entrouvert
/
authentic
16
0
Fork 0
Code Issues Pull Requests 33 Releases Activity
4,041 Commits 188 Branches 445 Tags 29 MiB
Commit Graph

4041 Commits

Author SHA1 Message Date
Benjamin Dauvergne 9eb98fad5f auth_oidc: fix missing definition for base64url_encode (#22209) 2018-03-01 16:15:58 +01:00
Benjamin Dauvergne ce363ab81d filter attributes on edit-profile page by scope (fixes #21769) 2018-03-01 15:43:54 +01:00
Benjamin Dauvergne fcc3a92bff add a scope attribute to Attribute (#21769) 2018-03-01 15:43:54 +01:00
Benjamin Dauvergne 93cc7e363f add a next_url parameter to edit-profile view (#21769) 2018-03-01 15:43:54 +01:00
Benjamin Dauvergne 8ae64236cf tests: add more coverage for tests of next_url checking (#21769) 2018-03-01 15:43:54 +01:00
Benjamin Dauvergne 09dab1b45d saml: implement a2_hook_good_next_url for SAML 2.0 SPs (#21769) 2018-03-01 15:43:54 +01:00
Benjamin Dauvergne 06c37bec0a utils: add hook a2_hook_good_next_url (#21769) 2018-03-01 15:43:54 +01:00
Benjamin Dauvergne f6ff455fdf tests: do not clobber all hashing algorithms (fixes #22199) 2018-03-01 15:43:24 +01:00
Benjamin Dauvergne d645e3ee27 manager: don't show a message if email is not changed (fixes #21814) 2018-03-01 14:19:07 +01:00
Benjamin Dauvergne 65769ac3e8 tests: change default password to accelerate tests (fixes #22199) 2018-03-01 12:46:02 +01:00
Frédéric Péters 2c71cfeaf9 auth_oidc: fix typo when logging a warning (#22185) 2018-03-01 09:05:37 +01:00
Frédéric Péters a9d62aee62 translation fix (#9538) 2018-02-27 15:15:56 +01:00
Benjamin Dauvergne 666d016b91 allow redirect /accounts/ to an external page (fixes #21770) 
New setting is A2_ACCOUNTS_URL.
 2018-02-23 19:26:16 +01:00
Benjamin Dauvergne 740b0ad4b2 manager: pass queryset to user's role views search filter form (fixes #21940) 2018-02-19 16:46:59 +01:00
Frédéric Péters 9b4cb63f63 manager: fix French translation of change user email button (#21813) 2018-02-13 13:59:36 +01:00
Benjamin Dauvergne 08253fb2d3 manager: send new email in the email change verification mail (fixes #20564) 
Use of a ModelForm keeping the original email field for the
UserChangeEmailForm makes keeping the original email value after clean()
is called impossible, as clean() is also responsible of transfering
value from the form into the model instance.

We keep using a ModelForm but we use a new field not present in the
model to get the new email and we override the save() method so that the
behaviour of sending the validation mail is kept inside the form and not
in the view. Only the call to the manager's hook
manager-change-email-request is kept in the view.
 2018-02-07 21:16:22 +01:00
Benjamin Dauvergne f2e4208f28 Revert "tox: limit to pytest < 3.4 for now (#21610)" 
This reverts commit 7c2b5f3fcb.
 2018-02-07 19:01:19 +01:00
Benjamin Dauvergne 61e9b064f4 attribute_kinds: add a birthdate field kind (fixes #21691) 
Similar to date, it just checks that the given date is in the past.
 2018-02-07 16:25:04 +01:00
Benjamin Dauvergne 38bb35c856 auth_oidc: log token revocation at the INFO level to make test pass (fixes #21610) 
In pytest>=3.4.0 the caplog does not capture all log levels but follow the
default logging configuration. As this event was looked by the test and
the information is usefull, the best fix is to raise the log level and
to not modify the test.
 2018-02-07 15:46:46 +01:00
Benjamin Dauvergne ac6f1ad28a declare form.media in registration/registration_completion_form.html (fixes #21690) 
Without it using for example a date field will not use the Bootstrap datetimepicker
widget on the self edit view.
 2018-02-07 15:42:41 +01:00
Benjamin Dauvergne 5c8eb8b6c3 declare form.media in authentic2/accounts_edit.html (fixes #20600) 
Without it using for example a date field will not use the Bootstrap datetimepicker
widget on the self edit view.
 2018-02-07 15:42:41 +01:00
Frédéric Péters 7c2b5f3fcb tox: limit to pytest < 3.4 for now (#21610) 2018-02-02 13:28:04 +01:00
Frédéric Péters 9201de6740 manager: remove broken export to HTML (#21197) 
It doesn't work with the tablib versions currently in use.
 2018-02-02 12:01:36 +01:00
Josue Kouka bafb9dceb1 idp oidc: log invalid request's response error (#19837) 2018-01-24 16:48:08 +01:00
Frédéric Péters fe64b1edef translation update 2018-01-24 12:14:25 +01:00
Josue Kouka edd9e8965d misc: remove useless comma in authorization template (#21187) 2018-01-22 14:08:31 +01:00
Christophe de Vienne d639f7755b idp_oidc: add a client and global setting for the idtoken duration (fixes #21232) 
The default expire duration is still 30 seconds and can be changed
with the IDTOKEN_DURATION app setting.
The duration can be customized for each client with the new 'idtoken_duration'
field.

License: MIT
 2018-01-19 13:59:31 +01:00
Frédéric Péters c2e2293d4f oidc: fix minor errors in translation (#21186) 2018-01-16 22:59:08 +01:00
Frédéric Péters acc2b3d2ba manage: never allow sorting by "via" (#21210) 2018-01-16 22:59:08 +01:00
Paul Marillonnet fd6f2ac2ef fix syntax error in the local_settings example file (#21140) 2018-01-12 11:29:56 +01:00
Frédéric Péters 7642c043a8 manager: use gadjo template for pagination (#14939) 2017-12-31 10:57:56 +01:00
Frédéric Péters 619cd6676b manager: mark Delete button with dedicated CSS class (#20929) 2017-12-31 10:57:56 +01:00
Frédéric Péters c3f8fd82a1 manager: make clicks on rows in roles view go to user detail view (#20928) 2017-12-31 10:57:56 +01:00
Frédéric Péters ac7cdb6c54 translation: fix typo 2017-12-30 23:03:22 +01:00
Frédéric Péters cb5cf708bd manager: rely on gadjo for user-info block contents (#20883) 2017-12-25 20:42:07 +01:00
Paul Marillonnet 75d7305b65 successfully-modified email addresses always set as verified (#20563) 2017-12-21 15:55:16 +01:00
Benjamin Dauvergne 8cc3f09cb0 idp_oidc: add token and id_token in the openid_configuration file (fixes #20807) 2017-12-19 15:05:20 +01:00
Frédéric Péters 184dc2523e fix plural form in translation 2017-12-13 17:54:14 +01:00
Benjamin Dauvergne b1d41b96d7 manager: remove All ou choice from ou selector on user's roles view (fixes #20519) 
User's roles view is special, the choice all ou modify the UI so that it shows
all roles of the user and only them, whatever their OU but it do not show
all roles from all OUs like on the role listing view. To prevent
misunderstanding from the user on the effect of this choice, we change it
for the empty string as before.
 2017-12-13 17:23:18 +01:00
Benjamin Dauvergne e9aa439d87 logging: only filter message which are strings (fixes #20551) 
Prevent bug from code logging anything else than a string, typical error:

	logger.exception(e)
 2017-12-13 17:23:18 +01:00
Benjamin Dauvergne 97a6ee1650 manager: show a disabled role add link instead of nothing (fixes #20514) 2017-12-13 17:20:03 +01:00
Benjamin Dauvergne 1972076bfd manager: do not use has_any_perm() to get add permission on roles (fixes #20512) 
This is a temporary fix, the real fix would be to create a real permission to
manage members of a roles so that role's admin roles would not have the admin
permission but the manage-members permission, so that for an user which can just
manager members of a role, request.user.has_any_perm('a2_rbac.add_role') would
return False, currently it returns True but it has no meaning.
 2017-12-13 17:20:03 +01:00
Benjamin Dauvergne 855be9fe04 django_rbac: enlarge Operation.name field (fixes #20549) 2017-12-13 17:20:03 +01:00
Benjamin Dauvergne fe760ead68 manager: show direct link to roles and users in the same OU in breadcrumb (fixes #20524) 2017-12-13 17:20:03 +01:00
Benjamin Dauvergne 0a89e8857b manager: do substring full text search on user's attributes (fixes #20542) 
Currently it would only work if the attribute value matched exactly a part of the
search phrase.
 2017-12-11 16:43:03 +01:00
Benjamin Dauvergne 57588c4e5d manager: show all role's OUs visible to user (fixes #20511) 2017-12-11 12:59:10 +01:00
Benjamin Dauvergne ed0402e18a manager: hide ou field when there is only one ou (fixes #20248) 2017-12-08 15:12:25 +01:00
Benjamin Dauvergne 02d91ed551 a2_rbac: order organizational units by name only (#20248) 2017-12-08 15:12:25 +01:00
Benjamin Dauvergne 36043475a0 manager: override select styling from jquery-ui in dialogs (fixes #20510) 2017-12-08 15:12:25 +01:00
Benjamin Dauvergne c9206ea1df manager: add field validate_emails in OUEditForm (#19716) 2017-12-08 15:12:25 +01:00