37a432267d
Squashed commit of the following:
...
commit 88029a43354040eb9619c9663a08daa3d92ebc0a6fa825e3726aefd072c8ac2dd3611f74e628ce9cd4ee18ee32
2020-07-20 18:17:14 +02:00
37b2400cdb
lib: move SAML timestring utils into lib
2020-07-20 11:35:16 +02:00
c60d1e1f9a
core: separate expiry logic from tokens and make re-usable
2020-07-20 10:57:12 +02:00
a3baa100d4
sources/saml: remove unused import
2020-07-12 18:55:26 +02:00
f7b9de1261
*/saml: fix MetadataProcessor having generic namespace prefixes
2020-07-12 18:40:43 +02:00
47ca566d06
sources/saml: fix MetadataProcessor not working, add unittests
2020-07-12 18:40:18 +02:00
a943d060d2
core: add separate autosubmit form for use without flows
2020-07-12 18:24:36 +02:00
1675dab314
providers/saml: fix encoding for POST bindings
2020-07-12 17:58:38 +02:00
996aa367d3
core: fix autosubmit_form loading full template
2020-07-12 17:45:03 +02:00
464b558a02
*/saml: fix typo
2020-07-12 17:20:41 +02:00
ff6e270886
sources/saml: fix AuthnRequest Singing for redirect bindings
2020-07-12 16:17:35 +02:00
91766a2162
sources/saml: automatically add RelayState to build_auth_n_detached
2020-07-12 01:46:46 +02:00
a393097504
*/saml: start implementing unittests, fix signing
2020-07-12 01:44:34 +02:00
92a09be8c0
sources/saml: rewrite Processors and Views to directly build XML without templates
2020-07-11 01:02:55 +02:00
8de3c4fbd6
sources/ldap: improve unittests
2020-07-10 20:21:51 +02:00
7ac4242a38
e2e: add test for OAuth Enrollment -> OAuth Authentication
2020-07-10 00:14:48 +02:00
4caa4be476
sources/oauth: fix UserOAuthSourceConnection not being assigned to user after enrollment
...
sources/oauth: separate handle_new_connection into handle_existing_user_link and handle_enroll
2020-07-10 00:07:59 +02:00
c6d8bae147
e2e: generate dex config dynamically
2020-07-09 23:15:22 +02:00
c70310730a
sources/oauth: split up single large "core" views
2020-07-09 23:09:32 +02:00
e58ac7ae90
polices: add helper to remove None-value keys from dict for policies
2020-07-08 23:07:16 +02:00
d786fa4b7c
sources/oauth: rewrite to not directly create user, pre-seed data into flow
2020-07-08 20:39:20 +02:00
0e3e73989d
sources/saml: Add NameID Policy field, sent with AuthnRequest
2020-07-08 16:18:09 +02:00
d831599608
core: make autosubmit_form generic template
2020-07-08 14:27:58 +02:00
1e57926603
sources/saml: add POST_AUTO binding which auto redirects to IdP
2020-07-08 14:18:08 +02:00
1524880eec
core: add generic login/base_full template for static login views
2020-07-08 14:17:29 +02:00
571cb3d65f
sources/oauth: disable twitter source while its broken
2020-07-07 22:25:50 +02:00
5644e57e6a
sources/oauth: directly call AuthorizedServiceBackend instead of authenticate()
2020-07-07 22:23:45 +02:00
cfc181eed1
sources/oauth: fix wrong comparions
...
closes #118
2020-07-07 21:46:16 +02:00
c00e01626e
sources/ldap: adjust task schedule name
2020-07-07 17:04:07 +02:00
af22f507f4
sources/oauth: fix template for user settings
2020-07-06 17:48:53 +02:00
3b70d12a5f
*: rephrase strings
2020-07-01 18:40:52 +02:00
920858ff72
Merge branch 'master' into otp-rework
...
# Conflicts:
# passbook/flows/models.py
# passbook/stages/otp/models.py
# swagger.yaml
2020-06-29 22:54:18 +02:00
d6a8d8292d
core: UIUserSettings: remove icon, rename view_name to URL for complete URL
2020-06-29 16:20:33 +02:00
ec823aebed
flows: update migrations to use update_or_create
2020-06-29 16:19:39 +02:00
57a7bed99d
sources/oauth: fix facebook provider
2020-06-25 10:24:53 +02:00
05778d8065
sources/saml: minor formatting fixes
2020-06-24 22:46:20 +02:00
31e0d74495
sources/saml: correctly cleanup transient users, update forms
2020-06-24 22:27:14 +02:00
05999cb8c7
sources/saml: start implementing transient NameID format
2020-06-24 21:50:30 +02:00
c0d8aa2303
sources/saml: fix SAMLRequest not being encoded properly for Redirect bindings
2020-06-24 13:12:34 +02:00
52f138d402
sources/saml: improve error handing of invalid signatures
2020-06-23 21:49:27 +02:00
6f0e292c43
root: add lgtm
2020-06-15 11:56:20 +02:00
26aa7e1fef
sources/ldap: fix 'LDAPSource' object has no attribute '_connection'
2020-06-09 01:17:17 +02:00
ee8313142f
Merge branch 'docs-flows'
...
# Conflicts:
# passbook/core/templates/partials/form_horizontal.html
2020-06-08 15:43:46 +02:00
4915205678
WIP Use Flows for Sources and Providers ( #32 )
...
* core: start migrating to flows for authorisation
* sources/oauth: start type-hinting
* core: create default user
* core: only show user delete button if an unenrollment flow exists
* flows: Correctly check initial policies on flow with context
* policies: add more verbosity to engine
* sources/oauth: migrate to flows
* sources/oauth: fix typing errors
* flows: add more tests
* sources/oauth: start implementing unittests
* sources/ldap: add option to disable user sync, move connection init to model
* sources/ldap: re-add default PropertyMappings
* providers/saml: re-add default PropertyMappings
* admin: fix missing stage count
* stages/identification: fix sources not being shown
* crypto: fix being unable to save with private key
* crypto: re-add default self-signed keypair
* policies: rewrite cache_key to prevent wrong cache
* sources/saml: migrate to flows for auth and enrollment
* stages/consent: add new stage
* admin: fix PropertyMapping widget not rendering properly
* core: provider.authorization_flow is mandatory
* flows: add support for "autosubmit" attribute on form
* flows: add InMemoryStage for dynamic stages
* flows: optionally allow empty flows from FlowPlanner
* providers/saml: update to authorization_flow
* sources/*: fix flow executor URL
* flows: fix pylint error
* flows: wrap responses in JSON object to easily handle redirects
* flow: dont cache plan's context
* providers/oauth: rewrite OAuth2 Provider to use flows
* providers/*: update docstrings of models
* core: fix forms not passing help_text through safe
* flows: fix HttpResponses not being converted to JSON
* providers/oidc: rewrite to use flows
* flows: fix linting
2020-06-07 16:35:08 +02:00
7664b428e7
sources/ldap: fix expression field not being CodeMirror
2020-06-05 20:18:45 +02:00
30ca926b38
docs: remove last occurrences to jinja2
2020-06-05 20:18:11 +02:00
73116b9d1a
policies/expression: migrate to raw python instead of jinja2 ( #49 )
...
* policies/expression: migrate to raw python instead of jinja2
* lib/expression: create base evaluator, custom subclass for policies
* core: rewrite propertymappings to use python
* providers/saml: update to new PropertyMappings
* sources/ldap: update to new PropertyMappings
* docs: update docs for new propertymappings
* root: remove jinja2
* root: re-add jinja to lock file as its implicitly required
2020-06-05 12:00:27 +02:00
ef913abc7a
sources/ldap: add option to disable user sync, move connection init to model
2020-06-02 17:15:59 +02:00
ddfa2abbaa
sources/ldap: re-add default PropertyMappings
2020-06-02 17:00:03 +02:00
5fc5e54f47
sources/oauth: fix typing errors
...
# Conflicts:
# passbook/sources/oauth/clients.py
2020-06-02 16:57:38 +02:00
Jens Langhammer
Jens L