Valentin Deniaud
b95ea4d6ce
wip add auth_levels
4 years ago
Valentin Deniaud
90c7daaa8a
add auth levels
4 years ago
Benjamin Dauvergne
b640f5b334
tests: test failed request path with artifact ( #31690 )
4 years ago
Frédéric Péters
99a60c1d88
update sso_failure call to new method signature ( #31690 )
4 years ago
Benjamin Dauvergne
ca6ce92781
views: fix discovery URL building ( #31581 )
4 years ago
Benjamin Dauvergne
d0e6f46f9b
views: keep next URL on disco requests ( fixes #31043 )
4 years ago
Benjamin Dauvergne
b3e1b9c533
views: add new setting LOGIN_HINTS ( fixes #30966 )
...
You can set MELLON_LOGIN_HINTS = ['backoffice'] to get a node
eo:login-hint set to "backoffice" in AuthnRequest when next_url for the
login view is among /manage/, /admin/ or /manager/.
Another value is 'always_backoffice' which always set the 'backoffice'
login_hint.
4 years ago
Benjamin Dauvergne
b7712516ee
views: PEP8ness ( #30966 )
4 years ago
Benjamin Dauvergne
f2e05b84ae
prevent redirection loop on artifact resolution errors ( fixes #14810 )
...
Signature of method sso_failure() is changed to match the name name of
the context variable in template mellon/authentication_failed.html
(idp_message => reason).
4 years ago
Benjamin Dauvergne
91f726ed4f
use Jenkinsfile ( #14810 )
...
- Copied from authentic2-auth-kerberos
- Removal of .coveragerc as it prevented coverage from working, dunno
why.
4 years ago
Christophe Siraut
803907f00f
debian: add python3-django-mellon; use pybuild ( #30494 )
4 years ago
Benjamin Dauvergne
3d449b7928
backends: add request argument to authenticate ( fixes #30541 )
...
For Django 1.11 compatibility.
4 years ago
Benjamin Dauvergne
b0ddc85486
backends: PEP8ness, copyright ( #30451 )
4 years ago
Frédéric Péters
c3cf170526
tox: limit pytest version to a version compatible with pytest-cov
4 years ago
Frédéric Péters
a1fa7d36df
don't cache local metadata anymore ( #13881 )
5 years ago
Frédéric Péters
d026ce40e1
don't use RelayState as continuation URL in case of errors ( #25522 )
5 years ago
Paul Marillonnet
349a4ec3bc
skip test if number of concurrent connections above default pg limit ( #25252 )
5 years ago
Paul Marillonnet
c5fddd13cd
tests: adapt to lasso PEM-formatting deprecation ( #24531 )
5 years ago
Benjamin Dauvergne
d4d0b85944
use good API from lasso to set Extensions node content ( #23003 )
...
- use extensions.any tuple to set the content of the Extensions node
- add tests for the presence of the eo:next_url node when
ADD_AUTHNREQUEST_NEXT_URL_EXTENSION is used
- add tests for next_url propagation through the RelayState value
5 years ago
Frédéric Péters
edb09ed8fd
use force_text for python2/3 compatibility ( #24139 )
5 years ago
Emmanuel Cazenave
9498e35cf4
pin django-webtest ( #23603 )
5 years ago
Frédéric Péters
bd6a6b42d8
tox: let getlasso3 work with all python3 versions
5 years ago
Frédéric Péters
250476911c
tox: also run tests against python 3
5 years ago
Frédéric Péters
8252e948e7
tests: adapt to python 3
5 years ago
Frédéric Péters
1e02302fd9
python3: get metadata from URL as a string
5 years ago
Frédéric Péters
ffadd1a618
python3: use urlparse compatibility module in tests
5 years ago
Frédéric Péters
163639501c
python3: always use %s to get user representation in logs
5 years ago
Frédéric Péters
24e85adc5a
python3: handle differences in lasso/py2/py3 encodings
5 years ago
Frédéric Péters
401b65f8b3
python3: adjust unicode usage
5 years ago
Frédéric Péters
239f39c097
python3: add detection of xml encoding
5 years ago
Frédéric Péters
7df3a6f5e0
python3: don't use iteritems
5 years ago
Frédéric Péters
d342971a45
python3: use open() to open files
5 years ago
Frédéric Péters
7ac7c48f67
tests: don't use a leading 0 in numbers
5 years ago
Benjamin Dauvergne
f1af12e6a1
tests: prevent "Database is locked" error during concurrency test ( fixes #19678 )
...
SQLite has a default timeout of 5 seconds, we augment it to 400 seconds. We also
replace our custom thread pool by the one provided by multiprocessing.
5 years ago
Benjamin Dauvergne
be791d54a8
set a default value for IDENTITY_PROVIDERS (( fixes #20221 )
5 years ago
Benjamin Dauvergne
b66a974922
do not raise ImproperlyConfigured on acces to app_settings.IDENTITY_PROVIDERS ( fixes #20221 )
5 years ago
Thomas NOËL
ac75dce84f
misc: disable AuthnRequest eo:next_url Extensions by default ( fixes #20229 )
5 years ago
Benjamin Dauvergne
a0d3e209c1
move tag Extensions in metadata template ( fixes #21923 )
...
Current template does not validate the SAML 2.0 metadata schema.
5 years ago
Benjamin Dauvergne
6c528dd2c3
Revert "support federation file loading ( #19396 )"
...
This reverts commit 63993e360c
.
5 years ago
Paul Marillonnet
63993e360c
support federation file loading ( #19396 )
5 years ago
Frédéric Péters
6d8e1ca517
tests: also run for django 1.11 ( #19659 )
5 years ago
Frédéric Péters
18eb3a8632
tests: remove django < 1.8 leftovers ( #19659 )
5 years ago
Benjamin Dauvergne
e55455d913
tox.ini: remove pytest-catchlog merged in the core of pytest ( fixes #21057 )
5 years ago
Frédéric Péters
05d566d152
limit to django 1.11
6 years ago
Frédéric Péters
343be40b6f
misc: update exception handling for Python 3 ( #20925 )
6 years ago
Frédéric Péters
078fcbd058
misc: update missing-django message for Python 3 ( #20925 )
6 years ago
Benjamin Dauvergne
688067f270
middleware: improve condition to automatically determine a common domain ( fixes #15548 )
...
It works if:
- HTTP Host is a domain name and not an IP address (IPv6 address will not pass
this test, they lack dots),
- domain contains at least three components.
6 years ago
Benjamin Dauvergne
cb3e18c8ba
tests: fix discovery service tests ( #19018 #19016 )
6 years ago
Benjamin Dauvergne
1703cc5da2
views: send entityID to discovery service ( fixes #19016 )
6 years ago
Benjamin Dauvergne
afe3d4a83f
views: add nodisco=1 to discovery service return url ( fixes #19018 )
6 years ago