Benjamin Dauvergne
205b994d91
pep8ness
2018-12-18 17:27:56 +01:00
Benjamin Dauvergne
506de394f9
manager: dont require username or email for passwordless accounts ( fixes #28916 )
2018-12-18 17:27:56 +01:00
Benjamin Dauvergne
5a4dbd9df7
tox.ini: limit pylint and pylint-django versions ( #29170 )
2018-12-18 17:15:51 +01:00
Benjamin Dauvergne
b4110b3b3c
auth_oidc: verify and store id_token nonce ( fixes #29009 )
2018-12-18 17:15:51 +01:00
Paul Marillonnet
0e34001537
manager: keep querystring while performing default ou user creation ( #28897 )
2018-12-17 16:34:36 +01:00
Paul Marillonnet
f48147b471
user post-creation redirect based on 'next' keyword ( #28931 )
2018-12-17 16:16:10 +01:00
Benjamin Dauvergne
bc26abc94c
remove vendored dpam library ( fixes #29085 )
2018-12-17 10:38:39 +01:00
Frédéric Péters
2182f8a65d
debian: add systemd service unit for authentic2-multitenant ( #16807 )
2018-12-15 10:07:57 +01:00
Benjamin Dauvergne
09b618d997
manager: remove json export ( fixes #28669 )
2018-12-07 15:32:10 +01:00
Benjamin Dauvergne
b610880f07
data_transfer: check that import is a dictionnary
2018-12-07 15:04:02 +01:00
Benjamin Dauvergne
fa960a5901
tox.ini: filter warnings
2018-12-07 15:03:48 +01:00
Frédéric Péters
13ec5eb896
debian: don't reference undefined STATICFILES_DIRS ( #28727 )
2018-12-07 08:49:48 +01:00
Benjamin Dauvergne
32418d2e87
tox.ini: use psycopg2-binary instead of psycopg2
2018-12-06 16:38:17 +01:00
Benjamin Dauvergne
07d1fc82b1
settings: remove default STATICFILES_DIRS ( fixes #28667 )
2018-12-06 09:59:14 +01:00
Benjamin Dauvergne
bf734f0064
idp_oidc: fix name of verified claims ( fixes #27538 )
2018-12-05 20:09:10 +01:00
Benjamin Dauvergne
f95cf05508
tests: use a certificate for localhost.entrouvert.org
...
I had to create an alias for localhost as libldap from OpenLDAP is
automatically aliasing localhost to the local FQDN when checking
certificate of a connection to ldap(s)://localhost. See
http://www.openldap.org/its/index.cgi/Incoming?id=6838;expression=rhafer@suse.de;statetype=-1
2018-12-05 18:03:51 +01:00
Benjamin Dauvergne
00d8d00a63
tests: set CN to localhost in cert.pem
2018-12-05 16:56:29 +01:00
Benjamin Dauvergne
e86a87a2e7
tests: add missing TLS certificate
2018-12-04 18:48:07 +01:00
Benjamin Dauvergne
acb2822992
ldap: fix setting client TLS certificate ( fixes #28570 )
...
New tests depends upon ldaptools 0.15.
2018-12-04 15:35:04 +01:00
Benjamin Dauvergne
977455a304
idp_oidc: hide RSA algorithms if no JWKSET is defined ( fixes #28249 )
2018-12-03 14:01:23 +01:00
Benjamin Dauvergne
b4036dd183
idp_oidc: put HMAC algo before RSA ( #28249 )
2018-12-03 14:01:23 +01:00
Emmanuel Cazenave
2d54ac7f74
change jquery dependencies version ( #28342 )
2018-11-27 17:12:33 +01:00
Frédéric Péters
df9e4d5236
misc: add count of visible blocks to login view context ( #28370 )
2018-11-27 16:09:55 +01:00
Emmanuel Cazenave
0876d25dbd
api: free text search on users ( #15736 )
2018-11-27 10:56:05 +01:00
Emmanuel Cazenave
2bde2b48fb
delete unused functions ( #28223 )
2018-11-27 10:54:30 +01:00
Paul Marillonnet
ceb683ee3c
backoffice: support next url after user creation ( #26652 )
2018-11-27 09:26:36 +01:00
Benjamin Dauvergne
d8c6ba0976
natural_key: fix ct_field of GenericForeignKey when looking for natural keys ( fixes #28229 )
2018-11-21 17:32:14 +01:00
Benjamin Dauvergne
4c45876e0a
idp_oidc: never use an invalid redirect_uri ( fixes #28029 )
...
Check of "redirect_uri" move earlier during authorization request
processing. For any redirect_uri check failure errors are only shown to
the end user and redirect_uri is never used to redirect to the
requesting RP.
2018-11-19 11:12:50 +01:00
Benjamin Dauvergne
e176dec736
idp_oidc: remove unused import
2018-11-19 11:12:50 +01:00
Frédéric Péters
f9a5a31deb
manager: redirect users/add to user creation in default OU ( #28106 )
2018-11-19 10:06:40 +01:00
Frédéric Péters
59b22c3c67
debian: fix reference to system configuration file ( #27985 )
2018-11-14 12:12:19 +01:00
Serghei Mihai
4db66981f0
ldap: don't crash on duplicated users ( #27697 )
...
Keep roles on the more recently used user, then delete the other ones'.
2018-11-07 13:57:14 +01:00
Frédéric Péters
422bd6a5d7
misc: switch external user id source attribute to a charfield ( #27692 )
2018-10-31 13:19:26 +01:00
Frédéric Péters
c4bf1137af
misc: set profile image file selector to suggest image files ( #27646 )
2018-10-30 10:23:11 +01:00
Frédéric Péters
ace8072025
misc: give profile images a .jpeg extension ( #27645 )
...
This makes sure nginx will serve them with a correct MIME type.
2018-10-30 10:23:11 +01:00
Frédéric Péters
90ff2d46ab
misc: automatically resize profile image ( #27644 )
2018-10-30 10:23:11 +01:00
Paul Marillonnet
a5d652ce81
support avatar picture in user profile ( #26022 )
2018-10-30 10:23:11 +01:00
Frédéric Péters
e71b65b0cc
manager: don't expose ods export as it's too slow ( #26450 )
2018-10-30 10:23:11 +01:00
Frédéric Péters
b45882171e
tests: adjust performance test to pass on new jenkins host ( #27661 )
2018-10-30 09:49:51 +01:00
Serghei Mihai
d90e060069
ldap: add external_id's case-insensitive comparison ( #27147 )
2018-10-26 13:26:12 +02:00
Benjamin Dauvergne
ff10b27cb0
auth_oidc: keep previous value when building authorization_claims (bis) ( #26565 )
2018-10-23 15:44:27 +02:00
Benjamin Dauvergne
fd5a150c7e
auth_oidc: keep previous value when building authorization_claims ( #26565 )
2018-10-23 10:50:17 +02:00
Frédéric Péters
103b58c6bb
auth_oidc: adjust new migration number ( #26565 )
2018-10-23 08:50:32 +02:00
Benjamin Dauvergne
68f87021c2
auth_oidc: add support for "claims" parameter ( fixes #26565 )
...
It allows A2 to signal to OIDC OP that some claims are required,
see :
https://openid.net/specs/openid-connect-core-1_0.html#ClaimsParameter
2018-10-22 12:11:48 +02:00
Frédéric Péters
cc8ec18ea4
misc: don't display password reset view when disabled ( #27318 )
2018-10-14 20:16:00 +02:00
Frédéric Péters
3f409f099f
debian: bump required jwcrypto version for multitenant package ( #26324 )
2018-10-09 10:02:10 +02:00
Frédéric Péters
2b5627efb8
jenkins: update job name to authentic ( #27121 )
2018-10-09 09:54:41 +02:00
Frédéric Péters
18034b8654
translation update
2018-10-03 14:43:22 +02:00
Benjamin Dauvergne
75e9bcac9a
enforce birthdate > 1900 through UI and API (fixes @26867)
2018-10-02 19:37:51 +02:00
Paul Marillonnet
3e339bf8f4
a2_idp_oidc: fix code model repr special method ( #26196 )
2018-10-02 13:30:05 +02:00