jbdod/notes-ker-lann
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1823 commits 2 branches 0 tags 11 MiB
Commit graph

219 commits

Author SHA1 Message Date
Jean-Baptiste Doderlein
121c49a5b6 Add real BD fee 2022-08-30 07:54:39 +00:00
Jean-Baptiste Doderlein
8a03defc37 Some fixtures tweaks 2022-08-20 18:31:23 +00:00
Jean-Baptiste Doderlein
a17e47acb9 Refactor permission (need to re adjust), 2 test not passed(registration, permissions) 2022-08-20 18:10:12 +00:00
Jean-Baptiste Doderlein
838bd2bb23 Remove bank, Kfet and add BDA and BDS (need to fix activity, permission and registration) 2022-08-17 21:29:39 +00:00
Marsupilami1
5b15c659fe Merge branch 'main' of github.com:jbdoderlein/notes-ker-lann 2022-07-31 14:21:50 +02:00
Marsupilami1
2343eabb59 remove wei 2022-07-31 14:16:24 +02:00
Jean-Baptiste Doderlein
9fb3ccf66a Fix permission and delete soge in treasury 2022-07-31 11:59:30 +00:00
Jean-Baptiste Doderlein
00edcabb8e Remove soge, need to fix perm 2022-07-31 11:38:35 +00:00
Marsupilami1
94f5788922 remove useless permissions 2022-07-31 13:22:11 +02:00
Nicolas Margulies
e29b42eecc
Add permissions related to trusting 2022-04-13 12:30:22 +02:00
Yohann D'ANELLO
4161248bff
Add permissions to view/create/change/delete OAuth2 applications 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2022-03-09 12:06:19 +01:00
Yohann D'ANELLO
18a1282773
Implement optional scopes : clients can request scopes, but they are not guaranteed to get them 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-12-23 21:59:37 +01:00
Yohann D'ANELLO
132afc3d15
Fix scope view 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-12-15 18:59:23 +01:00
Yohann D'ANELLO
4b6e3ba546
Display club transactions only with note rights, fixes #107 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-12-13 20:01:00 +01:00
Yohann D'ANELLO
b204805ce2
Add permissions to (un)lock club notes 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-12-13 18:31:36 +01:00
Yohann D'ANELLO
2f28e34cec
Fix permissions to lock our own note 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-12-13 18:27:24 +01:00
Yohann D'ANELLO
38ca414ef6
Res[pot] can display user information in order to get first/last name in credits 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-10-06 10:44:24 +02:00
Yohann D'ANELLO
654c01631a
BDE members can see aliases from other people now 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-10-04 18:29:34 +02:00
Yohann D'ANELLO
62431a4910
Treasurers can manage activity entries 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-10-04 13:49:16 +02:00
Yohann D'ANELLO
7edd622755
BDE members can now use their note balance for personal transactions 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-08 18:35:36 +02:00
Yohann D'ANELLO
03411ac9bd
Don't check permissions in a script 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-08 16:59:44 +02:00
Yohann D'ANELLO
4b03a78ad6
Fix password change form from unauthenticated users 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-07 12:57:03 +02:00
Yohann D'ANELLO
ad04e45992
PC Kfet can create and update Sogé credits (but not see them) 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-06 11:43:39 +02:00
Yohann D'ANELLO
fbf64db16e
Simple test to check permissions with the new OAuth2 implementation 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-02 20:59:45 +02:00
Yohann D'ANELLO
a3fd8ba063
Bad paste in comment 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-02 20:59:45 +02:00
Yohann D'ANELLO
9b26207515
Rework templates for OAuth2 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-02 20:59:43 +02:00
Yohann D'ANELLO
7ea36a5415
[oauth2] Add view to generate authorization link per application with given scopes 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-02 20:59:33 +02:00
Yohann D'ANELLO
898f6d52bf
Better templates for OAuth2 authentication 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-02 20:59:20 +02:00
Yohann D'ANELLO
8be16e7b58
Permissions support fully OAuth2 scopes 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-02 20:58:05 +02:00
Yohann D'ANELLO
ea092803d7
Check permissions per request instead of per user 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-02 20:58:05 +02:00
Yohann D'ANELLO
b4d87bc6b5
Fix import 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-02 20:58:04 +02:00
Yohann D'ANELLO
dd639d829e
Implement OAuth2 scopes based on permissions 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-09-02 20:58:04 +02:00
Yohann D'ANELLO
e8f4ca1e09
Fix note account 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-08-29 14:40:55 +02:00
Yohann D'ANELLO
8056dc096d
[WEI] Old members can create WEI registrations to renew their membership easily 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-08-29 14:33:17 +02:00
Yohann D'ANELLO
d5ecb72a71
Update copyright for 2021 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-14 21:45:56 +02:00
Yohann D'ANELLO
ec0bcbf015
PC Kfet can see all users 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-21 10:28:50 +01:00
Yohann D'ANELLO
56c5fa4057
We don't need a session to have permissions 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-09 09:41:27 +01:00
Rida LALI
a704b92c3d
Prez BDE : ajout transaction random + see all buttons 2021-02-20 15:12:08 +01:00
Yohann D'ANELLO
e60994e065
API Documentation 
Signed-off-by: Yohann D'ANELLO <yohann.danello@gmail.com>
 2020-12-23 21:06:30 +01:00
Yohann D'ANELLO
016ab5a9c9
Remove dead code, don't try to cover unnecessary things 
Signed-off-by: Yohann D'ANELLO <yohann.danello@gmail.com>
 2020-12-23 18:45:05 +01:00
Yohann D'ANELLO
f570ff3cd5
Check that permissions are working when accessing to API pages 
Signed-off-by: Yohann D'ANELLO <yohann.danello@gmail.com>
 2020-12-23 18:21:59 +01:00
Yohann D'ANELLO
3a20555663
Unit tests for API pages, closes #83 
Signed-off-by: Yohann D'ANELLO <yohann.danello@gmail.com>
 2020-12-23 14:54:21 +01:00
Yohann D'ANELLO
d47799e6ee
More API filters for the permission app 2020-12-22 12:42:54 +01:00
Yohann D'ANELLO
290848f904 Non-member people can update their profile everytime 2020-12-02 14:58:14 +01:00
Yohann D'ANELLO
7bd895c1df Grant treasurers to update a note picture 2020-10-26 17:58:30 +01:00
Yohann D'ANELLO
051591cb7a Don't see user detail in update form 2020-10-25 21:49:16 +01:00
Yohann D'ANELLO
0e7390b669 PC Kfet can see limited user information and clubs. It can create memberships but not see them 2020-10-25 21:38:04 +01:00
Yohann D'ANELLO
6e80016b38 Don't delete object when checking an add permission: this is useless since we rollback to the initial DB state 2020-10-25 21:08:36 +01:00
Yohann D'ANELLO
cb7f3c9f18 Note account can manage BDE memberships 2020-10-23 16:42:06 +02:00
Yohann D'ANELLO
f910feca9e PC Kfet can create and renew memberships 2020-10-23 13:17:07 +02:00