* Custom email body (#51)
* get email body from ENV
* read subject from env
* html mail
* replace special string with username and password
* missing ;
* more str_replace
* utf8 in mail
* typo
* docs
* fix var
* count accounts
* fix print
* Add the ability to set the server path. Get directed to the appropriate module when you log in.
* Fixes to allow overriding attribute labels properly
* Fix server_path in various places, update to cookies use 'samesite', include boostrap and queryjs files so LUM can run without internet access.
* Add support for consuming docker / kubernetes secrets passed as _FILE environment variables (#136)
* mod: condense Dockerfile
* add: _FILE feature
add: list of sensitive env_vars
* mod: sorted env_var list
* add: complete current env_var list
* fix: formatting
* mod: revert Dockerfile to prev. version
* mod: updated comment to be more descriptive
mod: rename variables to be more descriptive
* rem: list of env_var; no longer needed.
mod: env_file_replace function
^ search for all <env_var>_FILE variables and replace
^ <env_var> if the file exists and is not empty
mod: env_file_replace comment
Co-authored-by: pyunramura <jeremy.cummings@live.com>
* Update the README with information on using _FILE
* Change username regex variables
* Named server certs, as suggested by @huzvar
* Update LDAP filter method as suggested by @xgaia
* Feature/http header username (#120)
* Implement Remote Headers Auth
* Hide Logout on Remote Sessions
* Add Explanation for REMOTRE_HTTP_HEADERS_LOGIN settiing
Co-authored-by: Damian Galli <damian.galli@galli.site>
* Updated Readme, fixed random number generation for ARM systems, fixed JS to generate the username
* Fix issues #124 and #126
* Change badges to buttons for list counts
* Don't secretly set displayName
* Add Group Additional (#113)
* Add doku Group additional.
* Read Group additional configuration.
* New group add Additional objectclasses
* Allow for attributes that take multiple values.
* Updated README
* Formatting fixes, fix parsing params from account requests, initial code for the simple interface flag.
* Add attribute fields for groups and allow user-defined attributes to be displayed. Move alert banner JS to a function.
* Update entries with any missing additional objectclasses when updating entries. Update README to describe changes. Initial work to allow file uploads for attributes.
* Functionality to upload binary files and display them in the form it's a JPEG. Added a new page to download existing binary content.
* Bugfixes for compatibility with older osixia/openldap versions. Change SIMPLE_INTERFACE to SHOW_POSIX_ATTRIBUTES.
* Update version number in README.
Co-authored-by: Monsieur X <xgaia@gmx.com>
Co-authored-by: pyunramura <35285259+pyunramura@users.noreply.github.com>
Co-authored-by: pyunramura <jeremy.cummings@live.com>
Co-authored-by: Damian Galli <da.ga@live.de>
Co-authored-by: Damian Galli <damian.galli@galli.site>
Co-authored-by: huzvar <89766648+huzvar@users.noreply.github.com>
* Custom email body (#51)
* get email body from ENV
* read subject from env
* html mail
* replace special string with username and password
* missing ;
* more str_replace
* utf8 in mail
* typo
* docs
* fix var
* count accounts
* fix print
* Add the ability to set the server path. Get directed to the appropriate module when you log in.
* Fixes to allow overriding attribute labels properly
* Fix server_path in various places, update to cookies use 'samesite', include boostrap and queryjs files so LUM can run without internet access.
Co-authored-by: Monsieur X <xgaia@gmx.com>
* Changes to allow using different account attributes, additional objectclasses, protection against accidentally removing all admin acccess, remove Helm files, username sanity updates
* Fixed LDAP user searches using the base DN
* Don't render the menu if there are fatal errors
* FIx tag parsing. No TLS warning for local LDAP connections.
* Fix bug retrieving account attributes
* Multi-arch support and tidied-up README
* Add support for stronger hashes (#34)
* Add generate_salt function
* Add suport for clear text passwords
If someone wants to shoot themselves in the foot, they are free to do it
* Add support for blowfish
* Add support for extended DES
* Add support for md5crypt
* Fix salt generation call
* Add support for sha256crypt
* Add support for sha512crypt
* Update previous functions
* Add a default cause
* Fix some shenanigans and log cleanup
* Couple minor fixes
* Let password hash checking be done in the password function
* Update the README with new passwords
* Change the default fallback to SSHA
* Put crypt algos in an array ordered by preference so we can fail to the most secure algo available
* Remove superfluous count++
* Updated password hashing code
Co-authored-by: Angelin01 <angeloborsoiross@hotmail.com>
* Added ALLOW_WEAK_PASSWORDS and PASSWORD_HASH options, some bug and log format fixes
* Fixed incorrect variable name in check for password hash setting.
