entrouvert
/
django-mellon
16
0
Fork 0
Code Issues Pull Requests Releases Activity
340 Commits 7 Branches 101 Tags 867 KiB
Commit Graph

241 Commits

Author SHA1 Message Date
Thomas NOËL 3f32879520 translation update 2021-09-17 13:10:54 +02:00
Benjamin Dauvergne 73bfa476ef drop and rename issuer field (#56819) 2021-09-15 16:55:59 +02:00
Benjamin Dauvergne a851b5b2ca migrate issuer data (#56819) 2021-09-15 16:55:59 +02:00
Benjamin Dauvergne ba312afc3e add Issuer model (#56819) 2021-09-14 22:57:42 +02:00
Benjamin Dauvergne 2d1510aae1 adapters: truncate username to the field's max_length (#56482) 2021-08-30 15:29:37 +02:00
Benjamin Dauvergne fbc3588f1b add MELLON_ASSERTION_CONSUMER_BINDINGS (#52063) 
The default value is ['post', 'artifact'].
 2021-08-05 15:57:39 +02:00
Benjamin Dauvergne 4729ef9a3b apply isort and pyupgrade (#55990) 2021-08-05 11:13:19 +02:00
Benjamin Dauvergne 2704f4feaa views: keep a nonce during a forceAuthn request (#55953) 
Nonce value and forceAuthn is linked to the request id which is randomly
generated by lasso and returned by IdPs as part of a SAML SSO.
 2021-08-03 17:20:49 +02:00
Valentin Deniaud dbdd6fd70b views: add debug login view (#55557) 2021-08-03 11:59:17 +02:00
Valentin Deniaud dde8fa5d02 views: move login code to separate method (#55557) 2021-08-03 11:12:18 +02:00
Benjamin Dauvergne 74e6f5a93d middleware: disable automatic passive authentication if ?no-passive-auth (#55854) 
You can add ?no-passive-auth to an URL do disable passive authentication based on
an IdP set common domain cookie.
 2021-07-27 12:04:24 +02:00
Benjamin Dauvergne 472ce61844 adapters: improve log messages (#55544) 
- add mellon: prefix to all messages
- log all failures at the warning or error level instead of debug
 2021-07-13 12:09:12 +02:00
Benjamin Dauvergne 5b9bc1ff57 trivial: apply black (#51575) 2021-03-02 14:52:10 +01:00
Benjamin Dauvergne 672cfb90a4 adapters: report warning about TRANSIENT_FEDERATION_ATTRIBUTE to user (#51568) 2021-03-02 14:47:56 +01:00
Benjamin Dauvergne 3678c49fc0 misc: pass request to django.contrib.auth.authenticate() (#51566) 2021-03-02 12:05:30 +01:00
Benjamin Dauvergne d106f3da90 misc: pass the authentication request to the adapter object (#50833) 2021-02-03 21:21:35 +01:00
Lauréline Guérin 7cd78e96ab
views: fix logout is user is already logged out (#50155) 2021-01-15 10:51:51 +01:00
Valentin Deniaud bdbc251291 views: handle empty session at authentication (#45461) 2020-07-28 09:33:12 +02:00
Benjamin Dauvergne 24f96bb6c9 misc: style (#41949) 2020-06-21 13:13:57 +02:00
Benjamin Dauvergne 482aa09f92 misc: add support for SOAP SLO (#41949) 2020-06-21 13:13:57 +02:00
Benjamin Dauvergne 65cbdcefc3 misc: support asynchronous logout (#41949) 
It means that will lookup for other Django sessions linked to the
received logout request; logout request can specify session indexes or
ask for logout of all sessions of the user targeted by the NameID.
 2020-06-21 13:13:57 +02:00
Benjamin Dauvergne 2c6a051b4a misc: cache SAML identifier model on logged user (#41949) 2020-06-21 13:13:57 +02:00
Benjamin Dauvergne 7b5ad08ad8 models: add SessionIndex model (#41949) 2020-06-21 13:13:57 +02:00
Benjamin Dauvergne be52f6c2ec misc: sign logout message when using PRIVATE_KEYS instead of PRIVATE_KEY (#41949) 2020-06-21 13:13:57 +02:00
Frédéric Péters bfd71550cf display debug error details in an HTML comment (#43845) 2020-06-10 11:08:35 +02:00
Benjamin Dauvergne c05f4a3129 views: ignore XML content in SAML attributes (#43193) 2020-05-21 21:04:51 +02:00
Frédéric Péters 92703b3105 misc: get server cache from local variable (#41744) 2020-04-15 14:31:26 +02:00
Frédéric Péters b924eb1c9a translation update 2020-04-14 09:28:16 +02:00
Frédéric Péters d67297c7aa misc: return bad request messages as plain text (#41602) 2020-04-10 16:45:29 +02:00
Emmanuel Cazenave f16d316cef adapters: ease custom lookup through inheritance (#40833) 2020-03-31 15:10:50 +02:00
Frédéric Péters 74230b51ec general: remove compatibility with django < 1.11 (#38616) 2020-01-29 20:33:02 +01:00
Thomas NOËL 320ee3c457 adapters: only warn if lookup attribute is empty (#39381) 2020-01-29 15:26:25 +01:00
Frédéric Péters b4a08778bf misc: use compat.is_authenticated() in logout views (#38613) 2019-12-18 10:25:44 +01:00
Frédéric Péters 7802e85d52 misc: allow all views to receive template_base/context_hook kwargs (#38610) 2019-12-18 09:39:48 +01:00
Frédéric Péters fcb38fbf83 misc: ignore error when opening cached metadata (#38575) 2019-12-17 09:04:23 +01:00
Frédéric Péters b1b85cf0d2 add possibility to define a hook to alter login template context (#38533) 2019-12-16 14:22:18 +01:00
Benjamin Dauvergne 09c32c83d5 misc: make login_hint works without next parameter (#38163) 2019-12-03 19:53:37 +01:00
Benjamin Dauvergne d5e5701899 add kwargs template_base to LoginView (#35083) 2019-12-02 17:47:13 +01:00
Benjamin Dauvergne b673b3a7fe do not crash if no idp is found (#19260) 
Also improve logging of no idp situation in default backend.
 2019-12-02 17:46:42 +01:00
Benjamin Dauvergne 42620b50a9 middleware: skip media/script HTTP requets (#30497) 2019-11-28 12:43:45 +01:00
Benjamin Dauvergne 7095b1368b use MiddlewareMixin on middleware (#36509) 
Remove OPENED_SESSION_COOKIE_DOMAIN which has no use.
 2019-10-04 17:45:25 +02:00
Benjamin Dauvergne 83abc78605 factorize compatibility layer (#36509) 2019-10-04 17:45:25 +02:00
Benjamin Dauvergne a4a659d04e make DiscoveryResponse optional in metadata (#15260) 2019-10-01 12:31:52 +02:00
Frédéric Péters fd409d6d3c backends: accept being called with None as saml_attributes (#36330) 2019-09-22 12:30:41 +02:00
Frédéric Péters e3a6586a00 misc: update authenticate() for compatibility from 1.8 to 2.2 (#36330) 2019-09-22 10:34:13 +02:00
Frédéric Péters 785969fc11 misc: add support for new django.urls module (#36330) 2019-09-22 08:33:08 +02:00
Frédéric Péters 1aea1cbe00 misc: add on_delete parameter to foreign keys (#36330) 2019-09-22 08:33:04 +02:00
Benjamin Dauvergne 80074ea201 middleware: prevent passive authentication on ajax requests (#34781) 2019-07-12 13:41:49 +02:00
Benjamin Dauvergne ab92ca9a07 use unicode_literals (#34008) 2019-07-02 17:44:03 +02:00
Benjamin Dauvergne da94b2c52c adapters: add missing argument to log (#34333) 2019-06-25 21:53:53 +02:00