Commit Graph

250 Commits (auth_levels)
 

Author SHA1 Message Date
Valentin Deniaud b95ea4d6ce wip add auth_levels 4 years ago
Valentin Deniaud 90c7daaa8a add auth levels 4 years ago
Benjamin Dauvergne b640f5b334 tests: test failed request path with artifact (#31690) 4 years ago
Frédéric Péters 99a60c1d88 update sso_failure call to new method signature (#31690) 4 years ago
Benjamin Dauvergne ca6ce92781 views: fix discovery URL building (#31581) 4 years ago
Benjamin Dauvergne d0e6f46f9b views: keep next URL on disco requests (fixes #31043) 4 years ago
Benjamin Dauvergne b3e1b9c533 views: add new setting LOGIN_HINTS (fixes #30966)
You can set MELLON_LOGIN_HINTS = ['backoffice'] to get a node
eo:login-hint set to "backoffice" in AuthnRequest when next_url for the
login view is among /manage/, /admin/ or /manager/.

Another value is 'always_backoffice' which always set the 'backoffice'
login_hint.
4 years ago
Benjamin Dauvergne b7712516ee views: PEP8ness (#30966) 4 years ago
Benjamin Dauvergne f2e05b84ae prevent redirection loop on artifact resolution errors (fixes #14810)
Signature of method sso_failure() is changed to match the name name of
the context variable in template mellon/authentication_failed.html
(idp_message => reason).
4 years ago
Benjamin Dauvergne 91f726ed4f use Jenkinsfile (#14810)
- Copied from authentic2-auth-kerberos
- Removal of .coveragerc as it prevented coverage from working, dunno
  why.
4 years ago
Christophe Siraut 803907f00f debian: add python3-django-mellon; use pybuild (#30494) 4 years ago
Benjamin Dauvergne 3d449b7928 backends: add request argument to authenticate (fixes #30541)
For Django 1.11 compatibility.
4 years ago
Benjamin Dauvergne b0ddc85486 backends: PEP8ness, copyright (#30451) 4 years ago
Frédéric Péters c3cf170526 tox: limit pytest version to a version compatible with pytest-cov 4 years ago
Frédéric Péters a1fa7d36df don't cache local metadata anymore (#13881) 5 years ago
Frédéric Péters d026ce40e1 don't use RelayState as continuation URL in case of errors (#25522) 5 years ago
Paul Marillonnet 349a4ec3bc skip test if number of concurrent connections above default pg limit (#25252) 5 years ago
Paul Marillonnet c5fddd13cd tests: adapt to lasso PEM-formatting deprecation (#24531) 5 years ago
Benjamin Dauvergne d4d0b85944 use good API from lasso to set Extensions node content (#23003)
- use extensions.any tuple to set the content of the Extensions node
- add tests for the presence of the eo:next_url node when
  ADD_AUTHNREQUEST_NEXT_URL_EXTENSION is used
- add tests for next_url propagation through the RelayState value
5 years ago
Frédéric Péters edb09ed8fd use force_text for python2/3 compatibility (#24139) 5 years ago
Emmanuel Cazenave 9498e35cf4 pin django-webtest (#23603) 5 years ago
Frédéric Péters bd6a6b42d8 tox: let getlasso3 work with all python3 versions 5 years ago
Frédéric Péters 250476911c tox: also run tests against python 3 5 years ago
Frédéric Péters 8252e948e7 tests: adapt to python 3 5 years ago
Frédéric Péters 1e02302fd9 python3: get metadata from URL as a string 5 years ago
Frédéric Péters ffadd1a618 python3: use urlparse compatibility module in tests 5 years ago
Frédéric Péters 163639501c python3: always use %s to get user representation in logs 5 years ago
Frédéric Péters 24e85adc5a python3: handle differences in lasso/py2/py3 encodings 5 years ago
Frédéric Péters 401b65f8b3 python3: adjust unicode usage 5 years ago
Frédéric Péters 239f39c097 python3: add detection of xml encoding 5 years ago
Frédéric Péters 7df3a6f5e0 python3: don't use iteritems 5 years ago
Frédéric Péters d342971a45 python3: use open() to open files 5 years ago
Frédéric Péters 7ac7c48f67 tests: don't use a leading 0 in numbers 5 years ago
Benjamin Dauvergne f1af12e6a1 tests: prevent "Database is locked" error during concurrency test (fixes #19678)
SQLite has a default timeout of 5 seconds, we augment it to 400 seconds. We also
replace our custom thread pool by the one provided by multiprocessing.
5 years ago
Benjamin Dauvergne be791d54a8 set a default value for IDENTITY_PROVIDERS ((fixes #20221) 5 years ago
Benjamin Dauvergne b66a974922 do not raise ImproperlyConfigured on acces to app_settings.IDENTITY_PROVIDERS (fixes #20221) 5 years ago
Thomas NOËL ac75dce84f misc: disable AuthnRequest eo:next_url Extensions by default (fixes #20229) 5 years ago
Benjamin Dauvergne a0d3e209c1 move tag Extensions in metadata template (fixes #21923)
Current template does not validate the SAML 2.0 metadata schema.
5 years ago
Benjamin Dauvergne 6c528dd2c3 Revert "support federation file loading (#19396)"
This reverts commit 63993e360c.
5 years ago
Paul Marillonnet 63993e360c support federation file loading (#19396) 5 years ago
Frédéric Péters 6d8e1ca517 tests: also run for django 1.11 (#19659) 5 years ago
Frédéric Péters 18eb3a8632 tests: remove django < 1.8 leftovers (#19659) 5 years ago
Benjamin Dauvergne e55455d913 tox.ini: remove pytest-catchlog merged in the core of pytest (fixes #21057) 5 years ago
Frédéric Péters 05d566d152 limit to django 1.11 6 years ago
Frédéric Péters 343be40b6f misc: update exception handling for Python 3 (#20925) 6 years ago
Frédéric Péters 078fcbd058 misc: update missing-django message for Python 3 (#20925) 6 years ago
Benjamin Dauvergne 688067f270 middleware: improve condition to automatically determine a common domain (fixes #15548)
It works if:
- HTTP Host is a domain name and not an IP address (IPv6 address will not pass
  this test, they lack dots),
- domain contains at least three components.
6 years ago
Benjamin Dauvergne cb3e18c8ba tests: fix discovery service tests (#19018 #19016) 6 years ago
Benjamin Dauvergne 1703cc5da2 views: send entityID to discovery service (fixes #19016) 6 years ago
Benjamin Dauvergne afe3d4a83f views: add nodisco=1 to discovery service return url (fixes #19018) 6 years ago