Commit Graph

457 Commits

Author SHA1 Message Date
Valentin Samir f69801f413 Update README 2015-12-12 17:30:46 +01:00
Valentin Samir 78f4538f6a Update README 2015-12-12 17:26:19 +01:00
Valentin Samir 9fbfe19c55 Add static files, templates and locales 2015-12-12 14:28:19 +01:00
Valentin Samir 16b700d012 Include management commands 2015-12-12 14:23:16 +01:00
Valentin Samir eef9490885 add migrations to package_data 2015-12-12 14:05:37 +01:00
Valentin Samir d0f6ed9ea3 add forgotten migration 2015-12-12 14:00:43 +01:00
Valentin Samir b69769d71a Django 1.9 compatibility 2015-12-12 13:53:21 +01:00
Valentin Samir 90e077dedb typo in setup.cfg 2015-12-12 13:29:41 +01:00
Valentin Samir c268212366 prune .tox in manifest and gitignore dist/ 2015-12-12 13:26:08 +01:00
Valentin Samir a071ad46d7 Update setup.py to be functionnal 2015-12-12 13:07:36 +01:00
Valentin Samir 9dc18675f9 Possibility to logout from all of one user sessions 2015-12-12 12:02:26 +01:00
Valentin Samir bfcf410f26 Put maximum number of parallel SLO requests in config 2015-12-12 12:01:57 +01:00
Valentin Samir 99d27fe197 update translations 2015-12-12 12:01:36 +01:00
Valentin Samir fa6301c873 Add an optional callback to javascript cas login function 2015-12-11 13:29:56 +01:00
Valentin Samir 187da57be1 Add a title to html pages 2015-12-11 13:29:37 +01:00
Valentin Samir 48d5273afb fix infinite redirect then connected to admin panel 2015-12-11 13:29:04 +01:00
Valentin Samir 8da42afd57 Update translations 2015-12-11 13:28:46 +01:00
Valentin Samir f0da070b30 pytthon3 typo 2015-11-20 19:22:04 +01:00
Valentin Samir 6bdff5ac86 Correct some tests 2015-11-20 17:38:03 +01:00
Valentin Samir 7beefa537f Template factorisation 2015-11-20 16:00:26 +01:00
Valentin Samir 9df1cd2e31 Add javascript login function allow service A to log user to service B via javascript
CORS need to be correctly configured if not this can lead to security issues.
Please do not put Access-Control-Allow-Origin: "*".
You can use django-cors-headers to properly configure CORS
2015-11-17 14:50:16 +01:00
Valentin Samir ee987f6d00 Remember up to 100 login ticket insted of 1 2015-11-14 01:05:53 +01:00
Valentin Samir df9dd5364f On logout first invalidate all PGTs 2015-11-14 00:21:20 +01:00
Valentin Samir 0012a8f65d [logout] Clean sessions variables (actually logout) before sending SLO requests
Otherwise some backend may logout before we are actually logged out from the CAS
2015-11-13 23:47:06 +01:00
Valentin Samir 50781dba18 add some tests 2015-06-21 18:59:37 +02:00
Valentin Samir c0d8550120 Add some tests using tox 2015-06-13 00:03:06 +02:00
Valentin Samir 39557d1942 PEP8 2015-06-12 18:12:35 +02:00
Valentin Samir ba4af1372c squashmigrations 2015-06-12 16:46:50 +02:00
Valentin Samir 942f16a347 list_display for User admin model 2015-06-12 16:37:50 +02:00
Valentin Samir 365cfd4279 oops 2015-06-11 23:40:28 +02:00
Valentin Samir 77fc5b5988 Compatibility with different session backend + admin layout 2015-06-11 23:04:26 +02:00
Valentin Samir 245086f6ef By session logout 2015-06-09 22:04:41 +02:00
Valentin Samir 41fcc06200 MysqlAuthUser use return username for case 2015-06-09 16:42:28 +02:00
Valentin Samir 1ada840bdc Possibility to specify a single log out callback 2015-06-08 18:22:10 +02:00
Valentin Samir a4ff5c3d64 Extended validity for PGT 2015-06-08 02:51:22 +02:00
Valentin Samir 8fe1738183 noop 2015-06-07 23:50:25 +02:00
Valentin Samir 277788e593 Generate new LT only then the previous has been used 2015-06-07 23:46:32 +02:00
Valentin Samir fe8c74ba08 User attribut may not exist 2015-06-07 17:12:04 +02:00
Valentin Samir aa5bb7ef72 Use url parameter on logout 2015-06-07 16:53:27 +02:00
Valentin Samir 5e54ffcc46 attributes joker 2015-06-07 14:41:27 +02:00
Valentin Samir 6185ec5216 Add Login Ticket to prevent login replay + by ticket len options 2015-06-05 15:44:17 +02:00
Valentin Samir 1695cd24ea filter attributs does not necessary exists 2015-06-05 00:14:56 +02:00
Valentin Samir 02fd557216 ProxyGrantingTicket are never validate bis 2015-06-04 16:48:11 +02:00
Valentin Samir 60013fbfff ProxyGrantingTicket are never validate 2015-06-04 16:45:47 +02:00
Valentin Samir 69935e9761 add restrict_users to service pattern list_display 2015-06-04 16:25:26 +02:00
Valentin Samir cd79935435 so no xml/text header in SLO 2015-06-04 14:48:07 +02:00
Valentin Samir f1fbdd3653 it seems that SLO requests need to be in logoutRequest POST params
cf phpCAS official implementation
2015-06-04 14:39:36 +02:00
Valentin Samir 603b4a8063 Protect the auth view with a shared secret 2015-06-03 18:32:15 +02:00
Valentin Samir cb84936b6c an auth view to validate (username, password, service) by remote service 2015-06-03 18:15:37 +02:00
Valentin Samir 690c2c3b29 some encode stuff 2015-06-03 17:42:25 +02:00