Valentin Samir
9df1cd2e31
Add javascript login function allow service A to log user to service B via javascript
...
CORS need to be correctly configured if not this can lead to security issues.
Please do not put Access-Control-Allow-Origin: "*".
You can use django-cors-headers to properly configure CORS
2015-11-17 14:50:16 +01:00
Valentin Samir
ee987f6d00
Remember up to 100 login ticket insted of 1
2015-11-14 01:05:53 +01:00
Valentin Samir
df9dd5364f
On logout first invalidate all PGTs
2015-11-14 00:21:20 +01:00
Valentin Samir
0012a8f65d
[logout] Clean sessions variables (actually logout) before sending SLO requests
...
Otherwise some backend may logout before we are actually logged out from the CAS
2015-11-13 23:47:06 +01:00
Valentin Samir
50781dba18
add some tests
2015-06-21 18:59:37 +02:00
Valentin Samir
c0d8550120
Add some tests using tox
2015-06-13 00:03:06 +02:00
Valentin Samir
39557d1942
PEP8
2015-06-12 18:12:35 +02:00
Valentin Samir
ba4af1372c
squashmigrations
2015-06-12 16:46:50 +02:00
Valentin Samir
942f16a347
list_display for User admin model
2015-06-12 16:37:50 +02:00
Valentin Samir
365cfd4279
oops
2015-06-11 23:40:28 +02:00
Valentin Samir
77fc5b5988
Compatibility with different session backend + admin layout
2015-06-11 23:04:26 +02:00
Valentin Samir
245086f6ef
By session logout
2015-06-09 22:04:41 +02:00
Valentin Samir
41fcc06200
MysqlAuthUser use return username for case
2015-06-09 16:42:28 +02:00
Valentin Samir
1ada840bdc
Possibility to specify a single log out callback
2015-06-08 18:22:10 +02:00
Valentin Samir
a4ff5c3d64
Extended validity for PGT
2015-06-08 02:51:22 +02:00
Valentin Samir
8fe1738183
noop
2015-06-07 23:50:25 +02:00
Valentin Samir
277788e593
Generate new LT only then the previous has been used
2015-06-07 23:46:32 +02:00
Valentin Samir
fe8c74ba08
User attribut may not exist
2015-06-07 17:12:04 +02:00
Valentin Samir
aa5bb7ef72
Use url parameter on logout
2015-06-07 16:53:27 +02:00
Valentin Samir
5e54ffcc46
attributes joker
2015-06-07 14:41:27 +02:00
Valentin Samir
6185ec5216
Add Login Ticket to prevent login replay + by ticket len options
2015-06-05 15:44:17 +02:00
Valentin Samir
1695cd24ea
filter attributs does not necessary exists
2015-06-05 00:14:56 +02:00
Valentin Samir
02fd557216
ProxyGrantingTicket are never validate bis
2015-06-04 16:48:11 +02:00
Valentin Samir
60013fbfff
ProxyGrantingTicket are never validate
2015-06-04 16:45:47 +02:00
Valentin Samir
69935e9761
add restrict_users to service pattern list_display
2015-06-04 16:25:26 +02:00
Valentin Samir
cd79935435
so no xml/text header in SLO
2015-06-04 14:48:07 +02:00
Valentin Samir
f1fbdd3653
it seems that SLO requests need to be in logoutRequest POST params
...
cf phpCAS official implementation
2015-06-04 14:39:36 +02:00
Valentin Samir
603b4a8063
Protect the auth view with a shared secret
2015-06-03 18:32:15 +02:00
Valentin Samir
cb84936b6c
an auth view to validate (username, password, service) by remote service
2015-06-03 18:15:37 +02:00
Valentin Samir
690c2c3b29
some encode stuff
2015-06-03 17:42:25 +02:00
Valentin Samir
f73e55b5ce
Add a logout template and possibility to redirect to login on logout
2015-06-02 21:06:32 +02:00
Valentin Samir
54f9b7c50c
compact xml suite
2015-06-02 00:03:57 +02:00
Valentin Samir
9f29d1ef20
xml compact suite
2015-06-01 23:59:49 +02:00
Valentin Samir
63f0719109
xml compact suite
2015-06-01 23:57:52 +02:00
Valentin Samir
152d43d5dc
compact xml suite
2015-06-01 23:55:34 +02:00
Valentin Samir
4cfd29942b
compact xml
2015-06-01 23:53:05 +02:00
Valentin Samir
44cbf0f2b8
migration for the previous commit
2015-05-30 19:47:47 +02:00
Valentin Samir
b4a5961886
Using fresh user attributs on ticket creation + auth class as string in config
2015-05-30 19:45:59 +02:00
Valentin Samir
b6e2a7320b
Usage of namespace for / -> /login redirection
2015-05-30 18:58:58 +02:00
Valentin Samir
238d6da2a3
SamlValidation -> SamlValidate
2015-05-29 20:07:53 +02:00
Valentin Samir
5d1ce93e06
fix allow_proxy_ticket
2015-05-29 19:33:42 +02:00
Valentin Samir
ec85174fc4
forgotten self in super calls
2015-05-29 19:31:04 +02:00
Valentin Samir
ff74a07965
Use only classe view, put ticket prefix as config option
2015-05-29 19:27:54 +02:00
Valentin Samir
e1549dd6ff
use a LogoutMixin
2015-05-29 16:14:27 +02:00
Valentin Samir
a0b1a095e4
Login/Logout view are now class views
2015-05-29 16:11:10 +02:00
Valentin Samir
02872d218f
Django command to clean old tickets
2015-05-28 17:30:27 +02:00
Valentin Samir
9a8b724224
add proxy_callback to admin interface
2015-05-28 15:30:51 +02:00
Valentin Samir
4fd4afd9c0
possibility to limit PT delivery by service
2015-05-28 15:27:21 +02:00
Valentin Samir
5ebc5169c3
set IssueInstant and ResponseID on saml error
2015-05-28 15:17:11 +02:00
Valentin Samir
871baaac87
some code refactoring and better error handling on ticket validation
2015-05-28 15:08:57 +02:00