Benjamin Dauvergne
6f6714a4bb
misc: fix dependencies to keep old migrations ( #40685 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne
936426a378
misc: fix min_password_strength default ( #40685 )
...
Default value from models.py was ignored before, now that it is applied,
it breaks tests.
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne
b16ea04d38
misc: unplug django_rbac ( #40685 )
...
All models were moved/removed before.
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne
589eecdaae
misc: add missing python/sql migrations to replaced migrations ( #40685 )
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne
4e881c1c16
Revert "misc: install django-replace-migrations to squash migrations ( #40685 )"
...
This reverts commit 352274999f
.
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne
b472cd1f8d
wip: add missing migration to authenticators squash migrations
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne
50e5a0b22f
wip: add missing migration to auth_oidc squash migrations
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne
4f379a9832
wip: add missing migrations to a2_rbac squash migration
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne
56eea91946
misc: squash all migrations ( #40685 )
...
The process was:
* unset settings.AUTH_USER_MODEL to prevent dependency from
django.contrib.auth toward authentic2.custom_user,
* run "makemigrations --replace-all --name replace",
* remove old migrations,
* reset settings.AUTH_USER_MODEL.
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne
a69db02eec
misc: install django-replace-migrations to squash migrations ( #40685 )
...
It can rewrite/squash existing migrations using :
tox -e manage -- makemigrations --name replace --replace-all `find -iname migrations -type d | sed 's#.*/\([^/]\+\)/migrations#\1#'`
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne
166823087a
tests: remove migration tests ( #40685 )
...
gitea/authentic/pipeline/head This commit looks good
Details
Test on old migrations are useless and they will break after squashing
all migrations.
2024-02-27 18:30:16 +01:00
Benjamin Dauvergne
586171b000
misc: remove use of settings.AUTH_USER_MODEL ( #40685 )
...
To rewrite authentic migrations we need to cut ties with
django.contrib.auth, it's simpler if AUTH_USER_MODEL is not used inside
authentic by only by django.contrib.auth code dependant upon the
effective User model. Authentic's code should directly reference
custom_user.User.
2024-02-27 18:30:16 +01:00
Benjamin Dauvergne
110d5073b9
misc: remove all use of a get_user_model ( #40685 )
...
It should only be used in reusable library.
2024-02-27 18:19:07 +01:00
Benjamin Dauvergne
0a81164beb
misc: unplug authentic2.idp ( #40685 )
...
All models were removed before.
2024-02-27 18:19:07 +01:00
Benjamin Dauvergne
b2f6688190
misc: prepare removing nonce application ( #40685 )
...
Remove all code and models.
2024-02-27 18:19:07 +01:00
Benjamin Dauvergne
785e28d93a
misc: unplug attribute_aggregator ( #40685 )
...
All models were removed before.
2024-02-27 18:19:07 +01:00
Benjamin Dauvergne
3f9829d261
misc: unplug auth_migrations_18 ( #40685 )
...
Native django.contrib.auth migrations can be used now, the only glitch
are permissions on the proxy model LDAPUser:
A problem arose migrating proxy model permissions for custom_user_user to authentic2_ldapuser.
Permission(s) for authentic2_ldapuser already existed.
Codenames Q: (AND: ('codename__in', ['add_ldapuser', 'change_ldapuser', 'delete_ldapuser', 'view_ldapuser']))
Ensure to audit ALL permissions for custom_user_user and authentic2_ldapuser.
It can be fixed with the following SQL command:
DELETE FROM auth_permission WHERE content_type_id = (SELECT id FROM django_content_type WHERE model = 'ldapuser' AND app_label = 'authentic2');
2024-02-27 18:19:07 +01:00
Benjamin Dauvergne
f101fdcd1b
misc: make EmailValidator serializable ( #40685 )
2024-02-27 18:19:07 +01:00
Benjamin Dauvergne
b080c03f07
misc: force check-migrations to use en language ( #40685 )
...
It prevents having translated messages in migrations.
2024-02-27 18:19:07 +01:00
Benjamin Dauvergne
f9d07d749a
auth_oidc: ignore missing kid when comparing keysets ( #87468 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-02-27 13:50:11 +01:00
Frédéric Péters
7d6601c870
idp oidc: use min() to cap login retry timeout ( #87442 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-02-25 19:18:58 +01:00
Benjamin Dauvergne
0c77d67608
ldap: prevent use of lock_email outside of a transaction ( #70439 )
gitea/authentic/pipeline/head There was a failure building this commit
Details
2024-02-23 20:18:27 +01:00
Benjamin Dauvergne
5726eadf20
tests: use a deterministic order on users ( #67600 )
gitea/authentic/pipeline/head Build queued...
Details
2024-02-22 12:57:35 +01:00
Benjamin Dauvergne
39ee9d898a
ldap: use get_by_email for ldap email lookup ( #67600 )
2024-02-22 12:57:35 +01:00
Valentin Deniaud
d271064052
translation update
gitea/authentic/pipeline/head This commit looks good
Details
2024-02-15 17:51:28 +01:00
Yann Weber
dbed18fd82
api/statistics: add service_ou filter when not group-by ( #86179 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-02-15 15:47:22 +01:00
Serghei Mihai
4ba169c4c1
a2_rbac: set admin role view permissions to role's OU users ( #84706 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-02-14 11:09:22 +01:00
Frédéric Péters
dc5b825cd8
translation update (another typo fix) ( #86861 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-02-12 15:12:21 +01:00
Frédéric Péters
7fd65758cd
translation update (typo fix) ( #86861 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-02-12 14:36:32 +01:00
Benjamin Dauvergne
e63b9c2898
auth_oidc: rewrite loading of jwkset by URL ( #85934 )
...
gitea/authentic/pipeline/head This commit looks good
Details
Use the new common HTTP API.
2024-02-09 10:46:13 +01:00
Benjamin Dauvergne
eceb4b2424
tests: split auth_oidc manager tests ( #85934 )
2024-02-09 10:46:13 +01:00
Benjamin Dauvergne
f13c7ca24e
tests: move auth_oidc tests ( #85934 )
2024-02-09 10:46:13 +01:00
Benjamin Dauvergne
50c0bb7f56
misc: move http utils in authentic2.utils.http ( #85934 )
2024-02-09 10:46:13 +01:00
Benjamin Dauvergne
d50622cb81
idp_cas: fix retrieval of LDAP user attributes ( #86089 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-02-05 10:51:19 +01:00
Frédéric Péters
3ab951f818
translation update
gitea/authentic/pipeline/head This commit looks good
Details
2024-02-01 18:19:27 +01:00
Benjamin Dauvergne
9a46b01220
utils: authorize unaryop in expressions ( #86266 )
...
gitea/authentic/pipeline/head This commit looks good
Details
unary ops are :
- not x
- ~x
- -x
- +x
2024-01-31 11:18:02 +01:00
Benjamin Dauvergne
1e4833cded
utils: fix interpolation of error messages in condition_validator ( #86266 )
...
condition_validator should not re-raise a new ValidationError, it breaks
interpolation of e.params in e.message.
2024-01-31 11:18:02 +01:00
Paul Marillonnet
b41cca7ec5
api/statistics: add inactivity-related events ( #85790 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-30 16:13:10 +01:00
Yann Weber
06ea77c46d
manager: do not display empty menu on users page ( #85199 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-30 15:35:20 +01:00
Yann Weber
37f389d20f
idp_oidc: add slug edition field in edit form ( #76223 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-30 15:30:08 +01:00
Yann Weber
7c4462af0e
templates: add true, false, & null aliases to context ( #83795 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-30 15:20:05 +01:00
Yann Weber
02fccc9a0b
manager: add link to role in api_client details ( #76473 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-30 15:14:09 +01:00
Yann Weber
5879a34b23
manager: add homepage link on service page ( #76005 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-30 15:08:24 +01:00
Yann Weber
d7bfac4ed5
api: remove deprecated statistics from API listing ( #86177 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-30 15:00:47 +01:00
Benjamin Dauvergne
3bcba166f5
translation update
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-30 09:42:52 +01:00
Benjamin Dauvergne
6cd42b17cd
auth_saml: do not load disabled authenticators ( #86075 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-29 11:39:29 +01:00
Benjamin Dauvergne
5bb21a7b63
auth_oidc: do not use logging inside a failed transaction ( #84540 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-29 10:22:54 +01:00
Frédéric Péters
c582103077
saml: get uploaded metadata file content as a string ( #86217 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-27 09:38:58 +01:00
Benjamin Dauvergne
670481b026
misc: make opened session cookie http only and secure ( #76809 )
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-18 17:27:54 +01:00
Benjamin Dauvergne
ddec7aac6b
translation update
gitea/authentic/pipeline/head This commit looks good
Details
2024-01-16 21:46:54 +01:00