- 20 Feb, 2021 17 commits
-
-
The existing notify.py script was grabbing entries regardless of user suspension. This has been modified to only send notifications to unsuspended users. This change was written as a solution to https://bugs.archlinux.org/task/65554 . Signed-off-by:
Kevin Morris <kevr.gtalk@gmail.com> Signed-off-by:
Lukas Fleischer <lfleischer@archlinux.org>
-
Signed-off-by: -
Signed-off-by: -
Signed-off-by: -
As far as I can see, Keycloak ignores it entirely. I can login in as SSO user A, then disconnect from the SSO directly and reconnect as user B, but when I disconnect user A from AUR, Keycloak disconnects B even though AUR passed it an ID token for A. Signed-off-by: -
Signed-off-by: -
We might reconsider it in the future. Signed-off-by: -
Only the core functionality is implemented here. See the TODOs. Signed-off-by: -
Signed-off-by: -
This column holds a user ID issed by the single sign-on provider. For Keycloak, it is an UUID. For more flexibility, we will be using a standardly-sized VARCHAR field. Signed-off-by: -
The install method in Python’s gettext API aliases the translator’s gettext method to an application-global _(). We don’t use that anywhere, and it’s clear from aurweb’s Translator interface that we want to translate a piece of text without affecting any global namespace. Signed-off-by: -
Developers can go to /sso/login to get redirected to the SSO. On successful login, the ID token is displayed. Signed-off-by: -
Signed-off-by: -
Signed-off-by: -
aurweb.spawn used to launch only PHP’s built-in server. Now it spawns a dummy FastAPI application too. Since both stacks spawn their own HTTP server, aurweb.spawn also spawns nginx as a reverse proxy to mount them under the same base URL, defined by aur_location in the configuration. Signed-off-by: -
Signed-off-by:
Filipe Laíns <lains@archlinux.org>
Signed-off-by: -
This program makes it easier for developers to spawn the PHP server since it fetches automatically what it needs from the configuration file, rather than having the user explicitly pass arguments to the php executable. When the setup gets more complicated as we introduce Python, aurweb.spawn will keep providing the same interface, while under the hood it is planned to support running multiple sub-processes. Its Python interface provides an way for the test suite to spawn the test server when it needs to perform HTTP requests to the test server. The current implementation is somewhat weak as it doesn’t detect when a child process dies, but this is not supposed to happen often, and it is only meant for aurweb developers. In the long term, aurweb.spawn will eventually become obsolete, and replaced by Docker or Flask’s tools. Signed-off-by:
-
- 14 Oct, 2020 1 commit
-
-
Signed-off-by:
-
- 27 Aug, 2020 1 commit
-
-
Lukas Fleischer authored
When using the sendmail() function with smtplib.SMTP or smtplib.SMTP_SSL, the list of actual recipients for the email (to be translated to RCPT commands) has to be provided as a parameter. Update the notification script and add all Cc recipients to that parameter. Signed-off-by:
-
- 26 Aug, 2020 1 commit
-
-
After f7a57c82 (Localize notification emails, 2018-05-17), the server.sendmail line was not updated to now send the to the email address but instead sends to (email, 'en') and as sendmail accepts an iterable an email is also send to 'en'. Signed-off-by:
-
- 22 Mar, 2020 1 commit
-
-
Signed-off-by:
-
- 27 Feb, 2020 3 commits
-
-
Signed-off-by: -
Signed-off-by: -
The new schema was generated with sqlacodegen and then manually adjusted to fit schema/aur-schema.sql faithfully, both in the organisation of the code and in the SQL generated by SQLAlchemy. Initializing the database now requires the new tool aurweb.initdb. References to aur-schema.sql have been updated and the old schema dropped. Signed-off-by:
-
- 11 Feb, 2020 2 commits
-
-
Lukas Fleischer authored
Add more options to configure the smtplib implementation for sending notification emails. The port can be changed using the new smtp-port option. Encryption can be configured using smtp-use-ssl and smtp-use-starttls. Keep in mind that you usually also need to change the port when enabling either of these options. Authentication can be configured using smtp-user and smtp-password. Authentication is disabled if either of these values is empty. Signed-off-by: -
Lukas Fleischer authored
Support mail delivery without a local MTA. Instead, an SMTP server can now be configured using the smtp-server option in the [notifications] section. In order to use this option, the value of the sendmail option must be empty. Signed-off-by:
-
- 02 Feb, 2020 5 commits
-
-
First, this gets rid of the deprecation warnings Python displayed. Second, this fixes the case where a link contained a pair of underscores, which used to be interpreted as an emphasis because the linkify processor ran after the emphasis processor. Signed-off-by: -
When an FS#123 is part of a code block, it must not be converted into a link. FS#123 may also appear inside an URL, in which case regular linkifaction of URLs must take precedence. Signed-off-by: -
Fixes a few edge cases: - URLs within code blocks used to get redundant <> added, breaking bash code snippets like `curl https://...` into `curl <https://...>`. - Links written with markdown's <https://...> syntax also used to get an extra pair of brackets. Signed-off-by:
-
Turn the git-commits markdown processor into an inline processor, which is smart enough not to convert Git hashes contained in code blocks or links. Signed-off-by: -
Lukas Fleischer authored
Support secondary email addresses that can be used to recover an account in case access to the primary email address is lost. Reset keys for an account are always sent to both the primary and the backup email address. Signed-off-by:
-
- 30 Jan, 2020 1 commit
-
-
Lukas Fleischer authored
Since commit eeaa1c3a (Separate text from footer in notification emails, 2020-01-04), information about unsubscribing from notifications is added in a signature block. However, the code to format the email body trimmed the RFC 3676 signature delimiter, replacing "-- " by "--". Fix this by adding a special case for signature delimiters. Signed-off-by:
-
- 06 Jan, 2020 1 commit
-
-
Signed-off-by:
-
- 23 Nov, 2019 3 commits
-
-
Lukas Fleischer authored
Signed-off-by: -
Lukas Fleischer authored
We support multiple database backends. Don't require Python modules for all backends to be installed. Signed-off-by: -
Lukas Fleischer authored
Verify that the update hook exists and is executable before running Git to prevent from broken repositories when permissions are broken. Signed-off-by:
-
- 19 Aug, 2019 1 commit
-
-
Will no longer send notifications about "a orphan request", but determine whether to use a/an based on the first character of the request type. Signed-off-by:
Lars Rustand <rustand.lars@gmail.com> Signed-off-by:
-
- 28 Apr, 2019 1 commit
-
-
Lukas Fleischer authored
After creating a new account, users need to verify their email address and set an initial password. Without setting a password, users cannot use their account on the web interface. However, when logging in via SSH, we did not check whether the account is verified. Fix this by only allowing SSH access once a password is set. Reported-by:
Pat Hogan <pathtofile@gmail.com> Signed-off-by:
-
- 08 Feb, 2019 1 commit
-
-
Eli Schwartz authoredBecause filtering by matching the sender && regular expressions on the subject is awkward. Signed-off-by:
Eli Schwartz <eschwartz@archlinux.org>
-
- 21 Jan, 2019 1 commit
-
-
Lukas Fleischer authored
Reverse the order of deletion and addition so that deletion comes first. This prevents corner cases such as failing unique key constraints when a provided package changes from lower case to upper case and the old name is not yet gone. Helped-by:
Eli Schwartz <eschwartz@archlinux.org>
Signed-off-by:
-
