d30de30bb9
Check permissions on node items
2015-10-19 19:09:32 +02:00
2f51d20ee7
Added subscriber as allowed role for user model
2015-10-19 19:09:21 +02:00
9a727c8207
Tweaks to settings.py
2015-10-16 17:49:15 +02:00
03e8945c84
Set maxlength for node_type post content field
2015-10-15 20:25:58 +02:00
e0a82746d3
Removed print statements
2015-10-15 20:25:33 +02:00
7fbcee2ee7
Check for allowed_roles on get on the resource level
...
This hook was originally implemented only on the item leve, now we
check for every node at every GET request. The performance hit can be
significant.
2015-10-15 16:12:46 +02:00
4f6c0e27ce
Added url to post node properties
2015-10-15 14:49:15 +02:00
5be02920e2
New Blog and Post note types
2015-10-15 14:24:35 +02:00
834fcf2b82
Removed username display in procedural form for project
2015-10-15 02:37:43 +02:00
5d6327844b
New nodes_latest and nodes_featured for project node type
2015-10-14 01:38:59 +02:00
d26b3a738a
Tweaks for new user data structure
2015-10-13 23:17:00 +02:00
2ad8c5458a
New settings for user model
...
Removed first_name and last_name in favor of full_name. Also tweaked
response handling from validation endpoint.
2015-10-13 19:40:25 +02:00
f8e7e7ff12
Refactored files to files_collection for better clarity
...
Also, we inherit the backend property from the parent file when
creating variations.
2015-10-13 11:48:47 +02:00
165af08e12
Removed debug print
2015-10-13 11:48:11 +02:00
8d76898928
Fix for missing parent node_type for groups
2015-10-12 19:33:07 +02:00
9e9e7b82ca
Hiding content_type and file form fields for editing
2015-10-12 19:31:04 +02:00
05848ae71f
New allowed_methods value for nodes
...
If we specify the append_allowed_methods when running check permissions
on a node, the node will get a allowed_methods list containing the
methods granted to the current user for that resource.
2015-10-12 18:27:16 +02:00
42e0c0b3f2
Tweaks to the 000-default.conf
...
Commenting unused XSendFile statements.
2015-10-12 18:25:50 +02:00
7f6a853024
Fix for wrong permissions var name
2015-10-11 23:30:56 +02:00
72d2f9adfe
Public item methods for organisations and groups
2015-10-11 23:30:41 +02:00
1c011b45ff
Removed previous authentication logic
...
Should not have functional changes.
2015-10-11 22:52:57 +02:00
018ddfa20b
New authentication logic
...
We are replacing the existing mixed BaseAuth TokenAuth authentication
logic and permissions system with a more streamlined solution, based on
user id and groups checking against node_type stored permissions. Such
permissions can be overridden on the node level (and complement the
public GET operations on the node entry point).
2015-10-11 22:20:18 +02:00
474ddfc7af
Update to requirements.txt
...
Added ndg-httpsclient package to surppress SSL warnings.
2015-10-11 22:17:02 +02:00
2cc0d0a5b5
Use eve native database driver
2015-10-11 22:16:30 +02:00
919083e0e9
Fix to convert_properties, which was not being called properly
2015-10-10 16:27:02 +02:00
c2e707661b
Enabling XSendFile on the Apache conf
2015-10-08 18:28:17 +02:00
33a268ae81
Added libapache2-mod-xsendfile to production Dockerfile
2015-10-08 15:16:00 +02:00
9e790e3013
Actual implementation of send_from_directory
2015-10-08 15:06:12 +02:00
362e8faf7b
Replace send_static_file with send_from_directory
...
This change is needed since our static dir is outside of the
application domain.
2015-10-08 14:52:21 +02:00
19500f6a80
Updating config.py.example
2015-10-08 14:41:26 +02:00
af06a67d58
Renamed config value
...
From FILE_STORAGE to STORAGE_DIR to comply with the existing naming
schema.
2015-10-08 14:30:32 +02:00
6d32dc2894
Removed unused binary_files entry point
2015-10-08 12:46:38 +02:00
c27d4f830a
Tweaks to runserver.wsgi
2015-10-08 10:27:52 +02:00
61bf87188a
Explicit settings.py declaration
...
This is done so that we can load the settings.py on a wsgi instance.
2015-10-08 10:26:22 +02:00
14bc00a385
Tweaks to runserver.wsgi
2015-10-08 09:37:45 +02:00
70dc0a2175
Minor refactoring of authentication functions
2015-10-08 09:24:34 +02:00
0d7f92006e
Cleanup of settings.py
2015-10-08 09:24:02 +02:00
5d8bd6dd76
Cleanup of runserver.wsgi
2015-10-08 09:23:52 +02:00
06b7df4d5b
Tweaks to default.conf for Apache
2015-10-07 20:13:11 +02:00
d6ea8ea1dc
New runserver.wsgi for running on Apache
2015-10-07 20:01:42 +02:00
b4b995d108
Adding flu to requirements.txt
2015-10-07 19:58:54 +02:00
132cd15bcf
Update to Dockerfile
...
Was missing Apache defaults.
2015-10-07 19:34:46 +02:00
dc215134fc
New Dockerfiles for development and production
2015-10-07 11:10:58 +02:00
1bda2142cd
Updates to manage.py
...
Tweaks to node_type comments validation code.
2015-10-06 17:37:07 +02:00
a867aee026
Add libffi-dev to Dockerfile
2015-10-06 17:37:07 +02:00
ae5797146d
Email attribute for organization
2015-10-05 19:57:53 +02:00
44302b6623
Introducing the comment node_type
2015-10-05 19:55:56 +02:00
53f881e96c
Google Cloud Storage support
...
We introduce a new node_type, storage, which can support different file
storage backends and makes them available for browsing via dedicated
entry points in the application. We intend to keep pillar storage
agnostic and support both internal/local storages as well as
remote/hosted solutions.
2015-10-03 17:07:14 +02:00
89a9509657
Improved debug print for node importer
2015-09-25 10:46:28 +02:00
c2e0ae4002
File processing
...
Introducing the asset of type file creation. This involves making a
node collection entry of type asset, as well as a file collection
entry, plus all the needed variations if such file is an image or a
video. Further, depending on the storage backend (pillar or other) we
synchronise the files there using rsync. Currently this functionality
is available only via pillar-web, since a web interface is needed to
upload the file in a storage folder, which is shared between the two
applications.
2015-09-24 15:45:57 +02:00
