1
0
mirror of https://github.com/kakwa/ldapcherry synced 2024-12-18 10:50:04 +01:00

9 Commits

Author SHA1 Message Date
John Thiltges
6f98076281 Protect against XSS vulnerabilities in URL redirection
- Switch from base64 to URL encoding for the passing the URL, using the built-in Mako filtering
- Apply HTML filtering to Mako output by default
- Disable HTML filtering for nested templates in adduser, modify, and selfmodify
2019-01-02 14:31:10 -06:00
kakwa
7a1fb0dc8c modifying the templates to include custom ppolicy error message 2015-11-02 23:25:01 +01:00
kakwa
efcaad54fc multiple modification/fix
* add display_name parameter for backend
* handle display_name in modify template (lonely groups) and error
  message
* fix bug in modify when user is in only one backend
* remove redondant exception in ad/ldap backend
* fix unit test accordingly
* fix License in AD backend (GPLv3 -> MIT, previously tought of using
  samba4 python library which is GPL, but this module finaly uses
  python-ldap which is MIT compatible)
2015-07-31 20:08:21 +02:00
kakwa
405367fd75 various fixes in html + unit tests on html 2015-07-05 17:50:42 +02:00
kakwa
147cad3511 fix unicode 2015-06-27 22:35:34 +02:00
kakwa
965ad84b7a using html fieldset 2015-06-24 00:58:32 +02:00
kakwa
117d18bc92 prefixing all form attributes to differenciate between types 2015-06-24 00:46:10 +02:00
kakwa
5e5e7e3c6a implementing displaying roles and standalone groups in modify form 2015-06-19 22:15:37 +02:00
kakwa
834b5a5152 begin implementing modify user form 2015-06-18 23:43:58 +02:00