Pavel Djundik
711b5e1d91
Make settings/options mostly work
...
Fixes #1672
2017-11-19 19:43:42 +02:00
Jérémie Astori
f2d9ef62cf
Merge pull request #1715 from thelounge/astorije/deprecate-node-v4
...
Deprecate support of Node v4 in preparation of The Lounge v3
2017-11-19 01:05:57 -05:00
Jérémie Astori
ef1c59072c
Deprecate support of Node v4 in preparation of The Lounge v3
2017-11-18 13:52:31 -05:00
Jérémie Astori
1dc92d8934
Enforce dangling commas with ESLint
...
¯\_(ツ)_/¯
2017-11-15 01:35:15 -05:00
Pavel Djundik
81e3e88391
Merge pull request #1636 from thelounge/xpaw/cleanup-clientmanager
...
Cleanup client manager functions
2017-10-29 10:25:42 +02:00
Pavel Djundik
3f2a017583
Create public folder with webpack
2017-10-18 21:20:12 +03:00
Pavel Djundik
50504ed09b
Fix possible race condition when attaching clients
2017-10-17 12:45:18 +03:00
Pavel Djundik
280eea970a
Get client ip address correctly
2017-10-17 10:35:28 +03:00
Pavel Djundik
5c45321cca
Cleanup client manager functions
2017-10-15 19:05:19 +03:00
Pavel Djundik
44acc5cb00
Teardown sockets in tests
2017-10-06 12:53:08 +03:00
Pavel Djundik
2f15ab3999
Fix attached client not having token on login
2017-09-26 10:56:08 +03:00
Pavel Djundik
833bdfa2aa
Fix session data not updating correctly
2017-09-26 10:56:08 +03:00
Pavel Djundik
d7e6db92b5
Implement session list
2017-09-26 10:56:08 +03:00
Jérémie Astori
637949ea55
Merge pull request #1471 from thelounge/xpaw/client-reconnection
...
Automatic client reconnection
2017-09-20 00:05:37 -04:00
Pavel Djundik
21c9919fa1
Print compatibility theme setting warning on startup
2017-09-19 12:21:08 +03:00
Pavel Djundik
cffa957e34
Only send messages newer than last seen id
2017-09-19 11:45:22 +03:00
Pavel Djundik
0c0df1efc9
Force reload the page if socket reconnects and server restarted
2017-09-19 11:45:22 +03:00
Alistair McKinlay
59d2f93f61
Allow themes from npm
2017-09-17 19:47:29 -04:00
Pavel Djundik
099fb058c6
Merge pull request #1478 from eliemichel/pr-proper-ldap--rebased
...
Implement a proper LDAP authentication process
2017-09-04 09:02:58 +03:00
Elie Michel
32e1a36980
Generalize auth plugin fallback mechanism
...
@astorije this is for you ;)
https://github.com/thelounge/lounge/pull/1478#discussion_r136492534
2017-09-03 23:00:25 +02:00
Elie Michel
00e54e49ac
Add tests for LDAP auth plugin
2017-09-03 23:00:24 +02:00
Elie Michel
12ba10f688
Reorganize auth plugins
2017-09-03 23:00:23 +02:00
Élie Michel
cfa6db10c7
Make new LDAP options backward compatible
...
Also draft some kind of plugin system for auth, although it essentially consists in writing a function
and there is no mechanism to automatically fallback from one auth to another
2017-09-03 23:00:23 +02:00
Pavel Djundik
c845d5723d
One line server startup errors
2017-09-03 15:13:56 +03:00
Pavel Djundik
9e1296d303
Merge pull request #1479 from thelounge/xpaw/unix-socket
...
Add support for binding to unix sockets
2017-09-01 11:25:00 +03:00
Jérémie Astori
ad8ec4b1e6
Remove the "Stay signed in" checkbox at login
...
This option is less and less the norm on modern webapps, it is fair to assume this is the default behavior. In fact, we were making it the default.
But more importantly, coming soon is the ability of remotely logging out of your other sessions, which is well handled through token deletion. That means we need to know about said tokens, which are not sent in no-"Stay signed in" version.
2017-08-31 23:07:43 -04:00
Pavel Djundik
b79a6cce0c
Add support for binding to unix sockets
...
Fixes #686 .
Fixes #691 .
2017-08-31 21:56:20 +03:00
Pavel Djundik
0d57df81af
Gracefully quit on Ctrl+C
...
Fixes #268
2017-08-30 20:26:45 +03:00
Élie Michel
19710b90c0
Merge branch 'master' into pr-proper-ldap
2017-08-29 08:42:26 +02:00
Jérémie Astori
684f1a641d
Make sure server is running before loading users
2017-08-23 13:21:14 -04:00
Pavel Djundik
0ac3ba28e1
Web Push Notifications
2017-08-22 10:54:18 +03:00
Pavel Djundik
3190fd00bf
Refactor authentication flow
2017-08-13 21:37:12 +03:00
Pavel Djundik
c14f7da1b2
Generate unique tokens for each login and session
2017-07-31 02:02:15 +03:00
Jérémie Astori
157289258a
Keep track of preview visibility on the server so it persists at page reload
2017-07-26 18:16:50 -04:00
Pavel Djundik
f35a2809a7
Store preview images on disk for privacy, security and caching
2017-07-18 11:37:16 +03:00
Pavel Djundik
b0efbf8a1e
Parse x-forwarded-for header correctly
2017-06-21 14:34:06 +03:00
Pavel Djundik
f6dd616d5e
Update to eslint 4 and enforce extra rules
2017-06-19 09:58:29 +03:00
Pavel Djundik
ca54c40d0f
Merge pull request #1197 from thelounge/xpaw/socketio-transports
...
Correctly configure client socket transports
2017-06-08 20:19:49 +03:00
Pavel Djundik
b46f92c7d8
Only update bcrypt password rounds if the password actually matches
2017-06-02 11:02:03 +03:00
Pavel Djundik
16fb118d02
Correctly configure client transports
...
Fixes #848
2017-06-01 22:43:23 +03:00
Alistair McKinlay
b4310dbc03
Review changes
...
(Should be squashed before merge)
2017-04-21 09:26:02 +01:00
Alistair McKinlay
cc85b2143c
Change index.html to be rendered using handlebars
2017-04-21 09:16:24 +01:00
Metsjeesus
fa51a2c281
Add CA bundle option in SSL
2017-04-15 19:12:21 +03:00
Pavel Djundik
f645c32cb9
Use local variables to check length
2017-04-14 00:05:28 +03:00
Jérémie Astori
fe7c570cc9
Use Referrer-Policy header instead of CSP referrer
...
According to MDN:
> referrer
> Used to specify information in the referer (sic) header for links away from a page.
> Use the Referrer-Policy header instead.
See:
- https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/referrer
- https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
2017-04-06 02:25:43 -04:00
S
001f96035b
Switch to bcryptjs and make password comparison async
...
- PasswordCompareAsync prevents timeouts on resource constraint devices
- All password.compare calls are now async
- Updated tests to accept async functions
2017-04-01 03:06:09 -04:00
Élie Michel
ed3b4faa62
Fix eslint styling issues
2017-03-21 15:49:54 +01:00
Élie Michel
642442c041
Implement a proper LDAP authentication process
...
The Lounge first log as a special user in order to search (as in LDAP's
'"search" verb) for the user's full DN. It then attempts to bind using the
found user DN and the user provided password.
2017-03-21 15:15:33 +01:00
Pavel Djundik
c409328ddf
Fix variable shuffling around ident handler
...
Fixes #965
2017-03-17 22:24:40 +02:00
Pavel Djundik
9997aafec7
Rewrite identd server, combine with oidentd
2017-03-12 12:02:22 +02:00