Skip to content

Commit

Permalink
⬆️ update OAF to 0.9.0
Browse files Browse the repository at this point in the history
  • Loading branch information
Coperh committed Nov 15, 2024
1 parent a584d94 commit a3b81f1
Show file tree
Hide file tree
Showing 6 changed files with 36 additions and 9 deletions.
17 changes: 13 additions & 4 deletions CHANGELOG.rst
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,15 @@
Change history
==============

2.x.x
=====
*TBD*

**New features**

* Updated OAF version to 0.9.0. This upgrade allows admin users managing their sessions through the admin.


2.4.3 (2024-09-18)
------------------

Expand Down Expand Up @@ -61,7 +70,7 @@ Change history
**Bugfixes and QOL**

* added Celery healthcheck
* made user emails unique to prevent two users logging in with the same email,
* made user emails unique to prevent two users logging in with the same email,
causing an error

**Project maintenance**
Expand All @@ -70,8 +79,8 @@ Change history

.. warning::

User email addresses will now be unique on a database level. The database
migration will fail if there are already two or more users with the same
User email addresses will now be unique on a database level. The database
migration will fail if there are already two or more users with the same
email address. You must ensure this is not the case before upgrading.

2.4.0 (2024-07-05)
Expand All @@ -80,7 +89,7 @@ Change history
**New features**

* added superuser permissions to API (#369)
* added `setup_configuration` management command which can configure API with
* added `setup_configuration` management command which can configure API with
environment variables (#368)
* added `Record.data` as a search filter in the Admin (#381)
* displayed `Objecttype.uuid` in the Objecttype and Object admin pages (#315)
Expand Down
5 changes: 3 additions & 2 deletions docs/installation/config.rst
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ Available environment variables
Required
--------

* ``SECRET_KEY``: Secret key that's used for certain cryptographic utilities. .
* ``SECRET_KEY``: Secret key that's used for certain cryptographic utilities. You should generate one via `miniwebtool <https://www.miniwebtool.com/django-secret-key-generator>`_.
* ``ALLOWED_HOSTS``: a comma separated (without spaces!) list of domains that serve the installation. Used to protect against Host header attacks. Defaults to: ``(empty string)``.
* ``CACHE_DEFAULT``: redis cache address for the default cache (this **MUST** be set when using Docker). Defaults to: ``localhost:6379/0``.
* ``CACHE_AXES``: redis cache address for the brute force login protection cache (this **MUST** be set when using Docker). Defaults to: ``localhost:6379/0``.
Expand Down Expand Up @@ -86,7 +86,8 @@ Optional
* ``LOG_LEVEL``: control the verbosity of logging output. Available values are ``CRITICAL``, ``ERROR``, ``WARNING``, ``INFO`` and ``DEBUG``. Defaults to: ``WARNING``.
* ``LOG_QUERIES``: enable (query) logging at the database backend level. Note that you must also set ``DEBUG=1``, which should be done very sparingly!. Defaults to: ``False``.
* ``LOG_REQUESTS``: enable logging of the outgoing requests. Defaults to: ``False``.
* ``SESSION_COOKIE_SAMESITE``: The value of the SameSite flag on the session cookie. This flag prevents the cookie from being sent in cross-site requests thus preventing CSRF attacks and making some methods of stealing session cookie impossible.Currently interferes with OIDC. Keep the value set at Lax if used. Defaults to: ``Lax``.
* ``SESSION_COOKIE_AGE``: For how long, in seconds, the session cookie will be valid. Defaults to: ``1209600``.
* ``SESSION_COOKIE_SAMESITE``: The value of the SameSite flag on the session cookie. This flag prevents the cookie from being sent in cross-site requests thus preventing CSRF attacks and making some methods of stealing session cookie impossible. Defaults to: ``Strict``.
* ``CSRF_COOKIE_SAMESITE``: The value of the SameSite flag on the CSRF cookie. This flag prevents the cookie from being sent in cross-site requests. Defaults to: ``Strict``.
* ``ENVIRONMENT``: An identifier for the environment, displayed in the admin depending on the settings module used and included in the error monitoring (see ``SENTRY_DSN``). The default is set according to ``DJANGO_SETTINGS_MODULE``.
* ``SUBPATH``: If hosted on a subpath, provide the value here. If you provide ``/gateway``, the component assumes its running at the base URL: ``https://somedomain/gateway/``. Defaults to an empty string. Defaults to: ``None``.
Expand Down
5 changes: 4 additions & 1 deletion requirements/base.txt
Original file line number Diff line number Diff line change
Expand Up @@ -89,6 +89,7 @@ django==4.2.15
# django-relativedelta
# django-rest-framework-condition
# django-sendfile2
# django-sessionprofile
# django-setup-configuration
# django-simple-certmanager
# django-solo
Expand Down Expand Up @@ -145,6 +146,8 @@ django-rest-framework-condition==0.1.1
# via commonground-api-common
django-sendfile2==0.7.0
# via django-privates
django-sessionprofile==3.0.0
# via open-api-framework
django-setup-configuration==0.1.0
# via open-api-framework
django-simple-certmanager==1.4.1
Expand Down Expand Up @@ -241,7 +244,7 @@ notifications-api-common==0.2.2
# via
# -r requirements/base.in
# commonground-api-common
open-api-framework==0.8.1
open-api-framework==0.9.0
# via -r requirements/base.in
orderedmultidict==1.0.1
# via furl
Expand Down
7 changes: 6 additions & 1 deletion requirements/ci.txt
Original file line number Diff line number Diff line change
Expand Up @@ -138,6 +138,7 @@ django==4.2.15
# django-relativedelta
# django-rest-framework-condition
# django-sendfile2
# django-sessionprofile
# django-setup-configuration
# django-simple-certmanager
# django-solo
Expand Down Expand Up @@ -228,6 +229,10 @@ django-sendfile2==0.7.0
# via
# -r requirements/base.txt
# django-privates
django-sessionprofile==3.0.0
# via
# -r requirements/base.txt
# open-api-framework
django-setup-configuration==0.1.0
# via
# -r requirements/base.txt
Expand Down Expand Up @@ -402,7 +407,7 @@ notifications-api-common==0.2.2
# via
# -r requirements/base.txt
# commonground-api-common
open-api-framework==0.8.1
open-api-framework==0.9.0
# via -r requirements/base.txt
orderedmultidict==1.0.1
# via
Expand Down
7 changes: 6 additions & 1 deletion requirements/dev.txt
Original file line number Diff line number Diff line change
Expand Up @@ -149,6 +149,7 @@ django==4.2.15
# django-relativedelta
# django-rest-framework-condition
# django-sendfile2
# django-sessionprofile
# django-setup-configuration
# django-simple-certmanager
# django-solo
Expand Down Expand Up @@ -243,6 +244,10 @@ django-sendfile2==0.7.0
# via
# -r requirements/base.txt
# django-privates
django-sessionprofile==3.0.0
# via
# -r requirements/base.txt
# open-api-framework
django-setup-configuration==0.1.0
# via
# -r requirements/base.txt
Expand Down Expand Up @@ -424,7 +429,7 @@ notifications-api-common==0.2.2
# via
# -r requirements/base.txt
# commonground-api-common
open-api-framework==0.8.1
open-api-framework==0.9.0
# via -r requirements/base.txt
orderedmultidict==1.0.1
# via
Expand Down
4 changes: 4 additions & 0 deletions src/objects/fixtures/default_admin_index.json
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,10 @@
[
"two_factor_webauthn",
"webauthndevice"
],
[
"sessionprofile",
"sessionprofile"
]
]
}
Expand Down

0 comments on commit a3b81f1

Please sign in to comment.