Commit graph

465 commits

Author SHA1 Message Date
vabene1111
79e783578a added whitelist for custom AI providers 2026-06-21 14:50:52 +02:00
vabene1111
0f35a5f570 enforce maximum zip file size in importer 2026-04-10 18:38:54 +02:00
igordiogobp
1e56178d1c fix: update gunicorn loglevel docs link (fixes #4563) 2026-04-09 20:30:56 -03:00
vabene1111
39af847006
Add 'ALLOWED_HOSTS' to .env configuration instructions
Updated installation instructions to include 'ALLOWED_HOSTS' in the .env file configuration.
2026-03-27 19:27:10 +01:00
smilerz
6998a949ba
fix: expose ALLAUTH_TRUSTED_PROXY_COUNT to resolve 403 on form login
allauth 65.14.2 stopped trusting X-Forwarded-For by default. Since
Tandoor's internal nginx proxies to gunicorn via a unix socket,
REMOTE_ADDR is always empty, causing PermissionDenied on every
rate-limited endpoint (login, signup, password reset). Default to 1
for the built-in nginx so login works out of the box.
2026-03-27 09:27:42 -05:00
smilerz
4f525d3f42
docs: clarify Django Admin scope — credentials only, settings still require env vars 2026-03-18 15:46:31 -05:00
smilerz
4c383cf397
docs: show both SOCIAL_PROVIDERS and SOCIALACCOUNT_PROVIDERS in config example 2026-03-18 15:46:31 -05:00
smilerz
827ce45d12
docs: move ENABLE_SIGNUP warning below SOCIALACCOUNT_AUTO_SIGNUP setting 2026-03-18 15:46:30 -05:00
smilerz
af94953fc5
fix: review cleanup — invite link bug, adapter tests, doc restructuring
- Fix invite link: authenticated user already in space now redirects
  to index instead of incorrectly redirecting to signup
- Fix bare except in system view social provider enumeration
- Add 10 new tests (31 total): social adapter _mask_email, error
  caching with email masking, cache cap at 50, invite link group
  verification, space deactivation, already-in-space redirect,
  nonexistent UUID
- Fix formatting warning indentation in authentication docs
- Fix misleading SOCIALACCOUNT_AUTO_SIGNUP note — email matching
  works independently, not dependent on AUTO_SIGNUP setting
- Move AUTO_SIGNUP info block below the example
- Use HIDE_LOGIN_FORM in example instead of SOCIALACCOUNT_ONLY
- Consolidate configuration.md social auth into settings table
  with cross-links to authentication feature docs
2026-03-18 15:46:30 -05:00
smilerz
d65b730e76
fix: show error details to all users on login failure page
The superuser gate was wrong — the error page is shown to
unauthenticated users who just failed login, so nobody would
ever see the details. The exception info from allauth is safe
to display (provider name, error code, message — not stack traces).
2026-03-18 15:46:29 -05:00
smilerz
7a5f429223
docs: fix typo, update allauth link, add settings cross-references
- Fix "ins" typo in authentication.md
- Update outdated allauth docs URL to docs.allauth.org
- Add cross-reference table for all social auth settings in
  configuration.md with links to authentication.md sections
2026-03-18 15:46:29 -05:00
smilerz
c6920f4394
fix: review cleanup — security, performance, and doc accuracy
- Gate exception details in error page behind superuser check
- Mask email addresses in cached social login errors
- Fix N+1 query in system view: batch SocialAccount counts
- Clean up lazy imports in social_adapter.py (move to top level)
- Remove duplicate django_scopes import in views.py
- Fix SOCIAL_DEFAULT_ACCESS documented as space ID (is boolean)
- Fix misleading "invite-only" example title and clarify that
  account creation is controlled at the identity provider level
- Remove redundant ENABLE_SIGNUP=0 from social-only example
- Update Django Admin section with explicit /admin/ path
- Fix ENABLE_SIGNUP info box to reference SOCIALACCOUNT_AUTO_SIGNUP
- Fix trailing comma in SOCIAL_PROVIDERS example
- Fix Keycloak example line break in code block
2026-03-18 15:46:28 -05:00
smilerz
786a2f079f
feat: harden social login flows and expose remaining allauth settings
- Add SOCIALACCOUNT_AUTO_SIGNUP and SOCIALACCOUNT_ONLY env settings
- Fix is_open_for_signup: scope ENABLE_SIGNUP check to account_signup
  view only, allowing OAuth callbacks through (was blocking social
  auto-signup when ENABLE_SIGNUP=0)
- Fix invite link redirect for SOCIALACCOUNT_ONLY mode
- Add pre_social_login hook to warn when unverified provider emails
  prevent email-based account matching
- Guard SOCIAL_DEFAULT_ACCESS against missing Space or Group (crash→warning)
- Add startup warnings for lockout configs (SOCIALACCOUNT_ONLY without
  providers, HIDE_LOGIN_FORM without auth methods, EMAIL_AUTHENTICATION
  without email config)
- Document invite-only workflow, verified email requirements, and all
  new settings
2026-03-18 15:46:27 -05:00
smilerz
23d03cc04b
feat: expose allauth social login settings and add troubleshooting docs
- Add env-configurable SOCIALACCOUNT_EMAIL_AUTHENTICATION,
  SOCIALACCOUNT_EMAIL_AUTHENTICATION_AUTO_CONNECT, and
  SOCIALACCOUNT_LOGIN_ON_GET settings
- Document email-based account matching, confirmation page bypass,
  and security considerations
- Add troubleshooting guide with common error codes, system page
  diagnostics, and solutions for frequent social login issues
  (callback failures, 403 errors, missing permissions)
2026-03-18 15:46:26 -05:00
smilerz
8a64eff203
fix: stub out pyppeteer PDF export dependency
Remove pyppeteer from requirements and comment out all PDF export
code paths. API endpoints return an error message directing users
to browser print (Ctrl+P) instead.
2026-03-17 22:20:08 -05:00
Cron
dad4871a04 docs: add morsl to related projects 2026-03-12 14:39:28 -05:00
vabene1111
f7f3524609 fixed possible inclusion of unwanted files trough local provider 2026-02-09 20:16:41 +01:00
vabene1111
e2a7e823aa
Merge pull request #4319 from le-lenn/improve-ai-usage-docs
Refine AI docs
2026-02-01 16:30:18 +01:00
vabene1111
96918cdc7c
Merge branch 'develop' into develop 2026-02-01 15:33:35 +01:00
vabene1111
f01083fe1f
Merge pull request #4225 from vspaziani/patch-1
Update docker-compose.yml
2026-02-01 15:16:29 +01:00
vabene1111
228b092e98
Merge pull request #4241 from floflausch/develop
Fixed wrong default port in documentation
2026-02-01 15:12:39 +01:00
vabene1111
70faf46515
Merge branch 'develop' into through-spellings 2026-02-01 15:11:13 +01:00
vabene1111
691db7ce56 Merge branch 'develop' of https://github.com/TandoorRecipes/recipes into develop
# Conflicts:
#	docs/features/import_export.md
2026-02-01 15:08:37 +01:00
vabene1111
147e9fd712 fixed cookbook manager import
https://github.com/TandoorRecipes/recipes/pull/4322
2026-02-01 15:07:57 +01:00
vabene1111
7f90e3afb4
Merge pull request #4352 from mattinx/hide-login-form
Add support to hide login form when social login is enabled
2026-02-01 15:02:12 +01:00
vabene1111
c163c4d9da
Update configuration.md 2026-02-01 15:01:53 +01:00
vabene1111
8ef3b7e5e6
Merge pull request #4378 from csg33k/patch-1
Create helmChart.md
2026-02-01 14:58:08 +01:00
loucasal
3402be73ad
Clarify and improve import/export documentation
- Clarified which Mealie exports are supported
- Corrected capitalization, punctuation and spelling throughout the document for consistency and clarity.
2026-01-31 13:49:53 +01:00
csg33k
e8da9bc03e
Create helmChart.md 2026-01-25 20:58:41 -05:00
Matt London
b32000d97d Add support to hide login form when social login is enabled
When using social login as the primary login method, it is sometimes
desirable to hide the regular login form so users are forced to login
via the social login methods.

This patch adds an additional setting controlled by the boolean
environment variable HIDE_LOGIN_FORM, which when enabled prevents the
display of the login form, forgot password, and sign-up buttons, as log
as there is at least one available social login provider.

This behaviour can by bypassed by adding ?form=1 to the login URL,
allowing the use of a local admin account
2026-01-07 19:00:37 -05:00
Lennard Schwarz
ed94500e6e
Refine docs 2025-12-22 15:18:29 +01:00
doylelew
0c9d1e0322 Integration documentation typo correction. 2025-12-11 12:47:17 -05:00
doylelew
59f4030558 Integration Pytest setup documentation 2025-12-11 12:24:44 -05:00
doylelew
9d5649e8f7 Full get_recipe_from_file method documentation 2025-12-11 11:54:17 -05:00
doylelew
9b61189509 Integration class logic documentation framework 2025-12-10 18:42:25 -05:00
doylelew
0916ea3ed4 Merge branch 'refs/heads/develop' into Documentation 2025-12-10 17:34:41 -05:00
Gordon
507456b89b
Correct misspellings of through
In a number of places in the codebase, the word `through` is misspelt as `trough`.
These have been changed
2025-11-26 15:25:32 +00:00
floflausch
3cbaac0b13 Fixed wrong default port 2025-11-19 21:09:07 +01:00
doylelew
76a0ebaa4e Removed duplicate Integration class example file in the Docs 2025-11-13 16:32:18 -05:00
doylelew
aa052da70f Creation of feature contribution guides and the setup step for integrations feature guide 2025-11-12 17:06:29 -05:00
doylelew
b1c07f8e5e Template cooklang importer with frontend button and docs 2025-11-12 14:14:01 -05:00
doylelew
cc70b07311 Docker Image from source documentation 2025-11-12 13:02:26 -05:00
vabene1111
d5d5c2c52b
Merge pull request #4159 from erikbledsoe/patch-1
documentation typo
2025-11-11 15:42:05 +01:00
vabene1111
7ffabfe711
Merge pull request #4166 from EifX/docs/apache-reverse-proxy
feat: add apache reverse proxy documentation
2025-11-11 15:41:13 +01:00
Vincent Spaziani
5545db6c1b
Update docker-compose.yml
Updating Web Recipes container with external port.
2025-11-11 07:29:21 -07:00
vabene1111
b377d2cd35
Merge pull request #4192 from Daan5556/patch-1
Docs: Added trailing slash to `system` path
2025-11-11 14:12:17 +01:00
Thomas Leister
e05aaed75c
Update manual setup instructions: vue is now vue3
The documentation has not been updated: "vue" directory is now "vue3".
2025-10-27 13:36:57 +01:00
Daan5556
4984e3e31b
Added trailing slash to system path 2025-10-27 13:03:53 +01:00
Alexander Eifler
8d0d338ea2 feat: add apache reverse proxy documentation 2025-10-15 20:56:39 +02:00
Erik Bledsoe
d7b26d1b29
documentation typo 2025-10-13 13:44:15 -04:00