davrot/overleaf-cep
1
0
Fork 0
mirror of https://github.com/yu-i-i/overleaf-cep.git synced 2025-07-22 11:00:08 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
25929 commits 9 branches 11 tags 216 MiB
Commit graph

25929 commits

This branch
This branch
All branches
Author SHA1 Message Date
yu-i-i
d32eb2b449 Remove LDAP admin check via group search in ldap-passport 2025-07-22 06:11:55 +02:00
yu-i-i
8a99d7b86a Set use-ai capability to false 2025-07-22 06:11:54 +02:00
yu-i-i
09288ba9eb Remove OVERLEAF_OIDC_DISABLE_JIT_ACCOUNT_CREATION in favor of OVERLEAF_OIDC_ALLOWED_EMAIL_DOMAINS 2025-07-22 06:11:54 +02:00
Synésio Neto
a96c67c1cc Introduce an environment variable to allow JIT OIDC users creation based on their email address domain. 2025-07-22 06:11:54 +02:00
yu-i-i
ff1021259e Introduce an environment variable to control user creation in OIDC authentication, closes #47 2025-07-21 19:25:57 +02:00
yu-i-i
c080f03ea3 Avoid DEP0174 by removing async from callback-based getGroupPolicyForUser 2025-07-21 19:25:57 +02:00
yu-i-i
25ae1b0025 Fix login page 2025-07-21 19:25:57 +02:00
yu-i-i
ef3bd6f4bb Allow EXTERNAL_AUTH to be undefined, fixes #26 2025-07-21 19:25:57 +02:00
yu-i-i
a458a108a4 Make OVERLEAF_OIDC_USER_ID_FIELD support 'email' as a value 2025-07-21 19:25:57 +02:00
yu-i-i
57fe609cae See upstream commit 42ee56e 2025-07-21 19:25:56 +02:00
yu-i-i
1e0095fae6 Whitelist /oidc/login endpoint, fixes #21 2025-07-21 19:25:56 +02:00
yu-i-i
0257f74221 Add ENV variables to control SAML signature validation 2025-07-21 19:25:56 +02:00
yu-i-i
28b875a5ef Re-export doLogout (was removed from exports in commit b9fb636). 2025-07-21 19:25:56 +02:00
yu-i-i
764ff813bd Refactor authentication code; add OIDC support 2025-07-21 19:25:56 +02:00
yu-i-i
07b155ed4b Enable LDAP and SAML authentication support 2025-07-21 19:25:56 +02:00
Christopher Hoskin
f4dc8f7ebc Merge pull request #27252 from overleaf/revert-26843-csh-issue-26608-mongo8-dev-ci 
Revert "Upgrade the dev environment and CI to mongo 8"

GitOrigin-RevId: f2145812a5c1cf8d3d3ac31c76cc4aed4ea9d46d
 2025-07-21 08:05:01 +00:00
Christopher Hoskin
456f751a18 Merge pull request #26843 from overleaf/csh-issue-26608-mongo8-dev-ci 
Upgrade the dev environment and CI to mongo 8

GitOrigin-RevId: 5fc33863094ea2bdb9235372efdc7d0cb492c34a
 2025-07-21 08:04:57 +00:00
Jakob Ackermann
48df8c9f38 [server-ce] reduce verbose output from cron jobs (#27240) 
GitOrigin-RevId: 8a2eda551796e62af6fddf80a3ce8cf37ec309d4
 2025-07-21 08:04:50 +00:00
Miguel Serrano
7540bc9cbe Merge pull request #27202 from overleaf/msm-fix-pricing 
[web] Remove group size limits for additional licenses

GitOrigin-RevId: d48976ccd72ec5e99249f80ab5d3e9e85e089b18
 2025-07-18 08:07:17 +00:00
David
5aacccc9d0 Merge pull request #27138 from overleaf/dp-overleaf-dark 
Add overleaf dark editor theme

GitOrigin-RevId: bd8cdbcc7ad6b56078611b7c2ab69008ea578ae7
 2025-07-18 08:07:06 +00:00
David
3fe4cd31b9 Merge pull request #27203 from overleaf/dp-overleaf-dark-theme-name 
Change name of dark overall theme from "Default" to "Dark"

GitOrigin-RevId: 6928e4779c433e55525becfb5ba3f07a5b3847d3
 2025-07-18 08:07:02 +00:00
David
8d8142ba2b Merge pull request #27205 from overleaf/dp-persist-rail-tab 
Persist currently selected rail tab on refresh

GitOrigin-RevId: a609bed93340d950a1fba8358fd5ed20afe6a4ce
 2025-07-18 08:06:57 +00:00
Antoine Clausse
cf668d897d [web] Create middleware and functions for checks on admin permissions (#27107) 
* Create AdminCapabilities in admin-panel module

* Add `adminRolesEnabled` setting

* Use `PermissionsController.requirePermission` in admin-panel routes

* Update `adminCapabilities` to be an array

* Update frontend tests

* Rename `defaultAdminCapabilities` to `fullAdminCapabilities`

Co-authored-by: Jakob Ackermann <jakob.ackermann@overleaf.com>

* Add tests to PermissionsManagerTests.js

* Get admin roles and capabilities from the database

* Add tests to admin-panel

* Fixup PermissionsManagerTests.js without admin-panel module

* Revert "Use `PermissionsController.requirePermission` in admin-panel routes"

This reverts commit ccbf3e3e3bca9239b786c662cba2ac6bd2f4117a.

* Revert "Fixup PermissionsManagerTests.js without admin-panel module"

This reverts commit 6d7ad207bb17c5ca4c12c489d4636a02c608926d.

* Revert "Add tests to PermissionsManagerTests.js"

This reverts commit 8f9cc911750911e1c4b74b631d8c8a1b1ca86630.

* Fix tests after the reverts

* Replace capabilities to more sensible examples ('modify-user-email' and 'view-project')

* Set `adminRolesEnabled: false` for now

* Return `[]` capabilities for non-admins

* Misc: types, test description, settings ordering

* Small refactor of AdminPermissions.mjs:

Reuse code with `getMissingCapabilities`
Throw when `requiredCapabilities` is empty

* Update tests after update

* Rename `checkAdminPermissions` to `hasAdminPermissions`

* Change role permissions to array instead of object

* Remove admin capabilities when `!Settings.adminPrivilegeAvailable`

* Return `[]` if there is no user id

* Throw if `user?._id` is missing

* Update services/web/modules/admin-panel/app/src/AdminPermissions.mjs

Co-authored-by: Jakob Ackermann <jakob.ackermann@overleaf.com>

* Adjust to ForbiddenError constructor syntax

* Give empty capabilities for unknown role, update tests

---------

Co-authored-by: Jakob Ackermann <jakob.ackermann@overleaf.com>
GitOrigin-RevId: 1eec4f6a45e1cc3ae76a3a4603cec1ceba1c2322
 2025-07-18 08:06:40 +00:00
Andrew Rumble
71a33925b6 Update types to match usage 
GitOrigin-RevId: c3d175ba804bcb27613adf6604b9a45b714ee531
 2025-07-18 08:06:26 +00:00
Antoine Clausse
98af0e3d82 [web] In tests, update email confirmation to use the 6-digits flow (#27069) 
* Rename `sendExistingSecondaryEmailConfirmationCode` to `sendExistingEmailConfirmationCode`

* Deduplicate error handling into `throwIfErrorResponse`

* Update `userHelper.confirmEmail` to use the 6-digits flow

GitOrigin-RevId: 91bdf7b185407b58520ca6b2aa1a7c71bdd23bc8
 2025-07-18 08:06:18 +00:00
Brian Gough
5208ad39ec Merge pull request #27173 from overleaf/bg-filestore-migration-remove-backups 
remove backup code from back_fill_file_hash script and tests

GitOrigin-RevId: 364eefc47670e6e7f2314de810ea259b609ff976
 2025-07-18 08:06:14 +00:00
David
2e82852ed0 Merge pull request #27125 from overleaf/ae-extension-exports 
Add CodeMirror history-related exports to `UNSTABLE_editor:extensions` event

GitOrigin-RevId: 015a19f8b97075ee441dda1d42e19d7f81804ed7
 2025-07-18 08:06:06 +00:00
David
b0776da02c Merge pull request #27119 from overleaf/dp-select-error-text 
Make error log header text selectable

GitOrigin-RevId: f3844d20bb11abf32ee053da763531c39d63a543
 2025-07-18 08:06:02 +00:00
David
ec2ab62f4d Merge pull request #27171 from overleaf/dp-make-a-copy 
Update copy of copy project option

GitOrigin-RevId: 3d1cc544f3945f55600f0daf1021b07de9d207bc
 2025-07-18 08:05:58 +00:00
David
be4a11484f Merge pull request #27172 from overleaf/dp-file-menu-settings 
Add settings option to file menu

GitOrigin-RevId: a5ad0cecad5b7896185a8b9c91364c7904961438
 2025-07-18 08:05:53 +00:00
David
97eceb9c58 Merge pull request #27174 from overleaf/dp-subscription-settings 
Add subscription option to settings modal

GitOrigin-RevId: 5f38db41c1d4f5727d56e2d0a4e0740e83114f15
 2025-07-18 08:05:49 +00:00
David
63ca134fc5 Merge pull request #27182 from overleaf/dp-file-outline-spacing 
Fix nesting of file outline

GitOrigin-RevId: b18e5eca9bdfb2c01c244e3843d0ae38041a7378
 2025-07-18 08:05:45 +00:00
David
ee8e1915ab Merge pull request #27183 from overleaf/dp-file-tree-open-state 
Persist rail tab isOpen state

GitOrigin-RevId: f1cbaa80fecd10953e9be61a993d69bd2c3c7915
 2025-07-18 08:05:41 +00:00
Andrew Rumble
f054a5658f Run npm install with new npm version 
Co-authored-by: Jakob Ackermann <jakob.ackermann@overleaf.com>
GitOrigin-RevId: 8d81e73f528c34ad8df8b09716198dbaeebee23f
 2025-07-18 08:05:33 +00:00
Andrew Rumble
5df6047fd8 Add npm engines entry 
GitOrigin-RevId: 4f5ba34447d339cebba654835045c3eff1e23b39
 2025-07-18 08:05:28 +00:00
Andrew Rumble
29d9408a69 Add vitest check when initialising redis 
This is similar to the Mocha checks and will error if a connection is
attempted.

GitOrigin-RevId: 35e73cb56dc7c72393c55f40b6c18e9aaf74ab50
 2025-07-18 08:05:14 +00:00
Tim Down
9c16a85295 Merge pull request #24030 from overleaf/td-bs5-remove-font-awesome 
Remove Font Awesome in BS5

GitOrigin-RevId: 3ee9b136ac9ecda57ba9985d1da7d7a7e6b275e6
 2025-07-18 08:05:06 +00:00
Brian Gough
5669a7d1c8 Merge pull request #27147 from overleaf/bg-filestore-migration-for-server-pro-II 
add support for fetching files via http from filestore in back_fill_file_hash script and tests

GitOrigin-RevId: 8dea6383ed6fe9ee6786a5695e2deee93b1cdd84
 2025-07-17 08:05:30 +00:00
MoxAmber
93c6353b90 Merge pull request #27120 from overleaf/as-compile-timeout-date-change 
[web] Update compile timeout enforcement date

GitOrigin-RevId: 9c6957bad440a381e954e1f4de98d603d31aef42
 2025-07-17 08:05:05 +00:00
Jakob Ackermann
9720413218 [web] add support for pug caching when running E2E tests in dev-env (#27073) 
GitOrigin-RevId: bbb53723bd1bc22db5b3d440539f1624a905341f
 2025-07-16 08:06:07 +00:00
Jakob Ackermann
8c39add865 [clsi-cache] meter ingress and egress bandwidth (#27143) 
* [mics] fix "app" label in clsi-cache metrics in dev-env

* [clsi-cache] validate filePath when processing file

* [clsi-cache] meter ingress and egress bandwidth

Files are downloaded directly from nginx, hence we cannot meter egress
in clsi-cache easily.

GitOrigin-RevId: 24de8c41728f0e9c984113c1470dec6153e75f20
 2025-07-16 08:05:59 +00:00
M Fahru
3e29af53a8 Merge pull request #27058 from overleaf/mf-re-add-sticky-header-plans-page 
[web] Re-add sticky header for mobile plans table on bs5 version of the plans page

GitOrigin-RevId: 2c97e9983f8d0e1beb312c135558758a7f4f2ec0
 2025-07-16 08:05:48 +00:00
Eric Mc Sween
1833bd3d00 Merge pull request #27126 from overleaf/em-fix-persist-changes 
Fix chunk creation over a one change chunk

GitOrigin-RevId: aecae334849522975b83c77224ee27db64de4ed8
 2025-07-16 08:05:40 +00:00
Liangjun Song
1daa49d9d2 Merge pull request #27093 from overleaf/ls-support-3ds-in-group-plan-update-flows 
Support 3DS verification in group plan update flows

GitOrigin-RevId: 3206f612e5699f39ac44864daf6610da2956e6ca
 2025-07-16 08:05:25 +00:00
Liangjun Song
9e22ed9c3f Merge pull request #26934 from overleaf/ls-support-individual-to-group-plan-upgrade 
Support individual to group plan upgrade in Stripe

GitOrigin-RevId: 24cbe7bd6de86a4d9410e1abc49b6457e0871f40
 2025-07-16 08:05:20 +00:00
David
1375f695d3 Merge pull request #27079 from overleaf/mj-base-theme-extraction 
[web] Extract breadcrumbs theme to constant

GitOrigin-RevId: 55d65597a85a7da5cf5506caf8e13d4e2977fb1f
 2025-07-16 08:05:16 +00:00
David
5b5e650754 Merge pull request #27078 from overleaf/mj-dark-mode-panel-border 
[web] Use correct border color between toolbar and editor

GitOrigin-RevId: 48e08bdec57b25f2f70731f89c66be8c487b9e41
 2025-07-16 08:05:12 +00:00
David
ce074ecf11 Merge pull request #27128 from overleaf/mj-ide-tooltip-teardown 
[web] Editor Redesign: Tear down editor nudge tooltips

GitOrigin-RevId: 83c412ad782d041c960eba8533ffc49935524b9c
 2025-07-16 08:05:07 +00:00
David
42a408c6ae Merge pull request #27053 from overleaf/dp-review-panel-disabled 
Disable review panel tab when it cannot be opened in new editor

GitOrigin-RevId: 586ef06bc7cd27efdec6cb7ccc287f4ad41e4da5
 2025-07-16 08:05:03 +00:00
Rebeka Dekany
488d0fdf9e Preserve source-only extensions on file switch (#27080) 
GitOrigin-RevId: 661c70b78a508619e6532b87b0409f546b4d9e82
 2025-07-15 08:06:32 +00:00