docuseal

Commit Graph

Author	SHA1	Message	Date
Pete Matsyburka	e52830c9b4	add authorization checks	1 month ago
Wabo	61a8b080ac	Point all image references at ghcr.io/wabolabs/wabosign The image now lives at GHCR (pushed manually as :latest and :sha-45ed368a). Aligning the rest of the repo to match: - docker-compose.yml: image: ghcr.io/wabolabs/wabosign:latest - README.md docker-run example: same - .github/workflows/docker.yml: meta.images and login-action repointed at ghcr.io. Login now uses the auto-provisioned GITHUB_TOKEN with a job-level `permissions: packages: write`; the DOCKERHUB_USERNAME / DOCKERHUB_TOKEN secrets are no longer needed and can be removed from the repo settings. Also adds a `type=raw,value=latest` tag so the semver-triggered build keeps :latest pointing at the newest release. - REBRANDING.md: registry note updated for accuracy. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago
Wabo	45ed368a26	Fix Google SSO boot order and route plumbing surfaced by specs Three fixes uncovered while running the new omniauth_callbacks specs in a Ruby 4.0.1 container: - config/initializers/devise.rb: read GOOGLE_CLIENT_ID / SECRET / ALLOWED_DOMAINS directly from ENV instead of via Wabosign::*. The module isn't autoloadable yet at initializer-load time (Rails.root isn't set), but ENV is. The User model and controllers still go through Wabosign helpers, which load fine once Rails is up. - app/models/user.rb: stop passing `omniauth_providers:` when :omniauthable isn't in the modules list. Devise raises NoMethodError omniauth_providers= otherwise. Now both the module inclusion and the keyword are gated on Wabosign.google_sso_enabled? - spec/requests/users/omniauth_callbacks_spec.rb: post to user_google_oauth2_omniauth_callback_path instead of the hardcoded /users/auth/... URL. With devise_for :users, path: '/' the actual callback route is /auth/google_oauth2/callback. Also create a placeholder admin user so ApplicationController#maybe_redirect_to_setup doesn't intercept the request before the callback action runs. Schema dump and .gitignore (adds /vendor) bundled in. All 5 specs now pass. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago
Wabo	c77744fea1	Regenerate Gemfile.lock for OmniAuth gems Adds the resolved entries for omniauth 2.1.4, omniauth-google-oauth2 1.2.2, omniauth-rails_csrf_protection 1.0.2, and their transitive deps (omniauth-oauth2, oauth2, hashie, multi_xml). Should have shipped with the SSO commit; pulled out here so the prior commit stays reviewable and bundle install no longer regenerates the file at boot. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago
Wabo	ad12ef7fb5	Add Google Workspace SSO via omniauth-google-oauth2 Adds "Sign in with Google" as an additive auth path next to email and password. When GOOGLE_CLIENT_ID and GOOGLE_CLIENT_SECRET are set, the Google button appears on the sign-in page and the SSO settings page shows an env-driven status panel. Access is restricted to Workspace domains listed in GOOGLE_ALLOWED_DOMAINS (CSV); the hd claim is re-verified server-side on every callback so a misconfigured Google consent screen cannot bypass it. New users from an allowed domain are JIT-provisioned in the default account (oldest, or pinned via GOOGLE_DEFAULT_ACCOUNT_ID). Existing users with a matching email get linked to their Google identity on first sign-in; identity collisions (same email, different Google uid) are rejected. Google's MFA is trusted: users signed in via Google do not see the WaboSign OTP prompt or the FORCE_MFA setup redirect. Password sign-in keeps working unchanged, including its existing OTP gate. Implementation: - Devise gains :omniauthable when SSO is enabled; users get provider/uid columns with a partial unique index that allows NULL for password-only rows. - Users::OmniauthCallbacksController handles /users/auth/google_oauth2/ callback, sets session[:bypass_otp_for_sso], and redirects on failure. - SessionsController#destroy clears the bypass flag on sign-out. - DashboardController#maybe_redirect_mfa_setup honours the flag and User#signed_in_via_sso?. - The previously empty _omniauthable.html.erb stub now renders the Google button. Request specs cover happy path, link-existing-user, domain rejection, identity collision, and 2FA bypass. GOOGLE_SSO.md is the operator-facing setup, behaviour, verification, and troubleshooting guide. README links to it. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago
Wabo	2796ddf424	Rebrand DocuSeal to WaboSign and unlock Pro features Renames the product to WaboSign across UI, mailers, locales, assets, and internal Ruby module. Keeps the upstream DocuSeal attribution required by AGPLv3 §7(b) in the powered-by footer, email attribution, README, and a new NOTICE file. Migration renames the AATL cert identifier in encrypted configs from docuseal_aatl to wabosign_aatl. Removes multitenant-gated Pro upsell UI (Plans/Console/Upgrade links, SMS/SSO/bulk-send/logo placeholders, reminder-duration restriction, the "DocuSeal Pro" email-attribution toggle, conditions/formula/payment pricing links) so every shipped feature is reachable on a self-hosted deployment. Multitenant routing logic is preserved. Drops Discord, Twitter, and ChatGPT/AI-assistant chrome. Embedding modal keeps the upstream <docuseal-form> / @docuseal/* SDK contract so existing embedded forms continue to work; documented in NOTICE. REBRANDING.md captures the change inventory for future maintainers. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago
Pete Matsyburka	755decca27	adjust capture revision	1 month ago
Pete Matsyburka	41604008d1	clamp area box	1 month ago
Pete Matsyburka	5bddce8969	fix i18n	1 month ago
Pete Matsyburka	b25503f141	fix i18n	1 month ago
Pete Matsyburka	bdf1850448	resend emails	1 month ago
Pete Matsyburka	230d3ccf69	fix with download config	1 month ago
Pete Matsyburka	e378025a2d	fix refactor complete button	1 month ago
Alex Turchyn	04129ded90	add complete button to signing form header	1 month ago
Pete Matsyburka	a7891f89f8	do not override custom webhook header	1 month ago
Pete Matsyburka	37d4a8e834	update gem	1 month ago
Alex Turchyn	528a1216f8	Merge from docusealco/wip	1 month ago
Pete Matsyburka	f2479bd259	adjust open revisions	1 month ago
Pete Matsyburka	135f0826d2	fix style	1 month ago
Pete Matsyburka	5710f0177b	update gh stars	1 month ago
Pete Matsyburka	1a3a0528ba	fix i18n	1 month ago
Pete Matsyburka	59793ff374	adjust builder	1 month ago
Pete Matsyburka	3c4ed42419	fix i18n	1 month ago
Pete Matsyburka	6a17b61550	update gem	1 month ago
Pete Matsyburka	76659497b7	typos	1 month ago
Pete Matsyburka	ee50c957cb	update gem	1 month ago
Pete Matsyburka	a9dd200919	add pdfium rotate	1 month ago
Pete Matsyburka	1fa953104a	update gh stars	1 month ago
Pete Matsyburka	50eb5b070e	fix typo	1 month ago
Pete Matsyburka	10fd624bec	add revisions	1 month ago
Alex Turchyn	04ec2f8260	allow permanent delete submissions in archived templates	1 month ago
Pete Matsyburka	d828d79574	improve log	1 month ago
Pete Matsyburka	01dd3fefe5	retry webhooks in test mode	1 month ago
Pete Matsyburka	45ae954c0c	add hmac webhook secret	1 month ago
Pete Matsyburka	1304849b55	update gh stars	1 month ago
Pete Matsyburka	0875faa079	fix date preview	1 month ago
Pete Matsyburka	3aa15d6ea6	update gem	1 month ago
Pete Matsyburka	6557329e97	gh 13k	1 month ago
Pete Matsyburka	be27ce4161	Merge pull request #666 from aqilaziz/docs-fix-readme-typos docs: fix README typos	1 month ago
aqilaziz	a3391a970e	docs: fix README typos	1 month ago
Alex Turchyn	744d45d2c5	Merge from docusealco/wip	2 months ago
Pete Matsyburka	310b16f54a	use mcp source	2 months ago
Pete Matsyburka	6d3ad4a869	update gh stars	2 months ago
Alex Turchyn	1ce2448820	update create_template and send_documents annotations	2 months ago
Pete Matsyburka	07b4ada5be	optimize edit json	2 months ago
Pete Matsyburka	f70bf530ba	hide qr link	2 months ago
Pete Matsyburka	a26aa0f411	remove log	2 months ago
Pete Matsyburka	584577c21f	fix ed.jp email typo	2 months ago
Pete Matsyburka	1503375eed	respond to HEAD file proxy	2 months ago
Pete Matsyburka	2dec099f20	fix signature canvas minimize	2 months ago

1 2 3 4 5 ...

2774 Commits (b0965eb2760a1753bdee07c7ffcebea085948107) All Branches Search

2774 Commits (b0965eb2760a1753bdee07c7ffcebea085948107)

All Branches