Commit Graph

275 Commits

Author SHA1 Message Date
Valentin Samir a209b06df0 Merge branch 'master' into federate 2016-06-20 13:36:30 +02:00
Valentin Samir c7ac3bee7a Add a h1 to default templates and a logo 2016-06-20 13:31:59 +02:00
Valentin Samir e8a587f48a Disable federated auth if CAS_FEDERATE is False 2016-06-19 13:00:28 +02:00
Valentin Samir 5cf820e44f Add a command to clean old federated users 2016-06-19 13:00:09 +02:00
Valentin Samir efdd97ec07 Test for CAS federation 2016-06-17 19:28:49 +02:00
Valentin Samir 3a57ad0835 style 2016-06-03 14:19:43 +02:00
Valentin Samir 77fcd7a24e Forgotten debug variable 2016-06-03 14:17:49 +02:00
Valentin Samir 755f571fd7 Bad button name on warn.html 2016-06-03 14:15:41 +02:00
Valentin Samir a8cb006989 Merge github.com:nitmir/django-cas-server 2016-06-03 14:12:38 +02:00
Valentin Samir 20f11eca77 Use a POST for "warn me" and only generate the ticket after the "warn me" page 2016-06-03 14:11:07 +02:00
Valentin Samir a45cb1d38b Typo, bad variable name 2016-05-11 13:06:41 +02:00
Valentin Samir 851f32bfd4 Update translations 2016-05-03 23:55:50 +02:00
Valentin Samir b4aef57534 Typo: loggin -> log in 2016-05-03 23:51:32 +02:00
Valentin Samir b0e8d0ee05 Return username in CAS1.0 on the second ligne 2016-04-29 19:57:12 +02:00
Valentin Samir 80b16c002b Evaluate attributes variables in samlValidate.xml 2016-04-29 19:56:32 +02:00
Valentin Samir 6a6fe14c9f Merge github.com:nitmir/django-cas-server 2016-04-28 19:34:49 +02:00
Valentin Samir b0ae19c36f Add sensitive_post_parameters and sensitive_variables for passwords 2016-04-28 19:33:46 +02:00
Valentin Samir 8a2e44c23c Normalize first migration 2016-03-26 18:30:06 +01:00
Valentin Samir 673f46593a Simplify first migration, should fix #1 2016-03-26 18:29:32 +01:00
Valentin Samir a3a5979660 [travis] cas_server/models.py:392:17: W503 line break before binary operator 2016-03-18 13:22:00 +01:00
Valentin Samir 93e11befc5 [utils.py] Errors in utils.import_attr are more understandable. 2016-03-18 13:03:23 +01:00
Valentin Samir 10c53a8096 On logout display the number of sessions we are logged out from (none, 1, more). 2015-12-26 15:37:46 +01:00
Valentin Samir 494da62935 Fix MysqlAuthUser when number of results != 1, typo in README 2015-12-19 17:14:02 +01:00
Valentin Samir f0ecd653d3 Add cosmetic migration 2015-12-18 11:34:45 +01:00
Valentin Samir 85b74bab27 Add verbose name for cas_server app and models 2015-12-17 19:24:10 +01:00
Valentin Samir 20aa4c0d74 Add logging capabilities 2015-12-13 13:57:35 +01:00
Valentin Samir cd4b9846cd Add a timeout to SLO requests 2015-12-13 13:50:01 +01:00
Valentin Samir bfad265299 Add a help_text to pattern of ServicePattern 2015-12-12 18:22:02 +01:00
Valentin Samir 78f4538f6a Update README 2015-12-12 17:26:19 +01:00
Valentin Samir d0f6ed9ea3 add forgotten migration 2015-12-12 14:00:43 +01:00
Valentin Samir b69769d71a Django 1.9 compatibility 2015-12-12 13:53:21 +01:00
Valentin Samir 9dc18675f9 Possibility to logout from all of one user sessions 2015-12-12 12:02:26 +01:00
Valentin Samir bfcf410f26 Put maximum number of parallel SLO requests in config 2015-12-12 12:01:57 +01:00
Valentin Samir 99d27fe197 update translations 2015-12-12 12:01:36 +01:00
Valentin Samir fa6301c873 Add an optional callback to javascript cas login function 2015-12-11 13:29:56 +01:00
Valentin Samir 187da57be1 Add a title to html pages 2015-12-11 13:29:37 +01:00
Valentin Samir 48d5273afb fix infinite redirect then connected to admin panel 2015-12-11 13:29:04 +01:00
Valentin Samir 8da42afd57 Update translations 2015-12-11 13:28:46 +01:00
Valentin Samir f0da070b30 pytthon3 typo 2015-11-20 19:22:04 +01:00
Valentin Samir 6bdff5ac86 Correct some tests 2015-11-20 17:38:03 +01:00
Valentin Samir 7beefa537f Template factorisation 2015-11-20 16:00:26 +01:00
Valentin Samir 9df1cd2e31 Add javascript login function allow service A to log user to service B via javascript
CORS need to be correctly configured if not this can lead to security issues.
Please do not put Access-Control-Allow-Origin: "*".
You can use django-cors-headers to properly configure CORS
2015-11-17 14:50:16 +01:00
Valentin Samir ee987f6d00 Remember up to 100 login ticket insted of 1 2015-11-14 01:05:53 +01:00
Valentin Samir df9dd5364f On logout first invalidate all PGTs 2015-11-14 00:21:20 +01:00
Valentin Samir 0012a8f65d [logout] Clean sessions variables (actually logout) before sending SLO requests
Otherwise some backend may logout before we are actually logged out from the CAS
2015-11-13 23:47:06 +01:00
Valentin Samir 50781dba18 add some tests 2015-06-21 18:59:37 +02:00
Valentin Samir c0d8550120 Add some tests using tox 2015-06-13 00:03:06 +02:00
Valentin Samir 39557d1942 PEP8 2015-06-12 18:12:35 +02:00
Valentin Samir ba4af1372c squashmigrations 2015-06-12 16:46:50 +02:00
Valentin Samir 942f16a347 list_display for User admin model 2015-06-12 16:37:50 +02:00
Valentin Samir 365cfd4279 oops 2015-06-11 23:40:28 +02:00
Valentin Samir 77fc5b5988 Compatibility with different session backend + admin layout 2015-06-11 23:04:26 +02:00
Valentin Samir 245086f6ef By session logout 2015-06-09 22:04:41 +02:00
Valentin Samir 41fcc06200 MysqlAuthUser use return username for case 2015-06-09 16:42:28 +02:00
Valentin Samir 1ada840bdc Possibility to specify a single log out callback 2015-06-08 18:22:10 +02:00
Valentin Samir a4ff5c3d64 Extended validity for PGT 2015-06-08 02:51:22 +02:00
Valentin Samir 8fe1738183 noop 2015-06-07 23:50:25 +02:00
Valentin Samir 277788e593 Generate new LT only then the previous has been used 2015-06-07 23:46:32 +02:00
Valentin Samir fe8c74ba08 User attribut may not exist 2015-06-07 17:12:04 +02:00
Valentin Samir aa5bb7ef72 Use url parameter on logout 2015-06-07 16:53:27 +02:00
Valentin Samir 5e54ffcc46 attributes joker 2015-06-07 14:41:27 +02:00
Valentin Samir 6185ec5216 Add Login Ticket to prevent login replay + by ticket len options 2015-06-05 15:44:17 +02:00
Valentin Samir 1695cd24ea filter attributs does not necessary exists 2015-06-05 00:14:56 +02:00
Valentin Samir 02fd557216 ProxyGrantingTicket are never validate bis 2015-06-04 16:48:11 +02:00
Valentin Samir 60013fbfff ProxyGrantingTicket are never validate 2015-06-04 16:45:47 +02:00
Valentin Samir 69935e9761 add restrict_users to service pattern list_display 2015-06-04 16:25:26 +02:00
Valentin Samir cd79935435 so no xml/text header in SLO 2015-06-04 14:48:07 +02:00
Valentin Samir f1fbdd3653 it seems that SLO requests need to be in logoutRequest POST params
cf phpCAS official implementation
2015-06-04 14:39:36 +02:00
Valentin Samir 603b4a8063 Protect the auth view with a shared secret 2015-06-03 18:32:15 +02:00
Valentin Samir cb84936b6c an auth view to validate (username, password, service) by remote service 2015-06-03 18:15:37 +02:00
Valentin Samir 690c2c3b29 some encode stuff 2015-06-03 17:42:25 +02:00
Valentin Samir f73e55b5ce Add a logout template and possibility to redirect to login on logout 2015-06-02 21:06:32 +02:00
Valentin Samir 54f9b7c50c compact xml suite 2015-06-02 00:03:57 +02:00
Valentin Samir 9f29d1ef20 xml compact suite 2015-06-01 23:59:49 +02:00
Valentin Samir 63f0719109 xml compact suite 2015-06-01 23:57:52 +02:00
Valentin Samir 152d43d5dc compact xml suite 2015-06-01 23:55:34 +02:00
Valentin Samir 4cfd29942b compact xml 2015-06-01 23:53:05 +02:00
Valentin Samir 44cbf0f2b8 migration for the previous commit 2015-05-30 19:47:47 +02:00
Valentin Samir b4a5961886 Using fresh user attributs on ticket creation + auth class as string in config 2015-05-30 19:45:59 +02:00
Valentin Samir b6e2a7320b Usage of namespace for / -> /login redirection 2015-05-30 18:58:58 +02:00
Valentin Samir 238d6da2a3 SamlValidation -> SamlValidate 2015-05-29 20:07:53 +02:00
Valentin Samir 5d1ce93e06 fix allow_proxy_ticket 2015-05-29 19:33:42 +02:00
Valentin Samir ec85174fc4 forgotten self in super calls 2015-05-29 19:31:04 +02:00
Valentin Samir ff74a07965 Use only classe view, put ticket prefix as config option 2015-05-29 19:27:54 +02:00
Valentin Samir e1549dd6ff use a LogoutMixin 2015-05-29 16:14:27 +02:00
Valentin Samir a0b1a095e4 Login/Logout view are now class views 2015-05-29 16:11:10 +02:00
Valentin Samir 02872d218f Django command to clean old tickets 2015-05-28 17:30:27 +02:00
Valentin Samir 9a8b724224 add proxy_callback to admin interface 2015-05-28 15:30:51 +02:00
Valentin Samir 4fd4afd9c0 possibility to limit PT delivery by service 2015-05-28 15:27:21 +02:00
Valentin Samir 5ebc5169c3 set IssueInstant and ResponseID on saml error 2015-05-28 15:17:11 +02:00
Valentin Samir 871baaac87 some code refactoring and better error handling on ticket validation 2015-05-28 15:08:57 +02:00
Valentin Samir 7e2917e977 add a single_log_out parametters on Ticket for query optimisation 2015-05-28 14:05:48 +02:00
Valentin Samir c9629f65ae s/SSO/SLO/ 2015-05-28 02:16:24 +02:00
Valentin Samir 2bd2f8d8b3 Update french translation 2015-05-27 23:06:06 +02:00
Valentin Samir f0de5f738b start admin internationalisation 2015-05-27 22:56:20 +02:00
Valentin Samir 54e4314305 Ignore non used parallele requestor for SSO 2015-05-27 22:28:41 +02:00
Valentin Samir bc08402dab make SSO option visible in admin interface 2015-05-27 22:25:22 +02:00
Valentin Samir 2e199e0283 migration for the previous commit 2015-05-27 22:23:47 +02:00
Valentin Samir 54a79dacdd make SSO optional 2015-05-27 22:23:16 +02:00
Valentin Samir 9a4c6b9d7a some cosmetics 2015-05-27 22:18:01 +02:00
Valentin Samir 1fcb0a7110 copyright notice 2015-05-27 22:10:06 +02:00
Valentin Samir ad434a113f Some refactoring 2015-05-27 21:56:39 +02:00
Valentin Samir d173cd6190 proxies add --> append 2015-05-26 16:17:57 +02:00
Valentin Samir cf49573c61 Only SSO upon validated tickets 2015-05-23 21:12:42 +02:00
Valentin Samir 0a3e95ba2b Then redirecting to login, keep service param 2015-05-23 19:57:18 +02:00
Valentin Samir b08d6a3f97 typo 2015-05-23 19:47:54 +02:00
Valentin Samir 1229903dcc redirect to login if user do not exists 2015-05-23 19:47:10 +02:00
Valentin Samir 8e21931cf2 Warn if warn user session variable is not defined 2015-05-23 19:43:21 +02:00
Valentin Samir f9ccd6e540 CHange unique constrain 2015-05-23 19:32:02 +02:00
Valentin Samir f4935711cf add .mo files 2015-05-23 19:05:13 +02:00
Valentin Samir 49ce34758a update translation 2015-05-23 19:03:37 +02:00
Valentin Samir 54aa9c759e Loggin button as primary 2015-05-23 17:09:59 +02:00
Valentin Samir c16bb2d7f0 Redirect to login screen if GET on samlValidate 2015-05-22 19:39:51 +02:00
Valentin Samir f71bd22954 Add samlValidate 2015-05-22 19:31:50 +02:00
Valentin Samir 700e24e4fd Internationalizasion 2015-05-22 17:55:00 +02:00
Valentin Samir 6964821da4 Make session expire on browser close 2015-05-19 18:33:56 +02:00
Valentin Samir 67d7a7dcf5 Forgot the migration file 2015-05-18 23:39:19 +02:00
Valentin Samir 556aa34a3f Bad unique constrain 2015-05-18 23:38:28 +02:00
Valentin Samir 0bc4e89970 Some improvments 2015-05-18 20:30:00 +02:00
Valentin Samir 937fdbb261 Remove some print debug 2015-05-18 02:05:12 +02:00
Valentin Samir 9112e6e475 Some login backends 2015-05-17 23:24:41 +02:00
Valentin Samir db65c3c50f Warning message on service authentication 2015-05-16 23:54:40 +02:00
Valentin Samir 711928d455 Do not warn on initial login and on renew 2015-05-16 23:50:25 +02:00
Valentin Samir 977399f938 bad variable name 2015-05-16 23:48:04 +02:00
Valentin Samir 667483fc49 initial commit 2015-05-16 23:43:46 +02:00