entrouvert
/
django-mellon
16
0
Fork 0
Code Issues Pull Requests Releases Activity
314 Commits 7 Branches 101 Tags 867 KiB
Commit Graph

224 Commits

Author SHA1 Message Date
Valentin Deniaud bdbc251291 views: handle empty session at authentication (#45461) 2020-07-28 09:33:12 +02:00
Benjamin Dauvergne 24f96bb6c9 misc: style (#41949) 2020-06-21 13:13:57 +02:00
Benjamin Dauvergne 482aa09f92 misc: add support for SOAP SLO (#41949) 2020-06-21 13:13:57 +02:00
Benjamin Dauvergne 65cbdcefc3 misc: support asynchronous logout (#41949) 
It means that will lookup for other Django sessions linked to the
received logout request; logout request can specify session indexes or
ask for logout of all sessions of the user targeted by the NameID.
 2020-06-21 13:13:57 +02:00
Benjamin Dauvergne 2c6a051b4a misc: cache SAML identifier model on logged user (#41949) 2020-06-21 13:13:57 +02:00
Benjamin Dauvergne 7b5ad08ad8 models: add SessionIndex model (#41949) 2020-06-21 13:13:57 +02:00
Benjamin Dauvergne be52f6c2ec misc: sign logout message when using PRIVATE_KEYS instead of PRIVATE_KEY (#41949) 2020-06-21 13:13:57 +02:00
Frédéric Péters bfd71550cf display debug error details in an HTML comment (#43845) 2020-06-10 11:08:35 +02:00
Benjamin Dauvergne c05f4a3129 views: ignore XML content in SAML attributes (#43193) 2020-05-21 21:04:51 +02:00
Frédéric Péters 92703b3105 misc: get server cache from local variable (#41744) 2020-04-15 14:31:26 +02:00
Frédéric Péters b924eb1c9a translation update 2020-04-14 09:28:16 +02:00
Frédéric Péters d67297c7aa misc: return bad request messages as plain text (#41602) 2020-04-10 16:45:29 +02:00
Emmanuel Cazenave f16d316cef adapters: ease custom lookup through inheritance (#40833) 2020-03-31 15:10:50 +02:00
Frédéric Péters 74230b51ec general: remove compatibility with django < 1.11 (#38616) 2020-01-29 20:33:02 +01:00
Thomas NOËL 320ee3c457 adapters: only warn if lookup attribute is empty (#39381) 2020-01-29 15:26:25 +01:00
Frédéric Péters b4a08778bf misc: use compat.is_authenticated() in logout views (#38613) 2019-12-18 10:25:44 +01:00
Frédéric Péters 7802e85d52 misc: allow all views to receive template_base/context_hook kwargs (#38610) 2019-12-18 09:39:48 +01:00
Frédéric Péters fcb38fbf83 misc: ignore error when opening cached metadata (#38575) 2019-12-17 09:04:23 +01:00
Frédéric Péters b1b85cf0d2 add possibility to define a hook to alter login template context (#38533) 2019-12-16 14:22:18 +01:00
Benjamin Dauvergne 09c32c83d5 misc: make login_hint works without next parameter (#38163) 2019-12-03 19:53:37 +01:00
Benjamin Dauvergne d5e5701899 add kwargs template_base to LoginView (#35083) 2019-12-02 17:47:13 +01:00
Benjamin Dauvergne b673b3a7fe do not crash if no idp is found (#19260) 
Also improve logging of no idp situation in default backend.
 2019-12-02 17:46:42 +01:00
Benjamin Dauvergne 42620b50a9 middleware: skip media/script HTTP requets (#30497) 2019-11-28 12:43:45 +01:00
Benjamin Dauvergne 7095b1368b use MiddlewareMixin on middleware (#36509) 
Remove OPENED_SESSION_COOKIE_DOMAIN which has no use.
 2019-10-04 17:45:25 +02:00
Benjamin Dauvergne 83abc78605 factorize compatibility layer (#36509) 2019-10-04 17:45:25 +02:00
Benjamin Dauvergne a4a659d04e make DiscoveryResponse optional in metadata (#15260) 2019-10-01 12:31:52 +02:00
Frédéric Péters fd409d6d3c backends: accept being called with None as saml_attributes (#36330) 2019-09-22 12:30:41 +02:00
Frédéric Péters e3a6586a00 misc: update authenticate() for compatibility from 1.8 to 2.2 (#36330) 2019-09-22 10:34:13 +02:00
Frédéric Péters 785969fc11 misc: add support for new django.urls module (#36330) 2019-09-22 08:33:08 +02:00
Frédéric Péters 1aea1cbe00 misc: add on_delete parameter to foreign keys (#36330) 2019-09-22 08:33:04 +02:00
Benjamin Dauvergne 80074ea201 middleware: prevent passive authentication on ajax requests (#34781) 2019-07-12 13:41:49 +02:00
Benjamin Dauvergne ab92ca9a07 use unicode_literals (#34008) 2019-07-02 17:44:03 +02:00
Benjamin Dauvergne da94b2c52c adapters: add missing argument to log (#34333) 2019-06-25 21:53:53 +02:00
Frédéric Péters 6284da2ae6 misc: catch all unicode exceptions when checking next_url (#33083) 2019-06-25 17:46:08 +02:00
Frédéric Péters 40674e4d1a do not warn about stale cache if not cache timeout is defined (#34319) 2019-06-25 17:46:08 +02:00
Benjamin Dauvergne 39e2e7e5ac update and cache metadata from URL and path (#10196) 2019-06-18 00:53:01 +02:00
Benjamin Dauvergne 83a09d874e code style (#10196) 2019-06-18 00:53:01 +02:00
Benjamin Dauvergne 968aa07faf really retrieve XML encoding (#10196) 2019-06-18 00:53:01 +02:00
Benjamin Dauvergne 81ab8f4c9e adapters: abstract user queryset (#33739) 2019-06-11 16:46:02 +02:00
Benjamin Dauvergne 31015e6580 add user lookup by attributes (#33739) 2019-06-11 16:46:02 +02:00
Benjamin Dauvergne f2908b2ef3 adapters: factorize user linking (#33739) 2019-06-11 16:46:02 +02:00
Benjamin Dauvergne e0c1f5b43c simplify workflow in DefaultAdapter.lookup_user() (#33739) 2019-06-11 16:46:02 +02:00
Benjamin Dauvergne e1fa70d28d add setting MELLON_SIGNATURE_METHOD (#32008) 
It defaults to RSA-SHA256 as RSA-SHA1 which is the default in Lasso is
deprecated.
 2019-04-19 11:09:11 +02:00
Benjamin Dauvergne c5da4db69c tests: use RSA-SHA256 certificates (fixes #31963) 2019-04-03 12:41:32 +02:00
Frédéric Péters 99a60c1d88 update sso_failure call to new method signature (#31690) 2019-03-25 14:03:04 +01:00
Benjamin Dauvergne ca6ce92781 views: fix discovery URL building (#31581) 2019-03-20 14:28:05 +01:00
Benjamin Dauvergne d0e6f46f9b views: keep next URL on disco requests (fixes #31043) 2019-03-19 23:43:37 +01:00
Benjamin Dauvergne b3e1b9c533 views: add new setting LOGIN_HINTS (fixes #30966) 
You can set MELLON_LOGIN_HINTS = ['backoffice'] to get a node
eo:login-hint set to "backoffice" in AuthnRequest when next_url for the
login view is among /manage/, /admin/ or /manager/.

Another value is 'always_backoffice' which always set the 'backoffice'
login_hint.
 2019-03-07 23:12:56 +01:00
Benjamin Dauvergne b7712516ee views: PEP8ness (#30966) 2019-03-07 23:12:07 +01:00
Benjamin Dauvergne f2e05b84ae prevent redirection loop on artifact resolution errors (fixes #14810) 
Signature of method sso_failure() is changed to match the name name of
the context variable in template mellon/authentication_failed.html
(idp_message => reason).
 2019-03-02 16:42:46 +01:00