Commit Graph

2704 Commits

Author SHA1 Message Date
Andras Bacsai
c1bee32f09 feat(deployment): introduce 'use_build_secrets' setting for enhanced security during Docker builds and update related logic in deployment process 2025-09-17 10:34:38 +02:00
Andras Bacsai
97428a4a80 feat(executions): add 'Load All' button to view all logs and implement loadAllLogs method for complete log retrieval 2025-09-15 11:05:29 +02:00
Andras Bacsai
e4c3389e12 feat(sentinel): add slide-over for viewing Sentinel logs and custom Docker image input for development 2025-09-14 19:22:03 +02:00
Andras Bacsai
8056d7fcac fix(navbar): restrict subscription link visibility to admin users in cloud environment 2025-09-13 15:08:52 +02:00
Andras Bacsai
8e155f25b3 refactor(environment): streamline environment variable handling by replacing sorting methods with direct property access and enhancing query ordering for improved performance 2025-09-12 12:09:03 +02:00
Andras Bacsai
20ad2165e7 feat(environment): introduce 'is_buildtime_only' attribute to environment variables for improved build-time configuration 2025-09-11 17:38:16 +02:00
Andras Bacsai
6d477ff593 feat(execute-container): enhance container command form with auto-connect feature for single container scenarios 2025-09-11 17:37:40 +02:00
Andras Bacsai
5b3b4bbc43 refactor(environment): remove 'is_build_time' attribute from environment variable handling across the application to simplify configuration 2025-09-11 16:51:56 +02:00
Andras Bacsai
13af4811f5 feat(storages): add method to retrieve the first storage ID for improved stability in storage display 2025-09-11 13:41:22 +02:00
Andras Bacsai
4ac89f2ad3 feat(application): display parsing version in development mode and clean up domain conflict modal markup 2025-09-11 10:58:59 +02:00
Andras Bacsai
f64622c764 refactor(models): remove 'is_readonly' attribute from multiple database models for consistency 2025-09-10 19:34:49 +02:00
Andras Bacsai
fc7770100b refactor(application-source): improve layout and accessibility of Git repository links in the application source view 2025-09-10 18:29:52 +02:00
Andras Bacsai
1ca94b90da fix(proxy): replace CheckConfiguration with GetProxyConfiguration and SaveConfiguration with SaveProxyConfiguration for improved clarity and consistency in proxy management 2025-09-09 12:52:19 +02:00
Andras Bacsai
339118558c feat(settings): add option to restrict PR deployments to repository members and contributors 2025-09-05 14:30:51 +02:00
Andras Bacsai
9db8b62219 feat(ui): display current version in settings dropdown and update UI accordingly 2025-09-01 16:23:14 +02:00
Andras Bacsai
84e692fb43 fix(ui): add cursor pointer to upgrade button for better user interaction 2025-08-31 21:01:31 +02:00
Hadi Baalbaki
edbc923c1a fix(ui): transactional email settings link on members page (#6491) 2025-08-29 18:54:12 +02:00
Andras Bacsai
80499a03d8 feat(domains): implement domain conflict detection and user confirmation modal across application components 2025-08-28 10:52:41 +02:00
Andras Bacsai
754f78bcfd fix(compose): temporary allow to edit volumes in apps (compose based) and services 2025-08-27 21:36:05 +02:00
Andras Bacsai
cde528bf5e fix(parsers): enhance volume string handling by preserving mode in application and service parsers. Update related unit tests for validation. 2025-08-27 16:54:49 +02:00
Andras Bacsai
d98b7ab7e0 feat(policies): add EnvironmentVariablePolicy for managing environment variables ( it was missing ) 2025-08-26 21:44:36 +02:00
Andras Bacsai
63fcc0ebc3 feat(acl): Change views/backend code to able to use proper ACL's later on. Currently it is not enabled. 2025-08-26 10:27:38 +02:00
Andras Bacsai
5a88377a67 chore(cleanup): remove unused GitLab view files for change, new, and show pages 2025-08-26 10:27:38 +02:00
Andras Bacsai
990331cd74 feat(validation): add ValidIpOrCidr rule for validating IP addresses and CIDR notations; update API access settings UI and add comprehensive tests 2025-08-26 10:27:38 +02:00
Andras Bacsai
ae1b0de561 feat(auth): enhance authorization checks in Livewire components for resource management 2025-08-26 10:27:38 +02:00
Andras Bacsai
b5fe5dd909 feat(auth): refine authorization checks for S3 storage and service management 2025-08-23 18:50:50 +02:00
Andras Bacsai
8408205955 feat(validation): add custom validation rules for Git repository URLs and branches
- Introduced `ValidGitRepositoryUrl` and `ValidGitBranch` validation rules to ensure safe and valid input for Git repository URLs and branch names.
- Updated relevant Livewire components and API controllers to utilize the new validation rules, enhancing security against command injection and invalid inputs.
- Refactored existing validation logic to improve consistency and maintainability across the application.
2025-08-22 14:38:21 +02:00
Andras Bacsai
841e33bac0 fix(github-deploy-key): update background color for selected private keys in deployment key selection UI 2025-08-22 14:12:24 +02:00
Andras Bacsai
6772cfe603 feat(auth): implement authorization for Docker and server management
- Added authorization checks in Livewire components related to Docker and server management to ensure only authorized users can create, update, and manage Docker instances and server settings.
- Introduced new policies for StandaloneDocker and SwarmDocker to define access control rules based on user roles and team associations.
- Updated AuthServiceProvider to register the new policies, enhancing security and access control for Docker functionalities and server management operations.
2025-08-22 14:04:25 +02:00
Andras Bacsai
6c75e89303 fix(errors): update error pages to provide navigation options
- Modified error pages (400, 401, 402, 403, 404, 419, 429, 500, 503) to replace "Go back home" button with "Go back" and added a "Dashboard" button for improved navigation.
- Updated links to use `url()->previous()` for returning to the previous page and `route('dashboard')` for accessing the dashboard directly.
2025-08-22 14:00:01 +02:00
Andras Bacsai
a6fc39e798 feat(git-settings): add support for shallow cloning in application settings
- Introduced a new boolean setting `is_git_shallow_clone_enabled` to the application settings model.
- Updated the `Advanced` component to include a checkbox for enabling shallow cloning.
- Modified the `setGitImportSettings` and `generateGitImportCommands` methods to handle shallow clone logic.
- Created a migration to add the new setting to the database schema.
- Enhanced the deployment process to utilize shallow cloning for improved performance.
2025-08-21 10:16:57 +02:00
Andras Bacsai
d832abaa35 fix(sanitization): enhance DOMPurify hook to remove Alpine.js directives for improved XSS protection
- Added logic to remove Alpine.js directives (x-*, @*, :*) from sanitized nodes to prevent potential XSS vulnerabilities.
- Maintained existing link sanitization to ensure safe handling of anchor elements.
2025-08-19 18:54:16 +02:00
Andras Bacsai
46440f2f8a fix(settings-dropdown): adjust unread count badge size and display logic for better consistency 2025-08-19 14:29:13 +02:00
Andras Bacsai
5c4a265542 refactor(validation): implement centralized validation patterns across components
- Introduced `ValidationPatterns` class to standardize validation rules and messages for various fields across multiple components.
- Updated components including `General`, `StackForm`, `Create`, and `Show` to utilize the new validation patterns, ensuring consistent validation logic.
- Enhanced error messages for required fields and added regex validation for names and descriptions to improve user feedback.
- Adjusted styling in the `create.blade.php` view for better visual hierarchy.
2025-08-19 14:15:31 +02:00
Andras Bacsai
eaee87d008 fix(tags): update tag display to limit name length and adjust styling 2025-08-19 14:15:19 +02:00
Andras Bacsai
e0b5421eb8 fix(select): remove unnecessary sanitization for logo rendering 2025-08-19 14:15:14 +02:00
Andras Bacsai
5725db95f9 fix(notification): update unread count display and improve HTML rendering 2025-08-19 14:14:16 +02:00
Andras Bacsai
0bb9ee4327 feat(sanitization): enhance HTML sanitization with improved DOMPurify configuration
- Updated the `sanitizeHTML` function to include additional sanitization options for better security.
- Introduced a URL regex to validate links and added a hook to manage `rel` attributes for external links.
- Ensured that only safe attributes and tags are retained, further preventing XSS vulnerabilities.
2025-08-19 12:00:23 +02:00
Andras Bacsai
6727fd958f feat(sanitization): integrate DOMPurify for HTML sanitization across components
- Added DOMPurify library to sanitize HTML content in toast notifications and other components to prevent XSS vulnerabilities.
- Updated relevant components to use the new `sanitizeHTML` function for safe rendering of HTML content.
- Ensured that only allowed tags and attributes are permitted in sanitized output.
2025-08-19 10:34:54 +02:00
Andras Bacsai
f02c36985f fix(modal): enhance confirmation text handling 2025-08-19 00:20:53 +02:00
Andras Bacsai
ee502b9f76 feat(email): implement email change request and verification process
- Added functionality for users to request an email change, including generating a verification code and setting an expiration time.
- Implemented methods in the User model to handle email change requests, code validation, and confirmation.
- Created a new job to update the user's email in Stripe after confirmation.
- Introduced rate limiting for email change requests and verification attempts to prevent abuse.
- Added a new notification for email change verification.
- Updated the profile component to manage email change requests and verification UI.
2025-08-18 14:54:08 +02:00
Andras Bacsai
91cc52f81e feat(dev patches): add functionality to send test email with patch data in development mode 2025-08-17 17:58:38 +02:00
Andras Bacsai
58d865c751 refactor(previews): improve layout and add deployment/application logs links for previews 2025-08-17 15:34:41 +02:00
Andras Bacsai
0dada987a2 feat(backup): add disable local backup option and related logic for S3 uploads 2025-08-17 12:34:20 +02:00
Andras Bacsai
a93bc372cd refactor(links): replace inline SVGs with reusable external link component for consistency and improved maintainability 2025-08-12 15:01:58 +02:00
Andras Bacsai
d3059d5514 fix(terminal): update text color for terminal availability message and improve readability 2025-08-12 10:07:11 +02:00
Andras Bacsai
a2ef545b6b feat(changelog): implement automated changelog fetching from GitHub and enhance changelog read tracking 2025-08-12 10:07:11 +02:00
Andras Bacsai
39f25573bf refactor(templates): update service template file handling to use dynamic file name from constants 2025-08-12 10:06:19 +02:00
Andras Bacsai
022cc7c973 enhance(settings-dropdown): add icons to buttons for improved UI in settings dropdown 2025-08-12 10:06:19 +02:00
Andras Bacsai
cbd2c88cb4 fix(constants): update 'Change Log' to 'Changelog' in settings dropdown 2025-08-12 10:06:19 +02:00