entrouvert
/
authentic
16
0
Fork 0
Code Issues Pull Requests 32 Releases Activity
6,470 Commits 187 Branches 448 Tags 29 MiB
Commit Graph

6470 Commits

Author SHA1 Message Date
Frédéric Péters aae3053b16 translation update 2022-12-01 19:01:52 +01:00
Benjamin Dauvergne 2480687f3f auth_oidc: show a warning message if target user is already linked to another provider (#65692) 2022-12-01 13:00:20 +01:00
Benjamin Dauvergne 855bb179b0 misc: use PIL.Image.Resampling.LANCZOS instead of PIL.Image.LANCZOS (#71899) 
PIL.Image.LANCZOS is deprecated.
 2022-12-01 12:00:42 +01:00
Benjamin Dauvergne 3fcbe2198c django.contrib.postgres's JSONField is deprecated (#71619) 2022-12-01 11:54:32 +01:00
Benjamin Dauvergne 5788e9f0cd NullBooleanField is deprecated since Django 3.1 (#71619) 
It must be replaced by BooleanField(null=True).
 2022-12-01 11:54:32 +01:00
Benjamin Dauvergne 896819fce8 tox.ini: remove unused tox dependencies 2022-12-01 11:54:13 +01:00
Benjamin Dauvergne ea5366ac0d tox.ini: pass posargs to pylint 2022-12-01 11:54:09 +01:00
Benjamin Dauvergne 4b3bcd0149 settings: set samesite flag on cookies when possible (#71880) 2022-12-01 10:00:07 +01:00
Benjamin Dauvergne d8d29e2daa settings: set secure flag on cookies (#71880) 
Tests fixes :
* force https scheme in webtest HTTP client
* add secure=True to call with the django HTTP client
* replace http scheme by https in URLs assertions,
* properly use response.form in tests directly using app.post, as CSRF checks on secure connection also test the Referrer
* manually add Referer header in other cases,
 2022-12-01 10:00:07 +01:00
Paul Marillonnet 97a5ebf63a Revert "idp_oidc: add api access and profile […] (#71820)" (#71890) 
This reverts commit 9141583b58.

The (erroneously added) parameters are for Publik's out-of-spec
synchronization purposes, they shouldn't appear on the vanilla OIDC
client configuration interface.
 2022-12-01 09:22:55 +01:00
Paul Marillonnet d62d23203f auth_fc: discard deprecated scopes (#71868) 2022-11-30 12:10:11 +01:00
Valentin Deniaud 8e6a95b6ce attributes_ng: restore setting superuser flag (#71855) 2022-11-29 18:55:27 +01:00
Valentin Deniaud 5f0c03e32f a2_rbac: move role attributes to real model fields (#69895) 2022-11-29 14:05:38 +01:00
Paul Marillonnet 9ba3df609b translation update 2022-11-29 12:34:35 +01:00
Paul Marillonnet 9141583b58 idp_oidc: add api access and profile management to BO config (#71820) 2022-11-29 11:26:43 +01:00
Paul Marillonnet 0c5da1c832 idp_oidc: remove client config through django's admin pages (#71700) 
This removal ensures that OIDC configuration happens through
/manage/ pages as part of Publik's backoffice interface.
 2022-11-29 11:09:16 +01:00
Benjamin Dauvergne d19ac19469 auth_fc: close FranceConnect session when linking fails (#71607) 2022-11-28 15:05:46 +01:00
Benjamin Dauvergne cfefbd553c tests: do not follow redirects in login_with_fc (#71607) 
Because it will break when we introduce a redirection to FranceConnect
to close the FranceConnect session on failure to link.
 2022-11-28 15:05:46 +01:00
Benjamin Dauvergne a8ebccc5aa translation update (#69989) 2022-11-28 15:05:01 +01:00
Benjamin Dauvergne 9171c30feb auth_fc: show warning on password change page if user is linked to FranceConnect (#69989) 2022-11-28 15:05:01 +01:00
Benjamin Dauvergne 89b526066d auth_fc: store id_token in session when linking (#69989) 
Password change view is hidden only if the current session was opened
with FranceConnect and if the id_token is visible in the session, this
change will enforce the second condition when during the same session
the account is unlinked and linked again to FranceConnect.

It will also permit to launch a logout if the link fails.
 2022-11-28 15:05:01 +01:00
Paul Marillonnet 5a821a8883 a2_rbac: add global management role for api clients (#71267) 
ou-wise api-client management roles will be added in #71275.
 2022-11-28 09:12:47 +01:00
Thomas NOËL e9ccac7303 MANIFEST.in: add missing auth_fc txt templates (#71695) 2022-11-25 00:56:39 +01:00
Benjamin Dauvergne 5a3f82bd51 settings: mute warning about auto fields 
See https://docs.djangoproject.com/en/dev/releases/3.2/#customizing-type-of-auto-created-primary-keys
 2022-11-23 15:15:17 +01:00
Benjamin Dauvergne 823240daf0 tox: ignore tests/ when updating locales (#71523) 2022-11-22 12:05:28 +01:00
Benjamin Dauvergne eadb683b11 translation update (#71523) 2022-11-22 12:05:28 +01:00
Frédéric Péters 7fa087db54 translation update 2022-11-21 17:49:54 +01:00
Benjamin Dauvergne 01190b740a api: add keepalive option to user syncronization API (#67901) 2022-11-21 10:22:54 +01:00
Benjamin Dauvergne 23956e98dd tests: simplify user synchronization API tests (#67901) 2022-11-16 11:39:07 +01:00
Benjamin Dauvergne 5a592baf31 tests: split user synchronization API tests (#67901) 2022-11-16 11:39:07 +01:00
Benjamin Dauvergne 0cb14c0138 api: refactor user synchronization API endpoint (#67901) 2022-11-16 11:39:07 +01:00
Benjamin Dauvergne ff581d6617 misc: adapt clean-unused-account for keepalive (#67901) 2022-11-16 11:39:07 +01:00
Benjamin Dauvergne fa52e3739c models: add User.keepalive field (#67901) 2022-11-16 11:39:07 +01:00
Frédéric Péters 35de406c1b translation update 2022-11-15 19:49:53 +01:00
Emmanuel Cazenave 41fa87af45 apiclient: make description non mandatory (#69524)
gitea/authentic/pipeline/head Build started... Details
2022-11-14 17:37:59 +01:00
Frédéric Péters b806723bba general: add a new "language" attribute kind (#71033) 2022-11-14 15:38:37 +01:00
Frédéric Péters d885b0f4a8 trivial: update FC translation to match button text (#71075) 2022-11-14 15:09:45 +01:00
Frédéric Péters a461d29823 misc: remove unnecessary parameter in SIRET regex validation (#71032) 2022-11-14 15:09:06 +01:00
Valentin Deniaud f8f19e14b5 django_rbac: remove utils (#70894) 2022-11-14 12:00:15 +01:00
Valentin Deniaud 58dd0ae0be a2_rbac: move managers from django_rbac (#70894) 2022-11-14 12:00:15 +01:00
Valentin Deniaud 14e25ac186 django_rbac: remove unused code (#70894) 2022-11-14 12:00:15 +01:00
Valentin Deniaud ba71c350b4 a2_rbac: move context_processors from django_rbac (#70894) 2022-11-14 12:00:15 +01:00
Valentin Deniaud 8d600641e9 translation update 2022-11-14 10:05:32 +01:00
Valentin Deniaud 588fd61628 auth_fc: send email on registration (#65839) 2022-11-08 17:48:18 +01:00
Frédéric Péters 59644444ef translation update 2022-11-04 13:30:32 +01:00
Benjamin Dauvergne 5c4318d707 misc: use LANCZOS instead of PIL.Image.Antialias (#70634) 
PIL.Image.Antialias is deprecated.
 2022-11-04 08:07:14 +01:00
Valentin Deniaud 65e5a32250 auth_saml: add name id policy format choices (#70750) 2022-11-03 10:09:38 +01:00
Paul Marillonnet 9670f4d857 tests: pass a valid get_response upon middleware initialization (#70861) 2022-11-02 10:59:38 +01:00
Valentin Deniaud 0474974f8c translation update 2022-10-31 18:57:21 +01:00
Valentin Deniaud 89cb39d808 add forgotten period in translation 2022-10-31 18:29:47 +01:00