Valentin Deniaud
95d8f644be
views: add registration method to registration email context ( #21914 )
2021-04-27 16:29:14 +02:00
Benjamin Dauvergne
b429cfd794
forms: add honeypot field to password reset form ( #52883 )
2021-04-15 12:21:13 +02:00
Benjamin Dauvergne
c70f205987
views: use LDAPBackendPasswordLost to switch to LDAP account ( #43585 )
2021-04-09 14:47:18 +02:00
Benjamin Dauvergne
13cd493740
forms: specialize form for password reset by username ( #52013 )
2021-03-31 19:19:24 +02:00
Valentin Deniaud
4751846fed
misc: remove six module usage ( #52503 )
2021-03-30 15:06:49 +02:00
Valentin Deniaud
8b506d4281
misc: remove some unused imports ( #52457 )
2021-03-30 14:00:27 +02:00
Valentin Deniaud
86d946adcd
misc: apply isort ( #52457 )
2021-03-30 13:59:53 +02:00
Valentin Deniaud
4bb33d3d3c
misc: apply black ( #52457 )
2021-03-30 11:32:55 +02:00
Benjamin Dauvergne
8a543226bf
custom_user: remove User's deleted field ( #51452 )
2021-03-01 18:17:22 +01:00
Benjamin Dauvergne
8e0f6d3cb7
misc: delete users synchronously ( #51452 )
2021-03-01 16:30:39 +01:00
Benjamin Dauvergne
961403a666
use honeypot field to detect robots on registration form ( #50108 )
2021-01-22 11:10:03 +01:00
Benjamin Dauvergne
f904f03a57
do not store username in password reset tokens ( #49131 )
2020-12-18 14:50:14 +01:00
Benjamin Renard
1f2ea15580
Add A2_RESET_PASSWORD_ID_LABEL parameter ( #49131 )
2020-12-18 07:45:55 +01:00
Benjamin Renard
fd248ebb89
Allow users to provide their email or username for password reset process ( #49131 )
2020-12-18 07:45:55 +01:00
Paul Marillonnet
8c3902b2c2
misc: do not modify email when marking users as deleted ( #48264 )
2020-12-02 09:56:08 +01:00
Benjamin Dauvergne
d47bc8e1ad
misc: prevent internal URL leak in browser history ( #47302 )
2020-10-29 00:17:58 +01:00
Benjamin Dauvergne
1cc04e3ad7
misc: integration of journal authentic views ( #47155 )
2020-10-15 15:22:31 +02:00
Lauréline Guérin
7b130d6ffc
profile_views: address autocomplete field ( #41919 )
2020-10-09 14:15:32 +02:00
Benjamin Dauvergne
b6f471b9fa
misc: expose HTTP headers in authenticators conditions ( #47084 )
2020-09-29 21:14:03 +02:00
Benjamin Dauvergne
7184ac87ce
views: do not serialize missing attributes ( #46906 )
...
When the registration view emit a new mail with a token for itself, it
must not try to serialize attributes not present in the form.
2020-09-25 08:03:41 +02:00
Nicolas Roche
1e6831256b
login: add an option to hide cancel button ( #41122 )
2020-09-18 09:57:56 +02:00
Benjamin Dauvergne
19d892f537
urls: remove legacy URL routing ( #46151 )
2020-09-17 11:32:01 +02:00
Benjamin Dauvergne
41b97f0bb2
misc: validate and use a real identifier for services ( #45672 )
2020-09-03 11:55:13 +02:00
Valentin Deniaud
3df3bf6efd
views: set request.token at registration ( #46248 )
2020-09-01 15:49:53 +02:00
Valentin Deniaud
4f831fe4d8
views: warn user before generating new token ( #41792 )
2020-08-20 09:57:17 +02:00
Valentin Deniaud
7d9e65dc96
views: use one-time token for password reset ( #41792 )
2020-08-20 09:56:02 +02:00
Valentin Deniaud
f7e5ad16da
views: use one-time token for registration ( #41792 )
2020-08-20 09:55:22 +02:00
Benjamin Dauvergne
079102d851
misc: unserialize attribute in registration view ( #45710 )
...
Registration view pass attribute values in JSON tokens, so we need to
get a JSON compatible serialization of attribute values for the token
using their serialization function.
2020-08-13 17:33:22 +02:00
Paul Marillonnet
7fecf1140e
idp_oidc: deactivate service authz page according to setting ( #45649 )
2020-08-04 12:12:22 +02:00
Frédéric Péters
9ea1fdda60
account: don't display authorization management link unless services ( #45635 )
2020-07-31 11:09:59 +02:00
Nicolas Roche
1a3bd4bb05
profile_views: add a profil page to manage authorized oauth services ( #45200 )
2020-07-29 09:45:46 +02:00
Serghei Mihai
229566c741
misc: allow authenticator autorun if only one available ( #28216 )
2020-07-13 10:33:05 +02:00
Benjamin Dauvergne
648da7750c
misc: remove all uses of map() ( #44878 )
2020-07-07 10:37:41 +02:00
Serghei Mihai
018d3c8520
views: pass service parameter to show evaluation context ( #42370 )
2020-07-01 11:02:33 +02:00
Benjamin Dauvergne
442dc74bab
misc: use long duration cookie to check for cookie support in browser ( #44055 )
2020-06-26 12:02:38 +02:00
Valentin Deniaud
162a984897
views: fix password change code ( #43862 )
2020-06-15 12:17:48 +02:00
Benjamin Dauvergne
5c6fd54baa
misc: remove server_error() view ( #42821 )
2020-05-18 16:07:13 +02:00
Benjamin Dauvergne
0f241a712c
misc: re-use logout view in deletion view ( #41930 )
...
As user is not accessible anymore through ModelBackend.get_user(), we
must call logout() directly, and not through a redirection.
2020-05-15 10:49:47 +02:00
Benjamin Dauvergne
9f0aa6ad3c
misc: replace DeletedUser model by attribute deleted on User ( #41930 )
2020-05-15 10:49:47 +02:00
Benjamin Dauvergne
1a0e3d0c17
remove extra set_test_cookie ( #42280 )
2020-05-07 18:37:16 +02:00
Benjamin Dauvergne
a5e372707e
misc: test cookies are working in login view ( #42280 )
...
It's also tested in auth-fc login view.
2020-05-07 18:36:53 +02:00
Benjamin Dauvergne
bdeb86cd2c
drf: implement action decorator for version 3.4 ( #41238 )
2020-04-27 16:12:55 +02:00
Paul Marillonnet
1da5389209
dj2.2: user.is_authenticated is not a callable anymore ( #41238 )
2020-04-27 14:34:56 +02:00
Paul Marillonnet
6c3b3ff258
dj2.2: use compat django auth CBVs ( #41238 )
2020-04-27 14:34:24 +02:00
Paul Marillonnet
8804de70b7
dj2:2: fix 'reverse' import ( #41238 )
2020-04-27 14:34:24 +02:00
Benjamin Dauvergne
3c2e061faf
misc: pass login-hint in authenticators condition context ( #41142 )
2020-04-25 12:18:59 +02:00
Valentin Deniaud
afcec6c514
views: ratelimit email form views ( #41489 )
2020-04-24 11:07:43 +02:00
Valentin Deniaud
047b27b189
templates: better account deletion request message ( #39980 )
2020-04-02 14:57:06 +02:00
Serghei Mihai
d1c4ca12ca
views: remove login blocks' "is_hidden" attribute ( #41140 )
2020-03-29 14:47:21 +02:00
Serghei Mihai
3043ff3421
misc: allow authenticators display conditions ( #28215 )
2020-03-13 10:21:35 +01:00