Matthias Mair
8bb03b7afd
feat(backend): add oauth2 ( #9333 )
...
* feat(backend): add oauth2
* fix import
* Add inventree roles
* refactor to make lookup more efficient
* fix single scope definitions
* cleanup
* fix schema
* reduce auth methods
* fix OAuth validator
* re-enable token and basic auth again
* Add models to role mapping
* change scope args
* add debug step for schema generation
* add oauth config for schema generation
* improve token -> permission mapping
* fix req
* extend checks to ensure normal auth also passes
* fix api version
* fix ignore
* fix rule name
* bump api version
* remove old modelref
* move scope definition
* make test results easier to work with
* add tests to ensure scopes are in sync with rulesets
* fix docstring
* fix various permissions and their mapping to oauth
* refactor
* simplify
* fix permission mapping
* ignore failure cases
* fix unauthenticated access
* flag oAuth2 till it is done
* Add OIDC support
* add RSA key generation and docs
* fix test
* move imports
* update ignore
* feat(backend): Add API Schema stats
* add scope stats
* fix name
* fix scope output
* feat(backend): test custom command
* add warning for unknown scopes
* reduce diff in launch.json
* cleanup diff
* add error code for ruleset / scope issues
* update structure
* add oauth docs
* add experimetnal feature docs
* simplify metadata endpoint
* add importer model
* refactor(backend): simplify metadata endpoint
* fix imports
* simplify even more
* remove unneeded schema tooling
* fix permission mappings
* fix testing
* fix role calculations
* fix mapping
* remove importer change to unblock this
* remove importer scope everywhere
* fix merge conflict in test
* add missing models
* fix api version
* fix OASToken matcher
* revert permission class change
* reduce size of test log by writing schema
* fix permissions
* fix file path
* extend schema to remove need for TokenMatchesOASRequirements
* cleanup permissions file
* add base object permission
2025-04-18 19:27:32 +10:00
Matthias Mair
2712f30382
fix: ci security issues ( #9451 )
...
* fix possible code injection errors
* pin n
2025-04-04 09:04:06 +11:00
Oliver
b116e09717
Docker updates ( #9414 )
...
* Typo fix
* Examples to .env file
2025-03-31 07:45:53 +11:00
Oliver
99ec486b79
[Docker] Update node version ( #9383 )
...
* Update node version
* Install nvm
* Use n instead of nvm
* Use same approach in devcontainer
* nvm -> npm
* Split commands
* Fix typo
* Workaround : install bash
* Tweak playwright tests
* Bump number of retries
* Update deps
* Only one worker
* SEcurity fix
* Adjust
2025-03-27 01:25:58 +11:00
Matthias Mair
9bc0d599bc
chore: improve ci security ( #9384 )
...
* pin docker files
* pin github actions
* enforce hashes that are already present
* run style checks on cicd changes
2025-03-26 13:04:45 +11:00
Matthias Mair
2bc2cb6363
chore: bump container deps ( #9329 )
2025-03-18 08:08:48 +11:00
Oliver
191c0b1007
Docker Compose Fix ( #9311 )
...
* Fix postgres version in docker-compose file
- Pin to version 16
- Compatible with the alpine image
* Add check for backup and restore procedures
2025-03-16 10:43:40 +11:00
Oliver
15ad62494f
[Docker] Alpine image fix ( #9118 )
...
* Revert to alpine3:20 / postgres:16
* Remove old hack
- No longer needed as we are using python 3.11
* Update package requirements for devcontainer
Also fixes some docker warnings from the alpine Dockerfile
* Specify SITE_URL
* Reduce log output during docker image testing
2025-02-21 18:02:39 +11:00
Oliver
6f939931ca
Docker postgres fix ( #9041 )
...
* Update docker image
- Move from alpine 3.19 to alpine 3.21
- Move from postgres13_client to postgres17_client
* Update docker-compose file
- Move from postgres:13 to postgres:16
- Move from redis:7.0 to redis:7-alpine
* Update docs
* Update docker docs
* Separate Dockerfile for devcontainer
- Debian based (python3.11-bookworm)
- Install essential system packages
* Instal postgres client
* Further devcontainer updates
- Bump postgresql image from 13 to 15
- Store psql data in the dev/psql directory
- Install required frontend packages
* Use --host mode for frontend server
* Tweak devcontainer docs
* Bump pre commit config file
* Revert "Bump pre commit config file"
This reverts commit bbfd875ac8ea682bb7e454e5ea349943a887b6f4.
2025-02-15 08:00:12 +11:00
Matthias Mair
73b46c1c15
bump python deps ( #9032 )
2025-02-05 09:20:29 +11:00
Matthias Mair
c57b51cb0e
chore(backend): bump deps ( #8905 )
...
* bump backend reqs
* raq down cryptography
* fix req
* bump api version
2025-01-19 17:50:22 +11:00
Matthias Mair
64b9365947
chore: bump pre commit ( #8904 )
...
* bump pre-commit
* auto-fixes
* ignore error
* fix a few more issues
* fix pattern
2025-01-18 09:38:00 +11:00
Oliver
0614f01247
Docker fix ( #8835 )
...
* Fix server command in Dockerfile
* Ensure invoke is installed into the venv
* Run extra check in docker build step
* Improve documentation
* Intercept ModuleNotFoundError
- Clear error message
* Docs updates
* Add extra check to dev docker build
* Cleanup tasks.py
* Prevent double activation of venv
* Change order of operations
---------
Co-authored-by: Matthias Mair <code@mjmair.com>
2025-01-06 09:46:16 +11:00
Oliver
decccf8163
Fix for buggy Caddyfile ( #8830 )
2025-01-05 22:18:24 +11:00
Oliver
74cd0b9aed
Update .env file ( #8799 )
...
* Update .env file
- No functional changes
- Improved file comments
* Update .env
Improved comment
2024-12-31 14:44:34 +11:00
Oliver
ecc1c937ed
Caddyfile documentation ( #8798 )
...
* basic mixin file
* Add basic check for model type support
* Enhanced documentation for Caddyfile
* Additional documentation around proxy server
* Remove code from other PR
2024-12-31 13:35:51 +11:00
Matthias Mair
dd83735710
Fix vulnerable dependencies ( #8655 )
...
* bump container reqs
* bump vul frontend dep
* fix tests
2024-12-12 08:38:11 +11:00
Matthias Mair
594dc49b84
Bump backend deps ( #8559 )
...
* bump backend deps
* bump api
2024-11-26 09:25:06 +11:00
Matthias Mair
0f194af585
Fix spelling of InvenTree in code base ( #8561 )
...
* fix spelling of InvenTree in code
* fix spelling in frontend
2024-11-26 08:29:47 +11:00
Oliver
33a686ace8
Enable redis by default for docker setup ( #8501 )
...
* Enable redis by default for docker setup
* Bring cache up before server
2024-11-17 00:14:30 +11:00
Matthias Mair
8d27144f78
bump container deps ( #8337 )
2024-10-23 09:52:35 +11:00
Oliver
d75ef7c9c9
Revert int.worker to worker ( #8126 )
...
- Prevent existing docker compose installs from breaking
2024-09-16 11:07:24 +10:00
Matthias Mair
e3205184be
Add namespaces to tasks ( #7904 )
...
* Namespaces for invoke tasks
Fixes #7852
* adjust various places that call re-namespaced tasks
* use full invoke command
easier for future refactors
* fix call name
* move worker to int
* adapt calls in tasks
* fix changed path
* ignore localhost links
* Avoid using internal names
2024-09-05 13:04:57 +10:00
Matthias Mair
d647471588
Chore: Bump python requirements ( #7961 )
...
* bump requirements
* lower bound on pydyf
2024-08-23 23:03:31 +00:00
Oliver
70a52c9385
Update default fonts for docker image ( #7881 )
...
* Update default fonts for docker image
Ref: https://github.com/inventree/InvenTree/issues/7737
* Remove extra fonts from Dockerfile
2024-08-14 21:16:07 +10:00
Matthias Mair
41f6dd69b8
Adjust docker labels to modern OCI schema ( #7773 )
...
* adapt namespace
* add new labels
* make baseimage available for labels
* remove unneeded ending
* ensure image name is correct for ghcrio
* ensure the right outputs are used
* fix reference
* fix assigment
* only push docker reg image if authd
* swith back to env
this gets provided by the version ci script
* make repo targets changeable
* make readable
* revert ghcr.io change
2024-08-11 11:03:18 +10:00
dependabot[bot]
a5564090bb
Bump django from 4.2.14 to 4.2.15 in /src/backend ( #7827 )
...
* Bump django from 4.2.14 to 4.2.15 in /src/backend
Bumps [django](https://github.com/django/django ) from 4.2.14 to 4.2.15.
- [Commits](https://github.com/django/django/compare/4.2.14...4.2.15 )
---
updated-dependencies:
- dependency-name: django
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
* fix formatting
* bump everywhere
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Matthias Mair <code@mjmair.com>
2024-08-08 17:17:51 +10:00
Josip Medved
c33e91a42b
Removed obsoleted version element from docker-compose examples ( #7760 )
2024-07-30 21:12:02 +10:00
Oliver
d5afc37264
Revert postgres version to 13 ( #7717 )
...
* Adjust playwright test
* Update docker compose for devcontainer
* Revert docker container changes
* Update notes
* Revert base alpine version
2024-07-24 11:02:25 +10:00
Matthias Mair
0effb44402
Bump docker image alpine base from 3.18 to 3.20 ( #7699 )
...
* bump docker image from 3.18 to 3.20
* bump postgres from 13 to 14
2024-07-22 07:46:41 +10:00
Matthias Mair
dae173e84c
Bump development deps ( #7606 )
...
* bump pre-commit
* add config for codespell
* re-add hashes
2024-07-18 09:53:17 +10:00
Matthias Mair
25c91323c9
bump setuptools ( #7663 )
...
fixes https://github.com/inventree/InvenTree/security/dependabot/121
2024-07-16 08:33:11 +10:00
Matthias Mair
be2beeca61
bumpd django to 4.2.14 ( #7620 )
...
Fixes https://github.com/inventree/InvenTree/security/dependabot/116
2024-07-11 16:49:10 +10:00
Oliver
cdac7465b2
Cache updates ( #7388 )
...
* Add redis container to development setup
* Improve configurability of global cache:
- Push configuration into separate file
* Settings cache default depends on global cache configuration
* Update docker compose file
* Remove debug flag
* Allow caching for registry checks
* Cleanup docstring
* Adjust defautl behaviour
* Update docs for caching
* Adjust default docker compose file
* Update docs for devcontainer
* Cleanup config template file
* Update docker docs
* Update cache behaviour
2024-06-02 21:43:31 +10:00
Philipp Fruck
b26640fb36
fix: SELinux labels for Caddyfile ( #7261 )
2024-05-20 07:56:31 +10:00
Oliver
2265055785
Docker fix ( #7228 )
...
* Copy requirements file
* Test more files when building docker image
* Refactor install task
* Raise exception
* Run install task
* Fix typos
- The tests work!
2024-05-15 09:19:35 +10:00
Oliver
6a9d833251
Nginx example ( #7207 )
...
* Add sample nginx config file
- Taken from 0.13.x branch
* Add alternative setup for nginx
* Add brief note in the docs
2024-05-13 14:15:45 +10:00
Matthias Mair
83191d3fbf
Improve reproduciblity of image ( #7120 )
...
* hard-pin doc requirements
* update docs and commands
* hard pin container requirements
* check hashes in image build
* remove seperate uv install (is in base_requirements)
* containers already ships 3.11 - adjust packaging
* move build deps to general ci requirements
* install yarn using native tools
Closes https://github.com/inventree/InvenTree/security/code-scanning/95
Closes https://github.com/inventree/InvenTree/security/code-scanning/96
* merge install steps
* adapt install command args to be similar
* adapt docs to suggest safer install arg
* fix install path
* update dependabot settings
2024-04-29 11:04:45 +10:00
Matthias Mair
938c724395
Pin hashes in requirements ( #7081 )
...
* use global pin for requests
* unify on yaml for workflo files
* format workflow files
* pin action versions
* fix pinned version
* use system venv
* switch args
* remove uv for now and add setting for pyyaml
* use requirements file
* also switch on docker flow
* generate hashes
* added hashes to reqs
* add hashes for CI too
* add hash checking
* require hashes everywhere possible
* require hashes where possible in docker
2024-04-23 17:15:52 +10:00
dependabot[bot]
df5fcf7d62
Bump gunicorn from 21.2.0 to 22.0.0 in /src/backend ( #7054 )
...
* Bump gunicorn from 21.2.0 to 22.0.0 in /src/backend
Bumps [gunicorn](https://github.com/benoitc/gunicorn ) from 21.2.0 to 22.0.0.
- [Release notes](https://github.com/benoitc/gunicorn/releases )
- [Commits](https://github.com/benoitc/gunicorn/compare/21.2.0...22.0.0 )
---
updated-dependencies:
- dependency-name: gunicorn
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
* req fix
* bump versions everywhere
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Matthias Mair <code@mjmair.com>
2024-04-17 16:39:18 +10:00
Oliver
cdeaa81295
Fix CMD for production docker image ( #6960 )
2024-04-05 11:30:45 +11:00
Oliver
6730cdbccf
[Docker] Fix broken production image ( #6953 )
...
* Check for presense of manage.py
* Fix directory copying
2024-04-04 23:55:55 +11:00
Matthias Mair
85e672831b
Some small style fixes ( #6916 )
...
* fix dockerfile syntax
* remove unused import
* Merge unnecessary if statements
* fix PUI package name
* remove unused vars
* Remove unneeded pass
* merge if to reduce likelyhood of future errors
* add ignroe script to secure against shell scripts
* fix possible collisions
* export strings
* fix types
2024-04-03 19:26:03 +11:00
Matthias Mair
0bace3f3af
Code structure refactor ( #5582 )
...
* moved docker files to /contrib/container
* changed code owners to make more precise
* updated CI to use new subdirs
* added manual trigger for testing
* moved ci files
* moved assets into subdir
* moved deploy template file to contrib
* moved django files to src/backend
* updated paths in scripts etc
* updated reqs path
* fixed version file path
* fixed flake8 path
* fixed path to node ressources
* fixed task paths
* added dep path for node
* removed unused yarn lockfile
* removed unused ci script
* updated internal backend paths for tasks
* updated translation stats path
* fixed source path for coverage
* fixed main commit repo path
* fit in changes from testing
* gather packager improvements (#149 )
* Matmair/issue5578 (#143 )
* moved docker files to /contrib/container
* changed code owners to make more precise
* updated CI to use new subdirs
* added manual trigger for testing
* moved ci files
* moved assets into subdir
* moved deploy template file to contrib
* moved django files to src/backend
* updated paths in scripts etc
* updated reqs path
* fixed version file path
* fixed flake8 path
* fixed path to node ressources
* fixed task paths
* added dep path for node
* removed unused yarn lockfile
* removed unused ci script
* updated internal backend paths for tasks
* updated translation stats path
* fixed source path for coverage
* fixed main commit repo path
* fix docker path
* use project dir
* move project dir command
* fixed docker paths
* another fix?
* seperate tasks out
* remove tasks
* some debugging
* ci: add .deepsource.toml
* Update .deepsource.toml
* also ignore migrations
* more debugging
* fix path issues
* remove debug script
* fix style
* change locale path
* Fixed paths for requirements
* Added dummy requirements to fool packager
* fixed exec path
* remove deepsource
---------
Co-authored-by: deepsource-io[bot] <42547082+deepsource-io[bot]@users.noreply.github.com>
* Added docs for file structure
* Fixed style errors
* updated deepsource paths
* fix deepsource paths
* fixed reqs
* merge fixes
* move newly added dirs too
* fix reqs files
* another dep fix
* merge upstream/master
* revert removal of tags
* merge upstream
* enabled detection of old config files
* adapt coverage src
* also detect and support old location for plugins.txt
* style fix
* fix ~/init.sh location
* fix requirements path
* fix config to current master
* move new folders
* fix import order
* fix paths for qc_check
* fix docs build
* fix fix path
* set docker project dir
* just use a cd
* set image path?
* set file correct
* fix copy path
* fix tasks dir
* fix init path
* fix copy path
* set prject dir
* fix paths
* remove old prod files
* fix dev env path
* set docker file
* Fix devcontainer docker compose file
* fix login attempt values
* fix init.sh path
* Fix pathing for Docker
* Docker build fix
- Set INVENTREE_BACKEND_DIR separately
* Update init.sh
* Fix path
* Update requirements.txt
* merge
* fix rq merge
* fix docker compose usage
---------
Co-authored-by: deepsource-io[bot] <42547082+deepsource-io[bot]@users.noreply.github.com>
Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2024-04-03 12:16:59 +11:00
