Nikolay Zlatev
7a5572ad7c
user.Manager: further improve ACL write/read order
...
For each user, we should test in order `THE_LONGEST_RULE`->`WRITE_PERMISSION`
2023-10-16 09:41:49 +03:00
Nikolay Zlatev
5c9cebf059
user.Manager: fix ACL write, read order
...
This should fix "read-only access to topic *" being applied before "read-write access to topic _PREFIX_*"
Before this if we have:
ntfy access user "mytopic*" rw
ntfy access user "*" ro
read-only access rule was applied first and user couldn't write to
mytopic*
2023-10-13 15:41:17 +03:00
binwiederhier
a5f0670f7f
ACLs and underscores, resolves #840
2023-08-18 22:44:52 +02:00
binwiederhier
3e3b556108
Fix excess token deletion bug
2023-08-17 21:42:40 +02:00
binwiederhier
48a5a55e2f
Release notes
2023-06-28 12:54:13 -04:00
binwiederhier
e96e35b40b
Newly created access tokens are now lowercase only
2023-06-14 11:20:29 -04:00
binwiederhier
fc1087a42b
The last one
2023-05-17 11:19:48 -04:00
binwiederhier
ac029c389e
Self-review
2023-05-17 10:39:15 -04:00
binwiederhier
496d6e74b0
Staticcheck
2023-05-16 15:12:18 -04:00
binwiederhier
69b01bc468
Merge branch 'main' into twilio
2023-05-15 20:02:51 -04:00
binwiederhier
f14f0aaa26
Add tests for users, slightly change API a bit
2023-05-15 10:42:24 -04:00
binwiederhier
cea434a57c
WIP Twilio
2023-05-12 21:47:41 -04:00
binwiederhier
f99159ee5b
WIP calls, remove SMS
2023-05-12 20:01:12 -04:00
binwiederhier
d4767caf30
Verify
2023-05-11 13:50:10 -04:00
binwiederhier
eb0805a470
Update web app with SMS and calls stuff
2023-05-07 22:28:07 -04:00
binwiederhier
f9e2d6ddcb
Add limiters and database changes
2023-05-07 11:59:15 -04:00
binwiederhier
ca9fed7b67
More metrics
2023-03-16 22:19:20 -04:00
Hunter Kehoe
25be5b47e4
allow default-token and per-subscription tokens in client.yml
2023-03-05 22:57:51 -07:00
binwiederhier
bfc3983d06
Only set rate visitor if allowed
2023-02-24 14:45:30 -05:00
binwiederhier
ef9d6d9f6c
Support for annual billing intervals
2023-02-21 22:44:30 -05:00
binwiederhier
cc309e87e9
Remove awkward subscription id
2023-02-12 14:09:44 -05:00
binwiederhier
1f010acb30
Tests for manager.go
2023-02-12 08:29:44 -05:00
binwiederhier
8bf64d8723
A few manager tests
2023-02-11 22:14:09 -05:00
binwiederhier
224c54b1a2
Fix UI bug with publish dialog
2023-02-11 14:13:10 -05:00
binwiederhier
b026e45189
Self-review (cont'd)
2023-02-11 10:49:37 -05:00
binwiederhier
79f9e78c37
More review stuff
2023-02-09 21:51:12 -05:00
binwiederhier
e6bb5f484c
Self-review, round 2
2023-02-09 15:24:12 -05:00
binwiederhier
b37cf02a6e
Code review (round 1)
2023-02-08 22:57:10 -05:00
binwiederhier
e1a4a74905
Auth rate limiter
2023-02-08 15:20:44 -05:00
binwiederhier
e3b39f670f
WIP tier CLI
2023-02-06 22:38:22 -05:00
binwiederhier
7cc8c81bd8
Continued logging work
2023-02-05 23:34:27 -05:00
binwiederhier
0885951a67
JS error handling
2023-02-02 15:19:37 -05:00
binwiederhier
4f5e40e161
Fix test
2023-01-29 21:51:49 -05:00
binwiederhier
d717bf39ac
"ntfy token" CLI
2023-01-29 21:42:40 -05:00
binwiederhier
0e36ac84d8
Test anonymous user is same as non-tier user
2023-01-28 21:27:05 -05:00
binwiederhier
92d563371c
No more v.user races
2023-01-28 20:43:06 -05:00
binwiederhier
e596834096
Add "last access" to access tokens
2023-01-28 20:29:06 -05:00
binwiederhier
000bf27c87
Speed up tests, hopefully fix races
2023-01-28 09:03:14 -05:00
binwiederhier
b77920bb4b
Fix linting errors
2023-01-28 07:40:29 -05:00
binwiederhier
16c14bf709
Add Access Tokens UI
2023-01-27 23:10:59 -05:00
binwiederhier
62140ec001
Rate limiting refactor, race fixes, more tests
2023-01-27 11:33:51 -05:00
binwiederhier
9e9caee639
(Hopefully) remove statsQueue races
2023-01-27 09:59:16 -05:00
binwiederhier
c874a641df
Rate limits make sense now!
2023-01-26 22:57:18 -05:00
binwiederhier
593e0748a8
Payment checkout test, rate limit resetting on tier change; failing
2023-01-25 22:26:04 -05:00
binwiederhier
236254d907
Add bandwidth limit to tier; fix display name sync issues
2023-01-25 10:05:54 -05:00
binwiederhier
eecd689ad5
Fix sync display name and delete after issue
2023-01-24 15:05:19 -05:00
binwiederhier
e82a2e518c
Add password confirmation to account delete dialog, v1/tiers test
2023-01-23 10:58:39 -05:00
binwiederhier
954d919361
Delayed deletion
2023-01-22 22:21:30 -05:00
binwiederhier
9c082a8331
Introduce text IDs for everything (esp user), to avoid security and accounting issues
2023-01-21 23:15:22 -05:00
binwiederhier
31a3bb7cd6
Payments webhook test, delete attachments/messages when reservations are removed,
2023-01-20 22:47:37 -05:00