entrouvert
/
authentic
16
0
Fork 0
Code Issues Pull Requests 35 Releases Activity
5,583 Commits 190 Branches 448 Tags 29 MiB
Commit Graph

154 Commits

Author SHA1 Message Date
Valentin Deniaud 95d8f644be views: add registration method to registration email context (#21914) 2021-04-27 16:29:14 +02:00
Benjamin Dauvergne b429cfd794 forms: add honeypot field to password reset form (#52883) 2021-04-15 12:21:13 +02:00
Benjamin Dauvergne c70f205987 views: use LDAPBackendPasswordLost to switch to LDAP account (#43585) 2021-04-09 14:47:18 +02:00
Benjamin Dauvergne 13cd493740 forms: specialize form for password reset by username (#52013) 2021-03-31 19:19:24 +02:00
Valentin Deniaud 4751846fed misc: remove six module usage (#52503) 2021-03-30 15:06:49 +02:00
Valentin Deniaud 8b506d4281 misc: remove some unused imports (#52457) 2021-03-30 14:00:27 +02:00
Valentin Deniaud 86d946adcd misc: apply isort (#52457) 2021-03-30 13:59:53 +02:00
Valentin Deniaud 4bb33d3d3c misc: apply black (#52457) 2021-03-30 11:32:55 +02:00
Benjamin Dauvergne 8a543226bf custom_user: remove User's deleted field (#51452) 2021-03-01 18:17:22 +01:00
Benjamin Dauvergne 8e0f6d3cb7 misc: delete users synchronously (#51452) 2021-03-01 16:30:39 +01:00
Benjamin Dauvergne 961403a666 use honeypot field to detect robots on registration form (#50108) 2021-01-22 11:10:03 +01:00
Benjamin Dauvergne f904f03a57 do not store username in password reset tokens (#49131) 2020-12-18 14:50:14 +01:00
Benjamin Renard 1f2ea15580 Add A2_RESET_PASSWORD_ID_LABEL parameter (#49131) 2020-12-18 07:45:55 +01:00
Benjamin Renard fd248ebb89 Allow users to provide their email or username for password reset process (#49131) 2020-12-18 07:45:55 +01:00
Paul Marillonnet 8c3902b2c2 misc: do not modify email when marking users as deleted (#48264) 2020-12-02 09:56:08 +01:00
Benjamin Dauvergne d47bc8e1ad misc: prevent internal URL leak in browser history (#47302) 2020-10-29 00:17:58 +01:00
Benjamin Dauvergne 1cc04e3ad7 misc: integration of journal authentic views (#47155) 2020-10-15 15:22:31 +02:00
Lauréline Guérin 7b130d6ffc
profile_views: address autocomplete field (#41919) 2020-10-09 14:15:32 +02:00
Benjamin Dauvergne b6f471b9fa misc: expose HTTP headers in authenticators conditions (#47084) 2020-09-29 21:14:03 +02:00
Benjamin Dauvergne 7184ac87ce views: do not serialize missing attributes (#46906) 
When the registration view emit a new mail with a token for itself, it
must not try to serialize attributes not present in the form.
 2020-09-25 08:03:41 +02:00
Nicolas Roche 1e6831256b login: add an option to hide cancel button (#41122) 2020-09-18 09:57:56 +02:00
Benjamin Dauvergne 19d892f537 urls: remove legacy URL routing (#46151) 2020-09-17 11:32:01 +02:00
Benjamin Dauvergne 41b97f0bb2 misc: validate and use a real identifier for services (#45672) 2020-09-03 11:55:13 +02:00
Valentin Deniaud 3df3bf6efd views: set request.token at registration (#46248) 2020-09-01 15:49:53 +02:00
Valentin Deniaud 4f831fe4d8 views: warn user before generating new token (#41792) 2020-08-20 09:57:17 +02:00
Valentin Deniaud 7d9e65dc96 views: use one-time token for password reset (#41792) 2020-08-20 09:56:02 +02:00
Valentin Deniaud f7e5ad16da views: use one-time token for registration (#41792) 2020-08-20 09:55:22 +02:00
Benjamin Dauvergne 079102d851 misc: unserialize attribute in registration view (#45710) 
Registration view pass attribute values in JSON tokens, so we need to
get a JSON compatible serialization of attribute values for the token
using their serialization function.
 2020-08-13 17:33:22 +02:00
Paul Marillonnet 7fecf1140e idp_oidc: deactivate service authz page according to setting (#45649) 2020-08-04 12:12:22 +02:00
Frédéric Péters 9ea1fdda60 account: don't display authorization management link unless services (#45635) 2020-07-31 11:09:59 +02:00
Nicolas Roche 1a3bd4bb05 profile_views: add a profil page to manage authorized oauth services (#45200) 2020-07-29 09:45:46 +02:00
Serghei Mihai 229566c741 misc: allow authenticator autorun if only one available (#28216) 2020-07-13 10:33:05 +02:00
Benjamin Dauvergne 648da7750c misc: remove all uses of map() (#44878) 2020-07-07 10:37:41 +02:00
Serghei Mihai 018d3c8520 views: pass service parameter to show evaluation context (#42370) 2020-07-01 11:02:33 +02:00
Benjamin Dauvergne 442dc74bab misc: use long duration cookie to check for cookie support in browser (#44055) 2020-06-26 12:02:38 +02:00
Valentin Deniaud 162a984897 views: fix password change code (#43862) 2020-06-15 12:17:48 +02:00
Benjamin Dauvergne 5c6fd54baa misc: remove server_error() view (#42821) 2020-05-18 16:07:13 +02:00
Benjamin Dauvergne 0f241a712c misc: re-use logout view in deletion view (#41930) 
As user is not accessible anymore through ModelBackend.get_user(), we
must call logout() directly, and not through a redirection.
 2020-05-15 10:49:47 +02:00
Benjamin Dauvergne 9f0aa6ad3c misc: replace DeletedUser model by attribute deleted on User (#41930) 2020-05-15 10:49:47 +02:00
Benjamin Dauvergne 1a0e3d0c17 remove extra set_test_cookie (#42280) 2020-05-07 18:37:16 +02:00
Benjamin Dauvergne a5e372707e misc: test cookies are working in login view (#42280) 
It's also tested in auth-fc login view.
 2020-05-07 18:36:53 +02:00
Benjamin Dauvergne bdeb86cd2c drf: implement action decorator for version 3.4 (#41238) 2020-04-27 16:12:55 +02:00
Paul Marillonnet 1da5389209 dj2.2: user.is_authenticated is not a callable anymore (#41238) 2020-04-27 14:34:56 +02:00
Paul Marillonnet 6c3b3ff258 dj2.2: use compat django auth CBVs (#41238) 2020-04-27 14:34:24 +02:00
Paul Marillonnet 8804de70b7 dj2:2: fix 'reverse' import (#41238) 2020-04-27 14:34:24 +02:00
Benjamin Dauvergne 3c2e061faf misc: pass login-hint in authenticators condition context (#41142) 2020-04-25 12:18:59 +02:00
Valentin Deniaud afcec6c514 views: ratelimit email form views (#41489) 2020-04-24 11:07:43 +02:00
Valentin Deniaud 047b27b189 templates: better account deletion request message (#39980) 2020-04-02 14:57:06 +02:00
Serghei Mihai d1c4ca12ca views: remove login blocks' "is_hidden" attribute (#41140) 2020-03-29 14:47:21 +02:00
Serghei Mihai 3043ff3421 misc: allow authenticators display conditions (#28215) 2020-03-13 10:21:35 +01:00