83db27303f
Respond to all authenticated PROPFIND requests
2014-01-19 19:35:46 +01:00
d9df9a36e1
Fix issues if authentication is done by web server
...
This patch fixes `user` always being None if the authentication is
offloaded to the webserver, as it is suggested in the documentation.
For normal access, this is not a problem, but it becomes a problem if a
client wants to get the current-user-principal, for which the user name
is required.
2014-01-14 20:46:47 +01:00
2ddec14535
Fix principal URLs in PROPFIND response
2014-01-05 21:22:53 +01:00
1d0418594d
Allow attach custom rights backend, small fix in default config file
2013-12-29 15:13:35 +04:00
3b0328ca1e
Allow attach custom storage backend
2013-12-28 14:15:35 +04:00
a91a7790c5
Allow attach custom auth handler
2013-12-28 13:31:32 +04:00
dca10fa14e
Different rights management backends
...
Initially only one backend - regular expressions based
2013-12-25 03:44:24 +04:00
0e566e4c97
Merge branch 'apple'
2013-12-24 11:22:57 +01:00
a7be59b9f7
Merge pull request #92 from cristen/master
...
Fix wrong syntax in config file and fix #58
2013-12-24 02:21:43 -08:00
7ac971e022
Fix wrong syntax in config file and fix #58
2013-12-23 16:45:15 +01:00
fae2b30ec4
Merge branch 'master' of git://github.com/cristen/Radicale into cristen-master
...
Conflicts:
radicale/storage/database.py
schema.sql
2013-12-17 14:42:20 +01:00
56581a998a
Fix database Fix bug #77 HELL YEAH !
2013-12-17 14:35:55 +01:00
f377bd1356
Fix ssl protocol
2013-12-13 15:17:30 +01:00
d765544edd
Add ssl protocol and ciphers in config
2013-12-13 14:31:09 +01:00
0c2c9c3a7e
Store collection's parent in database (bug #77 )
2013-10-31 16:07:37 +01:00
a920518a26
Return an int for __hash__
2013-10-31 14:05:15 +01:00
ce8e86af63
Allow read-only access to .well-known/ca(l|rd)av (related to #32 )
2013-10-31 13:57:37 +01:00
92b3cf41bc
Simple try/except import trick
2013-10-29 14:09:46 +01:00
830774824e
Merge pull request #75 from davidaurelio/master
...
Fix python 3 problems with default rights
2013-10-29 03:16:09 -07:00
337d2719be
Cosmetics
2013-10-29 09:30:51 +01:00
6bc745fe45
Replace built-in hash function with hashlib.
...
The built-in hash function returns inconsistent values in Python 3.
2013-10-27 22:55:01 -04:00
fb784c28c4
Fix python 3 problem: 'str' does not support the buffer interface
2013-10-27 22:36:56 +01:00
fe1cd1d44d
Use collection URL instead of main folder as user's main URL (see #32 )
2013-10-24 15:31:49 +02:00
a617c4db26
Fix authentication with Python 3 (see #70 )
2013-10-18 14:06:57 +02:00
659757f173
Style fixes
2013-10-01 13:04:24 +02:00
7c03089601
Bugfix: auth PAM check for membership in primary and supplementary groups
2013-09-27 21:14:27 +02:00
ee687bea18
Bugfix: auth PAM doesn't throw an exception when authenticating without username and password
2013-09-27 20:44:41 +02:00
07f7e46b3e
Small fixes
2013-09-25 13:04:14 +02:00
a631c8c761
Fix compatibility between python2 and 3
2013-09-19 14:40:03 +02:00
6c40f5e24a
Merge branch 'authentication' of github.com:cristen/Radicale into authentication
2013-09-13 17:41:21 +02:00
fe28b040bd
Adds the committer in the config + python3 support
2013-09-13 17:26:03 +02:00
e2512b12fb
Fixed partially anonymous authentication
2013-09-13 15:05:02 +02:00
58faf725b0
Fixed authentication for anonymous users
2013-09-12 17:39:20 +02:00
43785e48a9
Get configuration keys at runtime, not when module is imported ( fixes #64 )
2013-09-12 13:48:49 +02:00
15d8a8eb84
Remove useless primary key from line table
2013-09-07 09:50:13 +02:00
0e5ef007f1
Use table attribute instead of string in database order by (probably fixes #59 )
2013-09-06 22:09:16 +02:00
7266c8018f
Merge pull request #61 from cristen/tests
...
Tests
2013-09-06 07:13:17 -07:00
ff535b62b0
Remove useless config keys
2013-09-06 16:00:12 +02:00
ce59d9ea87
Added functionnal tests
2013-09-05 15:13:31 +02:00
dbb866a750
Don't create the repository for each change
2013-08-30 19:00:10 +02:00
97a19405c4
Adds git support to Radicale ( Fix #30 )
2013-08-30 17:23:04 +02:00
6e98b1b3e8
Adds multifilesystem storage backend (See #30 )
2013-08-29 16:55:36 +02:00
484933d4b6
Merge branch 'master' of github.com:Kozea/Radicale
2013-08-28 10:48:15 +02:00
8c3cf6bccd
Fix built-in owner_only right
2013-08-28 00:56:45 +03:00
Guillaume Ayoub
Christoph Polcin
Jonas Wielicki
Sergey Fursov
Jean-Marc Martins
9m66p93w
David Aurelio
Štěpán Henek
Ossi Salmi