ngcp-panel

Commit Graph

Author	SHA1	Message	Date
Victor Tsvetov	3cb71e4ceb	TT#130456 API Customers POST: show error if system template Throw descriptive error for attempt to create Customer with Template that does not belong to Contact’s Reseller. Cover the case when the Template belongs to System Contact (with no Reseller). Error example: 'subscriber_email_template_id' with value '1' does not belong to Reseller '1' that is assigned to Customer's Contact '1' Change-Id: Iffcef0339afc4490ecba81d4667cbb9225766af4	5 years ago
Victor Seva	883cf884f2	TT#137602 prosody: domains are treated as lowercase Change-Id: I65af0765112cbf4ba52daf2baf28043197ebeae3	5 years ago
Victor Tsvetov	c9e56364a4	TT#137552 Update German translations Import new translations from Crowdin. 99% translated 81% approved Change-Id: I78db4d313fb1ae8481fe82a8aa15cf8bdedba8c5	5 years ago
Sipwise Jenkins Builder	b887138fdb	TT#4166 I18N dump: snapshot 2021.08.18-01.28.38 Change-Id: Id2c2f8d3c0b8ae0cc166ae8efb7650be93ce0e9b	5 years ago
Sipwise Jenkins Builder	5f2925cdb0	TT#4166 I18N dump: snapshot 2021.08.17-01.34.01 Change-Id: I96c8e4edf7683dcf61127b7e95a5632baa70e8e5	5 years ago
Rene Krenn	48f8938dfd	TT#134807 "ignore domain" option for billing profiles fee matching works in 2 attempts: 1. try to find a fee matching <user@domain> 2. if none found, try to find a fee matching <user> the billing_profile record will get a new field "ignore_domain". if set to "1", step#1 above should be skipped. Change-Id: I7f0a8f1dd8d5699ad4e2b8242c68fb9f75fc1bff	5 years ago
Kirill Solomko	992c9f1e48	TT#129162 Admins fix password field transformation * password field is virtual and needs to be transformed into saltedpass, restored the removed logic that does that in process_form_resource() Change-Id: I8baabbef2bdb46db850e12b6e0c638ca5c3deddf	5 years ago
Sipwise Jenkins Builder	6430645f34	TT#4166 I18N dump: snapshot 2021.08.10-01.27.27 Change-Id: I261d603764e0613c85b47dcede476310ff84fc86	5 years ago
Donat Zenichev	6a17151b1d	TT#133301 Adding default AA slot for timeout cases A feature request to have an opportunity to add a default action slot, in case a caller hangs on the AA and doesn't pick anything. Main change is related to sql structure of 'provisioning.voip_pbx_autoattendants' table, which now has 'voip_pbx_autoattendants.choice' as VARCHAR(16) instead of TINYINT. Also adding a label 'default' for the drop-down menu. Change-Id: I6382a68c8258094a2bf2bf9c71407092860f5e4d	5 years ago
Sipwise Jenkins Builder	35f7cdef24	TT#4166 I18N dump: snapshot 2021.08.06-01.23.29 Change-Id: I9388737087cb7cbb166ba279090ab95371fff1fd	5 years ago
Victor Tsvetov	0592f3f731	TT#126853 Replace "free minutes" with "free calling time" The value of "interval_free_time" preference is specified in seconds. To avoid confusion, use the term "free calling time" rather than "free minutes" in tooltips. Change-Id: Ia4bd507e4a2281723fd2168a34b2178bf404f867	5 years ago
Sipwise Jenkins Builder	0d3ea9cfe2	TT#4166 I18N dump: snapshot 2021.08.05-01.24.15 Change-Id: I36bb3a56a76c995db7e760994f663cbb2b832ef4	5 years ago
Kirill Solomko	cc10506b2e	TT#129162 fix subscriber webpassword field validation * 'webpassword' field is now also validated for invalid (non-ascii) characters * Fix multiple APP input field validation erros to comma joined. * Adjust 'webpassword' field validation errors to have better readability when there are multiple validation errors Change-Id: I21536f97a4da78cc5192a3abd8cd5adef1b819ec	5 years ago
Kirill Solomko	02f3f6b3a1	TT#133800 fix webpassword field removal * webpassword field was unconditionally deleted in API GET and DELETE methods, it now relies on resource_from_item for the common approach Change-Id: I703158fd2022b49a49470db28cb22f37e613f841	5 years ago
Kirill Solomko	3ef167575c	TT#133901 fix administrative flag for subscriberadmin * 'administrative' field is read only for susbcriberadmin role and that caused it to be removed from the final update 'resource', setting it to 0 if not existed. now the 'administrative' field is only changed in the database if it's defined in the 'resource'. Change-Id: I50738a77052c2163b19b2a42293c7a00e2780bc3	5 years ago
Kirill Solomko	c50b49db96	TT#133800 fix password fields behaviour in API * PATCH: password fields are not removed when resource is created for apply_patch(), they are removed under the same condititions later when hal is generated, that is to ensure that admin users without the 'show_passwords' flag as well as subscribers will not run into situation when they use PATCH and cannot apply it for "path": "/password" or/and "path": "/webpassword", as they were removed before apply_patch() * rework encrypted webpassword detection. webpasword is detected as encrypted if its length is 54 or 56 and it contains at least one '$' char, there is a chance for false positive detection when a user provides with a plain-text password with the same pattern but it's very unlikely, as well as since mr8.5 webpasswords are expected to be encrypted, and moreover worth case scenario is that the plain-text password will not be returned to the user Change-Id: I8ea739cbf728b2134f3ce00cee29da42ab3fb4a3	5 years ago
Victor Tsvetov	94c35307ab	TT#129160 Complete missing Russian translations Add missing translations. All are machine-translated and require later proofreading. Change-Id: I7abf1706591391f121a7d0a9d5a5a12922c837bb	5 years ago
Flaviu Mates	b4bc1f2a71	TT#133053 Fix 500 error on /api/authtokens * fix typo 'users' to 'user' and 'role' to 'roles' which were causing the Internal Server Error Change-Id: I3cabadafe34d66a429038dcd2c5b0de797cc6ef1	5 years ago
Kirill Solomko	2b144caf2c	TT#128605 implement dynamic fields expand * add API functionality to request additional data and expand fields in GET methods * syntax: - /api/resource/?expand=all - expands all expandable fields e.g.: customer_id field is expanded and customer internally is queried and returned under "customer" => {...} (the returned data is identical to what /api/customers/id would return) - /api/resource/?expand=reseller_id,customer_id - expands only reseller_id and customer_id fields, if they are expandable - /api/resource/?expand=reseller_id,invalidfield_id - returns the data and expands only fields that are expandable (reseller_id in this case) but if it finds either unknown fields or non-expandable fields, changes HTTP status code to "409 Conflict" * adapt all API endpoints to support dynamic expand fields expanding functionality, however the actual expand for them requires modifying the form fields in the following format: has_field 'contact_id' => ( element_attr => { expand => { class => 'NGCP::Panel::Role::API::CustomerContacts', id_field => 'contact_id', alias => 'contact', fetch => 0, }, }, ); - class - represents the class that should be used by the logic to fetch the relevant data - id_field - which field from the resource needs to be expanded, it should be the "id" field (subscriber_id, domain_id, etc.) - alias - (optional), under which key the fetched data is stored. the field name is used as the key if the option is omitted. - fetch - (optional), if the returned data is under $data->{contract_id} then it will be fetched from there and stored under the key (field name or alias), otherwise the whole retreived data is stored under the key (field name or alias) * adapt /api/autoattendants to use the new approach (old one was expand=1) * currently supported endpoints with expand: - admins - autoattendants - domains - customers - customercontacts - resellers - subscribers Change-Id: Iac53409dad944ed4794039a48dc3a9f6dce25bc1	5 years ago
Sipwise Jenkins Builder	f48ec2dfab	TT#4166 I18N dump: snapshot 2021.07.23-01.23.11 Change-Id: I69833ef40737c2963371468578fe2d605f568314	5 years ago
Kirill Solomko	1cdae0b1e0	TT#125902 add Login CSC v2 support * Login CSC v2 button is shown on the subscriber's master data page if www_admin.http_csc.csc_js_enable == 1 or 2 * When the login is triggered an auth token is generated internally followed by a redirect to CSC as /?a=auth_token * move generate_auth_token() into Utils/Auth * improve generate_auth_token() arguments support * add /api/authtokens error handling Change-Id: Idd65400bf8ce6ce48979c736f6a199fb567ffaa4	5 years ago
Alexander Lutay	12c2911fe4	TT#130659 Improve path debug output in panel-debug.log It is much more usable to see the debug information as URLs: > Jul 22 08:24:53 sp1 ngcp-panel: DEBUG: * New GET request on path: / > Jul 22 08:24:53 sp1 ngcp-panel: DEBUG: * New GET request on path: /subscriber > Jul 22 08:24:53 sp1 ngcp-panel: DEBUG: * New GET request on path: /subscriber/ajax Instead of Catalyst oriented way: > Jul 22 08:24:53 sp1 ngcp-panel: DEBUG: * New GET request on path: > Jul 22 08:24:53 sp1 ngcp-panel: DEBUG: * New GET request on path: subscriber > Jul 22 08:24:53 sp1 ngcp-panel: DEBUG: * New GET request on path: subscriber/ajax Change-Id: I38699152e232c5f5aa2ef218db9bf61c692bbf33	5 years ago
Sipwise Jenkins Builder	382ae285a9	TT#4166 I18N dump: snapshot 2021.07.21-01.32.54 Change-Id: I7a313e139a75933049712e8cfa661c82b7dcccea	5 years ago
Alexander Lutay	6fbf99e461	TT#130659 Improve debug log layout (common style, removing plus/star markers) It was close to impossible to read ngcp-panel debug log due to: * missing clear marker of the start reuqest processing, use '**' once only some personal markers (like '+++++++') have been removed as they have no meaning for other developers. Let's remove the personal markers and work to make the panel debug log well readable for all developers. Change-Id: I69faff3ab2258fc156e88c7b8da0edfef14c3e6e	5 years ago
Alexander Lutay	6263f167e2	TT#130659 Stop calling systemd openvpn status twice on every HTTP request The ngcp-panel<=>openvpn functionality has never been finished but on every HTTP requset ngcp-panel was asking systemd about openvpn status. Twice! From /var/log/ngcp/panel-debug.log : > Jul 19 09:36:32 sp1 ngcp-panel: DEBUG: Path: dashboard > Jul 19 09:36:32 sp1 ngcp-panel: DEBUG: systemctl list-unit-files openvpn.service > Jul 19 09:36:32 sp1 ngcp-panel: DEBUG: systemctl is-enabled openvpn@ovpn > ... > Jul 19 09:36:33 sp1 ngcp-panel: DEBUG: Path: dashboard/ajax/peering_sum > Jul 19 09:36:33 sp1 ngcp-panel: DEBUG: systemctl list-unit-files openvpn.service > Jul 19 09:36:33 sp1 ngcp-panel: DEBUG: systemctl is-enabled openvpn@ovpn > ... > Jul 19 09:36:33 sp1 ngcp-panel: DEBUG: Path: dashboard/ajax/emergency_mode > Jul 19 09:36:33 sp1 ngcp-panel: DEBUG: systemctl list-unit-files openvpn.service > Jul 19 09:36:33 sp1 ngcp-panel: DEBUG: systemctl is-enabled openvpn@ovpn It is unnecessary load, moreover for not-yet finished feature. Let's move openvpn WIP functionality into 'NGCP Support Status' page and finish it there one day. The goal of this commit is to stop DOS'ing systemd. Change-Id: I6c9ba9e1b218e58b5adffe741f4490b3729d17e7	5 years ago
Kirill Solomko	fc9c71a88e	TT#130203 unify admin and subscriber JWT tokens * /login_jwt is now the only endpoint to issue JWT tokens * JWT token admin/subscriber is provided based on the NGCP_REALM/NGCP_API_REALM fcgi env values (e.g.: https://localhost:1443/login_jwt = admin JWT token and https://localhost/login_jwt = subscriber JWT token) * Authorization: Bearer a= prefix is deprecated * Clients cannot use subscriber JWT token to access admin NGCP_API_REALM https://localhost:1443/api/... and vice-versa Change-Id: I46edf4c7aaf7bb835dc4ac6b7535aa2d6b5ac136	5 years ago
Sipwise Jenkins Builder	181841eb50	TT#4166 I18N dump: snapshot 2021.07.19-01.22.52 Change-Id: I67dbf95faff4da11d44b0a26e7e5c97c2628d361	5 years ago
Victor Tsvetov	50f6b2af75	TT#115002 Add strings from Forms to i18n source Add strings that were collected by fixed ngcp_panel_dump_db_strings.pl from Forms into i18n source file messages.pot. Change-Id: I92157059b48bdfab94405b674f9a7300c5a9a91d	5 years ago
Victor Tsvetov	21bbb382d6	TT#115002 Fix collecting i18n strings from Forms Fix ngcp_panel_dump_db_strings.pl to load Forms modules properly. Make modules not to fail when they are called without ctx context. Change-Id: I695978b1831068f37198bce9f6a5b9e406d79ede	5 years ago
Sipwise Jenkins Builder	c6a6427ab9	TT#4166 I18N dump: snapshot 2021.07.17-01.23.06 Change-Id: Ib275a4657085d879fec6e5fe3ab1938deece46ff	5 years ago
Alexander Lutay	42e63e5711	TT#130659 Remove rrd-related ngcp-panel code Change-Id: I76880ba12037f1653c4c969e442738cc7f3eb185	5 years ago
Kirill Solomko	53408c2e94	TT#130750 do not pack() jwt secret * the extra packing of the secret key during encode/decode conflicts with the API v2 implementation * move JWT "typ" from the payload to the header Change-Id: Ica5822d810d6eaf7b3ae017f7037f25637b6f861	5 years ago
Sipwise Jenkins Builder	5a4f7ee0fa	TT#4166 I18N dump: snapshot 2021.07.15-01.22.19 Change-Id: I0dddc008411479d68c204cf65c3836c60443e5e3	5 years ago
Rene Krenn	fefcf83242	TT#121500 fix missing mos_data in /api/conversations Change-Id: Ia0a549a96d1fd311021a474d5098b1ab859e5a31 (cherry picked from commit 2afa637f4170214bf6654343c81983fb78d9bf8a)	5 years ago
Kirill Solomko	1dfdad0a8f	TT#130450 use uuid in /api/cfdestinationsets /api/cfmappings * unify the logic and use uuid in /api/cfdestinationsets and /api/cfmappings if the subscriber's primary number is empty Change-Id: Ibdb7e2a2bcd33165be5ec1d92c4f1df24f59405a	5 years ago
Alexander Lutay	8885d06a42	TT#128256 Add localisation for phonebook 'Upload CSV' page Otherwise localisation is missing for 'Upload CSV' page https://x.x.x.x:1443/phonebook/upload_csv Change-Id: I5c174cecf0d74486e8b700d2b1aca6b87e43b15b	5 years ago
Rene Krenn	325903c14d	TT#121500 fix missing mos_data in /api/callists Change-Id: I4e958dd6ec05042c6ee18bbd7ed7186792a6be50	5 years ago
Kirill Solomko	a4bf25a43d	TT#130203 add typ=JWT into the JWT payload * the 'typ' key is required for API v2 to accept the JWT Change-Id: I184a8acfeab6c66617ccaf0a46a28771f68bfa8f	5 years ago
Sipwise Jenkins Builder	7fe2cefe96	TT#4166 I18N dump: snapshot 2021.05.05-01.23.15 Change-Id: If5685f07d59811857fc4ab19647251d96b7f58cb	5 years ago
Flaviu Mates	9b422ddabf	TT#126601 Implement /api/authtokens endpoint * the endpoint will receive "type" (expires\|onetime) and "expires" (positive integer representing seconds) * type will define the expiray method for the token; onetime: the token expires as soon as it's used, or after "expires" seconds if not used expires: the token can be used multiple times until it expires according to the "expires" param value * login_jwt endpoint for generating the JWT token for subscribers has been enhanced to accept the "token" param, containing the token generated using the /api/authtokens endpoint * admin_login_jwt endpoint for generating the JWT token for admins has been enhanced to accept the "token" param, containing the token generated using the /api/authtokens endpoint * login_jwt and amin_login_jwt will respond with 403 "Forbidden" if the token role stored in Redis does not match the role of the user that generated it * /api/authtokens is hidden from documentation for now Change-Id: I4eb76c2b08f2e24774fa84ba0ccf7412ce8670e8	5 years ago
Kirill Solomko	63812835c0	TT#129162 fix passwork characters check * check that the password variable contains a value Change-Id: Iba1cf809d5cd81b3dbbeb4686765a667e339d93f	5 years ago
Kirill Solomko	407490c101	TT#129162 respect framed setting for root default Change-Id: Ibced32326b213ba2d8cce90cc5d915e464b56027	5 years ago
Kirill Solomko	f4597b6ed7	TT#129162 add bcrypt password characters check Change-Id: I08723d02a7e4bc042351444b201d1f96cc986af3	5 years ago
Kirill Solomko	20e77c7b54	TT#129162 tighten user access checks * add additional centralised checks for inactive and read_only users. * use_userdata_from_session=0 now for all auth realms to cause the data re-fetched from the database, to avoid scenarios when a user is set as inactive or read_only and UI keeps using the cached data. the change only affects cookie and JWT subscriber based sessions as in all other cases, the auth data is fetched from the storage regardless. * add is_active=1 flag for the internal 'system' role, as otherwise access would be permanently denied for it. * default 403 error for denied api requests is changed to "Forbidden" instead of "Forbidden path". Change-Id: I1d6d3c765ca8e017e11845c1f5260243a3963c3b	5 years ago
Victor Tsvetov	829479e153	TT#129160 Complete missing Russian translations Add missing translations. Some of them are machine-translated and require later proofreading. Change-Id: I18a8e87938665e705ba045eb9b9fccbd8c3fc34e	5 years ago
Alexander Lutay	3ba08f45ac	TT#122202 Re-enable use_session for realm api_subscriber_jwt Otherwise v1 session (cookies-based) is not created and v2 CSC cannot load v1 "iframe" content. Also it was impossible to switch between v1 and v2 CSC. Change-Id: Iab3fac6e8da6e5a2e81a0626a3db6faa3e011396	5 years ago
Marco Capetta	7fc4e776bc	TT#82409 Add support of 'peer_auth_hf_user' preference in createRegistration Change-Id: I86bd04d19f12604cd64981ba07651526298b2b5f	5 years ago
Flaviu Mates	131fe8e270	TT#128850 Fix 500 eror on /api/preferencedefs * add quotation with ~ for square brackets ([]) comming from the database, as it is needed for I18N Change-Id: Ia1253e90d47858a930a4a9569c2d27993a0cd4bc	5 years ago
Flaviu Mates	c1752e7e82	TT#128552 Add filtering by name for /api/billingprofiles Change-Id: I8b62b4b7ad4aec3d0538fb84a3b73e451fcb1db1	5 years ago
Flaviu Mates	f27eedf33c	TT#128253 Add localization support for /api/.+preferencedefs Change-Id: Ibee6b7c4952167a112c80d6972b7a9471a6ff958	5 years ago

1 2 3 4 5 ...

3458 Commits (3cb71e4ceb5697dfaac8ac492b37dc07b95de1bc)