Fixes #6117 - clean usergroup cache
Dependent destroy was missing on through association from user side.
fixes #5869 - permit accents in user names on Ruby 1.8
fixes #5242 - Update external user attributes and group membership on every logon
fixes #3892 - process REMOTE_USER_GROUP_N and REMOTE_USER_GROUP_#, add user to groups based on external user groups.
fixes #5224 - Don't update a user with blank LDAP attribute values
fixes #5141 - User unable to access children taxonomies on switcher
fixes #3914 - set current taxonomies on login from user defaults
Fixes #4976 - ensure the process is really running inside a rake task
fixes #3827 - adds ldap avatar support
Fixes #4537 - user can set empty roles array via API
fixes #812 - new permissions model, user group role and nest support, role filters for better granularity
fixes #3912 - add inheritance for locations / organizations
fixes #4298 - ldap auth should accept parens in firstname or surname
fixes #3528 - Populate first name, last name, and email, if available.
fixes #3930 - refactoring of edit_self implementation.
fixes #3312 - support /users/extlogin as a login page based on REMOTE_USER
fixes #3249 - change regex syntax from start/end of line to start/end of string
fixes #2741 - rails 3 syntax
fixes #2945 - extend AR to add getter/setters *_name(s) for has_many/belongs_to associations
fixes #2741 - remove unnecessary require statements
fixes #2669 username first name and last name doesn't accept i18n characters
Fixes #2632 - extract strings from validation errors
fixes #2630 - restrict assignment of roles to those a user has (CVE-2013-2113)
fixes #2604 searching for hosts with digits can lead to unexpected results
Fixes #2519 - Protect locale changes from validation failure so thatpassword validation can be run
fixes #2281 - don't allow admin flag to be removed from admin account
fixes #2444 - locale selector in user account
fixes #2422 Rails 3.2: before_destroy / dependent => :destroy ordering
fixes #2421 added missing has_many :hostgroups and missing :dependent => destroy
fixes #2393 - Couple of models broken with audited 3.0.0
this is not a fix for the mass assignment problem, rather just to solve immedient packaing issue upstream.
a follow up on mass assignment should be done via another commit.
Feature #2368 - use N_ for model validators
As per https://github.com/grosser/fast_gettext/wiki/activerecord
Feature #2368 - i18n extracting strings
Enforce hostgroup/role uniqueness on User relation
upgrade foreman to rails 3.2.13
This commit updates from rails 3.0.x to 3.2.x, main changes include:
Users who uses foreman in production, make sure that you now compileyour assets, e.g...
fixes #2001 - Changing Loc or Org after compute resource selection give 500 error
fixes #2025 - show user login if name is blank
removed has_many_polymorphs and used has_many :source and :source_type
renamed to thread_session.rb
fixes #1978 - changing login maximum size to 100
In case of using a long login name (such as ovirt_username@domain), onthe fly login will fail. Increasing the maximum login size to 100.
ensures that admin user can't be duplicated when running within an org
Ensure existing org user search is unscoped
refs 611f5bff
Add organization and location to foreman.
This feature allows foreman to provide multi location, multi tenant andmulti organizations capablities.
the idea is that resources within foreman (e.g. hosts, subnets, users,environments etc) can belong to one or more locations and organization,...
refactor AuthSourceLdap Class
cleanup the classes, as it was aweful ruby.TODO: improve the logic between existing user and new users on the fly creaetion
Fixed validation error handling and auth durin admin user creation
Bug #1936 Allow user creation without email
auto create admin-user when missing in API requests
add getter for admin user User.admin which auto creates admin when missing
[SQL optimizations] - many small optimizations
fixes #1638 - remove whitespaces for user email instead of validation error
incorrect error message shown when trying to rename the admin account
Do not enable auditing while executing rake tasks / migrations
fixes #1613 - Email address format validation preventing admin user creation
audit as twitter and versions for template.
This also closes #1377 as it offer versions and diff view of the tempates.
it is not ideal, but it should handle the most common case for now,where we should open other feature requests to support all of the ideas in #1377
wip audits upgrade
fixes #1597 - Restrict compute resources access by user
And add some rights to give non admin users so they can perform some normal actions on the hosts they own.
unit/domain_parameter_test.rb self-broke... added a tiny fix.Removing compute_resources/vms nesting, it is such a nightmare for functional tests....
code smell
fixes #1324 - Separate permssions on hosts from permissions for objects within hosts.
This allows a user to be granted permission to edit the host (and so change the group or proxy) but not, for example, edit the parametersThis could probably be extended further if necessary.
fixes #1456 - renaming the admin account should not be allowed
fixes #1355 - Ability to Search Users by Role
Signed-off-by: Greg Sutcliffe <gsutcliffe@ibahn.com>
WIP rails3 migration
New artwork
fixes #1064 - last login info for a user without admin rights is not updated
fixes #100 - Setting is now a ActiveRecord object
This allows users to manage foreman settings via the UI.
the UI is a bit ugly, but works :)
Fixes #906 - Always allow a user to edit some of their own User details
Signed-off-by: Paul Kelly <paul.ian.kelly@googlemail.com>
ensures that current user is cleared, refs #807
fixes #807 - Update the User.current implementation to use a Thread-local variable
fixes #797 - JSON for users not returned
fixes #457 - LDAP on the fly user creation no longer works
Fixes #366 - Redmine authorization port
This is a major feature which provides RBAC authorization within Foremana mental note to myself - never ever work on large commits
Added a basic notice facility to foreman
Notice.create :message => "text", :level => level, :global => booleanif global is true then any user can cancel that message for all userselse each user must cancel the message individually
level can be "warning" or "message"...
Fixes #390 - A user account is always associated with a session
requireing the sha1 library, refs #145
Fixes #145 - Added AuthSourceInternal
Added a password setting facility to the user class for AuthSourceInternalSwitched to SHA1Changed :ldap to :loginApplied numerous fixes from Ohad LevyFixed malformed user pageSwitched attr_accessible to attr_protected...
fixes #293 - add table sorting to users page
imported redundent line - refs #232
Fixes #232 - Removes AS from Users page
The password verification test has not yet been implemented but will get done in AuthSourceInternal fixAll tests now pass These tests now work whether settings[:ldap] is enabled or notPlus whitespace fix
Fixes #170 - implement usergroups
Added migrationAdded testsAdded MVC filesAdded the routes as wellAdded the program logic and additional viewsAdded RESTful actions for update and createAdded validations to ensure that usergroup.name and user.login do not collide...
Adding Links to Audit LogCurrently Facts Auditing is disable
Squashed commit of the following:
commit c4382aeea5d72402bcbf3049d3c08f74792ca379Author: Ohad Levy <ohadlevy@gmail.com>Date: Thu Oct 15 22:03:26 2009 +0800
disable ldap by default
commit 685baf5f2c78128feebcbeed6910b131a072a81bAuthor: Ohad Levy <ohadlevy@gmail.com>...