Commit Graph

140 Commits

Author SHA1 Message Date
miloschwartz 8e3b5688d5 allow server admins to generate password reset code 2025-12-05 16:27:08 -05:00
miloschwartz 54c05c8345 show contact admin on forgot password if no smtp server 2025-12-05 15:23:26 -05:00
miloschwartz 9cf2dbc2cc fix login page spacing on mobile 2025-12-05 10:04:12 -05:00
miloschwartz 8c62dfa706 respond with relative code expiration time 2025-12-01 12:36:13 -05:00
miloschwartz ac68dbd545 add my-device and force login 2025-11-25 10:51:53 -05:00
Owen 97312343e4 Merge branch 'dev' into clients-user 2025-11-17 11:28:47 -05:00
Lokowitz 7db99a7dd5 used zod codemod 2025-11-16 14:18:17 +00:00
miloschwartz 959a562e7c fix more shadows 2025-11-04 11:09:08 -08:00
miloschwartz 52a311bf36 fix colors and footer 2025-11-03 21:44:34 -08:00
Owen 6da81b3817 Fix bad request in non-enterprise 2025-11-03 17:33:50 -08:00
miloschwartz 5746d69f98 reduce header padding 2025-11-03 16:22:40 -08:00
miloschwartz e888b76747 complete web device auth flow 2025-11-03 11:10:17 -08:00
miloschwartz cbf9c5361e redirect to org login via query param 2025-10-26 17:08:35 -07:00
miloschwartz 629f17294a 2fa policy check working 2025-10-24 14:31:50 -07:00
miloschwartz 47ac5875f3 change digpangolin.com to pangolin.net 2025-10-18 11:51:09 -07:00
Owen cd8062ada3 Fix various bugs 2025-10-14 10:25:03 -07:00
miloschwartz b160eee8d2 Merge branch 'dev' into distribution 2025-10-13 11:06:14 -07:00
miloschwartz 37ceabdf5d add enterprise license system 2025-10-13 10:41:10 -07:00
Owen f17a957058 Cleaning up more imports 2025-10-11 20:46:49 -07:00
Owen 2c63851130 Separate types & fix #private import 2025-10-11 19:02:15 -07:00
Owen d92b87b7c8 Chungus 2.0 2025-10-10 11:27:15 -07:00
miloschwartz 1b01c4f053 fix idp infinite redirect closes #1540 2025-10-08 14:00:26 -07:00
miloschwartz 9649d9a46b fix redirect issue in firefox and safari 2025-10-05 14:59:46 -07:00
Owen c2c907852d Chungus 2025-10-04 18:36:44 -07:00
miloschwartz 8851156f23 use resource guid in url closes #1517 2025-09-28 16:22:26 -07:00
Owen ef4ce115ff Merge branch 'main' into dev 2025-09-28 11:39:38 -07:00
miloschwartz e555d3c496 add server action proxies 2025-09-25 17:14:36 -07:00
Marvin dcf7393259 update resolver 2025-09-22 20:06:55 +00:00
miloschwartz b0bd9279fc add idp auto provision override on user 2025-09-05 16:14:25 -07:00
miloschwartz df85f13aea move all components to components dir 2025-09-04 11:18:42 -07:00
miloschwartz 5c04b1e14a add site targets, client resources, and auto login 2025-08-14 18:24:21 -07:00
Owen 1351fb6689 Merge branch 'feature/form-signup-improvements' of github.com:adrianeastles/pangolin into adrianeastles-feature/form-signup-improvements 2025-08-12 21:40:55 -07:00
Owen 4f3cd71e1e Merge branch 'feature/setup-token-security' of github.com:adrianeastles/pangolin into adrianeastles-feature/setup-token-security 2025-08-12 21:12:55 -07:00
Adrian Astles 69baa6785f feat: Add setup token security for initial server setup
- Add setupTokens database table with proper schema
- Implement setup token generation on first server startup
- Add token validation endpoint and modify admin creation
- Update initial setup page to require setup token
- Add migration scripts for both SQLite and PostgreSQL
- Add internationalization support for setup token fields
- Implement proper error handling and logging
- Add CLI command for resetting user security keys

This prevents unauthorized access during initial server setup by requiring
a token that is generated and displayed in the server console.
2025-08-03 21:17:18 +08:00
T Aviss 481714f095 Fix for issues with binding ports other than 80/443
server/routers/badger/verifySession.ts : verifyResourceSession() updated code behind "cleanHost" var to a regex which strips the trailing :port for any port (rather than a string match for 80/443)
src/app/auth/resource/[resourceId]/page.tsx : ResourceAuthPage() added a secondary match for serverResourceHost and redirectHost that accounts for ports
server/routers/badger/exchangeSession.ts : Updated exchangeSession() to use the same "cleanHost" type var (with port-stripping) as in verifyResourceSession(), replaced references to "host" with "cleanHost"
2025-07-30 22:16:46 -07:00
Adrian Astles 350485612e This improves the user experience by automatically filling the email field
and preventing users from changing the email they were invited with.

- Update invite link generation to include email parameter in URL
- Modify signup form to pre-fill and lock email field when provided via invite
- Update invite page and status card to preserve email through redirect chain
- Ensure existing invite URLs continue to work without breaking changes
2025-07-25 22:46:40 +08:00
Adrian Astles df31c13912 added real-time password validation to signup form. 2025-07-25 21:59:25 +08:00
miloschwartz 114ce8997f add tos and pp consent 2025-07-21 16:57:21 -07:00
miloschwartz d870a49381 change domain picker description and fix metadata title 2025-07-17 12:05:08 -07:00
miloschwartz ccdcda7f1d add screenshots and minor fixes 2025-07-16 22:18:11 -07:00
miloschwartz 19d54778f5 add branding logo component 2025-07-15 16:24:16 -07:00
Owen 3dc79da2fa Merge branch 'dev' into clients-pops-dev 2025-07-14 16:59:00 -07:00
miloschwartz 915ccdc007 server admin enforce 2fa per user 2025-07-13 21:58:37 -07:00
Owen 98a261e38c Pull up downstream changes 2025-07-13 21:57:24 -07:00
J. Newing 2a6298e9eb Admins can enable 2FA
Added the feature for admins to force 2FA on accounts. The next time the
user logs in they will have to setup 2FA on their account.
2025-07-08 10:21:24 -04:00
miloschwartz d194e230de option to log out if on verify email screen 2025-06-25 16:44:23 -04:00
miloschwartz d03f45279c remove server admin from config and add onboarding ui 2025-06-19 22:11:05 -04:00
Marvin a6348a3e28 Merge remote-tracking branch 'upstream/dev' into feature-i18n 2025-06-06 06:03:55 +00:00
miloschwartz f0cb65f65c dont import db in nextjs 2025-06-05 14:44:34 -04:00
Marvin dd7b91f770 Merge remote-tracking branch 'upstream/dev' into feature-i18n 2025-06-05 04:41:28 +00:00