Plugin FS FranceConnect - 0.10 100% 8 issues (8 closed — 0 open) Related issues Plugin FS FranceConnect - Development #20228: ajouter des hooks pour les fédérations, défédérations et créations automatiques de comptes Plugin FS FranceConnect - Development #20288: passer la requête au hook fc-link Plugin FS FranceConnect - Development #20860: Mise à jour du README Plugin FS FranceConnect - Development #21292: Afficher une page d'information indiquant que l'adresse de courriel est utilisée lors d'une création de compte automatique avec FC alors que l'adresse de courriel est déjà utilisée Plugin FS FranceConnect - Development #21596: augmenter le timeout des requêtes HTTP vers FC à 10 secondes Plugin FS FranceConnect - Bug #20611: Lors d'une réconciliation basé sur le mail mais où la création d'une nouvelle liaison est impossible car une existe déjà, il faut logger l'utilisateur avec la méthode 'email' Plugin FS FranceConnect - Bug #21783: redéscendre le timeout à 3s mais permettre 3 essaies Plugin FS FranceConnect - Bug #21874: mettre à jour les traductions
Plugin FS FranceConnect - 0.11 100% 1 issue (1 closed — 0 open) Related issues Plugin FS FranceConnect - Development #21962: ajouter un hook a2_hook_modify_serializer pour rapporter les informations de liaison FC si présence paramètre ?full
Plugin FS FranceConnect - 0.12 100% 1 issue (1 closed — 0 open) Related issues Plugin FS FranceConnect - Bug #22405: Crash sur l'accès à la déliaison par un utilisateur non connecté
2.2.0 96% 353 issues (337 closed — 16 open) Related issues Support #5407: Should Kerberos login happen without interaction? Support #5455: Update documentation Support #7199: Packaging multitenant: rewrite default configuration file Support #9951: Run tests on real databases Support #10783: best way to add extra attribute kinds? Development #751: Improve the manager based on RBAC Development #5262: Manage authorizations to connect to a service provider Development #5530: Faciliter la migration des fédérations Development #5540: Possibility to create saml service provider from its AssertionConsumerService endpoint Development #5541: Add a page to manage providers Development #6350: Plan LDAP provisionning from A2 directory Development #6648: Allow managing LDAP servers from the manager Development #6847: Support for AttributeConsumingService declarations in sync-metadata Development #6919: Create a custom user model Development #6925: Map authentication method to authentication levels and use those levels to limit access to services Development #6934: produce a coverage report when running tests Development #6950: Refactoring of all user editing views Development #6955: In app_settings set default list values to tuples not list to make them immutable Development #6965: attributes_aggregator/ldifs: remove all translations markers from parsed schemas Development #6966: settings: do not set handlers in django.db and django_select2 domains, they would be sent to the console twice Development #6968: Rebase the CAS service model over the Authentic2 base service model Development #6969: Rebase the SAML liberty provider model over the Authentic2 base service model Development #6976: Add a warning when using default SAML certificates Development #6982: Développer un IdP OpenID Connect Development #6994: Create RBAC models: Role, User-Role relation, Role-Role hierarchy, Permissions, OrganizationalUnit Development #7010: Use debian_config_common.py from hobo in the multitenant debian_config.py Development #7012: Add a cache decorator using the django cache Development #7013: Make the cache decorator base class vary the cache with the hostname Development #7014: When changing password from the manager homepage the user should be returned to manager homepage Development #7043: Remove south_migrations directory Development #7116: Create unit tests on for the SAML2 IdP Development #7188: Do not cache attribute kinds in a global variable Development #7191: Add an attribute kind for person's titles Development #7242: Complete tests over attribute_kinds by building a form with all kind of fields Development #7243: idp/saml: attribute values can be a set, do not fail if this is the case Development #7244: tests: rewrite Authentic2TestCase.assertEqualXML to use lxml and XPath queries Development #7246: deprecated /etc/authentic2/config.d as a way to configure authentic2 Development #7248: manager: allow changing password from the user edit form Development #7250: custom_user: email is a better username than full name Development #7252: attributes_ng: add new attribute source to get role attributes of a user for a service Development #7278: managers: hide role managers link for admin roles Development #7285: SAML2 Idp: always create a defined attribute event if its value set is empty Development #7299: a2_rbac: add external_id field to Role object Development #7302: models: set verbose_name of ou field on Service and User models Development #7303: manager: improve SQL performance of RolesView using select_related('ou') Development #7304: manager: unbreak export views Development #7306: admin: integrate RBAC changes in model admin classes Development #7312: a2_rbac: order organizational units by name Development #7337: backends/models_backend: remove now useless ProxyUserModel Development #7338: custom_user: remove clean() check on the presence of an ou Development #7341: templates: set administration link on homepage to the new manager Development #7351: Allow plugins to declare new attributes sources Development #7354: decorators: add errorcollector() decorator, to help in creating clean() methods Development #7357: models,a2_rbac/models: add partial indexes on models linked to ou or services Development #7359: manager.js: support rel="popup" on button elements Development #7360: manager: improve linking from rows in table.html Development #7362: manager: fix breadcrumb and page title in organizational unit listing view Development #7363: Create a registration web-service Development #7414: manager/forms.py: do not override ou field class if it's not in the form Development #7415: manager/templates: allow user of form.html to place content before and after fields Development #7416: manager/views: allow Action object to have a full URL instead of an url_name Development #7419: Add a web-service to list OrganizationalUnit Development #7475: registration_backend/views: remove next_url parameter to the delete account view Development #7518: Rewrite password reset views as CBV, remove intermediate notification views use the messages framework instead, add tests Development #7524: saml: add certificate in KeyInfo of emitted messages Development #7533: use messages framework for registration errors Development #7546: service_role attribute source does not get inherited service roles Development #7592: Add a CBV mixin to support multiple template names Development #7593: Hide the edit profile if not field can be edited Development #7597: Allow plugins to provide attribute sources Development #7610: Pass next URL of login page to password reset view and registration page Development #7625: Registration web service should allow checking email or username for uniqueness Development #7647: Service roles should be part of the same ou as the service, and if the service.ou changes the roles.ou should change also Development #7662: Show service roles in the role management views Development #7697: Log password reset requests, password rest confirmations, email change requests, and email change confirmations Development #7747: In the django_rbac tests using assertLess to compare timings would be more useful Development #7748: Add an absolute parameter to make_url() to use when request parameter is present Development #7761: Add application name (and entity?) to the role names in selectors Development #7788: Improve experience when there is only one organizational unit Development #7793: a2_rbac: do not create ou management roles when there is less than 2 OUs Development #7799: Various improvements to django_rbac Development #7800: manager: improve stylesheet for dialog boxes Development #7801: a2_rbac: initialize management roles with their translated name Development #7802: a2_rbac: move connection of post_migrate_update_rbac in the management module Development #7803: a2_rbac: do not create management roles for the Service content type Development #7805: Add helpers to implement JSON/JSONP views with CORS support Development #7807: allow cache decorators to vary the key on a subset of args or kwargs Development #7808: add SessionCache decorator to cache function values in session Development #7862: API to list/search/add users Development #7879: When an authnrequest is canceled, statusMessage should contain a message telling what happened. Development #7986: Expose more fields of the OrganizationalUnit model in admin Development #8005: Order roles by default field then by name Development #8028: Add facility to make loglevel of handlers dynamic Development #8029: post_form.html: do not wait for the onload event to submit the form Development #8129: Improve display of user in user select2 field when adding users to role Development #8130: Hide role permissions management for now Development #8140: On user role page pre-select the entity of the user and show all roles of this entity with checkboxes Development #8141: hide link between role and services Development #8142: "switch user" feature Development #8143: Implement role delegations Development #8199: Use the DisplayMessageBeforeRedirectMiddleware in the logout view Development #8200: In display_message_and_continue.html template, redirect user after 3 seconds Development #8215: Add a basic OpenLDAP sock/shell backend for users Development #8253: allow overriding role form class Development #8257: nid format 'username' should return the username not the uuid Development #8276: Remove attribute_aggregator and remnants of authsaml2 Development #8277: Load firstof from future to remove warning Development #8279: run compile_translations as part of sdist Development #8280: Improve UI for managing roles and users Development #8339: Do not overwrite de LOGGING setting from debian_config_common, update it Development #8357: factorize connection building Development #8360: Add direct support for LDAP settings: require_cert, cacertfile, cacertdir, keyfile, certfile Development #8361: Add LDAP tests Development #8365: Add a new attribute 'Role slugs from same entity as the service' Development #8379: Use the same overriden form for role creation and role edition in the manager Development #8389: Add attribute to propagate uuids of roles of the same ou as the service Development #8480: Finish implementing registration without mail validation Development #8584: Do not let LDAP user without an OU Development #8600: login form: make username label configurable Development #8826: Refactoring: merge LibertyServiceProvider into LibertyProvider Development #8843: Publish blocks on account pages also using the frontend name Development #8850: debian: add path for hobo skeletons Development #8855: Use tenant_command --all in authentic2-multitenant cron job Development #8937: Improve decorators.json Development #9141: Set SessionNotOnOrAfter to the current session expiry date Development #9197: Move logout.html js code to a static file Development #9200: switch default public theme to use gadjo Development #9231: Treat all roles whose slug starts with an underscore as "administrative roles" which cannot be edited or deleted Development #9235: Only add OUs page to menu.json if user has add or change permissions Development #9250: Remove self-administrated status of administrative roles for objects other than roles Development #9256: Allow creating / mapping RBAC roles from / to LDAP groups Development #9324: Permission needs unique index and partial unique indexes to prevent duplicate due to get_or_create() Development #9333: SAML IdP proxy based on django-mellon Development #9335: migrations: add IF EXISTS to DROP INDEX in partial index backward migration Development #9398: add filter by role on users view Development #9399: add filter "at least one role" on users view Development #9665: add setting to prevent keeping LDAP passwords in session Development #9666: encrypt LDAP password in sessions Development #9673: use StoreRequestMiddleware to pass RequestContext to email templates Development #9694: Show list of roles on user's page in the right colum, replace Roles link with a modify button under the list Development #9695: add username to title of user edit page Development #9721: Move role's administrators management inside the role's members view, group with role inheritance inside a sliding panel Development #9808: Use the UUID as identifier in the User REST API Development #9875: Send password_reset mail to user created through the user create API Development #9948: "Impersonate this user" should first send logout requests to service providers Development #10080: ldap: store old password temporarily in LDAPUser.check_password() so that PasswordChangeForm always work Development #10156: Simplify tox.ini Development #10211: Write a pygssapi backend for django-kerberos Development #10214: When checking for email uniqueness at registration, if we have an OU reference we should fiter users by it Development #10251: Create a web service to manipulate organizational units Development #10322: Remove title from profile frontends. Development #10598: saml auth: ask for email if it's not provided in profile Development #10599: saml auth: extend provision_attribute to all user attributes Development #10601: Use utils.send_registration_mail for sending the email in the registration form Development #10658: Account management when the user has no password Development #10767: add logrotate settings for gunicorn log files Development #10802: If the user has no password, don't ask one at email modification and account deletion. Development #11324: Enhance registration frontend management. Bug #5836: Do not propose non-administrator users to add a service provider Bug #6143: /manage : we should allow a superadmin activate is_admin Bug #6378: SAML attribute with the same value should be collapsed Bug #6633: Username column size too small Bug #6668: Do not allow editing username Bug #6690: Ajouter le support de deux variables MANAGER_HOMEPAGE_URL et MANAGER_HOMEPAGE_TITLE pour faire pointer le premier élément de la breadcrumb du manager vers le portail admin Bug #6782: saml: produce a 405 error for GET requests on SOAP endpoints Bug #6805: Give all password requirements at once Bug #6807: On starttls errors we should not traceback but log an error stating that maybe the root certificat should be declared in /etc/ldap/ldap.conf Bug #6857: "global name 'attribute_kinds' is not defined" error on SAML based SSO Bug #6917: Password change form is broken Bug #6952: Fix wrong next parameter building in admin login and logout override since Django 1.6 or 1.7 Bug #6953: fix deprecation warning in authentic2_idp_cas/forms.py since Django 1.7 Bug #6954: Fix logout link on users and roles pages in the manager Bug #6956: Embed Django 1.7 migrations for django-admin-tools app menu and dashboard Bug #6958: Base all services models (authentic2_idp_cas.Service, saml.LibertyServiceProvider) on a common base model Bug #6967: auth_migrations: make the last migration run after first migrations in app depending from the user model Bug #6970: utils.make_url does not use utils.resolve_url correctly Bug #6971: fix call to redirect() in post method of the registration completion view Bug #6989: Update multitenant packaging to use hobo/debian_config_common.py Bug #7018: Migration custom_user.0001_initial doesn't work Bug #7025: bump minimal release of Django to 1.7.6 Bug #7042: "cancel" button erroneously displayed on login page Bug #7064: username can be NULL now, the django_user attribute source must be adapted Bug #7078: authentic2-multitenant init script lacks a reload action Bug #7089: multitenant : UnicodeEncodeError during login Bug #7094: LDAP user can still change their password Bug #7097: registration_backend/views.py contains call to redirect() not using the new signature Bug #7098: password set on registration is not saved (introduced in 700fc9b280) Bug #7118: Authorized NameID format are sometimes refused because they are not mapped correctly to local identifiers Bug #7150: Get authentic2 working with Django 1.8 Bug #7245: authentic2_idp_cas: fix wrong namespace for the cas:attributes element in serviceValidate responses Bug #7247: settings.py: make a special handler for DB logs as the request_context filter could create infinite loops Bug #7249: forms: fix modelform_factory for non user models Bug #7251: custom_user: fix changepassword command Bug #7259: SSL authentication fail Bug #7279: manager: in PermissionMixin fix name of the add permission Bug #7280: manager: fix permission checking in UserAdd and UserEdit views Bug #7282: the aggregate function max(boolean) does not exist on postgres, only sqlite Bug #7297: Remove settings.py at the root of the project Bug #7298: Remove --dependency-links argument to pip install in the README Bug #7300: admin: fix password change linkg Bug #7301: authentic2_idp_cas: Service.clean must call its parent method Bug #7305: manager: return 404 if the export format is unknown¶ Bug #7307: manager: simplify RoleTable.name and fix ordering for RoleTable.service Bug #7308: manager/templates: unbreak display condition of pagination links Bug #7309: admin: add ou field to AddLibertyProviderFromUrlForm¶ Bug #7313: a2_rbac: forbid removing the default flag on organizational unit Bug #7314: manager: display administrative role of organizational units in RolesView Bug #7316: manager/tests: modify test case since roles from the global level are seen Bug #7328: Error 500 when adding an user Bug #7334: manager: remove group management Bug #7335: manager&rbac: update french translations Bug #7336: manager/css: truncate uuid column using CSS instead of doing it server side Bug #7339: manager: improve users management views Bug #7340: manager: do not protect with login_required "js i18n catalog" and django-select2 views Bug #7342: new account template mentions password even if it has not been set Bug #7353: a2_rbac/signal_handlers: add missing .objects accessor Bug #7358: forms: set a default base model for forms built with modelform_factory Bug #7361: manager/role_views: fix duplicate implementation of form_valid() in RoleManagersView Bug #7364: registration_backend/views: set the required flag on admin defined fields Bug #7366: expose /manage/ backoffice menu entries in jsonp Bug #7386: custom user fields appear on profile edit page even if not set as user_visible and editable Bug #7387: wrong edit profile page title Bug #7388: blank page /idp/saml2/continue Bug #7391: custom user fields empty on profile page Bug #7392: migrations: do not run CreatePartialIndexes if router.allow_migrate() is False Bug #7412: models: make Service.ou not mandatory Bug #7413: 403.html: make it translatable, add button to go back to homepage Bug #7417: attributes_ng/django_user: add user's roles names, slugs and uuids to Django user attribute source Bug #7463: Allow setting a different homepage URL for the manager as we can already do for the homepage of authentic Bug #7474: views: keep ordering of authentication frontends when building the login forms Bug #7476: manager/views: remove ManagerMixin, as the logout URL is hardcoded in the template now Bug #7503: a2_rbac: fix default slug for the default organizational unit Bug #7504: django_rbac: give all permissions to superusers, and none to inactive users Bug #7523: User credentials in APITest tests are not coherent with the name of the test Bug #7525: custom_user/models: restore default value of User.last_login Bug #7527: Another case of unicode error when writing logs Bug #7530: Role views on service always returns 404 Bug #7545: add service to autocompletion of role Bug #7559: MultipleObjectsReturned: get() returned more than one LibertySessionDump -- it returned 2! Bug #7573: manager: possibility to sort users by creation date Bug #7583: Add autoescape off to all text email templates Bug #7585: authentic2/manager/form.html does not handle forms needing multipart/form-data (forms with file fields) Bug #7590: Password change dialog does not emit a message anymore Bug #7591: On page with forms (based on authentic2/manager/form.html) message do not fade out Bug #7594: manager: allow middle clicking on rows Bug #7595: a2_role_names, a2_role_slugs and a2_role_uuids attributes does not list inherited roles Bug #7598: Allow django-debug-toolbar to work in the manager Bug #7599: manager: enlarge "add a user/role" select2 widget Bug #7612: NameIDPolicy is optional Bug #7613: Next URL in the CAS logout view is wrong Bug #7614: To help registration and password reset views, IdP should pass a next URL containing the nonce to the login page Bug #7615: Password reset form template loose the next URL parameter Bug #7616: The new PasswordResetView should use the local SetPasswordForm from the registration_backend package Bug #7617: PasswordResetView test must be update to comply with its new behaviour Bug #7621: The new PasswordResetView forget to save the new password Bug #7634: Error when sorting roles on service Bug #7660: do not indent form elements (labels, buttons, selects) Bug #7666: Rename a2_role_*s attributes to user_role_* Bug #7691: (multitenant) error in create_default_ou when running migrations Bug #7694: api_views: make the check for email uniqueness on registration case insensitive Bug #7700: In debian packaging make a special handler for DB logs as the request_context filter could create infinite loops Bug #7730: In manager the entity fields is ignored on role creation, and the description modify dialog does not work Bug #7731: Improve wording of mail notifications Bug #7734: manage: when search retyrn an empty queryset, django-tables2 should show the None string Bug #7735: manager: the HTML export lacks headers (for the encoding) Bug #7739: manager: align m2m add form elements Bug #7741: Add middleware to show user messages before redirecting to another domain Bug #7745: Gado theme was updated and <select> element layout is broken Bug #7746: XForwardedForMiddleware is an old style class, it should be a new one Bug #7749: GlobalCache with vary by hostname does not work when called from a command Bug #7750: Show last login time in the user interface Bug #7751: Improve exports of users and roles Bug #7752: Members export view is broken Bug #7758: simple users have access to /manage/ Bug #7759: user who is manager of a role cannot add any user to it Bug #7787: Allow limiting the content types associated to manager roles, add a global manager role like ou scoped manager roles Bug #7790: django_rbac: fix hiding of exceptions by the decorator defer_update_transitive_closure Bug #7791: a2_rbac: fix missing definition of Permission in management.py Bug #7792: manager: override BaseDeleteView.authorize() like in BaseAddView and BaseEditView Bug #7806: Add a user API endpoint Bug #7809: Do not fail in the renderblock template tag if addtoblock has never been called Bug #7822: CAS URLs : permit call without trailing slash Bug #7861: manage: entity field is disabled and readonly, but considered when looking for required field Bug #7952: Role deletion impossible from manage page Bug #8012: The @update_service_role_ou@ post_save handler should also be called on the Service model Bug #8013: manager: sorting of role tables by their name does not work anymore Bug #8026: OrganizationalUnit.email_is_unique is ignored by RegistrationCompletionView Bug #8030: custom_user: fix left join query to get user roles and direct relationship status Bug #8087: wrong call to error_page Bug #8138: debian: bump python-six dep Bug #8152: django_rbac.models.PermissionMixin.has_perm_any and other new permission methods should work for superusers event if the DjangoRBAC backend is not loaded Bug #8159: sync-ldap-users emit tracebacks Bug #8214: Link to the manager is conditionned on user.is_staff, it should be controlled by test on real permissions like on the manager homepage Bug #8234: webservice to add/remove users to/from roles Bug #8258: New backend DummyBackend lacks a get_saml2_authn_context() method Bug #8278: remove setting of TEST_RUNNER, it was only done to remove a warning Bug #8284: error on upgrading authentic2 Bug #8307: Style des liens désactivés ne plait pas à Pierre Bug #8327: silent asserts produce a gettext header Bug #8363: Ignore LDAP referrals returned by search() Bug #8370: Using OPT_X_TLS_NEWCTX stop loading the default system trust store Bug #8378: OpenedSessionCookieMiddleware is broken since it still uses activation through environment variables Bug #8380: manager: in HideOUFieldMixin when the ou field is hidden, set it to the default OU Bug #8381: attributes_ng: fix typo in attribute names related to roles Bug #8390: handle all kinds of iterable but strings in normalize_attribute_values Bug #8426: Fix addition of the registration realm as suffix to users chosen username Bug #8429: django-select2 >= 5.0 is incompatible with authentic2 Bug #8558: Change to the admin roles permissions are not applied Bug #8563: views: fix homepage redirect with multitenant settings Bug #8565: NameError: global name 'ou_admin_perms' is not defined Bug #8586: User.__repr__ returns unicode / UTF-8 strings Bug #8602: Show ou__uuid and ou__name in Service and Role to_json() documents Bug #8603: In /api/user/ show all role from the same ou as the service in the service roles, and show all user roles in the user.to_json() document Bug #8609: Unicode error on log format string Bug #8620: Role.clean() fails on role edit forms when slug starts with an underscore Bug #8747: do not warn about 0 users and 0 services going to be removed Bug #8885: authentic2 traceback when an LDAP is unreachable for synchronization Bug #8971: In log_filters do not fail if REMOTE_ADDR is missing from environment Bug #9162: Collision between LDAP attributs and User fields in get_users() Bug #9165: use RequestContext when sending activation email Bug #9166: use RequestContext for password reset emails Bug #9191: DisplayMessageBeforeRedirectMiddleware cannot reset the storage.used flag Bug #9192: django-model-utils 2.4 break authentic Bug #9195: Modify logout view to take in account redirections. Bug #9198: Use <h2> in every templates Bug #9199: trivial: use three dots in logout messages (not four) Bug #9206: idp_cas: error 500 when service url is higher than 256 chars Bug #9207: Prevent LDAP password from appearing in debug tracebacks Bug #9216: keep manager/base.html using gadjo.html directly Bug #9232: Hide "Add ou" button on /manager/organizationalunits/ page when user does not have the permission Bug #9260: Prevent problem of slug collision when slug are autogenerated by django_rbac.models.AbstractBase.save() Bug #9274: logout link on management pages Bug #9275: has_self_administration() fails with MultipleObjectReturned Bug #9747: Improve performance of users export to ODS Bug #9812: RolesAPI : typo authentication_class / authentication_classes Bug #9952: django.contrib.contenttypes must be loaded before django.contrib.auth Bug #9954: user's API should cache modified serializer and user classes Bug #10046: AttributeError: 'DatabaseWrapper' object has no attribute 'get_tenant' Bug #10047: Creation of permissions in RoleManager.get_admin_role() is not concurrent safe Bug #10063: In the register API when first_name or last_name is absent a DatabaseError for NULL column is raised Bug #10071: /api/register/ should serialize user using the new BaseUserSerializer Bug #10200: In multitenant_context A2_ATTRIBUTE_KIND_TITLE_CHOICES is never reloaded Bug #10215: Register API without mail validation does not honor the "email is unique" flag of OU models Bug #10229: if an exception occur before the SessionMiddleware has been run there can be an AttributeError in a2_processor() Bug #10230: StoreRequestMiddleware should execute before any other middleware Bug #10239: ldap: do not traceback when _auth_user_id references no user Bug #10255: Attach self-admin permission to roles using get_or_create() Bug #10266: /accounts/ is not protected by login_required() Bug #10719: SPOptionsPolicy.encrypt_nameid & encrypt_assertion have no effects Bug #10734: When a role is an admin role, removing a parent role should be impossible Bug #10844: logout redirects to img are cached Bug #11008: debian: deprecate /etc/init.d/authentic2 manage Bug #11318: Add login_required to password_change_view
Produits Entr'ouvert - Wishlist Les tickets que les CPF aimeraient voir dans la prochaine version (quand ils ont une priorité normale) 40% 35 issues (14 closed — 21 open) Related issues Development #33645: Afficher le nombre de membres indirect dans les rôles
future Future release 53% 72 issues (38 closed — 34 open) Related issues Support #1329: IDP SAML Metadata Attribute Support #5451: Update entrouvert website page on authentic2 Support #5453: Update redmine homepage Support #6047: Section fonctionnement des settings Support #6048: Complete the section settings list Support #6049: Update references to settings Support #6050: Update upgrading section Support #6051: Remove the FAQ style (rewrite section title written as question) Support #6052: Rewrite attribute section Support #6053: Write a quick start note for oauth2 idp Support #6054: Write a quick start note for saml2 sp - google apps use case Support #6055: Check the section on how policy works Support #6056: Add a section on user regsitration and emailing Support #6057: Write a quick start note for saml2 idp Development #59: CAS 1.0 & 2.0 Server Development #60: IP-STS server for Infocard card selectors Development #61: Backend LDAP Development #64: Authorisation management Development #65: Infocard authentication Development #66: Finish ID-FFv1.2 identity provider support Development #67: Signature and trust Development #68: ID-WSF 2.0 Discovery service Development #69: Simple cookie identity provider Development #74: Create an administrator documentation for authentic 1.0 Development #105: Preferences support Development #229: Authsaml2 bad loading provider method Development #253: Ajout d'une fonction remailer Development #287: NameIDManagement in idp saml2 Development #342: Choix des choses à logger Development #672: Support Identity Provider Discovery Service profile Development #736: User interface on the IdP to propagate SLO Development #739: Authncontext management policy on the IdP side Development #744: Authorization management at login Development #745: Authorization protocol Development #750: SAML2 Holder of key Development #752: OCSP and CRL support Development #753: Authsaml2 standalone django module Development #756: Complete attribute namespace mapping Development #757: Cleaning function for profile not attached to a user Development #804: Bench Development #1145: [Authsaml2] Pass the provider id from the UI by POST Development #1147: Manage prefered IdP to enhance the Idp selection UI Development #1148: Extend the attribute user profile Development #1169: Add support of Sites Development #1370: Rename term 'option' in 'parameter' when necessary Development #1374: Load the url tag from the future tag library Development #1376: Use class-based generic views instead of function-based Development #2779: CAS Authentication Development #3236: use django-allauth instead of django-registration Development #4010: Faire un benchmark Login+SSO initié par l'IdP Development #5157: page d'accueil "intelligente" Development #5279: Expression attribute source Development #5385: Add service provisioning Development #5815: An authentic2-auth-allauth plugin would be cool Development #6265: Only remove the opened session cookie when the feature is activated Development #6379: sync-ldap-users do not remove deleted accounts Development #6380: sync-ldap-users should only synchronize chosen LDAP servers Development #6916: Handle nested LDAP groups Development #6918: Multiple user login Development #20184: Écran de gestion des permissions d'un rôle : clarifier la liste des objets Bug #71: UI for adding a provider by its metadata URL Bug #72: Mailed link authentication Bug #73: User information page Bug #286: NameIdManagement in authsaml2 Bug #1302: HTTP 404 error code on static files Bug #1313: Inconsistency in Attribute Management in Authentic 2 documentation Bug #1322: login_password_profile template assumes openid user if there's no password Bug #3379: Manage attributes at sso using policies whatever protocol Bug #4465: don't use django.contrib.sites in settings.py Bug #10688: Do not raise AssertError when get_user_from_session_key() return an AnonymousUser Bug #20160: liste des rôles quand "toutes les collectivités" est choisie lors de la modification des rôles d'un usager Bug #20185: /manage/ : ne pas lister les utilisateurs en cours de suppression
Plugin FS FranceConnect - future 38% 8 issues (3 closed — 5 open) Related issues Plugin FS FranceConnect - Development #12921: utiliser une vue dédiée pour le retour de SSO non fédéré Plugin FS FranceConnect - Development #13178: Définir un AuthnContext particulier Plugin FS FranceConnect - Development #19471: gestion des images de fond des boutons par la CSS Plugin FS FranceConnect - Development #22915: Passer les textes de liaison de compte sur la page Mon compte lorsqu'une seule fédération est autorisé Plugin FS FranceConnect - Bug #21546: Limiter la largeur du bouton de connexion FC Plugin FS FranceConnect - Bug #21908: prise en compte du champ slug lors d'un SSO vers FC Plugin FS FranceConnect - Bug #21961: Séparer le template login.html en 3
Produits Entr'ouvert - ticket facile 50% 6 issues (3 closed — 3 open) Related issues Development #34448: FC, intégrer l'obligation de passer un niveau d'authentification dans la demande d'autorisation Development #35773: import csv, ajout d'un rôle Development #37187: manager, affichage/lecture seule pour les rôles pilotés depuis un annuaire LDAP