github.com/verdaccio
1
0
Fork 0
mirror of https://github.com/verdaccio/verdaccio.git synced 2024-11-13 03:35:52 +01:00
Code Releases Wiki Activity
868 Commits 16 Branches 2,132 Tags MIT 794 MiB
v2.1.6
Commit Graph

448 Commits

Author SHA1 Message Date
Alex Kocharin
137fd5978f fix access control 
ref #238
 2015-04-21 19:43:12 +03:00
Alex Kocharin
74bb946a91 fix freeze in web interface on acl check 2015-04-11 23:19:45 +03:00
Alex Kocharin
3c16e59a5c Refactor authorization plugins 2015-04-09 01:51:34 +03:00
Chris Breneman
6954898da0 Merge remote-tracking branch 'upstream/master' 
Conflicts:
	lib/auth.js
	lib/index.js
	lib/middleware.js
 2015-03-31 09:47:20 -04:00
Alex Kocharin
d7c95d6cd6 fix custom logo and url_prefix issues 
use config.web.logo instead of config.web['logo-sm']
 2015-03-29 23:01:34 +03:00
Kody J. Peterson
bf40ceb064 Fix custom logo 
Custom logos are not loading as /-/static/-/logo-sm is not the endpoint it is /-/logo-sm
 2015-03-29 23:01:18 +03:00
Alex Kocharin
554d31d119 should add via header for all requests 2015-03-28 22:26:36 +03:00
Alex Kocharin
9047e28074 set up some linting (obvious errors only) 2015-03-28 21:25:53 +03:00
Alex Kocharin
1a9596737e add test for parsing listen address 2015-03-28 18:03:36 +03:00
Alex Kocharin
6d58d5920e add listening on ipv6 addresses 2015-03-28 17:43:50 +03:00
Alex Kocharin
dfef2b862f add a possibility to listen on multiple ports 2015-03-28 17:20:58 +03:00
Thomas Cort
61fff273fc cli.js: add https support. Issue #71. 2015-03-28 16:32:37 +03:00
Alex Kocharin
97c7c6814f Remove mentioning of 'always-auth' 
It should be solved by using npm@2 anyway.
 2015-03-28 15:14:01 +03:00
Rafael Cesar
025e23627f Added option to use a custom template for web UI 2015-03-28 14:15:07 +03:00
Chris Breneman
0af72f0c68 Pass allow_access calls that don't use the can() middleware through the plugin interface 2015-02-24 22:21:57 -05:00
Chris Breneman
82539add26 Change how package provider plugins are configured 2015-02-24 16:11:14 -05:00
Chris Breneman
76a1e8df80 Add package settings and authorization plugin system 2015-02-24 14:28:16 -05:00
Alex Kocharin
6ec76aa61f fix crash when using sinopia as a library 2015-02-18 17:52:17 +03:00
Alex Kocharin
0aed9ee9f4 Merge pull request #200 from maxlaverse/master 
Fixes NPE on POST _session when npm tries to authenticate
 2015-02-12 14:26:15 +03:00
Alex Kocharin
79e2ff2ee8 change 403 error with 409 in adduser 
Because npm does only accept 409, see #184.
 2015-02-12 14:18:47 +03:00
maxlaverse
e5880841f3 Added missing argument 
Added missing 'next' argument to the '/_session' route callback
 2015-02-06 19:59:18 +01:00
Robin Persson
c49b0699c2 Fixed issue with not being able to disable the web interface 2015-01-26 14:27:32 +03:00
Alex Kocharin
5b5f56f51c fix test noise 
TypeError: Cannot read property 'name' of undefined
    at log (/home/travis/build/rlidwka/sinopia/lib/middleware.js:185:32)
 2015-01-26 14:00:37 +03:00
Alex Kocharin
ed3eb37c4f download packages using https 
Or, in general, the same protocol as the registry;
this is what npm seem to be doing.

See issue #166 for details.
 2014-12-23 00:29:26 +03:00
Alex Kocharin
fad4f457ae move logger setup to index.js + tests 2014-12-22 20:58:25 +03:00
Tarun Garg
a0ff6dbc9e Checks whether process.env.HOME exists 
Checks whether process.env.HOME exists before calling Path.join
Was not able to start sinopia on my fresh windows install due to this error.
 2014-12-21 22:07:22 +03:00
Yannick Galatol
ea50f3d3ed Add a query parameter "local" to the search method of storage to allow listing only local packages 2014-12-15 00:03:19 +03:00
Alex Kocharin
76bdc74670 web: change header position from fixed to static 
Mainly because anchors (`<a name=...>`) need to be offsetted to
account for the fixed header, and it ain't worth the hassle.
 2014-12-10 09:36:54 +03:00
Alex Kocharin
4a4502967e disable source maps & rebuild 2014-12-10 09:30:02 +03:00
Alex Kocharin
0f6404f4ea fix path to helpers.less 2014-12-10 09:25:42 +03:00
Alex Kocharin
2b9bfcc0d9 marked -> render-readme 2014-12-10 09:14:31 +03:00
Alex Kocharin
06bb301bab fix dist.tarball replacement logic 2014-12-05 09:16:16 +03:00
Alex Kocharin
bad7aee4ec use /-/whoami endpoint instead of /whoami 
Allows to get rid of referer magic, so it's a nice change to have.

See this issue for details:
https://github.com/npm/npm-registry-client/issues/88
 2014-12-05 05:04:37 +03:00
Alex Kocharin
841f77d36a sort out dependencies needed to build static stuff 2014-11-30 11:22:24 +03:00
Alex Kocharin
b84bb568cd s/self/this/ in error message 2014-11-25 04:24:18 +03:00
Alex Kocharin
b338aefe45 bugfix: forgot "next" 2014-11-25 03:22:05 +03:00
Alex Kocharin
feae33499e make path to local-db if it doesn't exist 2014-11-25 03:16:58 +03:00
Alex Kocharin
2b99b23eec fix es-shim dependency 2014-11-25 03:08:19 +03:00
Alex Kocharin
cf71b9dc9e encrypt user+pass instead of tokens for now 2014-11-24 22:53:05 +03:00
Alex Kocharin
691bdb3a92 web: encode version strings in urls 2014-11-17 21:18:07 +03:00
Alex Kocharin
ae1f67d31f reformat config file and http address messages 2014-11-16 21:44:32 +03:00
Alex Kocharin
a425c5e2ff add scoped packages draft 2014-11-16 20:46:01 +03:00
Alex Kocharin
972551e838 nitpick 2014-11-16 16:38:01 +03:00
Alex Kocharin
637d51cba0 create config in xdg_config_home by default 2014-11-16 16:33:03 +03:00
Alex Kocharin
c71e8dc829 enable web interface by default 2014-11-16 16:32:46 +03:00
Alex Kocharin
2f541130ab auth tokens draft 2014-11-16 15:37:50 +03:00
Alex Kocharin
ca3cb6487d refactor log and etagify middlewares 2014-11-13 22:01:20 +03:00
Alex Kocharin
4c11a42d21 separate web and api routers to different files 2014-11-13 20:14:21 +03:00
Alex Kocharin
8259455ac5 switch to express 5 
It's needed for the better separation between rest api and web interface.
 2014-11-13 20:14:14 +03:00
Alex Kocharin
1fe0cedbd0 add access control for web ui 2014-11-13 18:52:13 +03:00
Alex Kocharin
09485451f7 fix res.sendfile callback 2014-11-13 18:38:49 +03:00
Alex Kocharin
c78390752a fix tests 2014-11-12 19:45:40 +03:00
Alex Kocharin
7687965219 handle 404 errors better 
+ get rid of fs.exists
 2014-11-12 19:26:27 +03:00
Alex Kocharin
100430227c display favicon properly 2014-11-12 19:26:24 +03:00
Alex Kocharin
148795918f move config file to separate folder 
Make default config smaller, allow all users by default there.
 2014-11-12 18:49:37 +03:00
Alex Kocharin
31bd3c9db7 warn about outdated npm in adduser 
close #93
 2014-11-12 18:01:59 +03:00
Alex Kocharin
037b3aea6a make use of es6-shim 
It's mainly because of Object.setPrototypeOf()
 2014-11-12 17:37:43 +03:00
Alex Kocharin
6a778e8c17 change code style to jshttp 
close #155, see reasons there

This is a huge commit, so let me know if it will cause
any trouble, I might consider reverting it if it's the case.
 2014-11-12 17:37:43 +03:00
Alex Vernacchia
6a14a277b2 web-gui/placing login/logout btns. responsive 2014-11-05 14:04:13 +00:00
Alex Kocharin
67b4528643 add authentication to web interface 2014-11-04 17:51:45 +03:00
Alex Kocharin
a854d07a66 add a workaround for EPERM issue on windows 
Derived from @korto's fix:
https://github.com/rlidwka/sinopia/issues/67#issuecomment-44782521
 2014-11-01 23:48:40 +03:00
Alex Kocharin
7a7d794207 fix double on_open call 2014-11-01 22:57:36 +03:00
Alex Kocharin
2e396e4d65 fix comment about users_file 
ref #148
 2014-10-20 22:40:33 +04:00
Facundo Chambó
907e1a8c43 use relative urls on browser side (ajax requests and image urls) 2014-10-19 22:44:02 -03:00
Facundo Chambó
8628c34b25 fixed npm image url 2014-10-19 22:34:57 -03:00
Facundo Chambó
9938a6bf4b removed trailing slash to avoid duplicate slashes 2014-10-19 22:03:40 -03:00
Facundo Chambó
f308bfb4bf added url_prefix to static resources 2014-10-17 12:25:55 -03:00
Alex Kocharin
c0793c575d Merge pull request #132 from vStone/patch-2 
Fix max_users in auto generated config.yaml
 2014-10-17 11:43:23 +04:00
Alex Vernacchia
dc9859cd83 web-gui/updating entries shown on index page 2014-10-13 14:39:04 -04:00
Alex Vernacchia
daeb1eb2a3 web-gui/moving to bootstrap and finishing responsive layout 2014-10-07 14:46:16 -04:00
Alex Vernacchia
326c7355ed web-gui/updating display, layout, and styling 2014-10-06 17:37:23 -04:00
Alex Kocharin
20f748be12 fix "offset out of bounds" issue 2014-10-03 07:51:56 +04:00
Alex Kocharin
7fb119c9f3 Merge pull request #137 from vernak2539/update-readme-css 
Updating Markdown CSS to be similar to github.com's
 2014-10-02 11:44:08 +04:00
Alex Kocharin
eda8dfe9ca Validate package name when doing search 
+ tests

fix #122
 2014-10-02 11:14:59 +04:00
Romain Lai-King
4b3939ef4e Remove CDN dependencies 
Use case: developers behind corporate firewall

close #133
 2014-10-02 10:27:40 +04:00
Alex Vernacchia
cb0c79e79f Updating Markdown CSS to be similar to github.com's 2014-10-01 16:56:52 -04:00
Jan Vansteenkiste
e36638973f Fix wrongly documented max_users in auto generated config.yaml 
See rlidwka/sinopia-htpasswd#3 and rlidwka/sinopia-htpasswd#6
 2014-09-30 09:53:22 +02:00
Alex Kocharin
4f028a107b Save readme data that npm provides on publish 
fix #100, fix #128
 2014-09-25 07:56:31 +04:00
Alex Kocharin
0786ec6108 set process.title 2014-09-25 05:13:03 +04:00
Kalman Speier
3bf26bd89e config.logo -> config.web.logo 2014-09-24 23:52:39 +04:00
Alex Kocharin
8d1781489b tag_version should return if tag is fresh 2014-09-18 00:04:15 +04:00
Alex Kocharin
1123a440bc "users_file" -> "file" in config 2014-09-14 19:57:39 +04:00
Alex Kocharin
8f0039de92 '@all' -> '$all' (avoid yaml identifiers) 2014-09-14 19:49:15 +04:00
Alex Kocharin
a016077bf3 fix auth system 2014-09-14 19:22:24 +04:00
Alex Kocharin
19b1d76e98 hotfix: auth groups didn't work correctly 2014-09-14 19:06:27 +04:00
Alex Kocharin
a5cd498f92 use http-errors package instead of custom stuff 2014-09-10 21:55:26 +04:00
Alex Kocharin
dbb588f031 Merge branch '0.9.x' of github.com:rlidwka/sinopia 2014-09-07 01:25:08 +04:00
Alex Kocharin
1e28c2d949 fix double fs.closing + EBADF error 2014-09-07 01:20:28 +04:00
Alex Kocharin
a0c861ec5a forgot to resolve path to storage 2014-09-07 00:57:40 +04:00
Alex Kocharin
8d841ea8e3 hide local-list.json to storage/.sinopia-db.json 
It was always in the current folder, which is a bad thing.
 2014-09-07 00:50:34 +04:00
Alex Kocharin
504430dcdd temporarily disable web interface in config 
I want to release 0.10 soon, and web doesn't have auth system yet.

So we'll probably disable it for now, and re-enable when its ready.
 2014-09-06 23:53:28 +04:00
Alex Kocharin
435ff1beeb Merge branch 'auth' 2014-09-06 13:07:52 +04:00
Alex Kocharin
6e247829a3 auth refactoring: part 2 
auth plugins
 2014-09-06 13:07:10 +04:00
Alex Kocharin
99795b747c undefined variable fix 2014-09-06 13:07:10 +04:00
Alex Kocharin
3a325a1e04 auth refactoring, part 1 
moving stuff to auth.js basically + allowing usergroups
 2014-09-06 13:07:10 +04:00
Alex Kocharin
734565dc05 auth refactoring: part 3 
moving htpasswd out
 2014-09-06 13:03:22 +04:00
Alex Kocharin
697d5f0892 Merge branch '0.9.x' of github.com:rlidwka/sinopia 2014-09-03 16:20:05 +04:00
Alex Kocharin
409d25739e fix "can't set headers" exception 
see discussion in #113
 2014-09-03 16:18:27 +04:00
Alex Kocharin
65a792ba53 Merge branch '0.9.x' of github.com:rlidwka/sinopia 2014-09-03 15:44:24 +04:00
Alex Kocharin
b740dd11cf remove outdated user existence check 
doesn't work with htpasswd, and doesn't make sense with
future auth plugins

ref #115
 2014-09-03 15:31:57 +04:00
Alex Kocharin
430a479113 auth refactoring: part 2 
auth plugins
 2014-09-02 04:27:04 +04:00
Alex Kocharin
86394b25ee undefined variable fix 2014-09-02 04:26:54 +04:00
Alex Kocharin
8086c6f0bf auth refactoring, part 1 
moving stuff to auth.js basically + allowing usergroups
 2014-09-02 03:09:08 +04:00
Alex Kocharin
5dd720cc21 add stuff for testing against fd leaks and memory leaks 2014-08-15 01:37:46 +04:00
Alex Kocharin
7e5227e4a1 allow "pretty" format for logging into files 
ref #88
 2014-08-11 08:46:20 +04:00
Alex Kocharin
6704abf988 bugfixes for webui 2014-08-08 06:17:05 +04:00
Alex Kocharin
d9f84677f8 fix tests broken by webui 2014-08-08 05:58:25 +04:00
Alex Kocharin
77700e72b1 Merge remote-tracking branch 'origin/0.9.x' 2014-08-08 05:15:22 +04:00
Alex Kocharin
5d4068d539 remove undefined variable 2014-08-08 05:14:27 +04:00
Alex Kocharin
57d6fe7150 Merge remote-tracking branch 'origin/0.9.x' 
Conflicts:
	lib/local-storage.js
 2014-08-08 05:12:42 +04:00
Alex Kocharin
a8dc1b2f7b option not to cache third party files 
ref #85
 2014-08-08 05:08:41 +04:00
John Gozde
060dcb49b4 Filter falsey _npmUser values. 2014-08-08 03:15:39 +04:00
John Gozde
58046a2ec7 Filter falsey _npmUser values. 2014-08-01 14:08:44 -06:00
Alex Kocharin
21704c9f84 removing unused code 2014-07-26 20:46:17 +04:00
Alex Kocharin
4f913f2468 Merge https://github.com/bpeacock/sinopia.git 
Conflicts:
	lib/config.js
	lib/config_def.yaml
	lib/index.js
	lib/local-storage.js
	lib/storage.js
	package.json
 2014-07-26 20:36:22 +04:00
Alex Kocharin
c2d3fe9929 add comments about registration 2014-07-26 17:14:06 +04:00
Alex Kocharin
3809d6eb32 add a bunch of tests for htpasswd 2014-07-23 01:45:28 +04:00
Alex Kocharin
490340fbb0 tweaking messages and status codes for user login 2014-07-23 01:44:06 +04:00
Alex Kocharin
a528811e35 bugfixes for htpasswd authentication 2014-07-22 23:48:15 +04:00
Alex Kocharin
9275b2cc85 "msg" -> "message" 
former one created too much confusion
 2014-07-22 23:31:01 +04:00
Alex Kocharin
41d4997ea7 only close socket if it exists, fix #89 2014-07-21 19:06:44 +04:00
Alex Kocharin
ff8a5e99ec add user registration 2014-07-21 17:02:02 +04:00
Alex Kocharin
e929e089d0 basic support for .htpasswd 2014-06-26 20:21:23 +04:00
Alex Kocharin
81486f412f make authentication function async 2014-06-26 19:23:21 +04:00
Alex Kocharin
5cc0187b67 fix tests 2014-06-24 06:57:54 +04:00
Alex Kocharin
d9accbb6a7 better access control for search 
For each of the packages check if user has access to it and remove
package info from the result if he doesn't.

ref #65
 2014-06-24 06:50:05 +04:00
Alex Kocharin
17d8ab7dcd use req.query instead of manually parsing querystring 
ref #65
 2014-06-24 06:48:58 +04:00
Alex Kocharin
3f746eb7c8 fix logging: in search "error" can be legitimate output (package named "error"), not an actual error 
ref #65
 2014-06-24 06:46:35 +04:00
Alex Kocharin
9816059485 Merge pull request #65 from yannickcr/npm-search 
Add search functionality
 2014-06-24 06:25:28 +04:00
Alex Kocharin
703adeaffc socket could've been closed twice, fix #80 2014-06-20 08:12:37 +04:00
Alex Kocharin
c4e5cb71b4 eslint version bump 2014-06-18 05:59:22 +04:00
Alex Kocharin
73572b0839 fix #77, config assert() has no effect 2014-06-18 04:52:07 +04:00
Alex Kocharin
88f3944f5a whitelist all allowed characters in filenames, see #75 2014-06-18 02:01:58 +04:00
Joseph Gentle
68bf469ad4 Fixed unit tests 2014-05-15 16:17:48 -07:00
Joseph Gentle
21f7f03cf7 Fixed sinopia to allow old tarballs with @ in them 2014-05-15 16:07:33 -07:00
Brian Peacock
490b04f298 Removed 'root' config parameter 2014-05-13 17:12:21 -05:00
Brian Peacock
2a299c9201 Switched some tabs to spaces 2014-05-12 10:43:18 -05:00
Brian Peacock
f5b9e0e0d5 Added default logo to the page 2014-05-12 09:35:53 -05:00
Brian Peacock
a38cf312b2 Updated the config 2014-05-12 09:21:07 -05:00
Brian Peacock
ab44907dac Fixed bug with creating users with hashed passwords 2014-05-09 13:26:47 -05:00
Brian Peacock
1246f12f5a Added CSS for no logo 2014-05-09 09:19:42 -05:00
Brian Peacock
99b8c31d3a Added the ability to add users 2014-05-08 19:24:41 -05:00
Brian Peacock
dbf3301ff9 Added favicon 2014-05-08 18:03:14 -05:00
Brian Peacock
a6fe4a1516 Added logo support 2014-05-08 17:58:13 -05:00
Brian Peacock
277f1023c9 Fixed unpublish 2014-05-08 16:48:15 -05:00
Brian Peacock
d52cfe8bac Fixed issue publishing unpublished modules 2014-05-08 16:34:16 -05:00
Brian Peacock
f74d7cbd3e Added fixed header 2014-05-08 15:41:59 -05:00
Brian Peacock
7e9b5944fd Removed logging 2014-05-08 14:47:54 -05:00
Brian Peacock
6fb0be9cc0 Fixed search UI bugs 2014-05-08 14:47:24 -05:00
Brian Peacock
1ddc1c68dc Added icons, smoother animations, search readme's 2014-05-08 11:13:39 -05:00