Benjamin Dauvergne
4941fd7281
show an error page when create_server fails ( #57176 )
2021-09-23 10:39:04 +02:00
Benjamin Dauvergne
73bfa476ef
drop and rename issuer field ( #56819 )
2021-09-15 16:55:59 +02:00
Benjamin Dauvergne
fbc3588f1b
add MELLON_ASSERTION_CONSUMER_BINDINGS ( #52063 )
...
The default value is ['post', 'artifact'].
2021-08-05 15:57:39 +02:00
Benjamin Dauvergne
4729ef9a3b
apply isort and pyupgrade ( #55990 )
2021-08-05 11:13:19 +02:00
Benjamin Dauvergne
5b9bc1ff57
trivial: apply black ( #51575 )
2021-03-02 14:52:10 +01:00
Benjamin Dauvergne
d106f3da90
misc: pass the authentication request to the adapter object ( #50833 )
2021-02-03 21:21:35 +01:00
Benjamin Dauvergne
65cbdcefc3
misc: support asynchronous logout ( #41949 )
...
It means that will lookup for other Django sessions linked to the
received logout request; logout request can specify session indexes or
ask for logout of all sessions of the user targeted by the NameID.
2020-06-21 13:13:57 +02:00
Benjamin Dauvergne
be52f6c2ec
misc: sign logout message when using PRIVATE_KEYS instead of PRIVATE_KEY ( #41949 )
2020-06-21 13:13:57 +02:00
Frédéric Péters
92703b3105
misc: get server cache from local variable ( #41744 )
2020-04-15 14:31:26 +02:00
Frédéric Péters
74230b51ec
general: remove compatibility with django < 1.11 ( #38616 )
2020-01-29 20:33:02 +01:00
Benjamin Dauvergne
83abc78605
factorize compatibility layer ( #36509 )
2019-10-04 17:45:25 +02:00
Benjamin Dauvergne
a4a659d04e
make DiscoveryResponse optional in metadata ( #15260 )
2019-10-01 12:31:52 +02:00
Frédéric Péters
785969fc11
misc: add support for new django.urls module ( #36330 )
2019-09-22 08:33:08 +02:00
Benjamin Dauvergne
ab92ca9a07
use unicode_literals ( #34008 )
2019-07-02 17:44:03 +02:00
Benjamin Dauvergne
39e2e7e5ac
update and cache metadata from URL and path ( #10196 )
2019-06-18 00:53:01 +02:00
Benjamin Dauvergne
83a09d874e
code style ( #10196 )
2019-06-18 00:53:01 +02:00
Benjamin Dauvergne
968aa07faf
really retrieve XML encoding ( #10196 )
2019-06-18 00:53:01 +02:00
Benjamin Dauvergne
e1fa70d28d
add setting MELLON_SIGNATURE_METHOD ( #32008 )
...
It defaults to RSA-SHA256 as RSA-SHA1 which is the default in Lasso is
deprecated.
2019-04-19 11:09:11 +02:00
Benjamin Dauvergne
c5da4db69c
tests: use RSA-SHA256 certificates ( fixes #31963 )
2019-04-03 12:41:32 +02:00
Benjamin Dauvergne
b3e1b9c533
views: add new setting LOGIN_HINTS ( fixes #30966 )
...
You can set MELLON_LOGIN_HINTS = ['backoffice'] to get a node
eo:login-hint set to "backoffice" in AuthnRequest when next_url for the
login view is among /manage/, /admin/ or /manager/.
Another value is 'always_backoffice' which always set the 'backoffice'
login_hint.
2019-03-07 23:12:56 +01:00
Frédéric Péters
a1fa7d36df
don't cache local metadata anymore ( #13881 )
2018-09-05 17:09:31 +02:00
Frédéric Péters
24e85adc5a
python3: handle differences in lasso/py2/py3 encodings
2018-04-05 14:31:45 +02:00
Frédéric Péters
239f39c097
python3: add detection of xml encoding
2018-04-05 14:25:54 +02:00
Frédéric Péters
7df3a6f5e0
python3: don't use iteritems
2018-04-05 14:25:54 +02:00
Frédéric Péters
d342971a45
python3: use open() to open files
2018-04-05 14:25:54 +02:00
Benjamin Dauvergne
6c528dd2c3
Revert "support federation file loading ( #19396 )"
...
This reverts commit 63993e360c
.
2018-01-09 21:43:25 +01:00
Paul Marillonnet
63993e360c
support federation file loading ( #19396 )
2018-01-09 17:50:25 +01:00
Frédéric Péters
343be40b6f
misc: update exception handling for Python 3 ( #20925 )
2017-12-30 11:53:31 +01:00
Frédéric Péters
d89ecdfbce
allow an adapter to adapt auth.login() ( #14476 )
2017-01-02 13:41:41 +01:00
Benjamin Dauvergne
aaedfde786
views: gracefully handle logout errors ( fixes #11449 )
2016-06-22 11:06:46 +02:00
Benjamin Dauvergne
69a18d7272
utils: fix handling of multiple private keys ( fixes #11475 )
2016-06-22 11:06:33 +02:00
Frédéric Péters
0b141113d7
make login/logout URL names into settings ( #10867 )
2016-05-10 09:07:02 +02:00
Benjamin Dauvergne
74b61de641
replace dateutil by isodate ( #10196 )
...
isodate has better support for the full ISO8601 specification.
2016-04-11 19:14:07 +02:00
Benjamin Dauvergne
bfa84bb6ba
always consider relative URLs as being of the same origin ( fixes #10371 )
2016-03-22 15:13:48 +01:00
Benjamin Dauvergne
eb89a86ef3
add DiscoveryResponse endpoint to metadata ( fixes #10197 )
2016-03-04 11:05:01 +01:00
Benjamin Dauvergne
3d91d40cb2
django 1.9 adaptations
...
- django.utils.same_origin was removed
- HttpRequest.REQUEST was removed
- settings.USE_TZ is True by default
- get_default_timezone() is now wrapped by an lrucache(), when modifying
settings.TIME_ZONE we must also clear the cache.
2016-02-26 21:35:21 +01:00
Benjamin Dauvergne
8961a743f5
move idp settings building in adapters
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
33d305f7a7
add support for Organization and ContactPerson elements in metadata ( fixes #6656 )
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
26ffe9af97
utils: fix iso8601_to_datetime, make_naive amd make_aware need a timezone parameter
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
4320f4fa78
utils: fix flatten_datetime, isoformat() already add a timezone if needed
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
75382c9ab1
pep8ness
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
bd216c7ab7
store cached metadata in settings
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
4f77ee0e24
do not pass strings contening null characters to Lasso, return 400 or ignore ( fixes #8939 )
2016-02-26 18:09:17 +01:00
Benjamin Dauvergne
3ca64e7eaf
report lasso error at debug level
2016-02-12 19:44:24 +01:00
Benjamin Dauvergne
a597839d14
log errors when loading IdP metadata instead of throwing a traceback ( fixes #9745 )
2016-02-12 19:44:19 +01:00
Benjamin Dauvergne
9143056569
use dateutil to parse datetime strings ( #9640 )
2016-01-15 12:26:58 +01:00
Benjamin Dauvergne
f45bb8b2d0
utils: return naive datetime if USE_TZ=False ( fixes #9521 )
2016-01-06 09:54:52 +01:00
Benjamin Dauvergne
dc1e4e56ea
do not flatten attributes inplace, and convert expiry to seconds ( fixes #9359 )
...
Original datetime must be kept for setting the expiry, but expiry using datetime
is not supported when using JSON sessions, so we convert it to seconds expiry
before setting it.
We also make iso8601 parsed datetime timezone aware, to match with other
datetimes in Django.
2015-12-16 18:06:07 +01:00
Serghei Mihai
c3481b570c
use requests to retreive metadata ( #7785 )
2015-07-06 12:01:58 +02:00
Benjamin Dauvergne
d064fad15b
Add debug log of rebuilt session dumps in create_logout() ( #7680 )
2015-06-25 11:25:17 +02:00