local-it/mitgliederverwaltung
2
3
Fork 0
Code Issues 53 Pull requests 1 Projects 2 Releases 3 Packages 1 Activity Actions
1550 commits 5 branches 3 tags 22 MiB
Commit graph

128 commits

Author SHA1 Message Date
Simon
c381b86b5e Improve oidc only mode (#474)
All checks were successful
continuous-integration/drone/push Build is passing
Details 
## Description of the implemented changes
The changes were:
- [x] Bugfixing
- [x] New Feature
- [ ] Breaking Change
- [x] Refactoring

**OIDC-only mode improvements and UX tweaks (success toasts, unauthenticated redirect).**

## What has been changed?

### OIDC-only mode (new feature)
- **Admin settings:** "Only OIDC sign-in" is an immediate toggle at the top of the OIDC section (no save button). Enabling it also turns off "Allow direct registration". When OIDC-only is on, the registration checkbox is disabled and shows a tooltip (DaisyUI `<.tooltip>`).
- **Backend:** Password sign-in is forbidden via Ash policy (`OidcOnlyActive` check). Password registration is blocked via validation `OidcOnlyBlocksPasswordRegistration`. New plug `OidcOnlySignInRedirect`: when OIDC-only and OIDC are configured, GET `/sign-in` redirects to the OIDC flow; GET `/auth/user/password/sign_in_with_token` is rejected with redirect + flash. `AuthController.success/4` also rejects password sign-in when OIDC-only.
- **Tests:** GlobalSettingsLive (OIDC-only UI), AuthController (redirect and password sign-in rejection), User authentication (register_with_password blocked when OIDC-only).

### UX / behaviour (no new feature flag)
- **Success toasts:** Success flash messages auto-dismiss after 5 seconds via JS hook `FlashAutoDismiss` and optional `auto_clear_ms` on `<.flash>` (used for success in root layout and `flash_group`).
- **Unauthenticated users:** Redirect to sign-in without the "You don't have permission to access this page" flash; that message is only shown to logged-in users who lack access. Logic in `LiveHelpers` and `CheckPagePermission` plug; test updated accordingly.

### Other
- Layouts: comment about unprocessed join-request count no longer uses "TODO" (Credo).
- Gettext: German translation for "Home" (Startseite); POT/PO kept in sync.
- CHANGELOG: Unreleased section updated with the above.

## Definition of Done
### Code Quality
- [x] No new technical depths
- [x] Linting passed
- [x] Documentation is added where needed (module docs, comments where non-obvious)

### Accessibility
- [x] New elements are properly defined with html-tags (labels, aria-label on checkboxes)
- [x] Colour contrast follows WCAG criteria (unchanged)
- [x] Aria labels are added when needed (e.g. oidc-only and registration checkboxes)
- [x] Everything is accessible by keyboard (toggles and buttons unchanged)
- [x] Tab-Order is comprehensible
- [x] All interactive elements have a visible focus (existing patterns)

### Testing
- [x] Tests for new code are written (OIDC-only UI, auth controller, user auth; SMTP config builder and mailer)
- [x] All tests pass
- [ ] axe-core dev tools show no critical or major issues (not re-run for this PR; suggest spot-check on settings and sign-in)

## Additional Notes
- **OIDC-only:** When the `OIDC_ONLY` env var is set, the toggle is read-only and shows "(From OIDC_ONLY)". When OIDC is not configured, the toggle is disabled.
- **Invalidation:** Enabling OIDC-only sets `registration_enabled: false` in one update; disabling OIDC-only only updates `oidc_only` (registration left as-is).
- **Review focus:** Plug order in router (OidcOnlySignInRedirect), policy/validation order in User, and that all OIDC-only paths (form, plug, controller) stay consistent.

Reviewed-on: #474
Co-authored-by: Simon <s.thiessen@local-it.org>
Co-committed-by: Simon <s.thiessen@local-it.org>
 2026-03-16 19:09:07 +01:00
Simon
f353f1cbc0
fix: update smtp test
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/promote/production Build is passing
Details
2026-03-16 14:58:21 +01:00
Simon
1866c79461
fix: failing tests
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/promote/production Build is passing
Details
2026-03-13 20:36:13 +01:00
Simon
171a699326
fix: failing tests
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/promote/production Build is failing
Details
2026-03-13 19:59:59 +01:00
Simon
86c032004e
fix: failing tests
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/promote/production Build is failing
Details
2026-03-13 19:43:04 +01:00
Simon
a4239ce09b
fix: failing tests
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/promote/production Build is failing
Details
2026-03-13 19:25:23 +01:00
Simon
c933144920
feat: unify page titles
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/promote/production Build is failing
Details
2026-03-13 19:01:50 +01:00
Simon
349cee0ce6
refactor: review remarks
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-03-13 17:55:17 +01:00
Simon
40a4461d23
fix: join confirmation mail configuration
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-03-13 09:34:56 +01:00
Simon
a5ce7cb921
fix group performance test
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/promote/production Build is passing
Details
2026-03-12 15:46:52 +01:00
Simon
4af80a8305
Merge remote-tracking branch 'origin/main' into feature/308-web-form
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/promote/production Build is failing
Details
2026-03-12 13:52:33 +01:00
Simon
a4f3aa5d6f
feat: add smtp settings
All checks were successful
continuous-integration/drone/push Build is passing
Details
2026-03-12 13:39:48 +01:00
carla
15d4c7d97f fix import test
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/promote/production Build is failing
Details
2026-03-11 11:50:24 +01:00
carla
03d91d4029 fix tests
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/promote/production Build is failing
Details
2026-03-11 11:40:32 +01:00
Simon
c4135308e6
test: add tests for smtp mailer config 2026-03-11 09:18:37 +01:00
simon
f79c9ac515 Merge pull request 'add public join form' (#466) from feature/308-web-form into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #466
 2026-03-10 23:08:26 +01:00
Moritz
f430762555
test: re-enable profile avatar test for first letter of email 2026-03-10 20:17:28 +01:00
Moritz
b04d59e3c4
test: remove placeholder test for non-existent member IDs 2026-03-10 20:17:27 +01:00
Simon
f1d0526209
feat: add join form
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-03-10 18:25:17 +01:00
Simon
eadf90b5fc
test: add tests for join request page 2026-03-10 17:18:14 +01:00
Moritz
f9d6936274
Membership fee settings: row-click table, compact default layout 2026-03-04 16:21:17 +01:00
Moritz
81ce204502
Fix Credo Readability (strict) 
- Max line length, implicit try, alias order, zero-arity defs
- String sigils, long comments split; redundant blank lines fixed
 2026-03-04 16:21:14 +01:00
carla
7f15909cc6 fix tests
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/promote/production Build is passing
Details
2026-02-26 17:14:47 +01:00
carla
4ac56958b4 feat: keep empty cells consistent empty
All checks were successful
continuous-integration/drone/push Build is passing
Details
2026-02-26 13:37:35 +01:00
carla
9751525a0c fix: datafield edit view was shown alongside othe relements
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-02-26 12:37:52 +01:00
carla
c7c082b867 Merge branch 'main' into feat/447_concistency
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/promote/production Build is passing
Details
2026-02-25 16:52:59 +01:00
carla
0f12befd11 style: consistent back button and some translations
All checks were successful
continuous-integration/drone/push Build is passing
Details
2026-02-25 16:25:13 +01:00
carla
49fd2181a7 style: highlight selected table and add tooltip
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-02-25 13:16:27 +01:00
carla
bfc078d5aa Merge branch 'main' into feat/299_plz
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/promote/production Build is passing
Details
2026-02-24 16:02:56 +01:00
carla
c62b105518 test: updated
All checks were successful
continuous-integration/drone/push Build is passing
Details
2026-02-24 16:00:46 +01:00
carla
c8d7dd3e55 Merge branch 'main' into feat/299_plz
Some checks failed
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/promote/production Build is failing
Details
2026-02-24 15:38:50 +01:00
Moritz
62b37b9aa2
feat: Datafields page, merge fee types into membership_fee_settings, sidebar 
- Add /admin/datafields (DatafieldsLive) for member and custom field config
- Remove Memberdata block from GlobalSettingsLive
- Router: drop /membership_fee_types, add new_fee_type and edit_fee_type under membership_fee_settings
- MembershipFeeSettingsLive: fee types table, collapsible examples; Index links updated
- PagePaths: admin_datafields, admin_import; remove membership_fee_types
- Sidebar: order and labels (Basic settings, Datafields, Membership fee settings, Import, Users, Roles)
- Gettext: German translations for sidebar and OIDC
- Tests: datafields and fee routes, permission and form tests updated
 2026-02-24 13:58:38 +01:00
Moritz
339d37937a
Rename OIDC strategy from :rauthy to :oidc, update callback path 
- Rename AshAuthentication strategy from :oidc :rauthy to :oidc :oidc;
  generated actions are now register_with_oidc / sign_in_with_oidc.
- Update config keys (:rauthy → :oidc) in dev.exs and runtime.exs.
- Update default_redirect_uri to /auth/user/oidc/callback everywhere.
- Rename Mv.Accounts helper functions accordingly.
- Update Mv.Secrets, AuthController, link_oidc_account_live and all tests.
- Update docker-compose.prod.yml, .env.example, README and docs.

IMPORTANT: OIDC providers must be updated to use the new redirect URI
/auth/user/oidc/callback instead of /auth/user/rauthy/callback.
 2026-02-24 11:51:00 +01:00
carla
9a7608f9a1 Merge branch 'main' into feat/299_plz
All checks were successful
continuous-integration/drone/push Build is passing
Details
2026-02-24 11:44:19 +01:00
carla
63040afee7 Merge branch 'main' into feat/299_plz
All checks were successful
continuous-integration/drone/push Build is passing
Details
2026-02-24 10:40:26 +01:00
carla
9fc8c3b74a test: updated for country 2026-02-24 09:36:42 +01:00
Moritz
8db24405fa
test: fee type column visibility, CSV export, export controller 
FieldVisibility pseudo fields and visible selection; MembersCSV fee type
column; export accepts membership_fee_type and returns Fee Type column.
 2026-02-23 23:55:13 +01:00
Moritz
e9ed61a8fd
Tests: restore settings in on_exit to avoid leftover state 
Setup + on_exit save/restore member_field_visibility and
member_field_required in member, setting, index_component and
form_error_handling tests.
 2026-02-23 22:51:18 +01:00
Moritz
d44c5bdf94
Tests: member required fields, setting, member field live, sync_contact 
Add tests for required validation, update_single_member_field, form
required map. Add street/postal_code/city to sync_contact when Vereinfacht configured.
 2026-02-23 22:13:53 +01:00
Moritz
5343b78750
feat(vereinfacht): Settings UI and bulk sync 
- GlobalSettingsLive: Vereinfacht section, sync button, last sync result
- Test: Vereinfacht Integration section visible
 2026-02-23 19:51:32 +01:00
Simon
123227a50e
refactor: add data-testid selectors for groups ui
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-02-20 16:34:15 +01:00
carla
b18f895939 chore: rename ImportExport module to Import
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/promote/production Build is passing
Details
2026-02-17 18:59:18 +01:00
Moritz
bd4dc86cca StatisticsLiveTest: explicit auth (read_only) and redirect test for own_data 2026-02-12 19:35:48 +01:00
Moritz
3eead112b0 Statistics tests: strict first_join_year nil, fee_type_id in URL 2026-02-12 19:35:48 +01:00
Moritz
490dced8c8 Statistics: member stats independent of fee type 2026-02-12 19:35:48 +01:00
Moritz
6e309622a0 Add StatisticsLive: overview, bars by year, pie chart 
- Summary cards: active/inactive members, open amount
- Joins and exits by year (horizontal bars)
- Contributions by year: table with stacked bar above amounts
- Column order: Paid, Unpaid, Suspended, Total; color dots for legend
- All years combined pie chart
- LiveView tests
 2026-02-12 19:35:48 +01:00
Simon
2f8a6a2768
Merge remote-tracking branch 'origin/main' into feature/ui-for-adding-members-groups
Some checks failed
continuous-integration/drone/push Build is failing
Details
continuous-integration/drone/promote/production Build is passing
Details
2026-02-12 15:16:35 +01:00
Simon
900f322422
fix: pr comments
All checks were successful
continuous-integration/drone/push Build is passing
Details
2026-02-12 15:08:40 +01:00
carla
9115d53198 tests: add tests 2026-02-09 13:34:57 +01:00
carla
36e57b24be Merge branch 'main' into feature/export_csv
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-02-06 08:02:05 +01:00