vassili/seitime-frappe
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
No description
35960 commits 1 branch 0 tags 587 MiB
Find a file
Christoph Kappel c99e576e1b fix: offer all (also modern) supported tls versions (PROTOCOL_TLS_CLIENT [1]) to LDAP endpoints instead of only (deprecated) PROTOCOL_TLSv1 [2] 
Background: Currently, when connecting to a ldap backend, ssl.PROTOCOL_TLSv1 [2] is offered as only option to the backend.

This leads to following issues:
- LDAP Backends that do not support TLSv1.0 (because of security reasons [3]) cannot be used in ERPNext
- erpnext can ONLY connect to LDAP Backends offering the insecure [3] TLSv1.0 protocol  (see ldap_settings.py ln: 61, 63)

With this change to ssl.PROTOCOL_TLS_CLIENT we allow erpnext customers to configure LDAP Backends that also support more modern/secure (TLSv1.2 and up) transport
while still ensure backwards compatibility and allowing TLSv1.0,
since ssl.PROTOCOL_TLS "Auto-negotiates the highest protocol version that both the client and server support" [1]

[1]: https://docs.python.org/3/library/ssl.html#ssl.PROTOCOL_TLS_CLIENT
[2]: https://docs.python.org/3/library/ssl.html#ssl.PROTOCOL_TLSv1
[3]: https://tools.ietf.org/id/draft-ietf-tls-oldversions-deprecate-02.html
2022-01-04 16:52:55 +01:00
.github fix: update docs link checker 2021-12-14 16:31:02 +05:30
cypress chore: colocate ui tests 2022-01-03 16:19:11 +05:30
esbuild style: use const instead of let 2021-11-09 13:00:15 +05:30
frappe fix: offer all (also modern) supported tls versions (PROTOCOL_TLS_CLIENT [1]) to LDAP endpoints instead of only (deprecated) PROTOCOL_TLSv1 [2] 2022-01-04 16:52:55 +01:00
.editorconfig chore: extend editorconfig to vue components 2021-08-25 20:12:55 +05:30
.eslintignore fix: Miscellaneous changes (#12343) 2021-02-08 12:05:37 +05:30
.eslintrc fix: Use extend_cscript in make to properly extend functions of class 2021-05-24 09:05:00 +05:30
.flake8 ci: fix semgrep false positives (#13161) 2021-05-12 20:22:48 +05:30
.git-blame-ignore-revs chore: Ignore updating license header from blame 2021-09-03 12:14:45 +05:30
.gitignore chore: VS2022 uses .vs instead of .vscode. Add .vs to .gitignore. 2021-12-13 11:16:11 +11:00
.mergify.yml ci: Update auto-close condition 2021-09-01 12:13:11 +05:30
.pylintrc reactor(scheduler): created "Scheduler Job Type" and cleaned up scheduler 2019-11-07 12:14:09 +05:30
.snyk [Snyk] Fix for 1 vulnerabilities (#11523) 2020-09-17 10:00:48 +05:30
.stylelintrc fix: Miscellaneous changes (#12343) 2021-02-08 12:05:37 +05:30
attributions.md Non Pour Accent! (#5427) 2018-04-10 22:53:42 -08:00
bandit.yml fix(tests): tests and linting 2019-02-13 16:50:34 +05:30
CODE_OF_CONDUCT.md Create CODE_OF_CONDUCT.md 2017-09-12 09:14:34 +05:30
codecov.yml chore: correct coverage config 2021-12-14 20:12:51 +05:30
CODEOWNERS chore: Fix CODEOWNERS formatting 2021-11-28 09:57:55 +05:30
cypress.json chore: colocate ui tests 2022-01-03 16:19:11 +05:30
dev-requirements.txt chore: Clean up requirements 2021-11-11 20:56:47 +05:30
generate_bootstrap_theme.js fix: Common sass_options 2021-04-27 11:24:19 +05:30
hooks.md Non Pour Accent! (#5427) 2018-04-10 22:53:42 -08:00
LICENSE chore: Update copyright until date to 2021 2021-09-03 12:19:15 +05:30
Makefile [NEW] Makefile to clean cache without restart 2018-03-08 15:18:32 +05:30
node_utils.js fix: set correct default redis async broker in node_utils 2021-05-21 16:09:43 +05:30
package.json build: Upgrade jQuery 3.5.0 to 3.6.0 2021-11-11 19:08:17 +05:30
README.md chore: Try on FCloud button 2021-10-13 18:41:08 +05:30
requirements.txt chore: Clean up requirements 2021-11-11 20:56:47 +05:30
SECURITY.md chore: updated Security policy and issue template 2019-10-12 12:06:36 +05:30
setup.py fix: Drop support for Python 3.6 2021-09-17 11:24:51 +05:30
sider.yml chore(sider): add sider default config for flake8 + ignore tab errors (W191) (#12587) 2021-03-16 17:07:41 +05:30
socketio.js fix: publish realtime to work with localhost (backport #14174) (#14196) 2021-09-14 12:09:01 +05:30
yarn.lock build: Upgrade jQuery 3.5.0 to 3.6.0 2021-11-11 19:08:17 +05:30

README.md


a web framework with "batteries included"

it's pronounced - fra-pay

Full-stack web application framework that uses Python and MariaDB on the server side and a tightly integrated client side library. Built for ERPNext

Table of Contents

Installation

Contributing

  1. Code of Conduct
  2. Contribution Guidelines
  3. Security Policy
  4. Translations

Resources

  1. frappeframework.com - Official documentation of the Frappe Framework.
  2. frappe.school - Pick from the various courses by the maintainers or from the community.

License

This repository has been released under the MIT License.