An auth system for EVE Online to help in-game organizations manage online service access.
License: GNU General Public License v2.0
An auth system for EVE Online to help in-game organizations manage online service access.
Get help on gitter or submit an Issue.
Active Developers:
Beta Testers / Bug Fixers:
Special thanks to Nikdoof, as his auth was the foundation for the original work on this project.
Make sure you have signed the License Agreement by logging in at https://developers.eveonline.com before submitting any pull requests.
If the server fails to connect or execute a command, the manager assumes it was successful and modifies the user's authserviceinfo erroneously.
Allow / Impliment posting the remaining Reinfored-time directly as shown ingame to create the timer.
The same Ping gets executed 2 times
Right now, the only way that I am aware API information can be viewed outside of the admin panel is under the Corp Stats page.
It seems that this information would be better separated into its own page where corp-level security would still just see their own corp's APIs, but alliance-level security could see all the APIs.
I imagine a set of tabs should be able to separate the different corps' APIs efficiently.
In addition, the page could allow for additional information to be displayed. For instance, a basic PASS/FAIL for APIs to make it immediately apparent if an API is no longer valid without the need to load the jackknife for each individual.
In services.managers.util.ts3, line 142 throws an exception for empty lists. This occurs frequently after issuing a "use sid=1" command.
The exception prevents adding users and goes unhandled.
Add the ability for the auth system to be centered around a corporation as opposed to an alliance.
Also include the ability to grant permissions to people in alliance to allow them to join and auth.
with all the rights for srp added people in a group cannot add new srp fleets. . . only can if your logged in as root?
Not sure how critical this is, but I got this error upon completion of the command pip install -r requirements.txt
----------------------------------------
Cleaning up...
Command /usr/bin/python -c "import setuptools, tokenize;__file__='/tmp/pip_build_ubuntu/evelink/setup.py';exec(compile(getattr(tokenize, 'open', open)(__file__).read().replace('\r\n', '\n'), __file__, 'exec'))" install --record /tmp/pip-em5P3g-record/install-record.txt --single-version-externally-managed --compile failed with error code 1 in /tmp/pip_build_ubuntu/evelink
Storing debug log for failure in /home/ubuntu/.pip/pip.log
Pastebin link with full output: http://pastebin.com/LW3D7LxD
This was performed on a fresh install of Ubuntu Server 14.04 LTS, following the Full Production Setup guide.
Some users are being affected by a bug in which their jabber and mumble accounts are wiped every couple of hours and their IPboard forums accounts are altered such that their email becomes a string of numbers: e.x. "[email protected]" instead of "[email protected]"
This happens every couple of hours for the users affected
services/managers/eve_api_manager.py, line 45
No error handling when getting alliance dict object from evelink alliances list if alliance no longer exists.
Prevents celery task from running.
FYI the updates that were pushed out have links to all your pages including some of the scripts aka debug.sh has your ip in it as well
I think admins could use a front-end logging page which would leverage a generic logging model.
Perhaps a raw log viewer is in order as well.
Regardless of IS_CORP value, base.html renders CORP_NAME in top left corner.
I have two corps with a space in there tickers. the Auth refuses to pull the cldbid in team speak for them and also refuses to create the groups for them as well. Some users I can get it to create them by adding or removing them from a group but those two corps it refuses to create at all. ive tried deleting the syncgroups to no aval the sync groups are there for the groups but its not sending them to the ts3 server
Will put together some docs on this later
I've setup the auth system sucessfully - however I'm struggling to understand how to get Teamspeak option on the "Available services" page, I've currently got Forums, Jabber and Mumble listed.
I've tried changing
ENABLE_ALLIANCE_TEAMSPEAK3 = 'True' == os.environ.get('AA_ENABLE_ALLIANCE_TEAMSPEAK3', 'True')
But not having any luck - any pointers please ?
All in the title. Thanks anyway :)
Getting an Error while running:
python manage.py shell < run_alliance_corp_update.py
Traceback (most recent call last):
File "<console>", line 1, in <module>
File "/usr/local/lib/python2.7/dist-packages/celery/app/task.py", line 420, in __call__
return self.run(*args, **kwargs)
File "/srv/allianceserver/allianceauth/celerytask/tasks.py", line 278, in run_alliance_corp_update
all_alliance_api_info = EveApiManager.get_alliance_information(all_alliance_info.alliance_id)
File "/srv/allianceserver/allianceauth/services/managers/eve_api_manager.py", line 45, in get_alliance_information
results = alliance[0][int(alliance_id)]
KeyError: 1872018214
Anyone knows how to fix this issue?
May this also be the reason why auth groups aren't synced with phpBB?
It would be awesome for end users to be able to see their last 5 or 10 or how ever many SRP requests on their dash board, The fleet name, the kill link, the value assigned by the mod, any moderator comments and the status
When looking on the Corpspecific group names it comes into mind, that for some Services, exactly Mumble and TS, the Ticker as name would be more usefull As Corp_XYZ.
So pls add a option to change the naming in settings.py or so.
Slack is really good for those who don't even want the hassle of setting up a jabber server. It would be good to have an auth plugin for it.
https://code.djangoproject.com/ticket/21597#comment:29 contains a fix which is to close the connections when not doing resource heavy stuff.
UPDATE: https://docs.djangoproject.com/en/1.6/ref/settings/#conn-max-age
setting a maximum connection age might be the solution.
Only the group set with the permkey gets assigned, the oder ones are created but never get assigned.
TS3 doesn't handle errors very well. Need to make sure we grab them and report them without exploding.
Have the ability to remotely set forum avatars to character portraits.
So I would love if possible a feature in group management on the back end to make a group hidden to alliance members, or only visible to alliance members with certain permissions, for example
There might be a group called ts_leadership, I only want this visible to people with the CEO group or even not visible to anyone at all and only able to be given to people via the back end!
So I would love if possible a feature in group management on the back end to make a group hidden to alliance members, or only visible to alliance members with certain permissions, for example
There might be a group called ts_leadership, I only want this visible to people with the CEO group or even not visible to anyone at all and only able to be given to people via the back end!
recently moved our server dns to cloudflare and set up a bypass dns entery to not go through clouldflare however when it comes to jabber the first time you click the activate button it will give you a http error stating its unable to connect however if your go back and do it again it will work. . . any ideas?
If there's no teamspeak3 install (or the settings are entered incorrectly) unhandled exceptions from Teamspeak3Manager prevent database updates from executing.
Some people have reservations about providing a full api, perhaps require a full for HR/recruitment but allow a basic private character info and etc api for normal use cases?
im getting an Error for corporation_stats
[22/Nov/2014 12:29:39] "GET /corporation_stats/ HTTP/1.0" 500 27
Hy folks!
Some of our members are so intelligent to change their api from full access to char info only after registering. How is it possible to check the Mask during Update und temporary lock all services for that char as long as api is not full access?
Yours Haymo
Environment:
Request Method: GET
Request URL: http://www.somethingfishy.space:8000/activate_jabber/
Django Version: 1.6.1
Python Version: 2.7.3
Installed Applications:
('django.contrib.admin',
'django.contrib.auth',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.messages',
'django.contrib.staticfiles',
'django.contrib.humanize',
'django_evolution',
'djcelery',
'celerytask',
'bootstrapform',
'authentication',
'portal',
'registration',
'services',
'eveonline',
'groupmanagement',
'hrapplications',
'timerboard',
'srp')
Installed Middleware:
('django.contrib.sessions.middleware.SessionMiddleware',
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware')
Traceback:
File "/usr/local/lib/python2.7/dist-packages/django/core/handlers/base.py" in get_response
response = wrapped_callback(request, _callback_args, *_callback_kwargs)
return view_func(request, _args, *_kwargs)
return view_func(request, _args, *_kwargs)
info = OpenfireManager.add_user(character.character_name)
api.add_user(sanatized_username, password)
'groups': groups_str,
raise HTTPException(e.reason)
Exception Type: HTTPException at /activate_jabber/
Exception Value: [Errno 111] Connection refused
Looks like we're getting a warning from Celery indicating that using pickles can expose users to arbitrary code execution by a malicious user.
We should switch to JSON.
Forbidden
You don't have permission to access / on this server.
Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.
Apache/2.2.22 (Debian) Server at sub.domain.me Port 443
I'm using debian wheezy, Apache, MySQL, all at newest available destributions.
Tried setting up with apache config in your full install guide, and with editing of my system specific i-MSCP config.
Anyone with the same issue?
So, there's a lib for Discord, would it be too difficult to hook up a manager for it?
The managers generally all support the same actions but their functions are all named differently. Please make them consistent.
| Manager | add | addBlue | delete | disable | enable | exists | update_user_groups | remove_from_group | update_password |
|---|---|---|---|---|---|---|---|---|---|
| teamspeak | add_user | add_blue_user | delete_user | check_user_exists | update_groups | ||||
| phpbb | add_user | delete_user | disable_user | check_user | update_groups | remove_group | update_user_password | ||
| openfire | add_user | delete_user | lock_user | unlock_user | update_user_groups | delete_user_groups | update_user_pass | ||
| mumble | create_user | create_blue_user | delete_user | check_user_exist | update_groups | update_user_password | |||
| ipboard | add_user | delete_user | disable_user | add_user_to_group | remove_user_from_group | update_user_password |
One of my users' was being kicked from TS3 every time he used his permissions key.
Upon inspection of his Auther Services Info, I saw that all of his auth data was empty.
I had him activate Forums as a control experiment. That worked normally, but as soon as he activated TS3, I noticed that all of the fields were empty once again.
I deleted his auth account and had him recreate it. This seems to have corrected the problem, but I'm still not sure what was causing the service data to wipe.
He informed me that he had been running noscript originally, but had exempted the site once he started having trouble. Not sure if this might have been a factor or not.
Is there an explanation of what API mask is required for the various features?
if a user has a "`" in front of there name it will not allow you to delete the sync cache
Last time now... I promise,
I cant get jabber to sync groups with auth, the users are now created on jabber and are automatically added to the alliancemembers group when they sign up to auth but they are not added to the alliancemembers group on jabber
Traceback generated is pasted below
Environment:
Request Method: POST
Request URL: http://site.com/serivces/jabber_broadcast/
Django Version: 1.6.1
Python Version: 2.7.3
Installed Applications:
('suit',
'django.contrib.admin',
'django.contrib.auth',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.messages',
'django.contrib.staticfiles',
'django_evolution',
'djcelery',
'celerytask',
'bootstrapform',
'authentication',
'portal',
'registration',
'services',
'eveonline',
'groupmanagement',
'hrapplications')
Installed Middleware:
('django.contrib.sessions.middleware.SessionMiddleware',
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware')
Traceback:
File "/usr/local/lib/python2.7/dist-packages/django/core/handlers/base.py" in get_response
response = wrapped_callback(request, _callback_args, *_callback_kwargs) File "/usr/local/lib/python2.7/dist-packages/django/contrib/auth/decorators.py" in _wrapped_view
return view_func(request, _args, *_kwargs) File "/usr/local/lib/python2.7/dist-packages/django/contrib/auth/decorators.py" in _wrapped_view
return view_func(request, _args, *_kwargs) File "/home/auth/allianceauth/services/views.py" in jabber_broadcast_view
JabberManager.send_broadcast_message(form.cleaned_data['group'], form.cleaned_data['message']) File "/home/auth/allianceauth/services/managers/jabber_manager.py" in send_broadcast_message
client = xmpp.Client(settings.JABBER_URL) File "/usr/local/lib/python2.7/dist-packages/xmpp/client.py" in init
self.DEBUG=Debug.Debug(debug) File "/usr/local/lib/python2.7/dist-packages/xmpp/debug.py" in _init
self.active_set( active_flags ) File "/usr/local/lib/python2.7/dist-packages/xmpp/debug.py" in active_set
sys.stderr.write('Invalid debugflag given: %s\n' % t )
Exception Type: IOError at /serivces/jabber_broadcast/
Exception Value: [Errno 5] Input/output error
Hey man,
Whenever I install it It seems to not be able to load any of the static items to the CSS, JS and images all dont load even though I have checked and im sure it has all the apropriate systemk permissions to access it and the path looks correct. I have pasted the output bellow. Any ideas?
allianceadmin@fishyauth:~/allianceauth$ python manage.py runserver 0.0.0.0:8000 Validating > > > > models...
0 errors found
May 07, 2015 - 12:56:21
Django version 1.6.1, using settings 'alliance_auth.settings'
Starting development server at http://0.0.0.0:8000/
Quit the server with CONTROL-C.
[07/May/2015 12:56:25] "GET / HTTP/1.1" 200 1359
[07/May/2015 12:56:25] "GET /static/img/index_images/killboard.png HTTP/1.1" 404 111
[07/May/2015 12:56:25] "GET /static/img/index_images/index_bg.jpg HTTP/1.1" 404 110
[07/May/2015 12:56:25] "GET /static/img/index_images/media.png HTTP/1.1" 404 107
[07/May/2015 12:56:25] "GET /static/img/index_images/auth.png HTTP/1.1" 404 106
[07/May/2015 12:56:25] "GET /static/img/index_images/forums.png HTTP/1.1" 404 108
line 431, in run_corp_update
if (settings.IS_CORP and all_corp_info.corporation_id != settings.CORP_ID) or (not settings.IS_CORP and all_corp_info.alliance.alliance_id != settings.ALLIANCE_ID):
AttributeError: 'NoneType' object has no attribute 'alliance_id'
It's trying to comparing the ID of the corp's alliance which does not exist. This logic needs reworking.
missing table 1146, "Table 'alliance_auth.srp_srpfleetmain' doesn't exist")
I broke it again ๐ฏ
I've been following this to the letter, and alternated between Apache 2.2 and Apache 2.4 configuration methods of Order, Allow from ... and Require all granted.
I'm curious if anyone has ran into this issue, or if I'm missing something?
Here's my error (removed IP address, obviously):
[Thu Mar 12 16:35:05.151760 2015] [authz_core:error] [pid 22772] [client IP_ADDRESS:5602] AH01630: client denied by server configuration: /home/allianceserver/allianceauth/alliance_auth/wsgi.py
I've even restarted and re-installed my OS on my VPS at least twice to ensure that everything is fine. I'm running Ubuntu 64-bit version 14.04 at the moment.
Here's some extra information, as well:
Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.6 OpenSSL/1.0.1f mod_wsgi/3.4 Python/2.7.6
Environment:
Request Method: GET
Request URL: https://website.com/hr_application_management/
Django Version: 1.6.1
Python Version: 2.7.3
Installed Applications:
('suit',
'django.contrib.admin',
'django.contrib.auth',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.messages',
'django.contrib.staticfiles',
'django.contrib.humanize',
'django_evolution',
'djcelery',
'djsupervisor',
'celerytask',
'bootstrapform',
'authentication',
'portal',
'registration',
'services',
'eveonline',
'groupmanagement',
'hrapplications',
'timerboard',
'srp',
'gunicorn',
'bosh')
Installed Middleware:
('django.contrib.sessions.middleware.SessionMiddleware',
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware')
Traceback:
File "/usr/local/lib/python2.7/dist-packages/django/core/handlers/base.py" in get_response
response = wrapped_callback(request, _callback_args, *_callback_kwargs)
return view_func(request, _args, *_kwargs)
corp = EveCorporationInfo.objects.get(corporation_id=main_char.corporation_id)
return self.get_queryset().get(_args, *_kwargs)
self.model._meta.object_name)
Exception Type: DoesNotExist at /hr_application_management/
Exception Value: EveCorporationInfo matching query does not exist.
It would be awsome to structure the group requests so people who can manage groups can only see groups that I would consider to be below them. For example someone in the CEO group can add some one to director but someone in director can't add someone to CEO
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google โค๏ธ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.