Commit graph

315 commits

Author SHA1 Message Date
Valentin Samir
166590f264 Full coverage for the login view 2016-06-28 15:59:40 +02:00
Valentin Samir
a4d70d3046 Merge branch 'dev' into federate 2016-06-28 15:29:45 +02:00
Valentin Samir
16fb7b5021 Fix renew request from service 2016-06-28 15:24:50 +02:00
Valentin Samir
434dcf6e4e Correct some codacy errors 2016-06-28 00:48:48 +02:00
Valentin Samir
dedc1e34a2 Fix some style error introduced during the merge 2016-06-28 00:37:18 +02:00
Valentin Samir
32b5627c38 Merge branch 'dev' into federate 2016-06-28 00:34:31 +02:00
Valentin Samir
fc57288c30 Fix some python3 compat and change in test client behaviour in django 1.9 2016-06-28 00:10:36 +02:00
Valentin Samir
bab79c4de5 More unit tests (essentially for the login view) and some docstrings 2016-06-27 23:55:17 +02:00
Valentin Samir
7db3157864 Forgotten return 2016-06-27 14:01:39 +02:00
Valentin Samir
93c2dae96b Add docstrings 2016-06-26 22:07:38 +02:00
Valentin Samir
2fac47f0b1 Add unit test for the utils function check_password 2016-06-26 21:44:41 +02:00
Valentin Samir
ac206d56d6 Add some password check methods to the MySQL auth backend 2016-06-26 20:29:47 +02:00
Valentin Samir
02a566c129 Use constant only caps for constants 2016-06-26 16:13:09 +02:00
Valentin Samir
164e2f5c28 style 2016-06-26 16:02:25 +02:00
Valentin Samir
8303f816df Exclude non test auth from coverage 2016-06-26 15:34:26 +02:00
Valentin Samir
ac5f359063 style 2016-06-26 11:26:19 +02:00
Valentin Samir
3e80a018dd Css style 2016-06-26 11:04:05 +02:00
Valentin Samir
bf7da7e805 More descriptive name for default_app_config 2016-06-26 11:02:57 +02:00
Valentin Samir
03cbab37f4 Javascript style 2016-06-26 11:01:37 +02:00
Valentin Samir
4bb886f083 python3 compatibility 2016-06-24 23:37:24 +02:00
Valentin Samir
0776e371e8 style 2016-06-24 21:23:33 +02:00
Valentin Samir
12201665de Add some dango unit tests 2016-06-24 21:07:19 +02:00
Valentin Samir
5cb25de99f Put test username, password, attributes in settings 2016-06-24 21:06:36 +02:00
Valentin Samir
a0ab47a4ae Allow pgtUrl to be localhost without https 2016-06-24 21:05:43 +02:00
Valentin Samir
6d7300fe43 Add SLO support from federated CAS 2016-06-23 17:18:53 +02:00
Valentin Samir
e820a3a57a Small fixes to cas.py, waiting for upstream merge 2016-06-23 12:14:15 +02:00
Valentin Samir
7a637c7321 verify_ticket(ticket) can return None as attributes 2016-06-23 12:14:02 +02:00
Valentin Samir
d1c5ff4019 Use session to transmist username/ticket from fedeare view to login view
Hence, these parameter are not recorder in the user history, and thus
the user username do not apear anymore in the history. This respect more the
user privacy.
2016-06-22 12:46:18 +02:00
Valentin Samir
8ddf06b82a Merge branch 'master' into federate 2016-06-21 18:04:17 +02:00
Valentin Samir
b96c0ef4c7 Wrap logo on small screens 2016-06-21 18:02:27 +02:00
Valentin Samir
4c5599ea7b Add CAS_FEDERATE_PROVIDERS_LIST to settings parameters 2016-06-21 16:20:25 +02:00
Valentin Samir
3a71cc2cca Add "remember my identity provider" expiry time in a setting parameter 2016-06-21 15:41:43 +02:00
Valentin Samir
bec51755fa fix too many values to unpack in federate.py 2016-06-21 15:31:46 +02:00
Valentin Samir
a00e5d403d Add a verbone names to CAS_FEDERATE_PROVIDERS 2016-06-21 14:46:01 +02:00
Valentin Samir
46cfaa6745 Fix python3 error "'dict_keys' object has no attribute 'sort'" 2016-06-21 09:53:43 +02:00
Valentin Samir
25ece526a0 Update translation 2016-06-21 00:17:04 +02:00
Valentin Samir
0dba0d1776 Style and federated doc about the manage command cas_clean_federate 2016-06-20 14:20:49 +02:00
Valentin Samir
177da450aa Add headers to cas.py 2016-06-20 14:14:50 +02:00
Valentin Samir
3cef82b475 Hide h1 if auto_submit is enable 2016-06-20 13:51:40 +02:00
Valentin Samir
63a041463d No need for a different template for federated login 2016-06-20 13:38:50 +02:00
Valentin Samir
a209b06df0 Merge branch 'master' into federate 2016-06-20 13:36:30 +02:00
Valentin Samir
c7ac3bee7a Add a h1 to default templates and a logo 2016-06-20 13:31:59 +02:00
Valentin Samir
e8a587f48a Disable federated auth if CAS_FEDERATE is False 2016-06-19 13:00:28 +02:00
Valentin Samir
5cf820e44f Add a command to clean old federated users 2016-06-19 13:00:09 +02:00
Valentin Samir
efdd97ec07 Test for CAS federation 2016-06-17 19:28:49 +02:00
Valentin Samir
3a57ad0835 style 2016-06-03 14:19:43 +02:00
Valentin Samir
77fcd7a24e Forgotten debug variable 2016-06-03 14:17:49 +02:00
Valentin Samir
755f571fd7 Bad button name on warn.html 2016-06-03 14:15:41 +02:00
Valentin Samir
a8cb006989 Merge github.com:nitmir/django-cas-server 2016-06-03 14:12:38 +02:00
Valentin Samir
20f11eca77 Use a POST for "warn me" and only generate the ticket after the "warn me" page 2016-06-03 14:11:07 +02:00
Valentin Samir
a45cb1d38b Typo, bad variable name 2016-05-11 13:06:41 +02:00
Valentin Samir
851f32bfd4 Update translations 2016-05-03 23:55:50 +02:00
Valentin Samir
b4aef57534 Typo: loggin -> log in 2016-05-03 23:51:32 +02:00
Valentin Samir
b0e8d0ee05 Return username in CAS1.0 on the second ligne 2016-04-29 19:57:12 +02:00
Valentin Samir
80b16c002b Evaluate attributes variables in samlValidate.xml 2016-04-29 19:56:32 +02:00
Valentin Samir
6a6fe14c9f Merge github.com:nitmir/django-cas-server 2016-04-28 19:34:49 +02:00
Valentin Samir
b0ae19c36f Add sensitive_post_parameters and sensitive_variables for passwords 2016-04-28 19:33:46 +02:00
Valentin Samir
8a2e44c23c Normalize first migration 2016-03-26 18:30:06 +01:00
Valentin Samir
673f46593a Simplify first migration, should fix #1 2016-03-26 18:29:32 +01:00
Valentin Samir
a3a5979660 [travis] cas_server/models.py:392:17: W503 line break before binary operator 2016-03-18 13:22:00 +01:00
Valentin Samir
93e11befc5 [utils.py] Errors in utils.import_attr are more understandable. 2016-03-18 13:03:23 +01:00
Valentin Samir
10c53a8096 On logout display the number of sessions we are logged out from (none, 1, more). 2015-12-26 15:37:46 +01:00
Valentin Samir
494da62935 Fix MysqlAuthUser when number of results != 1, typo in README 2015-12-19 17:14:02 +01:00
Valentin Samir
f0ecd653d3 Add cosmetic migration 2015-12-18 11:34:45 +01:00
Valentin Samir
85b74bab27 Add verbose name for cas_server app and models 2015-12-17 19:24:10 +01:00
Valentin Samir
20aa4c0d74 Add logging capabilities 2015-12-13 13:57:35 +01:00
Valentin Samir
cd4b9846cd Add a timeout to SLO requests 2015-12-13 13:50:01 +01:00
Valentin Samir
bfad265299 Add a help_text to pattern of ServicePattern 2015-12-12 18:22:02 +01:00
Valentin Samir
78f4538f6a Update README 2015-12-12 17:26:19 +01:00
Valentin Samir
d0f6ed9ea3 add forgotten migration 2015-12-12 14:00:43 +01:00
Valentin Samir
b69769d71a Django 1.9 compatibility 2015-12-12 13:53:21 +01:00
Valentin Samir
9dc18675f9 Possibility to logout from all of one user sessions 2015-12-12 12:02:26 +01:00
Valentin Samir
bfcf410f26 Put maximum number of parallel SLO requests in config 2015-12-12 12:01:57 +01:00
Valentin Samir
99d27fe197 update translations 2015-12-12 12:01:36 +01:00
Valentin Samir
fa6301c873 Add an optional callback to javascript cas login function 2015-12-11 13:29:56 +01:00
Valentin Samir
187da57be1 Add a title to html pages 2015-12-11 13:29:37 +01:00
Valentin Samir
48d5273afb fix infinite redirect then connected to admin panel 2015-12-11 13:29:04 +01:00
Valentin Samir
8da42afd57 Update translations 2015-12-11 13:28:46 +01:00
Valentin Samir
f0da070b30 pytthon3 typo 2015-11-20 19:22:04 +01:00
Valentin Samir
6bdff5ac86 Correct some tests 2015-11-20 17:38:03 +01:00
Valentin Samir
7beefa537f Template factorisation 2015-11-20 16:00:26 +01:00
Valentin Samir
9df1cd2e31 Add javascript login function allow service A to log user to service B via javascript
CORS need to be correctly configured if not this can lead to security issues.
Please do not put Access-Control-Allow-Origin: "*".
You can use django-cors-headers to properly configure CORS
2015-11-17 14:50:16 +01:00
Valentin Samir
ee987f6d00 Remember up to 100 login ticket insted of 1 2015-11-14 01:05:53 +01:00
Valentin Samir
df9dd5364f On logout first invalidate all PGTs 2015-11-14 00:21:20 +01:00
Valentin Samir
0012a8f65d [logout] Clean sessions variables (actually logout) before sending SLO requests
Otherwise some backend may logout before we are actually logged out from the CAS
2015-11-13 23:47:06 +01:00
Valentin Samir
50781dba18 add some tests 2015-06-21 18:59:37 +02:00
Valentin Samir
c0d8550120 Add some tests using tox 2015-06-13 00:03:06 +02:00
Valentin Samir
39557d1942 PEP8 2015-06-12 18:12:35 +02:00
Valentin Samir
ba4af1372c squashmigrations 2015-06-12 16:46:50 +02:00
Valentin Samir
942f16a347 list_display for User admin model 2015-06-12 16:37:50 +02:00
Valentin Samir
365cfd4279 oops 2015-06-11 23:40:28 +02:00
Valentin Samir
77fc5b5988 Compatibility with different session backend + admin layout 2015-06-11 23:04:26 +02:00
Valentin Samir
245086f6ef By session logout 2015-06-09 22:04:41 +02:00
Valentin Samir
41fcc06200 MysqlAuthUser use return username for case 2015-06-09 16:42:28 +02:00
Valentin Samir
1ada840bdc Possibility to specify a single log out callback 2015-06-08 18:22:10 +02:00
Valentin Samir
a4ff5c3d64 Extended validity for PGT 2015-06-08 02:51:22 +02:00
Valentin Samir
8fe1738183 noop 2015-06-07 23:50:25 +02:00
Valentin Samir
277788e593 Generate new LT only then the previous has been used 2015-06-07 23:46:32 +02:00
Valentin Samir
fe8c74ba08 User attribut may not exist 2015-06-07 17:12:04 +02:00
Valentin Samir
aa5bb7ef72 Use url parameter on logout 2015-06-07 16:53:27 +02:00
Valentin Samir
5e54ffcc46 attributes joker 2015-06-07 14:41:27 +02:00
Valentin Samir
6185ec5216 Add Login Ticket to prevent login replay + by ticket len options 2015-06-05 15:44:17 +02:00
Valentin Samir
1695cd24ea filter attributs does not necessary exists 2015-06-05 00:14:56 +02:00
Valentin Samir
02fd557216 ProxyGrantingTicket are never validate bis 2015-06-04 16:48:11 +02:00
Valentin Samir
60013fbfff ProxyGrantingTicket are never validate 2015-06-04 16:45:47 +02:00
Valentin Samir
69935e9761 add restrict_users to service pattern list_display 2015-06-04 16:25:26 +02:00
Valentin Samir
cd79935435 so no xml/text header in SLO 2015-06-04 14:48:07 +02:00
Valentin Samir
f1fbdd3653 it seems that SLO requests need to be in logoutRequest POST params
cf phpCAS official implementation
2015-06-04 14:39:36 +02:00
Valentin Samir
603b4a8063 Protect the auth view with a shared secret 2015-06-03 18:32:15 +02:00
Valentin Samir
cb84936b6c an auth view to validate (username, password, service) by remote service 2015-06-03 18:15:37 +02:00
Valentin Samir
690c2c3b29 some encode stuff 2015-06-03 17:42:25 +02:00
Valentin Samir
f73e55b5ce Add a logout template and possibility to redirect to login on logout 2015-06-02 21:06:32 +02:00
Valentin Samir
54f9b7c50c compact xml suite 2015-06-02 00:03:57 +02:00
Valentin Samir
9f29d1ef20 xml compact suite 2015-06-01 23:59:49 +02:00
Valentin Samir
63f0719109 xml compact suite 2015-06-01 23:57:52 +02:00
Valentin Samir
152d43d5dc compact xml suite 2015-06-01 23:55:34 +02:00
Valentin Samir
4cfd29942b compact xml 2015-06-01 23:53:05 +02:00
Valentin Samir
44cbf0f2b8 migration for the previous commit 2015-05-30 19:47:47 +02:00
Valentin Samir
b4a5961886 Using fresh user attributs on ticket creation + auth class as string in config 2015-05-30 19:45:59 +02:00
Valentin Samir
b6e2a7320b Usage of namespace for / -> /login redirection 2015-05-30 18:58:58 +02:00
Valentin Samir
238d6da2a3 SamlValidation -> SamlValidate 2015-05-29 20:07:53 +02:00
Valentin Samir
5d1ce93e06 fix allow_proxy_ticket 2015-05-29 19:33:42 +02:00
Valentin Samir
ec85174fc4 forgotten self in super calls 2015-05-29 19:31:04 +02:00
Valentin Samir
ff74a07965 Use only classe view, put ticket prefix as config option 2015-05-29 19:27:54 +02:00
Valentin Samir
e1549dd6ff use a LogoutMixin 2015-05-29 16:14:27 +02:00
Valentin Samir
a0b1a095e4 Login/Logout view are now class views 2015-05-29 16:11:10 +02:00
Valentin Samir
02872d218f Django command to clean old tickets 2015-05-28 17:30:27 +02:00
Valentin Samir
9a8b724224 add proxy_callback to admin interface 2015-05-28 15:30:51 +02:00
Valentin Samir
4fd4afd9c0 possibility to limit PT delivery by service 2015-05-28 15:27:21 +02:00
Valentin Samir
5ebc5169c3 set IssueInstant and ResponseID on saml error 2015-05-28 15:17:11 +02:00
Valentin Samir
871baaac87 some code refactoring and better error handling on ticket validation 2015-05-28 15:08:57 +02:00
Valentin Samir
7e2917e977 add a single_log_out parametters on Ticket for query optimisation 2015-05-28 14:05:48 +02:00
Valentin Samir
c9629f65ae s/SSO/SLO/ 2015-05-28 02:16:24 +02:00
Valentin Samir
2bd2f8d8b3 Update french translation 2015-05-27 23:06:06 +02:00
Valentin Samir
f0de5f738b start admin internationalisation 2015-05-27 22:56:20 +02:00
Valentin Samir
54e4314305 Ignore non used parallele requestor for SSO 2015-05-27 22:28:41 +02:00
Valentin Samir
bc08402dab make SSO option visible in admin interface 2015-05-27 22:25:22 +02:00
Valentin Samir
2e199e0283 migration for the previous commit 2015-05-27 22:23:47 +02:00
Valentin Samir
54a79dacdd make SSO optional 2015-05-27 22:23:16 +02:00
Valentin Samir
9a4c6b9d7a some cosmetics 2015-05-27 22:18:01 +02:00
Valentin Samir
1fcb0a7110 copyright notice 2015-05-27 22:10:06 +02:00
Valentin Samir
ad434a113f Some refactoring 2015-05-27 21:56:39 +02:00
Valentin Samir
d173cd6190 proxies add --> append 2015-05-26 16:17:57 +02:00
Valentin Samir
cf49573c61 Only SSO upon validated tickets 2015-05-23 21:12:42 +02:00
Valentin Samir
0a3e95ba2b Then redirecting to login, keep service param 2015-05-23 19:57:18 +02:00
Valentin Samir
b08d6a3f97 typo 2015-05-23 19:47:54 +02:00
Valentin Samir
1229903dcc redirect to login if user do not exists 2015-05-23 19:47:10 +02:00
Valentin Samir
8e21931cf2 Warn if warn user session variable is not defined 2015-05-23 19:43:21 +02:00
Valentin Samir
f9ccd6e540 CHange unique constrain 2015-05-23 19:32:02 +02:00
Valentin Samir
f4935711cf add .mo files 2015-05-23 19:05:13 +02:00
Valentin Samir
49ce34758a update translation 2015-05-23 19:03:37 +02:00
Valentin Samir
54aa9c759e Loggin button as primary 2015-05-23 17:09:59 +02:00
Valentin Samir
c16bb2d7f0 Redirect to login screen if GET on samlValidate 2015-05-22 19:39:51 +02:00
Valentin Samir
f71bd22954 Add samlValidate 2015-05-22 19:31:50 +02:00
Valentin Samir
700e24e4fd Internationalizasion 2015-05-22 17:55:00 +02:00
Valentin Samir
6964821da4 Make session expire on browser close 2015-05-19 18:33:56 +02:00
Valentin Samir
67d7a7dcf5 Forgot the migration file 2015-05-18 23:39:19 +02:00
Valentin Samir
556aa34a3f Bad unique constrain 2015-05-18 23:38:28 +02:00
Valentin Samir
0bc4e89970 Some improvments 2015-05-18 20:30:00 +02:00
Valentin Samir
937fdbb261 Remove some print debug 2015-05-18 02:05:12 +02:00
Valentin Samir
9112e6e475 Some login backends 2015-05-17 23:24:41 +02:00
Valentin Samir
db65c3c50f Warning message on service authentication 2015-05-16 23:54:40 +02:00
Valentin Samir
711928d455 Do not warn on initial login and on renew 2015-05-16 23:50:25 +02:00
Valentin Samir
977399f938 bad variable name 2015-05-16 23:48:04 +02:00
Valentin Samir
667483fc49 initial commit 2015-05-16 23:43:46 +02:00