Benjamin Dauvergne
2e5bd982e6
update french translations ( #20078 )
2017-11-16 10:45:40 +01:00
Benjamin Dauvergne
89fabbc47f
views: change messages levels ( #20078 )
2017-11-16 10:45:40 +01:00
Benjamin Dauvergne
a671f6c97c
views: do not permit linking if the user has already a link to FC ( #20078 )
2017-11-16 10:45:40 +01:00
Benjamin Dauvergne
e9b7ed137a
views: forbid automatic linking based on email if multiples users are found or if target user has already a link ( fixes #20078 )
2017-11-16 10:45:40 +01:00
Benjamin Dauvergne
2b99011027
backends: make sub parameter non optional in authenticate()
2017-11-08 17:38:31 +01:00
Benjamin Dauvergne
313824142a
always unlink from all FC accounts ( fixes #19947 )
2017-11-08 11:11:12 +01:00
Serghei Mihai
612877092c
update FC logos ( #19585 )
2017-10-24 17:24:38 +02:00
Serghei Mihai
29876048c0
update login and register buttons images ( #19162 )
2017-10-16 09:31:25 +02:00
Serghei
2c1ddcdfc3
replace logo image for account linking ( #17391 )
2017-10-11 22:00:14 +02:00
Benjamin Dauvergne
b9987366ca
views: force fc-register to always redirect post registration to fc-login-or-link ( fixes #19270 )
...
Without it linking to FC does not happen
2017-10-09 15:15:04 +02:00
Benjamin Dauvergne
73c774d1b2
utils: allow a mapping to depend from another using tags ( fixes #19251 )
2017-10-06 14:26:51 +02:00
Benjamin Dauvergne
4c9dab9784
utils: add an if-empty modifier to only set a value from FC if the existing value is empty ( fixes #19250 )
2017-10-06 14:26:03 +02:00
Benjamin Dauvergne
9789aca728
utils: normalize mapping in apply_user_info_mappings ( #19250 )
2017-10-06 14:25:58 +02:00
Benjamin Dauvergne
5dcdf8ead8
views: block DisplayMessageBeforeRedirectMiddleware on redirect to FC ( fixes #19247 )
2017-10-06 13:15:15 +02:00
Benjamin Dauvergne
39ea7fb75c
utils: add a notempty transformation for attribute mappings ( fixes #19233 )
2017-10-05 15:33:08 +02:00
Benjamin Dauvergne
0597b3e27e
django 1.9 compatibility
2017-09-19 16:45:30 +02:00
Benjamin Dauvergne
48f4210106
backends: always create new accounts in the default OU ( fixes #18764 )
2017-09-19 16:45:30 +02:00
Benjamin Dauvergne
6249926666
views: automatically link user with existing email if email is unique ( fixes #18763 )
...
Email must be unique if settings.A2_EMAIL_IS_UNIQUE is True or
get_default_ou().email_is_unique is True.
2017-09-19 16:45:30 +02:00
Benjamin Dauvergne
4fb66cc6fb
models: check issuer using only URL scheme and netloc ( fixes #18766 )
2017-09-18 17:18:12 +02:00
Benjamin Dauvergne
d36f1110d3
tests: test with non ASCII characters
2017-09-18 17:18:12 +02:00
Benjamin Dauvergne
7a91aa07cb
utils: do not set absent references to None, ignore them instead ( fixes #18765 )
2017-09-18 17:18:12 +02:00
Frédéric Péters
8e68ccdef1
style: switch to extra-body-class for custom body class ( #17983 )
2017-08-12 17:50:35 +02:00
Benjamin Dauvergne
54ba992b15
views: remove dead code
2017-07-28 16:58:04 +02:00
Benjamin Dauvergne
9f3ec479ad
utils: allow referencing a sub object of user_info in attribute mapping
2017-07-28 16:57:56 +02:00
Benjamin Dauvergne
d5c76ccee0
views: add setting for FC scopes
2017-07-28 16:57:45 +02:00
Benjamin Dauvergne
8aed0278c3
backends: fix logging of unicode strings
2017-07-26 19:05:38 +02:00
Benjamin Dauvergne
44d8bfb472
utils: fix mapping of user attributes
2017-07-18 19:29:37 +02:00
Benjamin Dauvergne
2ee9cc3a7d
setup.py: distribute insee files
2017-07-18 00:44:30 +02:00
Benjamin Dauvergne
e32a2acd58
indicate registration URL is coming from france connect module
2017-07-11 16:45:51 +02:00
Benjamin Dauvergne
fb59436835
redirect to auth_logout if no post logout redirect URI is found
2017-07-11 16:45:25 +02:00
Benjamin Dauvergne
4e09a681ce
fix typo introduced in commit a7677f4bc0
( #17331 )
2017-07-11 16:24:03 +02:00
Serghei
6bf6ff6c8c
templates: use different ids for link and its container ( #17421 )
2017-07-06 18:59:08 +02:00
Josue Kouka
ffdf6047dc
allow fc unlinking through api ( #15297 )
2017-07-05 15:33:05 +02:00
Benjamin Dauvergne
a7677f4bc0
do not logout from local session on unlink (bis #17331 )
...
Fix bug introduced in previous commit.
2017-07-05 09:59:39 +02:00
Benjamin Dauvergne
212d41fdbe
do not logout from local session on unlink ( fixes #17331 )
2017-07-04 12:06:26 +02:00
Benjamin Dauvergne
9587e13780
fix issuer check
2017-06-22 13:41:22 +02:00
Benjamin Dauvergne
68fdf61c9a
use only underscores in session variables to allow access from templates
2017-06-21 11:16:51 +02:00
Benjamin Dauvergne
6461daab81
setup.py: change compile_translations to work with tox
2017-06-15 18:46:27 +02:00
Benjamin Dauvergne
c91411d8be
improve reporting of error on access token requests
2017-06-15 18:46:27 +02:00
Benjamin Dauvergne
9ee35f8e19
validate id_token
...
Signature is validated, exp, aud and iis fields are checked.
Also add tests using tox and py.test. Proper validation of signature is verified
using jwcrypto.
2017-06-15 18:46:27 +02:00
Benjamin Dauvergne
690fde2f6b
use state as nonce and check nonce returned in id_token
2017-06-14 09:43:41 +02:00
Benjamin Dauvergne
6a57e1f0ec
add missing data files insee-communes.json and insee-countries.json
2017-06-14 09:36:54 +02:00
Benjamin Dauvergne
ecd2af964f
pep8ness
2017-06-14 09:35:53 +02:00
Benjamin Dauvergne
27642283cc
generate a random state linked to the session
...
Instead of encoding the redirect_uri in the state we:
* generate a random state with 128 bits of entropy
* store the state and the redirect_uri in the session
* verify that the state exist when receivng the callback
* retrieving the redirect_uri linked to this state from the session
2017-06-14 09:35:41 +02:00
Benjamin Dauvergne
d888f1f8ac
set confirm_data="required" when auto_register is used ( fixes #16771 )
...
When auto_register is used, users should not see the registration page at all,
even if optionnal attribute fields are unfilled.
2017-06-08 17:12:48 +02:00
Benjamin Dauvergne
7b0517e1dd
redirect to logout on unlink
2017-03-21 17:02:59 +01:00
Benjamin Dauvergne
321651c6b2
do not log an error for normal oauth2 errors
...
Such error happens when authorization code is out of date or already used.
2017-03-21 11:02:26 +01:00
Benjamin Dauvergne
f0a7266451
improve mapping of FC attributes to A2 attributes ( #10062 )
2017-03-21 11:02:26 +01:00
Benjamin Dauvergne
74aadc0508
pep8ness
2017-03-07 11:32:12 +01:00
Benjamin Dauvergne
5d422c2296
always return to /logout/ after FC logout ( fixes #15223 )
2017-03-07 11:32:12 +01:00