pyceo

Commit Graph

Author	SHA1	Message	Date
Max Erenberg	7716f7bd10	Add web UI for password resets (#123 ) continuous-integration/drone/push Build is passing Details Reviewed-on: #123	2024-03-23 19:26:30 -04:00
Max Erenberg	9c51ad3a01	Allow offsck to add members to the office group (#126 ) continuous-integration/drone/push Build is passing Details Closes #62. Reviewed-on: #126	2024-02-17 19:31:03 -05:00
Max Erenberg	a4a4ef089c	Query Active Directory LDAP for alumni (#120 ) continuous-integration/drone/push Build is passing Details Closes #116. UWLDAP has program information for current students, so we should continue using it by default. If the sn attribute (last name) is missing from the entry, then we query ADLDAP instead. Reviewed-on: #120	2024-02-01 23:57:53 -05:00
Max Erenberg	bd1da799c6	Allow ceod/* principals for all requests (#121 ) continuous-integration/drone/push Build is passing Details Allow the ceod/\* principals (which should only be used by the ceod daemons) to make requests to all API endpoints. Reviewed-on: #121	2024-01-28 21:37:34 -05:00
Ohm Patel	de23296413	Validate usernames across tui & for create_user on cli/api (#115 ) continuous-integration/drone/push Build is passing Details Current changes should address issues raised by @merenber in #114 excluding #114 (comment) (both CLI and TUI validation) * Unit test for invalid name was added but needs to be modified as regex should be changed to disallow underscores eventually. Reviewed-on: #115 Reviewed-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Co-authored-by: o32patel <ohm.patel@uwaterloo.ca> Co-committed-by: o32patel <ohm.patel@uwaterloo.ca>	2024-01-22 13:15:40 -05:00
Max Erenberg	7e851daa8f	update deps	2023-07-31 19:27:45 -04:00
Max Erenberg	e0ed4fa23a	check that forwarding_addresses is a list	2023-07-31 18:26:06 -04:00
Max Erenberg	65688c72da	make forwarding_addresses mandatory when creating member (#97 ) continuous-integration/drone/push Build is passing Details Closes #96. Reviewed-on: #97	2023-06-09 02:39:50 -04:00
Daniel Sun	010937ea17	Add group lookup functionality (#88 ) continuous-integration/drone/push Build is passing Details note: I am unaware of best practices but I tried my best to keep changes consistent with the codebase feedback would be much appreciated notable changes: new api endpoint: `/groups/search` -- I moved searching into the api so it could be used in tui and cli, also seemed like a good idea to keep the json response as small as possible tui searching -- at first I wanted to make this realtime interactable, but the work required seemed inappropriate to a feature I am assuming will only be used sparingly Co-authored-by: Daniel Sun <dandancool@github.com> Co-authored-by: Daniel Sun <d6sun@uwaterloo.ca> Reviewed-on: #88 Reviewed-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Co-authored-by: Daniel Sun <d6sun@csclub.uwaterloo.ca> Co-committed-by: Daniel Sun <d6sun@csclub.uwaterloo.ca>	2023-03-04 01:21:04 -05:00
Max Erenberg	234ab62f27	add accounttype=0 to CloudStack listAccounts query continuous-integration/drone/push Build is passing Details	2023-02-18 11:16:36 -05:00
Max Erenberg	239b992107	reduce UWLDAP batch size to 10 continuous-integration/drone/push Build is passing Details	2023-02-13 17:34:49 -05:00
Max Erenberg	b33339817f	fix logging messages for renewing a member continuous-integration/drone/push Build is passing Details	2023-02-06 00:29:45 -05:00
Justin Chung	5e8f1b5ba5	Implement TUI support for multiple users in each position (#80 ) continuous-integration/drone/push Build is passing Details Co-authored-by: Justin Chung <20733699+justin13888@users.noreply.github.com> Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Reviewed-on: #80 Co-authored-by: Justin Chung <j24chung@csclub.uwaterloo.ca> Co-committed-by: Justin Chung <j24chung@csclub.uwaterloo.ca>	2023-01-23 02:26:13 -05:00
Max Erenberg	f84965c8e1	reload all NGINX servers after adding a vhost (#90 ) continuous-integration/drone/push Build is passing Details Currently, only the NGINX server on biloba is reloaded after adding a new vhost or renewing an SSL certificate. The NGINX server on chamomile should also be reloaded, since chamomile is a warm standby for biloba. This PR adds a new config option in ceod.ini to specify the shell command to reload the web servers. Reviewed-on: #90 Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Co-committed-by: Max Erenberg <merenber@csclub.uwaterloo.ca>	2023-01-22 17:20:55 -05:00
Jonathan Leung	b507c56136	Show groups in member for API, CLI and TUI (#82 ) continuous-integration/drone/push Build is passing Details Closes #69. Tests are failing locally with many `assert os.geteuid() == 0` errors even on the master branch. I will add tests after I figure this out. Reviewed-on: #82 Co-authored-by: Jonathan Leung <j23leung@csclub.uwaterloo.ca> Co-committed-by: Jonathan Leung <j23leung@csclub.uwaterloo.ca>	2022-11-26 20:09:05 -05:00
Max Erenberg	1e452d10ce	Assume program is Alumni if UWLDAP is missing data (#84 ) continuous-integration/drone/push Build is passing Details This PR sets 'program=Alumni' for members who either do not have an 'ou' attribute in UWLDAP, or who do not have a UWLDAP entry at all. Reviewed-on: #84 Reviewed-by: Raymond Li <raymo@csclub.uwaterloo.ca>	2022-11-01 21:02:05 -04:00
Jonathan Leung	c30ca54752	Sort group member listing by WatIAM ID (#78 ) continuous-integration/drone/push Build is failing Details Closes #74. Co-authored-by: Jono <jowonowo@gmail.com> Reviewed-on: #78 Reviewed-by: Raymond Li <raymo@csclub.uwaterloo.ca> Co-authored-by: Jonathan Leung <j23leung@csclub.uwaterloo.ca> Co-committed-by: Jonathan Leung <j23leung@csclub.uwaterloo.ca>	2022-10-13 14:58:50 -04:00
Rio Liu	57ba72ef26	Add support for using number in member terms renwewal API (#77 ) continuous-integration/drone/push Build is passing Details Closed #75 Co-authored-by: Rio6 <rio.liu@r26.me> Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Reviewed-on: #77 Co-authored-by: Rio Liu <r345liu@csclub.uwaterloo.ca> Co-committed-by: Rio Liu <r345liu@csclub.uwaterloo.ca>	2022-10-07 07:58:23 -04:00
Max Erenberg	779e35a08e	fix shadowExpire deserialization continuous-integration/drone/push Build is passing Details	2022-09-10 16:01:40 -04:00
Max Erenberg	2739c45aff	use LDAP instead of NSS for authz (#73 ) continuous-integration/drone/push Build is passing Details Closes #71. Reviewed-on: #73	2022-09-09 17:26:54 -04:00
Max Erenberg	651f4fb702	add more logging (#72 ) continuous-integration/drone/push Build is passing Details Closes #70. Reviewed-on: #72	2022-09-09 14:42:43 -04:00
Max Erenberg	0334e7e667	fix email formatting bug in ClubWebHostingService continuous-integration/drone/push Build is failing Details	2022-09-05 15:37:35 -04:00
Max Erenberg	8ad8271db1	Fix some bugs in ClubWebHostingService continuous-integration/drone/push Build is passing Details * Don't read the value of an Apache directive unless we are sure it can only accept one argument * Handle the case where a club's www directory is not readable	2022-09-04 23:22:28 -04:00
Max Erenberg	cfb5f77711	Disable inactive club sites (#68 ) continuous-integration/drone/push Build is passing Details Closes #51. An API argument called `remove_inactive_club_reps` was added so that we can dynamically control whether we want to remove inactive club reps or not. The default action is only to disable club websites without changing group membership. Reviewed-on: #68 Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Co-committed-by: Max Erenberg <merenber@csclub.uwaterloo.ca>	2022-07-22 23:51:59 -04:00
Max Erenberg	dc412ef5cb	implement renewal reminders (#61 ) continuous-integration/drone/push Build is passing Details Closes #55. Once this is merged and deployed, a cron job will be used to automatically run `ceo members remindexpire` at the beginning of every term. Reviewed-on: #61	2022-06-30 20:02:06 -04:00
Max Erenberg	00c7d562ad	fix URL bug in ContainerRegistryService continuous-integration/drone/push Build is passing Details	2022-06-09 09:07:12 -04:00
Max Erenberg	6fae2e4115	use quote_plus for signing CloudStack API requests continuous-integration/drone/push Build is passing Details	2022-06-09 01:23:04 -04:00
Rio Liu	55c4b2151d	Unsubscribe/resubscribe members when they're expired and renewed (#53 ) continuous-integration/drone/push Build is passing Details Co-authored-by: Rio Liu <rio.liu@r26.me> Co-authored-by: Rio6 <rio.liu@r26.me> Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Reviewed-on: #53 Co-authored-by: Rio <r345liu@localhost> Co-committed-by: Rio <r345liu@localhost>	2022-06-02 02:06:49 -04:00
Max Erenberg	87470e1f3b	don't reset password for local MySQL users continuous-integration/drone/push Build is passing Details	2022-05-23 23:01:09 -04:00
Raymond Li	8da700472f	Update 'ceod/model/templates/welcome_message.j2' continuous-integration/drone/push Build is passing Details	2022-03-18 21:35:32 -04:00
Max Erenberg	f3c542208a	send cloud warning emails to root continuous-integration/drone/push Build is passing Details	2022-03-12 16:09:19 -05:00
Max Erenberg	539de01c4d	use admin GSSAPI creds for some API endpoints (#45 ) continuous-integration/drone/push Build is passing Details Office staff currently can't sign up new members because ceod uses their GSSAPI credentials to authenticate to LDAP, and those credentials are insufficient. This PR uses the ceod/admin credentials instead for signing up new members and for renewing existing memberships. Reviewed-on: #45	2022-03-12 15:19:14 -05:00
Max Erenberg	5200259cfa	allow loginShell to be optional continuous-integration/drone/push Build is passing Details	2022-01-10 01:32:26 -05:00
Max Erenberg	7d3e03e7fd	increase retries for Postfix continuous-integration/drone/push Build is passing Details	2022-01-07 23:06:58 -05:00
Max Erenberg	5351cf8aee	Revert "don't subscribe club reps to csc-general" This reverts commit `fa05c4ad4a`.	2022-01-05 01:28:05 -05:00
Max Erenberg	7908d49840	include ACME challenge location snippet in NGINX template	2022-01-04 23:53:44 -05:00
Max Erenberg	41d293ee3b	add retry mechanism when sending email to new user continuous-integration/drone/push Build is passing Details	2022-01-04 23:45:04 -05:00
Max Erenberg	fa05c4ad4a	don't subscribe club reps to csc-general continuous-integration/drone/push Build is passing Details	2022-01-03 20:43:58 -05:00
Max Erenberg	02598fa3bc	allow ignored Harbor projects to be configurable continuous-integration/drone/push Build is passing Details	2022-01-02 22:43:22 -05:00
Max Erenberg	88b40b79cc	Don't expire syscom members (#43 ) continuous-integration/drone/push Build is passing Details Closes #37. Co-authored-by: Max Erenberg <> Reviewed-on: #43 Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Co-committed-by: Max Erenberg <merenber@csclub.uwaterloo.ca>	2022-01-01 12:15:32 -05:00
Max Erenberg	1e94132e97	Add container registry API (#42 ) continuous-integration/drone/push Build is passing Details Add an API for members to create a project on Harbor. Co-authored-by: Max Erenberg <> Reviewed-on: #42 Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Co-committed-by: Max Erenberg <merenber@csclub.uwaterloo.ca>	2022-01-01 00:49:05 -05:00
Max Erenberg	6e96e409be	add (objectClass=member) filter for expired members	2021-12-25 11:23:06 -05:00
d278liu	250d24ae37	use binary search when finding new uid (#39 ) continuous-integration/drone/push Build is passing Details closes #36 Co-authored-by: Daniel Liu <mr.picklepinosaur@gmail.com> Reviewed-on: #39 Co-authored-by: d278liu <d278liu@localhost> Co-committed-by: d278liu <d278liu@localhost>	2021-12-23 17:00:27 -05:00
Max Erenberg	f08f4872cf	Add Kubernetes API endpoint (#38 ) continuous-integration/drone/push Build is passing Details Add an API for members to create their own Kubernetes namespace. Co-authored-by: Max Erenberg <> Reviewed-on: #38 Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Co-committed-by: Max Erenberg <merenber@csclub.uwaterloo.ca>	2021-12-18 16:35:05 -05:00
Rio Liu	b4110d887d	Expire member cli and api (#33 ) continuous-integration/drone/push Build is passing Details continuous-integration/drone Build is passing Details Closes #23 Co-authored-by: Rio Liu <rio.liu@r26.me> Co-authored-by: Max Erenberg <> Reviewed-on: #33 Co-authored-by: Rio <r345liu@localhost> Co-committed-by: Rio <r345liu@localhost>	2021-12-11 16:30:18 -05:00
Max Erenberg	1338825c5d	use NGINX with acme.sh	2021-11-28 22:35:46 -05:00
Max Erenberg	bd50f4142f	use Caddy instead of NGINX for vhosts	2021-11-28 15:21:48 -05:00
Max Erenberg	a7c5098b67	Add cloud vhost API (#35 ) continuous-integration/drone/push Build is passing Details Add an API for members to create their own virtual hosts. Co-authored-by: Max Erenberg <> Reviewed-on: #35 Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Co-committed-by: Max Erenberg <merenber@csclub.uwaterloo.ca>	2021-11-27 17:59:21 -05:00
Max Erenberg	ac98aaf38d	Add API to manage cloud accounts (#34 ) continuous-integration/drone/push Build is passing Details This PR adds API endpoints and a CLI to create cloud accounts and to purge accounts of expired members. Co-authored-by: Max Erenberg <> Reviewed-on: #34 Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Co-committed-by: Max Erenberg <merenber@csclub.uwaterloo.ca>	2021-11-21 11:11:20 -05:00
Max Erenberg	ed9893604f	fix lint error continuous-integration/drone/push Build is passing Details	2021-11-03 21:23:16 -04:00

1 2 3

106 Commits