Pēteris Caune
1ca4caa3a8
Update the set_password view to use update_session_auth_hash
Changing user's password logs themselves out. To avoid that,
we were logging the user back in right after changing the password.
I recently discovered update_session_auth_hash, which seems to
be the proper way to do this.
Docs: https://docs.djangoproject.com/en/3.1/topics/auth/default/#session-invalidation-on-password-change
4 years ago
Pēteris Caune
adb7702f39
Rename login_tfa to login_webauthn
4 years ago
Pēteris Caune
7639f0dd69
Add test cases for the login_tfa view
4 years ago
Pēteris Caune
d0f327b213
Add Base64Field field (base64-encoded binary data)
4 years ago
Pēteris Caune
839c309cf7
Refactor for testability, add more test cases
4 years ago
Pēteris Caune
155a1f132b
Simplify super() calls in tests
4 years ago
Pēteris Caune
155226d82a
Add tests for sudo mode
4 years ago
Pēteris Caune
ecf964ea3b
Remove a verify_origin workaround
4 years ago
Pēteris Caune
9f58ebfd3e
Hook up a 2FA check after a password or email link authentication
4 years ago
Pēteris Caune
64be87137b
Add a two-factor authentication form (WIP)
4 years ago
Pēteris Caune
2ac0f87560
Implement a "Remove Security Key" feature
4 years ago
Pēteris Caune
42497fe91a
Add rate limiting to the sudo code form
4 years ago
Pēteris Caune
2c3286c280
Improve the "add security key" UX, require sudo mode
4 years ago
Pēteris Caune
e3aedd3b03
Add require_sudo_mode decorator
Planning to use it for sensitive operations (add/remove security keys),
change email, change password, close account.
The decorator sends a six-digit confirmation code to user's email
and renders a form for entering it back. If the user enters the
correct code, the decorators sets a sudo=active marker in
user's session, valid for 30 minutes.
4 years ago
Pēteris Caune
03ea725612
Add Credential.created field
4 years ago
Pēteris Caune
53688f1d87
Add error handling on the client side, use Django form API
4 years ago
Pēteris Caune
1eaa216d3a
Add experimental code for registering Webauthn credentials
4 years ago
Pēteris Caune
cdd2e98bd0
Remove USE_I18N and USE_L10N from settings
They have the default values and so are redundant.
4 years ago
Pēteris Caune
816c158744
Fix code formatting in the Notification model
4 years ago
Pēteris Caune
d5502c50ca
Add retries to the the email sending logic
When sending email using Django's default email
backend (SMTP), and if there is a network issue, the backend
can throw SMTPServerDisconnected.
This commit adds a retry logic which retries sending the
email two times when SMTPServerDisconnected is thrown.
4 years ago
Pēteris Caune
0b685e8b5a
Disable retries when testing webhook integration
Normally, when a webhook call fails (timeout, connection
error, non-2xx response), the HTTP request is retried up to two
times (so up to 3 times total). This is useful when sending
actual notifications, in case the webhook target has a temporary
glitch.
When interactively testing a webhook integration
("Send Test Notification" in the
"Integrations" page), we would prefer to see any errors ASAP
on the screen instead of retrying and so possibly swallowing them.
One specific use case is webhook targets that take long time to
generate a response. "Send Test Notification" is synchronous,
meaning that the user could be stuck for
5 x 3 = 15 seconds waiting for the test HTTP request to time out
three times.
4 years ago
Pēteris Caune
f7e004b2ea
Improve phone number sanitization: remove spaces and hyphens
4 years ago
Pēteris Caune
81e59ac553
Add support for script's exit status in ping URLs
Fixes : #429
4 years ago
Pēteris Caune
6f56ed7f92
Reduce the number of SQL queries used in the "Get Checks" API call
4 years ago
Pēteris Caune
078577cbb7
Update the read-only dashboard's CSS for better mobile support
Fixes : #442
4 years ago
Pēteris Caune
a37e83aca8
Update AddSmsForm to remove any invisible unicode characers
4 years ago
Pēteris Caune
7534f1856f
Add testcases for setting channels in the "Create Check" API call
4 years ago
Pēteris Caune
7e56156d32
Optimize the "Update Check" API call
In the "Update Check" API call, if no fields have changed,
don't save the changes to the database.
4 years ago
Pēteris Caune
0e77064c44
Update API to allow specifying channels by names
Fixes : #440
4 years ago
Pēteris Caune
20008a1d7e
Fix wording
4 years ago
Pēteris Caune
71d7b46379
Add a tooltip to the 'confirmation link' label
Fixes : #436
4 years ago
Pēteris Caune
a10215ce65
Update CHANGELOG for 1.17.0 release
4 years ago
Pēteris Caune
463ec8c988
Set the "title" and "summary" fields in MS Teams notifications
Fixes : #435
4 years ago
Pēteris Caune
63beeb05a1
Add missing slashes
4 years ago
Pēteris Caune
a13b44284e
Django 3.1.2
4 years ago
Pēteris Caune
1967c712ca
Add Matrix setup instructions in README cc: #427
4 years ago
Pēteris Caune
fd8da1b642
Update screenshots in Matrix setup instructions
4 years ago
Pēteris Caune
05c81e0a41
Escape markdown in MS Teams notifications. cc: #426
4 years ago
Pēteris Caune
b64c8d1cb8
API support for setting the allowed HTTP methods for making ping requests
4 years ago
Pēteris Caune
c13f65e118
Grammar and style fixes.
4 years ago
Pēteris Caune
b4729cdb57
Grammar and style fixes.
4 years ago
Pēteris Caune
e63aa9fe8d
Grammar and style fixes, updated illustration.
4 years ago
Pēteris Caune
66a1a108bf
When decoding inbound emails, decode encoded headers. Fixes #420
4 years ago
Pēteris Caune
bd98174d4c
Fix missing Resume button. Fixes #421
4 years ago
Pēteris Caune
0f0930fbf5
Merge pull request #419 from healthchecks/snyk-fix-3b4d7e5e456fc8fadd61239890135796
[Snyk] Security upgrade django from 3.1 to 3.1.1
4 years ago
snyk-bot
c84626040c
fix: requirements.txt to reduce vulnerabilities
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-609368
- https://snyk.io/vuln/SNYK-PYTHON-DJANGO-609369
4 years ago
Pēteris Caune
0362df55ba
Docs: update the "Filtering Rules" section with the new options.
4 years ago
Pēteris Caune
ad720af242
Rename "hc-p-channels" to "hc-channels"
4 years ago
Pēteris Caune
5ebb5958ea
Remove unused "project" parameter in Pushbullet tests.
4 years ago
Pēteris Caune
9ba9032389
Cleaner OAuth redirect_uri generation
4 years ago