Benjamin Dauvergne
c6832aba74
registration: handle MultipleObjectsReturned when checking uniqueness ( fixes #22141 )
2018-03-02 17:03:59 +01:00
Benjamin Dauvergne
22a885edfd
tests: disable cache decorators by default ( fixes #22227 )
...
It makes behavior of tests erratic as it incurs side effects between
tests and even inside of tests. For example, caching of the OU count for
short periods is not harmful for day to day use as creating new OUs are
rare events but during tests it makes reasoning about code behavior
really difficult.
2018-03-02 12:05:09 +01:00
Benjamin Dauvergne
f52c7445e6
tests: fix PASSWORD_HASHERS setting to work with RBAC tests ( fixes #22199 )
2018-03-01 19:14:22 +01:00
Benjamin Dauvergne
b7274d2ddc
auth_oidc: add hook to modify user before login ( fixes #22209 )
...
Hook is named a2_hook_auth_oidc_backend_modify_user, it takes
parameters:
- user
- access_token
- user_info
- id_token
- provider
2018-03-01 16:21:21 +01:00
Benjamin Dauvergne
9eb98fad5f
auth_oidc: fix missing definition for base64url_encode ( #22209 )
2018-03-01 16:15:58 +01:00
Benjamin Dauvergne
ce363ab81d
filter attributes on edit-profile page by scope ( fixes #21769 )
2018-03-01 15:43:54 +01:00
Benjamin Dauvergne
fcc3a92bff
add a scope attribute to Attribute ( #21769 )
2018-03-01 15:43:54 +01:00
Benjamin Dauvergne
93cc7e363f
add a next_url parameter to edit-profile view ( #21769 )
2018-03-01 15:43:54 +01:00
Benjamin Dauvergne
8ae64236cf
tests: add more coverage for tests of next_url checking ( #21769 )
2018-03-01 15:43:54 +01:00
Benjamin Dauvergne
09dab1b45d
saml: implement a2_hook_good_next_url for SAML 2.0 SPs ( #21769 )
2018-03-01 15:43:54 +01:00
Benjamin Dauvergne
06c37bec0a
utils: add hook a2_hook_good_next_url ( #21769 )
2018-03-01 15:43:54 +01:00
Benjamin Dauvergne
f6ff455fdf
tests: do not clobber all hashing algorithms ( fixes #22199 )
2018-03-01 15:43:24 +01:00
Benjamin Dauvergne
d645e3ee27
manager: don't show a message if email is not changed ( fixes #21814 )
2018-03-01 14:19:07 +01:00
Benjamin Dauvergne
65769ac3e8
tests: change default password to accelerate tests ( fixes #22199 )
2018-03-01 12:46:02 +01:00
Frédéric Péters
2c71cfeaf9
auth_oidc: fix typo when logging a warning ( #22185 )
2018-03-01 09:05:37 +01:00
Frédéric Péters
a9d62aee62
translation fix ( #9538 )
2018-02-27 15:15:56 +01:00
Benjamin Dauvergne
666d016b91
allow redirect /accounts/ to an external page ( fixes #21770 )
...
New setting is A2_ACCOUNTS_URL.
2018-02-23 19:26:16 +01:00
Benjamin Dauvergne
740b0ad4b2
manager: pass queryset to user's role views search filter form ( fixes #21940 )
2018-02-19 16:46:59 +01:00
Frédéric Péters
9b4cb63f63
manager: fix French translation of change user email button ( #21813 )
2018-02-13 13:59:36 +01:00
Benjamin Dauvergne
08253fb2d3
manager: send new email in the email change verification mail ( fixes #20564 )
...
Use of a ModelForm keeping the original email field for the
UserChangeEmailForm makes keeping the original email value after clean()
is called impossible, as clean() is also responsible of transfering
value from the form into the model instance.
We keep using a ModelForm but we use a new field not present in the
model to get the new email and we override the save() method so that the
behaviour of sending the validation mail is kept inside the form and not
in the view. Only the call to the manager's hook
manager-change-email-request is kept in the view.
2018-02-07 21:16:22 +01:00
Benjamin Dauvergne
f2e4208f28
Revert "tox: limit to pytest < 3.4 for now ( #21610 )"
...
This reverts commit 7c2b5f3fcb
.
2018-02-07 19:01:19 +01:00
Benjamin Dauvergne
61e9b064f4
attribute_kinds: add a birthdate field kind ( fixes #21691 )
...
Similar to date, it just checks that the given date is in the past.
2018-02-07 16:25:04 +01:00
Benjamin Dauvergne
38bb35c856
auth_oidc: log token revocation at the INFO level to make test pass ( fixes #21610 )
...
In pytest>=3.4.0 the caplog does not capture all log levels but follow the
default logging configuration. As this event was looked by the test and
the information is usefull, the best fix is to raise the log level and
to not modify the test.
2018-02-07 15:46:46 +01:00
Benjamin Dauvergne
ac6f1ad28a
declare form.media in registration/registration_completion_form.html ( fixes #21690 )
...
Without it using for example a date field will not use the Bootstrap datetimepicker
widget on the self edit view.
2018-02-07 15:42:41 +01:00
Benjamin Dauvergne
5c8eb8b6c3
declare form.media in authentic2/accounts_edit.html ( fixes #20600 )
...
Without it using for example a date field will not use the Bootstrap datetimepicker
widget on the self edit view.
2018-02-07 15:42:41 +01:00
Frédéric Péters
7c2b5f3fcb
tox: limit to pytest < 3.4 for now ( #21610 )
2018-02-02 13:28:04 +01:00
Frédéric Péters
9201de6740
manager: remove broken export to HTML ( #21197 )
...
It doesn't work with the tablib versions currently in use.
2018-02-02 12:01:36 +01:00
Josue Kouka
bafb9dceb1
idp oidc: log invalid request's response error ( #19837 )
2018-01-24 16:48:08 +01:00
Frédéric Péters
fe64b1edef
translation update
2018-01-24 12:14:25 +01:00
Josue Kouka
edd9e8965d
misc: remove useless comma in authorization template ( #21187 )
2018-01-22 14:08:31 +01:00
Christophe de Vienne
d639f7755b
idp_oidc: add a client and global setting for the idtoken duration ( fixes #21232 )
...
The default expire duration is still 30 seconds and can be changed
with the IDTOKEN_DURATION app setting.
The duration can be customized for each client with the new 'idtoken_duration'
field.
License: MIT
2018-01-19 13:59:31 +01:00
Frédéric Péters
c2e2293d4f
oidc: fix minor errors in translation ( #21186 )
2018-01-16 22:59:08 +01:00
Frédéric Péters
acc2b3d2ba
manage: never allow sorting by "via" ( #21210 )
2018-01-16 22:59:08 +01:00
Paul Marillonnet
fd6f2ac2ef
fix syntax error in the local_settings example file ( #21140 )
2018-01-12 11:29:56 +01:00
Frédéric Péters
7642c043a8
manager: use gadjo template for pagination ( #14939 )
2017-12-31 10:57:56 +01:00
Frédéric Péters
619cd6676b
manager: mark Delete button with dedicated CSS class ( #20929 )
2017-12-31 10:57:56 +01:00
Frédéric Péters
c3f8fd82a1
manager: make clicks on rows in roles view go to user detail view ( #20928 )
2017-12-31 10:57:56 +01:00
Frédéric Péters
ac7cdb6c54
translation: fix typo
2017-12-30 23:03:22 +01:00
Frédéric Péters
cb5cf708bd
manager: rely on gadjo for user-info block contents ( #20883 )
2017-12-25 20:42:07 +01:00
Paul Marillonnet
75d7305b65
successfully-modified email addresses always set as verified ( #20563 )
2017-12-21 15:55:16 +01:00
Benjamin Dauvergne
8cc3f09cb0
idp_oidc: add token and id_token in the openid_configuration file ( fixes #20807 )
2017-12-19 15:05:20 +01:00
Frédéric Péters
184dc2523e
fix plural form in translation
2017-12-13 17:54:14 +01:00
Benjamin Dauvergne
b1d41b96d7
manager: remove All ou choice from ou selector on user's roles view ( fixes #20519 )
...
User's roles view is special, the choice all ou modify the UI so that it shows
all roles of the user and only them, whatever their OU but it do not show
all roles from all OUs like on the role listing view. To prevent
misunderstanding from the user on the effect of this choice, we change it
for the empty string as before.
2017-12-13 17:23:18 +01:00
Benjamin Dauvergne
e9aa439d87
logging: only filter message which are strings ( fixes #20551 )
...
Prevent bug from code logging anything else than a string, typical error:
logger.exception(e)
2017-12-13 17:23:18 +01:00
Benjamin Dauvergne
97a6ee1650
manager: show a disabled role add link instead of nothing ( fixes #20514 )
2017-12-13 17:20:03 +01:00
Benjamin Dauvergne
1972076bfd
manager: do not use has_any_perm() to get add permission on roles ( fixes #20512 )
...
This is a temporary fix, the real fix would be to create a real permission to
manage members of a roles so that role's admin roles would not have the admin
permission but the manage-members permission, so that for an user which can just
manager members of a role, request.user.has_any_perm('a2_rbac.add_role') would
return False, currently it returns True but it has no meaning.
2017-12-13 17:20:03 +01:00
Benjamin Dauvergne
855be9fe04
django_rbac: enlarge Operation.name field ( fixes #20549 )
2017-12-13 17:20:03 +01:00
Benjamin Dauvergne
fe760ead68
manager: show direct link to roles and users in the same OU in breadcrumb ( fixes #20524 )
2017-12-13 17:20:03 +01:00
Benjamin Dauvergne
0a89e8857b
manager: do substring full text search on user's attributes ( fixes #20542 )
...
Currently it would only work if the attribute value matched exactly a part of the
search phrase.
2017-12-11 16:43:03 +01:00
Benjamin Dauvergne
57588c4e5d
manager: show all role's OUs visible to user ( fixes #20511 )
2017-12-11 12:59:10 +01:00