33e08f38da
Raise bad request when receiving HTTP request from untrusted proxy ( #51839 )
...
* Raise bad request when receiving HTTP request from untrusted proxy
* Fix code comment
2021-06-17 04:41:19 +02:00
cdd1f6b2f0
Always load middle to handle forwarded proxy data ( #51332 )
2021-06-01 09:38:55 -07:00
a4432557d3
Defer writing http config until after startup has calmed down ( #50000 )
2021-05-02 19:48:49 -10:00
e3105c7eb1
Revert CORS changes for my home assistant ( #47064 )
...
* Revert CORS changes for my home assistant
* Update test_init.py
* Update test_init.py
2021-02-25 15:28:22 -08:00
22389043eb
Remove base_url fallback ( #46316 )
2021-02-10 14:31:11 +01:00
6f446cf627
Add my component ( #46058 )
...
Co-authored-by: Franck Nijhof <git@frenck.dev>
Co-authored-by: Martin Hjelmare <marhje52@gmail.com>
2021-02-08 14:44:46 +01:00
cf9ea6f82d
Sanitize user-agent in wrong_login message ( #45251 )
2021-01-18 09:21:30 +01:00
e1427c45f2
Bump aioHTTP 3.7.3 - YARL 1.6.3 ( #45180 )
2021-01-15 13:19:22 +01:00
dee0f887de
Extend filter and filter tests ( #45179 )
2021-01-15 10:30:29 +01:00
f047d04882
Add filtering
2021-01-14 20:02:01 +01:00
65cf2fcb6f
Drop asynctest ( #44746 )
2021-01-01 22:31:56 +01:00
1c2ebdf307
Upgrade black to 20.8b1 ( #39287 )
2020-08-27 13:56:20 +02:00
475e70986b
Extend IP ban / failed login notification information ( #39020 )
2020-08-18 23:32:19 +02:00
cc4ebc925c
Improve X-Forwarded-* request headers handling ( #38696 )
...
Co-authored-by: Paulus Schoutsen <balloob@gmail.com>
Co-authored-by: Martin Hjelmare <marhje52@gmail.com>
Co-authored-by: Franck Nijhof <git@frenck.dev>
Co-authored-by: Pascal Vizeli <pvizeli@syshack.ch>
2020-08-11 22:57:50 +02:00
20710d8605
Add current request context to get_url helper ( #38602 )
2020-08-09 14:07:31 +02:00
578d4a9b6a
Make the frontend available sooner (Part 1 of 2) ( #36263 )
...
* Part 1 of 2 (no breaking changes in part 1).
When integrations configured via the UI block startup or fail to start,
the webserver can remain offline which make it is impossible
to recover without manually changing files in
.storage since the UI is not available.
This change is the foundation that part 2 will build on
and enable a listener to start the webserver when the frontend
is finished loading.
Frontend Changes (home-assistant/frontend#6068 )
* Address review comments
* bump timeout to 1800s, adjust comment
* bump timeout to 4h
* remove timeout failsafe
* and the test
2020-06-02 13:54:11 -05:00
acbffb511d
Fix base_url extract stack ( #36331 )
...
* Fix base_url extract stack
* Fix tests
2020-06-01 11:44:45 -07:00
ed014e3c96
Revert "Ensure frontend is available if integrations fail to start - Part 1 of 2 ( #36093 )" ( #36251 )
...
This reverts commit fbe7b4ddfa
2020-05-29 10:18:39 +02:00
fbe7b4ddfa
Ensure frontend is available if integrations fail to start - Part 1 of 2 ( #36093 )
...
Co-authored-by: Paulus Schoutsen <paulus@home-assistant.io>
2020-05-28 21:09:07 -07:00
e3e3a113e9
async_get_url -> get_url ( #35382 )
2020-05-08 21:53:28 +02:00
e56dd8ed50
Detect use of deprecated base_url ( #35353 )
...
* Detect use of deprecated base_url
* Update get_url helper
* Update core migration
* Migrate all tests
2020-05-08 17:52:32 +02:00
2223592486
Add get_url helper, deprecate base_url ( #35224 )
2020-05-08 02:29:47 +02:00
2af984917e
Use asynctest-mock in most places ( #35109 )
...
* Use asynctest-mock in most places
* Fix broken patch in pilight
2020-05-03 11:27:19 -07:00
76f392476b
Use a future for mock coro ( #34989 )
2020-04-30 16:31:00 -07:00
ec47216388
Use built-in test helpers on 3.8 ( #34901 )
2020-04-30 13:29:50 -07:00
bc26be3c11
Add and use HTTP_FORBIDDEN constant ( #33839 )
2020-04-09 17:41:17 +02:00
c3decc6531
Do not ban supervisor ip if set ( #33781 )
...
* Use asynctest patch instead of mock_coro
* Add test for supervisor ip ban
* Do not ban supervisor ip if set
* Extract supervisor ip helper
* Check supervisor ip before banning
* Remove added blank line
* Clean up get supervisor ip
Co-Authored-By: Pascal Vizeli <pvizeli@syshack.ch>
Co-authored-by: Pascal Vizeli <pvizeli@syshack.ch>
2020-04-08 10:31:44 -07:00
d7e9959442
String formatting improvements for tests (2) ( #33666 )
2020-04-05 00:33:07 +02:00
33361f8580
Fix HTTP config serialization ( #31319 )
2020-01-30 09:47:16 -08:00
5fdc60e067
Add Safe Mode ( #30723 )
...
* Store last working HTTP settings
* Add safe mode
* Fix tests
* Add cloud to safe mode
* Update logging text
* Fix camera tests leaving files behind
* Make emulated_hue tests not leave files behind
* Make logbook tests not leave files behind
* Make tts tests not leave files behind
* Make image_processing tests not leave files behind
* Make manual_mqtt tests not leave files behind
2020-01-14 13:03:02 -08:00
3d10bb3647
Sort imports according to PEP8 for http ( #29679 )
2019-12-09 11:59:38 +01:00
3231e22ddf
Remove direct authentication via trusted networks or API password ( #27656 )
...
* Remove direct authentication via trusted networks and API password
* Fix tests
2019-10-14 14:56:45 -07:00
57f84cbbaa
Update HTTP defaults ( #25702 )
...
* Update HTTP defaults
* Fix tests
2019-08-05 08:24:54 +02:00
4de97abc3a
Black
2019-07-31 12:25:30 -07:00
0df1bb5029
Fix python 3.5 test
2019-07-26 16:15:46 -07:00
fae3546910
Allow cors for static files ( #25468 )
2019-07-25 13:52:27 +02:00
6f903db8c4
Fix cors on the index view ( #24283 )
2019-06-03 11:43:13 -07:00
fe1840f901
Deprecate http.api_password ( #21884 )
...
* Deprecated http.api_password
* Deprecated ApiConfig.api_password
GitHub Drafted PR would trigger CI after changed it to normal PR.
I have to commit a comment change to trigger it
* Trigger CI
* Adjust if- elif chain in auth middleware
2019-03-10 19:55:36 -07:00
4d9cf15c45
Fix authorization header in cors ( #21662 )
...
* Fix authorization headers in cors
* Use aiohttp authorization header instead of custom const
2019-03-09 10:00:10 -08:00
d39784906b
Fix HTTP login attempts check triggering too late ( #20431 )
2019-01-26 03:13:44 +01:00
bb21cb6c89
Remove trailing slash from base_url and added ability to generate webhook path. ( #20295 )
2019-01-21 20:50:41 +01:00
d1a621601d
No more opt-out auth ( #18854 )
...
* No more opt-out auth
* Fix var
2018-12-02 16:32:53 +01:00
df21dd21f2
RFC: Call services directly ( #18720 )
...
* Call services directly
* Simplify
* Type
* Lint
* Update name
* Fix tests
* Catch exceptions in HTTP view
* Lint
* Handle ServiceNotFound in API endpoints that call services
* Type
* Don't crash recorder on non-JSON serializable objects
2018-11-30 21:28:35 +01:00
d014517ce2
Always set hass_user ( #18844 )
2018-11-30 17:32:47 +01:00
a2386f871d
Forbid float NaN in JSON ( #18757 )
2018-11-28 13:25:23 +01:00
c2f8dfcb9f
Legacy api fix ( #18733 )
...
* Set user for API password requests
* Fix tests
* Fix typing
2018-11-27 10:41:44 +01:00
1341ecd2eb
Use proper signals ( #18613 )
...
* Emulated Hue not use deprecated handler
* Remove no longer needed workaround
* Add middleware directly
* Dont always load the ban config file
* Update homeassistant/components/http/ban.py
Co-Authored-By: balloob <paulus@home-assistant.io>
* Update __init__.py
2018-11-21 20:55:21 +01:00
312d49caec
Allow creating signed urls ( #17759 )
...
* Allow creating signed urls
* Fix parameter
* Lint
2018-10-25 16:44:57 +02:00
dd9d53c83e
Update pydocstyle to 2.1.1 and flake8-docstrings to 1.3.0 ( #14557 )
...
* Update pydocstyle to 2.1.1 and flake8-docstrings to 1.3.0
* Pydocstyle D401 fixes
2018-08-24 10:28:43 +02:00
dbd0763f83
Grammar and spelling fixes ( #16065 )
2018-08-19 22:29:08 +02:00
Franck Nijhof
J. Nick Koston
Bram Kragten
gregod
Pascal Vizeli
Paulus Schoutsen
springstan
Martin Hjelmare
Bas Nijholt
Jason Hu
Paul Bottein
Louis Matthijssen
Andrew Sayre
Paulus Schoutsen
Ville Skyttä