Dispatcharr/apps/accounts
SergeantPanda 8afaa01184
Some checks are pending
CI Pipeline / prepare (push) Waiting to run
CI Pipeline / docker (amd64, ubuntu-24.04) (push) Blocked by required conditions
CI Pipeline / docker (arm64, ubuntu-24.04-arm) (push) Blocked by required conditions
CI Pipeline / create-manifest (push) Blocked by required conditions
Build and Push Multi-Arch Docker Image / build-and-push (push) Waiting to run
security: Extended rate limiting to the session-auth login alias (POST /api/accounts/auth/login/). It now delegates entirely to TokenObtainPairView, inheriting its throttle, network access check, and audit logging, and returns JWT tokens instead of a session cookie (the session-based response was unusable since SessionAuthentication is not in DEFAULT_AUTHENTICATION_CLASSES). Both endpoints share the same "login" throttle scope, so attempts across either path count against the same per-IP limit.
2026-04-10 19:54:10 -05:00
..
migrations fleshed out user limits and termination logic 2026-03-25 17:33:26 -04:00
__init__.py Initial commit 2025-02-18 11:14:09 -06:00
admin.py Remove is_Active reference to user accounts 2026-02-23 18:39:54 -06:00
api_urls.py backend work for api key authentication 2026-02-21 13:45:07 -05:00
api_views.py security: Extended rate limiting to the session-auth login alias (POST /api/accounts/auth/login/). It now delegates entirely to TokenObtainPairView, inheriting its throttle, network access check, and audit logging, and returns JWT tokens instead of a session cookie (the session-based response was unusable since SessionAuthentication is not in DEFAULT_AUTHENTICATION_CLASSES). Both endpoints share the same "login" throttle scope, so attempts across either path count against the same per-IP limit. 2026-04-10 19:54:10 -05:00
apps.py user management, user levels, user level channel access 2025-05-18 11:19:34 -04:00
authentication.py Enhancement: Enhanced Swagger UI authorization dialog: registered a custom OpenApiAuthenticationExtension for ApiKeyAuthentication so drf-spectacular now generates an ApiKeyAuth (apiKey) entry alongside jwtAuth. Both entries include descriptive text linking to the relevant endpoints (/api/accounts/token/, /api/accounts/api-keys/generate/, /api/accounts/api-keys/revoke/). 2026-04-10 18:29:13 -05:00
forms.py Initial commit 2025-02-18 11:14:09 -06:00
models.py fleshed out user limits and termination logic 2026-03-25 17:33:26 -04:00
permissions.py looooots of updates for user-management, initial commit of access control 2025-05-31 18:01:46 -04:00
serializers.py fleshed out user limits and termination logic 2026-03-25 17:33:26 -04:00
signals.py user management, user levels, user level channel access 2025-05-18 11:19:34 -04:00
tests.py Remove user account disable/enable UI (keep backend guards) 2026-02-22 20:02:08 -06:00
urls.py Added Super User Creator 2025-03-03 14:57:38 -06:00