Valentin Deniaud
cebdcf5bbf
misc: change django-upgrade target version to 3.2 ( #75442 )
2023-03-29 14:49:55 +02:00
Valentin Deniaud
c2aed1b25d
misc: remove compatibility code with old authentic version ( #72027 )
2022-12-12 10:25:57 +01:00
Valentin Deniaud
f3f20e8f6c
authentic2: use direct imports for rbac models ( #70963 )
2022-11-03 13:51:18 +01:00
Valentin Deniaud
ec1e57177a
authentic2: support direct role attribute access ( #70672 )
2022-10-31 16:53:42 +01:00
Valentin Deniaud
a107b7ef0e
misc: apply pyupgrade ( #69708 )
2022-09-29 15:23:49 +02:00
Emmanuel Cazenave
f8041c4457
hobo_deploy: handle url change on a service ( #58908 )
2022-03-31 15:20:01 +02:00
Frédéric Péters
f014f15464
misc: apply black 22.1.0
2022-03-01 19:42:04 +01:00
Benjamin Dauvergne
c1820e1f64
agent/authentic: fix ou.base_url -> ou.home_url ( #61029 )
2022-01-28 14:55:27 +01:00
Emmanuel Cazenave
3c8927d8ee
agent/authentic: store portal-user url on correponding OU ( #61029 )
2022-01-28 13:34:39 +01:00
Benjamin Dauvergne
0b3c8a03eb
agent/authentic: set required_on_login on Attribute ( #56502 )
2021-08-31 12:25:21 +02:00
Frédéric Péters
872f39774a
trivial: apply black
2021-05-14 18:40:09 +02:00
Valentin Deniaud
126ad8c85b
authentic agent: include collectivity in secondary service label ( #51127 )
2021-02-15 16:48:22 +01:00
Benjamin Dauvergne
44ed90ad84
agent: update user's attributes type in authentic ( #48743 )
2020-12-14 16:19:58 +01:00
Benjamin Dauvergne
0a476f2b33
misc: do not wait already deployed SP ( #43035 )
2020-06-26 11:46:56 +02:00
Benjamin Dauvergne
bad0618e16
tests_authentic2: verify calls to sleep() on redeploy ( #43035 )
2020-06-26 11:46:56 +02:00
Thomas NOËL
513d1f9e09
authentic agent: mass provision roles on new services ( #35345 )
2019-08-19 09:50:06 +02:00
Frédéric Péters
ec976813b0
authentic agent: pass bytes to ElementTree for metadata validation ( #35419 )
2019-08-17 08:23:31 +02:00
Thomas NOËL
430c184de6
Revert "agent: redeploy roles when authentic get a new service to manage ( #35345 )"
...
This reverts commit a125818223
.
2019-08-14 22:47:17 +02:00
Nicolas Roche
a125818223
agent: redeploy roles when authentic get a new service to manage ( #35345 )
2019-08-14 18:03:03 +02:00
Benjamin Dauvergne
0f0043ca53
agent/authentic2: retry service's metadata retrieval ( #35351 )
2019-08-13 11:29:22 +02:00
Benjamin Dauvergne
b5bebd3e43
agent-authentic2: update service's role's name ( #34580 )
2019-07-15 22:56:37 +02:00
Benjamin Dauvergne
8e0ca0e8eb
agent: adapt to authentic2 spring cleaning ( #33120 )
...
See #32934 .
2019-05-16 09:19:21 +02:00
Frédéric Péters
4394ae788b
authentic worker: skip undefined attributes ( #29388 )
2019-01-02 09:40:32 +01:00
Frédéric Péters
46fc66d636
profile: add control over searchable flag ( #29388 )
2019-01-01 13:24:04 +01:00
Serghei Mihai
e4f6f0debb
agent: store provider's metadata url ( #16624 )
2018-10-26 13:28:38 +02:00
Benjamin Dauvergne
411e94363a
agent/authentic2: fix provisionning of attributes when an attribute is disabled ( #22751 )
...
Attribute.objects.get_or_create() can fail on an existing attribute as
the default "objects" manager of the Attribute model hide disabled
attributes, so the get() can fail but won't be able to create the
attribute.
2018-03-29 15:45:04 +02:00
Benjamin Dauvergne
79da1603bd
agent/authentic2: use Attribute.disabled field to disable an attribute ( #22751 )
2018-03-29 15:09:32 +02:00
Frédéric Péters
456ca1b8e3
authentic agent: respect profile field order ( #22645 )
2018-03-20 16:02:15 +01:00
Frédéric Péters
93eacef399
authentic agent: do not alter type of attributes ( #22437 )
2018-03-12 09:27:07 +01:00
Elias Showk
67e421e2db
authentic hobo_deploy use email and first_name from hobo.json and settings.ADMINS for superusers ( #21888 )
2018-03-05 15:52:55 +01:00
Frédéric Péters
d077b2ac7c
general: add support for deploying full publik systems ( #13838 )
2016-12-09 15:43:52 +01:00
Frédéric Péters
caa4f21b08
authentic agent: update "required" attribute of profile fields ( #13270 )
2016-09-22 18:11:33 +02:00
Frédéric Péters
c840fe3efd
authentic agent: handle {first,last}_name attributes like others ( #12968 )
2016-08-27 10:54:20 +02:00
Benjamin Dauvergne
33328a1bed
allow idp initiated SSO in default policy ( fixes #12500 )
2016-08-19 14:16:42 +02:00
Frédéric Péters
04e4a35ca4
authentic2 agent: distribute verified_attributes in SAML assertions ( #12355 )
2016-06-29 11:27:59 +02:00
Frédéric Péters
87e84ae8bd
agent: configure tenant theme symlinks ( #9446 )
2016-02-26 16:53:29 +01:00
Benjamin Dauvergne
d9f0244e52
agent/authentic2: remove creation of an admin group ( fixes #9364 )
...
It's superseded by the created "Superuser of x" role.
2015-12-17 10:48:51 +01:00
Benjamin Dauvergne
f6bf7af72c
agent: create initial roles if no role exists on each deploy ( #8768 )
...
It allows starting over a semi-completed deploy.
2015-11-09 13:42:18 +01:00
Benjamin Dauvergne
e847e5054e
agent: fix bad usage of a DeserializedObject ( #8768 )
2015-11-09 13:06:35 +01:00
Benjamin Dauvergne
ade50c59d3
agent: load initial roles in bulk to prevent partial provisionning ( #8768 )
...
If not all roles are sent to w.c.s. the first time, existing role from the
w.c.s. skeletons will be removed then recreated, loosing the link with existing
forms and workflows.
2015-11-09 11:39:25 +01:00
Benjamin Dauvergne
4d09c7eaf5
agent/authentic2: add support for roles skeleton files ( fixes #8768 )
2015-11-03 10:21:17 +01:00
Benjamin Dauvergne
e7e06a3cf6
hobo_deploy: assign new w.c.s. services to a new OU after the first one ( #8768 )
2015-11-03 10:21:17 +01:00
Benjamin Dauvergne
4ca5b9c566
agent/authentic2: pep8ize hobo_deploy ( #8768 )
2015-11-03 10:21:17 +01:00
Benjamin Dauvergne
cb178e9a0f
agent/authentic2: activate default locale in hobo_deploy ( fixes #8612 )
2015-10-12 18:13:47 +02:00
Benjamin Dauvergne
b171b2d595
agent/authentic2: do not force rename of superuser role ( fixes #8574 )
2015-10-12 11:04:26 +02:00
Benjamin Dauvergne
7b87f3488d
agent/authentic2: do not distribute groups' names in the role attribute anymore ( fixes #8431 )
2015-10-05 17:29:16 +02:00
Benjamin Dauvergne
2e212c8ddf
agent/authentic2: rename "Superuser" roles to "Superuser of <title>" ( #8432 )
2015-10-05 17:29:16 +02:00
Benjamin Dauvergne
6d61b8c39c
agent/authentic2: send role's uuid to services, not their slug ( fixes #8396 )
2015-09-28 13:31:28 +02:00
Benjamin Dauvergne
1c838c78ae
agent/authentic2: attach new services to the default ou ( fixes #8375 )
2015-09-25 15:35:49 +02:00
Benjamin Dauvergne
b6df145b46
Comply with authentic issue #8257 , use NameID format 'uuid' ( fixes #8264 )
...
We built our deployment script upon a bogus behaviour introduced by the
move to the custom user model in authentic, i.e. that the username
NameID format transmitted the uuid field of the user instead of the
username. This commit restores a sane definition for the default policy.
2015-09-15 08:57:38 +02:00