dinislage/web2py
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
8,041 Commits 18 Branches 72 Tags
patch-2
Commit Graph

618 Commits

Author SHA1 Message Date
mdipierro dce5fbb472 fixed validate maybe 2019-10-20 21:43:01 -07:00
Mirko Galimberti 1dec1b4358 Checks for user availability before accessing the registration key 2019-09-02 13:50:39 +02:00
jvanbraekel 251314ceb8 Only return get_vars after a failing login 
Since the redirect is a GET action, there is no reason to return post vars from the failing attempt.
 2019-07-24 09:43:03 +02:00
Tim Nyborg 99d3d1d465 prevent open redirects with no protocol specified 
prevent_open_redirect doesn't currently handle a 'next' with a // but no protocol, e.g.: .../user/login?_next=//google.com
 2019-05-20 11:27:21 +01:00
mdipierro 4a16a1c377 Fixes #1996, thanks Paolo 2019-03-15 22:21:11 -07:00
jvanbraekel b21cfb53f3 Fix redirect url when login failed (invalid login) 
Hello,

This is broken since 1457e12f70 . 'self.url' does'nt have any get_vars,post_vars, only one parameter called vars. I suggest to pass all variables instead  with request.vars  that will encompass both get and post vars... Another possibility would be to change the self.url signature but I don't see the purpose of making the distinction between post and get vars in this case.
 2019-02-21 15:17:40 +01:00
mdipierro b3175d092e Merge pull request #2088 from vinyldarkscratch/python-3 
Introduce better Python 3 compatibility across all files
 2019-02-10 20:09:27 -08:00
mdipierro d8bdc47542 Merge pull request #2084 from vinyldarkscratch/fix-2083 
Fix login form clearing after failed login
 2019-02-10 20:09:14 -08:00
Vinyl Darkscratch f434ebec8a Update Python 3 compatibility 2019-02-09 00:01:11 -08:00
Vinyl Darkscratch 8852df7a7a Delete password rather than simply clearing it 2019-02-04 09:56:58 -08:00
Vinyl Darkscratch 3269e1a3f5 Fix #2044 2019-01-29 20:39:16 -08:00
Vinyl Darkscratch 1457e12f70 Don't remember password on failed login 2019-01-29 17:30:10 -08:00
Vinyl Darkscratch 603f54fade Fix login form clearing after failed login 2019-01-29 02:11:18 -08:00
mdipierro 9824ead2e7 Merge pull request #2041 from rif/master 
fix recaptcha2 for python3
 2018-11-01 08:21:11 -07:00
Radu Ioan Fericean 7de0a3b53f fix recaptcha2 for python3 2018-10-18 16:27:15 +03:00
Ben Hagen a5d7827fc7 Fix basic_auth with Python 3 
`base64.b64decode` returns bytes and thus the separator needs to be a bytes-like object.
 2018-10-08 15:47:13 +02:00
Leonel Câmara 50692a4fd3 Fixes #726 2018-09-20 18:59:41 +01:00
Mirko Galimberti 09c8b5eced skip requires on custom userfield 2018-09-07 10:23:07 +02:00
Mirko Galimberti 55a2f4a6b2 Fixes request_reset_password w/ custom userfield 2018-09-06 14:58:03 +02:00
mdipierro 2203e0e49f Merge pull request #1970 from web2py/jwt_allow_decorator_fix 
Jwt allow decorator fix
 2018-08-05 17:21:17 -07:00
Michele Comitini 6f2be48e25 generate HTTP error code also if jwt token parameter is missing in request 2018-07-26 20:01:38 +02:00
Gautham Pai 39dd86d6fb Raise an error only if required is True and token is not present 2018-07-24 17:40:15 +05:30
Gautham bc59d58a3e Fixing a bug - the allows_jwt method does NOT throw any error if a token is not found at all. 
This could cause potential security issues as developers decorate their methods with @allows_jwt and then not pass a token and the method allows the call.

Signed-off-by: Gautham <buzypi@gmail.com>
 2018-07-24 15:12:20 +05:30
Mirko Galimberti 1aab089205 Fixes login_bare + register_bare w/ custom login_userfield 2018-07-19 17:13:38 +02:00
mdipierro f0eb120bba Merge pull request #1904 from n1k9/master 
Modify dispacher for differente response element name
 2018-04-29 19:49:10 -05:00
Nicola Gramola 43e2ed2fc7 Modify dispacher for differente response element name 2018-04-19 08:57:25 +02:00
mdipierro 1e450ed1d6 Merge pull request #1888 from BuhtigithuB/fix/recapchat-v1-deprecated 
Close #1887 - remove Recaptcha V1
 2018-04-18 21:59:13 -05:00
mdipierro cec14c741a fixed no-email edit in profile 2018-04-02 23:53:05 -05:00
Richard Vézina ff44821f05 Close #1887 - remove Recaptcha V1 2018-03-26 16:21:21 -04:00
mdipierro a679210649 fixed aws email 2018-03-20 09:14:05 -05:00
mdipierro 2752aba471 allow sending raw emails with server='aws' 2018-03-15 17:14:00 -05:00
ilvalle ad3c69155b fix few urllib.urlencode, close #1841 2018-02-04 09:58:16 +01:00
Roald Osinga 9bf8ca9c3b made cas_provider response py3 compatible 2018-01-05 11:49:20 +01:00
mdipierro 4a2a02d1fe fixed display of computed fields 2017-12-02 12:52:15 -06:00
mdipierro 551c19bcaf Merge pull request #1761 from josedesoto/issue/update_role_on_update_profile 
Update groups on edit profile
 2017-11-13 21:14:02 -06:00
Leonel Câmara 925f928843 Copy all CRYPT attributes thanks @abastardi 2017-11-08 11:53:29 +00:00
Leonel Câmara 228d3c41b6 Fixes #1800 2017-11-07 23:34:35 +00:00
Jose de Soto 5f4c47729b Removed a tab and replaced by spaces 2017-09-21 10:17:17 +02:00
Jose de Soto e8cf50326d When profile is updated self._update_session_user(user) set session.user_groups to None. self.update_groups() needs to be done. 2017-09-13 11:21:03 +02:00
mdipierro 213c4ee7d1 fixed use of whitespaces 2017-08-01 10:26:33 -05:00
mdipierro 7088b74d42 Merge pull request #1705 from josedesoto/enhancement/1557 
Enhancement/1557
 2017-08-01 09:46:55 -05:00
Jose de Soto d5167f2ed6 change_password_url parameter for alternate login methods 2017-07-31 19:00:24 +02:00
Jose de Soto 1014d3e86e new parameter to auto create or not users with alternate login methods 2017-07-31 18:33:15 +02:00
Jan Kotyz 19efbfecfa Fixes 1700 2017-07-27 11:27:41 +02:00
Leonel Câmara b7b8a009f2 Fixes #1680 2017-07-14 20:17:30 +01:00
mdipierro 453123a8ed Merge pull request #1652 from BuhtigithuB/improve/pep8-tools-py 
Enhance tools.py PEP8 compliancy
 2017-07-10 14:11:11 -05:00
mdipierro f657b42f65 fixed undefined variable 2017-07-02 01:34:05 -05:00
mdipierro 1c0b498880 fixed undefined variable 2017-07-02 01:32:25 -05:00
Richard Vézina 583d106104 Fix docstring py3 compatibility issues print -> print() 2017-06-21 11:33:00 -04:00
Richard Vézina 7ada2cf89a Enhance tools.py PEP8 compliancy 2017-06-21 11:27:54 -04:00