Commit Graph

88 Commits

Author SHA1 Message Date
Tom Hacohen
9cad5d62e1 Account: change Dashboard URL endpoint's permissions.
We only want to require that the account is authenticated, not the rest of
the permissions. As we want to be able to get a dashboard url for accounts
that aren't currently valid.
2020-10-09 13:10:41 +03:00
Tom Hacohen
74f40abc65 Account: add a dashboard url endpoint.
This lets servers share a dashboard url with clients so that they in
turn can present clients with a settings dashboard.
We currently use it on the main server, but self-hosted servers may
also benefit from it for letting users manage some of their settings
(e.g. 2FA).
2020-10-08 21:06:33 +03:00
Tom Hacohen
9152e6f42d Fix bad stoken error.
We were calling the validation constructor wrong.
2020-10-08 21:01:45 +03:00
Tom Hacohen
06f2dd72a7 Exception: fix detail/code for exception. 2020-10-01 16:50:09 +03:00
Tom Hacohen
6214688170 Invitations: share the username of the inviter. 2020-10-01 16:47:53 +03:00
Tom Hacohen
8a557ff82c Disable signups by default.
The next commit includes README instructions on how to create users
and enable signups.
2020-09-27 09:42:01 +03:00
Tom Hacohen
f5ced873ac Lint: fix lint errors. 2020-09-23 16:27:20 +03:00
Tom Hacohen
5d9b47531b Collectin: make sure collections always have a unique UID. 2020-09-22 12:17:33 +03:00
Tom Hacohen
18b3f45b79 Collection main_item: make a OneToOneField intsead of just a foreign key. 2020-09-22 11:33:17 +03:00
Tom Hacohen
7b8b0a5685 Login: make case insensitive. 2020-09-21 12:09:19 +03:00
Tom Hacohen
4dbdb3d7cf Invitations: gracefully error when trying to invite an already invited user. 2020-09-20 19:33:55 +03:00
Tom Hacohen
374048f013 Fix disabling of browseable API when debug is off. 2020-09-13 14:37:48 +03:00
Tom Hacohen
00cf2d83a0 Only enable browsable API when debugging is on.
The reason for that is that the API may expose data that shouldn't be exposed,
such as the list of users on the service.
2020-09-13 14:17:57 +03:00
Tom Hacohen
3de1d48b9e Browsable API: use input fields for relations. 2020-09-13 14:17:57 +03:00
Tom Hacohen
9c6a7e9428 Login: fix server error when trying to login to users without userinfo. 2020-09-10 13:31:54 +03:00
Tom Hacohen
a85e816810 User not found: return a 401 instead of a 404. 2020-09-09 17:07:32 +03:00
Tom Hacohen
d90931fbe5 Make access level an int instead of a string.
We started with a string because we thought it could maybe provide more
flexibility, though really, an int makes much more sense, especially on
all the platforms etebase runs nowadays.
2020-09-07 11:02:53 +03:00
Tom Hacohen
43569727f4 Signup: send a signal on account signup. 2020-09-02 12:54:50 +03:00
Tom Hacohen
42a72ce5c7 Serializers user signup: correctly handle EtebaseValidationErrors.
Don't coerce them to strings
2020-09-02 12:50:51 +03:00
Tom Hacohen
7ab9513e05 Serializers: rename message to detail to conform with the rest of the API.
This was a mistake in the previous commit.
2020-09-02 11:11:20 +03:00
Tom Hacohen
bf22b1676f Serializers: improve field serialization errors. 2020-09-02 11:07:43 +03:00
Tom Hacohen
2327466113 Invitations: error when trying to invite oneself. 2020-08-28 13:55:15 +03:00
Tom Hacohen
8593ab1357 Login: add a user visible error on password failure. 2020-08-18 12:24:30 +03:00
Tom Hacohen
693a5ec778 Login: return an UNAUTHORIZED (401) error on bad username/password, not 400. 2020-08-18 12:04:42 +03:00
Tom Hacohen
5af2aeda7e Add an endpoint to know if a server is an etebase server or not.
Very useful for when migrating people from legacy EteSync apps because
we can automatically know if they are running a self-hosted etesync or
etebase server.
2020-08-18 12:03:00 +03:00
Tom Hacohen
cf9b6f5904 Prefetch: change the type of value prefetch accept.
It's 'auto' by default, but can be changed to 'medium' and soon
another value.
2020-08-04 17:48:34 +03:00
Tom Hacohen
a613a32628 prefetch: fix handling of the prefetch param. 2020-08-04 17:39:33 +03:00
Tom Hacohen
e385aa8f20 Chunks: use a prefix of the chunk for a subdirectory.
Filesystems don't handle massive directories too well, so better to split.
Using the prefix of the chunk gives us a maximum of 64 * 64 = 4096 entries
in the main directory.
2020-08-04 17:39:33 +03:00
Tom Hacohen
393b85d3ca Chunks: move to reside under the collection. 2020-08-04 17:39:33 +03:00
Tom Hacohen
1d5baece1e Chunk uploading: implement properly using a custom Parser. 2020-08-04 14:15:25 +03:00
Tom Hacohen
11001ed62c Chunk serializer: fix bad error invocation. 2020-08-04 13:17:48 +03:00
Tom Hacohen
f6af96ace6 Permissions: workaround DRF bug and expose exception code. 2020-07-30 10:17:33 +03:00
Tom Hacohen
c0575cb64c Exceptions: have correct code/status_code for every error. 2020-07-30 10:13:24 +03:00
Tom Hacohen
04231ebfe5 Views: fix issue with iterators sometimes returning the wrong type. 2020-07-25 09:30:40 +03:00
Tom Hacohen
9c129e5731 Collection erializer: make the item a child instead of trying to merge them. 2020-07-22 11:31:08 +03:00
Tom Hacohen
a7268443ca Add support for a modifying the chunk storage location 2020-07-13 17:08:36 +03:00
Tom Hacohen
c9463cadba Add support for a custom user creation function. 2020-07-13 16:20:46 +03:00
Tom Hacohen
e41f8455f2 app settings: rename the get user queryset func setting name. 2020-07-13 16:08:46 +03:00
Tom Hacohen
46b4f08afa Signup: use the get_user_queryset function when checking if user exists. 2020-07-13 16:03:34 +03:00
Tom Hacohen
af86d877f2 Signup: use the shorthand version of setting an unusable password.
It wasn't actually saving the unusable password before.
2020-07-13 15:40:29 +03:00
Tom Hacohen
a39617cf2e Make sure usernames are case insensitive on lookup 2020-07-13 15:39:08 +03:00
Tom Hacohen
5c2f4d96ad app settings: cache all the properties rather than recalc every time.
They never change during runtime anyway.
2020-07-13 15:39:08 +03:00
Tom Hacohen
f9add36f18 Add support for custom user filtering. 2020-07-13 15:39:04 +03:00
Tom Hacohen
3680bd53b1 Views: change according to DRF best practices. 2020-07-13 14:26:49 +03:00
Tom Hacohen
9ea01d4d93 CollectionMemberSerializer: change the user field to be read only. 2020-07-13 11:15:42 +03:00
Tom Hacohen
41a03e9d3b Invitation: fix the checks making sure you can't invite yourself. 2020-07-12 13:23:45 +03:00
Tom Hacohen
9f1bfceda7 Increase token ttl to 30 days. 2020-07-12 11:27:47 +03:00
Tom Hacohen
7ec45434ba User: make username case insensitive (and save original styling).
We want 'User' and 'UsEr' to mean the same user. Apparently that's not the default in
django. This normalizes the user to ensure we enforce this.
2020-07-12 11:11:33 +03:00
Tom Hacohen
9a518b3907 Chunks: add error handling for chunks having content or not existing.
If the chunk already has a content and we try to upload it again, we
assume the previous content was correct and this one is the same
(chunks are immutable). We can't actually ensure they are the same due
to the encryption, though they should be.

If a chunk is being uploaded for the first time and doesn't have a
content, throw a validation error rather than throwing an ugly error.
2020-07-10 09:29:21 +03:00
Tom Hacohen
fae15fe420 Views: clean up how we use serializers and remove integrity_errors catch-alls.
The integrity errors were a bad relic from the EteSync sources and needed
to be removed.
2020-07-10 09:27:34 +03:00