Valentin Deniaud
a39e0a8d1b
authentic2_auth_fc: fix authenticator creation function ( #66243 )
2022-06-15 16:51:03 +02:00
Valentin Deniaud
522f771159
authentic2_auth_fc: move authenticator creation function ( #66243 )
2022-06-15 10:39:55 +02:00
Valentin Deniaud
8ef8f05bfe
translation update
2022-06-14 14:33:02 +02:00
Valentin Deniaud
9547cc4b12
auth_fc: migrate authenticator to database ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
b81b8102e3
pylint: disable not-an-iterable warning ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
9c3552472b
auth_fc: move authenticator methods to views ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
ae30077553
auth_fc: move methods to utils ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
e30f58ad8e
authenticators: do not require name or OU on creation ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
10e68fec99
authenticators: split internal flag for more granularity ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
a19be462bb
authenticators: log modifications to journal ( #65358 )
2022-06-08 10:02:32 +02:00
Valentin Deniaud
8af9834487
translation update
2022-06-07 14:43:41 +02:00
Valentin Deniaud
474dbcbe51
authenticators: exclude fields from configuration validity check ( #65968 )
2022-06-07 14:00:18 +02:00
Valentin Deniaud
b265c94b3c
authenticators: validate show condition using proper validator ( #65969 )
2022-06-07 12:29:09 +02:00
Paul Marillonnet
e5a2035c21
pylint.rc: remove obsolete no-self-use check ( #65905 )
2022-06-02 09:49:36 +02:00
Paul Marillonnet
ce5d048221
pylint.rc: remove obsolete options ( #65905 )
2022-06-02 09:49:06 +02:00
Paul Marillonnet
465076ad67
pylint: fix C3001 unnecessary-lambda-assignment error ( #65905 )
2022-06-02 09:46:16 +02:00
Paul Marillonnet
e6f146f925
auth_fc: prevent unicode normalization from mixing users at lookup ( #64673 )
2022-06-01 17:16:51 +02:00
Paul Marillonnet
e7f1052746
auth_oidc: prevent unicode normalization from mixing users at lookup ( #64626 )
...
CVE-2019-19844
2022-06-01 14:58:36 +02:00
Valentin Deniaud
00e8114452
authenticators: forbid enabling if configuration is not complete ( #65842 )
2022-06-01 12:16:34 +02:00
Valentin Deniaud
2bd4c5e622
authenticators: redirect to edit view on creation ( #65842 )
2022-06-01 10:50:16 +02:00
Paul Marillonnet
e02bf69c54
auth_oidc: add a STRATEGY_FIND_EMAIL user-matching provider option ( #63729 )
2022-06-01 10:22:39 +02:00
Valentin Deniaud
f1dd516560
authenticators: add missing translation ( #65831 )
2022-06-01 10:01:52 +02:00
Valentin Deniaud
2b91b655da
tests: remove hardcoded login password authenticator pk ( #65832 )
2022-06-01 09:33:33 +02:00
Benjamin Dauvergne
4ce32d57dd
ldap: serverctrls can be empty on non comformant LDAP directories( #65604 )
...
Example of such a non-conforming directory is the slapd-meta backend of
OpenLDAP, it accepts SimplePagedSearch control with criticality=True
set, but do not honor it apart from the response size which respects the
given page size.
2022-06-01 07:59:37 +02:00
Valentin Deniaud
884156d2c2
authenticators: hide empty kebab menu for password authenticator ( #65477 )
2022-05-31 10:08:56 +02:00
Valentin Deniaud
2b8243f97f
authenticators: forbid disabling all authenticators ( #65642 )
2022-05-31 10:05:59 +02:00
Benjamin Dauvergne
13b117319f
api: add endpoints to manage role inheritance ( #62013 )
2022-05-30 13:39:54 +02:00
Benjamin Dauvergne
477bc0cb7e
rbac: add direct parameter to parents and children methods ( #62013 )
...
It will limit the parents/children roles returned to those with a direct inheritance relation.
2022-05-30 13:39:54 +02:00
Benjamin Dauvergne
df780cafeb
rbac: add helper methods to add/remove permissions from roles ( #62013 )
2022-05-30 13:39:54 +02:00
Benjamin Dauvergne
b2ae197378
utils: add DjangoRBACPermission DRF's permission class ( #62013 )
2022-05-30 13:39:54 +02:00
Benjamin Dauvergne
fdf7374113
utils: add NaturalKeyRelatedField class ( #62013 )
2022-05-30 13:39:54 +02:00
Benjamin Dauvergne
cedbbf4514
rbac: add slug and name as implicit natural keys ( #62013 )
...
If the natural key is not precise enough, MultipleObjectReturned will be
raised preventing mismatches. But it will help using the API for simple
cases where the name is globally unique.
2022-05-30 13:39:54 +02:00
Benjamin Dauvergne
1c619b8947
tests: add fixture decorator for db fixture with global scope ( #62013 )
...
Creating a django_db fixture which persists between tests is not easy,
this decorator simplify it and completely replace pytest.fixture for
this use case.
2022-05-30 13:39:54 +02:00
Benjamin Dauvergne
f72b98efa8
tests: move api tests in subdirectory ( #62013 )
2022-05-30 13:39:54 +02:00
Benjamin Dauvergne
2dfd0f5a44
api: reorder urls ( #62013 )
2022-05-30 13:39:54 +02:00
Benjamin Dauvergne
a1a8a13a5a
misc: copy context inherited context in authenticator's login ( #65693 )
2022-05-30 13:23:14 +02:00
Frédéric Péters
98873a399f
translations: update to use "Modifier" and "Enregistrer" ( #65736 )
2022-05-27 16:33:54 +02:00
Frédéric Péters
593bc1a9df
ldap: log missing mandatory group ( #65725 )
2022-05-27 09:02:30 +02:00
Frédéric Péters
316f4bf030
debian: fix pointer to uwsgi file ( #65724 )
2022-05-27 09:02:30 +02:00
Valentin Deniaud
015da29ee4
authentic2_auth_oidc: attach claims and accounts to new authenticator ( #65504 )
2022-05-24 16:45:01 +02:00
Valentin Deniaud
f5b4bef88c
Revert "authentic2_auth_oidc: attach claims and accounts to new authenticator ( #65504 )"
...
This reverts commit 3912f2648c
.
2022-05-24 16:12:19 +02:00
Valentin Deniaud
3912f2648c
authentic2_auth_oidc: attach claims and accounts to new authenticator ( #65504 )
2022-05-24 11:54:51 +02:00
Valentin Deniaud
cd2fe7d2ac
settings: restore auth frontend plugin registration ( #65484 )
2022-05-23 14:45:41 +02:00
Valentin Deniaud
8b71c41a0e
authenticators: use only type as identifier in case of single instance ( #65533 )
2022-05-23 11:11:51 +02:00
Paul Marillonnet
aad2185087
tests: handle quote character variation in django 3.2 onwards ( #65495 )
2022-05-23 10:06:27 +02:00
Benjamin Dauvergne
8f1ea08a62
idp_oidc: add iss and sid parameter to frontchannel_logout_uri ( #65475 )
2022-05-20 09:58:57 +02:00
Frédéric Péters
7b45f73cc7
translation update
2022-05-19 22:32:32 +02:00
Valentin Deniaud
297b97d633
authenticators: adjust show_condition field contraints ( #65472 )
2022-05-19 19:22:12 +02:00
Valentin Deniaud
d01300d6f1
translation update
2022-05-19 18:01:47 +02:00
Valentin Deniaud
8eec403cb6
build: distribute src/authentic2/apps/authenticators/templates/ ( #53902 )
2022-05-19 17:09:13 +02:00