Benjamin Dauvergne
9c28f53c52
log partial logout error as a warning ( fixes #10408 )
2016-04-06 01:33:39 +02:00
Benjamin Dauvergne
7db1d7d7ed
pep8ness
2016-04-06 01:33:39 +02:00
Benjamin Dauvergne
1ad8264621
setup.py: replace distutils sdist by setuptools version
2016-04-06 01:10:47 +02:00
Benjamin Dauvergne
66d1811e2f
refactor next_url and RelayState use ( fixes #10372 )
...
The next_url parameter is no more stored directly in the RelayState, as it
RelayState should only contain strings of no more thant 80 bytes, instead
generate an uuid as the relaystate and store the next_url value in session using
a key based on this uuid.
The implementation is generic enough to accomodate storing any other kind of
data during an SSO or SLO workflow.
2016-03-22 15:20:29 +01:00
Benjamin Dauvergne
bfa84bb6ba
always consider relative URLs as being of the same origin ( fixes #10371 )
2016-03-22 15:13:48 +01:00
Benjamin Dauvergne
b8625f56e2
modify testsettings for Django 1.9
2016-03-14 16:09:03 +01:00
Benjamin Dauvergne
2aec7a3294
views: handle ProfileInvalidMsgError when resolving an artifact ( #10270 )
2016-03-11 17:10:52 +01:00
Benjamin Dauvergne
dba3f32c3a
views: handle ProfileInvalidArtifactError exception when resolving an artifact ( #10270 )
2016-03-11 17:10:52 +01:00
Benjamin Dauvergne
65b492fee3
tests: move HTTMock templates to utils
2016-03-11 17:10:18 +01:00
Benjamin Dauvergne
1fd8489932
tests: add base.html template
2016-03-11 17:10:18 +01:00
Frédéric Péters
a3bc087890
misc: fix passing of RequestedAuthnContext ( #10243 )
2016-03-09 09:14:38 +01:00
Benjamin Dauvergne
78a35d9313
tests: fix test to comply with commit eb89a86ef
2016-03-04 18:30:47 +01:00
Benjamin Dauvergne
ff449077e3
debian: add ${python:Depends} to control file
2016-03-04 16:26:04 +01:00
Benjamin Dauvergne
eb89a86ef3
add DiscoveryResponse endpoint to metadata ( fixes #10197 )
2016-03-04 11:05:01 +01:00
Benjamin Dauvergne
7a5223d050
release 1.2.24
2016-03-04 10:09:11 +01:00
Benjamin Dauvergne
6aa9170982
Fix removal of admin right when users have admin attributes but is already admin ( fixes #10195 )
2016-03-04 10:07:54 +01:00
Benjamin Dauvergne
bac013c19f
release 1.2.23
2016-03-02 20:53:28 +01:00
Benjamin Dauvergne
6b1dd11f18
debian: declare it breaks hobo before release 0.34.5
2016-03-02 18:47:03 +01:00
Benjamin Dauvergne
3f0f0be180
silence Django 1.10 deprecration warnings
2016-03-02 18:14:46 +01:00
Benjamin Dauvergne
ec27553789
adapters: factorize user creation in lookup_user() ( fixes #10164 )
...
User creation can have peculiarities.
2016-03-02 17:39:15 +01:00
Benjamin Dauvergne
fe53dab9ca
trivial: move utils import
2016-02-26 21:36:08 +01:00
Benjamin Dauvergne
3d91d40cb2
django 1.9 adaptations
...
- django.utils.same_origin was removed
- HttpRequest.REQUEST was removed
- settings.USE_TZ is True by default
- get_default_timezone() is now wrapped by an lrucache(), when modifying
settings.TIME_ZONE we must also clear the cache.
2016-02-26 21:35:21 +01:00
Benjamin Dauvergne
cd4e33f47f
tests: add test on SP initiated login
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
40cc598904
views: change HTTP 400 message when no idp is found
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
c1d2fb1a32
trivial: move lasso import
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
7602d7b79d
tests: add tests on mellon.utils
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
6af1ebfc55
views: do not traceback in get_idp() when no idp is declared
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
afd7d519ec
tests: remove unused variable
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
bb9451e6ba
add discovery service support ( fixes #10111 )
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
8961a743f5
move idp settings building in adapters
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
9fe8aaf0be
adapters: improve logging during provisionning
...
- user creation is logged
- attributes are only changed if different from the provisionning value,
and changes are logged.
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
cf63b7e0ce
templates: fix default_assertion_consumer_binding check, use of = instead of ==
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
66922a5f29
app_settings: fix import of ImproperlyConfigured exception
...
As sys.modules is modified, global imports do not work.
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
33d305f7a7
add support for Organization and ContactPerson elements in metadata ( fixes #6656 )
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
aa95501d8b
templates: fix public key representation in metadata
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
c504f7e8db
tests: add helper to check XML documents
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
26ffe9af97
utils: fix iso8601_to_datetime, make_naive amd make_aware need a timezone parameter
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
4320f4fa78
utils: fix flatten_datetime, isoformat() already add a timezone if needed
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
75382c9ab1
pep8ness
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
bd216c7ab7
store cached metadata in settings
2016-02-26 18:09:27 +01:00
Benjamin Dauvergne
4f77ee0e24
do not pass strings contening null characters to Lasso, return 400 or ignore ( fixes #8939 )
2016-02-26 18:09:17 +01:00
Benjamin Dauvergne
f2cf86f7a6
add tox.ini to test on django 1.7, 1.8, 1.9 and with sqlite and pg
2016-02-26 18:09:11 +01:00
Benjamin Dauvergne
3ca64e7eaf
report lasso error at debug level
2016-02-12 19:44:24 +01:00
Benjamin Dauvergne
a597839d14
log errors when loading IdP metadata instead of throwing a traceback ( fixes #9745 )
2016-02-12 19:44:19 +01:00
Benjamin Dauvergne
fc7fd250cd
pep8ness
2016-02-12 19:44:19 +01:00
Benjamin Dauvergne
e641c6ec96
fix concurrency error when creating new users ( fixes #9965 )
...
UserSAMLIdentifier is retrieved using get_or_create() first, and if is new
we proceed with the creation of the new user, otherwise we delete the temporaru
user we created use the one attached to the existing UserSAMLIdentifier.
2016-02-12 19:44:19 +01:00
Benjamin Dauvergne
359a2f4be0
reset is_staff when superuser mapping fails ( fixes #9736 )
2016-01-21 20:02:34 +01:00
Benjamin Dauvergne
2289b8350e
implement session_not_on_or_after using new session engines ( fixes #9640 )
2016-01-15 12:29:31 +01:00
Benjamin Dauvergne
9143056569
use dateutil to parse datetime strings ( #9640 )
2016-01-15 12:26:58 +01:00
Benjamin Dauvergne
f45bb8b2d0
utils: return naive datetime if USE_TZ=False ( fixes #9521 )
2016-01-06 09:54:52 +01:00