ngcp-panel

Commit Graph

Author	SHA1	Message	Date
Kirill Solomko	c66ad7fd8a	MT#58157 escape uri refs in body.tt * URI that comes from c.req.uri must be escaped as Catalyst provides c.req.uri unescaped. * new Catalyst::NGCP::Plugin::EscapeURI with escape_uri() function * new NGCP::Panel::Utils::Generic::escape_uri() that uses URI::Escape::uri::escape_utf8() * c.req.uri and c.req.path occurrences in layout/body.tt are now escaped with c.escape_uri() Change-Id: Id0483fa6e570a0ff8db84b1d470caf5405cc0886 (cherry picked from commit `c826fccb29`) (cherry picked from commit `e3d4ec076e`)	2 years ago
Rene Krenn	9d193a1b89	TT#103450 enable lintercept role for interceptions PUT/DELETE Change-Id: Ie03a9a7dce7778a580a80a354364dddbd21996f9 (cherry picked from commit `c2b5602183`)	4 years ago
Rene Krenn	841411b6f5	TT#151751 refactor persisting subscriber webpassword mr8.5 a multitude of issues popped after introducing bcrypted webpasswords in the database. most recently the PATCH /api/susbcribers rail was reported to reset the webpassword unintentionally. subscriber login fails afterwards, which is a severe issue. the bugs are adressed by this refactorings. the change also introduces a global variable $NGCP::Panel::Utils::Auth::ENCRYPT_SUBSCRIBER_WEBPASSWORDS to control encrypting webpasswords. it is still enabled as of now, but it's worth to consider disabling it. there other ways to have a "cost" for an authentication request, eg. adding a simple sleep(1sec). Change-Id: I2d47d54a2d83568546ffdd2b211337a5f56be3a2 (cherry picked from commit 58c410cf077673b6059655b09e024e6592ede9ba)	4 years ago
Rene Krenn	5a05eddd33	TT#105100 check PATCHing unset webpasswords Change-Id: I18fb6b2f67afe91e080331d277ea29d781f7c7c2 (cherry picked from commit `aa84c19ace`)	4 years ago
Rene Krenn	50bdd7aae9	TT#105100 fix PATCHing unset webpasswords Change-Id: Ieb02d5ea4d8c1a8bee2ab94dfcf64778e79b8510 (cherry picked from commit `8325f3e5c5`)	4 years ago
Flaviu Mates	44efeea7ed	TT#86652 Fix utf8 fax body encoding * decode utf8 on multipart/form-data request since we encode the json for this content type, and the fax body gets double encoded and ends up wrong Change-Id: I50d10879e5fe1ba99141e76d311641fcd5d568a1 (cherry picked from commit `fe09f80224`) (cherry picked from commit `6a4845471e`)	4 years ago
Rene Krenn	bbd2c3d4b1	TT#89200 workaround logic for backward-incompatible prefs unfortunately, preference types were changed over time, eg. some boolean prefs were turned into enum prefs. this requires an api client to adopt accordinngly. if this is not an option, this change allows to add simple workarounds in the rest-api directly, by registration of transformation functions for specific preferences. Change-Id: I215f0e19cd861c67c51e42fd1ab6560e56132041 (cherry picked from commit `db973da3be`)	4 years ago
Rene Krenn	6c08ec1d10	TT#144000 add lnp_provider form field to /api/ncoslnpcarriers Change-Id: Ic574980aee14d1a9400857332f7cd919e7fd687a (cherry picked from commit `bd2c1760b3`)	4 years ago
Rene Krenn	378b7e1236	TT#144000 fix /api/ncoslnpcarriers rail the form used for the /api/ncoslnpcarriers rail uses the same technique to expose a JSON field "carrier_id" for the table column "lnp_provider_id", also found in the /api/lnpnumbers rail implementation. it however did not work until now, because the fieldname in the render_list did not match. Change-Id: I45dca22bab73e16b538de7ea1d540aa1383fb56d (cherry picked from commit `053b013edf`)	4 years ago
Rene Krenn	395172367b	TT#142001 do not quote LI numbers in Response err messages the G2k/LIMA implementation seems to have our error messages hardcoded in their logic. it stareted to fail since we added logline obfuscation, which was also added to response messages in this place. Change-Id: I36c2a74ed17db7013e692d7cbdccf0dbd44e814e (cherry picked from commit 2162adcb6ba381dab849259bba56bc2d85b0d9b0)	4 years ago
Rene Krenn	e4044915ec	TT#121500 fix missing mos_data in /api/conversations Change-Id: Ia0a549a96d1fd311021a474d5098b1ab859e5a31 (cherry picked from commit 2afa637f4170214bf6654343c81983fb78d9bf8a)	5 years ago
Rene Krenn	c1bf74462d	TT#121500 fix missing mos_data in /api/callists Change-Id: I4e958dd6ec05042c6ee18bbd7ed7186792a6be50 (cherry picked from commit 2b751b139d612d20964e7ba236c60a2a1b316d86)	5 years ago
Kirill Solomko	216951e0fe	TT#129162 fix passwork characters check * check that the password variable contains a value Change-Id: Iba1cf809d5cd81b3dbbeb4686765a667e339d93f (cherry picked from commit `63812835c0`)	5 years ago
Kirill Solomko	98bd83fcfa	TT#129162 respect framed setting for root default Change-Id: Ibced32326b213ba2d8cce90cc5d915e464b56027 (cherry picked from commit `407490c101`)	5 years ago
Kirill Solomko	c3133ac1ae	TT#129162 add bcrypt password characters check Change-Id: I08723d02a7e4bc042351444b201d1f96cc986af3 (cherry picked from commit `f4597b6ed7`)	5 years ago
Kirill Solomko	4558f34415	TT#129162 tighten user access checks * add additional centralised checks for inactive and read_only users. * use_userdata_from_session=0 now for all auth realms to cause the data re-fetched from the database, to avoid scenarios when a user is set as inactive or read_only and UI keeps using the cached data. the change only affects cookie and JWT subscriber based sessions as in all other cases, the auth data is fetched from the storage regardless. * add is_active=1 flag for the internal 'system' role, as otherwise access would be permanently denied for it. * default 403 error for denied api requests is changed to "Forbidden" instead of "Forbidden path". Change-Id: I1d6d3c765ca8e017e11845c1f5260243a3963c3b (cherry picked from commit `20e77c7b54`)	5 years ago
Flaviu Mates	68c5c6d854	TT#100761 Allow subscribers to access /api/applyrewrites * Give subscribers permissions to apply rewrites but only for their own subscriber id Change-Id: I6fdb449190169802ba8d3ed71effb41c60b00125 (cherry picked from commit `0d0a2faf90`)	5 years ago
Flaviu Mates	e960c73079	TT#99700 Fix subscribers PATCH in case of admin without show_passwords * restore password field in prepare_resource after it was deleted in resource_from_item for admins without show_passwords flag * the password is restored only in case it's missing from resource and it's present in DB Change-Id: I390fb8fb94f4546734cb899c741dc90e439df068 (cherry picked from commit `fe7f65d948`)	5 years ago
Kirill Solomko	7d01b9303b	TT#102056 fix registration entry removal * Registration entries are now removed by registration username + registration domain instead of subscriber username + subscriber domain. That is to account registrations by the device. Change-Id: I86a0d97fabc2dcd0eda6042a018ed35f64c3f031 (cherry picked from commit `59a1ba298b`)	5 years ago
Flaviu Mates	8a8cb4d795	TT#98650 Fix /api/subscriberregistration gateway timeout *Introduce pagination in redis scanning; previously all the registrations where dumped in an array and then spliced by page/rows; this was causing huge loading time for big redis DB's hence the timeout Change-Id: I1409c48b520d8d860cd8c11aea1a543286aa0334 (cherry picked from commit `2741e9ec79`)	5 years ago
Rene Krenn	1efe9f96df	TT#98650 ?suppress_flush=1 parameter suppress executing "ul.flush" kamailio xmlrpc after "ul.add" or "ul.rm", as it seems to be another source of timeouts. Change-Id: I8faf907c4cbfd6adbe3e3645f5c32069df2eb999 (cherry picked from commit `186ddabb17`)	5 years ago
Rene Krenn	b037361976	TT#98650 speedup redis locaction search by id instantiation a redis location resultset can cause a scan if no filter args are provided. Change-Id: I398398115011774c20fdecbc675223a22b9e1917 (cherry picked from commit `b4281d4ee8`)	5 years ago
Gerhard Jungwirth	0f0ce97594	TT#44168 create additional form for subadmin non-pbx subscriber edit The fix has been created by Gerhard Jungwirth three years ago for branch 'mr5.5' and was not merged into branch 'master'. It is a follow up master commit to address customer ticket TT#82306. The cherry-pick has been done AS IS, with one small trivial resolution: > + my $is_pbx_customer = $c->stash->{billing_mapping}->product->class eq "pbxaccount"; > my $base_number; > > ++<<<<<<< HEAD > + if($subscriber->contract->product->class eq "pbxaccount") { > ++======= > + if($is_pbx_customer) { > ++>>>>>>> 239d4a385... TT#44168 create additional form for subadmin non-pbx subscriber edit Change-Id: Ie242c4ad44fc21319cdaa29dcca423fe241aab20 (cherry picked from commit `239d4a3859`) (cherry picked from commit `64c120a5e5`)	5 years ago
Kirill Solomko	7c2b5f4948	TT#120309 fix datatable escape html rendering * in mRender (custom_renderers), "data" variable is a string, therefore data.escapeHtml could not be used * add new function argument "opt", where it is a dedicated hash containing custom passable options, so it now looks as function(data, type, full, opt) * adapted the existing code to include/use the new argument where applicable Change-Id: I4957eece3b2d0f6359cbc8f36caf5a350d7bad95 (cherry picked from commit `87bdb69560`)	5 years ago
Flaviu Mates	127c1eb001	TT#114703 Use config flags password_(sip\|web)_expose_subadmin in api Change-Id: I289a3683c09c098d52c1ddb5a489c8c2093f9c99 (cherry picked from commit `67ca4d5a00`)	5 years ago
Rene Krenn	a02465e744	TT#109402 fix PATCHing fraud notification status Change-Id: I04dcef51641102314cfc034222e6696c69f110e8 (cherry picked from commit `645231c274`)	5 years ago
Rene Krenn	e9acfb4964	TT#105954 /api/invoices: accept 'application/pdf' type Change-Id: I5b01d2f627a17bdb527de0f92cf14de0d505aa0e (cherry picked from commit `be92558686`)	5 years ago
Flaviu Mates	72df4978e2	TT#104760 Fix non-master admin privileges managing in API * Forbid non-master admin to change own is_master, read_only, and is_acitve flags; we have this logic in old UI already in place Change-Id: I81ab266d942e32dfb560ba488e9fd471ebc923f4 (cherry picked from commit `b79d68e865`)	5 years ago
Flaviu Mates	fbaf3cc6a8	TT#99500 Fix adding subscriber to group * The profile_set field was inactivated in form if subscriber had a profile set, but just for cosmetic purposes; this is only for pbx extensions, other subscribers don't have this field inactivation; inactivating it, made subscriber editing in Panel UI behave weirdly because a check for profile_set would fail since it's missing * Bottom line, we can sacrifice the cosmetic part for having subscriber editing function properly Change-Id: I6a9a7cf3e5c7250d20dd5873521f72cdcc1b6d55 (cherry picked from commit `9249dee12f`)	5 years ago
Victor Seva	41970bc8c7	TT#97400 prosody: [de]activate just the main domain * conference. subdomain was missing * mod_sipwise_vhosts_sql module is now taking care of [de]activation of the subdomains * send quit command when leaving the console to avoid error in log > Oct 19 19:22:43 sp1 (debug) prosody[25167]: socket: connection failed in read event: closed Change-Id: If1d80652efba0a587f29ecc692282c8db067e450 (cherry picked from commit `258a54de88`)	5 years ago
Flaviu Mates	9c786d6b22	TT#94650 - Fix access to emergency mappings for reseller admins * Access was restricted only for emergency containers * Added user's reseller_id to DB query to only show mappings from the same reseller for reseller admins Change-Id: Ia5fe29e74fe71dbfa5dbc58088fae86a75ac6acc (cherry picked from commit `c988ba5ff6`)	5 years ago
Rene Krenn	8cd5afe188	TT#95252 fix callist error with clir_scope & terminated subs Change-Id: Icf9ce91770a316b3cdcdb1a9c39a5b0d12dc1c9a (cherry picked from commit `ed01e2931b`)	5 years ago
Rene Krenn	1a78b35b62	TT#92700 print journal links of collection items Change-Id: I01f7632013cd38f99261a003fab323acf385dd46 (cherry picked from commit `f6374026e0`)	5 years ago
Flaviu Mates	0fb6ad569d	TT#90351 - Fix /api/subscribers PATCH * whenever webpassword was not PATCHed, the request would fail because the resource would have the encrypted webpassword from the DB and form valdiation would complai it's too long * the approach now is to remove the webpassword from resource before form validation if the resource has the same webpassword as the DB (i.e. webpassword wasn't (PATCHed) and then reassign it to the resource after form validation Change-Id: I86fab0f4bf789bd3518a74d49daf1a0402f20125 (cherry picked from commit `d028948f1a`)	5 years ago
Alexander Lutay	8a5140e096	TT#89451 Update ALE redirect URL to api.eds.al-enterprise.com On 8/21/20 7:17 AM, Zhang Jason wrote: > For the RPS, we switched to new EDS domain: > https://api.eds.al-enterprise.com > > And for the previous domain name, > to keep compatibility, it’s still usable; We need to switch to new URL as old one works in backward compatibility mode only. Change-Id: I9c0db38a9422f32c79940fb79581d47c75e8fce5 (cherry picked from commit `94ef1fef2c`)	5 years ago
Rene Krenn	1f3193a56f	TT#86351 prevent datatable queries with no clipping Change-Id: I0151a5602942f956c1879ee11f3edfd09e3eb112 (cherry picked from commit `b821a57ca9`)	6 years ago
Sipwise Jenkins Builder	e12ca78835	TT#4166 I18N dump: snapshot 2020.07.12-01.29.55 Change-Id: I2525443cd2715bdecf75680009d58753cd2cdc32	6 years ago
Flaviu Mates	e90c642d05	TT#84260 - Add number batch processing on /api/applyrewrites * Param 'number' is renamed to 'numbers' * 'numbers' can be a single value like it is currently used, or an array which will result in all array elements having the sub's rewriterule applied and returned in the same order Change-Id: Ic24179d2ecbec80cebd23e5af751df0ebbcc7141	6 years ago
Flaviu Mates	08291b5652	TT#85620 - Add CF mapping id to all mappings Change-Id: I46dc8c577abfd6e412354334227abcfdfdb0b3ad	6 years ago
Rene Krenn	65634d7014	TT#84329 encrypt/decrypt password, weppassword, pin Change-Id: I74ae79b798955e6e20c32a644c739d81786f90c0	6 years ago
Flaviu Mates	6c645490e6	TT#84453 - Fix error when subscriber logs in on old CSC * Add check for existence of webpassword on subscriber log in to prevent the code from trying to use the undefined password * Subscribers with no webpassword cannot log in the old CSC Change-Id: I7b82c014fa5f70fa36ee7282db94a747e54ce2ae	6 years ago
Rene Krenn	b1defc5494	TT#84316 more accurate profile usage count query Change-Id: Ie5537a30a915a224fca495e2b6a0c7b967febdda	6 years ago
Sipwise Jenkins Builder	c952ac23e2	TT#4166 I18N dump: snapshot 2020.06.28-01.30.45 Change-Id: Icebf2111926e92363d367cc044df970ba1022cd4	6 years ago
Flaviu Mates	aec7c8921b	TT#76111 - Change LI admins flags permissions * Admin with lawful intercept will no longer be able to have any flags besides 'is_active', 'read_only', 'can_reset_password' * Remove reseller filter on interceptions since LI admins should see all interceptions * Add permissions to /api/admincerts and reseller ajax for LI admins Change-Id: Id912424b9bbd3ab3cbbc373ac116fda035f81fd3	6 years ago
Flaviu Mates	0b10a86e9b	TT#80301 - Implement login_to_v2 endpoint * The endpoint generates a jwt token and stores it in Redis, then redirects to /v2/#/?v1_auth={token} * Also added an id in DOM to indentify the Panel V1 login page Change-Id: I307a3f457f88bbba04bb7735d60fa51bdc5d0438	6 years ago
Flaviu Mates	321b6965fb	TT#84254 - Allow patching of rewriterules on /api/rewriterulesets * The resource was not having the rewriterules before patching the json, because they were added only at the end in the hal resource Change-Id: I43decadb95b6cf06828969b968c61a4b87062fb6	6 years ago
Flaviu Mates	4365599a20	TT#83000 Re-add posibilioty to use + = , ; for SIP usernames since they are unreserved Change-Id: Iecfd269778032772f3a8269637f36ebc2b122853	6 years ago
Flaviu Mates	d15a6b3117	TT#83200 - Add csc_show_rtcengine_features capability Change-Id: Ie56ca7c074097d5fe931518bca8973a725cdc6dd	6 years ago
Flaviu Mates	7912652e61	TT#83000 - Change SIP username validation in accordance with RFC * remove + = , ; and add * ! Change-Id: I77fa96a7343188a78989a6c1d6d68f4ab0083e00	6 years ago
Rene Krenn	9d6fd2ab92	TT#83355 consider prepaid call costs for reseller revenue the cash_balance_interval column of customer's contract_balance records does not include prepaid call costs. nowadays there is the possibility to use data from accounting.cdr_period_costs (fraud data) Change-Id: I02ac981016d52eb9f7afdc4047aeaae143aea4dd	6 years ago

1 2 3 4 5 ...

3308 Commits (c66ad7fd8a44cb682d561821cb76d42fbd19bd08)