Development #20852
Intégrer authentic2-auth-fc dans authentic2
Début:
21 décembre 2017
Echéance:
% réalisé:
0%
Temps estimé:
Patch proposed:
Oui
Planning:
Non
Description
L'externaliser n'a plus de sens.
Fichiers
Révisions associées
Historique
Mis à jour par Benjamin Dauvergne il y a plus de 6 ans
- Fichier 0244-Prepare-merge-into-authentic2.patch 0244-Prepare-merge-into-authentic2.patch ajouté
- Fichier 0245-auth_fc-add-to-MANIFEST.in.patch 0245-auth_fc-add-to-MANIFEST.in.patch ajouté
- Fichier 0246-auth_fc-add-debian-packaging-to-prevent-conflict-wit.patch 0246-auth_fc-add-debian-packaging-to-prevent-conflict-wit.patch ajouté
- Patch proposed changé de Non à Oui
Je ne pose que les nouveaux patch par rapport au code d'a2 et de a2-auth-fc, le premier est le dernier patch au dessus de a2-auth-fc pour nettoyer, les deux autres sont des patchs une fois le code mergé pour:
- ajouter les fichiers static, locale et templates au packaging d'a2
- faire en sorte que le paquet python-authentic2 remplace python-authentic2-auth-fc (mais il y a un pendant dans le dépôt authentic2-auth-fc pour avoir un paquet de transition1)
Mis à jour par Benjamin Dauvergne il y a plus de 6 ans
Ça rendra la chose probablement plus simple, mais avant de finir ce ticket je vais intégrer les modifications en cours comme ta réécriture du README que je vais essayer de ne pas perdre.
Mis à jour par Benjamin Dauvergne il y a presque 5 ans
- Fichier 0001-integrate-authentic2-auth-fc-in-packaging-20852.patch 0001-integrate-authentic2-auth-fc-in-packaging-20852.patch ajouté
- Statut changé de Nouveau à Solution proposée
Je ne poste que le commit d'intégration, le reste c'est le tip de a2-auth-fc restreint à src/ et tests/ avec les tests déplacés dans tests/auth_fc/ via réécriture de l'historique.
Mis à jour par Benjamin Dauvergne il y a presque 5 ans
- Fichier 0001-integrate-authentic2-auth-fc-in-packaging-20852.patch 0001-integrate-authentic2-auth-fc-in-packaging-20852.patch ajouté
Tests auth-fc renommés.
Mis à jour par Benjamin Dauvergne il y a presque 5 ans
- Fichier 0001-integrate-authentic2-auth-fc-in-packaging-20852.patch 0001-integrate-authentic2-auth-fc-in-packaging-20852.patch ajouté
ImproperlyConfigured sur accès à app_settings retiré, ça casse freezegun.
Mis à jour par Frédéric Péters il y a presque 5 ans
- Statut changé de Solution proposée à Solution validée
Mis à jour par Benjamin Dauvergne il y a presque 5 ans
- Statut changé de Solution validée à Résolu (à déployer)
commit 7eda057909ec3ebc6ff17d14ff5a9137595e5b65 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue May 28 15:57:08 2019 +0200 integrate authentic2-auth-fc in packaging (#20852) commit 30dc69eeb5dd1ddf99d52763d873be94964b91b9 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri May 17 11:01:15 2019 +0200 views: do not set password on unlink for LDAP users (#24710) commit 11dccefc811a2cf1dbf305f76ed087f48596f73b Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 16 18:13:18 2019 +0200 show change password link after user unlink (fixes #32953) commit 95d59c86d0cdd65ce11d1a69e70ae0c70a290559 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 16 17:58:17 2019 +0200 views: clean FranceConnect session variable on unlink (#32953) commit 1c40ec3f41249e965ec57e0eca319bcdb1e6d9e6 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 9 19:19:18 2019 +0200 adapts to spring cleaning in authentic (#32866) See #32934. commit 338b02cd9985baf34244a22b413b84b2479f1ea7 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue May 7 14:31:07 2019 +0200 py3ize obviously non-compatible code (#32866) commit 8d27718f51fc9d6e30259dc22cb8b8213dd92b1e Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue May 7 14:07:59 2019 +0200 improve code style (#32866) - remove obviously dead code (reported by flake8) - fix PEP8 violations - rename variable using stdlib builtin names - use get_version() from combo's setup.py commit 72d48a8326b81e3ff996c38269c7fbcbe7fbd109 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue May 7 14:05:39 2019 +0200 add copyright headers (#32866) commit 3ca5c43a7332eee7f8134aa2fa5cf547bfc29f09 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri May 3 10:11:47 2019 +0200 apps: hide password management link when FC authenticated (#27083) It's done by implementing a2_hook_user_can_change_password on the AppConfig object. commit ffc66bcbfa14471f5f72df5ee3955936e9914be9 Author: Serghei Mihai <smihai@entrouvert.com> Date: Wed Mar 6 14:16:23 2019 +0100 misc: rename authentication "frontend" to "authenticator" (#14475) commit a8c3559f87ffee86332a87166f99ceec99e42d90 Author: Frédéric Péters <fpeters@entrouvert.com> Date: Wed Jan 2 17:29:04 2019 +0100 templates: add alt texts to image links (#29408) commit 2ea59ce790d49e31db8fad0eedb5ed03ee63800c Author: Frédéric Péters <fpeters@entrouvert.com> Date: Wed Jan 2 17:26:04 2019 +0100 tests: adjust not to find link by label (#29228) commit 4fbe554bb0177364cfa95fba24043d9918fa93dd Author: Frédéric Péters <fpeters@entrouvert.com> Date: Wed Jan 2 15:22:07 2019 +0100 improve markup of login_registration template (#29228) commit 0525533f85fe8e24bde4ba485c0e9be87792addd Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 14 09:47:48 2018 +0100 views: search email case insensitively (fixes #29007) commit 483b0dce961cebed1774542d4a8727138c97c5d7 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 5 19:03:41 2018 +0200 lock first name and last name (fixes #27044) commit d082fb4998d1089c3649094d41288c9f1afa043a Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 5 16:47:26 2018 +0200 utils: apply mapping to custom attributes before static ones (#27044) It's impossible to set a verified first_name or last_name without it. commit 517dad7553740acbf1dd8119a00ab980c938889e Author: Serghei Mihai <smihai@entrouvert.com> Date: Wed Oct 10 10:09:44 2018 +0200 center explanation text (#27182) commit 1b8ee0a38a10d180d9c32439484339b69d3a5887 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Oct 8 12:07:04 2018 +0200 launch tests with Django 1.11 (fixes #27095) commit 929b58d989bea0d7f0762ac09646e56b3ccbdefe Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 5 19:04:19 2018 +0200 views: pass service field to fc login post registration (fixes #21908) commit 18ce5d5b152ec6468044c6c63c2f5ce626d93846 Author: Serghei Mihai <smihai@entrouvert.com> Date: Thu Sep 6 19:24:28 2018 +0200 css: do not force button height (#25763) commit d3c163a62ede079114d7e5cfe7e81028d1962c21 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Sep 26 23:30:48 2018 +0200 add missing close tag (#21908) commit a9823e5a716269e7f1e8a86935144431c07cb737 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Aug 10 12:48:47 2018 +0200 update french translation (#21908) commit a041be4668ae05abc330f6f186bae0b249e50b89 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Aug 9 15:37:19 2018 +0200 keep authentication context (fixes #21908) - simplify and reorganize login templates, - URL are not built inside templates anymore, - we have now 3 different templates: - login.html for the login page - registration.html for the registration page - linking.html for the account page - using feature from #25623, authentication_method is kept by the registration view. - the service slug is correctly threaded between every views. - explanations about FranceConnect are now done in a common template "explanation.html". - restore popup mode, use it through setting A2_FC_POPUP=True, it works for: - login and login with registration (workflow for login with registration is a bit complicated), - registration, - and linking (linking your existing to FC through the "My account" page) unlinking is not handled with a popup. commit 06d4e913fed59713d7389c6746354c52244b46e9 Author: Frédéric Péters <fpeters@entrouvert.com> Date: Mon Aug 13 11:48:13 2018 +0200 don't alter can_reset_password flag for users without an FC account (#25655) commit c4eade4d96d929d98f3f2b7d17aa9ee87d3e1259 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Aug 2 18:56:33 2018 +0200 remove use of context_instance (fixes #25532) context_instance is not passed anymore by authentic2, and giving context_instance=None to render() prevent the request object to be feed in the context of the template, breaking some templates. commit e78fbbd68df16b9bd13d7e3cd1ef370eccde4bc2 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Jul 30 15:51:01 2018 +0200 implement AppConfig.a2_hook_user_can_reset_password (fixes #25535) It returns True if an user is linked to an FC account, it allows any FC user to login to its account as long as it still has control of the FC email even if he has lost its FC credentials. commit 54edc159b2a7f19a49c8480ab32e460d71346ade Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Jul 30 15:49:52 2018 +0200 do not set a password on FranceConnect users (#25535) As user don't know this password they can never change it... commit 87e2a5fb7593c98ba094108beabfb55a9cd6e1ab Author: Emmanuel Cazenave <ecazenave@entrouvert.com> Date: Fri Jul 20 11:18:19 2018 +0200 don't load authentic2 template tags (#25393) commit 126dbd165635fc95100f02dbc73bb54131c70aa3 Author: Frédéric Péters <fpeters@entrouvert.com> Date: Wed Jul 18 21:42:43 2018 +0200 templates: merge duplicated class attributes (#25353) commit 3340c52c09965e946775e84678f93b6f6ccd4f12 Author: Frédéric Péters <fpeters@entrouvert.com> Date: Wed Jul 18 21:39:07 2018 +0200 misc: don't use addtoblock to insert fc.css (#25356) commit b8efc1a6456fc802b74de8bc02ad5cb0a88be48b Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Jun 29 16:34:40 2018 +0200 tests: add tests on new password related functions (#24835) - verify new users have a password set - verify old users keep their password on linking and are not asked for a new password if they used their password for logging in. commit 90eefd42eb51c4affc13b0b71d3ac42e7e65bb25 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jun 27 20:00:57 2018 +0200 app_settings: set password to random value by default (#24835) commit 1995891e5fd3ab4e99aad36b58304fed5f832d76 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Jun 29 16:33:16 2018 +0200 views: ask for new passord on unlink only if logged using FC (#24835) commit 2522e75b5b6ee512cb56d135b9752fc24cf7c6e9 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jun 27 20:00:13 2018 +0200 utils: fix typo in warning log (#24835) commit c7521da95ab50d4d637af8a422d0b5c07a893c90 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jun 27 19:59:58 2018 +0200 utils: add special case for mapping the User.password (fixes #24835) The goal is to set a random password for new accounts, so that they can recover it. In this case we use the value {"compute": "random"}. commit 58a10db62c870819b7aa15b9fd31aaf2ab2d31da Author: Josue Kouka <jkouka@entrouvert.com> Date: Mon Jul 2 14:26:33 2018 +0200 use REQUESTS_PROXIES instead of A2_FC_REQUESTS_PROXIES (#24929) commit 6b424ded2f1dde1e78533bfda7c207263c5a9cdb Author: Josue Kouka <jkouka@entrouvert.com> Date: Tue Jun 26 11:47:18 2018 +0200 add fc requests proxies support (#24713) commit e688ba407618d1a4eb52d70123b81420d9681be8 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Jun 22 15:39:50 2018 +0200 views: prevent None success URL in unlink view (fixes #24708) Logout URL to FC can be None if the current session was not opened through an FC authentication. commit db85ba1e37baabf2496eef1ba33755d9297fd3d7 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Apr 26 15:42:15 2018 +0200 utils: fix access to verified property of mappings (fixes #23271) commit 5ea5056f09463f0f1f60bd1d92be05f19235c321 Author: Elias Showk <eshowk@entrouvert.com> Date: Wed Apr 18 15:43:33 2018 +0200 remove url patterns to support django 1.11 (#23270) commit 21b4f96e8d3d19141ad30c96d18d0c5c04c2bdca Author: Frédéric Péters <fpeters@entrouvert.com> Date: Fri Mar 9 13:30:29 2018 +0100 do not allow unauthenticated access to unlink page (fixes #22405) commit 1008ebb4e8e7a76185b310a1bda204b3fa5910ff Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Feb 19 13:40:28 2018 +0100 api: add franceconnect information to user's API when ?full is used (fixes #21962) The following field is added to user's attributes if FC plugin is enabled and the "full" parameter is given to the user's API: "franceconnect": { "linked": true, "link_url": "https://idp/accounts/fc/callback/", "unlink_url": "https://idp/accounts/fc/unlink/" } commit 10337ad9524f8e2d82a92cf69544fa2740a448e8 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Feb 15 13:18:48 2018 +0100 locale: update french translations for release 0.10 (fixes #21874) email was replaced by « adresse de courriel » everywhere. commit c0f2d4d940b5d2230e77810026dd52491e2f09cb Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Sun Feb 11 22:42:43 2018 +0100 views: show warning to users with a mail linked to another FC account (fixes #21292) The warning will help them connect their FC account to normally registered account. commit a8cc9cc6ac2eebc1801285a99deff323c0d2e6cd Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Sun Feb 11 22:09:36 2018 +0100 retry HTTP requests 3 times (fixes #21783) Retry is applied to access token request and user info requests (through OAuth2Session). There is a small exponential backoff of 0.5 and 1s. Also decrease log level of message for failure of retrieval of the access token or the user info to the level WARNING, that's never been a problem for the user, as he was correctly redirected to its origin (usually and IdP endpoint). commit e4a6e58b069febc6c952bdd8f4ec3bb8065b903f Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Jan 22 11:54:28 2018 +0100 add support for service slugs on login commit 7fb822048ef893934bc69bdc479d11a337df29fb Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Jan 22 11:50:02 2018 +0100 fix login with a non-unique email where an account linked to another FC account already exists commit b5b1749dd815e4cf5e7e362c722c88a88a337605 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Feb 1 16:44:43 2018 +0100 augment timeout on POST to FC to 10 seconds (fixes #21596) commit 7a76b9e9516387b57568feef994312f309dd16ab Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Nov 27 09:52:59 2017 +0100 add request to fc-link hook (fixes #20288) commit 6bce73ec972f72ff14ce530507dfd0139bc2e806 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Nov 22 21:16:36 2017 +0100 call a2 hooks for linking and unlinking events (fixes #20228) commit 5da8849b6fdfa5e39e9bee647ad4920a868ec115 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Nov 14 11:38:56 2017 +0100 update french translations (#20078) commit 3594460be56040de3727febfaf6f33cb9b5e6e96 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Nov 14 11:37:24 2017 +0100 views: change messages levels (#20078) commit 8c3387c4592abfb2be3d8dfd4929d9a7503cf0e9 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Nov 14 11:37:10 2017 +0100 views: do not permit linking if the user has already a link to FC (#20078) commit 387252a3d04c719726e258d64962b9d5f1921281 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Nov 14 11:33:57 2017 +0100 views: forbid automatic linking based on email if multiples users are found or if target user has already a link (fixes #20078) commit ccffde71b0d71f97f0a46ad1f24ad7ae7439f9bd Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Nov 8 17:38:31 2017 +0100 backends: make sub parameter non optional in authenticate() commit ccb4db5a210b19a5b57b67c3d80f5d94b42788ef Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Nov 7 17:33:37 2017 +0100 always unlink from all FC accounts (fixes #19947) commit 2de20af1073ba78bb0ac89d250be49d6458d0e84 Author: Serghei Mihai <smihai@entrouvert.com> Date: Mon Oct 23 08:55:04 2017 +0200 update FC logos (#19585) commit 8cae4f51329b472c3357381a6fd9fc8740e76beb Author: Serghei Mihai <smihai@entrouvert.com> Date: Wed Oct 11 22:34:38 2017 +0200 update login and register buttons images (#19162) commit 42bc28067c31f891071b70719d91b4610333ddbe Author: Serghei <serghei.mihai@devlibre.net> Date: Thu Jul 6 12:04:38 2017 +0200 replace logo image for account linking (#17391) commit 4894bb1f5716980508ebe9a0d0163041ba81c253 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Oct 9 15:15:04 2017 +0200 views: force fc-register to always redirect post registration to fc-login-or-link (fixes #19270) Without it linking to FC does not happen commit 8a5d976659f402482e2fc5b85943856dd2900913 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 6 14:13:10 2017 +0200 utils: allow a mapping to depend from another using tags (fixes #19251) commit ee2a823866179931208b530318335cfeffb1f548 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 6 14:10:39 2017 +0200 utils: add an if-empty modifier to only set a value from FC if the existing value is empty (fixes #19250) commit 6d01145b88a86c73fb06f9e6a21ae2bf9bdae5fc Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 6 14:09:30 2017 +0200 utils: normalize mapping in apply_user_info_mappings (#19250) commit a55a6f5b45abccf3a203524a414928dda47c7326 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 6 13:15:15 2017 +0200 views: block DisplayMessageBeforeRedirectMiddleware on redirect to FC (fixes #19247) commit 7a289dcf3fd04a3f2a0a7377fbb67649b4dd86fd Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Oct 5 15:33:08 2017 +0200 utils: add a notempty transformation for attribute mappings (fixes #19233) commit 2b333eb18c14c358b09f0f20a6e52845cc5fe9f1 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Sep 18 15:43:59 2017 +0200 django 1.9 compatibility commit 1c5b76452fd6af13aead250c5573c4ad3978584d Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Sep 18 15:36:10 2017 +0200 backends: always create new accounts in the default OU (fixes #18764) commit 20de25fe0ebcf972ebb45a7dc66a89e701a77e6b Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Sep 18 15:48:48 2017 +0200 views: automatically link user with existing email if email is unique (fixes #18763) Email must be unique if settings.A2_EMAIL_IS_UNIQUE is True or get_default_ou().email_is_unique is True. commit fbb562a8941df7ee8d67b2cfa73e518a9d074f73 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Sep 18 15:49:20 2017 +0200 models: check issuer using only URL scheme and netloc (fixes #18766) commit 922cea34d39f95da0d747f9fb45477af7e6cb4bd Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Sep 5 16:35:21 2017 +0200 tests: test with non ASCII characters commit ea0a2541a9bb48749d2f9179956c45658b84313f Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Sep 18 16:20:49 2017 +0200 utils: do not set absent references to None, ignore them instead (fixes #18765) commit e1b125b3a329d3a4d62b3f99c26f51808f703604 Author: Frédéric Péters <fpeters@entrouvert.com> Date: Sat Aug 12 17:50:35 2017 +0200 style: switch to extra-body-class for custom body class (#17983) commit 219e0ce8848beb85db483ec7ac0a39fed09824c5 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Jul 28 16:58:04 2017 +0200 views: remove dead code commit 3c189a5bdab629a0490b72d425ffdc7340e6eb73 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Jul 28 16:57:56 2017 +0200 utils: allow referencing a sub object of user_info in attribute mapping commit c05bb4804f9b4782f833ee41d74e750cd5c63582 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jul 26 19:06:40 2017 +0200 views: add setting for FC scopes commit 22c88a194166cf05f9bc59b4355f8f76bbd32745 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jul 26 19:05:38 2017 +0200 backends: fix logging of unicode strings commit 7723df78cc19537e4a6cd5d070134a642e02f5b5 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Jul 18 19:29:37 2017 +0200 utils: fix mapping of user attributes commit be4a827dce36021b6ac61ac4a552b264d1fa01d3 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Jul 11 16:45:51 2017 +0200 indicate registration URL is coming from france connect module commit e11e14605c65c6d66c941555b1b6a6a68c69a1bb Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Jul 11 16:45:25 2017 +0200 redirect to auth_logout if no post logout redirect URI is found commit a086047684e04674409335a17c7c488038ebd753 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Jul 11 16:24:03 2017 +0200 fix typo introduced in commit a7677f4bc0aa (#17331) commit 860c57f29300eeb64a71c064c83fdbc8b9eea536 Author: Serghei <serghei.mihai@devlibre.net> Date: Thu Jul 6 18:00:56 2017 +0200 templates: use different ids for link and its container (#17421) commit f06b342716b90d896ba621dc3c4b4895ac5789d7 Author: Josue Kouka <jkouka@entrouvert.com> Date: Thu Apr 13 17:13:51 2017 +0200 allow fc unlinking through api (#15297) commit fecfd38f9e0357f62fb70bf03b7f6f50747639d2 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jul 5 09:59:39 2017 +0200 do not logout from local session on unlink (bis #17331) Fix bug introduced in previous commit. commit 21ca2bb5a0040aeb4288cc9b7bd199c7a169369c Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Jul 4 12:06:26 2017 +0200 do not logout from local session on unlink (fixes #17331) commit ad43f17f4723c660c210439a6825558dac10261b Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Jun 22 13:41:22 2017 +0200 fix issuer check commit 5a8bf44e5df045c3e1df57090874bf0bfc736268 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jun 21 11:16:51 2017 +0200 use only underscores in session variables to allow access from templates commit 673ddea9db4c8ffcdd8ba30c076f0171818c27e2 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Jun 15 15:48:45 2017 +0200 improve reporting of error on access token requests commit f94461ea860349b10faa2deff01e34ea5dcd3c63 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Jun 15 15:45:05 2017 +0200 validate id_token Signature is validated, exp, aud and iis fields are checked. Also add tests using tox and py.test. Proper validation of signature is verified using jwcrypto. commit 7d34d13e88cd1291416a72a49373e2101fb84a9f Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jun 14 09:43:41 2017 +0200 use state as nonce and check nonce returned in id_token commit f3671f1206cb660914a94cd12375d1033cdba5c9 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jun 14 09:36:54 2017 +0200 add missing data files insee-communes.json and insee-countries.json commit b32567115cc03dd6a695ae5a362773dcfc516294 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jun 14 09:35:53 2017 +0200 pep8ness commit 17ff1e79281af2168dcf5718d401a4a64b7c8889 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jun 14 09:35:41 2017 +0200 generate a random state linked to the session Instead of encoding the redirect_uri in the state we: * generate a random state with 128 bits of entropy * store the state and the redirect_uri in the session * verify that the state exist when receivng the callback * retrieving the redirect_uri linked to this state from the session commit 642782bbec343cdeac919e911974092c2df2baad Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Jun 8 17:12:48 2017 +0200 set confirm_data="required" when auto_register is used (fixes #16771) When auto_register is used, users should not see the registration page at all, even if optionnal attribute fields are unfilled. commit 115b55019992fe8e8da84b012aedadd7b3da3b90 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Mar 21 17:00:48 2017 +0100 redirect to logout on unlink commit ded531a8d4db523dd9dfcb9ed01ae2b7eb7d6aea Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Mar 10 10:16:37 2017 +0100 do not log an error for normal oauth2 errors Such error happens when authorization code is out of date or already used. commit ce4dbae90ea08a39aff753d812d4fae06f3fe05b Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Mar 7 11:29:57 2017 +0100 improve mapping of FC attributes to A2 attributes (#10062) commit 4d08e88ac843d21dfdea811e783794a73561a617 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Mar 3 14:28:35 2017 +0100 pep8ness commit becc4f893d19fc9096ece03c01711540137584cd Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Mar 3 14:28:27 2017 +0100 always return to /logout/ after FC logout (fixes #15223) commit 51950e59eef483f34a5ab5b1e91e9568cf84438f Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Feb 2 21:24:26 2017 +0100 update french translation commit 2f325c5a80e10aff2685a4118a060452f87a70bf Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 16 18:43:28 2016 +0100 use authentic2.utils.login instead of django.contrib.auth.login (fixes #14338) commit 805a5d352e652843b4eb9b13079a3b4507f1d991 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 21 20:53:33 2016 +0200 fix deprecation warning about get_cache() Since Django 1.8 get_cache() is deprecated in favor of caches[]. commit d10b357fb18f5eb777067b109d86aecf724006df Author: Frédéric Péters <fpeters@entrouvert.com> Date: Mon Sep 19 08:45:08 2016 +0200 style: don't let button oversize its container (#13216) commit dd2fb7350a451a0b79876b43cb60c6f37de6f7f3 Author: Frédéric Péters <fpeters@entrouvert.com> Date: Wed Sep 14 09:27:20 2016 +0200 add a brief explanation after "what is franceconnect?" (#13174) commit 83dc1af714d85d0c4a7970d4777dced91c964b94 Author: Frédéric Péters <fpeters@entrouvert.com> Date: Tue Sep 6 14:32:14 2016 +0200 add initial migration (#13077) commit 33db4a2c4ace3232858cd2feb4a7a52a3bc02204 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Jun 20 16:18:09 2016 +0200 Update official about link. commit 7888183694211af89b7f959fd0f9e15893df277f Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Jun 13 16:53:03 2016 +0200 Move registration frontend method to the Frontend (fixes #11351). Needs authentic2 >= v2.1.20-1010. commit 5262af3cb90d4ddf2156db8eea247f644a903f38 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Jun 13 17:15:06 2016 +0200 Hide linking button on profile frontend if the user is already linked (fixes #11328). commit 7976894a6e7c981d0721b273c064db225e3e5015 Author: Mikaël Ates <mates@entrouvert.com> Date: Thu May 12 19:14:30 2016 +0200 Add email in linking message (fixes #10912). commit da69491c5dfbea93bbaed6ec0b02f514221b754d Author: Mikaël Ates <mates@entrouvert.com> Date: Thu May 12 17:34:40 2016 +0200 Improve wording on unlinking page. commit 7a8568009db6e95b43c53dbf72b375e3245a146b Author: Mikaël Ates <mates@entrouvert.com> Date: Wed May 4 13:10:23 2016 +0200 Fix bad translation. commit 1cad60d8b33b8cb2ec713b8be73c7ca5020467ac Author: Mikaël Ates <mates@entrouvert.com> Date: Mon May 2 11:30:01 2016 +0200 Prevent to add a link with an FC account already linked with another user (fixes #10791). commit 032a39e0236bcda6e6445e909404a92b6de3a571 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Apr 29 10:23:01 2016 +0200 Remove obsolete setting. commit 9b9f5ae2f839cbbfe496fa8abbc49ac4e5283220 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Apr 29 10:20:31 2016 +0200 Hide unlinking link if the user has no password and can't set it (fixes #10775). commit 6b45d6c9b2d8882d0a796c05aeb3a629f0c3cbc0 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Apr 29 10:13:20 2016 +0200 Prevent unlinking if the user has no password and can't set it (fixes #10775). Unlinking is now prevented if the user has no usable password and can't change it because A2_REGISTRATION_CAN_CHANGE_PASSWORD is False. For now it is thus assumed that the password is the unique other mean of authentication and unlinking would make the account unreachable. Also use A2_REGISTRATION_SET_PASSWORD_FORM_CLASS setting instead of importing the form. commit 0fb6d457f4394b4678a455882660f633cb73d99f Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Apr 15 15:38:14 2016 +0200 Update login or create account message. commit 44a62e61dfdf6433d213d9aca092b5201908276e Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Apr 14 10:44:13 2016 +0200 Ask password at unlinking when the user has no usable password (fixes #10524) (ter). commit 86f20dededcbfddafb9120b902f4c49a5755b8dc Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Apr 14 10:20:28 2016 +0200 Ask password at unlinking when the user has no usable password (fixes #10524) (bis). commit eb2ea06aefb09cd1615dfbffce0038ae8dfb1127 Author: Mikaël Ates <mates@entrouvert.com> Date: Wed Apr 13 10:03:09 2016 +0200 Ask password at unlinking when the user has no usable password (fixes #10524). commit e80db2691ce6077a08dd326d3aa824a25926b186 Author: Mikaël Ates <mates@entrouvert.com> Date: Tue Apr 12 00:18:38 2016 +0200 Define a registration frontend and manage account creation with FC data (fixes #10621). The registration frontend is used when the user is not logged locally not with FC. The login template provide a link to the FC login view and then to the plugin registration view. If the user is already logged with FC, the login template provide a link to the plugin registration view. commit 32e71fcff514a866d6e6d3312e2fcab16a3b16ef Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Apr 11 23:57:47 2016 +0200 Add a registration view (fixes #10621). The view is called to create an account using the data provided by FC at account creation. The data provided is put in a protected token and sent to the next url. If FC provides an email, the view redirects to the activation view. If an email is not provided, the view redirects to the email registration view. The confirm_data parameter of the activation view is a plugin setting. Account creation with FC means no password. commit ba11f6b8cbada544a0009414e0b9486fb51e089e Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Mar 31 19:24:07 2016 +0200 Display on the login page a button for quick account creation (fixes #10510). After a successful sso and no user is authenticated the user is redirected on the login page. On the login page, the user may be asked to login with a password or to create a new account. The plugin login button is hidden to avoid an unecessary loop. The patch add an option to display an other button that the login button. This button reference the registration page and is filled with data from the sso. If skip resgitration with prefilling data options are set on authentic the button leads to a direct account creation. commit 56fb0f012e45bebbcb0f4999bb7ad8e92a8fa8a0 Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Mar 31 19:21:07 2016 +0200 Add new scopes at login (fixes #10510). commit 315f064f5e37735ae57dff8d7a335fcc1a969048 Author: Mikaël Ates <mates@entrouvert.com> Date: Tue Apr 12 12:15:30 2016 +0200 Remove deprecated idp info form the unicode of an FCAccount (fixes #10628). commit 6d2c4634534be37c1be6a7f76e14585edcd56120 Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Mar 24 21:58:23 2016 +0100 New image for the linking button and style refined. commit 6352672798308cb2c8de80bf8a4aac94850815c8 Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Mar 24 21:31:35 2016 +0100 New images for the login button and style refined. commit 5ee5db17a5d6a0f20038e90f33347977eec622a6 Author: Mikaël Ates <mates@entrouvert.com> Date: Wed Mar 16 16:03:06 2016 +0100 Remove title from profile frontend. commit f4fceb96b515909d2262853574bf9ea2b4ee0fb3 Author: Mikaël Ates <mates@entrouvert.com> Date: Wed Mar 16 13:12:51 2016 +0100 Inactive users can not authenticate (fixes #10312). commit 15ca4ed2afa5d3d04eb4bc1308121c174c66905d Author: Mikaël Ates <mates@entrouvert.com> Date: Tue Mar 15 12:40:34 2016 +0100 Return URL at logout from unlink is not a named url anymore. commit 1c4a33976e8b9a1526d4b4597e5feecc950666cb Author: Mikaël Ates <mates@entrouvert.com> Date: Tue Mar 15 12:39:05 2016 +0100 Set an explicit return URL at logout from unlink in app settings. commit b7012a127f1bd699f836efe6d81321f603d92412 Author: Mikaël Ates <mates@entrouvert.com> Date: Tue Mar 15 12:26:30 2016 +0100 Redirection ending logout return un url, not named url. commit 5f1c7b36a7c83f5083446b4665c9953459f595e3 Author: Mikaël Ates <mates@entrouvert.com> Date: Tue Mar 15 12:25:23 2016 +0100 Add some debug logs. commit d28fd50bbbf741aec580403b8866eed1ae99362c Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Mar 14 11:38:53 2016 +0100 Change default value of settings CREATE and LOGOUT_WHEN_UNLINK commit 8d2fbe1c2eeafad8522121f0be5cb09a8ce96051 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Mar 11 16:25:40 2016 +0100 Implement prefilling of registration form (fixes #10267). commit 968981fff3d7bc6ea6ae412aa3f193d40ed04d46 Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Mar 10 17:28:59 2016 +0100 Really clean session at logout. commit 3abb7e4eaef4915300011748230b065f41103be8 Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Mar 10 17:23:19 2016 +0100 Update message at account linking. commit 0b931da020b31c7227d229dee6ef4eabb7332c81 Author: Frédéric Péters <fpeters@entrouvert.com> Date: Mon Feb 29 19:56:37 2016 +0100 translation: fix a typo commit 2b8a0b2620238fa99233a86438b521e19579da70 Author: Mikaël Ates <mates@entrouvert.com> Date: Tue Feb 23 11:28:12 2016 +0100 Refine data provider management. Data is requested using the login or link endpoint view giving space delimited scopes in the `fd_scopes` get parameter. Data is stored in a dictionnary of scopes in the session. Build FD request url using urlencode. Use urlencode from django rather than from urllib. commit f4ddbd363e7aa52cac3baf146cc6c9dbbeef6ef5 Author: Mikaël Ates <mates@entrouvert.com> Date: Wed Feb 17 16:57:27 2016 +0100 Handle ressource resolution failure and fail sso in that case. commit 51f7ad8dd7406a73d73f5974980147dd1a318c28 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Feb 22 15:58:57 2016 +0100 Handle errors in access token call as for ressource resolution. commit c9d8f87d4a570a8803284b879b570bb5d95b99e5 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Feb 22 16:05:37 2016 +0100 Use a single logger declaration. commit f1613946d2af4629d69df526fa1471de302c448b Author: Mikaël Ates <mates@entrouvert.com> Date: Wed Feb 17 15:28:47 2016 +0100 Enhance messages and update translations. commit 703ca6b5b352c00a0b665bb4f11641d2481e0082 Author: Mikaël Ates <mates@entrouvert.com> Date: Wed Feb 17 15:19:59 2016 +0100 Use the official images and about link (fixes #9718). Use the official images for the log in button and the linking button in profile. Add about page link on frontends. Add title for the profile frontend. Add translation statements. commit 4f1843a3c533103c3dc9fcc6794dc3102f6ea4c1 Author: Mikaël Ates <mates@entrouvert.com> Date: Wed Feb 17 15:16:19 2016 +0100 Add a setting for about page url set in the frontend contexts. Display a link on FranceConnect about page is mandatory. The url in different in testing, the default one, from the production mode. commit 584d922704a62883da378a2f7f32383fb6518d44 Author: Mikaël Ates <mates@entrouvert.com> Date: Wed Feb 17 11:00:32 2016 +0100 Add missing logger declaration (from 89f3efd15f0b). commit a86f61c9b9e5a09ea6d9503aee465aae01dc64a3 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Feb 12 12:42:31 2016 +0100 Refactor logout at unlinking. Use new setting to enable logout at unlinking. Some cases need it, like FranceConnect, but others may not. Disabled by default, enable with : A2_FC_LOGOUT_WHEN_UNLINK = True. Use new setting for the return url after logout at unlinking. It is for now 'account_management' but it could be modified. By default it is the same as the return url at normal logout. Then it should be set with A2_FC_LOGOUT_AT_UNLINK_RETURN_URL = 'account_management'. Use logout url building function in utils. commit 84d1b3d722f9d5751c6e25b38fd258c2d873a232 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Feb 12 17:56:42 2016 +0100 Add a setting to enable unlinking when account creation is activated. commit 9d19fb54c487da27dbe9cc0695d6800c56d6f3c3 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Feb 12 16:04:20 2016 +0100 Handle token response connexion errors. commit e484153e46cdc542c96b9b8a56f825d099ea154b Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Feb 12 16:22:26 2016 +0100 Do not create a new user if the user is already authenticated. commit 7be7f991d32a602568e79ddfc7def37924a7a6f7 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Feb 12 15:27:40 2016 +0100 Handle token response errors. commit 06a9951c3b43d07e3952560a34e510deb4f36f98 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Feb 12 12:38:12 2016 +0100 Add log at user creation. commit b00491293a476131f6de674691d668af604b8acd Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Feb 12 12:33:30 2016 +0100 Move logout url building to a utils file. commit 170d365ddab0f51c9a9bca0d2923f0148e3195c6 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Feb 12 12:17:41 2016 +0100 POST data for the token request is not in json. As specified in the RFC4769 'The client makes a request to the token endpoint by sending the following parameters using the "application/x-www-form-urlencoded"'. commit e421f60c80ec58b88e2a62619b2e72e5ef09655b Author: Mikaël Ates <mates@entrouvert.com> Date: Tue Dec 22 12:15:55 2015 +0100 Plugin method for logout by redirection and no more logout in an iframe A separate Plugin method is now used to return logout profiles by redirection. The logout by iframe is removed because it is not officially supported. Some useless app settings have been remove. The next field name can now be set in app settings. commit 28571cd0497d5f7033b24b08ad28da81ccd573e0 Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Dec 3 18:28:13 2015 +0100 No logout from unlink view when not logged on FC. commit d083aa2af138d656fbf72415bedc47027dc2dbc8 Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Dec 3 18:00:35 2015 +0100 Logout after unlinking. commit be2e577463e4c8e8f27d70b13ec3d69dc4b3c9e0 Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Dec 3 17:58:52 2015 +0100 logout_list returns a uri for redirect, string for iframe. commit 26ff01c617e07f023c8e44bf848adf512352baef Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Dec 3 17:51:11 2015 +0100 New app settings. DO_LOGOUT : Flag to activate logout. False by default. LOGOUT_REDIRECT : Flag to set logout by redirect or in an iframe. Redirect by default. LOGOUT_RETURN_URL : Django url name to redirect after logout. '/' by default. commit 48d8ae832cad6f488e80aeca85c8985070b43784 Author: Mikaël Ates <mates@entrouvert.com> Date: Thu Dec 3 17:49:21 2015 +0100 Add a callback view for logout. commit d8ac2bd1f5f5a0331911d7e8af795f4f475b16e9 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 16:43:13 2015 +0100 Remove js popup class for linking for now. commit 6ef3a569604b492be2c44d7e4764f9dcffc798a5 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 16:34:34 2015 +0100 Update translations. commit d55a62fc1979959b48d80090c1b4a911f6c85946 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 16:34:07 2015 +0100 Update style for a small FC button. commit 2679bbd52d13170360b788c734c410c78c0904ff Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 16:33:37 2015 +0100 Add link creation button from frontend profile template. commit ae646d54cd330f902ed575d68e2b962dc8de871c Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 16:32:58 2015 +0100 Add translation tag to frontend connecting template. commit dbf844549ab149323c3e1305ef2ace516f6401d2 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 16:09:24 2015 +0100 FranceConnect does not take space separator. commit 1c603dd8c1d9ab0b551b956422b6e369c93ea43e Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 16:08:35 2015 +0100 Load i18n tag in frontend connecting template. commit 72817450c646d717042b8861fd3402e210462333 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 16:07:39 2015 +0100 add load tags in frontend linking template. commit ec32f90888d96623af35cbbb31c6cfeff63e1e9e Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 14:18:53 2015 +0100 Enhance FC button style. commit 1ed0e102996ffddd7c55aa6c832373569407b146 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 12:41:57 2015 +0100 Adapt templating structure for stylesheet including and display a FC button. commit a311dd3b34cf5a7cb5d709c3e43eb1a855b6d26c Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 12:41:06 2015 +0100 Bits of style for a FC button. commit c3353827bdc16b055fd84831e213d2216e3ded3a Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 12:39:26 2015 +0100 Add new FC image. commit b493116cda355c23ce742034b63ad128b604cb75 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 10:55:17 2015 +0100 Update translations. commit 19b819c18f7309f6c217d4ecc794232cd1715408 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 10:54:15 2015 +0100 Modify unicode of FcAccount Model. commit 24ba87c3e9705c561bd9ff9ec429f1041d71694e Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 10:52:16 2015 +0100 Add unlink links on account management page. commit 9542494d9196afbeac17aff05c211ac24f5060e0 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 10:51:44 2015 +0100 Add csrf token and unlink explanations to unlink page. commit 56689192f1ae07369e4ce03475af0f5b86306319 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 10:50:25 2015 +0100 End unlink view. commit 81ce1becd87eefb75c70de7d177eaa4c5e2cab60 Author: Mikaël Ates <mates@entrouvert.com> Date: Mon Nov 2 10:53:04 2015 +0100 Name unlink url. commit 713f7783975be02dc1a949f2133d15b6fbb54fe5 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Sat Oct 31 00:39:58 2015 +0100 add an unlink view commit 9649f47d3a9028ba5bea130169f9cf6f306d63ea Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Oct 30 12:17:26 2015 +0100 Use same template as msp plugin for login page. commit b0b80811f7a5c4117d4648fcd90b8957458ea58d Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Oct 30 11:02:57 2015 +0100 Update translations. commit 8c6cd95ae9f3e13015a5ff8652a99c974e756064 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Oct 30 10:50:07 2015 +0100 Display FC logo with the login template. commit aa407e7289f79d018f9a1f47c9c237ad48850675 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri Oct 30 10:49:15 2015 +0100 Add FC logo. commit 2f1cb52851977bb85a9c465506e414612d0e3a5d Author: Mikaël Ates <mates@entrouvert.com> Date: Fri May 29 11:34:11 2015 +0200 Remove trailling whitespaces. commit dc4b392e643be34d23acaa599f25325bc483319c Author: Mikaël Ates <mates@entrouvert.com> Date: Fri May 29 11:33:42 2015 +0200 Add linking content with the frontend profile method. commit 18199828ead14081e9f8fea7a08df0ea1cd96fa4 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri May 29 11:28:57 2015 +0200 Add data provider requesting. commit 00b0f4292d59a1bc1062525c65fd3e0267904796 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri May 29 11:24:26 2015 +0200 Add settings to define data providers. commit db8f623e700d14f16a74380c4de8d66c52da3942 Author: Mikaël Ates <mates@entrouvert.com> Date: Fri May 29 11:15:07 2015 +0200 Set FcAccount user_info field at login. commit d5e241ce3d976db5384ef3181e75e77fd3264e9a Author: Mikaël Ates <mates@entrouvert.com> Date: Fri May 29 11:13:44 2015 +0200 Add user_info field to FcAccount model. commit 3c150e559d9583980224124c744f67de116af5a6 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 28 11:08:43 2015 +0200 Finish logout, it would be better to do it after logout from all SPs commit 4a12ab832ea84d0b34a014e6527e6ba55e24d0b1 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 28 10:57:24 2015 +0200 First working implementation, logout is not finished commit f1abc831cc9f491a9548ba51e0fb9c4fd506a97b Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 28 00:54:18 2015 +0200 app_settings: rename enabled to enable commit 2d740a600b412547b12db73148f4d8d28fb9eb30 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 28 00:41:50 2015 +0200 remove __version__ and dependency on sekizai commit 9e252f35ae7d1d15a317e7d7cf4b6b1fa0b8382b Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 28 00:31:26 2015 +0200 views: add debug logs, improve info log, copy id_token and user-info into session commit e462747142c26bbf1d80aa5fb1126b32734aa045 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 28 00:26:36 2015 +0200 auth_frontends: remove profile() method commit 59006356213ada2c0a0c93ecc2ed7249a30d5b4e Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 28 00:26:18 2015 +0200 Remove static files commit a5c11de0801f8ff7b1de437957bcb4a2d3b14806 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 28 00:25:55 2015 +0200 Remove unused templates commit 6f64938bb60474cf42f434bc629eedc7b37f5fe3 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 28 00:18:57 2015 +0200 pep8ness commit c4ccd540f006280ee078c25aa7f8467268f4cb6f Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu May 28 00:06:08 2015 +0200 Fix JWT payload extraction commit b40414e8118e8f3c061d0662a3ece4a8f73dfa94 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed May 27 18:47:43 2015 +0200 Keep only the LoginOrLinkView commit 177995a1c83db04c101ee338597e51689a421631 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed May 27 16:07:44 2015 +0200 Rename MSP plugin as FC plugin commit d37985d944ab5c89b68bcb9349141f5606d54c43 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Dec 2 11:12:41 2014 +0100 Fix source package name in changelog commit 2d28dfa7c2347f59dc844efc5893e2e8dd7c4361 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Dec 2 10:57:08 2014 +0100 Initial packaging commit 2f8f1976227127e21ced4b95af899169214b4e63 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Mar 12 18:04:10 2015 +0100 Use reference to the custom user model commit 9ce5e1c1b4e3cddea85de15251950732fb61d9a8 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Dec 10 16:01:18 2014 +0100 bump release to 1.0.5 commit 35baf707d283d9989a9411418baaaa671e56b91f Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Dec 10 16:01:05 2014 +0100 Update french locale commit ac648a1ba03d5610feb738e24768147f85837193 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 5 16:43:44 2014 +0100 bump release to 1.0.4 commit b010e404042ca4722ee9243f49de5300b10bd1c6 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 5 16:43:08 2014 +0100 Fix production URLs for token and APIs web-services commit dbb4cae289c947a98522e2198f2aac34a291cc04 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Dec 3 20:03:27 2014 +0100 bump release to 1.0.3 commit 6402763de2188bcb4a2055453491a8161e01b6c0 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Dec 3 20:02:52 2014 +0100 Fix unclosed tag in linking.html template commit 1cf16296b341dfd1b6c1c74db25e82107c73d074 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Dec 3 16:36:20 2014 +0100 bump release to 1.0.2 commit 4127656cf92254687980ef0598b72c2fba6753c9 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Dec 1 14:31:26 2014 +0100 Fix escaping of URL as a javacsript string commit aadcdc42596a6118b10ac8234a63dcf6003251ca Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Dec 1 14:30:23 2014 +0100 Hide the MSP block when the nomsp parameter is present in the URL (old behaviour broken) commit 55919393dd63335d014ce8ba1e2e55f20e91460a Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Nov 21 18:32:18 2014 +0100 bump release to 1.0.1 commit a91ccfa8bda04fa10d07cca585fde4baa54034d4 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Nov 21 18:29:59 2014 +0100 bump release to 1.0.0 commit b1425e4cacadab62e81b13a15732c914bf672d78 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Nov 21 18:29:30 2014 +0100 Set default URL for MSP production endpoints in app_settings commit e2814ad5c1f7151ef04b2ded06e361ec1a5f42b1 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Nov 21 17:08:43 2014 +0100 Delete MSP links on account deletion cron job and also when the DeletedUser object is created commit 6884f31e3f7eba0f1c227c36a41046db9334b5e5 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Nov 21 16:06:23 2014 +0100 Implement the authentication frontend using the new API commit ecdc5baa548041241b147cf6cd8e98e6685ab5c6 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Nov 21 16:06:09 2014 +0100 Add custom CSS to add some margin on top of MSP dialogs commit 51d92940bc7dc0d99b7c2b5fa108190892c5fee2 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Nov 21 16:00:47 2014 +0100 Load popup javascript at end of page commit 74ce5357e29b73d2bd6219ea6fe81a628917616c Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Nov 21 15:59:47 2014 +0100 Fix template paths commit 7ebaece2b4107a6153636e28e5c880b608f74e16 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Nov 20 15:03:23 2014 +0100 Log when an existing link AGC is changed commit 3425cf24b3f834c34374ea7b97873cfe154c568f Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Nov 20 15:03:04 2014 +0100 When creating a new link or changing an existing link, delete existing ones to the same AGC commit 0e72402e78c5be8634ab80a2273074eac7fd0c82 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Nov 20 14:51:21 2014 +0100 Improve logging - add a mixin to initialize a logger in the view __init__ method - log login, link creation and link deletion commit 98d9ee8a146ffdabadf9022f0957693d57a052cd Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Nov 6 22:06:50 2014 +0100 Fix import of ImproperlyConfigured in app_settings Global import does not work in app_setings files. commit a939f2ab802916352d36f187cb4681b169f1b4a3 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Nov 6 21:22:23 2014 +0100 Refactorize application to make it an authentic2 plugin (2/2) commit 8754c06b1e8e486af8d03b94ff8e57630c01c00a Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Nov 6 21:15:33 2014 +0100 Refactorize application to make it an authentic2 plugin (1/2) commit 23ed19e17db5bab78190182db1a48c3f7aa4719b Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Sep 23 16:07:05 2014 +0200 Create MspAccountManager with a cleanup() method to cleanup obsolete MSP link when the cleanupauthentic command is run (refs #5573) commit 5e7d3999f0bcd4560e9161c625153a41cd5c2a8e Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Sep 23 16:06:22 2014 +0200 Make MspAccount.user nullable (refs #5573) commit 15138c5365804bf5abe173915821eab6236b7f4d Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Sep 23 16:06:02 2014 +0200 Add an api_call method to the MspAccount model (refs #5573) commit 2213fbb1502ad97fc707c4a670552a47dabba0cd Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Sep 23 16:05:08 2014 +0200 Do not initialize the logger globally in msp models (refs #5573) commit 97c92316531ae86bbd6d58a9c1df8b3062b922ce Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Apr 29 15:50:58 2014 +0200 msp: pass error from MSP to authorization requester commit 31ff987833294b6c600d8061b36a17448ee410df Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Apr 25 13:44:01 2014 +0200 msp: remove debugging statement commit 5bf0c77aa6ee5a3bfece3ae7d25f4c74aadf43fd Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Apr 11 15:23:06 2014 +0200 apps/msp: add support for getElementsByClassName on all browsers commit e596a3a7c5b4482c0387bfb383e86052bce2d94e Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Mar 24 16:47:01 2014 +0100 msp: fix app path in urls.py commit 375a236bc4bb690d07a151c7885845ca6092b738 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Feb 25 15:50:52 2014 +0100 msp: make login-or-link the default behaviour also for connexion from the login page commit de1aef597d7d05c01849d891f3135b5d94fd78e6 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Feb 6 14:19:46 2014 +0100 msp: log when deleting stale msp accounts commit 0f727cfde68bb870ff6fb794adaf24b4cf35db42 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Jan 21 09:03:41 2014 +0100 msp/views: fix missing variable cache commit bc2aaced0b382421c1d46d14927de131db8cc37b Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jan 8 11:36:23 2014 +0100 msp: always ask for the DEL_AGC scope with the GET_AGC scope commit 85443ef0e03bc4679f303eefc245c307cd526e72 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jan 8 11:30:30 2014 +0100 templates: fix wording commit 3a9a183470392b2dd16a701a8ceb7b917bb83aca Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jan 8 11:18:34 2014 +0100 msp: replace PARTENAIRE in MSP templates by 'compte citoyen' commit ee89600fa8c280022258726b873cb1ae8e99c9d6 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Jan 8 01:18:45 2014 +0100 msp: use all graphical and html resources from MSP - 3 new views: link management, unlinking confirmation, unlinking done. - corrections to close-popup-redirect.html to work with URL passed through template variables and not the query string commit 47612935749a39defd2347a97dec3d1d3f9e7b61 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Mon Jan 6 12:46:10 2014 +0100 msp: integrate msp theme commit 8e4f66965339140eaca0e599ecb2af361236936c Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Thu Dec 19 21:56:32 2013 +0100 msp: do no throw an unicity constraint error when user try to create a new link when an existing still exist Problem happens when deleting a link from MSP a trying to recreate it. commit a9de94d5b6ea70476eebcc251b6151732b06bd25 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Dec 17 23:14:27 2013 +0100 msp: allow the authorization view to display in cross-domain iframes commit c200d220484cd371c041d56ef677c1dd5da556c0 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 16:44:43 2013 +0100 msp: argument next_url of redirect_and_come_back should support query strings commit 2b0bb864510cfed98f7be94e6064aadc5194b2ab Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 16:39:29 2013 +0100 msp: hide the connection box when nomsp is in the query string commit 0145490d1364c892d8e8b5e68fbecc61d25dcc34 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 16:34:00 2013 +0100 msp: update fr translation commit bbd70b01e4d9097322ace67e05d14be16856cee1 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 16:32:33 2013 +0100 msp: in link creation from msp workflow, add message to incite the user to authenticate commit 922ca754adf39a2e3067d96a7e900eb84238974b Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 16:19:05 2013 +0100 msp: add a refresh token method to MspAccount models to verify if the account link is alive commit 239b002e4227f60bb72af2ec5a66a5f900063362 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 15:59:24 2013 +0100 msp: when creating a new link, save the access token commit 11a47cfeb5c6d32a1e64c1ad4fe6acaeaabdb72c Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 15:57:54 2013 +0100 msp: preserve access token in callback views after call to the token web service commit 2ec1c594852ad914779e8a8978a29ce67dc682dd Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 15:57:35 2013 +0100 msp: update fr translations commit 14cbec1035b0a1b74f9b4e048f5d0e40beba7f29 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 15:56:48 2013 +0100 msp: store access token in account association object The access token is used to get to the refresh token for verifying existing links. commit 1d000b35c9fb126cf30b7010adaa78bf7f27b77d Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 15:09:50 2013 +0100 msp: cleanup commit e9be4cf4af4ccc73040589140b5964f97c679b30 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 15:09:21 2013 +0100 msp: add login-or-link view commit ef50486c29047c22ed4cc7768c0e389e101b0857 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 15:08:11 2013 +0100 msp: remove dead code commit a9c59367493af5068b72bcd400da20ee60749641 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 15:07:39 2013 +0100 msp: add redirect_and_come_back() for redirect to another page and then coming back to the current one commit 8275959f363161455736f9f0a7a1f56314a2f67c Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 15:06:34 2013 +0100 msp: add a next_url argument to the redirect() method it overrides default computation of the redirect URL commit 2d6e2218ed072096ae7aa4641d9f5417d2d12802 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Dec 6 15:05:09 2013 +0100 msp: clean unused imports commit 69100fe4cbd03e52bcdfe3b29a8b8b3c13bae7d2 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Nov 20 15:10:15 2013 +0100 msp: fix authn context name commit d1e84dbe87d775806185f7c324f1bc47040cb6e7 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Nov 20 15:09:17 2013 +0100 msp: fix missing self argument commit 09dd4e2ef34c5b162c5331243a928c48ff6f86a5 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Nov 20 15:05:34 2013 +0100 msp: msp authentication is equivalent to password authentication over HTTPs for SAML 2.0 commit 8bd9864ec8db8003a2ce64903dd7c73e66b521b3 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 18 14:59:51 2013 +0200 msp: add OAuth2 and rest proxy endpoints commit 226344d1c672b678c6ce1446303800160d9c17ab Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Oct 16 10:57:04 2013 +0200 msp/locale: fix syntax error commit c86a1f9353a0d93d13d0a009cc150fd2fd7c8401 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Wed Oct 16 10:10:24 2013 +0200 msp/locale: fix grammatical error, use mon.Service-Public.fr as MSP name everywhere commit 10a3e9d09897391839b160e442a93056ff3567f1 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Tue Oct 15 23:23:53 2013 +0200 msp: add missing static files commit 2c5f4d84ce8afb91e062acc04914558a939c4a36 Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 11 22:53:05 2013 +0200 msp/views: remove remaining reference to SSOViewMixin commit 0016d5fd597d8e5e993b083132ef996636e1acac Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 11 22:52:15 2013 +0200 msp: remove SSOViewMixin and reduce scope required for sso views commit 986b6d0b6a55e5c5adf3efa7a6064a9fbf2c80dc Author: Benjamin Dauvergne <bdauvergne@entrouvert.com> Date: Fri Oct 11 17:33:20 2013 +0200 add msp integration application Requirements ============ Your base template must use django-sekizai and must contain a sekizai block named "css" and another named "js" respectively for stylesheet and javascript files. Installation ============ Add the application to your installed apps:: INSTALLED_APPS += ( 'msp', ) Install the authentication backend:: AUTHENTICATION_BACKENDS += ( 'msp.backends.MspBackend', ) Define needed settings, we show here the default values:: MSP_AUTHORIZE_URL = 'https://mon.service-public.fr/apis/app/oauth/authorize' MSP_TOKEN_URL = 'https://mon.service-public.fr/apis/app/oauth/token' MSP_API_URL = 'https://mon.service-public.fr/apis/' MSP_CLIENT_ID = 'id assigned by DIMAP' MSP_CLIENT_SECRET = 'secret assigned by DIMAP' MSP_CLIENT_CERTIFICATE = ('/my-path/my-certificate.crt', '/my-path/my-certificate.key') MSP_VERIFY_CERTIFICATE = False You must plug the application views in your urls.py file by adding this content:: url(r'^msp/', include('msp.urls')), To link your account to MSP or unlink your account from MSP, add the following content to your template:: {% include 'msp/linking.html' %} It will show a linking link when unauthenticated and when no msp account is linked to the current account or an unlinking link when authenticated and a to MSP exists. To show a connection box include this content in your template:: {% include 'msp/connecting.html' %} To make the include file use a popup to talk to MSP add the popup parameter like in the following content:: {% include 'msp/connecting.html' with popup=1 %}
Mis à jour par Frédéric Péters il y a presque 5 ans
- Statut changé de Résolu (à déployer) à Solution déployée
integrate authentic2-auth-fc in packaging (#20852)