entrouvert
/
authentic
16
0
Fork 0
Code Issues Pull Requests 33 Releases Activity
5,944 Commits 188 Branches 447 Tags 29 MiB
Commit Graph

5944 Commits

Author SHA1 Message Date
Valentin Deniaud 50f9c714fe ldap: add useful output to sync-ldap-users command (#54078) 2021-09-16 09:56:55 +02:00
Valentin Deniaud c72d6dd8c9 manager: disallow ordering by client in authorizations table (#56573) 2021-09-16 09:56:39 +02:00
Benjamin Dauvergne 43f8cddf63 csv: look for duplicate users in the target ou (#56831) 2021-09-16 09:19:35 +02:00
Valentin Deniaud 03bd9d53e1 idp_oidc: record sso refusal in journal (#56343) 2021-09-15 15:32:12 +02:00
Frédéric Péters db0e540c43 debian: replace usage of deprecated which command (#56297) 2021-09-11 19:10:35 +02:00
Benjamin Dauvergne 907520a7be views: record consent delete (#56347) 2021-09-10 16:56:04 +02:00
Benjamin Dauvergne 4f51104591 views: do not delete all consents on post (#56348) 2021-09-10 10:02:20 +02:00
Benjamin Dauvergne 3dcafd3db4 revert child/parent translation (#56626) 2021-09-03 15:43:22 +02:00
Paul Marillonnet d28d531bc2 translation update 2021-09-02 17:02:08 +02:00
Paul Marillonnet 3b5f9e3eaa attribute_kinds: add french phone number type (#45422) 2021-09-01 14:56:32 +02:00
Valentin Deniaud 65a10381e7 manager: fix typo in user role search form (#56516) 2021-08-31 17:44:17 +02:00
Benjamin Dauvergne d67ff3b2fa misc: use trigram index in free_text_search() for emails (#56439) 
Trigram indexes can improve performance of the LIKE operator but the
left hand side must match the index expression (here it's
@LOWER(email)@).
 2021-08-30 15:14:02 +02:00
Benjamin Dauvergne e7ed61ff3a misc: ignore case when searching by email (#42880) 2021-08-30 15:13:23 +02:00
Valentin Deniaud d2a9e3efc1 journal: make user column clickable (#56326) 2021-08-30 10:26:20 +02:00
Valentin Deniaud 4b485158e1 journal: make event type search less strict (#55969) 2021-08-30 10:25:44 +02:00
Valentin Deniaud 469e46412e manager: add user deletions choice in journal search form (#55969) 2021-08-30 10:25:44 +02:00
Valentin Deniaud 167d5ebba6 manager: add access to journal event types list (#55969) 2021-08-30 10:25:44 +02:00
Valentin Deniaud d23b49306e journal: refactor journal search documentation (#55969) 2021-08-30 10:25:44 +02:00
Valentin Deniaud b862971007 ldap_backend: do not check group dns if there is no group filter (#56115) 2021-08-30 10:25:23 +02:00
Valentin Deniaud 2db35f1915 manager: expose user deactivation reason (#19718) 2021-08-30 10:24:55 +02:00
Valentin Deniaud c7dd8f7f80 manager: display inheritance info excerpt in table on role page (#53481) 2021-08-30 10:24:18 +02:00
Valentin Deniaud 34989090b0 manager: controle role inheritance using table (#53481) 2021-08-30 10:24:18 +02:00
Valentin Deniaud d052b5b29d manager: move role ajax checkbox js to file (#53481) 2021-08-30 10:24:18 +02:00
Valentin Deniaud 5d14c6c8d6 manager: factorize SHOW_ALL_OU default value (#53481) 2021-08-30 10:24:18 +02:00
Benjamin Dauvergne 33eb044cf8 auth_oidc: ignore email case when linking existing users (#56392) 2021-08-27 09:07:13 +02:00
Benjamin Dauvergne 5efacd8f32 auth_oidc: customize handling of access_denied (#56337) 
access_denied is not an error but a regular response from the identity
provider when consent is denied or authentication is refused or fails.
 2021-08-26 15:59:37 +02:00
Benjamin Dauvergne 10e39e0c60 Jenkinsfile: factorize reporting as a final step (#56263) 
It resolves two problems :
* pylint reporting failed if called a second time,
* mergeJunitResults delete junit files on each run and produce a
  junit.xml file, so the second call to it would lose the result of the
  first test run.

There is no problem with coverage as the coverage file is incrementally
updated by each pytest run, I moved it to the end of the Jenkinsfile
anyway for coherency.
 2021-08-20 11:28:45 +02:00
Benjamin Dauvergne f0d3227fe8 Jenkinsfile: run slow authentic tests at night (#56263) 
Those test were not run by `tox -e rbac-py3-dj22`.

Also to prevent running again the tests of the main step
pytest_runtest_setup() is modified to skip fast tests when slow tests
are run.
 2021-08-20 11:28:45 +02:00
Benjamin Dauvergne 85c5324ea6 Jenkinsfile: keep using the existing venv (#56263) 
As calling virtualenv two times on the same directory failed.
 2021-08-20 11:28:45 +02:00
Frédéric Péters fc60359e1c translation update 2021-08-18 20:54:21 +02:00
Valentin Deniaud 294004cb65 manager: select default OU when adding a role (#56067) 2021-08-17 15:44:17 +02:00
Valentin Deniaud 56972ed0da misc: remove excessive spaces from strings (#56007) 2021-08-10 11:47:18 +02:00
Valentin Deniaud f24096f8b8 misc: concatenate strings when possible (#56007) 2021-08-10 11:02:45 +02:00
Frédéric Péters 208156b2c8 translation update 2021-08-09 20:47:42 +02:00
Frédéric Péters 964992d451 build: distribute src/authentic2/backends/templates/ (#56074) 2021-08-09 20:07:33 +02:00
Benjamin Dauvergne 9b0accfba7 auth_oidc: fix typo (#56055) 2021-08-09 15:01:55 +02:00
Frédéric Péters 6de7c5039d trivial: fix typo and phrasing in ldap debug log message (#56056) 2021-08-09 12:39:39 +02:00
Frédéric Péters 4a3deb826c manager: fix phrasing of LDAP link info (#56045) 2021-08-09 09:30:12 +02:00
Frédéric Péters be1fa898bd translation update 2021-08-09 09:08:30 +02:00
Benjamin Dauvergne 374fd8dc1f auth_saml: add defalut value for MELLON_LOOKUP_BY_ATTRIBUTES (#46566) 2021-08-06 16:30:23 +02:00
Benjamin Dauvergne c3f39b4637 ci: make target for check-migrations / simplify Jenkinsfile and default targets 
tox.ini:
* check-migrations is now in its own target
* getlasso.sh is removed as python2 is not supported anymore
* code-style/check-migrations/pylint are run after tests to not delay
  reporting of test failures.
Jenkinsfile:
* regular test run use the default target list from tox.ini
* on time trigger, only the rbac target is run
 2021-08-06 16:27:00 +02:00
Benjamin Dauvergne 3fa72a15e3 manager: prevent CSV injection through exports (#55976) 2021-08-05 11:49:02 +02:00
Valentin Deniaud d1aae69e0a journal: improve message when no search results (#55968) 2021-08-04 14:24:30 +02:00
Benjamin Dauvergne 7050db8b4e ldap: on INVALID_CREDENTIALS, try to rebind before looking up the user (#53685) 
On a bind failure, the current bind context is lost, if we want to
lookup the user whose bind failed we must first rebind with the service
credentials.
 2021-08-03 11:52:44 +02:00
Benjamin Dauvergne c9b626d614 ldap: do not trace when SEARCH return no attributes (#53685) 2021-08-03 11:52:44 +02:00
Valentin Deniaud ef1d8c8e2d manager: include ldap external id info in user details (#51211) 2021-08-02 10:00:51 +02:00
Valentin Deniaud 6cf8ef30af manager: add and uniformize page titles (#55838) 2021-08-02 09:59:50 +02:00
Benjamin Dauvergne 8b87c65deb update translation 2021-07-30 14:14:38 +02:00
Benjamin Dauvergne a70a976608 use tox in update-locales.sh 
The current script did not work, it works with tox.
 2021-07-30 14:14:38 +02:00
Benjamin Dauvergne 1ed6387c62 auth_fc: only check required attributes on user registration (#55836) 2021-07-29 18:37:31 +02:00