Valentin Deniaud
bdbc251291
views: handle empty session at authentication ( #45461 )
2020-07-28 09:33:12 +02:00
Benjamin Dauvergne
24f96bb6c9
misc: style ( #41949 )
2020-06-21 13:13:57 +02:00
Benjamin Dauvergne
482aa09f92
misc: add support for SOAP SLO ( #41949 )
2020-06-21 13:13:57 +02:00
Benjamin Dauvergne
65cbdcefc3
misc: support asynchronous logout ( #41949 )
...
It means that will lookup for other Django sessions linked to the
received logout request; logout request can specify session indexes or
ask for logout of all sessions of the user targeted by the NameID.
2020-06-21 13:13:57 +02:00
Benjamin Dauvergne
2c6a051b4a
misc: cache SAML identifier model on logged user ( #41949 )
2020-06-21 13:13:57 +02:00
Benjamin Dauvergne
7b5ad08ad8
models: add SessionIndex model ( #41949 )
2020-06-21 13:13:57 +02:00
Benjamin Dauvergne
be52f6c2ec
misc: sign logout message when using PRIVATE_KEYS instead of PRIVATE_KEY ( #41949 )
2020-06-21 13:13:57 +02:00
Frédéric Péters
bfd71550cf
display debug error details in an HTML comment ( #43845 )
2020-06-10 11:08:35 +02:00
Benjamin Dauvergne
c05f4a3129
views: ignore XML content in SAML attributes ( #43193 )
2020-05-21 21:04:51 +02:00
Frédéric Péters
92703b3105
misc: get server cache from local variable ( #41744 )
2020-04-15 14:31:26 +02:00
Frédéric Péters
b924eb1c9a
translation update
2020-04-14 09:28:16 +02:00
Frédéric Péters
d67297c7aa
misc: return bad request messages as plain text ( #41602 )
2020-04-10 16:45:29 +02:00
Emmanuel Cazenave
f16d316cef
adapters: ease custom lookup through inheritance ( #40833 )
2020-03-31 15:10:50 +02:00
Frédéric Péters
74230b51ec
general: remove compatibility with django < 1.11 ( #38616 )
2020-01-29 20:33:02 +01:00
Thomas NOËL
320ee3c457
adapters: only warn if lookup attribute is empty ( #39381 )
2020-01-29 15:26:25 +01:00
Frédéric Péters
b4a08778bf
misc: use compat.is_authenticated() in logout views ( #38613 )
2019-12-18 10:25:44 +01:00
Frédéric Péters
7802e85d52
misc: allow all views to receive template_base/context_hook kwargs ( #38610 )
2019-12-18 09:39:48 +01:00
Frédéric Péters
fcb38fbf83
misc: ignore error when opening cached metadata ( #38575 )
2019-12-17 09:04:23 +01:00
Frédéric Péters
b1b85cf0d2
add possibility to define a hook to alter login template context ( #38533 )
2019-12-16 14:22:18 +01:00
Benjamin Dauvergne
09c32c83d5
misc: make login_hint works without next parameter ( #38163 )
2019-12-03 19:53:37 +01:00
Benjamin Dauvergne
d5e5701899
add kwargs template_base to LoginView ( #35083 )
2019-12-02 17:47:13 +01:00
Benjamin Dauvergne
b673b3a7fe
do not crash if no idp is found ( #19260 )
...
Also improve logging of no idp situation in default backend.
2019-12-02 17:46:42 +01:00
Benjamin Dauvergne
42620b50a9
middleware: skip media/script HTTP requets ( #30497 )
2019-11-28 12:43:45 +01:00
Benjamin Dauvergne
7095b1368b
use MiddlewareMixin on middleware ( #36509 )
...
Remove OPENED_SESSION_COOKIE_DOMAIN which has no use.
2019-10-04 17:45:25 +02:00
Benjamin Dauvergne
83abc78605
factorize compatibility layer ( #36509 )
2019-10-04 17:45:25 +02:00
Benjamin Dauvergne
a4a659d04e
make DiscoveryResponse optional in metadata ( #15260 )
2019-10-01 12:31:52 +02:00
Frédéric Péters
fd409d6d3c
backends: accept being called with None as saml_attributes ( #36330 )
2019-09-22 12:30:41 +02:00
Frédéric Péters
e3a6586a00
misc: update authenticate() for compatibility from 1.8 to 2.2 ( #36330 )
2019-09-22 10:34:13 +02:00
Frédéric Péters
785969fc11
misc: add support for new django.urls module ( #36330 )
2019-09-22 08:33:08 +02:00
Frédéric Péters
1aea1cbe00
misc: add on_delete parameter to foreign keys ( #36330 )
2019-09-22 08:33:04 +02:00
Benjamin Dauvergne
80074ea201
middleware: prevent passive authentication on ajax requests ( #34781 )
2019-07-12 13:41:49 +02:00
Benjamin Dauvergne
ab92ca9a07
use unicode_literals ( #34008 )
2019-07-02 17:44:03 +02:00
Benjamin Dauvergne
da94b2c52c
adapters: add missing argument to log ( #34333 )
2019-06-25 21:53:53 +02:00
Frédéric Péters
6284da2ae6
misc: catch all unicode exceptions when checking next_url ( #33083 )
2019-06-25 17:46:08 +02:00
Frédéric Péters
40674e4d1a
do not warn about stale cache if not cache timeout is defined ( #34319 )
2019-06-25 17:46:08 +02:00
Benjamin Dauvergne
39e2e7e5ac
update and cache metadata from URL and path ( #10196 )
2019-06-18 00:53:01 +02:00
Benjamin Dauvergne
83a09d874e
code style ( #10196 )
2019-06-18 00:53:01 +02:00
Benjamin Dauvergne
968aa07faf
really retrieve XML encoding ( #10196 )
2019-06-18 00:53:01 +02:00
Benjamin Dauvergne
81ab8f4c9e
adapters: abstract user queryset ( #33739 )
2019-06-11 16:46:02 +02:00
Benjamin Dauvergne
31015e6580
add user lookup by attributes ( #33739 )
2019-06-11 16:46:02 +02:00
Benjamin Dauvergne
f2908b2ef3
adapters: factorize user linking ( #33739 )
2019-06-11 16:46:02 +02:00
Benjamin Dauvergne
e0c1f5b43c
simplify workflow in DefaultAdapter.lookup_user() ( #33739 )
2019-06-11 16:46:02 +02:00
Benjamin Dauvergne
e1fa70d28d
add setting MELLON_SIGNATURE_METHOD ( #32008 )
...
It defaults to RSA-SHA256 as RSA-SHA1 which is the default in Lasso is
deprecated.
2019-04-19 11:09:11 +02:00
Benjamin Dauvergne
c5da4db69c
tests: use RSA-SHA256 certificates ( fixes #31963 )
2019-04-03 12:41:32 +02:00
Frédéric Péters
99a60c1d88
update sso_failure call to new method signature ( #31690 )
2019-03-25 14:03:04 +01:00
Benjamin Dauvergne
ca6ce92781
views: fix discovery URL building ( #31581 )
2019-03-20 14:28:05 +01:00
Benjamin Dauvergne
d0e6f46f9b
views: keep next URL on disco requests ( fixes #31043 )
2019-03-19 23:43:37 +01:00
Benjamin Dauvergne
b3e1b9c533
views: add new setting LOGIN_HINTS ( fixes #30966 )
...
You can set MELLON_LOGIN_HINTS = ['backoffice'] to get a node
eo:login-hint set to "backoffice" in AuthnRequest when next_url for the
login view is among /manage/, /admin/ or /manager/.
Another value is 'always_backoffice' which always set the 'backoffice'
login_hint.
2019-03-07 23:12:56 +01:00
Benjamin Dauvergne
b7712516ee
views: PEP8ness ( #30966 )
2019-03-07 23:12:07 +01:00
Benjamin Dauvergne
f2e05b84ae
prevent redirection loop on artifact resolution errors ( fixes #14810 )
...
Signature of method sso_failure() is changed to match the name name of
the context variable in template mellon/authentication_failed.html
(idp_message => reason).
2019-03-02 16:42:46 +01:00