9df1cd2e31
Add javascript login function allow service A to log user to service B via javascript
...
CORS need to be correctly configured if not this can lead to security issues.
Please do not put Access-Control-Allow-Origin: "*".
You can use django-cors-headers to properly configure CORS
2015-11-17 14:50:16 +01:00
ee987f6d00
Remember up to 100 login ticket insted of 1
2015-11-14 01:05:53 +01:00
df9dd5364f
On logout first invalidate all PGTs
2015-11-14 00:21:20 +01:00
0012a8f65d
[logout] Clean sessions variables (actually logout) before sending SLO requests
...
Otherwise some backend may logout before we are actually logged out from the CAS
2015-11-13 23:47:06 +01:00
50781dba18
add some tests
2015-06-21 18:59:37 +02:00
c0d8550120
Add some tests using tox
2015-06-13 00:03:06 +02:00
39557d1942
PEP8
2015-06-12 18:12:35 +02:00
365cfd4279
oops
2015-06-11 23:40:28 +02:00
77fc5b5988
Compatibility with different session backend + admin layout
2015-06-11 23:04:26 +02:00
245086f6ef
By session logout
2015-06-09 22:04:41 +02:00
a4ff5c3d64
Extended validity for PGT
2015-06-08 02:51:22 +02:00
8fe1738183
noop
2015-06-07 23:50:25 +02:00
277788e593
Generate new LT only then the previous has been used
2015-06-07 23:46:32 +02:00
aa5bb7ef72
Use url parameter on logout
2015-06-07 16:53:27 +02:00
6185ec5216
Add Login Ticket to prevent login replay + by ticket len options
2015-06-05 15:44:17 +02:00
603b4a8063
Protect the auth view with a shared secret
2015-06-03 18:32:15 +02:00
cb84936b6c
an auth view to validate (username, password, service) by remote service
2015-06-03 18:15:37 +02:00
f73e55b5ce
Add a logout template and possibility to redirect to login on logout
2015-06-02 21:06:32 +02:00
b4a5961886
Using fresh user attributs on ticket creation + auth class as string in config
2015-05-30 19:45:59 +02:00
238d6da2a3
SamlValidation -> SamlValidate
2015-05-29 20:07:53 +02:00
5d1ce93e06
fix allow_proxy_ticket
2015-05-29 19:33:42 +02:00
ec85174fc4
forgotten self in super calls
2015-05-29 19:31:04 +02:00
ff74a07965
Use only classe view, put ticket prefix as config option
2015-05-29 19:27:54 +02:00
e1549dd6ff
use a LogoutMixin
2015-05-29 16:14:27 +02:00
a0b1a095e4
Login/Logout view are now class views
2015-05-29 16:11:10 +02:00
4fd4afd9c0
possibility to limit PT delivery by service
2015-05-28 15:27:21 +02:00
5ebc5169c3
set IssueInstant and ResponseID on saml error
2015-05-28 15:17:11 +02:00
871baaac87
some code refactoring and better error handling on ticket validation
2015-05-28 15:08:57 +02:00
7e2917e977
add a single_log_out parametters on Ticket for query optimisation
2015-05-28 14:05:48 +02:00
9a4c6b9d7a
some cosmetics
2015-05-27 22:18:01 +02:00
1fcb0a7110
copyright notice
2015-05-27 22:10:06 +02:00
ad434a113f
Some refactoring
2015-05-27 21:56:39 +02:00
d173cd6190
proxies add --> append
2015-05-26 16:17:57 +02:00
0a3e95ba2b
Then redirecting to login, keep service param
2015-05-23 19:57:18 +02:00
b08d6a3f97
typo
2015-05-23 19:47:54 +02:00
1229903dcc
redirect to login if user do not exists
2015-05-23 19:47:10 +02:00
8e21931cf2
Warn if warn user session variable is not defined
2015-05-23 19:43:21 +02:00
c16bb2d7f0
Redirect to login screen if GET on samlValidate
2015-05-22 19:39:51 +02:00
f71bd22954
Add samlValidate
2015-05-22 19:31:50 +02:00
700e24e4fd
Internationalizasion
2015-05-22 17:55:00 +02:00
6964821da4
Make session expire on browser close
2015-05-19 18:33:56 +02:00
0bc4e89970
Some improvments
2015-05-18 20:30:00 +02:00
9112e6e475
Some login backends
2015-05-17 23:24:41 +02:00
db65c3c50f
Warning message on service authentication
2015-05-16 23:54:40 +02:00
711928d455
Do not warn on initial login and on renew
2015-05-16 23:50:25 +02:00
667483fc49
initial commit
2015-05-16 23:43:46 +02:00
Valentin Samir