Valentin Deniaud
d5698808ae
auth_saml: add configuration form ( #65483 )
2022-07-04 13:59:50 +02:00
Valentin Deniaud
b6d24eba3b
auth_saml: migrate authenticator to database ( #65483 )
2022-07-04 13:59:50 +02:00
Valentin Deniaud
0aa155bfc3
auth_saml: move view code to separate file ( #65483 )
2022-07-04 13:59:47 +02:00
Valentin Deniaud
2dc43d68b4
authenticators: use slug rather than pk in identifier ( #65483 )
2022-07-04 13:56:49 +02:00
Paul Marillonnet
39e70caf5a
translation update ( #66304 )
2022-07-04 12:36:19 +02:00
Paul Marillonnet
c537894091
auth_fc: provide a more human-friendly core id claim label ( #66304 )
2022-07-04 12:34:40 +02:00
Paul Marillonnet
befc4243b5
idp/saml2: use sp's next url as part of authn display conditions ( #65643 )
...
· requires django-mellon's ADD_AUTHNREQUEST_NEXT_URL_EXTENSION
setting to True on the SP side.
2022-07-04 11:52:24 +02:00
Paul Marillonnet
fbf911389d
translation update ( #65491 )
2022-06-30 10:43:11 +02:00
Paul Marillonnet
4e7a687364
ldap: display server error on technical info backoffice page ( #65491 )
2022-06-30 09:24:30 +02:00
Paul Marillonnet
3448753eb5
ldap: provide a 'raises' keyword-argument flag on connection retrieval ( #65491 )
2022-06-30 09:24:30 +02:00
Paul Marillonnet
e89d757e35
jenkins: adapt jenkinsfile scripts to env changes in tox.ini ( #66488 )
2022-06-29 17:02:02 +02:00
Paul Marillonnet
474b56913a
tox: explicitly match envs dependencies with debian releases ( #66488 )
2022-06-29 17:02:02 +02:00
Paul Marillonnet
cd12cdc0eb
tox: remove deprecated dependency rules ( #66488 )
2022-06-29 17:02:01 +02:00
Benjamin Dauvergne
80c0e0fdd2
api: apply unflatten to input JSON ( #66742 )
...
It should help dumb clients to make API calls.
2022-06-29 13:25:54 +02:00
Benjamin Dauvergne
3a6355673e
middleware: set a variable value in the A2_OPENED_SESSION cookie ( #66745 )
2022-06-29 11:24:57 +02:00
Emmanuel Cazenave
de17a869b9
ldap: add options to control authentication and cron provisionning ( #60492 )
2022-06-28 11:06:21 +02:00
Valentin Deniaud
c6badca02c
tests: make exponential backoff test more permissive ( #66612 )
2022-06-27 09:59:47 +02:00
Benjamin Dauvergne
50c473d98d
auth_oidc: adapt to be compatible with jwcrypto<1 ( #66438 )
2022-06-24 13:25:48 +02:00
Paul Marillonnet
3c8d349685
translation fix ( #66491 )
2022-06-22 14:54:45 +02:00
Benjamin Dauvergne
0be46df2fe
ldap: add page_size configuration option ( #65605 )
2022-06-22 11:57:35 +02:00
Benjamin Dauvergne
c0a41644a1
auth_oidc: check required claims only from the idtoken or the user_info endpoint not both ( #66445 )
2022-06-21 14:48:25 +02:00
Paul Marillonnet
d70995550f
jenkins: adapt to unit test files changes ( #66042 )
2022-06-21 14:47:18 +02:00
Frédéric Péters
c4d57e85e8
debian: apply wrap-and-sort
2022-06-17 19:53:52 +02:00
Frédéric Péters
1583df13be
misc: use pre-commit-debian ( #66191 )
2022-06-17 19:53:52 +02:00
Frédéric Péters
a4dcd826c5
misc: make makemessages remove obsolete strings by default ( #66289 )
2022-06-17 19:53:52 +02:00
Frédéric Péters
e1e41054ee
fc: do not add extra stylesheet anymore ( #64571 )
2022-06-17 09:03:25 +02:00
Valentin Deniaud
a39e0a8d1b
authentic2_auth_fc: fix authenticator creation function ( #66243 )
2022-06-15 16:51:03 +02:00
Valentin Deniaud
522f771159
authentic2_auth_fc: move authenticator creation function ( #66243 )
2022-06-15 10:39:55 +02:00
Valentin Deniaud
8ef8f05bfe
translation update
2022-06-14 14:33:02 +02:00
Valentin Deniaud
9547cc4b12
auth_fc: migrate authenticator to database ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
b81b8102e3
pylint: disable not-an-iterable warning ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
9c3552472b
auth_fc: move authenticator methods to views ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
ae30077553
auth_fc: move methods to utils ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
e30f58ad8e
authenticators: do not require name or OU on creation ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
10e68fec99
authenticators: split internal flag for more granularity ( #65482 )
2022-06-14 11:58:44 +02:00
Valentin Deniaud
a19be462bb
authenticators: log modifications to journal ( #65358 )
2022-06-08 10:02:32 +02:00
Valentin Deniaud
8af9834487
translation update
2022-06-07 14:43:41 +02:00
Valentin Deniaud
474dbcbe51
authenticators: exclude fields from configuration validity check ( #65968 )
2022-06-07 14:00:18 +02:00
Valentin Deniaud
b265c94b3c
authenticators: validate show condition using proper validator ( #65969 )
2022-06-07 12:29:09 +02:00
Paul Marillonnet
e5a2035c21
pylint.rc: remove obsolete no-self-use check ( #65905 )
2022-06-02 09:49:36 +02:00
Paul Marillonnet
ce5d048221
pylint.rc: remove obsolete options ( #65905 )
2022-06-02 09:49:06 +02:00
Paul Marillonnet
465076ad67
pylint: fix C3001 unnecessary-lambda-assignment error ( #65905 )
2022-06-02 09:46:16 +02:00
Paul Marillonnet
e6f146f925
auth_fc: prevent unicode normalization from mixing users at lookup ( #64673 )
2022-06-01 17:16:51 +02:00
Paul Marillonnet
e7f1052746
auth_oidc: prevent unicode normalization from mixing users at lookup ( #64626 )
...
CVE-2019-19844
2022-06-01 14:58:36 +02:00
Valentin Deniaud
00e8114452
authenticators: forbid enabling if configuration is not complete ( #65842 )
2022-06-01 12:16:34 +02:00
Valentin Deniaud
2bd4c5e622
authenticators: redirect to edit view on creation ( #65842 )
2022-06-01 10:50:16 +02:00
Paul Marillonnet
e02bf69c54
auth_oidc: add a STRATEGY_FIND_EMAIL user-matching provider option ( #63729 )
2022-06-01 10:22:39 +02:00
Valentin Deniaud
f1dd516560
authenticators: add missing translation ( #65831 )
2022-06-01 10:01:52 +02:00
Valentin Deniaud
2b91b655da
tests: remove hardcoded login password authenticator pk ( #65832 )
2022-06-01 09:33:33 +02:00
Benjamin Dauvergne
4ce32d57dd
ldap: serverctrls can be empty on non comformant LDAP directories( #65604 )
...
Example of such a non-conforming directory is the slapd-meta backend of
OpenLDAP, it accepts SimplePagedSearch control with criticality=True
set, but do not honor it apart from the response size which respects the
given page size.
2022-06-01 07:59:37 +02:00