Commit Graph

84 Commits

Author SHA1 Message Date
Valentin Samir
9df1cd2e31 Add javascript login function allow service A to log user to service B via javascript
CORS need to be correctly configured if not this can lead to security issues.
Please do not put Access-Control-Allow-Origin: "*".
You can use django-cors-headers to properly configure CORS
2015-11-17 14:50:16 +01:00
Valentin Samir
ee987f6d00 Remember up to 100 login ticket insted of 1 2015-11-14 01:05:53 +01:00
Valentin Samir
df9dd5364f On logout first invalidate all PGTs 2015-11-14 00:21:20 +01:00
Valentin Samir
0012a8f65d [logout] Clean sessions variables (actually logout) before sending SLO requests
Otherwise some backend may logout before we are actually logged out from the CAS
2015-11-13 23:47:06 +01:00
Valentin Samir
50781dba18 add some tests 2015-06-21 18:59:37 +02:00
Valentin Samir
c0d8550120 Add some tests using tox 2015-06-13 00:03:06 +02:00
Valentin Samir
39557d1942 PEP8 2015-06-12 18:12:35 +02:00
Valentin Samir
ba4af1372c squashmigrations 2015-06-12 16:46:50 +02:00
Valentin Samir
942f16a347 list_display for User admin model 2015-06-12 16:37:50 +02:00
Valentin Samir
365cfd4279 oops 2015-06-11 23:40:28 +02:00
Valentin Samir
77fc5b5988 Compatibility with different session backend + admin layout 2015-06-11 23:04:26 +02:00
Valentin Samir
245086f6ef By session logout 2015-06-09 22:04:41 +02:00
Valentin Samir
41fcc06200 MysqlAuthUser use return username for case 2015-06-09 16:42:28 +02:00
Valentin Samir
1ada840bdc Possibility to specify a single log out callback 2015-06-08 18:22:10 +02:00
Valentin Samir
a4ff5c3d64 Extended validity for PGT 2015-06-08 02:51:22 +02:00
Valentin Samir
8fe1738183 noop 2015-06-07 23:50:25 +02:00
Valentin Samir
277788e593 Generate new LT only then the previous has been used 2015-06-07 23:46:32 +02:00
Valentin Samir
fe8c74ba08 User attribut may not exist 2015-06-07 17:12:04 +02:00
Valentin Samir
aa5bb7ef72 Use url parameter on logout 2015-06-07 16:53:27 +02:00
Valentin Samir
5e54ffcc46 attributes joker 2015-06-07 14:41:27 +02:00
Valentin Samir
6185ec5216 Add Login Ticket to prevent login replay + by ticket len options 2015-06-05 15:44:17 +02:00
Valentin Samir
1695cd24ea filter attributs does not necessary exists 2015-06-05 00:14:56 +02:00
Valentin Samir
02fd557216 ProxyGrantingTicket are never validate bis 2015-06-04 16:48:11 +02:00
Valentin Samir
60013fbfff ProxyGrantingTicket are never validate 2015-06-04 16:45:47 +02:00
Valentin Samir
69935e9761 add restrict_users to service pattern list_display 2015-06-04 16:25:26 +02:00
Valentin Samir
cd79935435 so no xml/text header in SLO 2015-06-04 14:48:07 +02:00
Valentin Samir
f1fbdd3653 it seems that SLO requests need to be in logoutRequest POST params
cf phpCAS official implementation
2015-06-04 14:39:36 +02:00
Valentin Samir
603b4a8063 Protect the auth view with a shared secret 2015-06-03 18:32:15 +02:00
Valentin Samir
cb84936b6c an auth view to validate (username, password, service) by remote service 2015-06-03 18:15:37 +02:00
Valentin Samir
690c2c3b29 some encode stuff 2015-06-03 17:42:25 +02:00
Valentin Samir
f73e55b5ce Add a logout template and possibility to redirect to login on logout 2015-06-02 21:06:32 +02:00
Valentin Samir
54f9b7c50c compact xml suite 2015-06-02 00:03:57 +02:00
Valentin Samir
9f29d1ef20 xml compact suite 2015-06-01 23:59:49 +02:00
Valentin Samir
63f0719109 xml compact suite 2015-06-01 23:57:52 +02:00
Valentin Samir
152d43d5dc compact xml suite 2015-06-01 23:55:34 +02:00
Valentin Samir
4cfd29942b compact xml 2015-06-01 23:53:05 +02:00
Valentin Samir
44cbf0f2b8 migration for the previous commit 2015-05-30 19:47:47 +02:00
Valentin Samir
b4a5961886 Using fresh user attributs on ticket creation + auth class as string in config 2015-05-30 19:45:59 +02:00
Valentin Samir
b6e2a7320b Usage of namespace for / -> /login redirection 2015-05-30 18:58:58 +02:00
Valentin Samir
238d6da2a3 SamlValidation -> SamlValidate 2015-05-29 20:07:53 +02:00
Valentin Samir
5d1ce93e06 fix allow_proxy_ticket 2015-05-29 19:33:42 +02:00
Valentin Samir
ec85174fc4 forgotten self in super calls 2015-05-29 19:31:04 +02:00
Valentin Samir
ff74a07965 Use only classe view, put ticket prefix as config option 2015-05-29 19:27:54 +02:00
Valentin Samir
e1549dd6ff use a LogoutMixin 2015-05-29 16:14:27 +02:00
Valentin Samir
a0b1a095e4 Login/Logout view are now class views 2015-05-29 16:11:10 +02:00
Valentin Samir
02872d218f Django command to clean old tickets 2015-05-28 17:30:27 +02:00
Valentin Samir
9a8b724224 add proxy_callback to admin interface 2015-05-28 15:30:51 +02:00
Valentin Samir
4fd4afd9c0 possibility to limit PT delivery by service 2015-05-28 15:27:21 +02:00
Valentin Samir
5ebc5169c3 set IssueInstant and ResponseID on saml error 2015-05-28 15:17:11 +02:00
Valentin Samir
871baaac87 some code refactoring and better error handling on ticket validation 2015-05-28 15:08:57 +02:00