Commit Graph

26 Commits

Author SHA1 Message Date
Benjamin Dauvergne 5527a4c9a6 views,middleware: do not ever cache responses containing an LTPA cookie 2014-04-22 16:24:18 +02:00
Benjamin Dauvergne ae7ba50a19 middleware: only create LTPA cookie on login and homepage 2014-04-22 16:24:13 +02:00
Benjamin Dauvergne e14ef39ed8 views: delete_cookie() does not accept the httplonly argument 2014-04-22 15:05:22 +02:00
Benjamin Dauvergne db8868ce85 middleware: do not add the LTPA token if in a logout URL 2014-04-22 14:28:39 +02:00
Benjamin Dauvergne 7cf177daf8 add setting for the LTPA cookie duration 2014-04-22 14:27:58 +02:00
Benjamin Dauvergne 89ba684641 views: add missing import 2014-04-11 07:45:37 +02:00
Benjamin Dauvergne fd4f81a2dc plugin: remove dead import 2014-04-11 07:45:26 +02:00
Benjamin Dauvergne d4321be93f plugin: only logout if the cookie is present in the request 2014-04-11 07:44:37 +02:00
Benjamin Dauvergne 6716551565 views: when deleting cookie conserve status of http_only flag 2014-04-11 07:44:04 +02:00
Benjamin Dauvergne 975bfd89f1 views: fix bug when calling can_add_token() 2014-04-11 07:42:25 +02:00
Benjamin Dauvergne 060a98b58e middleware: add middleware to set LTPA cookie on all authenticated requests 2014-04-11 07:42:00 +02:00
Benjamin Dauvergne 90626fd379 adapter: add an AttributeAdapter to use an LDAP attribute to fill the LTPA token user field 2014-03-14 17:43:11 +01:00
Benjamin Dauvergne e16d4e294a add middleware for automatic authentication, add slo support 2014-03-14 17:43:11 +01:00
Benjamin Dauvergne 1d07a77711 work around non-correctness of Domino with regard to cookie encoding 2014-03-14 14:27:35 +01:00
Benjamin Dauvergne 1bd2408700 views: use app_settings.TOKEN_DURATION for the duration of LTPA tokens 2014-03-14 14:27:02 +01:00
Benjamin Dauvergne 4696f9da37 utils: hex-encoded time must be uppercased 2014-03-14 14:26:18 +01:00
Benjamin Dauvergne e3e1fea51b setup.py: use get_version 2014-03-13 13:33:39 +01:00
Benjamin Dauvergne 4343670cea utils: use triple DES to decode LTPA key 2014-03-10 16:19:58 +01:00
Benjamin Dauvergne 849a5bb0f3 views: when getting the host name from the HTTP_HOST environment variable remove the port 2014-03-10 15:25:54 +01:00
Benjamin Dauvergne 3f57b38674 adapter: fix splitting of class name from module path 2014-03-10 15:25:40 +01:00
Benjamin Dauvergne c39108bd4f utils: duplicate the --secret argument declaration to make it required only for the generate command 2014-03-10 15:18:57 +01:00
Benjamin Dauvergne 23de382777 utils: add command to decrypt exported keys from WebSphere or Domino 2014-03-10 14:41:00 +01:00
Benjamin Dauvergne e552547100 app_settings: set default cookie name to LtpaToken 2014-03-10 14:40:22 +01:00
Benjamin Dauvergne d533635916 utils: remove wrong limitation on secret length, make secret only required for the generate command 2014-03-10 14:25:04 +01:00
Benjamin Dauvergne fe05bc40d0 adapter: add an adapter framework to customize the username put into LTPA tokens 2014-03-10 14:10:09 +01:00
Benjamin Dauvergne 73c33d8c60 first commit 2014-03-10 12:46:29 +01:00