Commit graph

1660 commits

Author SHA1 Message Date
Jens Langhammer 195d8fe71f core: move name field to base Provider 2020-10-03 20:05:16 +02:00
Jens Langhammer b0602a3215 admin: implement search for all views
see #253
2020-10-03 19:32:01 +02:00
Jens Langhammer 0150a5c58c admin: add SearchListMixin mixin and partial template 2020-10-03 19:05:20 +02:00
Jens Langhammer b35d27c83e admin: fix pagination template, ensure template is placed correctly in footer 2020-10-03 17:50:17 +02:00
Jens Langhammer 801bb90806 root: lock pyright version 2020-10-03 15:34:53 +02:00
Jens Langhammer 55a83abb26 *: remove deprecated providing_args 2020-10-02 11:18:14 +02:00
Jens Langhammer 247015e955 stages/otp_*: Remove duplicate validation for OTP Codes 2020-10-02 10:30:43 +02:00
Jens Langhammer e9a1a18ba3 providers/oauth2: ensure that when rs256 is selected, a certificate key pair is selected 2020-10-01 20:01:45 +02:00
Jens Langhammer 6cd9edd38a providers/oauth2: add missing token_validity field to Forms and API 2020-10-01 20:01:28 +02:00
Jens Langhammer 9b5f9167cd root: always enable dbbackup 2020-10-01 13:41:40 +02:00
Jens Langhammer 94eaeb5a60 new release: 0.10.9-stable 2020-10-01 10:24:16 +02:00
Jens Langhammer a5420fe019 providers/saml: lowercase acs URLs before checking
closes #249
2020-10-01 10:04:20 +02:00
Jens Langhammer 2e1849a732 providers/oauth2: lowercase all uris before checking redirect URI
see #249
2020-10-01 10:00:44 +02:00
Jens Langhammer 8f585eca70 stages/identification: replace buggy FilteredSelectMultiple with ArrayFieldSelectMultiple 2020-09-30 23:58:01 +02:00
Jens Langhammer 516455f482 stages/identification: add case_insensitive_matching
closes #248
2020-09-30 23:48:53 +02:00
Jens Langhammer 525d271535 *: apply new black styling 2020-09-30 19:34:22 +02:00
Jens Langhammer c3c525a3f0 lib: re-add Websockets error 2020-09-30 15:55:59 +02:00
Jens Langhammer c0b334eb02 lib: ignore ChannelFull error 2020-09-30 15:40:54 +02:00
Jens Langhammer 03647fa6af new release: 0.10.8-stable 2020-09-30 14:59:02 +02:00
dependabot[bot] a063613f4c
build(deps): bump uvicorn from 0.11.8 to 0.12.0 (#241)
* build(deps): bump uvicorn from 0.11.8 to 0.12.0

Bumps [uvicorn](https://github.com/encode/uvicorn) from 0.11.8 to 0.12.0.
- [Release notes](https://github.com/encode/uvicorn/releases)
- [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md)
- [Commits](https://github.com/encode/uvicorn/compare/0.11.8...0.12.0)

Signed-off-by: dependabot[bot] <support@github.com>

* lib: remove websockets ignored exception

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
2020-09-30 11:49:59 +02:00
Jens Langhammer 59dbc15be7 core: make group_attributes include user's attributes 2020-09-30 11:39:25 +02:00
Jens Langhammer 9d5dd896f3 providers/proxy: start implementing basic_auth_enabled
see #244
2020-09-30 11:15:22 +02:00
Jens Langhammer 02f5f12089 providers/proxy: use external_url for launch URL, hide setup URLs 2020-09-30 11:14:50 +02:00
Jens Langhammer 90ea6dba90 providers/proxy: add pb_proxy scope for proxy that sends user_attributes 2020-09-30 11:13:59 +02:00
Jens Langhammer 739c66da1c crypto: add tests 2020-09-30 09:12:37 +02:00
dependabot[bot] e8c7cce68f
build(deps): bump @fortawesome/fontawesome-free (#247)
Bumps [@fortawesome/fontawesome-free](https://github.com/FortAwesome/Font-Awesome) from 5.14.0 to 5.15.0.
- [Release notes](https://github.com/FortAwesome/Font-Awesome/releases)
- [Changelog](https://github.com/FortAwesome/Font-Awesome/blob/master/CHANGELOG.md)
- [Commits](https://github.com/FortAwesome/Font-Awesome/compare/5.14.0...5.15.0)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-30 08:57:47 +02:00
Jens Langhammer 760352202e admin: fix get_form_class 2020-09-29 11:42:34 +02:00
Jens Langhammer 9724ded194 policies: change .form() and .serializer() to properties, add tests 2020-09-29 10:32:58 +02:00
Jens Langhammer 5da4ff4ff1 e2e: further cleanup tests, directly navigate to user-settings instead of click 2020-09-29 00:27:58 +02:00
Jens Langhammer e54b98a80e e2e: cleanup tests, remove XPATH selectors 2020-09-28 18:19:46 +02:00
Jens Langhammer bd78087582 root: fix RemovedInDjango40Warning being triggered 2020-09-28 11:47:50 +02:00
Jens Langhammer 8f4e954160 providers/oauth2: rewrite introspection endpoint to allow basic or bearer auth 2020-09-28 11:42:27 +02:00
Jens Langhammer b6d7847eae providers/oauth2: fix token introspection view 2020-09-28 09:04:31 +02:00
Jens Langhammer ad0d339794 flows: add benchmark command 2020-09-27 21:21:30 +02:00
Jens Langhammer d74fa4abbf admin: fix categories in sidebar being collapsible 2020-09-27 18:40:50 +02:00
Jens Langhammer b24938fc6b stages/consent: fix formatting 2020-09-26 21:06:01 +02:00
Jens Langhammer ea1564548c stages/consent: support pending_user from flow 2020-09-26 20:43:41 +02:00
Jens Langhammer 3663c3c8a1 sources/saml: cleanup SLO Implementation 2020-09-26 20:38:38 +02:00
Jens Langhammer 07e20a2950 core: add AuthJsonConsumer to handle websocket authentication 2020-09-26 20:11:04 +02:00
Jens Langhammer 6366d50a0e core: show 'Create Application' button based on perms 2020-09-26 19:54:52 +02:00
Jens Langhammer c3e64df95b new release: 0.10.7-stable 2020-09-26 19:26:12 +02:00
Jens Langhammer c1058c7438 e2e: fix formatting 2020-09-26 18:18:01 +02:00
Jens Langhammer 44b815efae sources/oauth: fix data being sent in body and header for oauth1 2020-09-26 17:43:58 +02:00
Jens Langhammer 64a71a3663 flows: fix planner removing too many stages 2020-09-26 14:58:13 +02:00
Jens Langhammer 7aa89c6d4f flows: fix formatting 2020-09-26 14:19:42 +02:00
Jens Langhammer 7e9d7e5198 flows: fix two stages being removed when reevaluate_marker was enabled 2020-09-26 14:13:10 +02:00
Jens Langhammer 2be6cd70d9 sources/oauth: fix handling of token for do_request 2020-09-26 14:00:48 +02:00
Jens Langhammer 2b9705b33c policies/expression: remove pb_flow_plan, save flow context directly in context 2020-09-26 13:58:32 +02:00
Jens Langhammer 40f1de3b11 admin: load info about latest version in celery task 2020-09-26 02:16:35 +02:00
Jens Langhammer 899c5b63ea admin: add BackSuccessUrlMixin to redirect to correct url after form edit 2020-09-26 02:04:16 +02:00
Jens Langhammer e104c74761 admin: make pagination size configurable 2020-09-26 01:55:40 +02:00
Jens Langhammer 5d46c1ea5a flows: improve strings, ensure default-source-enrollment's first stage has re_evaluate_policies 2020-09-26 01:37:54 +02:00
Jens Langhammer 7d533889bc sources/oauth: fix OAuth1 not working, cleanup 2020-09-26 01:27:33 +02:00
Jens Langhammer d9c2b32cba sources/oauth: cleanup clients, add type annotations 2020-09-26 00:34:57 +02:00
Jens Langhammer 6e4ce8dbaa core: cache user's is_superuser 2020-09-26 00:34:35 +02:00
Jens Langhammer 03d58b439f sources/oauth: separate clients into separate modules 2020-09-25 23:58:58 +02:00
Jens Langhammer bdaf0111c2 stages/password: fix formatting 2020-09-25 21:12:42 +02:00
Jens Langhammer 974c2ddb11 stages/password: fix change_flow being deleted instead of renamed 2020-09-25 20:33:06 +02:00
Jens Langhammer f294791d41 stages/otp_time: fix redirect uri after setup 2020-09-25 19:39:19 +02:00
Jens Langhammer 4ee22f8ec1 stages/otp_static: fix redirect URL after setup, fix stage not being passed to setup 2020-09-25 19:38:51 +02:00
Jens Langhammer 74d3cfbba0 stages/otp_time: show OTP URI as aria-label 2020-09-25 19:03:12 +02:00
Jens Langhammer d278acb83b stages/otp_: fix flows having no title 2020-09-25 18:50:29 +02:00
Jens Langhammer 84da454612 stages/otp_: ensure stage.configure_flow is set 2020-09-25 17:45:13 +02:00
Jens Langhammer 52101007aa e2e: bump chrome version 2020-09-25 17:39:25 +02:00
Jens Langhammer dc57f433fd stages/password: update to use ConfigurableStage 2020-09-25 16:51:22 +02:00
Jens Langhammer 3d4c5b8f4e stages/otp_time: implement configure_flow 2020-09-25 12:56:27 +02:00
Jens Langhammer e66424cc49 stages/otp_static: implement configure_flow 2020-09-25 12:56:14 +02:00
Jens Langhammer 8fa83a8d08 flows: change setup_stage to configure_stage in migration 2020-09-25 12:55:33 +02:00
Jens Langhammer 397892b282 stages/consent: cleanup 2020-09-25 12:49:19 +02:00
Jens Langhammer 7be50c2574 flows: add ConfigurableStage base class and ConfigureFlowInitView 2020-09-25 12:49:19 +02:00
Jens Langhammer 52c4fb431f core: add user.group_attributes 2020-09-24 15:45:58 +02:00
dependabot-preview[bot] 6966c119a7
build(deps): bump codemirror in /passbook/static/static (#231)
Bumps [codemirror](https://github.com/codemirror/CodeMirror) from 5.58.0 to 5.58.1.
- [Release notes](https://github.com/codemirror/CodeMirror/releases)
- [Changelog](https://github.com/codemirror/CodeMirror/blob/master/CHANGELOG.md)
- [Commits](https://github.com/codemirror/CodeMirror/compare/5.58.0...5.58.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-09-24 14:31:49 +02:00
Jens Langhammer 9d93da3d45 providers/proxy: fix formatting 2020-09-23 12:33:33 +02:00
Jens Langhammer 6458b1dbf8 providers/proxy: make upstream SSL Validation configurable 2020-09-23 12:20:14 +02:00
dependabot-preview[bot] 9fd9b2611c
build(deps): bump codemirror in /passbook/static/static (#225)
Bumps [codemirror](https://github.com/codemirror/CodeMirror) from 5.57.0 to 5.58.0.
- [Release notes](https://github.com/codemirror/CodeMirror/releases)
- [Changelog](https://github.com/codemirror/CodeMirror/blob/master/CHANGELOG.md)
- [Commits](https://github.com/codemirror/CodeMirror/compare/5.57.0...5.58.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-09-23 00:29:01 +02:00
Jens Langhammer 464b2cce88 audit: fix model information being saved nested 2020-09-21 22:34:03 +02:00
Jens Langhammer 4eaa46e717 new release: 0.10.6-stable 2020-09-21 22:07:59 +02:00
Jens Langhammer 59e8dca499 sources/ldap: divide connector into password, sync and auth, add unittests for password 2020-09-21 21:40:41 +02:00
Jens Langhammer 945d5bfaf6 *: use Audit custom event action, add SOURCE_LINKED event action 2020-09-21 20:40:45 +02:00
Jens Langhammer dbcdab05ff audit: create audit logs for model creation/updating/deletion 2020-09-21 20:26:30 +02:00
Jens Langhammer e2cc2843d8 core: add X-passbook-id to every request with unique ID 2020-09-21 19:37:44 +02:00
Jens Langhammer 585afd1bcd core: remove migration dependency on ldap 2020-09-21 13:21:03 +02:00
Jens Langhammer 8358574484 audit: remove foreign key to user, save user data as json 2020-09-21 13:20:50 +02:00
Jens Langhammer cbcdaaf532 providers/oauth2: fix creation of new refresh token 2020-09-21 11:48:23 +02:00
Jens Langhammer f99eaa85ac sources/ldap: implement LDAP password validation and syncing 2020-09-21 11:46:35 +02:00
Jens Langhammer 5007a6befe stages/prompt: integrate password comparison when multiple password fields are given 2020-09-21 11:04:31 +02:00
Jens Langhammer 50c75087b8 lifecycle: fix startup logs not being full json 2020-09-21 11:04:31 +02:00
Jens Langhammer c7ca95ff2b new release: 0.10.5-stable 2020-09-20 13:58:33 +02:00
Jens Langhammer 9f403a71ed root: fix IP detection when using multiple reverse proxies 2020-09-20 13:36:23 +02:00
Jens Langhammer f3ee8f7d9c admin: fix permissions not being checked for policybinding list 2020-09-19 23:07:39 +02:00
Jens Langhammer 5fa3729702 audit: fix fields for events from impersonation being swapped 2020-09-19 22:54:36 +02:00
Jens Langhammer 87f44fada4 providers/oauth2: fix refreshtoken being initialised wrong 2020-09-19 22:23:11 +02:00
Jens Langhammer c0026f3e16 admin: move pf-m-success to base css 2020-09-19 21:12:39 +02:00
Jens Langhammer c25eda63ba new release: 0.10.4-stable 2020-09-19 19:40:58 +02:00
Jens Langhammer c90906c968 outposts: fix formatting 2020-09-19 19:12:49 +02:00
Jens Langhammer b04f92c8b4 admin: outposts show should-be version 2020-09-19 19:03:54 +02:00
Jens Langhammer a02fcb0a7a providers/oauth2: use # as separate for code#adfs, check if # exists in response_type and trim 2020-09-19 18:37:50 +02:00
dependabot-preview[bot] c1ea605c7e
build(deps): bump @patternfly/patternfly from 4.35.2 to 4.42.2 in /passbook/static/static (#222)
Bumps [@patternfly/patternfly](https://github.com/patternfly/patternfly) from 4.35.2 to 4.42.2.
- [Release notes](https://github.com/patternfly/patternfly/releases)
- [Changelog](https://github.com/patternfly/patternfly/blob/master/RELEASE-NOTES.md)
- [Commits](https://github.com/patternfly/patternfly/compare/prerelease-v4.35.2...prerelease-v4.42.2)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-09-19 18:30:23 +02:00
Jens Langhammer 116be0b3c0 sources/ldap: add status display to show last sync 2020-09-19 17:50:39 +02:00
Jens Langhammer 438250b3a9 policies: improve wording on denied tempaltes 2020-09-19 15:24:52 +02:00
Jens Langhammer 5e6acee2a5 root: increase limit of max-attributes in pylint 2020-09-19 13:40:23 +02:00
Jens Langhammer 8b4222e7bb providers/proxy: fix formatting 2020-09-19 12:21:31 +02:00
Jens Langhammer 5689f25c39 providers/proxy: add option to skip authentication for paths matching regular expressions 2020-09-19 11:32:04 +02:00
Jens Langhammer 83408b6ae0 stages/password: add failed_attempts_before_cancel to cancel a flow after x failed entries 2020-09-19 02:18:43 +02:00
Jens Langhammer d30abc64d0 flows: improve _full template being used for stage_invalid 2020-09-19 02:15:15 +02:00
Jens Langhammer 4749c3fad0 proxy: improve reconnect logic, send version, properly version proxy 2020-09-19 01:37:08 +02:00
Jens Langhammer 18886697d6 outposts: add support for version checking 2020-09-19 01:34:11 +02:00
Jens Langhammer e75c9e9a79 providers/oauth2: make openid-configuration easily readable 2020-09-19 01:34:11 +02:00
Jens Langhammer 5a3c1137ab providers/oauth2: add more info to configuration modal 2020-09-19 01:34:11 +02:00
Jens Langhammer ddca46e24a outposts: add modal to show setup information 2020-09-19 01:34:11 +02:00
Jens Langhammer 421bd13ddf admin: make YAMLField return empty dict when empty yaml is given 2020-09-19 00:00:55 +02:00
Jens Langhammer 404c9ef753 providers/saml: improve __str__ of SAMLPropertyMapping 2020-09-18 23:50:31 +02:00
Jens Langhammer fe4a0c3b44 core: add impersonation start/end to audit log
also add impersonated user as context to other logs
2020-09-18 23:39:37 +02:00
Jens Langhammer e0c104ee5c providers/oauth2: remove post_logout_redirect_uris 2020-09-18 23:37:40 +02:00
Jens Langhammer 316e6cb17f admin: set default host for outposts based on HTTP host 2020-09-18 21:51:08 +02:00
Jens Langhammer 9d5d99290c outposts: only show proxy providers 2020-09-18 21:50:49 +02:00
Jens Langhammer 20ffe833de admin: fix create link for outposts 2020-09-18 21:28:48 +02:00
Jens Langhammer d4d026bf6a stages/user_write: add migration that removes unintended data 2020-09-18 18:58:07 +02:00
Jens Langhammer dfe093b2b9 stages/user_write: fix unittests 2020-09-18 18:52:19 +02:00
Jens Langhammer 60739e620e stages/user_write: fix formatting 2020-09-18 18:41:11 +02:00
Jens Langhammer d6cc6770b8 stages/user_write: fix data being saved as attributes without intent 2020-09-18 18:15:33 +02:00
Jens Langhammer ddc1022461 stages/user_write: check if session hash should be updated early 2020-09-18 18:15:25 +02:00
Jens Langhammer 2c2226610e providers/oauth2: fix end-session view not working, add tests 2020-09-17 21:55:01 +02:00
Jens Langhammer cba78b4de7 providers/*: fix launch_url not working 2020-09-17 21:53:57 +02:00
Jens Langhammer 1eeb64ee39 docs: fix environment variable for error reporting 2020-09-17 21:22:46 +02:00
Jens Langhammer 22dea62084 root: fix startup log not showing in docker 2020-09-17 21:16:31 +02:00
Jens Langhammer 5ff1dd8426 core: move impersonation to core, add tests, add better permission checks 2020-09-17 16:24:53 +02:00
Jens Langhammer da15a8878f stages/password: improve labelling of LDAP backend 2020-09-17 15:54:48 +02:00
Jens Langhammer bf33828ac1 core: fix overview template for non-rectangular icons 2020-09-17 10:44:10 +02:00
Jens Langhammer 895e7d7393 new release: 0.10.3-stable 2020-09-17 10:10:39 +02:00
Jens Langhammer da3c640343 admin: fix type annotation for latest_version() 2020-09-16 23:54:55 +02:00
Jens Langhammer 4b39c71de0 providers/oauth2: accept token as post param 2020-09-16 23:38:55 +02:00
Jens Langhammer 818f417fd8 providers/oauth2: only send id_token as access_token if ADFS compat mode is enabled 2020-09-16 23:31:03 +02:00
Jens Langhammer f1ccef7f6a e2e: add tests for proxy provider and outposts 2020-09-16 23:22:17 +02:00
Jens Langhammer ea9687c30b core: don't fail migrations if no pbadmin exists 2020-09-15 23:37:39 +02:00
Jens Langhammer 0a5e14a352 core: make is_superuser a group property, remove from user 2020-09-15 23:10:31 +02:00
Jens Langhammer 491dcc1159 sources/ldap: improve default Property Mappings 2020-09-15 21:51:08 +02:00
Jens Langhammer 6292049c74 sources/ldap: add limited support for attributes as object_fields on LDAPPropertyMappings 2020-09-15 21:08:14 +02:00
Jens Langhammer 1e97af772f providers/oauth2: add workaround for vcenter 2020-09-15 20:54:54 +02:00
Jens Langhammer 5c622cd4d2 providers/oauth2: make sub configurable based on hash, username, email and upn 2020-09-15 20:54:42 +02:00
Jens Langhammer 8c604d225b static: update flow background 2020-09-15 16:14:13 +02:00
Jens Langhammer c7daadfb18 core: fix logic error in expired models cleanup 2020-09-15 12:53:02 +02:00
Jens Langhammer 683968c96e sources/ldap: register ldap sources 2020-09-15 12:36:33 +02:00
Jens Langhammer 566ebae065 new release: 0.10.2-stable 2020-09-15 12:04:00 +02:00
Jens Langhammer 8c465b2026 outposts: remove unused import 2020-09-15 11:32:25 +02:00
Jens Langhammer 6b7da71aa8 lib: improve error handling for sentry 2020-09-15 11:29:43 +02:00
Jens Langhammer e95bbfab9a outposts: disable WIP k8s controller 2020-09-15 11:25:59 +02:00
Jens Langhammer 3e13c13619 flows: replace passbook_flows:denied with AccessDenied Reeponse 2020-09-15 09:54:19 +02:00
Jens Langhammer 92f79eb30e policies: add AccessDeniedResponse as general response when access was denied 2020-09-15 09:53:59 +02:00
Jens Langhammer e7472de4bf sources/ldap: sync source on save 2020-09-14 23:35:01 +02:00
Jens Langhammer 494950ac65 admin: fix anonymous user not being removed from user count 2020-09-14 23:19:16 +02:00
Jens Langhammer 4d51295db2 new release: 0.10.1-stable 2020-09-14 23:08:57 +02:00
Jens Langhammer 3bbded3555 docs: remove default password for docker-compose, improve instructions 2020-09-14 23:08:04 +02:00
Jens Langhammer b3262e2a82 docs: add docs for passbook_user_debug 2020-09-14 22:51:50 +02:00
Jens Langhammer 40614a65fc flows: move complete denied view and template to flows 2020-09-14 21:52:43 +02:00
Jens Langhammer 3cf558d594 providers/*: pass policy result objects when access denied 2020-09-14 21:52:25 +02:00
Jens Langhammer 812cc0d2f1 policies: add references for source_policy and source_results 2020-09-14 21:51:59 +02:00
Jens Langhammer e21ed92848 providers/oauth2: ensure flow is cleaned up on error 2020-09-14 18:40:44 +02:00
Jens Langhammer 5184c4b7ef flows: fix FlowNonApplicableException and EmptyFlowException leading to infinite spinners 2020-09-14 18:40:26 +02:00
Jens Langhammer 2c07859b68 core: add automatic launch_url detection based on provider 2020-09-14 18:12:42 +02:00
Jens Langhammer ae6304c05e providers/proxy: fix provider requiring a certificate to be selected 2020-09-14 17:37:06 +02:00
Jens Langhammer 501683e3cb outposts: add tests for permissions 2020-09-14 17:34:07 +02:00
Jens Langhammer cc8afa8706 admin: don't show policy as unbound when used as validation policy 2020-09-14 15:44:33 +02:00
Jens Langhammer 6a669992a8 outposts: fix permissions not being updated when providers are modified 2020-09-14 15:41:02 +02:00
Jens Langhammer 7ea5c22b6c root: fix channels not loading redis connection details 2020-09-14 14:21:43 +02:00
Jens Langhammer c7026407c6 policies: fix type error 2020-09-14 00:28:23 +02:00
Jens Langhammer 810f10edfe providers/oauth2: fix several small implicit flow errors 2020-09-14 00:11:11 +02:00
Jens Langhammer 1c57128f11 providers/oauth2: fix token to code_token 2020-09-13 23:42:45 +02:00
Jens Langhammer 82eade3eb1 new release: 0.10.0-stable 2020-09-13 23:03:38 +02:00
Jens Langhammer bb4e39aab6 docs: add outpost deployment docs, link in outposts list 2020-09-13 22:20:17 +02:00
Jens Langhammer a8744f443c outposts: fix Kubernetes Controller not exporting dicts, secrets not being b64 encoded 2020-09-13 22:19:26 +02:00
Jens Langhammer 7fe9b8f0b4 providers/proxy: add domainless URL Validator 2020-09-13 21:52:34 +02:00
Jens Langhammer 696aa7e5f6 core: fix path to default icon 2020-09-13 20:47:17 +02:00
Jens Langhammer 151374f565 stages/email: fix loading of static files when path is a directory 2020-09-13 18:24:49 +02:00
Jens Langhammer bebeff9f7f root: allow for changing of logo and branding 2020-09-13 17:52:33 +02:00
Jens Langhammer 8b99afa34d stages/email: fix binary files not being encoded correctly 2020-09-13 17:40:13 +02:00
Jens Langhammer b317852e8a static: replace brand.svg with text and font 2020-09-13 17:33:30 +02:00
Jens Langhammer 8e6bb48227 sources/saml: add mitigation for idp-initiated requests 2020-09-13 15:39:25 +02:00
Jens Langhammer 7a4e8af1ae outpost: fix outpost update signal only being sent to outposts connected to the same passbook instance 2020-09-13 14:29:40 +02:00
Jens Langhammer 0161205c82 sources/saml: fix previous request ID being wrongly compared
request ID was compared to request ID not InResponseTo field
2020-09-13 14:00:56 +02:00
Jens Langhammer ca0ba85023 providers/saml: disallow idp-initiated SSO by default and validate Request ID 2020-09-12 00:53:44 +02:00
Jens L 23cccebb96
pytest (#209) 2020-09-11 23:21:11 +02:00
Jens Langhammer 081ac0bcdb root/asgi: hide healthcheck logs from sentry 2020-09-10 17:29:13 +02:00
Jens Langhammer 8a07b349ee root: fix IP detection in ASGI logger, attempt to fix out of order issues 2020-09-10 16:58:25 +02:00
Jens Langhammer b3468bc265 providers/oauth2: fix comparison to undefined ResponseTypes 2020-09-10 16:26:55 +02:00
Jens Langhammer 404f5d7912 new release: 0.10.0-rc6 2020-09-10 14:35:17 +02:00
Jens Langhammer 0b0ba33dce new release: 0.10.0-rc5 2020-09-10 14:24:31 +02:00
Jens Langhammer 17a90adf3e new release: 0.10.0-rc4 2020-09-10 13:17:38 +02:00
Jens Langhammer 7471415e7f new release: 0.10.0-rc3 2020-09-10 13:13:32 +02:00
Jens Langhammer e72000eb06 new release: 0.10.0-rc2 2020-09-10 13:11:34 +02:00
Jens Langhammer 43cb08b433 new release: 0.10.0-rc1 2020-09-10 13:05:12 +02:00
Jens Langhammer 1356a8108b docs: add docs for outposts 2020-09-09 19:34:19 +02:00
Jens Langhammer 349e536d14 flows/tests: add tests to ensure flows in documentation are valid 2020-09-09 17:23:16 +02:00
Jens Langhammer cddc9bc1b7 flows/tests: update transfer tests to use same rollback function as importer 2020-09-09 17:22:44 +02:00
Jens Langhammer 6d27408a10 transfer/exporter: ensure policies are exported before stages, ensure policies for new prompt stages are included 2020-09-09 17:22:24 +02:00
Jens Langhammer 50a5959f6c flows/importer: fix validate writing to database not being reverted 2020-09-09 17:21:43 +02:00
Jens Langhammer 18f42a0edf flows/importer: fix multiple uses of an importer instance causing errors 2020-09-09 17:21:16 +02:00
Jens Langhammer 860ba994a6 policies/api: fix PolicyBinding's target being validated against the wrong pks 2020-09-09 17:20:37 +02:00
Jens Langhammer 1776b72356 stages/prompt: remove PolicyBindingModel from PromptStage *breaking*
This resolves issues caused by the multiple primary keys, but also requires re-creation of the model.
2020-09-09 17:16:43 +02:00
Jens Langhammer 3b6341bf41 flow/transfer: fix pk's not being replaced in lists 2020-09-08 23:01:42 +02:00
Jens Langhammer 3b97389833 asgi: revert ignore lifespan requests, remove healthcheck events from sentry
fixes PASSBOOK-5K
2020-09-08 18:29:01 +02:00
Jens Langhammer 102d536a72 flows: fix incorrect pk being used in FlowStageBinding Form 2020-09-08 18:18:06 +02:00
Jens Langhammer 9712be847c policies/api: fix target returning pbm_uuid instead of proper primary key of the object 2020-09-08 18:05:50 +02:00
Jens Langhammer f0b5e8143e admin: fix flow export view raising error 2020-09-08 16:49:15 +02:00
Jens Langhammer 87b14e8761 flows/planner: optimise db queries during plan building 2020-09-07 11:27:02 +02:00
Jens Langhammer 28893b9695 flows/transfer: fix missing unique fields for PolicyBinding 2020-09-07 11:26:37 +02:00
Jens Langhammer bf4763d946 asgi: ignore lifespan requests, remove healthcheck events from sentry 2020-09-06 16:51:50 +02:00
Jens Langhammer 219e16f8e5 *: use direct sentry Hub for start_span 2020-09-06 16:12:17 +02:00
Jens Langhammer 6ebefc9f17 root: fix some logs not being json 2020-09-06 15:52:54 +02:00
Jens Langhammer dd017e7190 flows: fix exporting and importing for models with multiple unique fields 2020-09-06 01:07:06 +02:00
Jens L 268de20872
Proxy v2 (#189) 2020-09-03 00:04:12 +02:00
Jens Langhammer 14e47f3195 flows: fix default flows not having titles 2020-09-02 13:05:34 +02:00
Jens Langhammer c39d136383 flows: add title field 2020-08-28 15:23:03 +02:00
Jens Langhammer a977184577 flows: export export/import functions in UI 2020-08-28 15:06:25 +02:00
dependabot-preview[bot] b2cb794865
build(deps): bump @patternfly/patternfly in /passbook/static/static (#192)
Bumps [@patternfly/patternfly](https://github.com/patternfly/patternfly) from 4.31.6 to 4.35.2.
- [Release notes](https://github.com/patternfly/patternfly/releases)
- [Changelog](https://github.com/patternfly/patternfly/blob/master/RELEASE-NOTES.md)
- [Commits](https://github.com/patternfly/patternfly/compare/prerelease-v4.31.6...prerelease-v4.35.2)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-08-27 10:38:27 +02:00
Jens L 0e0898c3cf
Flow exporting/importing (#187)
* stages/*: Add SerializerModel as base model, implement serializer property

* flows: add initial flow exporter and importer

* policies/*: implement .serializer for all policies

* root: fix missing dacite requirement
2020-08-22 00:42:15 +02:00
dependabot-preview[bot] 8b17e8be99
build(deps): bump codemirror in /passbook/static/static (#185)
Bumps [codemirror](https://github.com/codemirror/CodeMirror) from 5.56.0 to 5.57.0.
- [Release notes](https://github.com/codemirror/CodeMirror/releases)
- [Changelog](https://github.com/codemirror/CodeMirror/blob/master/CHANGELOG.md)
- [Commits](https://github.com/codemirror/CodeMirror/compare/5.56.0...5.57.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-08-21 10:52:03 +02:00
Jens Langhammer 9826bb4d01 root: fix sentry's being passed incorrectly 2020-08-20 23:12:54 +02:00
Jens Langhammer f7c629ec9b root: when error_reporting is enabled, don't sent pii data by default 2020-08-20 22:19:49 +02:00
Jens Langhammer e2aeb96a6a root: fix invalid import for clean_expired_models 2020-08-20 21:53:20 +02:00
Jens L ff810c689f
Replace Elastic APM with Sentry APM (#183) 2020-08-20 20:39:21 +02:00
Jens Langhammer 0eb94df1f7 providers/oauth2: fix redirect_uri not being checked correctly if multiple redirect_uris are configured 2020-08-20 16:41:00 +02:00
Jens Langhammer 0394adaf46 *: fix general Linting errors 2020-08-19 10:49:14 +02:00
Jens L c7a2410b1d
OAuth Provider Rewrite (#182) 2020-08-19 10:32:44 +02:00
dependabot-preview[bot] b9076b5fd4
build(deps): bump @patternfly/patternfly from 4.31.4 to 4.31.6 in /passbook/static/static (#179)
Bumps [@patternfly/patternfly](https://github.com/patternfly/patternfly) from 4.31.4 to 4.31.6.
- [Release notes](https://github.com/patternfly/patternfly/releases)
- [Changelog](https://github.com/patternfly/patternfly/blob/master/RELEASE-NOTES.md)
- [Commits](https://github.com/patternfly/patternfly/compare/prerelease-v4.31.4...prerelease-v4.31.6)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-08-18 21:42:39 +02:00
Jens Langhammer 7923468a01 admin: fix incorrect view name for groups 2020-08-16 17:41:48 +02:00
Jens Langhammer bd25cadb71 lib: fix config possibly iterating None 2020-08-15 21:12:38 +02:00
Jens Langhammer 7334599efd *: update JSON fields to django 3.1 2020-08-15 21:04:22 +02:00
dependabot-preview[bot] 086a3c0548
build(deps): bump @patternfly/patternfly in /passbook/static/static
Bumps [@patternfly/patternfly](https://github.com/patternfly/patternfly) from 4.23.3 to 4.31.4.
- [Release notes](https://github.com/patternfly/patternfly/releases)
- [Changelog](https://github.com/patternfly/patternfly/blob/master/RELEASE-NOTES.md)
- [Commits](https://github.com/patternfly/patternfly/compare/prerelease-v4.23.3...prerelease-v4.31.4)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-08-14 20:58:38 +00:00
Jens Langhammer 45df127f18 e2e: lock mailhog docker image 2020-08-14 17:55:44 +02:00
Jens Langhammer 55cf49bb8a root: attempt to fix broken e2e tests 2020-08-14 17:39:41 +02:00
Jens Langhammer 316ac78e49 new release: 0.9.0-stable 2020-08-01 22:17:59 +02:00
Jens Langhammer de2b67b111 providers/app_gw: improve templates 2020-08-01 22:13:12 +02:00
Jens Langhammer e1bbbe6671 providers/app_gw: disable client authz to use passbook 2020-08-01 20:53:55 +02:00
Jens Langhammer 8b3839343c providers/oidc: remove static lookup for OIDCProvider, get related object for app_gw 2020-08-01 20:53:33 +02:00
Jens Langhammer 7897ca4744 providers/app_gw: fix Client scopes and URLs 2020-08-01 20:33:38 +02:00
Jens Langhammer 1a21012911 providers/app_gw: fix URL Validation not working for internal and external host 2020-08-01 20:02:43 +02:00
Jens Langhammer d4a5269bf1 *: Adjust forms to only show respective types of Flows and PropertyMappings 2020-08-01 20:02:23 +02:00
Jens Langhammer fcf70a3cd4 providers/app_gw: Fix K8s template labels, add missing ISSUER_URL 2020-08-01 19:47:40 +02:00
Jens Langhammer 1a6dd00681 providers/saml: fix X509Data container linebreaks 2020-08-01 19:38:59 +02:00
Jens Langhammer 330bd0932b providers/saml: fix NotOnOrAfter using incorrect timestamp 2020-08-01 19:38:41 +02:00
Jens Langhammer c58658d820 new release: 0.9.0-rc2 2020-07-26 23:34:36 +02:00
Jens Langhammer a9b5e6ea13 flows: fix shell not showing spinner after submit 2020-07-26 22:15:50 +02:00
Jens Langhammer ddb0fdee98 providers/app_gw: generate docker-compose in code 2020-07-26 22:01:37 +02:00
Jens Langhammer 83205f1b49 providers/app_gw: use full URL with protocol for internal/external_host 2020-07-26 22:01:20 +02:00
Jens Langhammer ae629d1159 providers/oauth: remove LoginRequired from AuthorizationFlowInitView as user is redirected within 2020-07-25 21:36:50 +02:00
Jens Langhammer 72a6f9cbe0 providers/saml: remove LoginRequired from SAMLSSOView as user is redirected within 2020-07-25 21:36:28 +02:00
Jens Langhammer 9793b7461b providers/oidc: remove LoginRequired from AuthorizationFlowInitView as user is redirected within 2020-07-25 21:35:38 +02:00
Jens Langhammer 9c1a824dc4 providers/app_gw: fix Issuer URL being incorrect, fix incorrect length cookie secret 2020-07-25 21:34:14 +02:00
dependabot-preview[bot] 94f3e6d0c5
build(deps): bump codemirror in /passbook/static/static
Bumps [codemirror](https://github.com/codemirror/CodeMirror) from 5.55.0 to 5.56.0.
- [Release notes](https://github.com/codemirror/CodeMirror/releases)
- [Changelog](https://github.com/codemirror/CodeMirror/blob/master/CHANGELOG.md)
- [Commits](https://github.com/codemirror/CodeMirror/compare/5.55.0...5.56.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-07-21 05:16:34 +00:00
Jens Langhammer ffff69ada0 stages/consent: add unittests for new modes 2020-07-20 18:47:52 +02:00
Jens Langhammer 37a432267d Squashed commit of the following:
commit 88029a4335
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date:   Mon Jul 20 16:55:55 2020 +0200

    admin: update to work with new form

commit 4040eb9619
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date:   Mon Jul 20 16:43:30 2020 +0200

    *: remove path-based import from all PropertyMappings

commit c9663a08da
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date:   Mon Jul 20 16:33:34 2020 +0200

    flows: update work with new stages

commit a3d92ebc0a
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date:   Mon Jul 20 16:23:30 2020 +0200

    stages/*: remove path-based import from all stages

commit 6fa825e372
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date:   Mon Jul 20 16:03:55 2020 +0200

    providers/*: remove path-based import from all providers

commit 6aefd072c8
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date:   Mon Jul 20 15:58:48 2020 +0200

    policies/*: remove path-based import from all policies

commit ac2dd3611f
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date:   Mon Jul 20 15:11:27 2020 +0200

    sources/*: remove path-based import from all sources

commit 74e628ce9c
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date:   Mon Jul 20 14:43:38 2020 +0200

    ui: allow overriding of verbose_name

commit d4ee18ee32
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date:   Mon Jul 20 14:08:27 2020 +0200

    sources/oauth: migrate from discordapp.com to discord.com
2020-07-20 18:17:14 +02:00
Jens Langhammer 50612991fa stages/consent: start implementing user consent 2020-07-20 13:19:58 +02:00
Jens Langhammer 37b2400cdb lib: move SAML timestring utils into lib 2020-07-20 11:35:16 +02:00
Jens Langhammer c60d1e1f9a core: separate expiry logic from tokens and make re-usable 2020-07-20 10:57:12 +02:00
dependabot-preview[bot] 5552aca079
build(deps): bump @patternfly/patternfly in /passbook/static/static
Bumps [@patternfly/patternfly](https://github.com/patternfly/patternfly) from 4.16.7 to 4.23.3.
- [Release notes](https://github.com/patternfly/patternfly/releases)
- [Changelog](https://github.com/patternfly/patternfly/blob/master/RELEASE-NOTES.md)
- [Commits](https://github.com/patternfly/patternfly/compare/prerelease-v4.16.7...prerelease-v4.23.3)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-07-20 05:14:37 +00:00
Jens Langhammer ff2456dcfa root: clean log output, always show logger 2020-07-19 22:48:52 +02:00
dependabot-preview[bot] aff074420b
build(deps): bump @fortawesome/fontawesome-free
Bumps [@fortawesome/fontawesome-free](https://github.com/FortAwesome/Font-Awesome) from 5.13.1 to 5.14.0.
- [Release notes](https://github.com/FortAwesome/Font-Awesome/releases)
- [Changelog](https://github.com/FortAwesome/Font-Awesome/blob/master/CHANGELOG.md)
- [Commits](https://github.com/FortAwesome/Font-Awesome/compare/5.13.1...5.14.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-07-16 05:15:24 +00:00
Jens Langhammer edbea9ccff audit: fix list not having loginrequired
closes #127
2020-07-15 18:34:53 +02:00
Jens Langhammer 6b26e10ea2 new release: 0.9.0-rc1 2020-07-15 12:00:47 +02:00
Jens Langhammer e15f7d7f28 flows: fix potential open redirect vuln 2020-07-14 21:57:28 +02:00
Jens Langhammer fbf9554a9e flows: fix SESSION_KEY_GET being deleted too early 2020-07-14 21:42:47 +02:00
Jens Langhammer b452e751ea flows: add SESSION_KEY_APPLICATION_PRE
whenever a user tries to access an application without being authenticated to passbook, we now show notice which application they are going to continue to.
2020-07-12 22:47:46 +02:00
Jens Langhammer a3baa100d4 sources/saml: remove unused import 2020-07-12 18:55:26 +02:00
Jens Langhammer f7b9de1261 */saml: fix MetadataProcessor having generic namespace prefixes 2020-07-12 18:40:43 +02:00
Jens Langhammer 47ca566d06 sources/saml: fix MetadataProcessor not working, add unittests 2020-07-12 18:40:18 +02:00
Jens Langhammer a943d060d2 core: add separate autosubmit form for use without flows 2020-07-12 18:24:36 +02:00
Jens Langhammer 1675dab314 providers/saml: fix encoding for POST bindings 2020-07-12 17:58:38 +02:00
Jens Langhammer 996aa367d3 core: fix autosubmit_form loading full template 2020-07-12 17:45:03 +02:00
Jens Langhammer be6f342e58 providers/saml: fix RelayState being included when None given 2020-07-12 17:22:14 +02:00
Jens Langhammer 464b558a02 */saml: fix typo 2020-07-12 17:20:41 +02:00
Jens Langhammer d1151091cd providers/saml: Generate NameID Value based on NameID Policy received 2020-07-12 17:06:35 +02:00
Jens Langhammer f8e5383ba2 providers/saml: parse NameID Policy from AuthnRequest 2020-07-12 17:05:48 +02:00
Jens Langhammer 06f73512df lib/evaluator: add support for IP Address comparison 2020-07-12 16:36:49 +02:00
Jens Langhammer 0ff4545bab providers/saml: fix AuthnRequest Signature validation, add unittests 2020-07-12 16:17:53 +02:00
Jens Langhammer ff6e270886 sources/saml: fix AuthnRequest Singing for redirect bindings 2020-07-12 16:17:35 +02:00
Jens Langhammer 91766a2162 sources/saml: automatically add RelayState to build_auth_n_detached 2020-07-12 01:46:46 +02:00
Jens Langhammer a393097504 */saml: start implementing unittests, fix signing 2020-07-12 01:44:34 +02:00
Jens Langhammer 2056b86ce7 providers/saml: rewrite SAML AuthNRequest Parser and Response Processor 2020-07-11 14:06:42 +02:00
Jens Langhammer 1b0c013d8e providers/saml: remove processor_path field 2020-07-11 13:28:10 +02:00
Jens Langhammer 92a09be8c0 sources/saml: rewrite Processors and Views to directly build XML without templates 2020-07-11 01:02:55 +02:00
Jens Langhammer d74366f413 policies/hibp: update for flows, add unittests 2020-07-10 20:57:15 +02:00
Jens Langhammer 5bcf2aef8c policies/password: Add Password Policy tests, update password policy for flows 2020-07-10 20:53:08 +02:00
Jens Langhammer 8de3c4fbd6 sources/ldap: improve unittests 2020-07-10 20:21:51 +02:00
Jens Langhammer 7ac4242a38 e2e: add test for OAuth Enrollment -> OAuth Authentication 2020-07-10 00:14:48 +02:00
Jens Langhammer 4caa4be476 sources/oauth: fix UserOAuthSourceConnection not being assigned to user after enrollment
sources/oauth: separate handle_new_connection into handle_existing_user_link and handle_enroll
2020-07-10 00:07:59 +02:00
Jens Langhammer c6d8bae147 e2e: generate dex config dynamically 2020-07-09 23:15:22 +02:00
Jens Langhammer c70310730a sources/oauth: split up single large "core" views 2020-07-09 23:09:32 +02:00
Jens Langhammer 2d2b2d08f4 core: fix source slug not being unique 2020-07-09 23:05:46 +02:00
Jens Langhammer 8fe6a5b62d stages/prompt: fix checkbox not working, fix date and datetime not using HTML5 input types 2020-07-09 22:55:44 +02:00
Jens Langhammer 64c47a59f8 e2e: add tests for OAuth Source, update tests for new base templates 2020-07-09 00:53:18 +02:00
Jens Langhammer 9518cefdd7 flows: fix default-source-enrollment-if-username expression 2020-07-09 00:20:42 +02:00
Jens Langhammer 32d5c26577 core: fix base_full template missing messages 2020-07-09 00:18:45 +02:00
Jens Langhammer ef2cdf27b3 stages/prompt: add static and separator elements 2020-07-09 00:00:15 +02:00
Jens Langhammer e58ac7ae90 polices: add helper to remove None-value keys from dict for policies 2020-07-08 23:07:16 +02:00
Jens Langhammer d786fa4b7c sources/oauth: rewrite to not directly create user, pre-seed data into flow 2020-07-08 20:39:20 +02:00
Jens Langhammer 0e3e73989d sources/saml: Add NameID Policy field, sent with AuthnRequest 2020-07-08 16:18:09 +02:00
Jens Langhammer d831599608 core: make autosubmit_form generic template 2020-07-08 14:27:58 +02:00
Jens Langhammer 1e57926603 sources/saml: add POST_AUTO binding which auto redirects to IdP 2020-07-08 14:18:08 +02:00
Jens Langhammer 1524880eec core: add generic login/base_full template for static login views 2020-07-08 14:17:29 +02:00