entrouvert
/
authentic
16
0
Fork 0
Code Issues Pull Requests 32 Releases Activity
2,234 Commits 187 Branches 445 Tags 29 MiB
Commit Graph

2234 Commits

Author SHA1 Message Date
Jérôme Schneider bd6c954064 debian-wheezy: add pydist-overrides 2015-04-23 13:16:58 +02:00
Benjamin Dauvergne 06fe6bf97b accounts: use Django naming for password related views, keep previous name for retrocompatibility with already deployed themes (#6851) 
Django 1.7 now use accounting view names directly in its code, they also
changed the signature of the password_change_done view regexp (it
expects a uidb64 argument instead of uidb36). To minimize difference
with expected view names but to also keep retrocompatibility view names
were renamed with the Django names and old declarations were kept but
declared after the official ones such that they will never match a
request but they can still be used for reversing view names.
 2015-04-23 11:23:31 +02:00
Benjamin Dauvergne 5232d170ab views: in logout() show the intermediate page when next_url is not the default next URL (fixes #7031) 2015-04-23 11:21:57 +02:00
Benjamin Dauvergne d550f427d4 manager: fix permission names in view restrictions (fixes #7030) 2015-04-23 11:11:28 +02:00
Benjamin Dauvergne 1f06502324 Add --noinput when calling migrate 2015-04-17 14:31:50 +02:00
Frédéric Péters 3504b3e597 adapt debian_config.py to match new TENANT_SETTINGS_LOADERS name (#6836) 2015-04-17 14:25:53 +02:00
Benjamin Dauvergne 538ea47f6b forms.py: change NextUrlFormMixin's field "next_url" to be optional (fixes #6917) 
If not optional and no next_url parameter is given, an error is raised
and the user can never complete the form.
 2015-04-17 14:18:49 +02:00
Benjamin Dauvergne 10e38ad443 validators: verify that email's domain idna encoding succeed before validating it (#6800) 2015-04-17 14:04:47 +02:00
Benjamin Dauvergne 9fc5a61d4e manager: fix logout on users and roles pages (fixes #6954) 
The supper call in RolesMixin was made on the wrong class.
 2015-04-17 14:04:10 +02:00
Benjamin Dauvergne 181025b13b admin: remove group member editing through the group change form (fixes #6951) 2015-04-17 14:03:50 +02:00
Benjamin Dauvergne 83d8390623 registration_backend/forms.py: fix passing of the HTML template to the send_mail function 2015-04-17 14:03:00 +02:00
Benjamin Dauvergne c8e10def06 Change default logging configuration (fixes #6922) 
We only configure the root logger and 'django.db'. If DEBUG is True we
see the root logger to DEBUG. We do not use Django default logging
configuration by bypassing it using LOGGING_CONFIG = None[1].

* django_select2 logger is set to warning as the INFO level emit
  uninteresting messages
* django.db logger is set to INFO, to prevent getting SQL queries when
  DEBUG is True. To get the SQL queries set DEBUG_DB to True in your
  settings.
* Set a default logging configuration for the multitenant packaging
* Add a RequestContextFilter logging filterto provide, usename, ip
  and a request ID to the formatter.
* Use the new filter in default, debian and debian-multitenant settings.
* Add a new setting DEBUG_DB for activating logging of SQL queries.

[1]: https://www.caktusgroup.com/blog/2015/01/27/Django-Logging-Configuration-logging_config-default-settings-logger/
 2015-04-17 14:02:34 +02:00
Benjamin Dauvergne 59f536e998 Set a request id on all requests (#6922) 
The request id is extracted from an header set using the
REQUEST_ID_HEADER setting or generated using the default Python random
number generator.
 2015-04-17 14:02:12 +02:00
Benjamin Dauvergne 4f3359f075 Add a XForwardedForMiddleware middleware (#6922) 
It allows authentic to automatically get the real ip when behind
Gunicorn+nginx.
 2015-04-17 14:02:04 +02:00
Benjamin Dauvergne e867d7fba7 idp/saml/backend.py: refactor logging 2015-04-17 14:00:14 +02:00
Benjamin Dauvergne 7289e486cd views.py: log a message on logout 2015-04-17 13:59:31 +02:00
Benjamin Dauvergne 3ce5595074 utils.py: log a message on login 2015-04-17 13:59:26 +02:00
Benjamin Dauvergne 6491033c80 saml: use get_or_create() in save_key_values (fixes #6883) 
With a simple Model.save() the second save in case of replay fails
because the created is updated to the NULL value. It seem that
initialization of DateTime field is ignored when Django detects that a
save is an UPDATE and not an INSERT.
 2015-04-17 13:59:08 +02:00
Benjamin Dauvergne 5d6723ad00 attribute_aggregator: fix oid for eduOrg attributes 2015-04-17 13:56:06 +02:00
Benjamin Dauvergne 3b604e9aa2 Fix typo in get_sp_options_policy_default() (fixes #6858) 2015-04-17 12:16:44 +02:00
Benjamin Dauvergne 45b82c0018 Add debian directory from 2.1.13 release 2015-04-17 12:16:23 +02:00
Benjamin Dauvergne dc3e09d9ea Prepare release 2.1.13 2015-03-23 17:25:46 +01:00
Benjamin Dauvergne 2d8fbdcd53 ldap: update block saved in LDAP users objects with default values (#6784) 
If a session is older thant the last upgrade then it can happend that
user.block miss keys which are now mandatory and have a default value.
To be sure those keys exist we update the block with default value each
time it is used, i.e. in LDAPUser.get_connection().
 2015-03-23 17:13:14 +01:00
Benjamin Dauvergne 22d382e27a Optimize queries in SamlBackend.service_list() 
Homepage was making too many queries when there are a lot of service
providers, for example when the IdP is part of a federation.
 2015-03-23 17:12:59 +01:00
Benjamin Dauvergne 96ab51e357 In get_sp_options_policy() and get_idp_options_policy() cache query for default and all queries 2015-03-23 17:12:59 +01:00
Benjamin Dauvergne d69eec9e20 Add decorator to cache function results in request 
It should be used to cache queryset result that can be reused during the
same request.
 2015-03-23 17:12:59 +01:00
Benjamin Dauvergne 9b23610a01 Fix missing distribution of locales and tempaltes for authentic2_idp_cas 2015-03-13 16:10:11 +01:00
Benjamin Dauvergne e878ad3c14 Prepare release 2.1.12 2015-03-13 16:08:01 +01:00
Benjamin Dauvergne dba9e5e3ba Generate version only from git tags 2015-03-13 16:08:01 +01:00
Benjamin Dauvergne e30917ed40 Reorder migrations of the saml application 2015-03-13 15:40:06 +01:00
Benjamin Dauvergne dc70e960e1 ldap: fix logging call 2015-03-13 14:15:57 +01:00
Benjamin Dauvergne 7a9423e6ed Do not pass homepage url through settings, use variables set in the template context by a template context processor (refs #6690) 2015-03-13 12:06:27 +01:00
Serghei Mihai f41a12ba9a login label updated when email authentication enabled (6669) 2015-03-12 11:21:11 +01:00
Benjamin Dauvergne 6b9606a2c0 Support variable MANAGER_HOMEPAGE_URL and MANAGER_HOMEPAGE_TILE for the first element of the manager breadcrumb (fixes #6690) 
The goal is to ease integration of A2 manager in an administration
portal by permitting global navigation between sites.
 2015-03-11 15:10:02 +01:00
Benjamin Dauvergne c38ee5e7c6 Add created filed to SamlKeyValue to permit expiration of stored values (fixes #5639) 
This commit also set the default manager to be the ExpireManager.
 2015-03-11 15:08:42 +01:00
Benjamin Dauvergne d5675f2540 Add an ExpireManager to share common code around expiration of models (refs #5639) 2015-03-11 15:08:42 +01:00
Benjamin Dauvergne 1d6a4d9e15 Remove LibertyFederation model (refs #5639) 
The model is unused since commit df00c9d6c8.
 2015-03-11 15:08:42 +01:00
Benjamin Dauvergne 4df0d05f4c Add missing newline in translations that broke msgfmt 2015-03-10 14:57:11 +01:00
Benjamin Dauvergne 6f4c045408 Deactivate custom csrf view for tests 2015-03-10 14:53:13 +01:00
Frédéric Péters 5907b85caf update French translation 2015-03-10 13:23:47 +01:00
Benjamin Dauvergne f257370779 Use new CSRF cookie validation on login view (refs #5617) 2015-03-10 12:47:35 +01:00
Benjamin Dauvergne 8fd5446dc0 Update french translation (fixes #5617) 2015-03-10 12:47:20 +01:00
Benjamin Dauvergne 0baa91cf25 Use new mixin on registration view to show a form error on CSRF token validation error instead of a redirect (refs #5617) 2015-03-10 12:47:15 +01:00
Benjamin Dauvergne 31c743d879 Allow validation of CSRF cookie to be done in view using a CBV mixin or an helper function (refs #5617) 
Use the CBV for a do-nothing use or on a function based view you must
apply the decorators @csrf_exempt and @ensure_csrf_cookie on your view
(in this order) and use utils.csrf_token_check(request, form) to check
for the cookie before validating your form.
 2015-03-10 12:47:15 +01:00
Benjamin Dauvergne 25ef99ffae Use setting CSRF_FAILURE_VIEW to prevent user seeing 403 on CSRF failure, instead redirect them to the same page and display a warning (refs #5617) 2015-03-10 12:47:15 +01:00
Serghei Mihai 28a158144a registration tests updated to new settings (#6661) 2015-03-10 11:07:10 +01:00
Serghei Mihai 7de4f82778 email authentication enabled by default 
Closes #6658
 2015-03-10 09:26:16 +01:00
Serghei Mihai 4b746622f8 locale: french translation for registration backend 2015-03-09 18:20:44 +01:00
Serghei Mihai 8a97dddf1e typo fix on login choices page (#6634) 2015-03-09 18:16:46 +01:00
Serghei Mihai a025418232 first and last names mandatory on registration (#6653) 2015-03-09 17:08:34 +01:00