All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Securing organisations configuration page
- Fix audit trail when user removed from group
- Store session to db using active record instead of using cookies
- User API now also return
id
- API to add user to group (POST /api/v1/groups/:group_id/users)
- Update devise to version
4.7.1.
- Show email of group admin on group detail
- Show users join date to group on group detail
- Update nokogiri to version
1.10.4.
- Ensure that 'deactivated_at' on user is automatically set when we make user inactive
- Improve access policy for actions on resources including profile, user, api resource, host machine, organisation
- Add endpoint entity to represent gate endpoint. Group will own endpoints, this mechanism will be used as an authorization for gate.
- Add api to deactivate user in gate (PATCH /api/v1/users/:id/deactivate).
- Improve loading time when opening group and user show page
- If a user don't have any VPNs, they should still be able to click download VPN without incurring exception
- Create missing tests for user model
- Optimize queries when fetching sysadmins
- Fix nil pointer exception when group members response is nil
- Optimize slow queries on vpn model
- Add the ability to only fetch active user for
/api/v1/users/profileAPI
- Use dotenv instead of figaro. This is a breaking change and warrant a major version release.
- All spiders are banned by default now in
robots.txt - When admin account become inactive, the admin status will automatically revoked.
- Admin can set expiration date on group assignment. This expiration date is optional, when not specified then it's a permanent assignment.
- Gate now uses semantic versioning.