entrouvert
/
django-mellon
16
0
Fork 0
Code Issues Pull Requests Releases Activity
250 Commits 7 Branches 101 Tags 867 KiB
Commit Graph

182 Commits

Author SHA1 Message Date
Benjamin Dauvergne 7ff1969bf5 views: add missing exception for case of status is not success (fixes #7878) 2015-07-21 14:06:54 +02:00
Serghei Mihai c3481b570c use requests to retreive metadata (#7785) 2015-07-06 12:01:58 +02:00
Benjamin Dauvergne 06f3380eb4 Use the lasso thin-sessions feature 2015-06-25 11:26:50 +02:00
Benjamin Dauvergne 00b7fe396c Send log message about logout before effective logout so that request.user is not Anonymous 2015-06-25 11:26:37 +02:00
Benjamin Dauvergne 1719127cae Do not store a name_id_name_qualifier or name_id_sp_name_qualifier if there is not (fixes #7680) 2015-06-25 11:25:57 +02:00
Benjamin Dauvergne d064fad15b Add debug log of rebuilt session dumps in create_logout() (#7680) 2015-06-25 11:25:17 +02:00
Frédéric Péters 9e5bb02b3f handle artifact response as a byte string (#7544) 2015-06-11 16:37:59 +02:00
Benjamin Dauvergne 9d8528968c views: add a VERIFY_SSL_CERTIFICATE setting 
It controls the validation of certificates by requests on artifact
resolve requests. It's a global and by idp setting.

Also improve logs in errors paths around when calling the artifact
resolver.

fixes #7521
 2015-06-10 15:07:59 +02:00
Benjamin Dauvergne da384ec770 Add migrations for south 2015-06-05 21:46:36 +02:00
Benjamin Dauvergne 2b6ce04423 authentication_failed.html: show the StatusMessage to the user if there is one 2015-06-01 02:44:21 +02:00
Benjamin Dauvergne d5b8ec81a9 app_settings,views: make the default assertion consumer binding customizable, and restore POST as the default 
And restore default to POST.

fixes #7406
 2015-05-29 11:53:30 +02:00
Benjamin Dauvergne a64d4e9da4 templates: make HTTP-Artifact the default binding for SSO 
fixes #7625
 2015-05-19 08:23:37 +02:00
Frédéric Péters 8dc0fd969a add support for artifact GET protocol binding (#7267) 2015-05-18 18:09:15 +02:00
Benjamin Dauvergne 6b4cabdc27 adapters: fix DefaultAdapter.get_idp(), idp['ENTITY_ID'] is a string not a list 
This method was incorrectly using the `in' operator instead of the == operator.

fixes #7270
 2015-05-18 16:35:48 +02:00
Benjamin Dauvergne 59e93e270f Revert "templates: make HTTP-Artifact the default binding for SSO" 
This reverts commit 5e297925c6.
 2015-05-18 16:35:48 +02:00
Benjamin Dauvergne 4b71bbca3a views: in sso_failure() the call to self.get_id() could never work, replace by utils.get_idp() 
In SSO response treatment we do not know anymore the requested IdP from the query string
we must look in the LassoLogin object.

fixes #7271
 2015-05-18 16:16:27 +02:00
Benjamin Dauvergne 12214b8cb5 utils: add a default return value to utils.get_idp() 
refs #7271
 2015-05-18 16:16:22 +02:00
Benjamin Dauvergne 5e297925c6 templates: make HTTP-Artifact the default binding for SSO 
fixes #7625
 2015-05-18 11:01:40 +02:00
Benjamin Dauvergne 6dab31ace8 views: fix setting of isPassive and forceAuthn (fixes #7100) 2015-05-18 11:01:40 +02:00
Benjamin Dauvergne 1f56211c2f Limit username to 30 characters for now (#7085) 2015-05-07 11:32:53 +02:00
Frédéric Péters 0315d395bf tests: initial adapter tests 2015-05-07 11:32:53 +02:00
Benjamin Dauvergne 86a1167b99 add a model to store user<->NameID mapping (#7085) 2015-05-07 11:32:52 +02:00
Benjamin Dauvergne 8eeb82c5c4 Prepare for adding tests 2015-04-29 18:33:27 +02:00
Benjamin Dauvergne bb08da0f9e Support encryption 2015-03-26 16:44:14 +01:00
Serghei Mihai 5dcde8614e login view refactored (#6801) 
Authentication logic split into another, overridable, method
 2015-03-24 09:40:25 +01:00
Benjamin Dauvergne c8cad9b814 Fix include of base.html in mellon/base.html 2015-03-18 10:43:36 +01:00
Benjamin Dauvergne 50c3d544d4 Add mellon/base.html 2015-03-18 10:34:50 +01:00
Frédéric Péters 40a31aba9e save provisioned users (#6667) 2015-03-16 10:40:35 +01:00
Benjamin Dauvergne 9c83540415 Set version only from git tags 2015-03-09 13:01:43 +01:00
Frédéric Péters adb72da954 set login.msgRelayState to the value from POST (#6384) 2015-03-09 12:59:01 +01:00
Benjamin Dauvergne 8f8f47b1a9 Allow getting metadata of IdP by doing an HTTP GET 2015-02-13 18:23:28 +01:00
Benjamin Dauvergne 9525e29b03 Always use adapters to get to IdP settings 2015-02-13 18:10:51 +01:00
Benjamin Dauvergne 144da5f72e bump release to 1.2.11 2015-02-06 10:41:51 +01:00
Jérôme Schneider 4f0f50f816 mellon/views.py: store and load the liberty session dump for slo 2015-02-05 18:26:29 +01:00
Benjamin Dauvergne 9376d444d4 adapters: force template string to be unicode as attributes are unicode values 2015-02-04 12:48:08 +01:00
Benjamin Dauvergne 6a6f5e58df urls: fix error in pattern, includable patterns must not start with a ^ 2015-02-04 12:13:02 +01:00
Benjamin Dauvergne 83c8367e6b bump release to 1.2.10 2015-01-15 17:09:39 +01:00
Benjamin Dauvergne 3675773635 Add a mellon/base.html template to make an indirection between mellon templates and the project base.html template (fixes #6301) 2015-01-15 17:08:30 +01:00
Benjamin Dauvergne 3c8e472f47 bump release to 1.2.9 2014-12-09 10:31:00 +01:00
Benjamin Dauvergne b0f5c49893 Always set the issuer attribtute to the AuthnResponse issuer 2014-12-09 10:30:32 +01:00
Benjamin Dauvergne d0509d55d9 bump release to 1.2.8 2014-12-09 00:34:51 +01:00
Benjamin Dauvergne 96a51c4952 Use IdP entity id for default name qualifier and SP entity id for default sp name qualifier 2014-12-09 00:33:40 +01:00
Benjamin Dauvergne 94cfed8a8e If name qualifier are missing use the implicit IdP or SP name qualifiers 2014-12-07 20:55:52 +01:00
Benjamin Dauvergne 49858a0823 bump release to 1.2.7 2014-11-24 12:04:42 +01:00
Benjamin Dauvergne ff548d020d Force unicode on NameID qualifiers to enforce them being ASCII 2014-11-24 10:35:39 +01:00
Benjamin Dauvergne 15d420f728 Improve logging in views 2014-11-24 10:35:01 +01:00
Benjamin Dauvergne 9a2caa3a6a Set AllowCreate flag on emitted AuthnRequest 2014-11-17 17:35:36 +01:00
Benjamin Dauvergne 99341f910e Fix typo in session_dump.xml 2014-11-17 17:35:28 +01:00
Benjamin Dauvergne ae18a24a25 bump release to 1.2.6 2014-11-17 16:33:13 +01:00
Benjamin Dauvergne 4112e4b153 Clean PEM file before including them in the metadata 2014-11-17 16:32:29 +01:00
Benjamin Dauvergne 42f389e416 bump release to 1.2.5 2014-09-08 09:35:45 +02:00
Benjamin Dauvergne 7503611a5f Fix use of getattr 2014-09-08 09:13:10 +02:00
Benjamin Dauvergne cada245693 bump release to 1.2.4 2014-09-05 16:13:38 +02:00
Benjamin Dauvergne 3e0c84f5f9 Flatten adapter list as tuple before concatenation 2014-09-05 16:13:16 +02:00
Benjamin Dauvergne 394605f3c2 bump release to 1.2.3 2014-09-05 15:06:13 +02:00
Benjamin Dauvergne 84b616fe22 Fix extraction of the assertion's issuer 2014-09-05 15:05:34 +02:00
Benjamin Dauvergne 59e4db4546 bump release to 1.2.2 2014-09-03 09:14:25 +02:00
Benjamin Dauvergne f33ab053d4 adapters: add implementation of get_idp() to the DefaultAdapter class 2014-09-03 09:12:01 +02:00
Benjamin Dauvergne 4fa1ef8625 utils: make get_idp() call adapters for getting idp configuration 2014-09-03 09:12:01 +02:00
Benjamin Dauvergne c2b6c40bb1 utils: make idp parameter to get_adapters() optional, return concatenation of default an specific adapters 2014-09-03 09:12:01 +02:00
Benjamin Dauvergne e5e9dcf86a rename get_parameter() to get_setting() 2014-09-03 09:12:01 +02:00
Benjamin Dauvergne 587084f3cd utils: add a default parameter to get_parameter 2014-09-03 09:12:01 +02:00
Benjamin Dauvergne 9f587f1cc2 views: do not assume a nameIdentifier is available 
Only populate NameID keys if a NameID was stored in
login.nameIdentifier.
 2014-09-03 09:12:01 +02:00
Benjamin Dauvergne b4499d36e3 utils: remove debugging statement 2014-09-03 09:12:01 +02:00
Benjamin Dauvergne ff15b09600 backends: return None when authorization fails, return early if no user is found 2014-09-03 09:12:01 +02:00
Benjamin Dauvergne b90059feef views: delete dead imports 2014-09-03 09:12:01 +02:00
Benjamin Dauvergne 0ec6419d8f templates: fix typo 2014-06-02 10:59:02 +02:00
Benjamin Dauvergne bcb055263b improve handling of authentication errors 
All errors are logged as warnings, status message and status codes are
logged, and if DEBUG is True, shown to the user.
 2014-05-28 20:19:54 +02:00
Benjamin Dauvergne e1a962608c bump release to 1.2.1 2014-05-09 14:22:58 +02:00
Benjamin Dauvergne 57e3aea885 urls: remove /accounts/mellon/ to let projects plug mellon wherever they want 2014-05-02 17:53:16 +02:00
Benjamin Dauvergne 696e7720e5 bump release to 1.2.0 2014-05-02 17:41:04 +02:00
Benjamin Dauvergne ca4cad75a6 views: formatting 2014-05-02 17:18:53 +02:00
Benjamin Dauvergne 371d6bc941 views: apply django.shortcuts.resolve_url() to all use of settings.LOGIN_REDIRECT_URL 2014-05-02 17:18:39 +02:00
Benjamin Dauvergne 806cc5b8d8 bump release to 1.1.0 2014-05-02 16:05:14 +02:00
Benjamin Dauvergne 199a58d107 add disclaimer on loading about the need for lasso 2014-05-02 16:04:58 +02:00
Benjamin Dauvergne e9be1cfc1a update french translation 2014-05-02 16:01:47 +02:00
Benjamin Dauvergne 0e3b0272f0 views,utils: keep the NameQualifier and SPNameQualifier attribut of NameID as they could be mandatory for some IdPs 2014-05-02 16:01:47 +02:00
Benjamin Dauvergne cf7da749cb views: fix processing of logout responses 2014-05-02 16:01:47 +02:00
Benjamin Dauvergne d2feb75bb6 views: always do the local logout 2014-05-02 16:01:47 +02:00
Benjamin Dauvergne 6b8dcc5e78 views: improve display of authentication failures 2014-05-02 16:01:47 +02:00
Benjamin Dauvergne 565d7a07f2 add logout support 2014-05-02 11:48:05 +02:00
Benjamin Dauvergne a1646489e2 first commit 2014-04-30 14:34:39 +02:00