Gitea-John71/LLDAP
2
0
Fork 0
mirror of https://github.com/lldap/lldap.git synced 2026-06-19 04:38:32 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,111 Commits 21 Branches 12 Tags
bdbfc6f17872d9df678c9594fb5ef270722b3921
Commit Graph

49 Commits

Author SHA1 Message Date
lyzstrik
6f94134fdc refactor(server): migrate to rustls 0.23 and centralize TLS logic (#1389) 
This commit upgrades the TLS stack to Rustls 0.23

Key changes:
- Dependencies: Updated 'rustls' (v0.23), 'tokio-rustls' (v0.26), and 'actix-web' (v4.12.1).
- Build Fix: Configured 'rustls' to use the 'ring' provider (disabling default 'aws-lc-rs') to ensure ARMv7 compatibility.
- Refactor: Created 'server/src/tls.rs' to handle certificate loading (DRY).
- LDAP: Updated 'ldap_server.rs' to use the new TLS module and Rustls APIs.
- Healthcheck: Updated 'healthcheck.rs' to use Rustls 0.23 types.
 2026-01-31 09:47:11 +01:00
Shawn Wilsher
a959a50e07 server: allow specifying the healthcheck addresses 
This change adds two new optional configuration options:
- `ldap_healthcheck_host` to pair with `ldap_host`
- `http_healthcheck_host` to pair with `http_host`

These both default to `localhost` to preserve the existing behavior.

Fixes #700
 2025-11-16 15:03:40 +01:00
Copilot
775c5c716d server: gracefully shut down database connection pool 2025-09-04 09:19:03 +02:00
selfhoster1312
87e9311a44 meta: Fix cargo clippy failures (format strings) 2025-07-16 23:23:08 +02:00
Valentin Tolmer
3556e41612 server: flatten remaining files 2025-04-09 09:30:39 +09:00
Valentin Tolmer
d38a2cd08b server: extract graphql crate 2025-04-09 09:30:39 +09:00
Valentin Tolmer
55de3ac329 server: extract the sql backend handler to a separate crate 2025-04-09 09:30:39 +09:00
Valentin Tolmer
ba9bcb3894 chore: Migrate all the crates to edition 2024 2025-03-30 21:32:46 -05:00
Simon Broeng Jensen
ca1c6ff645 domain-handlers: move backend handler traits to separate crate 2025-02-21 20:41:20 +01:00
Simon Broeng Jensen
1b26859141 server: move domain::types to separate domain crate (#1086) 
Preparation for using basic type definitions in other upcoming
modules, in particular for plugins.
 2025-02-03 23:00:27 +01:00
Valentin Tolmer
f417427635 Prevent starting up if the JWT secret is not given 
Similarly, don't create the admin if the password is not given
 2024-12-24 19:40:26 +01:00
Valentin Tolmer
143eb70bee server: Only use a single connection with SQlite 
Several writer connections can lock the DB and cause other inserts to fail.

A single connection should be enough given the usual workloads
 2024-10-30 15:35:47 +01:00
Valentin Tolmer
3ec44a58be server: Allow password reset every time the server starts 2024-08-26 12:53:25 +02:00
Valentin Tolmer
13720c101c server: silence clippy warnings 2024-02-27 08:22:58 +01:00
Austin Alvarado
93f3057b8f server: remove debug print 2024-01-25 22:35:42 +01:00
Valentin Tolmer
d4b3b4649e server: Clean up main, make more functions async 2024-01-24 00:04:43 +01:00
Valentin Tolmer
b82a2d5705 server: Treat the database password as a secret 2024-01-22 23:12:33 +01:00
Valentin Tolmer
2ea17c04ba server: Move the definition of UserId down to lldap_auth 2024-01-15 23:48:59 +01:00
Valentin Tolmer
9f8364ca1a server: Fix private key reset functionality 2024-01-14 22:54:13 +01:00
Valentin Tolmer
dc140f1675 server: exit with non-zero code when running into errors starting 2024-01-06 00:43:41 +01:00
Valentin Tolmer
f2b1e73929 server: Add a check for a changing private key 
This checks that the private key used to encode the passwords has not
changed since last successful startup, leading to a corruption of all
the passwords. Lots of common scenario are covered, with various
combinations of key in a file or from a seed, set in the config file or
in an env variable or through CLI, and so on.
 2023-12-29 15:37:52 +01:00
Valentin Tolmer
ff0ea51121 server: Add an option to force reset the admin password 2023-12-22 08:27:35 +01:00
Valentin Tolmer
272c84c574 server: make attributes names, group names and emails case insensitive 
In addition, group names and emails keep their casing
 2023-12-15 23:21:22 +01:00
Valentin Tolmer
2a5fd01439 server: add support for creating a group with attributes 2023-09-29 02:31:20 +02:00
Valentin Tolmer
208cc7192e server: Only create the default admin if there are no admins 
Fixes #563
 2023-09-12 15:54:18 +02:00
Austin Alvarado
05dbe6818d server: Create schema command 2023-03-21 14:16:19 +01:00
Valentin Tolmer
c9997d4c17 server: statically enforce access control 2023-03-01 11:28:04 +01:00
Valentin Tolmer
96eb17a963 server: fix clippy warning 
The clippy::uninlined_format_args warning in 1.67 was downgraded to
pedantic in 1.67.1 due to lack of support in rust-analyzer, so we're not
updating that one yet.
 2023-02-10 12:03:23 +01:00
Valentin Tolmer
f979e16b95 server: Fix healthcheck return code 
The healthcheck was not returning a non-zero code when failing, due to
an extra layer of Results
 2023-01-16 17:35:08 +01:00
Valentin Tolmer
e89b1538af server,app: migrate to sea-orm 2022-11-25 15:35:48 +01:00
Waldemar Heinze
a3216a4550 server: fix clippy's suggestions 2022-11-24 23:52:57 +01:00
Michał Mrozek
dd7e392626 server: use async api for email sending 
Fixes #378
 2022-11-24 14:47:56 +01:00
Valentin Tolmer
8d19678e39 server: refactor sql backend handler 
And add some missing tests
 2022-10-18 13:04:59 +02:00
Valentin Tolmer
3aaf53442b server: implement healthcheck 2022-10-12 16:44:52 +02:00
Frank Moskal
9e37a06514 server: allow admin email to be set via config 2022-07-13 14:32:35 +02:00
Valentin Tolmer
500a441df7 server: Migrate from lldap_readonly to lldap_strict_readonly 2022-07-08 19:02:20 +02:00
Valentin Tolmer
4092b2e5b1 server: Print version on startup 2022-07-01 14:57:22 +02:00
Valentin Tolmer
23a4763914 server: Add tracing logging 
Fixes #17
 2022-06-30 17:14:13 +02:00
Valentin Tolmer
ff698df280 server: Introduce a read-only user 2022-06-06 17:27:37 +02:00
Valentin Tolmer
9124339b96 server: Prevent passwords and secrets from being printed 2021-11-23 00:25:47 +01:00
Valentin Tolmer
617a0f53fa server: Send an email with the test command 2021-11-23 00:25:47 +01:00
Valentin Tolmer
1d54ca8040 server: Load config for both run and mail 2021-11-23 00:25:47 +01:00
Valentin Tolmer
77ced7ea43 misc: Forbid non-ascii identifiers 
That prevents a class of unicode attacks, e.g. invisible characters.
 2021-11-23 00:25:47 +01:00
Valentin Tolmer
fa0105fa96 cli: Add a "send test email" command 
Still unimplemented. This re-organizes the command-line flags.
 2021-11-23 00:25:47 +01:00
Valentin Tolmer
350fdcdf9b server: improve error messages 2021-11-23 00:25:47 +01:00
Valentin Tolmer
eef3afd2e2 server: Improve startup error messages and fail fast 2021-10-20 08:58:36 +02:00
Valentin Tolmer
263fd44156 server: add a display name to the administrator user 2021-10-15 08:05:50 +02:00
Valentin Tolmer
d9abcd335d config: Add a minimum password length 2021-10-07 18:33:47 +02:00
Valentin Tolmer
d8df47b35d Move backend source to server/ subpackage 
To clarify the organization.
 2021-08-31 20:32:55 +02:00