ac206d56d6
Add some password check methods to the MySQL auth backend
2016-06-26 20:29:47 +02:00
02a566c129
Use constant only caps for constants
2016-06-26 16:13:09 +02:00
164e2f5c28
style
2016-06-26 16:02:25 +02:00
8303f816df
Exclude non test auth from coverage
2016-06-26 15:34:26 +02:00
ac5f359063
style
2016-06-26 11:26:19 +02:00
3e80a018dd
Css style
2016-06-26 11:04:05 +02:00
bf7da7e805
More descriptive name for default_app_config
2016-06-26 11:02:57 +02:00
03cbab37f4
Javascript style
2016-06-26 11:01:37 +02:00
4bb886f083
python3 compatibility
2016-06-24 23:37:24 +02:00
0776e371e8
style
2016-06-24 21:23:33 +02:00
12201665de
Add some dango unit tests
2016-06-24 21:07:19 +02:00
5cb25de99f
Put test username, password, attributes in settings
2016-06-24 21:06:36 +02:00
a0ab47a4ae
Allow pgtUrl to be localhost without https
2016-06-24 21:05:43 +02:00
6d7300fe43
Add SLO support from federated CAS
2016-06-23 17:18:53 +02:00
e820a3a57a
Small fixes to cas.py, waiting for upstream merge
2016-06-23 12:14:15 +02:00
7a637c7321
verify_ticket(ticket) can return None as attributes
2016-06-23 12:14:02 +02:00
d1c5ff4019
Use session to transmist username/ticket from fedeare view to login view
...
Hence, these parameter are not recorder in the user history, and thus
the user username do not apear anymore in the history. This respect more the
user privacy.
2016-06-22 12:46:18 +02:00
8ddf06b82a
Merge branch 'master' into federate
2016-06-21 18:04:17 +02:00
b96c0ef4c7
Wrap logo on small screens
2016-06-21 18:02:27 +02:00
4c5599ea7b
Add CAS_FEDERATE_PROVIDERS_LIST to settings parameters
2016-06-21 16:20:25 +02:00
3a71cc2cca
Add "remember my identity provider" expiry time in a setting parameter
2016-06-21 15:41:43 +02:00
bec51755fa
fix too many values to unpack in federate.py
2016-06-21 15:31:46 +02:00
a00e5d403d
Add a verbone names to CAS_FEDERATE_PROVIDERS
2016-06-21 14:46:01 +02:00
46cfaa6745
Fix python3 error "'dict_keys' object has no attribute 'sort'"
2016-06-21 09:53:43 +02:00
25ece526a0
Update translation
2016-06-21 00:17:04 +02:00
0dba0d1776
Style and federated doc about the manage command cas_clean_federate
2016-06-20 14:20:49 +02:00
177da450aa
Add headers to cas.py
2016-06-20 14:14:50 +02:00
3cef82b475
Hide h1 if auto_submit is enable
2016-06-20 13:51:40 +02:00
63a041463d
No need for a different template for federated login
2016-06-20 13:38:50 +02:00
a209b06df0
Merge branch 'master' into federate
2016-06-20 13:36:30 +02:00
c7ac3bee7a
Add a h1 to default templates and a logo
2016-06-20 13:31:59 +02:00
e8a587f48a
Disable federated auth if CAS_FEDERATE is False
2016-06-19 13:00:28 +02:00
5cf820e44f
Add a command to clean old federated users
2016-06-19 13:00:09 +02:00
efdd97ec07
Test for CAS federation
2016-06-17 19:28:49 +02:00
3a57ad0835
style
2016-06-03 14:19:43 +02:00
77fcd7a24e
Forgotten debug variable
2016-06-03 14:17:49 +02:00
755f571fd7
Bad button name on warn.html
2016-06-03 14:15:41 +02:00
a8cb006989
Merge github.com:nitmir/django-cas-server
2016-06-03 14:12:38 +02:00
20f11eca77
Use a POST for "warn me" and only generate the ticket after the "warn me" page
2016-06-03 14:11:07 +02:00
a45cb1d38b
Typo, bad variable name
2016-05-11 13:06:41 +02:00
851f32bfd4
Update translations
2016-05-03 23:55:50 +02:00
b4aef57534
Typo: loggin -> log in
2016-05-03 23:51:32 +02:00
b0e8d0ee05
Return username in CAS1.0 on the second ligne
2016-04-29 19:57:12 +02:00
80b16c002b
Evaluate attributes variables in samlValidate.xml
2016-04-29 19:56:32 +02:00
6a6fe14c9f
Merge github.com:nitmir/django-cas-server
2016-04-28 19:34:49 +02:00
b0ae19c36f
Add sensitive_post_parameters and sensitive_variables for passwords
2016-04-28 19:33:46 +02:00
8a2e44c23c
Normalize first migration
2016-03-26 18:30:06 +01:00
673f46593a
Simplify first migration, should fix #1
2016-03-26 18:29:32 +01:00
a3a5979660
[travis] cas_server/models.py:392:17: W503 line break before binary operator
2016-03-18 13:22:00 +01:00
93e11befc5
[utils.py] Errors in utils.import_attr are more understandable.
2016-03-18 13:03:23 +01:00
10c53a8096
On logout display the number of sessions we are logged out from (none, 1, more).
2015-12-26 15:37:46 +01:00
494da62935
Fix MysqlAuthUser when number of results != 1, typo in README
2015-12-19 17:14:02 +01:00
f0ecd653d3
Add cosmetic migration
2015-12-18 11:34:45 +01:00
85b74bab27
Add verbose name for cas_server app and models
2015-12-17 19:24:10 +01:00
20aa4c0d74
Add logging capabilities
2015-12-13 13:57:35 +01:00
cd4b9846cd
Add a timeout to SLO requests
2015-12-13 13:50:01 +01:00
bfad265299
Add a help_text to pattern of ServicePattern
2015-12-12 18:22:02 +01:00
78f4538f6a
Update README
2015-12-12 17:26:19 +01:00
d0f6ed9ea3
add forgotten migration
2015-12-12 14:00:43 +01:00
b69769d71a
Django 1.9 compatibility
2015-12-12 13:53:21 +01:00
9dc18675f9
Possibility to logout from all of one user sessions
2015-12-12 12:02:26 +01:00
bfcf410f26
Put maximum number of parallel SLO requests in config
2015-12-12 12:01:57 +01:00
99d27fe197
update translations
2015-12-12 12:01:36 +01:00
fa6301c873
Add an optional callback to javascript cas login function
2015-12-11 13:29:56 +01:00
187da57be1
Add a title to html pages
2015-12-11 13:29:37 +01:00
48d5273afb
fix infinite redirect then connected to admin panel
2015-12-11 13:29:04 +01:00
8da42afd57
Update translations
2015-12-11 13:28:46 +01:00
f0da070b30
pytthon3 typo
2015-11-20 19:22:04 +01:00
6bdff5ac86
Correct some tests
2015-11-20 17:38:03 +01:00
7beefa537f
Template factorisation
2015-11-20 16:00:26 +01:00
9df1cd2e31
Add javascript login function allow service A to log user to service B via javascript
...
CORS need to be correctly configured if not this can lead to security issues.
Please do not put Access-Control-Allow-Origin: "*".
You can use django-cors-headers to properly configure CORS
2015-11-17 14:50:16 +01:00
ee987f6d00
Remember up to 100 login ticket insted of 1
2015-11-14 01:05:53 +01:00
df9dd5364f
On logout first invalidate all PGTs
2015-11-14 00:21:20 +01:00
0012a8f65d
[logout] Clean sessions variables (actually logout) before sending SLO requests
...
Otherwise some backend may logout before we are actually logged out from the CAS
2015-11-13 23:47:06 +01:00
50781dba18
add some tests
2015-06-21 18:59:37 +02:00
c0d8550120
Add some tests using tox
2015-06-13 00:03:06 +02:00
39557d1942
PEP8
2015-06-12 18:12:35 +02:00
ba4af1372c
squashmigrations
2015-06-12 16:46:50 +02:00
942f16a347
list_display for User admin model
2015-06-12 16:37:50 +02:00
365cfd4279
oops
2015-06-11 23:40:28 +02:00
77fc5b5988
Compatibility with different session backend + admin layout
2015-06-11 23:04:26 +02:00
245086f6ef
By session logout
2015-06-09 22:04:41 +02:00
41fcc06200
MysqlAuthUser use return username for case
2015-06-09 16:42:28 +02:00
1ada840bdc
Possibility to specify a single log out callback
2015-06-08 18:22:10 +02:00
a4ff5c3d64
Extended validity for PGT
2015-06-08 02:51:22 +02:00
8fe1738183
noop
2015-06-07 23:50:25 +02:00
277788e593
Generate new LT only then the previous has been used
2015-06-07 23:46:32 +02:00
fe8c74ba08
User attribut may not exist
2015-06-07 17:12:04 +02:00
aa5bb7ef72
Use url parameter on logout
2015-06-07 16:53:27 +02:00
5e54ffcc46
attributes joker
2015-06-07 14:41:27 +02:00
6185ec5216
Add Login Ticket to prevent login replay + by ticket len options
2015-06-05 15:44:17 +02:00
1695cd24ea
filter attributs does not necessary exists
2015-06-05 00:14:56 +02:00
02fd557216
ProxyGrantingTicket are never validate bis
2015-06-04 16:48:11 +02:00
60013fbfff
ProxyGrantingTicket are never validate
2015-06-04 16:45:47 +02:00
69935e9761
add restrict_users to service pattern list_display
2015-06-04 16:25:26 +02:00
cd79935435
so no xml/text header in SLO
2015-06-04 14:48:07 +02:00
f1fbdd3653
it seems that SLO requests need to be in logoutRequest POST params
...
cf phpCAS official implementation
2015-06-04 14:39:36 +02:00
603b4a8063
Protect the auth view with a shared secret
2015-06-03 18:32:15 +02:00
cb84936b6c
an auth view to validate (username, password, service) by remote service
2015-06-03 18:15:37 +02:00
690c2c3b29
some encode stuff
2015-06-03 17:42:25 +02:00
f73e55b5ce
Add a logout template and possibility to redirect to login on logout
2015-06-02 21:06:32 +02:00
54f9b7c50c
compact xml suite
2015-06-02 00:03:57 +02:00
9f29d1ef20
xml compact suite
2015-06-01 23:59:49 +02:00
63f0719109
xml compact suite
2015-06-01 23:57:52 +02:00
152d43d5dc
compact xml suite
2015-06-01 23:55:34 +02:00
4cfd29942b
compact xml
2015-06-01 23:53:05 +02:00
44cbf0f2b8
migration for the previous commit
2015-05-30 19:47:47 +02:00
b4a5961886
Using fresh user attributs on ticket creation + auth class as string in config
2015-05-30 19:45:59 +02:00
b6e2a7320b
Usage of namespace for / -> /login redirection
2015-05-30 18:58:58 +02:00
238d6da2a3
SamlValidation -> SamlValidate
2015-05-29 20:07:53 +02:00
5d1ce93e06
fix allow_proxy_ticket
2015-05-29 19:33:42 +02:00
ec85174fc4
forgotten self in super calls
2015-05-29 19:31:04 +02:00
ff74a07965
Use only classe view, put ticket prefix as config option
2015-05-29 19:27:54 +02:00
e1549dd6ff
use a LogoutMixin
2015-05-29 16:14:27 +02:00
a0b1a095e4
Login/Logout view are now class views
2015-05-29 16:11:10 +02:00
02872d218f
Django command to clean old tickets
2015-05-28 17:30:27 +02:00
9a8b724224
add proxy_callback to admin interface
2015-05-28 15:30:51 +02:00
4fd4afd9c0
possibility to limit PT delivery by service
2015-05-28 15:27:21 +02:00
5ebc5169c3
set IssueInstant and ResponseID on saml error
2015-05-28 15:17:11 +02:00
871baaac87
some code refactoring and better error handling on ticket validation
2015-05-28 15:08:57 +02:00
7e2917e977
add a single_log_out parametters on Ticket for query optimisation
2015-05-28 14:05:48 +02:00
c9629f65ae
s/SSO/SLO/
2015-05-28 02:16:24 +02:00
2bd2f8d8b3
Update french translation
2015-05-27 23:06:06 +02:00
f0de5f738b
start admin internationalisation
2015-05-27 22:56:20 +02:00
54e4314305
Ignore non used parallele requestor for SSO
2015-05-27 22:28:41 +02:00
bc08402dab
make SSO option visible in admin interface
2015-05-27 22:25:22 +02:00
2e199e0283
migration for the previous commit
2015-05-27 22:23:47 +02:00
54a79dacdd
make SSO optional
2015-05-27 22:23:16 +02:00
9a4c6b9d7a
some cosmetics
2015-05-27 22:18:01 +02:00
1fcb0a7110
copyright notice
2015-05-27 22:10:06 +02:00
ad434a113f
Some refactoring
2015-05-27 21:56:39 +02:00
d173cd6190
proxies add --> append
2015-05-26 16:17:57 +02:00
cf49573c61
Only SSO upon validated tickets
2015-05-23 21:12:42 +02:00
0a3e95ba2b
Then redirecting to login, keep service param
2015-05-23 19:57:18 +02:00
b08d6a3f97
typo
2015-05-23 19:47:54 +02:00
1229903dcc
redirect to login if user do not exists
2015-05-23 19:47:10 +02:00
8e21931cf2
Warn if warn user session variable is not defined
2015-05-23 19:43:21 +02:00
f9ccd6e540
CHange unique constrain
2015-05-23 19:32:02 +02:00
f4935711cf
add .mo files
2015-05-23 19:05:13 +02:00
49ce34758a
update translation
2015-05-23 19:03:37 +02:00
54aa9c759e
Loggin button as primary
2015-05-23 17:09:59 +02:00
c16bb2d7f0
Redirect to login screen if GET on samlValidate
2015-05-22 19:39:51 +02:00
f71bd22954
Add samlValidate
2015-05-22 19:31:50 +02:00
700e24e4fd
Internationalizasion
2015-05-22 17:55:00 +02:00
6964821da4
Make session expire on browser close
2015-05-19 18:33:56 +02:00
67d7a7dcf5
Forgot the migration file
2015-05-18 23:39:19 +02:00
556aa34a3f
Bad unique constrain
2015-05-18 23:38:28 +02:00
0bc4e89970
Some improvments
2015-05-18 20:30:00 +02:00
937fdbb261
Remove some print debug
2015-05-18 02:05:12 +02:00
9112e6e475
Some login backends
2015-05-17 23:24:41 +02:00
db65c3c50f
Warning message on service authentication
2015-05-16 23:54:40 +02:00
711928d455
Do not warn on initial login and on renew
2015-05-16 23:50:25 +02:00
977399f938
bad variable name
2015-05-16 23:48:04 +02:00
667483fc49
initial commit
2015-05-16 23:43:46 +02:00
Valentin Samir