Produits Entr'ouvert » Authentic 2

• ajouter les fichiers static, locale et templates au packaging d'a2
• faire en sorte que le paquet python-authentic2 remplace python-authentic2-auth-fc (mais il y a un pendant dans le dépôt authentic2-auth-fc pour avoir un paquet de transition¹)

¹ https://wiki.debian.org/PackageTransition

Je ne poste que le commit d'intégration, le reste c'est le tip de a2-auth-fc restreint à src/ et tests/ avec les tests déplacés dans tests/auth_fc/ via réécriture de l'historique.

Tests auth-fc renommés.

ImproperlyConfigured sur accès à app_settings retiré, ça casse freezegun.

commit 7eda057909ec3ebc6ff17d14ff5a9137595e5b65
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue May 28 15:57:08 2019 +0200

    integrate authentic2-auth-fc in packaging (#20852)

commit 30dc69eeb5dd1ddf99d52763d873be94964b91b9
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri May 17 11:01:15 2019 +0200

    views: do not set password on unlink for LDAP users (#24710)

commit 11dccefc811a2cf1dbf305f76ed087f48596f73b
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 16 18:13:18 2019 +0200

    show change password link after user unlink (fixes #32953)

commit 95d59c86d0cdd65ce11d1a69e70ae0c70a290559
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 16 17:58:17 2019 +0200

    views: clean FranceConnect session variable on unlink (#32953)

commit 1c40ec3f41249e965ec57e0eca319bcdb1e6d9e6
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 9 19:19:18 2019 +0200

    adapts to spring cleaning in authentic (#32866)

    See #32934.

commit 338b02cd9985baf34244a22b413b84b2479f1ea7
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue May 7 14:31:07 2019 +0200

    py3ize obviously non-compatible code (#32866)

commit 8d27718f51fc9d6e30259dc22cb8b8213dd92b1e
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue May 7 14:07:59 2019 +0200

    improve code style (#32866)

    - remove obviously dead code (reported by flake8)
    - fix PEP8 violations
    - rename variable using stdlib builtin names
    - use get_version() from combo's setup.py

commit 72d48a8326b81e3ff996c38269c7fbcbe7fbd109
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue May 7 14:05:39 2019 +0200

    add copyright headers (#32866)

commit 3ca5c43a7332eee7f8134aa2fa5cf547bfc29f09
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri May 3 10:11:47 2019 +0200

    apps: hide password management link when FC authenticated (#27083)

    It's done by implementing a2_hook_user_can_change_password on the
    AppConfig object.

commit ffc66bcbfa14471f5f72df5ee3955936e9914be9
Author: Serghei Mihai <smihai@entrouvert.com>
Date:   Wed Mar 6 14:16:23 2019 +0100

    misc: rename authentication "frontend" to "authenticator" (#14475)

commit a8c3559f87ffee86332a87166f99ceec99e42d90
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Wed Jan 2 17:29:04 2019 +0100

    templates: add alt texts to image links (#29408)

commit 2ea59ce790d49e31db8fad0eedb5ed03ee63800c
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Wed Jan 2 17:26:04 2019 +0100

    tests: adjust not to find link by label (#29228)

commit 4fbe554bb0177364cfa95fba24043d9918fa93dd
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Wed Jan 2 15:22:07 2019 +0100

    improve markup of login_registration template (#29228)

commit 0525533f85fe8e24bde4ba485c0e9be87792addd
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 14 09:47:48 2018 +0100

    views: search email case insensitively (fixes #29007)

commit 483b0dce961cebed1774542d4a8727138c97c5d7
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 5 19:03:41 2018 +0200

    lock first name and last name (fixes #27044)

commit d082fb4998d1089c3649094d41288c9f1afa043a
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 5 16:47:26 2018 +0200

    utils: apply mapping to custom attributes before static ones (#27044)

    It's impossible to set a verified first_name or last_name without it.

commit 517dad7553740acbf1dd8119a00ab980c938889e
Author: Serghei Mihai <smihai@entrouvert.com>
Date:   Wed Oct 10 10:09:44 2018 +0200

    center explanation text (#27182)

commit 1b8ee0a38a10d180d9c32439484339b69d3a5887
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Oct 8 12:07:04 2018 +0200

    launch tests with Django 1.11 (fixes #27095)

commit 929b58d989bea0d7f0762ac09646e56b3ccbdefe
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 5 19:04:19 2018 +0200

    views: pass service field to fc login post registration (fixes #21908)

commit 18ce5d5b152ec6468044c6c63c2f5ce626d93846
Author: Serghei Mihai <smihai@entrouvert.com>
Date:   Thu Sep 6 19:24:28 2018 +0200

    css: do not force button height (#25763)

commit d3c163a62ede079114d7e5cfe7e81028d1962c21
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Sep 26 23:30:48 2018 +0200

    add missing close tag (#21908)

commit a9823e5a716269e7f1e8a86935144431c07cb737
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Aug 10 12:48:47 2018 +0200

    update french translation (#21908)

commit a041be4668ae05abc330f6f186bae0b249e50b89
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Aug 9 15:37:19 2018 +0200

    keep authentication context (fixes #21908)

    - simplify and reorganize login templates,
    - URL are not built inside templates anymore,
    - we have now 3 different templates:
      - login.html for the login page
      - registration.html for the registration page
      - linking.html for the account page
    - using feature from #25623, authentication_method is kept by the
      registration view.
    - the service slug is correctly threaded between every views.
    - explanations about FranceConnect are now done in a common template
      "explanation.html".
    - restore popup mode, use it through setting A2_FC_POPUP=True, it works
      for:
      - login and login with registration (workflow for login with
        registration is a bit complicated),
      - registration,
      - and linking (linking your existing to FC through the "My account" 
       page)
      unlinking is not handled with a popup.

commit 06d4e913fed59713d7389c6746354c52244b46e9
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Mon Aug 13 11:48:13 2018 +0200

    don't alter can_reset_password flag for users without an FC account (#25655)

commit c4eade4d96d929d98f3f2b7d17aa9ee87d3e1259
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Aug 2 18:56:33 2018 +0200

    remove use of context_instance (fixes #25532)

    context_instance is not passed anymore by authentic2, and giving
    context_instance=None to render() prevent the request object to be feed
    in the context of the template, breaking some templates.

commit e78fbbd68df16b9bd13d7e3cd1ef370eccde4bc2
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Jul 30 15:51:01 2018 +0200

    implement AppConfig.a2_hook_user_can_reset_password (fixes #25535)

    It returns True if an user is linked to an FC account, it allows any
    FC user to login to its account as long as it still has control of the
    FC email even if he has lost its FC credentials.

commit 54edc159b2a7f19a49c8480ab32e460d71346ade
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Jul 30 15:49:52 2018 +0200

    do not set a password on FranceConnect users (#25535)

    As user don't know this password they can never change it...

commit 87e2a5fb7593c98ba094108beabfb55a9cd6e1ab
Author: Emmanuel Cazenave <ecazenave@entrouvert.com>
Date:   Fri Jul 20 11:18:19 2018 +0200

    don't load authentic2 template tags (#25393)

commit 126dbd165635fc95100f02dbc73bb54131c70aa3
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Wed Jul 18 21:42:43 2018 +0200

    templates: merge duplicated class attributes (#25353)

commit 3340c52c09965e946775e84678f93b6f6ccd4f12
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Wed Jul 18 21:39:07 2018 +0200

    misc: don't use addtoblock to insert fc.css (#25356)

commit b8efc1a6456fc802b74de8bc02ad5cb0a88be48b
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Jun 29 16:34:40 2018 +0200

    tests: add tests on new password related functions (#24835)

    - verify new users have a password set
    - verify old users keep their password on linking and are not
      asked for a new password if they used their password for logging in.

commit 90eefd42eb51c4affc13b0b71d3ac42e7e65bb25
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jun 27 20:00:57 2018 +0200

    app_settings: set password to random value by default (#24835)

commit 1995891e5fd3ab4e99aad36b58304fed5f832d76
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Jun 29 16:33:16 2018 +0200

    views: ask for new passord on unlink only if logged using FC (#24835)

commit 2522e75b5b6ee512cb56d135b9752fc24cf7c6e9
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jun 27 20:00:13 2018 +0200

    utils: fix typo in warning log (#24835)

commit c7521da95ab50d4d637af8a422d0b5c07a893c90
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jun 27 19:59:58 2018 +0200

    utils: add special case for mapping the User.password (fixes #24835)

    The goal is to set a random password for new accounts,
    so that they can recover it. In this case we use
    the value {"compute": "random"}.

commit 58a10db62c870819b7aa15b9fd31aaf2ab2d31da
Author: Josue Kouka <jkouka@entrouvert.com>
Date:   Mon Jul 2 14:26:33 2018 +0200

    use REQUESTS_PROXIES instead of A2_FC_REQUESTS_PROXIES (#24929)

commit 6b424ded2f1dde1e78533bfda7c207263c5a9cdb
Author: Josue Kouka <jkouka@entrouvert.com>
Date:   Tue Jun 26 11:47:18 2018 +0200

    add fc requests proxies support (#24713)

commit e688ba407618d1a4eb52d70123b81420d9681be8
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Jun 22 15:39:50 2018 +0200

    views: prevent None success URL in unlink view (fixes #24708)

    Logout URL to FC can be None if the current session was not opened
    through an FC authentication.

commit db85ba1e37baabf2496eef1ba33755d9297fd3d7
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Apr 26 15:42:15 2018 +0200

    utils: fix access to verified property of mappings (fixes #23271)

commit 5ea5056f09463f0f1f60bd1d92be05f19235c321
Author: Elias Showk <eshowk@entrouvert.com>
Date:   Wed Apr 18 15:43:33 2018 +0200

    remove url patterns to support django 1.11 (#23270)

commit 21b4f96e8d3d19141ad30c96d18d0c5c04c2bdca
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Fri Mar 9 13:30:29 2018 +0100

    do not allow unauthenticated access to unlink page (fixes #22405)

commit 1008ebb4e8e7a76185b310a1bda204b3fa5910ff
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Feb 19 13:40:28 2018 +0100

    api: add franceconnect information to user's API when ?full is used (fixes #21962)

    The following field is added to user's attributes if FC plugin is
    enabled and the "full" parameter is given to the user's API:

       "franceconnect": {
          "linked": true,
          "link_url": "https://idp/accounts/fc/callback/",
          "unlink_url": "https://idp/accounts/fc/unlink/" 
       }

commit 10337ad9524f8e2d82a92cf69544fa2740a448e8
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Feb 15 13:18:48 2018 +0100

    locale: update french translations for release 0.10 (fixes #21874)

    email was replaced by « adresse de courriel » everywhere.

commit c0f2d4d940b5d2230e77810026dd52491e2f09cb
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Sun Feb 11 22:42:43 2018 +0100

    views: show warning to users with a mail linked to another FC account (fixes #21292)

    The warning will help them connect their FC account to normally
    registered account.

commit a8cc9cc6ac2eebc1801285a99deff323c0d2e6cd
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Sun Feb 11 22:09:36 2018 +0100

    retry HTTP requests 3 times (fixes #21783)

    Retry is applied to access token request and user info requests (through
    OAuth2Session). There is a small exponential backoff of 0.5 and 1s.

    Also decrease log level of message for failure of retrieval of the
    access token or the user info to the level WARNING, that's never been a
    problem for the user, as he was correctly redirected to its origin
    (usually and IdP endpoint).

commit e4a6e58b069febc6c952bdd8f4ec3bb8065b903f
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Jan 22 11:54:28 2018 +0100

    add support for service slugs on login

commit 7fb822048ef893934bc69bdc479d11a337df29fb
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Jan 22 11:50:02 2018 +0100

    fix login with a non-unique email where an account linked to another FC account already exists

commit b5b1749dd815e4cf5e7e362c722c88a88a337605
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Feb 1 16:44:43 2018 +0100

    augment timeout on POST to FC to 10 seconds (fixes #21596)

commit 7a76b9e9516387b57568feef994312f309dd16ab
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Nov 27 09:52:59 2017 +0100

    add request to fc-link hook (fixes #20288)

commit 6bce73ec972f72ff14ce530507dfd0139bc2e806
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Nov 22 21:16:36 2017 +0100

    call a2 hooks for linking and unlinking events (fixes #20228)

commit 5da8849b6fdfa5e39e9bee647ad4920a868ec115
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Nov 14 11:38:56 2017 +0100

    update french translations (#20078)

commit 3594460be56040de3727febfaf6f33cb9b5e6e96
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Nov 14 11:37:24 2017 +0100

    views: change messages levels (#20078)

commit 8c3387c4592abfb2be3d8dfd4929d9a7503cf0e9
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Nov 14 11:37:10 2017 +0100

    views: do not permit linking if the user has already a link to FC (#20078)

commit 387252a3d04c719726e258d64962b9d5f1921281
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Nov 14 11:33:57 2017 +0100

    views: forbid automatic linking based on email if multiples users are found or if target user has already a link (fixes #20078)

commit ccffde71b0d71f97f0a46ad1f24ad7ae7439f9bd
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Nov 8 17:38:31 2017 +0100

    backends: make sub parameter non optional in authenticate()

commit ccb4db5a210b19a5b57b67c3d80f5d94b42788ef
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Nov 7 17:33:37 2017 +0100

    always unlink from all FC accounts (fixes #19947)

commit 2de20af1073ba78bb0ac89d250be49d6458d0e84
Author: Serghei Mihai <smihai@entrouvert.com>
Date:   Mon Oct 23 08:55:04 2017 +0200

    update FC logos (#19585)

commit 8cae4f51329b472c3357381a6fd9fc8740e76beb
Author: Serghei Mihai <smihai@entrouvert.com>
Date:   Wed Oct 11 22:34:38 2017 +0200

    update login and register buttons images (#19162)

commit 42bc28067c31f891071b70719d91b4610333ddbe
Author: Serghei <serghei.mihai@devlibre.net>
Date:   Thu Jul 6 12:04:38 2017 +0200

    replace logo image for account linking (#17391)

commit 4894bb1f5716980508ebe9a0d0163041ba81c253
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Oct 9 15:15:04 2017 +0200

    views: force fc-register to always redirect post registration to fc-login-or-link (fixes #19270)

    Without it linking to FC does not happen

commit 8a5d976659f402482e2fc5b85943856dd2900913
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 6 14:13:10 2017 +0200

    utils: allow a mapping to depend from another using tags (fixes #19251)

commit ee2a823866179931208b530318335cfeffb1f548
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 6 14:10:39 2017 +0200

    utils: add an if-empty modifier to only set a value from FC if the existing value is empty (fixes #19250)

commit 6d01145b88a86c73fb06f9e6a21ae2bf9bdae5fc
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 6 14:09:30 2017 +0200

    utils: normalize mapping in apply_user_info_mappings (#19250)

commit a55a6f5b45abccf3a203524a414928dda47c7326
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 6 13:15:15 2017 +0200

    views: block DisplayMessageBeforeRedirectMiddleware on redirect to FC (fixes #19247)

commit 7a289dcf3fd04a3f2a0a7377fbb67649b4dd86fd
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Oct 5 15:33:08 2017 +0200

    utils: add a notempty transformation for attribute mappings (fixes #19233)

commit 2b333eb18c14c358b09f0f20a6e52845cc5fe9f1
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Sep 18 15:43:59 2017 +0200

    django 1.9 compatibility

commit 1c5b76452fd6af13aead250c5573c4ad3978584d
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Sep 18 15:36:10 2017 +0200

    backends: always create new accounts in the default OU (fixes #18764)

commit 20de25fe0ebcf972ebb45a7dc66a89e701a77e6b
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Sep 18 15:48:48 2017 +0200

    views: automatically link user with existing email if email is unique (fixes #18763)

    Email must be unique if settings.A2_EMAIL_IS_UNIQUE is True or
    get_default_ou().email_is_unique is True.

commit fbb562a8941df7ee8d67b2cfa73e518a9d074f73
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Sep 18 15:49:20 2017 +0200

    models: check issuer using only URL scheme and netloc (fixes #18766)

commit 922cea34d39f95da0d747f9fb45477af7e6cb4bd
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Sep 5 16:35:21 2017 +0200

    tests: test with non ASCII characters

commit ea0a2541a9bb48749d2f9179956c45658b84313f
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Sep 18 16:20:49 2017 +0200

    utils: do not set absent references to None, ignore them instead (fixes #18765)

commit e1b125b3a329d3a4d62b3f99c26f51808f703604
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Sat Aug 12 17:50:35 2017 +0200

    style: switch to extra-body-class for custom body class (#17983)

commit 219e0ce8848beb85db483ec7ac0a39fed09824c5
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Jul 28 16:58:04 2017 +0200

    views: remove dead code

commit 3c189a5bdab629a0490b72d425ffdc7340e6eb73
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Jul 28 16:57:56 2017 +0200

    utils: allow referencing a sub object of user_info in attribute mapping

commit c05bb4804f9b4782f833ee41d74e750cd5c63582
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jul 26 19:06:40 2017 +0200

    views: add setting for FC scopes

commit 22c88a194166cf05f9bc59b4355f8f76bbd32745
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jul 26 19:05:38 2017 +0200

    backends: fix logging of unicode strings

commit 7723df78cc19537e4a6cd5d070134a642e02f5b5
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Jul 18 19:29:37 2017 +0200

    utils: fix mapping of user attributes

commit be4a827dce36021b6ac61ac4a552b264d1fa01d3
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Jul 11 16:45:51 2017 +0200

    indicate registration URL is coming from france connect module

commit e11e14605c65c6d66c941555b1b6a6a68c69a1bb
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Jul 11 16:45:25 2017 +0200

    redirect to auth_logout if no post logout redirect URI is found

commit a086047684e04674409335a17c7c488038ebd753
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Jul 11 16:24:03 2017 +0200

    fix typo introduced in commit a7677f4bc0aa (#17331)

commit 860c57f29300eeb64a71c064c83fdbc8b9eea536
Author: Serghei <serghei.mihai@devlibre.net>
Date:   Thu Jul 6 18:00:56 2017 +0200

    templates: use different ids for link and its container (#17421)

commit f06b342716b90d896ba621dc3c4b4895ac5789d7
Author: Josue Kouka <jkouka@entrouvert.com>
Date:   Thu Apr 13 17:13:51 2017 +0200

    allow fc unlinking through api (#15297)

commit fecfd38f9e0357f62fb70bf03b7f6f50747639d2
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jul 5 09:59:39 2017 +0200

    do not logout from local session on unlink (bis #17331)

    Fix bug introduced in previous commit.

commit 21ca2bb5a0040aeb4288cc9b7bd199c7a169369c
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Jul 4 12:06:26 2017 +0200

    do not logout from local session on unlink (fixes #17331)

commit ad43f17f4723c660c210439a6825558dac10261b
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Jun 22 13:41:22 2017 +0200

    fix issuer check

commit 5a8bf44e5df045c3e1df57090874bf0bfc736268
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jun 21 11:16:51 2017 +0200

    use only underscores in session variables to allow access from templates

commit 673ddea9db4c8ffcdd8ba30c076f0171818c27e2
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Jun 15 15:48:45 2017 +0200

    improve reporting of error on access token requests

commit f94461ea860349b10faa2deff01e34ea5dcd3c63
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Jun 15 15:45:05 2017 +0200

    validate id_token

    Signature is validated, exp, aud and iis fields are checked.

    Also add tests using tox and py.test. Proper validation of signature is verified
    using jwcrypto.

commit 7d34d13e88cd1291416a72a49373e2101fb84a9f
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jun 14 09:43:41 2017 +0200

    use state as nonce and check nonce returned in id_token

commit f3671f1206cb660914a94cd12375d1033cdba5c9
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jun 14 09:36:54 2017 +0200

    add missing data files insee-communes.json and insee-countries.json

commit b32567115cc03dd6a695ae5a362773dcfc516294
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jun 14 09:35:53 2017 +0200

    pep8ness

commit 17ff1e79281af2168dcf5718d401a4a64b7c8889
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jun 14 09:35:41 2017 +0200

    generate a random state linked to the session

    Instead of encoding the redirect_uri in the state we:
    * generate a random state with 128 bits of entropy
    * store the state and the redirect_uri in the session
    * verify that the state exist when receivng the callback
    * retrieving the redirect_uri linked to this state from the session

commit 642782bbec343cdeac919e911974092c2df2baad
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Jun 8 17:12:48 2017 +0200

    set confirm_data="required" when auto_register is used (fixes #16771)

    When auto_register is used, users should not see the registration page at all,
    even if optionnal attribute fields are unfilled.

commit 115b55019992fe8e8da84b012aedadd7b3da3b90
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Mar 21 17:00:48 2017 +0100

    redirect to logout on unlink

commit ded531a8d4db523dd9dfcb9ed01ae2b7eb7d6aea
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Mar 10 10:16:37 2017 +0100

    do not log an error for normal oauth2 errors

    Such error happens when authorization code is out of date or already used.

commit ce4dbae90ea08a39aff753d812d4fae06f3fe05b
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Mar 7 11:29:57 2017 +0100

    improve mapping of FC attributes to A2 attributes (#10062)

commit 4d08e88ac843d21dfdea811e783794a73561a617
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Mar 3 14:28:35 2017 +0100

    pep8ness

commit becc4f893d19fc9096ece03c01711540137584cd
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Mar 3 14:28:27 2017 +0100

    always return to /logout/ after FC logout (fixes #15223)

commit 51950e59eef483f34a5ab5b1e91e9568cf84438f
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Feb 2 21:24:26 2017 +0100

    update french translation

commit 2f325c5a80e10aff2685a4118a060452f87a70bf
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 16 18:43:28 2016 +0100

    use authentic2.utils.login instead of django.contrib.auth.login (fixes #14338)

commit 805a5d352e652843b4eb9b13079a3b4507f1d991
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 21 20:53:33 2016 +0200

    fix deprecation warning about get_cache()

    Since Django 1.8 get_cache() is deprecated in favor of caches[].

commit d10b357fb18f5eb777067b109d86aecf724006df
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Mon Sep 19 08:45:08 2016 +0200

    style: don't let button oversize its container (#13216)

commit dd2fb7350a451a0b79876b43cb60c6f37de6f7f3
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Wed Sep 14 09:27:20 2016 +0200

    add a brief explanation after "what is franceconnect?" (#13174)

commit 83dc1af714d85d0c4a7970d4777dced91c964b94
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Tue Sep 6 14:32:14 2016 +0200

    add initial migration (#13077)

commit 33db4a2c4ace3232858cd2feb4a7a52a3bc02204
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Jun 20 16:18:09 2016 +0200

    Update official about link.

commit 7888183694211af89b7f959fd0f9e15893df277f
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Jun 13 16:53:03 2016 +0200

    Move registration frontend method to the Frontend (fixes #11351).

        Needs authentic2 >= v2.1.20-1010.

commit 5262af3cb90d4ddf2156db8eea247f644a903f38
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Jun 13 17:15:06 2016 +0200

    Hide linking button on profile frontend if the user is already linked (fixes #11328).

commit 7976894a6e7c981d0721b273c064db225e3e5015
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu May 12 19:14:30 2016 +0200

    Add email in linking message (fixes #10912).

commit da69491c5dfbea93bbaed6ec0b02f514221b754d
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu May 12 17:34:40 2016 +0200

    Improve wording on unlinking page.

commit 7a8568009db6e95b43c53dbf72b375e3245a146b
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Wed May 4 13:10:23 2016 +0200

    Fix bad translation.

commit 1cad60d8b33b8cb2ec713b8be73c7ca5020467ac
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon May 2 11:30:01 2016 +0200

    Prevent to add a link with an FC account already linked with another user (fixes #10791).

commit 032a39e0236bcda6e6445e909404a92b6de3a571
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Apr 29 10:23:01 2016 +0200

    Remove obsolete setting.

commit 9b9f5ae2f839cbbfe496fa8abbc49ac4e5283220
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Apr 29 10:20:31 2016 +0200

    Hide unlinking link if the user has no password and can't set it (fixes #10775).

commit 6b45d6c9b2d8882d0a796c05aeb3a629f0c3cbc0
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Apr 29 10:13:20 2016 +0200

    Prevent unlinking if the user has no password and can't set it (fixes #10775).

        Unlinking is now prevented if the user has no usable password and can't
        change it because A2_REGISTRATION_CAN_CHANGE_PASSWORD is False.
        For now it is thus assumed that the password is the unique other mean of
        authentication and unlinking would make the account unreachable.

        Also use A2_REGISTRATION_SET_PASSWORD_FORM_CLASS setting instead of
        importing the form.

commit 0fb6d457f4394b4678a455882660f633cb73d99f
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Apr 15 15:38:14 2016 +0200

    Update login or create account message.

commit 44a62e61dfdf6433d213d9aca092b5201908276e
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Apr 14 10:44:13 2016 +0200

    Ask password at unlinking when the user has no usable password (fixes #10524) (ter).

commit 86f20dededcbfddafb9120b902f4c49a5755b8dc
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Apr 14 10:20:28 2016 +0200

    Ask password at unlinking when the user has no usable password (fixes #10524) (bis).

commit eb2ea06aefb09cd1615dfbffce0038ae8dfb1127
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Wed Apr 13 10:03:09 2016 +0200

    Ask password at unlinking when the user has no usable password (fixes #10524).

commit e80db2691ce6077a08dd326d3aa824a25926b186
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Tue Apr 12 00:18:38 2016 +0200

    Define a registration frontend and manage account creation with FC data (fixes #10621).

        The registration frontend is used when the user is not logged locally
        not with FC. The login template provide a link to the FC login view and
        then to the plugin registration view.

        If the user is already logged with FC, the login template provide a link
        to the plugin registration view.

commit 32e71fcff514a866d6e6d3312e2fcab16a3b16ef
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Apr 11 23:57:47 2016 +0200

    Add a registration view (fixes #10621).

        The view is called to create an account using the data provided by FC
        at account creation.

        The data provided is put in a protected token and sent to the next url.

        If FC provides an email, the view redirects to the activation view.

        If an email is not provided, the view redirects to the email registration
        view.

        The confirm_data parameter of the activation view is a plugin setting.

        Account creation with FC means no password.

commit ba11f6b8cbada544a0009414e0b9486fb51e089e
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Mar 31 19:24:07 2016 +0200

    Display on the login page a button for quick account creation (fixes #10510).

        After a successful sso and no user is authenticated the user is redirected
        on the login page. On the login page, the user may be asked to login with a
        password or to create a new account. The plugin login button is hidden to avoid
        an unecessary loop.

        The patch add an option to display an other button that the login button.
        This button reference the registration page and is filled with data from
        the sso. If skip resgitration with prefilling data options are set on authentic
        the button leads to a direct account creation.

commit 56fb0f012e45bebbcb0f4999bb7ad8e92a8fa8a0
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Mar 31 19:21:07 2016 +0200

    Add new scopes at login (fixes #10510).

commit 315f064f5e37735ae57dff8d7a335fcc1a969048
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Tue Apr 12 12:15:30 2016 +0200

    Remove deprecated idp info form the unicode of an FCAccount (fixes #10628).

commit 6d2c4634534be37c1be6a7f76e14585edcd56120
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Mar 24 21:58:23 2016 +0100

    New image for the linking button and style refined.

commit 6352672798308cb2c8de80bf8a4aac94850815c8
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Mar 24 21:31:35 2016 +0100

    New images for the login button and style refined.

commit 5ee5db17a5d6a0f20038e90f33347977eec622a6
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Wed Mar 16 16:03:06 2016 +0100

    Remove title from profile frontend.

commit f4fceb96b515909d2262853574bf9ea2b4ee0fb3
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Wed Mar 16 13:12:51 2016 +0100

    Inactive users can not authenticate (fixes #10312).

commit 15ca4ed2afa5d3d04eb4bc1308121c174c66905d
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Tue Mar 15 12:40:34 2016 +0100

    Return URL at logout from unlink is not a named url anymore.

commit 1c4a33976e8b9a1526d4b4597e5feecc950666cb
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Tue Mar 15 12:39:05 2016 +0100

    Set an explicit return URL at logout from unlink in app settings.

commit b7012a127f1bd699f836efe6d81321f603d92412
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Tue Mar 15 12:26:30 2016 +0100

    Redirection ending logout return un url, not named url.

commit 5f1c7b36a7c83f5083446b4665c9953459f595e3
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Tue Mar 15 12:25:23 2016 +0100

    Add some debug logs.

commit d28fd50bbbf741aec580403b8866eed1ae99362c
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Mar 14 11:38:53 2016 +0100

    Change default value of settings CREATE and LOGOUT_WHEN_UNLINK

commit 8d2fbe1c2eeafad8522121f0be5cb09a8ce96051
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Mar 11 16:25:40 2016 +0100

    Implement prefilling of registration form (fixes #10267).

commit 968981fff3d7bc6ea6ae412aa3f193d40ed04d46
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Mar 10 17:28:59 2016 +0100

    Really clean session at logout.

commit 3abb7e4eaef4915300011748230b065f41103be8
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Mar 10 17:23:19 2016 +0100

    Update message at account linking.

commit 0b931da020b31c7227d229dee6ef4eabb7332c81
Author: Frédéric Péters <fpeters@entrouvert.com>
Date:   Mon Feb 29 19:56:37 2016 +0100

    translation: fix a typo

commit 2b8a0b2620238fa99233a86438b521e19579da70
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Tue Feb 23 11:28:12 2016 +0100

    Refine data provider management.

        Data is requested using the login or link endpoint view giving
        space delimited scopes in the `fd_scopes` get parameter.

        Data is stored in a dictionnary of scopes in the session.

        Build FD request url using urlencode.

        Use urlencode from django rather than from urllib.

commit f4ddbd363e7aa52cac3baf146cc6c9dbbeef6ef5
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Wed Feb 17 16:57:27 2016 +0100

    Handle ressource resolution failure and fail sso in that case.

commit 51f7ad8dd7406a73d73f5974980147dd1a318c28
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Feb 22 15:58:57 2016 +0100

    Handle errors in access token call as for ressource resolution.

commit c9d8f87d4a570a8803284b879b570bb5d95b99e5
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Feb 22 16:05:37 2016 +0100

    Use a single logger declaration.

commit f1613946d2af4629d69df526fa1471de302c448b
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Wed Feb 17 15:28:47 2016 +0100

    Enhance messages and update translations.

commit 703ca6b5b352c00a0b665bb4f11641d2481e0082
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Wed Feb 17 15:19:59 2016 +0100

    Use the official images and about link (fixes #9718).

        Use the official images for the log in button and the linking
        button in profile.

        Add about page link on frontends.

        Add title for the profile frontend.

        Add translation statements.

commit 4f1843a3c533103c3dc9fcc6794dc3102f6ea4c1
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Wed Feb 17 15:16:19 2016 +0100

    Add a setting for about page url set in the frontend contexts.

        Display a link on FranceConnect about page is mandatory.

        The url in different in testing, the default one, from the
        production mode.

commit 584d922704a62883da378a2f7f32383fb6518d44
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Wed Feb 17 11:00:32 2016 +0100

    Add missing logger declaration (from 89f3efd15f0b).

commit a86f61c9b9e5a09ea6d9503aee465aae01dc64a3
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Feb 12 12:42:31 2016 +0100

    Refactor logout at unlinking.

        Use new setting to enable logout at unlinking. Some cases need it,
        like FranceConnect, but others may not. Disabled by default, enable
        with : A2_FC_LOGOUT_WHEN_UNLINK = True.

        Use new setting for the return url after logout at unlinking. It is
        for now 'account_management' but it could be modified. By default it
        is the same as the return url at normal logout. Then it should be set
        with A2_FC_LOGOUT_AT_UNLINK_RETURN_URL = 'account_management'.

        Use logout url building function in utils.

commit 84d1b3d722f9d5751c6e25b38fd258c2d873a232
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Feb 12 17:56:42 2016 +0100

    Add a setting to enable unlinking when account creation is activated.

commit 9d19fb54c487da27dbe9cc0695d6800c56d6f3c3
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Feb 12 16:04:20 2016 +0100

    Handle token response connexion errors.

commit e484153e46cdc542c96b9b8a56f825d099ea154b
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Feb 12 16:22:26 2016 +0100

    Do not create a new user if the user is already authenticated.

commit 7be7f991d32a602568e79ddfc7def37924a7a6f7
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Feb 12 15:27:40 2016 +0100

    Handle token response errors.

commit 06a9951c3b43d07e3952560a34e510deb4f36f98
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Feb 12 12:38:12 2016 +0100

    Add log at user creation.

commit b00491293a476131f6de674691d668af604b8acd
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Feb 12 12:33:30 2016 +0100

    Move logout url building to a utils file.

commit 170d365ddab0f51c9a9bca0d2923f0148e3195c6
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Feb 12 12:17:41 2016 +0100

    POST data for the token request is not in json.

        As specified in the RFC4769 'The client makes a request to the token
        endpoint by sending the following parameters using the
        "application/x-www-form-urlencoded"'.

commit e421f60c80ec58b88e2a62619b2e72e5ef09655b
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Tue Dec 22 12:15:55 2015 +0100

    Plugin method for logout by redirection and no more logout in an iframe

        A separate Plugin method is now used to return logout profiles
        by redirection.

        The logout by iframe is removed because it is not officially supported.

        Some useless app settings have been remove.

        The next field name can now be set in app settings.

commit 28571cd0497d5f7033b24b08ad28da81ccd573e0
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Dec 3 18:28:13 2015 +0100

    No logout from unlink view when not logged on FC.

commit d083aa2af138d656fbf72415bedc47027dc2dbc8
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Dec 3 18:00:35 2015 +0100

    Logout after unlinking.

commit be2e577463e4c8e8f27d70b13ec3d69dc4b3c9e0
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Dec 3 17:58:52 2015 +0100

    logout_list returns a uri for redirect, string for iframe.

commit 26ff01c617e07f023c8e44bf848adf512352baef
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Dec 3 17:51:11 2015 +0100

    New app settings.

        DO_LOGOUT : Flag to activate logout. False by default.

        LOGOUT_REDIRECT : Flag to set logout by redirect or in
        an iframe. Redirect by default.

        LOGOUT_RETURN_URL : Django url name to redirect after
        logout. '/' by default.

commit 48d8ae832cad6f488e80aeca85c8985070b43784
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Thu Dec 3 17:49:21 2015 +0100

    Add a callback view for logout.

commit d8ac2bd1f5f5a0331911d7e8af795f4f475b16e9
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 16:43:13 2015 +0100

    Remove js popup class for linking for now.

commit 6ef3a569604b492be2c44d7e4764f9dcffc798a5
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 16:34:34 2015 +0100

    Update translations.

commit d55a62fc1979959b48d80090c1b4a911f6c85946
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 16:34:07 2015 +0100

    Update style for a small FC button.

commit 2679bbd52d13170360b788c734c410c78c0904ff
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 16:33:37 2015 +0100

    Add link creation button from frontend profile template.

commit ae646d54cd330f902ed575d68e2b962dc8de871c
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 16:32:58 2015 +0100

    Add translation tag to frontend connecting template.

commit dbf844549ab149323c3e1305ef2ace516f6401d2
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 16:09:24 2015 +0100

    FranceConnect does not take space separator.

commit 1c603dd8c1d9ab0b551b956422b6e369c93ea43e
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 16:08:35 2015 +0100

    Load i18n tag in frontend connecting template.

commit 72817450c646d717042b8861fd3402e210462333
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 16:07:39 2015 +0100

    add load tags in frontend linking template.

commit ec32f90888d96623af35cbbb31c6cfeff63e1e9e
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 14:18:53 2015 +0100

    Enhance FC button style.

commit 1ed0e102996ffddd7c55aa6c832373569407b146
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 12:41:57 2015 +0100

    Adapt templating structure for stylesheet including and display a FC button.

commit a311dd3b34cf5a7cb5d709c3e43eb1a855b6d26c
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 12:41:06 2015 +0100

    Bits of style for a FC button.

commit c3353827bdc16b055fd84831e213d2216e3ded3a
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 12:39:26 2015 +0100

    Add new FC image.

commit b493116cda355c23ce742034b63ad128b604cb75
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 10:55:17 2015 +0100

    Update translations.

commit 19b819c18f7309f6c217d4ecc794232cd1715408
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 10:54:15 2015 +0100

    Modify unicode of FcAccount Model.

commit 24ba87c3e9705c561bd9ff9ec429f1041d71694e
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 10:52:16 2015 +0100

    Add unlink links on account management page.

commit 9542494d9196afbeac17aff05c211ac24f5060e0
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 10:51:44 2015 +0100

    Add csrf token and unlink explanations to unlink page.

commit 56689192f1ae07369e4ce03475af0f5b86306319
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 10:50:25 2015 +0100

    End unlink view.

commit 81ce1becd87eefb75c70de7d177eaa4c5e2cab60
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Mon Nov 2 10:53:04 2015 +0100

    Name unlink url.

commit 713f7783975be02dc1a949f2133d15b6fbb54fe5
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Sat Oct 31 00:39:58 2015 +0100

    add an unlink view

commit 9649f47d3a9028ba5bea130169f9cf6f306d63ea
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Oct 30 12:17:26 2015 +0100

    Use same template as msp plugin for login page.

commit b0b80811f7a5c4117d4648fcd90b8957458ea58d
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Oct 30 11:02:57 2015 +0100

    Update translations.

commit 8c6cd95ae9f3e13015a5ff8652a99c974e756064
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Oct 30 10:50:07 2015 +0100

    Display FC logo with the login template.

commit aa407e7289f79d018f9a1f47c9c237ad48850675
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri Oct 30 10:49:15 2015 +0100

    Add FC logo.

commit 2f1cb52851977bb85a9c465506e414612d0e3a5d
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri May 29 11:34:11 2015 +0200

    Remove trailling whitespaces.

commit dc4b392e643be34d23acaa599f25325bc483319c
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri May 29 11:33:42 2015 +0200

    Add linking content with the frontend profile method.

commit 18199828ead14081e9f8fea7a08df0ea1cd96fa4
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri May 29 11:28:57 2015 +0200

    Add data provider requesting.

commit 00b0f4292d59a1bc1062525c65fd3e0267904796
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri May 29 11:24:26 2015 +0200

    Add settings to define data providers.

commit db8f623e700d14f16a74380c4de8d66c52da3942
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri May 29 11:15:07 2015 +0200

    Set FcAccount user_info field at login.

commit d5e241ce3d976db5384ef3181e75e77fd3264e9a
Author: Mikaël Ates <mates@entrouvert.com>
Date:   Fri May 29 11:13:44 2015 +0200

    Add user_info field to FcAccount model.

commit 3c150e559d9583980224124c744f67de116af5a6
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 28 11:08:43 2015 +0200

    Finish logout, it would be better to do it after logout from all SPs

commit 4a12ab832ea84d0b34a014e6527e6ba55e24d0b1
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 28 10:57:24 2015 +0200

    First working implementation, logout is not finished

commit f1abc831cc9f491a9548ba51e0fb9c4fd506a97b
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 28 00:54:18 2015 +0200

    app_settings: rename enabled to enable

commit 2d740a600b412547b12db73148f4d8d28fb9eb30
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 28 00:41:50 2015 +0200

    remove __version__ and dependency on sekizai

commit 9e252f35ae7d1d15a317e7d7cf4b6b1fa0b8382b
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 28 00:31:26 2015 +0200

    views: add debug logs, improve info log, copy id_token and user-info into session

commit e462747142c26bbf1d80aa5fb1126b32734aa045
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 28 00:26:36 2015 +0200

    auth_frontends: remove profile() method

commit 59006356213ada2c0a0c93ecc2ed7249a30d5b4e
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 28 00:26:18 2015 +0200

    Remove static files

commit a5c11de0801f8ff7b1de437957bcb4a2d3b14806
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 28 00:25:55 2015 +0200

    Remove unused templates

commit 6f64938bb60474cf42f434bc629eedc7b37f5fe3
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 28 00:18:57 2015 +0200

    pep8ness

commit c4ccd540f006280ee078c25aa7f8467268f4cb6f
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu May 28 00:06:08 2015 +0200

    Fix JWT payload extraction

commit b40414e8118e8f3c061d0662a3ece4a8f73dfa94
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed May 27 18:47:43 2015 +0200

    Keep only the LoginOrLinkView

commit 177995a1c83db04c101ee338597e51689a421631
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed May 27 16:07:44 2015 +0200

    Rename MSP plugin as FC plugin

commit d37985d944ab5c89b68bcb9349141f5606d54c43
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Dec 2 11:12:41 2014 +0100

    Fix source package name in changelog

commit 2d28dfa7c2347f59dc844efc5893e2e8dd7c4361
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Dec 2 10:57:08 2014 +0100

    Initial packaging

commit 2f8f1976227127e21ced4b95af899169214b4e63
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Mar 12 18:04:10 2015 +0100

    Use reference to the custom user model

commit 9ce5e1c1b4e3cddea85de15251950732fb61d9a8
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Dec 10 16:01:18 2014 +0100

    bump release to 1.0.5

commit 35baf707d283d9989a9411418baaaa671e56b91f
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Dec 10 16:01:05 2014 +0100

    Update french locale

commit ac648a1ba03d5610feb738e24768147f85837193
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 5 16:43:44 2014 +0100

    bump release to 1.0.4

commit b010e404042ca4722ee9243f49de5300b10bd1c6
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 5 16:43:08 2014 +0100

    Fix production URLs for token and APIs web-services

commit dbb4cae289c947a98522e2198f2aac34a291cc04
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Dec 3 20:03:27 2014 +0100

    bump release to 1.0.3

commit 6402763de2188bcb4a2055453491a8161e01b6c0
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Dec 3 20:02:52 2014 +0100

    Fix unclosed tag in linking.html template

commit 1cf16296b341dfd1b6c1c74db25e82107c73d074
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Dec 3 16:36:20 2014 +0100

    bump release to 1.0.2

commit 4127656cf92254687980ef0598b72c2fba6753c9
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Dec 1 14:31:26 2014 +0100

    Fix escaping of URL as a javacsript string

commit aadcdc42596a6118b10ac8234a63dcf6003251ca
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Dec 1 14:30:23 2014 +0100

    Hide the MSP block when the nomsp parameter is present in the URL (old behaviour broken)

commit 55919393dd63335d014ce8ba1e2e55f20e91460a
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Nov 21 18:32:18 2014 +0100

    bump release to 1.0.1

commit a91ccfa8bda04fa10d07cca585fde4baa54034d4
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Nov 21 18:29:59 2014 +0100

    bump release to 1.0.0

commit b1425e4cacadab62e81b13a15732c914bf672d78
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Nov 21 18:29:30 2014 +0100

    Set default URL for MSP production endpoints in app_settings

commit e2814ad5c1f7151ef04b2ded06e361ec1a5f42b1
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Nov 21 17:08:43 2014 +0100

    Delete MSP links on account deletion cron job and also when the DeletedUser object is created

commit 6884f31e3f7eba0f1c227c36a41046db9334b5e5
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Nov 21 16:06:23 2014 +0100

    Implement the authentication frontend using the new API

commit ecdc5baa548041241b147cf6cd8e98e6685ab5c6
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Nov 21 16:06:09 2014 +0100

    Add custom CSS to add some margin on top of MSP dialogs

commit 51d92940bc7dc0d99b7c2b5fa108190892c5fee2
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Nov 21 16:00:47 2014 +0100

    Load popup javascript at end of page

commit 74ce5357e29b73d2bd6219ea6fe81a628917616c
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Nov 21 15:59:47 2014 +0100

    Fix template paths

commit 7ebaece2b4107a6153636e28e5c880b608f74e16
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Nov 20 15:03:23 2014 +0100

    Log when an existing link AGC is changed

commit 3425cf24b3f834c34374ea7b97873cfe154c568f
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Nov 20 15:03:04 2014 +0100

    When creating a new link or changing an existing link, delete existing ones to the same AGC

commit 0e72402e78c5be8634ab80a2273074eac7fd0c82
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Nov 20 14:51:21 2014 +0100

    Improve logging

    - add a mixin to initialize a logger in the view __init__ method
    - log login, link creation and link deletion

commit 98d9ee8a146ffdabadf9022f0957693d57a052cd
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Nov 6 22:06:50 2014 +0100

    Fix import of ImproperlyConfigured in app_settings

    Global import does not work in app_setings files.

commit a939f2ab802916352d36f187cb4681b169f1b4a3
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Nov 6 21:22:23 2014 +0100

    Refactorize application to make it an authentic2 plugin (2/2)

commit 8754c06b1e8e486af8d03b94ff8e57630c01c00a
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Nov 6 21:15:33 2014 +0100

    Refactorize application to make it an authentic2 plugin (1/2)

commit 23ed19e17db5bab78190182db1a48c3f7aa4719b
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Sep 23 16:07:05 2014 +0200

    Create MspAccountManager with a cleanup() method to cleanup obsolete MSP link when the cleanupauthentic command is run (refs #5573)

commit 5e7d3999f0bcd4560e9161c625153a41cd5c2a8e
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Sep 23 16:06:22 2014 +0200

    Make MspAccount.user nullable (refs #5573)

commit 15138c5365804bf5abe173915821eab6236b7f4d
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Sep 23 16:06:02 2014 +0200

    Add an api_call method to the MspAccount model (refs #5573)

commit 2213fbb1502ad97fc707c4a670552a47dabba0cd
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Sep 23 16:05:08 2014 +0200

    Do not initialize the logger globally in msp models (refs #5573)

commit 97c92316531ae86bbd6d58a9c1df8b3062b922ce
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Apr 29 15:50:58 2014 +0200

    msp: pass error from MSP to authorization requester

commit 31ff987833294b6c600d8061b36a17448ee410df
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Apr 25 13:44:01 2014 +0200

    msp: remove debugging statement

commit 5bf0c77aa6ee5a3bfece3ae7d25f4c74aadf43fd
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Apr 11 15:23:06 2014 +0200

    apps/msp: add support for getElementsByClassName on all browsers

commit e596a3a7c5b4482c0387bfb383e86052bce2d94e
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Mar 24 16:47:01 2014 +0100

    msp: fix app path in urls.py

commit 375a236bc4bb690d07a151c7885845ca6092b738
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Feb 25 15:50:52 2014 +0100

    msp: make login-or-link the default behaviour also for connexion from the login page

commit de1aef597d7d05c01849d891f3135b5d94fd78e6
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Feb 6 14:19:46 2014 +0100

    msp: log when deleting stale msp accounts

commit 0f727cfde68bb870ff6fb794adaf24b4cf35db42
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Jan 21 09:03:41 2014 +0100

    msp/views: fix missing variable cache

commit bc2aaced0b382421c1d46d14927de131db8cc37b
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jan 8 11:36:23 2014 +0100

    msp: always ask for the DEL_AGC scope with the GET_AGC scope

commit 85443ef0e03bc4679f303eefc245c307cd526e72
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jan 8 11:30:30 2014 +0100

    templates: fix wording

commit 3a9a183470392b2dd16a701a8ceb7b917bb83aca
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jan 8 11:18:34 2014 +0100

    msp: replace PARTENAIRE in MSP templates by 'compte citoyen'

commit ee89600fa8c280022258726b873cb1ae8e99c9d6
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Jan 8 01:18:45 2014 +0100

    msp: use all graphical and html resources from MSP

    - 3 new views: link management, unlinking confirmation, unlinking done.
    - corrections to close-popup-redirect.html to work with URL passed
            through template variables and not the query string

commit 47612935749a39defd2347a97dec3d1d3f9e7b61
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Mon Jan 6 12:46:10 2014 +0100

    msp: integrate msp theme

commit 8e4f66965339140eaca0e599ecb2af361236936c
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Thu Dec 19 21:56:32 2013 +0100

    msp: do no throw an unicity constraint error when user try to create a new link when an existing still exist

    Problem happens when deleting a link from MSP a trying to recreate it.

commit a9de94d5b6ea70476eebcc251b6151732b06bd25
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Dec 17 23:14:27 2013 +0100

    msp: allow the authorization view to display in cross-domain iframes

commit c200d220484cd371c041d56ef677c1dd5da556c0
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 16:44:43 2013 +0100

    msp: argument next_url of redirect_and_come_back should support query strings

commit 2b0bb864510cfed98f7be94e6064aadc5194b2ab
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 16:39:29 2013 +0100

    msp: hide the connection box when nomsp is in the query string

commit 0145490d1364c892d8e8b5e68fbecc61d25dcc34
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 16:34:00 2013 +0100

    msp: update fr translation

commit bbd70b01e4d9097322ace67e05d14be16856cee1
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 16:32:33 2013 +0100

    msp: in link creation from msp workflow, add message to incite the user to authenticate

commit 922ca754adf39a2e3067d96a7e900eb84238974b
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 16:19:05 2013 +0100

    msp: add a refresh token method to MspAccount models to verify if the account link is alive

commit 239b002e4227f60bb72af2ec5a66a5f900063362
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 15:59:24 2013 +0100

    msp: when creating a new link, save the access token

commit 11a47cfeb5c6d32a1e64c1ad4fe6acaeaabdb72c
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 15:57:54 2013 +0100

    msp: preserve access token in callback views after call to the token web service

commit 2ec1c594852ad914779e8a8978a29ce67dc682dd
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 15:57:35 2013 +0100

    msp: update fr translations

commit 14cbec1035b0a1b74f9b4e048f5d0e40beba7f29
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 15:56:48 2013 +0100

    msp: store access token in account association object

    The access token is used to get to the refresh token for verifying
    existing links.

commit 1d000b35c9fb126cf30b7010adaa78bf7f27b77d
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 15:09:50 2013 +0100

    msp: cleanup

commit e9be4cf4af4ccc73040589140b5964f97c679b30
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 15:09:21 2013 +0100

    msp: add login-or-link view

commit ef50486c29047c22ed4cc7768c0e389e101b0857
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 15:08:11 2013 +0100

    msp: remove dead code

commit a9c59367493af5068b72bcd400da20ee60749641
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 15:07:39 2013 +0100

    msp: add redirect_and_come_back() for redirect to another page and then coming back to the current one

commit 8275959f363161455736f9f0a7a1f56314a2f67c
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 15:06:34 2013 +0100

    msp: add a next_url argument to the redirect() method it overrides default computation of the redirect URL

commit 2d6e2218ed072096ae7aa4641d9f5417d2d12802
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Dec 6 15:05:09 2013 +0100

    msp: clean unused imports

commit 69100fe4cbd03e52bcdfe3b29a8b8b3c13bae7d2
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Nov 20 15:10:15 2013 +0100

    msp: fix authn context name

commit d1e84dbe87d775806185f7c324f1bc47040cb6e7
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Nov 20 15:09:17 2013 +0100

    msp: fix missing self argument

commit 09dd4e2ef34c5b162c5331243a928c48ff6f86a5
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Nov 20 15:05:34 2013 +0100

    msp: msp authentication is equivalent to password authentication over HTTPs for SAML 2.0

commit 8bd9864ec8db8003a2ce64903dd7c73e66b521b3
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 18 14:59:51 2013 +0200

    msp: add OAuth2 and rest proxy endpoints

commit 226344d1c672b678c6ce1446303800160d9c17ab
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Oct 16 10:57:04 2013 +0200

    msp/locale: fix syntax error

commit c86a1f9353a0d93d13d0a009cc150fd2fd7c8401
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Wed Oct 16 10:10:24 2013 +0200

    msp/locale: fix grammatical error, use mon.Service-Public.fr as MSP name everywhere

commit 10a3e9d09897391839b160e442a93056ff3567f1
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Tue Oct 15 23:23:53 2013 +0200

    msp: add missing static files

commit 2c5f4d84ce8afb91e062acc04914558a939c4a36
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 11 22:53:05 2013 +0200

    msp/views: remove remaining reference to SSOViewMixin

commit 0016d5fd597d8e5e993b083132ef996636e1acac
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 11 22:52:15 2013 +0200

    msp: remove SSOViewMixin and reduce scope required for sso views

commit 986b6d0b6a55e5c5adf3efa7a6064a9fbf2c80dc
Author: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date:   Fri Oct 11 17:33:20 2013 +0200

    add msp integration application

    Requirements
    ============

    Your base template must use django-sekizai and must contain a sekizai block named
    "css" and another named "js" respectively for stylesheet and javascript files.

    Installation
    ============

    Add the application to your installed apps::

       INSTALLED_APPS += ( 'msp', )

    Install the authentication backend::

       AUTHENTICATION_BACKENDS += ( 'msp.backends.MspBackend', )

    Define needed settings, we show here the default values::

       MSP_AUTHORIZE_URL = 'https://mon.service-public.fr/apis/app/oauth/authorize'
       MSP_TOKEN_URL = 'https://mon.service-public.fr/apis/app/oauth/token'
       MSP_API_URL = 'https://mon.service-public.fr/apis/'
       MSP_CLIENT_ID = 'id assigned by DIMAP'
       MSP_CLIENT_SECRET = 'secret assigned by DIMAP'
       MSP_CLIENT_CERTIFICATE = ('/my-path/my-certificate.crt', '/my-path/my-certificate.key')
       MSP_VERIFY_CERTIFICATE = False

    You must plug the application views in your urls.py file by adding this
    content::

       url(r'^msp/', include('msp.urls')),

    To link your account to MSP or unlink your account from MSP, add the following
    content to your template::

       {% include 'msp/linking.html' %}

    It will show a linking link when unauthenticated and when no msp account is
    linked to the current account or an unlinking link when authenticated and a
    to MSP exists.

    To show a connection box include this content in your template::

       {% include 'msp/connecting.html' %}

    To make the include file use a popup to talk to MSP add the popup parameter
    like in the following content::

       {% include 'msp/connecting.html' with popup=1 %}