Commit graph

91 commits

Author SHA1 Message Date
Valentin Samir
b45f8df09e Remove english "translation" and use full english text in the sources. Update french translation. 2016-07-30 01:34:43 +02:00
Valentin Samir
34118833bf Display an error message on bad response from identity provider in federate mode. fix #7.
If the identity provider CAS do not return an XML document as specified on ticket validation,
an XML parsing error is raised. We now catch it and display a message to the user.
2016-07-29 16:35:21 +02:00
Valentin Samir
d3b4e23027 Keep LoginTicket list upon fail authentication
It prevent the next login attemps to fail because of bad LT
2016-07-24 22:57:34 +02:00
Valentin Samir
232aafcace Factorize some code 2016-07-23 18:45:31 +02:00
Valentin Samir
4127af0db1 Update doc 2016-07-23 18:42:31 +02:00
Valentin Samir
cec0cadb7a Add some docs using sphinx autodoc 2016-07-20 18:29:00 +02:00
Valentin Samir
502135d6ca Fix bug: the renewing authentication, it is ok for the service to not require renew 2016-07-06 13:16:31 +02:00
Valentin Samir
6b3b280d31 Add some logging and only permit backend CAS auth if the user is not already authenticated 2016-07-04 22:54:15 +02:00
Valentin Samir
aa433d3c58 Use django admin application to add/modif identty providers when CAS_FEDERATE is True 2016-07-04 17:23:11 +02:00
Valentin Samir
9909699012 Update sime legal headers 2016-07-03 18:11:48 +02:00
Valentin Samir
8e5b75e090 Add some docstrings 2016-07-03 17:54:11 +02:00
Valentin Samir
7cc3ba689f Correct some code style errors and remove some forgotten debug lines 2016-07-03 14:19:39 +02:00
Valentin Samir
90daf3d2a0 Add unit tests for when CAS_FEDERATE is True
Also fix some unicode related bugs
2016-07-03 13:53:12 +02:00
Valentin Samir
63f5b2cabf Merge branch 'master' into federate 2016-07-01 16:44:22 +02:00
Valentin Samir
219171fe41 Set legals headers 2016-07-01 00:02:46 +02:00
Valentin Samir
2515c3a15d Disabling ajax login by default 2016-06-30 18:57:53 +02:00
Valentin Samir
e5efdadde0 Full coverage for saml + split tests 2016-06-29 17:10:41 +02:00
Valentin Samir
8edf896fa5 Remove some duplicate from tests code, full coverage for prowy view 2016-06-29 00:01:51 +02:00
Valentin Samir
44acd005ee Full coverage for view validateService 2016-06-28 18:58:39 +02:00
Valentin Samir
6d610d5aa6 Full coverage for validate view 2016-06-28 17:46:59 +02:00
Valentin Samir
a4d70d3046 Merge branch 'dev' into federate 2016-06-28 15:29:45 +02:00
Valentin Samir
16fb7b5021 Fix renew request from service 2016-06-28 15:24:50 +02:00
Valentin Samir
434dcf6e4e Correct some codacy errors 2016-06-28 00:48:48 +02:00
Valentin Samir
32b5627c38 Merge branch 'dev' into federate 2016-06-28 00:34:31 +02:00
Valentin Samir
bab79c4de5 More unit tests (essentially for the login view) and some docstrings 2016-06-27 23:55:17 +02:00
Valentin Samir
164e2f5c28 style 2016-06-26 16:02:25 +02:00
Valentin Samir
ac5f359063 style 2016-06-26 11:26:19 +02:00
Valentin Samir
a0ab47a4ae Allow pgtUrl to be localhost without https 2016-06-24 21:05:43 +02:00
Valentin Samir
6d7300fe43 Add SLO support from federated CAS 2016-06-23 17:18:53 +02:00
Valentin Samir
d1c5ff4019 Use session to transmist username/ticket from fedeare view to login view
Hence, these parameter are not recorder in the user history, and thus
the user username do not apear anymore in the history. This respect more the
user privacy.
2016-06-22 12:46:18 +02:00
Valentin Samir
3a71cc2cca Add "remember my identity provider" expiry time in a setting parameter 2016-06-21 15:41:43 +02:00
Valentin Samir
63a041463d No need for a different template for federated login 2016-06-20 13:38:50 +02:00
Valentin Samir
a209b06df0 Merge branch 'master' into federate 2016-06-20 13:36:30 +02:00
Valentin Samir
c7ac3bee7a Add a h1 to default templates and a logo 2016-06-20 13:31:59 +02:00
Valentin Samir
e8a587f48a Disable federated auth if CAS_FEDERATE is False 2016-06-19 13:00:28 +02:00
Valentin Samir
efdd97ec07 Test for CAS federation 2016-06-17 19:28:49 +02:00
Valentin Samir
3a57ad0835 style 2016-06-03 14:19:43 +02:00
Valentin Samir
20f11eca77 Use a POST for "warn me" and only generate the ticket after the "warn me" page 2016-06-03 14:11:07 +02:00
Valentin Samir
b0e8d0ee05 Return username in CAS1.0 on the second ligne 2016-04-29 19:57:12 +02:00
Valentin Samir
10c53a8096 On logout display the number of sessions we are logged out from (none, 1, more). 2015-12-26 15:37:46 +01:00
Valentin Samir
20aa4c0d74 Add logging capabilities 2015-12-13 13:57:35 +01:00
Valentin Samir
9dc18675f9 Possibility to logout from all of one user sessions 2015-12-12 12:02:26 +01:00
Valentin Samir
48d5273afb fix infinite redirect then connected to admin panel 2015-12-11 13:29:04 +01:00
Valentin Samir
f0da070b30 pytthon3 typo 2015-11-20 19:22:04 +01:00
Valentin Samir
6bdff5ac86 Correct some tests 2015-11-20 17:38:03 +01:00
Valentin Samir
9df1cd2e31 Add javascript login function allow service A to log user to service B via javascript
CORS need to be correctly configured if not this can lead to security issues.
Please do not put Access-Control-Allow-Origin: "*".
You can use django-cors-headers to properly configure CORS
2015-11-17 14:50:16 +01:00
Valentin Samir
ee987f6d00 Remember up to 100 login ticket insted of 1 2015-11-14 01:05:53 +01:00
Valentin Samir
df9dd5364f On logout first invalidate all PGTs 2015-11-14 00:21:20 +01:00
Valentin Samir
0012a8f65d [logout] Clean sessions variables (actually logout) before sending SLO requests
Otherwise some backend may logout before we are actually logged out from the CAS
2015-11-13 23:47:06 +01:00
Valentin Samir
50781dba18 add some tests 2015-06-21 18:59:37 +02:00