Valentin Samir
166590f264
Full coverage for the login view
2016-06-28 15:59:40 +02:00
Valentin Samir
a4d70d3046
Merge branch 'dev' into federate
2016-06-28 15:29:45 +02:00
Valentin Samir
16fb7b5021
Fix renew request from service
2016-06-28 15:24:50 +02:00
Valentin Samir
434dcf6e4e
Correct some codacy errors
2016-06-28 00:48:48 +02:00
Valentin Samir
dedc1e34a2
Fix some style error introduced during the merge
2016-06-28 00:37:18 +02:00
Valentin Samir
32b5627c38
Merge branch 'dev' into federate
2016-06-28 00:34:31 +02:00
Valentin Samir
fc57288c30
Fix some python3 compat and change in test client behaviour in django 1.9
2016-06-28 00:10:36 +02:00
Valentin Samir
bab79c4de5
More unit tests (essentially for the login view) and some docstrings
2016-06-27 23:55:17 +02:00
Valentin Samir
7db3157864
Forgotten return
2016-06-27 14:01:39 +02:00
Valentin Samir
93c2dae96b
Add docstrings
2016-06-26 22:07:38 +02:00
Valentin Samir
2fac47f0b1
Add unit test for the utils function check_password
2016-06-26 21:44:41 +02:00
Valentin Samir
ac206d56d6
Add some password check methods to the MySQL auth backend
2016-06-26 20:29:47 +02:00
Valentin Samir
02a566c129
Use constant only caps for constants
2016-06-26 16:13:09 +02:00
Valentin Samir
164e2f5c28
style
2016-06-26 16:02:25 +02:00
Valentin Samir
8303f816df
Exclude non test auth from coverage
2016-06-26 15:34:26 +02:00
Valentin Samir
ac5f359063
style
2016-06-26 11:26:19 +02:00
Valentin Samir
3e80a018dd
Css style
2016-06-26 11:04:05 +02:00
Valentin Samir
bf7da7e805
More descriptive name for default_app_config
2016-06-26 11:02:57 +02:00
Valentin Samir
03cbab37f4
Javascript style
2016-06-26 11:01:37 +02:00
Valentin Samir
4bb886f083
python3 compatibility
2016-06-24 23:37:24 +02:00
Valentin Samir
0776e371e8
style
2016-06-24 21:23:33 +02:00
Valentin Samir
12201665de
Add some dango unit tests
2016-06-24 21:07:19 +02:00
Valentin Samir
5cb25de99f
Put test username, password, attributes in settings
2016-06-24 21:06:36 +02:00
Valentin Samir
a0ab47a4ae
Allow pgtUrl to be localhost without https
2016-06-24 21:05:43 +02:00
Valentin Samir
6d7300fe43
Add SLO support from federated CAS
2016-06-23 17:18:53 +02:00
Valentin Samir
e820a3a57a
Small fixes to cas.py, waiting for upstream merge
2016-06-23 12:14:15 +02:00
Valentin Samir
7a637c7321
verify_ticket(ticket) can return None as attributes
2016-06-23 12:14:02 +02:00
Valentin Samir
d1c5ff4019
Use session to transmist username/ticket from fedeare view to login view
...
Hence, these parameter are not recorder in the user history, and thus
the user username do not apear anymore in the history. This respect more the
user privacy.
2016-06-22 12:46:18 +02:00
Valentin Samir
8ddf06b82a
Merge branch 'master' into federate
2016-06-21 18:04:17 +02:00
Valentin Samir
b96c0ef4c7
Wrap logo on small screens
2016-06-21 18:02:27 +02:00
Valentin Samir
4c5599ea7b
Add CAS_FEDERATE_PROVIDERS_LIST to settings parameters
2016-06-21 16:20:25 +02:00
Valentin Samir
3a71cc2cca
Add "remember my identity provider" expiry time in a setting parameter
2016-06-21 15:41:43 +02:00
Valentin Samir
bec51755fa
fix too many values to unpack in federate.py
2016-06-21 15:31:46 +02:00
Valentin Samir
a00e5d403d
Add a verbone names to CAS_FEDERATE_PROVIDERS
2016-06-21 14:46:01 +02:00
Valentin Samir
46cfaa6745
Fix python3 error "'dict_keys' object has no attribute 'sort'"
2016-06-21 09:53:43 +02:00
Valentin Samir
25ece526a0
Update translation
2016-06-21 00:17:04 +02:00
Valentin Samir
0dba0d1776
Style and federated doc about the manage command cas_clean_federate
2016-06-20 14:20:49 +02:00
Valentin Samir
177da450aa
Add headers to cas.py
2016-06-20 14:14:50 +02:00
Valentin Samir
3cef82b475
Hide h1 if auto_submit is enable
2016-06-20 13:51:40 +02:00
Valentin Samir
63a041463d
No need for a different template for federated login
2016-06-20 13:38:50 +02:00
Valentin Samir
a209b06df0
Merge branch 'master' into federate
2016-06-20 13:36:30 +02:00
Valentin Samir
c7ac3bee7a
Add a h1 to default templates and a logo
2016-06-20 13:31:59 +02:00
Valentin Samir
e8a587f48a
Disable federated auth if CAS_FEDERATE is False
2016-06-19 13:00:28 +02:00
Valentin Samir
5cf820e44f
Add a command to clean old federated users
2016-06-19 13:00:09 +02:00
Valentin Samir
efdd97ec07
Test for CAS federation
2016-06-17 19:28:49 +02:00
Valentin Samir
3a57ad0835
style
2016-06-03 14:19:43 +02:00
Valentin Samir
77fcd7a24e
Forgotten debug variable
2016-06-03 14:17:49 +02:00
Valentin Samir
755f571fd7
Bad button name on warn.html
2016-06-03 14:15:41 +02:00
Valentin Samir
a8cb006989
Merge github.com:nitmir/django-cas-server
2016-06-03 14:12:38 +02:00
Valentin Samir
20f11eca77
Use a POST for "warn me" and only generate the ticket after the "warn me" page
2016-06-03 14:11:07 +02:00
Valentin Samir
a45cb1d38b
Typo, bad variable name
2016-05-11 13:06:41 +02:00
Valentin Samir
851f32bfd4
Update translations
2016-05-03 23:55:50 +02:00
Valentin Samir
b4aef57534
Typo: loggin -> log in
2016-05-03 23:51:32 +02:00
Valentin Samir
b0e8d0ee05
Return username in CAS1.0 on the second ligne
2016-04-29 19:57:12 +02:00
Valentin Samir
80b16c002b
Evaluate attributes variables in samlValidate.xml
2016-04-29 19:56:32 +02:00
Valentin Samir
6a6fe14c9f
Merge github.com:nitmir/django-cas-server
2016-04-28 19:34:49 +02:00
Valentin Samir
b0ae19c36f
Add sensitive_post_parameters and sensitive_variables for passwords
2016-04-28 19:33:46 +02:00
Valentin Samir
8a2e44c23c
Normalize first migration
2016-03-26 18:30:06 +01:00
Valentin Samir
673f46593a
Simplify first migration, should fix #1
2016-03-26 18:29:32 +01:00
Valentin Samir
a3a5979660
[travis] cas_server/models.py:392:17: W503 line break before binary operator
2016-03-18 13:22:00 +01:00
Valentin Samir
93e11befc5
[utils.py] Errors in utils.import_attr are more understandable.
2016-03-18 13:03:23 +01:00
Valentin Samir
10c53a8096
On logout display the number of sessions we are logged out from (none, 1, more).
2015-12-26 15:37:46 +01:00
Valentin Samir
494da62935
Fix MysqlAuthUser when number of results != 1, typo in README
2015-12-19 17:14:02 +01:00
Valentin Samir
f0ecd653d3
Add cosmetic migration
2015-12-18 11:34:45 +01:00
Valentin Samir
85b74bab27
Add verbose name for cas_server app and models
2015-12-17 19:24:10 +01:00
Valentin Samir
20aa4c0d74
Add logging capabilities
2015-12-13 13:57:35 +01:00
Valentin Samir
cd4b9846cd
Add a timeout to SLO requests
2015-12-13 13:50:01 +01:00
Valentin Samir
bfad265299
Add a help_text to pattern of ServicePattern
2015-12-12 18:22:02 +01:00
Valentin Samir
78f4538f6a
Update README
2015-12-12 17:26:19 +01:00
Valentin Samir
d0f6ed9ea3
add forgotten migration
2015-12-12 14:00:43 +01:00
Valentin Samir
b69769d71a
Django 1.9 compatibility
2015-12-12 13:53:21 +01:00
Valentin Samir
9dc18675f9
Possibility to logout from all of one user sessions
2015-12-12 12:02:26 +01:00
Valentin Samir
bfcf410f26
Put maximum number of parallel SLO requests in config
2015-12-12 12:01:57 +01:00
Valentin Samir
99d27fe197
update translations
2015-12-12 12:01:36 +01:00
Valentin Samir
fa6301c873
Add an optional callback to javascript cas login function
2015-12-11 13:29:56 +01:00
Valentin Samir
187da57be1
Add a title to html pages
2015-12-11 13:29:37 +01:00
Valentin Samir
48d5273afb
fix infinite redirect then connected to admin panel
2015-12-11 13:29:04 +01:00
Valentin Samir
8da42afd57
Update translations
2015-12-11 13:28:46 +01:00
Valentin Samir
f0da070b30
pytthon3 typo
2015-11-20 19:22:04 +01:00
Valentin Samir
6bdff5ac86
Correct some tests
2015-11-20 17:38:03 +01:00
Valentin Samir
7beefa537f
Template factorisation
2015-11-20 16:00:26 +01:00
Valentin Samir
9df1cd2e31
Add javascript login function allow service A to log user to service B via javascript
...
CORS need to be correctly configured if not this can lead to security issues.
Please do not put Access-Control-Allow-Origin: "*".
You can use django-cors-headers to properly configure CORS
2015-11-17 14:50:16 +01:00
Valentin Samir
ee987f6d00
Remember up to 100 login ticket insted of 1
2015-11-14 01:05:53 +01:00
Valentin Samir
df9dd5364f
On logout first invalidate all PGTs
2015-11-14 00:21:20 +01:00
Valentin Samir
0012a8f65d
[logout] Clean sessions variables (actually logout) before sending SLO requests
...
Otherwise some backend may logout before we are actually logged out from the CAS
2015-11-13 23:47:06 +01:00
Valentin Samir
50781dba18
add some tests
2015-06-21 18:59:37 +02:00
Valentin Samir
c0d8550120
Add some tests using tox
2015-06-13 00:03:06 +02:00
Valentin Samir
39557d1942
PEP8
2015-06-12 18:12:35 +02:00
Valentin Samir
ba4af1372c
squashmigrations
2015-06-12 16:46:50 +02:00
Valentin Samir
942f16a347
list_display for User admin model
2015-06-12 16:37:50 +02:00
Valentin Samir
365cfd4279
oops
2015-06-11 23:40:28 +02:00
Valentin Samir
77fc5b5988
Compatibility with different session backend + admin layout
2015-06-11 23:04:26 +02:00
Valentin Samir
245086f6ef
By session logout
2015-06-09 22:04:41 +02:00
Valentin Samir
41fcc06200
MysqlAuthUser use return username for case
2015-06-09 16:42:28 +02:00
Valentin Samir
1ada840bdc
Possibility to specify a single log out callback
2015-06-08 18:22:10 +02:00
Valentin Samir
a4ff5c3d64
Extended validity for PGT
2015-06-08 02:51:22 +02:00
Valentin Samir
8fe1738183
noop
2015-06-07 23:50:25 +02:00
Valentin Samir
277788e593
Generate new LT only then the previous has been used
2015-06-07 23:46:32 +02:00
Valentin Samir
fe8c74ba08
User attribut may not exist
2015-06-07 17:12:04 +02:00
Valentin Samir
aa5bb7ef72
Use url parameter on logout
2015-06-07 16:53:27 +02:00
Valentin Samir
5e54ffcc46
attributes joker
2015-06-07 14:41:27 +02:00
Valentin Samir
6185ec5216
Add Login Ticket to prevent login replay + by ticket len options
2015-06-05 15:44:17 +02:00
Valentin Samir
1695cd24ea
filter attributs does not necessary exists
2015-06-05 00:14:56 +02:00
Valentin Samir
02fd557216
ProxyGrantingTicket are never validate bis
2015-06-04 16:48:11 +02:00
Valentin Samir
60013fbfff
ProxyGrantingTicket are never validate
2015-06-04 16:45:47 +02:00
Valentin Samir
69935e9761
add restrict_users to service pattern list_display
2015-06-04 16:25:26 +02:00
Valentin Samir
cd79935435
so no xml/text header in SLO
2015-06-04 14:48:07 +02:00
Valentin Samir
f1fbdd3653
it seems that SLO requests need to be in logoutRequest POST params
...
cf phpCAS official implementation
2015-06-04 14:39:36 +02:00
Valentin Samir
603b4a8063
Protect the auth view with a shared secret
2015-06-03 18:32:15 +02:00
Valentin Samir
cb84936b6c
an auth view to validate (username, password, service) by remote service
2015-06-03 18:15:37 +02:00
Valentin Samir
690c2c3b29
some encode stuff
2015-06-03 17:42:25 +02:00
Valentin Samir
f73e55b5ce
Add a logout template and possibility to redirect to login on logout
2015-06-02 21:06:32 +02:00
Valentin Samir
54f9b7c50c
compact xml suite
2015-06-02 00:03:57 +02:00
Valentin Samir
9f29d1ef20
xml compact suite
2015-06-01 23:59:49 +02:00
Valentin Samir
63f0719109
xml compact suite
2015-06-01 23:57:52 +02:00
Valentin Samir
152d43d5dc
compact xml suite
2015-06-01 23:55:34 +02:00
Valentin Samir
4cfd29942b
compact xml
2015-06-01 23:53:05 +02:00
Valentin Samir
44cbf0f2b8
migration for the previous commit
2015-05-30 19:47:47 +02:00
Valentin Samir
b4a5961886
Using fresh user attributs on ticket creation + auth class as string in config
2015-05-30 19:45:59 +02:00
Valentin Samir
b6e2a7320b
Usage of namespace for / -> /login redirection
2015-05-30 18:58:58 +02:00
Valentin Samir
238d6da2a3
SamlValidation -> SamlValidate
2015-05-29 20:07:53 +02:00
Valentin Samir
5d1ce93e06
fix allow_proxy_ticket
2015-05-29 19:33:42 +02:00
Valentin Samir
ec85174fc4
forgotten self in super calls
2015-05-29 19:31:04 +02:00
Valentin Samir
ff74a07965
Use only classe view, put ticket prefix as config option
2015-05-29 19:27:54 +02:00
Valentin Samir
e1549dd6ff
use a LogoutMixin
2015-05-29 16:14:27 +02:00
Valentin Samir
a0b1a095e4
Login/Logout view are now class views
2015-05-29 16:11:10 +02:00
Valentin Samir
02872d218f
Django command to clean old tickets
2015-05-28 17:30:27 +02:00
Valentin Samir
9a8b724224
add proxy_callback to admin interface
2015-05-28 15:30:51 +02:00
Valentin Samir
4fd4afd9c0
possibility to limit PT delivery by service
2015-05-28 15:27:21 +02:00
Valentin Samir
5ebc5169c3
set IssueInstant and ResponseID on saml error
2015-05-28 15:17:11 +02:00
Valentin Samir
871baaac87
some code refactoring and better error handling on ticket validation
2015-05-28 15:08:57 +02:00
Valentin Samir
7e2917e977
add a single_log_out parametters on Ticket for query optimisation
2015-05-28 14:05:48 +02:00
Valentin Samir
c9629f65ae
s/SSO/SLO/
2015-05-28 02:16:24 +02:00
Valentin Samir
2bd2f8d8b3
Update french translation
2015-05-27 23:06:06 +02:00
Valentin Samir
f0de5f738b
start admin internationalisation
2015-05-27 22:56:20 +02:00
Valentin Samir
54e4314305
Ignore non used parallele requestor for SSO
2015-05-27 22:28:41 +02:00
Valentin Samir
bc08402dab
make SSO option visible in admin interface
2015-05-27 22:25:22 +02:00
Valentin Samir
2e199e0283
migration for the previous commit
2015-05-27 22:23:47 +02:00
Valentin Samir
54a79dacdd
make SSO optional
2015-05-27 22:23:16 +02:00
Valentin Samir
9a4c6b9d7a
some cosmetics
2015-05-27 22:18:01 +02:00
Valentin Samir
1fcb0a7110
copyright notice
2015-05-27 22:10:06 +02:00
Valentin Samir
ad434a113f
Some refactoring
2015-05-27 21:56:39 +02:00
Valentin Samir
d173cd6190
proxies add --> append
2015-05-26 16:17:57 +02:00
Valentin Samir
cf49573c61
Only SSO upon validated tickets
2015-05-23 21:12:42 +02:00
Valentin Samir
0a3e95ba2b
Then redirecting to login, keep service param
2015-05-23 19:57:18 +02:00
Valentin Samir
b08d6a3f97
typo
2015-05-23 19:47:54 +02:00
Valentin Samir
1229903dcc
redirect to login if user do not exists
2015-05-23 19:47:10 +02:00
Valentin Samir
8e21931cf2
Warn if warn user session variable is not defined
2015-05-23 19:43:21 +02:00
Valentin Samir
f9ccd6e540
CHange unique constrain
2015-05-23 19:32:02 +02:00
Valentin Samir
f4935711cf
add .mo files
2015-05-23 19:05:13 +02:00