Benjamin Dauvergne
7ff1969bf5
views: add missing exception for case of status is not success ( fixes #7878 )
2015-07-21 14:06:54 +02:00
Serghei Mihai
c3481b570c
use requests to retreive metadata ( #7785 )
2015-07-06 12:01:58 +02:00
Benjamin Dauvergne
06f3380eb4
Use the lasso thin-sessions feature
2015-06-25 11:26:50 +02:00
Benjamin Dauvergne
00b7fe396c
Send log message about logout before effective logout so that request.user is not Anonymous
2015-06-25 11:26:37 +02:00
Benjamin Dauvergne
1719127cae
Do not store a name_id_name_qualifier or name_id_sp_name_qualifier if there is not ( fixes #7680 )
2015-06-25 11:25:57 +02:00
Benjamin Dauvergne
d064fad15b
Add debug log of rebuilt session dumps in create_logout() ( #7680 )
2015-06-25 11:25:17 +02:00
Frédéric Péters
9e5bb02b3f
handle artifact response as a byte string ( #7544 )
2015-06-11 16:37:59 +02:00
Benjamin Dauvergne
9d8528968c
views: add a VERIFY_SSL_CERTIFICATE setting
...
It controls the validation of certificates by requests on artifact
resolve requests. It's a global and by idp setting.
Also improve logs in errors paths around when calling the artifact
resolver.
fixes #7521
2015-06-10 15:07:59 +02:00
Benjamin Dauvergne
da384ec770
Add migrations for south
2015-06-05 21:46:36 +02:00
Benjamin Dauvergne
2b6ce04423
authentication_failed.html: show the StatusMessage to the user if there is one
2015-06-01 02:44:21 +02:00
Benjamin Dauvergne
d5b8ec81a9
app_settings,views: make the default assertion consumer binding customizable, and restore POST as the default
...
And restore default to POST.
fixes #7406
2015-05-29 11:53:30 +02:00
Benjamin Dauvergne
a64d4e9da4
templates: make HTTP-Artifact the default binding for SSO
...
fixes #7625
2015-05-19 08:23:37 +02:00
Frédéric Péters
8dc0fd969a
add support for artifact GET protocol binding ( #7267 )
2015-05-18 18:09:15 +02:00
Benjamin Dauvergne
6b4cabdc27
adapters: fix DefaultAdapter.get_idp(), idp['ENTITY_ID'] is a string not a list
...
This method was incorrectly using the `in' operator instead of the == operator.
fixes #7270
2015-05-18 16:35:48 +02:00
Benjamin Dauvergne
59e93e270f
Revert "templates: make HTTP-Artifact the default binding for SSO"
...
This reverts commit 5e297925c6
.
2015-05-18 16:35:48 +02:00
Benjamin Dauvergne
4b71bbca3a
views: in sso_failure() the call to self.get_id() could never work, replace by utils.get_idp()
...
In SSO response treatment we do not know anymore the requested IdP from the query string
we must look in the LassoLogin object.
fixes #7271
2015-05-18 16:16:27 +02:00
Benjamin Dauvergne
12214b8cb5
utils: add a default return value to utils.get_idp()
...
refs #7271
2015-05-18 16:16:22 +02:00
Benjamin Dauvergne
5e297925c6
templates: make HTTP-Artifact the default binding for SSO
...
fixes #7625
2015-05-18 11:01:40 +02:00
Benjamin Dauvergne
6dab31ace8
views: fix setting of isPassive and forceAuthn ( fixes #7100 )
2015-05-18 11:01:40 +02:00
Benjamin Dauvergne
1f56211c2f
Limit username to 30 characters for now ( #7085 )
2015-05-07 11:32:53 +02:00
Frédéric Péters
0315d395bf
tests: initial adapter tests
2015-05-07 11:32:53 +02:00
Benjamin Dauvergne
86a1167b99
add a model to store user<->NameID mapping ( #7085 )
2015-05-07 11:32:52 +02:00
Benjamin Dauvergne
8eeb82c5c4
Prepare for adding tests
2015-04-29 18:33:27 +02:00
Benjamin Dauvergne
bb08da0f9e
Support encryption
2015-03-26 16:44:14 +01:00
Serghei Mihai
5dcde8614e
login view refactored ( #6801 )
...
Authentication logic split into another, overridable, method
2015-03-24 09:40:25 +01:00
Benjamin Dauvergne
c8cad9b814
Fix include of base.html in mellon/base.html
2015-03-18 10:43:36 +01:00
Benjamin Dauvergne
50c3d544d4
Add mellon/base.html
2015-03-18 10:34:50 +01:00
Frédéric Péters
40a31aba9e
save provisioned users ( #6667 )
2015-03-16 10:40:35 +01:00
Benjamin Dauvergne
9c83540415
Set version only from git tags
2015-03-09 13:01:43 +01:00
Frédéric Péters
adb72da954
set login.msgRelayState to the value from POST ( #6384 )
2015-03-09 12:59:01 +01:00
Benjamin Dauvergne
8f8f47b1a9
Allow getting metadata of IdP by doing an HTTP GET
2015-02-13 18:23:28 +01:00
Benjamin Dauvergne
9525e29b03
Always use adapters to get to IdP settings
2015-02-13 18:10:51 +01:00
Benjamin Dauvergne
144da5f72e
bump release to 1.2.11
2015-02-06 10:41:51 +01:00
Jérôme Schneider
4f0f50f816
mellon/views.py: store and load the liberty session dump for slo
2015-02-05 18:26:29 +01:00
Benjamin Dauvergne
9376d444d4
adapters: force template string to be unicode as attributes are unicode values
2015-02-04 12:48:08 +01:00
Benjamin Dauvergne
6a6f5e58df
urls: fix error in pattern, includable patterns must not start with a ^
2015-02-04 12:13:02 +01:00
Benjamin Dauvergne
83c8367e6b
bump release to 1.2.10
2015-01-15 17:09:39 +01:00
Benjamin Dauvergne
3675773635
Add a mellon/base.html template to make an indirection between mellon templates and the project base.html template ( fixes #6301 )
2015-01-15 17:08:30 +01:00
Benjamin Dauvergne
3c8e472f47
bump release to 1.2.9
2014-12-09 10:31:00 +01:00
Benjamin Dauvergne
b0f5c49893
Always set the issuer attribtute to the AuthnResponse issuer
2014-12-09 10:30:32 +01:00
Benjamin Dauvergne
d0509d55d9
bump release to 1.2.8
2014-12-09 00:34:51 +01:00
Benjamin Dauvergne
96a51c4952
Use IdP entity id for default name qualifier and SP entity id for default sp name qualifier
2014-12-09 00:33:40 +01:00
Benjamin Dauvergne
94cfed8a8e
If name qualifier are missing use the implicit IdP or SP name qualifiers
2014-12-07 20:55:52 +01:00
Benjamin Dauvergne
49858a0823
bump release to 1.2.7
2014-11-24 12:04:42 +01:00
Benjamin Dauvergne
ff548d020d
Force unicode on NameID qualifiers to enforce them being ASCII
2014-11-24 10:35:39 +01:00
Benjamin Dauvergne
15d420f728
Improve logging in views
2014-11-24 10:35:01 +01:00
Benjamin Dauvergne
9a2caa3a6a
Set AllowCreate flag on emitted AuthnRequest
2014-11-17 17:35:36 +01:00
Benjamin Dauvergne
99341f910e
Fix typo in session_dump.xml
2014-11-17 17:35:28 +01:00
Benjamin Dauvergne
ae18a24a25
bump release to 1.2.6
2014-11-17 16:33:13 +01:00
Benjamin Dauvergne
4112e4b153
Clean PEM file before including them in the metadata
2014-11-17 16:32:29 +01:00
Benjamin Dauvergne
42f389e416
bump release to 1.2.5
2014-09-08 09:35:45 +02:00
Benjamin Dauvergne
7503611a5f
Fix use of getattr
2014-09-08 09:13:10 +02:00
Benjamin Dauvergne
cada245693
bump release to 1.2.4
2014-09-05 16:13:38 +02:00
Benjamin Dauvergne
3e0c84f5f9
Flatten adapter list as tuple before concatenation
2014-09-05 16:13:16 +02:00
Benjamin Dauvergne
394605f3c2
bump release to 1.2.3
2014-09-05 15:06:13 +02:00
Benjamin Dauvergne
84b616fe22
Fix extraction of the assertion's issuer
2014-09-05 15:05:34 +02:00
Benjamin Dauvergne
59e4db4546
bump release to 1.2.2
2014-09-03 09:14:25 +02:00
Benjamin Dauvergne
f33ab053d4
adapters: add implementation of get_idp() to the DefaultAdapter class
2014-09-03 09:12:01 +02:00
Benjamin Dauvergne
4fa1ef8625
utils: make get_idp() call adapters for getting idp configuration
2014-09-03 09:12:01 +02:00
Benjamin Dauvergne
c2b6c40bb1
utils: make idp parameter to get_adapters() optional, return concatenation of default an specific adapters
2014-09-03 09:12:01 +02:00
Benjamin Dauvergne
e5e9dcf86a
rename get_parameter() to get_setting()
2014-09-03 09:12:01 +02:00
Benjamin Dauvergne
587084f3cd
utils: add a default parameter to get_parameter
2014-09-03 09:12:01 +02:00
Benjamin Dauvergne
9f587f1cc2
views: do not assume a nameIdentifier is available
...
Only populate NameID keys if a NameID was stored in
login.nameIdentifier.
2014-09-03 09:12:01 +02:00
Benjamin Dauvergne
b4499d36e3
utils: remove debugging statement
2014-09-03 09:12:01 +02:00
Benjamin Dauvergne
ff15b09600
backends: return None when authorization fails, return early if no user is found
2014-09-03 09:12:01 +02:00
Benjamin Dauvergne
b90059feef
views: delete dead imports
2014-09-03 09:12:01 +02:00
Benjamin Dauvergne
0ec6419d8f
templates: fix typo
2014-06-02 10:59:02 +02:00
Benjamin Dauvergne
bcb055263b
improve handling of authentication errors
...
All errors are logged as warnings, status message and status codes are
logged, and if DEBUG is True, shown to the user.
2014-05-28 20:19:54 +02:00
Benjamin Dauvergne
e1a962608c
bump release to 1.2.1
2014-05-09 14:22:58 +02:00
Benjamin Dauvergne
57e3aea885
urls: remove /accounts/mellon/ to let projects plug mellon wherever they want
2014-05-02 17:53:16 +02:00
Benjamin Dauvergne
696e7720e5
bump release to 1.2.0
2014-05-02 17:41:04 +02:00
Benjamin Dauvergne
ca4cad75a6
views: formatting
2014-05-02 17:18:53 +02:00
Benjamin Dauvergne
371d6bc941
views: apply django.shortcuts.resolve_url() to all use of settings.LOGIN_REDIRECT_URL
2014-05-02 17:18:39 +02:00
Benjamin Dauvergne
806cc5b8d8
bump release to 1.1.0
2014-05-02 16:05:14 +02:00
Benjamin Dauvergne
199a58d107
add disclaimer on loading about the need for lasso
2014-05-02 16:04:58 +02:00
Benjamin Dauvergne
e9be1cfc1a
update french translation
2014-05-02 16:01:47 +02:00
Benjamin Dauvergne
0e3b0272f0
views,utils: keep the NameQualifier and SPNameQualifier attribut of NameID as they could be mandatory for some IdPs
2014-05-02 16:01:47 +02:00
Benjamin Dauvergne
cf7da749cb
views: fix processing of logout responses
2014-05-02 16:01:47 +02:00
Benjamin Dauvergne
d2feb75bb6
views: always do the local logout
2014-05-02 16:01:47 +02:00
Benjamin Dauvergne
6b8dcc5e78
views: improve display of authentication failures
2014-05-02 16:01:47 +02:00
Benjamin Dauvergne
565d7a07f2
add logout support
2014-05-02 11:48:05 +02:00
Benjamin Dauvergne
a1646489e2
first commit
2014-04-30 14:34:39 +02:00