Mikaël Ates
07394e6d4d
[authsaml2] Breaking lines continue...
2011-01-21 23:51:57 +01:00
Mikaël Ates
0198c30d4f
[authsaml2] Clean the code
...
- Better logging
- Break long lines
- Generic next parameter
2011-01-21 23:27:06 +01:00
Mikaël Ates
04548c2c41
[authsaml2] Generic next parameter.
2011-01-21 23:26:49 +01:00
Mikaël Ates
ba301a57a8
[saml] Logger in parameter to error page function
2011-01-21 23:25:15 +01:00
Mikaël Ates
a0757a48a5
[authsaml2] Manage federation
...
- Add federation management with persistent backend
- Add option to idp policy to consider transient nameId as persistent ones
- Modify frontend to take in account next parameter
2011-01-21 19:01:42 +01:00
Mikaël Ates
23b79e62bf
[authsaml2] Bugfixes
2011-01-20 12:56:45 +01:00
Mikaël Ates
328393ea6e
[authsaml2] Add option for account management with transient nameID.
2011-01-19 22:42:51 +01:00
Mikaël Ates
f8ec456a5e
[templates] Missing jquery script
2011-01-19 16:36:39 +01:00
Mikaël Ates
6821ce2b6c
[authsaml2] Check attribute values before log in.
2011-01-11 23:07:56 +01:00
Benjamin Dauvergne
efb4b5e74b
[idp saml2] fix typo
2011-01-08 14:21:29 +01:00
Benjamin Dauvergne
e49f86e6bd
[django_openid_provider] fix typo
2011-01-07 18:18:20 +01:00
Benjamin Dauvergne
9cddcad869
[django_openid_provider] simplify format checking of new openid identifiers
2011-01-07 18:17:18 +01:00
Benjamin Dauvergne
811ebc55d5
[django_openid_provider] for HTTPS checking just lookup the variable name in the environment
2011-01-07 18:13:06 +01:00
Benjamin Dauvergne
42f9bd4451
[django_openid_provider views] fix undefined variable in match
2011-01-07 16:44:09 +01:00
Benjamin Dauvergne
7cf7bb7bdf
[django_openid_provider] remove useless code
2011-01-07 16:41:58 +01:00
Benjamin Dauvergne
6410957246
[django_openid_provider] copy get_base_uri implementation from old version of django_openid_provider
2011-01-07 16:01:02 +01:00
Benjamin Dauvergne
74de7f8f36
[django_openid_provider] copy django_response implementation from old version of django_openid_provider
2011-01-07 15:59:51 +01:00
Benjamin Dauvergne
372fc1f2af
[authsaml2] remove user logged case in the assertion consumer
...
It break pffedportal.
2011-01-07 12:19:40 +01:00
Benjamin Dauvergne
1805d8936a
[saml] improve load-metadata command, shows whether we are creating a provider record or updating it
2011-01-07 11:56:31 +01:00
Benjamin Dauvergne
ebad614974
Add note to the README file about using the SAMLv2 IdP
2011-01-06 09:08:16 +01:00
Benjamin Dauvergne
0470286b7e
Add file from included external dependencies to MANIFEST.in
2011-01-06 09:03:04 +01:00
Benjamin Dauvergne
8d0ee2db92
Remove reference to ID-FF 1.2 from the README
2011-01-06 09:02:10 +01:00
Benjamin Dauvergne
7665fc91e4
[vendor totp_js] update from upstream
2011-01-05 21:15:25 +01:00
Benjamin Dauvergne
f170cf7f4b
Add a script to control content of the built distribution tarballs
2011-01-05 21:02:09 +01:00
Benjamin Dauvergne
606899d9ce
Distribute authentic2/locale not locale
2011-01-05 21:01:33 +01:00
Benjamin Dauvergne
cbe9c7209d
Add MANIGEST to .gitignore
2011-01-05 20:05:22 +01:00
Benjamin Dauvergne
bea866d059
Add javascript files from the totp_js package
2011-01-05 20:05:06 +01:00
Benjamin Dauvergne
0254ccb3d9
Move LDAP use instructions to the main README file
2011-01-05 19:21:00 +01:00
Benjamin Dauvergne
64cac48e4b
[idp saml2] add support for the LDAP backend as a login/password authentication
2011-01-05 19:15:33 +01:00
Benjamin Dauvergne
8e8c8f7a66
[authsaml2] fix typo
2011-01-05 19:15:03 +01:00
Benjamin Dauvergne
756c3d1c77
Fix badly placed end of list marker
2011-01-05 19:13:14 +01:00
Benjamin Dauvergne
d17dcfd569
Add README explaining how to use LDAP with authentic
2011-01-05 19:10:24 +01:00
Benjamin Dauvergne
5d39f2c6a5
[authsaml2] keep the issuer and nameid inside a specially named attribute
...
The issuer is kept inside attributes{'__issuer'} and the nameid inside
attributes{'__nameid'}. They can be accessed inside the login signal
handlers.
2011-01-04 13:07:09 +01:00
Frédéric Péters
9a0b0073fb
[saml] do not check sys.argv but the args processed by django
2011-01-03 16:21:37 +01:00
Benjamin Dauvergne
5261446dfd
[homepage] remove unused template parameters
2010-12-24 16:14:09 +01:00
Benjamin Dauvergne
ec44a0f726
[django_openid_provider] fix bad module path
2010-12-24 16:11:23 +01:00
Benjamin Dauvergne
297b5fce2a
[saml] make default NameID format be None
2010-12-24 16:09:22 +01:00
Benjamin Dauvergne
f0e4a8241a
[authsaml2] make authentication the django way
...
There is now two backends one for transient and another for persistent
authentications. The first one never create an object in the db. the
second one do as before. It properly uses
django.auth.contrib.authenticate() so that if we want to implement an
LDAP/SAML backend, we can.
The next step would be to authenticate based on an assertion, not just
the NameID. In the transient case it would open the way to storing
attributes into the session, the created user id would contain a copy of
the session key so that we can retrieve the attributes in the backend
get_user() method (which do not receive the request, so it does not have
a direct access to the session).
2010-12-24 15:59:07 +01:00
Benjamin Dauvergne
384e696e2f
[saml management] move commit() to top level to commit also when loading an unique provider
2010-12-24 15:54:42 +01:00
Benjamin Dauvergne
609b273934
[authsaml2] add model to represent user authenticated through a transient NameID
2010-12-24 15:54:05 +01:00
Benjamin Dauvergne
feee612ed5
[saml] make add_federation accept a simple NameID object
2010-12-24 14:30:22 +01:00
Benjamin Dauvergne
4f91e5187f
[authsaml2] remove the need for the SAML2_BACKEND setting
2010-12-24 13:53:16 +01:00
Benjamin Dauvergne
b6a9f1abfd
[auth] remove ULX modifications from main template
2010-12-24 13:35:45 +01:00
Benjamin Dauvergne
097206603b
[saml] accelerate metadata bulk loading by only committing when finished
2010-12-24 13:34:30 +01:00
Benjamin Dauvergne
f2cbb62437
[saml management] remove debugging statement
2010-12-24 12:00:41 +01:00
Benjamin Dauvergne
caac706772
[authsaml2] make federation termination take an URL parameter
2010-12-24 11:37:32 +01:00
Benjamin Dauvergne
840ff15b59
[authsaml2] rectify url dispatch file
2010-12-24 11:36:11 +01:00
Benjamin Dauvergne
a63e6df4e6
[auth openid] remove useless auth openid middleware
...
This remove one SQL query for each display of the login page.
2010-12-24 11:34:48 +01:00
Benjamin Dauvergne
f9523047c4
[saml] improve retrieving of the IdP to use only one SQL query
2010-12-24 11:34:48 +01:00
Benjamin Dauvergne
71bafc3ef7
[authsaml2] cache the idp_list inside the frontend object to limit SQL requests
2010-12-24 11:34:48 +01:00