entrouvert
/
authentic
16
0
Fork 0
Code Issues Pull Requests 33 Releases Activity
5,466 Commits 188 Branches 447 Tags 29 MiB
Commit Graph

5466 Commits

Author SHA1 Message Date
Benjamin Dauvergne 5a335bc526 translation update 2021-02-18 10:50:58 +01:00
Loïc Dachary 814e0192f3 ldap: optionally collects messages from ppolicy 
Enable PasswordPolicyControl[0] in authenticate() and log the
information it returns, on success or error. In the context of a
request, this information is also set as a message[1] to be displayed
to the user.

[0] https://github.com/python-ldap/python-ldap/blob/python-ldap-3.3.1/Lib/ldap/controls/ppolicy.py
[1] https://docs.djangoproject.com/en/3.1/ref/contrib/messages/

Fixes: #50959

License: MIT
 2021-02-16 18:37:44 +01:00
Valentin Deniaud 8efb3ee192 journal: ignore event referencing deleted service in statistics (#50987) 2021-02-16 17:39:59 +01:00
Loïc Dachary cc02a30b14 ldap: additional tests for the keep_password function (#50931) 
License: MIT
 2021-02-16 17:39:16 +01:00
Loïc Dachary 882ce5d930 doc: explain how to run all the tests (#50921) 
License: MIT
 2021-02-16 17:38:32 +01:00
Loïc Dachary 0e2117c0aa doc: run tests with code coverage (#50921) 
License: MIT
 2021-02-16 17:38:32 +01:00
Loïc Dachary 27c3efc615 doc: note about tests/test_ldap.py failing because of apparmor (#50921) 
License: MIT
 2021-02-16 17:38:32 +01:00
Loïc Dachary a2ccc2ca89 doc: instructions to setup a development environment (#50921) 
License: MIT
 2021-02-16 17:38:32 +01:00
Loïc Dachary 5b4cf3e75f doc: sphinx.ext.pngmath is now sphinx.ext.imgmath (#50921) 
License: MIT
 2021-02-16 17:38:32 +01:00
Serghei Mihai 4aa751a710 manager: display user deactivation date (#51112) 2021-02-16 11:12:52 +01:00
Serghei Mihai 3b12836e8b manager: use dedicated method to deactivate user (#51112) 2021-02-15 11:15:21 +01:00
Valentin Deniaud d412424788 utils: do not record login if simulated (#50975) 2021-02-15 09:44:19 +01:00
Serghei Mihai 46c977d498 custom_user: add field to store user deactivation time (#50966) 2021-02-09 19:38:05 +01:00
Benjamin Dauvergne 09d8a676f9 api: do not clobber HTTP verb methods in viewsets (#50919) 2021-02-08 16:12:07 +01:00
Benjamin Dauvergne 7514632fe6 auth_oidc: enforce SameSite=Lax on the state cookie (#48347) 
SameSite=Lax is needed for the cookie to be sent by the browser during
redirection chain from the provider. We could just depend on the fact
that cookie without SameSite are Lax by default, but it's better to be
explicit.
 2021-02-08 16:00:04 +01:00
Benjamin Dauvergne 2eeb1c6067 ldap: removed unused setting group_dn_template (#50922) 2021-02-08 15:59:19 +01:00
Benjamin Dauvergne 8e0f0b69b0 ldap: add group_basedn to _DEFAULTS (#50922) 2021-02-08 15:59:19 +01:00
Benjamin Dauvergne 69254370cb ldap: transition to lowercase dn from case mixed in sessions (#50908) 2021-02-05 18:48:42 +01:00
Benjamin Dauvergne 19a8dfc2bd ldap: ignore case of group distinguished names (#50908) 2021-02-05 18:48:42 +01:00
Benjamin Dauvergne 2a5f5c3ef3 debian: fix typo in debian/control 2021-02-05 17:54:52 +01:00
Benjamin Dauvergne 71b3ca06c2 auth_saml: report user creation errors (#50834) 2021-02-04 11:52:00 +01:00
Benjamin Dauvergne e5f368bec9 misc: control similarity threshold for fts (#50781) 2021-02-04 11:44:05 +01:00
Benjamin Dauvergne 1c8c8117ff auth_saml: log mapping errors during user creation (#48784) 2021-02-03 20:39:39 +01:00
Frédéric Péters ab6ee43978 settings: mark laposte.net as well-known domain, not laposte.fr (#50765) 2021-02-02 14:51:32 +01:00
Benjamin Dauvergne e45f693512 custom_user: search email by subtring or trigram in FTS search (#50732) 2021-02-02 10:47:09 +01:00
Benjamin Renard 62654a29a7 ldap: make user_attributes.from_ldap case insensitive (#50528) 2021-02-01 11:04:33 +01:00
Frédéric Péters ade4c6399f registration: restore paragraph/bold style in completion message (#50700) 2021-01-30 16:42:08 +01:00
Benjamin Dauvergne 8e191dcc22 misc: add migration to fix absence of immutable_unaccent() (#50462) 2021-01-28 22:40:53 +01:00
Benjamin Dauvergne 51becec7cf api_views: order users as free_text_search() when `q` is used (#50536) 2021-01-27 11:40:37 +01:00
Benjamin Dauvergne 4c029ae062 api_views: order users as in the model (#49899) 2021-01-27 11:40:37 +01:00
Benjamin Dauvergne 9cec4cfef9 manager: remove default ordering for user's table (#50534) 2021-01-27 11:40:37 +01:00
Benjamin Dauvergne 95e35f371f manager: order link column by last_name first (#50535) 2021-01-27 11:40:37 +01:00
Frédéric Péters ab7d3db5ef manager: load jquery first (#49872) 2021-01-27 08:18:42 +01:00
Benjamin Dauvergne 1ff8790da0 settings: decrease A2_DUPLICATES_THRESHOLD to 0.2 (#50445) 
The original limit of 0.7 is kept for the find-duplicates web-service API.
 2021-01-25 12:04:33 +01:00
Paul Marillonnet e306d5afbf add missing string in previous translation update 2021-01-23 10:46:25 +01:00
Paul Marillonnet 04224c478a translation update 2021-01-22 12:19:54 +01:00
Benjamin Dauvergne 961403a666 use honeypot field to detect robots on registration form (#50108) 2021-01-22 11:10:03 +01:00
Benjamin Dauvergne ab66385315 custom_user: specialize free_text_search for common search terms (#49957) 2021-01-19 15:21:07 +01:00
Benjamin Dauvergne f4908a01f4 tests: use pytest style (#49957) 2021-01-19 15:21:07 +01:00
Benjamin Dauvergne c98b0f2347 authentic2: add full text search to AttributeValue (#49957) 2021-01-19 15:21:07 +01:00
Benjamin Dauvergne 3cb60a412f custom_user: index User.username and User.email (#49957) 2021-01-19 15:21:07 +01:00
Valentin Deniaud 511d1d222e api_views: prevent crash with statistics and old DRF (#49447) 2021-01-19 14:39:23 +01:00
Serghei Mihai 230cec28eb idp_oidc: fix MissingParameter initialization (#50217) 2021-01-18 10:59:48 +01:00
Frédéric Péters 78dff608b8 manager: do not wrap journal timestamps (#50055) 2021-01-12 14:33:28 +01:00
Valentin Deniaud 09c68bddc3 manager: check permissions before showing add user button (#49893) 2021-01-12 14:10:49 +01:00
Benjamin Dauvergne 081a4e5798 utils: fix subscript checking for python 3.9 (#49608) 2021-01-08 12:01:28 +01:00
Benjamin Dauvergne ae5a9c0b3d translation update 2021-01-04 12:13:12 +01:00
Valentin Deniaud 1d09697079 manager: do without disabled add user button on users page (#45338) 2021-01-04 11:44:31 +01:00
Frédéric Péters a6eb71ac63 build: update to use origin/main 2020-12-26 15:21:15 +01:00
Benjamin Dauvergne f904f03a57 do not store username in password reset tokens (#49131) 2020-12-18 14:50:14 +01:00