Merge branch 'develop' into issue/1383

2019-12-14 21:44:10 +03:00 · 2019-12-14 21:44:10 +03:00 · 67cb46e15d
commit 67cb46e15d
parent 2b821036c4 8efacfed67
80 changed files with 1278 additions and 1292 deletions
--- a/config/config.exs
+++ b/config/config.exs
@ -52,9 +52,9 @@ config :pleroma, Pleroma.Repo,
  migration_lock: nil

 config :pleroma, Pleroma.Captcha,
-  enabled: false,
+  enabled: true,
  seconds_valid: 60,
-  method: Pleroma.Captcha.Kocaptcha
+  method: Pleroma.Captcha.Native

 config :pleroma, :hackney_pools,
  federation: [
@ -70,8 +70,6 @@ config :pleroma, :hackney_pools,
    timeout: 300_000
  ]

-config :pleroma, Pleroma.Captcha.Kocaptcha, endpoint: "https://captcha.kotobank.ch"
-
 # Upload configuration
 config :pleroma, Pleroma.Upload,
  uploader: Pleroma.Uploaders.Local,
@ -555,7 +553,10 @@ config :ueberauth,
       base_path: "/oauth",
       providers: ueberauth_providers

-config :pleroma, :auth, oauth_consumer_strategies: oauth_consumer_strategies
+config :pleroma,
+       :auth,
+       enforce_oauth_admin_scope_usage: false,
+       oauth_consumer_strategies: oauth_consumer_strategies

 config :pleroma, Pleroma.Emails.Mailer, adapter: Swoosh.Adapters.Sendmail, enabled: false

--- a/config/description.exs
+++ b/config/description.exs
@ -2094,6 +2094,15 @@ config :pleroma, :config_description, [
    type: :group,
    description: "Authentication / authorization settings",
    children: [
+      %{
+        key: :enforce_oauth_admin_scope_usage,
+        type: :boolean,
+        description:
+          "OAuth admin scope requirement toggle. " <>
+            "If `true`, admin actions explicitly demand admin OAuth scope(s) presence in OAuth token " <>
+            "(client app must support admin scopes). If `false` and token doesn't have admin scope(s)," <>
+            "`is_admin` user flag grants access to admin-specific actions."
+      },
      %{
        key: :auth_template,
        type: :string,
--- a/config/test.exs
+++ b/config/test.exs
@ -91,6 +91,8 @@ config :joken, default_signer: "yU8uHKq+yyAkZ11Hx//jcdacWc8yQ1bxAAGrplzB0Zwwjkp3

 config :pleroma, Pleroma.ReverseProxy.Client, Pleroma.ReverseProxy.ClientMock

+config :pleroma, Pleroma.Captcha.Kocaptcha, endpoint: "https://captcha.kotobank.ch"
+
 if File.exists?("./config/test.secret.exs") do
  import_config "test.secret.exs"
 else