entrouvert
/
authentic
16
0
Fork 0
Code Issues Pull Requests 32 Releases Activity
6,983 Commits 187 Branches 445 Tags 29 MiB
Commit Graph

6983 Commits

Author SHA1 Message Date
Benjamin Dauvergne 6f6714a4bb misc: fix dependencies to keep old migrations (#40685)
gitea/authentic/pipeline/head This commit looks good Details
2024-02-27 18:30:53 +01:00
Benjamin Dauvergne 936426a378 misc: fix min_password_strength default (#40685) 
Default value from models.py was ignored before, now that it is applied,
it breaks tests.
 2024-02-27 18:30:53 +01:00
Benjamin Dauvergne b16ea04d38 misc: unplug django_rbac (#40685) 
All models were moved/removed before.
 2024-02-27 18:30:53 +01:00
Benjamin Dauvergne 589eecdaae misc: add missing python/sql migrations to replaced migrations (#40685) 2024-02-27 18:30:53 +01:00
Benjamin Dauvergne 4e881c1c16 Revert "misc: install django-replace-migrations to squash migrations (#40685)" 
This reverts commit 352274999f.
 2024-02-27 18:30:53 +01:00
Benjamin Dauvergne b472cd1f8d wip: add missing migration to authenticators squash migrations 2024-02-27 18:30:53 +01:00
Benjamin Dauvergne 50e5a0b22f wip: add missing migration to auth_oidc squash migrations 2024-02-27 18:30:53 +01:00
Benjamin Dauvergne 4f379a9832 wip: add missing migrations to a2_rbac squash migration 2024-02-27 18:30:53 +01:00
Benjamin Dauvergne 56eea91946 misc: squash all migrations (#40685) 
The process was:
* unset settings.AUTH_USER_MODEL to prevent dependency from
  django.contrib.auth toward authentic2.custom_user,
* run "makemigrations --replace-all --name replace",
* remove old migrations,
* reset settings.AUTH_USER_MODEL.
 2024-02-27 18:30:53 +01:00
Benjamin Dauvergne a69db02eec misc: install django-replace-migrations to squash migrations (#40685) 
It can rewrite/squash existing migrations using :

  tox -e manage -- makemigrations --name replace --replace-all `find -iname migrations -type d | sed 's#.*/\([^/]\+\)/migrations#\1#'`
 2024-02-27 18:30:53 +01:00
Benjamin Dauvergne 166823087a tests: remove migration tests (#40685)
gitea/authentic/pipeline/head This commit looks good Details 
Test on old migrations are useless and they will break after squashing
all migrations.
 2024-02-27 18:30:16 +01:00
Benjamin Dauvergne 586171b000 misc: remove use of settings.AUTH_USER_MODEL (#40685) 
To rewrite authentic migrations we need to cut ties with
django.contrib.auth, it's simpler if AUTH_USER_MODEL is not used inside
authentic by only by django.contrib.auth code dependant upon the
effective User model. Authentic's code should directly reference
custom_user.User.
 2024-02-27 18:30:16 +01:00
Benjamin Dauvergne 110d5073b9 misc: remove all use of a get_user_model (#40685) 
It should only be used in reusable library.
 2024-02-27 18:19:07 +01:00
Benjamin Dauvergne 0a81164beb misc: unplug authentic2.idp (#40685) 
All models were removed before.
 2024-02-27 18:19:07 +01:00
Benjamin Dauvergne b2f6688190 misc: prepare removing nonce application (#40685) 
Remove all code and models.
 2024-02-27 18:19:07 +01:00
Benjamin Dauvergne 785e28d93a misc: unplug attribute_aggregator (#40685) 
All models were removed before.
 2024-02-27 18:19:07 +01:00
Benjamin Dauvergne 3f9829d261 misc: unplug auth_migrations_18 (#40685) 
Native django.contrib.auth migrations can be used now, the only glitch
are permissions on the proxy model LDAPUser:

    A problem arose migrating proxy model permissions for custom_user_user to authentic2_ldapuser.

      Permission(s) for authentic2_ldapuser already existed.
      Codenames Q: (AND: ('codename__in', ['add_ldapuser', 'change_ldapuser', 'delete_ldapuser', 'view_ldapuser']))

    Ensure to audit ALL permissions for custom_user_user and authentic2_ldapuser.

It can be fixed with the following SQL command:

   DELETE FROM auth_permission WHERE content_type_id = (SELECT id FROM django_content_type WHERE model = 'ldapuser' AND app_label = 'authentic2');
 2024-02-27 18:19:07 +01:00
Benjamin Dauvergne f101fdcd1b misc: make EmailValidator serializable (#40685) 2024-02-27 18:19:07 +01:00
Benjamin Dauvergne b080c03f07 misc: force check-migrations to use en language (#40685) 
It prevents having translated messages in migrations.
 2024-02-27 18:19:07 +01:00
Benjamin Dauvergne f9d07d749a auth_oidc: ignore missing kid when comparing keysets (#87468)
gitea/authentic/pipeline/head This commit looks good Details
2024-02-27 13:50:11 +01:00
Frédéric Péters 7d6601c870 idp oidc: use min() to cap login retry timeout (#87442)
gitea/authentic/pipeline/head This commit looks good Details
2024-02-25 19:18:58 +01:00
Benjamin Dauvergne 0c77d67608 ldap: prevent use of lock_email outside of a transaction (#70439)
gitea/authentic/pipeline/head There was a failure building this commit Details
2024-02-23 20:18:27 +01:00
Benjamin Dauvergne 5726eadf20 tests: use a deterministic order on users (#67600)
gitea/authentic/pipeline/head Build queued... Details
2024-02-22 12:57:35 +01:00
Benjamin Dauvergne 39ee9d898a ldap: use get_by_email for ldap email lookup (#67600) 2024-02-22 12:57:35 +01:00
Valentin Deniaud d271064052 translation update
gitea/authentic/pipeline/head This commit looks good Details
2024-02-15 17:51:28 +01:00
Yann Weber dbed18fd82 api/statistics: add service_ou filter when not group-by (#86179)
gitea/authentic/pipeline/head This commit looks good Details
2024-02-15 15:47:22 +01:00
Serghei Mihai 4ba169c4c1 a2_rbac: set admin role view permissions to role's OU users (#84706)
gitea/authentic/pipeline/head This commit looks good Details
2024-02-14 11:09:22 +01:00
Frédéric Péters dc5b825cd8 translation update (another typo fix) (#86861)
gitea/authentic/pipeline/head This commit looks good Details
2024-02-12 15:12:21 +01:00
Frédéric Péters 7fd65758cd translation update (typo fix) (#86861)
gitea/authentic/pipeline/head This commit looks good Details
2024-02-12 14:36:32 +01:00
Benjamin Dauvergne e63b9c2898 auth_oidc: rewrite loading of jwkset by URL (#85934)
gitea/authentic/pipeline/head This commit looks good Details 
Use the new common HTTP API.
 2024-02-09 10:46:13 +01:00
Benjamin Dauvergne eceb4b2424 tests: split auth_oidc manager tests (#85934) 2024-02-09 10:46:13 +01:00
Benjamin Dauvergne f13c7ca24e tests: move auth_oidc tests (#85934) 2024-02-09 10:46:13 +01:00
Benjamin Dauvergne 50c0bb7f56 misc: move http utils in authentic2.utils.http (#85934) 2024-02-09 10:46:13 +01:00
Benjamin Dauvergne d50622cb81 idp_cas: fix retrieval of LDAP user attributes (#86089)
gitea/authentic/pipeline/head This commit looks good Details
2024-02-05 10:51:19 +01:00
Frédéric Péters 3ab951f818 translation update
gitea/authentic/pipeline/head This commit looks good Details
2024-02-01 18:19:27 +01:00
Benjamin Dauvergne 9a46b01220 utils: authorize unaryop in expressions (#86266)
gitea/authentic/pipeline/head This commit looks good Details 
unary ops are :
- not x
- ~x
- -x
- +x
 2024-01-31 11:18:02 +01:00
Benjamin Dauvergne 1e4833cded utils: fix interpolation of error messages in condition_validator (#86266) 
condition_validator should not re-raise a new ValidationError, it breaks
interpolation of e.params in e.message.
 2024-01-31 11:18:02 +01:00
Paul Marillonnet b41cca7ec5 api/statistics: add inactivity-related events (#85790)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-30 16:13:10 +01:00
Yann Weber 06ea77c46d manager: do not display empty menu on users page (#85199)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-30 15:35:20 +01:00
Yann Weber 37f389d20f idp_oidc: add slug edition field in edit form (#76223)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-30 15:30:08 +01:00
Yann Weber 7c4462af0e templates: add true, false, & null aliases to context (#83795)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-30 15:20:05 +01:00
Yann Weber 02fccc9a0b manager: add link to role in api_client details (#76473)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-30 15:14:09 +01:00
Yann Weber 5879a34b23 manager: add homepage link on service page (#76005)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-30 15:08:24 +01:00
Yann Weber d7bfac4ed5 api: remove deprecated statistics from API listing (#86177)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-30 15:00:47 +01:00
Benjamin Dauvergne 3bcba166f5 translation update
gitea/authentic/pipeline/head This commit looks good Details
2024-01-30 09:42:52 +01:00
Benjamin Dauvergne 6cd42b17cd auth_saml: do not load disabled authenticators (#86075)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-29 11:39:29 +01:00
Benjamin Dauvergne 5bb21a7b63 auth_oidc: do not use logging inside a failed transaction (#84540)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-29 10:22:54 +01:00
Frédéric Péters c582103077 saml: get uploaded metadata file content as a string (#86217)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-27 09:38:58 +01:00
Benjamin Dauvergne 670481b026 misc: make opened session cookie http only and secure (#76809)
gitea/authentic/pipeline/head This commit looks good Details
2024-01-18 17:27:54 +01:00
Benjamin Dauvergne ddec7aac6b translation update
gitea/authentic/pipeline/head This commit looks good Details
2024-01-16 21:46:54 +01:00