61b9bc248f
fix(schedule): abstract simple loops with RunOnInterval() BE-12765 ( #2163 )
2026-03-26 07:47:54 -03:00
2900bfa1d6
chore(code): remove unused code BE-12744 ( #2112 )
2026-03-25 10:19:17 -03:00
71c000756b
chore(linters): enforce error checking in CE BE-12527 ( #1723 )
2026-01-26 14:37:55 -03:00
68600dddf0
fix(security): fix a nil pointer dereference error in FilterEndpoints() BE-12509 ( #1598 )
2026-01-02 16:08:17 -03:00
5d847b59b2
feat(analytics): remove matomo dependency [BE-12404] ( #1431 )
2025-11-24 16:30:03 +02:00
42fe068db7
fix(security): fix typos in security policy [r8s-573] ( #1278 )
...
Co-authored-by: timbretimber <105982513+timbretimber@users.noreply.github.com>
2025-10-09 12:25:11 +13:00
f91a2e3b65
fix(csp): update the Content-Security-Policy header BE-12228 ( #1201 )
2025-09-15 10:47:50 -03:00
ad1c015f01
fix(api/custom-templates): UAC-allowed users cannot fetch custom template details ( #1113 )
2025-09-11 16:08:52 +02:00
a59815264d
fix(csp): add google.com to the CSP header BE-12228 ( #1175 )
2025-09-10 15:00:25 -03:00
8d9e1a0ad5
fix(csp): add object-src to the CSP header BE-12217 ( #1126 )
2025-09-02 11:39:46 -03:00
ec0e98a64b
chore(linters): enable testifylint BE-12183 ( #1091 )
2025-08-22 15:31:10 -03:00
64ed988169
fix(linters): upgrade golangci-lint to v2.3.1 BE-12136 ( #997 )
2025-08-08 21:39:21 -03:00
3eab294908
fix(linters): add the bodyclose linter BE-12112 ( #959 )
2025-07-30 11:35:30 -03:00
a4cff13531
fix(bouncer): add missing domain to CSP header BE-12067 ( #916 )
2025-07-21 21:32:50 -03:00
ea4b334c7e
feat(csp): enable CSP by default BE-11961 ( #872 )
2025-07-09 16:15:43 -03:00
e319a7a5ae
fix(linter): enable ineffassign BE-10204 ( #669 )
2025-04-21 19:27:14 -03:00
0296998fae
fix(users): optimize the /users/me API endpoint BE-11688 ( #515 )
...
Co-authored-by: andres-portainer <andres-portainer@users.noreply.github.com>
Co-authored-by: LP B <xAt0mZ@users.noreply.github.com>
Co-authored-by: JamesPlayer <james.player@portainer.io>
2025-03-18 17:55:53 -03:00
3114d4b5c5
fix(security): add initial support for HSTS and CSP BE-11311 ( #47 )
2024-10-21 13:52:11 -03:00
364e4f1b4e
fix(linters): add back removed linters and extend them to CE BE-11294
2024-10-10 12:06:20 -03:00
5fd4f52e35
fix(jwt): fix handling of non-expiring JWT tokens BE-11242 ( #12220 )
2024-09-17 18:23:33 -03:00
e4e55157e8
fix(bouncer): add support for JWT revocation BE-11179 ( #12164 )
2024-08-30 20:24:05 -03:00
f016b31388
fix(docker-desktop): support auth cookies [BE-11134] ( #12108 )
2024-08-21 18:21:51 +12:00
4adce14485
fix(errors): improve error handling EE-4430 ( #11987 )
2024-06-28 17:35:26 -03:00
bfa27d9103
chore(code): clean up the code EE-7251 ( #11948 )
2024-06-18 15:59:12 -03:00
014a590704
refactor(docker): migrate dashboard to react [EE-2191] ( #11574 )
2024-05-20 09:34:51 +03:00
1303a08f5a
fix(auth): make createAccessToken api backward compatible [EE-6818] ( #11326 )
...
* fix(auth): make createAccessToken api backward compatible [EE-6818]
* fix(api): api error message [EE-6818]
* fix messages
2024-03-14 09:02:28 +13:00
436da01bce
feat(auth): save jwt in cookie [EE-5864] ( #10527 )
2023-11-20 09:35:03 +02:00
9e60723e4d
fix(app/logout): always perform API logout + make API logout route public [EE-6198] ( #10448 )
...
* feat(api/logout): make logout route public
* feat(app/logout): always perform API logout on /logout redirect
* fix(app): send a logout event to AngularJS when axios hits a 401
2023-10-27 14:44:05 +02:00
d75a8027a5
fix(security): block user access policies for non admins EE-5826 ( #10243 )
2023-09-05 09:17:55 +12:00
8cc5e0796c
feat(libhttp): move into the Portainer repository EE-5475 ( #10231 )
2023-09-01 19:27:02 -03:00
74515f102d
fix(docker-proxy): reduce DB writes to optimize the proxy calls EE-5516 ( #9148 )
2023-07-05 09:25:05 -03:00
4cc96b4b30
feat(dataservices): unify access methods and abstract away redundant code [EE-5628] ( #9115 )
2023-06-22 18:28:07 -03:00
f7dd73b0f7
feat(unit-testing): add a mock for the RequestBouncer EE-5610 ( #9089 )
2023-06-16 10:44:22 -03:00
eda07614ce
chore(unit-test): simplify teardown EE-5536 ( #9015 )
2023-05-30 11:02:22 -03:00
db93e5880f
feat(endpointedge): add support for transactions EE-5327 ( #8961 )
2023-05-18 14:58:33 -03:00
511adabce2
fix(http): drain and close response bodies EE-5486 ( #8933 )
2023-05-12 17:55:27 -03:00
4b9c857d85
feat(waiting-room): show and filter by check in [EE-5186] ( #8701 )
2023-04-27 09:22:05 +07:00
dd0d1737b0
fix(performance): optimize performance for edge EE-3311 ( #8040 )
2023-01-06 16:25:41 -03:00
137ce37096
chore(nil): remove unnecessary nil checks EE-4847 ( #8254 )
2022-12-30 15:26:46 -03:00
ae2bec4bd9
fix(code): clean up EE-4432 ( #7865 )
2022-10-14 18:09:07 -03:00
cb79dc18f8
chore(code): reduce divergence with EE EE-4344 ( #7748 )
2022-09-28 14:56:32 -03:00
36e7981ab7
feat(logging): replace all the loggers with zerolog EE-4186 ( #7663 )
2022-09-16 13:18:44 -03:00
53025178ef
fix(access): support to list users or teams with specified endpoint [EE-1704] ( #7610 )
2022-09-16 14:45:14 +12:00
a7d458f0bd
chore(tests): use t.TempDir to create temporary test directory [EE-3700] ( #7612 )
...
* create temporary test directory with t.TempDir
2022-09-14 13:59:47 +08:00
f9427c8fb2
refactor(teams): migrate teams to react [EE-2273] ( #6691 )
...
closes [EE-2273]
2022-09-02 18:30:34 +03:00
149c414d08
fix(permission): EE-3772 Team leaders are able to see all environments ( #7331 )
2022-07-26 11:02:25 +12:00
0522032515
feat(teamleader) EE-294 redesign team leader ( #6973 )
...
feat(teamleader) EE-294 redesign team leader (#6973 )
2022-06-03 16:44:42 +12:00
bca1c6b9cf
feat(internal-auth): ability to set minimum password length [EE-3175] ( #6942 )
...
* feat(internal-auth): ability to set minimum password length [EE-3175]
* pass props to react component
* fixes + WIP slider
* fix slider updating + add styles
* remove nested ternary
* fix slider updating + add remind me later button
* add length to settings + value & onchange method
* finish my account view
* fix slider updating
* slider styles
* update style
* move slider in
* update size of slider
* allow admin to browse to authentication view
* use feather icons instead of font awesome
* feat(settings): add colors to password rules
* clean up tooltip styles
* more style changes
* styles
* fixes + use requiredLength in password field for icon logic
* simplify logic
* simplify slider logic and remove debug code
* use required length for logic to display pwd length warning
* fix slider styles
* use requiredPasswordLength to determine if password is valid
* style tooltip based on theme
* reset skips when password is changed
* misc cleanup
* reset skips when required length is changed
* fix formatting
* fix issues
* implement some suggestions
* simplify logic
* update broken test
* pick min password length from DB
* fix suggestions
* set up min password length in the DB
* fix test after migration
* fix formatting issue
* fix bug with icon
* refactored migration
* fix typo
* fixes
* fix logic
* set skips per user
* reset skips for all users on length change
Co-authored-by: Chaim Lev-Ari <chiptus@gmail.com>
Co-authored-by: Dmitry Salakhov <to@dimasalakhov.com>
2022-06-03 16:00:13 +12:00
e217ac7121
feat(edge): show correct heartbeat and sync aeec changes [EE-2876] ( #6769 )
2022-04-19 21:43:36 +03:00
e4241207cb
fix(database): db migration improvements EE-2688 ( #6662 )
2022-04-14 16:25:13 +12:00
andres-portainer
Chaim Lev-Ari
Ali
LP B
andres-portainer
Prabhat Khera
Dakota Walsh
Oscar Zhou
Chao Geng
congs
itsconquest