2.2.0 98% 351 issues (342 closed — 9 open) Related issues Support #5407: Should Kerberos login happen without interaction? Actions Support #5455: Update documentation Actions Support #7199: Packaging multitenant: rewrite default configuration file Actions Support #9951: Run tests on real databases Actions Support #10783: best way to add extra attribute kinds? Actions Development #751: Improve the manager based on RBAC Actions Development #5262: Manage authorizations to connect to a service provider Actions Development #5530: Faciliter la migration des fédérations Actions Development #5540: Possibility to create saml service provider from its AssertionConsumerService endpoint Actions Development #5541: Add a page to manage providers Actions Development #6350: Plan LDAP provisionning from A2 directory Actions Development #6847: Support for AttributeConsumingService declarations in sync-metadata Actions Development #6919: Create a custom user model Actions Development #6925: Map authentication method to authentication levels and use those levels to limit access to services Actions Development #6934: produce a coverage report when running tests Actions Development #6950: Refactoring of all user editing views Actions Development #6955: In app_settings set default list values to tuples not list to make them immutable Actions Development #6965: attributes_aggregator/ldifs: remove all translations markers from parsed schemas Actions Development #6966: settings: do not set handlers in django.db and django_select2 domains, they would be sent to the console twice Actions Development #6968: Rebase the CAS service model over the Authentic2 base service model Actions Development #6969: Rebase the SAML liberty provider model over the Authentic2 base service model Actions Development #6976: Add a warning when using default SAML certificates Actions Development #6982: Développer un IdP OpenID Connect Actions Development #6994: Create RBAC models: Role, User-Role relation, Role-Role hierarchy, Permissions, OrganizationalUnit Actions Development #7010: Use debian_config_common.py from hobo in the multitenant debian_config.py Actions Development #7012: Add a cache decorator using the django cache Actions Development #7013: Make the cache decorator base class vary the cache with the hostname Actions Development #7014: When changing password from the manager homepage the user should be returned to manager homepage Actions Development #7043: Remove south_migrations directory Actions Development #7116: Create unit tests on for the SAML2 IdP Actions Development #7188: Do not cache attribute kinds in a global variable Actions Development #7191: Add an attribute kind for person's titles Actions Development #7242: Complete tests over attribute_kinds by building a form with all kind of fields Actions Development #7243: idp/saml: attribute values can be a set, do not fail if this is the case Actions Development #7244: tests: rewrite Authentic2TestCase.assertEqualXML to use lxml and XPath queries Actions Development #7246: deprecated /etc/authentic2/config.d as a way to configure authentic2 Actions Development #7248: manager: allow changing password from the user edit form Actions Development #7250: custom_user: email is a better username than full name Actions Development #7252: attributes_ng: add new attribute source to get role attributes of a user for a service Actions Development #7278: managers: hide role managers link for admin roles Actions Development #7285: SAML2 Idp: always create a defined attribute event if its value set is empty Actions Development #7299: a2_rbac: add external_id field to Role object Actions Development #7302: models: set verbose_name of ou field on Service and User models Actions Development #7303: manager: improve SQL performance of RolesView using select_related('ou') Actions Development #7304: manager: unbreak export views Actions Development #7306: admin: integrate RBAC changes in model admin classes Actions Development #7312: a2_rbac: order organizational units by name Actions Development #7337: backends/models_backend: remove now useless ProxyUserModel Actions Development #7338: custom_user: remove clean() check on the presence of an ou Actions Development #7341: templates: set administration link on homepage to the new manager Actions Development #7351: Allow plugins to declare new attributes sources Actions Development #7354: decorators: add errorcollector() decorator, to help in creating clean() methods Actions Development #7357: models,a2_rbac/models: add partial indexes on models linked to ou or services Actions Development #7359: manager.js: support rel="popup" on button elements Actions Development #7360: manager: improve linking from rows in table.html Actions Development #7362: manager: fix breadcrumb and page title in organizational unit listing view Actions Development #7363: Create a registration web-service Actions Development #7414: manager/forms.py: do not override ou field class if it's not in the form Actions Development #7415: manager/templates: allow user of form.html to place content before and after fields Actions Development #7416: manager/views: allow Action object to have a full URL instead of an url_name Actions Development #7419: Add a web-service to list OrganizationalUnit Actions Development #7475: registration_backend/views: remove next_url parameter to the delete account view Actions Development #7518: Rewrite password reset views as CBV, remove intermediate notification views use the messages framework instead, add tests Actions Development #7524: saml: add certificate in KeyInfo of emitted messages Actions Development #7533: use messages framework for registration errors Actions Development #7546: service_role attribute source does not get inherited service roles Actions Development #7592: Add a CBV mixin to support multiple template names Actions Development #7593: Hide the edit profile if not field can be edited Actions Development #7597: Allow plugins to provide attribute sources Actions Development #7610: Pass next URL of login page to password reset view and registration page Actions Development #7625: Registration web service should allow checking email or username for uniqueness Actions Development #7647: Service roles should be part of the same ou as the service, and if the service.ou changes the roles.ou should change also Actions Development #7662: Show service roles in the role management views Actions Development #7697: Log password reset requests, password rest confirmations, email change requests, and email change confirmations Actions Development #7747: In the django_rbac tests using assertLess to compare timings would be more useful Actions Development #7748: Add an absolute parameter to make_url() to use when request parameter is present Actions Development #7761: Add application name (and entity?) to the role names in selectors Actions Development #7788: Improve experience when there is only one organizational unit Actions Development #7793: a2_rbac: do not create ou management roles when there is less than 2 OUs Actions Development #7799: Various improvements to django_rbac Actions Development #7800: manager: improve stylesheet for dialog boxes Actions Development #7801: a2_rbac: initialize management roles with their translated name Actions Development #7802: a2_rbac: move connection of post_migrate_update_rbac in the management module Actions Development #7803: a2_rbac: do not create management roles for the Service content type Actions Development #7805: Add helpers to implement JSON/JSONP views with CORS support Actions Development #7807: allow cache decorators to vary the key on a subset of args or kwargs Actions Development #7808: add SessionCache decorator to cache function values in session Actions Development #7862: API to list/search/add users Actions Development #7879: When an authnrequest is canceled, statusMessage should contain a message telling what happened. Actions Development #7986: Expose more fields of the OrganizationalUnit model in admin Actions Development #8005: Order roles by default field then by name Actions Development #8028: Add facility to make loglevel of handlers dynamic Actions Development #8029: post_form.html: do not wait for the onload event to submit the form Actions Development #8129: Improve display of user in user select2 field when adding users to role Actions Development #8130: Hide role permissions management for now Actions Development #8140: On user role page pre-select the entity of the user and show all roles of this entity with checkboxes Actions Development #8141: hide link between role and services Actions Development #8142: "switch user" feature Actions Development #8143: Implement role delegations Actions Development #8199: Use the DisplayMessageBeforeRedirectMiddleware in the logout view Actions Development #8200: In display_message_and_continue.html template, redirect user after 3 seconds Actions Development #8215: Add a basic OpenLDAP sock/shell backend for users Actions Development #8253: allow overriding role form class Actions Development #8257: nid format 'username' should return the username not the uuid Actions Development #8276: Remove attribute_aggregator and remnants of authsaml2 Actions Development #8277: Load firstof from future to remove warning Actions Development #8279: run compile_translations as part of sdist Actions Development #8280: Improve UI for managing roles and users Actions Development #8339: Do not overwrite de LOGGING setting from debian_config_common, update it Actions Development #8357: factorize connection building Actions Development #8360: Add direct support for LDAP settings: require_cert, cacertfile, cacertdir, keyfile, certfile Actions Development #8361: Add LDAP tests Actions Development #8365: Add a new attribute 'Role slugs from same entity as the service' Actions Development #8379: Use the same overriden form for role creation and role edition in the manager Actions Development #8389: Add attribute to propagate uuids of roles of the same ou as the service Actions Development #8480: Finish implementing registration without mail validation Actions Development #8584: Do not let LDAP user without an OU Actions Development #8600: login form: make username label configurable Actions Development #8826: Refactoring: merge LibertyServiceProvider into LibertyProvider Actions Development #8843: Publish blocks on account pages also using the frontend name Actions Development #8850: debian: add path for hobo skeletons Actions Development #8855: Use tenant_command --all in authentic2-multitenant cron job Actions Development #8937: Improve decorators.json Actions Development #9141: Set SessionNotOnOrAfter to the current session expiry date Actions Development #9197: Move logout.html js code to a static file Actions Development #9200: switch default public theme to use gadjo Actions Development #9231: Treat all roles whose slug starts with an underscore as "administrative roles" which cannot be edited or deleted Actions Development #9235: Only add OUs page to menu.json if user has add or change permissions Actions Development #9250: Remove self-administrated status of administrative roles for objects other than roles Actions Development #9256: Allow creating / mapping RBAC roles from / to LDAP groups Actions Development #9324: Permission needs unique index and partial unique indexes to prevent duplicate due to get_or_create() Actions Development #9333: SAML IdP proxy based on django-mellon Actions Development #9335: migrations: add IF EXISTS to DROP INDEX in partial index backward migration Actions Development #9398: add filter by role on users view Actions Development #9399: add filter "at least one role" on users view Actions Development #9665: add setting to prevent keeping LDAP passwords in session Actions Development #9666: encrypt LDAP password in sessions Actions Development #9673: use StoreRequestMiddleware to pass RequestContext to email templates Actions Development #9694: Show list of roles on user's page in the right colum, replace Roles link with a modify button under the list Actions Development #9695: add username to title of user edit page Actions Development #9721: Move role's administrators management inside the role's members view, group with role inheritance inside a sliding panel Actions Development #9808: Use the UUID as identifier in the User REST API Actions Development #9875: Send password_reset mail to user created through the user create API Actions Development #9948: "Impersonate this user" should first send logout requests to service providers Actions Development #10080: ldap: store old password temporarily in LDAPUser.check_password() so that PasswordChangeForm always work Actions Development #10156: Simplify tox.ini Actions Development #10214: When checking for email uniqueness at registration, if we have an OU reference we should fiter users by it Actions Development #10251: Create a web service to manipulate organizational units Actions Development #10322: Remove title from profile frontends. Actions Development #10598: saml auth: ask for email if it's not provided in profile Actions Development #10599: saml auth: extend provision_attribute to all user attributes Actions Development #10601: Use utils.send_registration_mail for sending the email in the registration form Actions Development #10658: Account management when the user has no password Actions Development #10767: add logrotate settings for gunicorn log files Actions Development #10802: If the user has no password, don't ask one at email modification and account deletion. Actions Development #11324: Enhance registration frontend management. Actions Bug #5836: Do not propose non-administrator users to add a service provider Actions Bug #6143: /manage : we should allow a superadmin activate is_admin Actions Bug #6378: SAML attribute with the same value should be collapsed Actions Bug #6633: Username column size too small Actions Bug #6668: Do not allow editing username Actions Bug #6690: Ajouter le support de deux variables MANAGER_HOMEPAGE_URL et MANAGER_HOMEPAGE_TITLE pour faire pointer le premier élément de la breadcrumb du manager vers le portail admin Actions Bug #6782: saml: produce a 405 error for GET requests on SOAP endpoints Actions Bug #6805: Give all password requirements at once Actions Bug #6807: On starttls errors we should not traceback but log an error stating that maybe the root certificat should be declared in /etc/ldap/ldap.conf Actions Bug #6857: "global name 'attribute_kinds' is not defined" error on SAML based SSO Actions Bug #6917: Password change form is broken Actions Bug #6952: Fix wrong next parameter building in admin login and logout override since Django 1.6 or 1.7 Actions Bug #6953: fix deprecation warning in authentic2_idp_cas/forms.py since Django 1.7 Actions Bug #6954: Fix logout link on users and roles pages in the manager Actions Bug #6956: Embed Django 1.7 migrations for django-admin-tools app menu and dashboard Actions Bug #6958: Base all services models (authentic2_idp_cas.Service, saml.LibertyServiceProvider) on a common base model Actions Bug #6967: auth_migrations: make the last migration run after first migrations in app depending from the user model Actions Bug #6970: utils.make_url does not use utils.resolve_url correctly Actions Bug #6971: fix call to redirect() in post method of the registration completion view Actions Bug #6989: Update multitenant packaging to use hobo/debian_config_common.py Actions Bug #7018: Migration custom_user.0001_initial doesn't work Actions Bug #7025: bump minimal release of Django to 1.7.6 Actions Bug #7042: "cancel" button erroneously displayed on login page Actions Bug #7064: username can be NULL now, the django_user attribute source must be adapted Actions Bug #7078: authentic2-multitenant init script lacks a reload action Actions Bug #7089: multitenant : UnicodeEncodeError during login Actions Bug #7094: LDAP user can still change their password Actions Bug #7097: registration_backend/views.py contains call to redirect() not using the new signature Actions Bug #7098: password set on registration is not saved (introduced in 700fc9b280) Actions Bug #7118: Authorized NameID format are sometimes refused because they are not mapped correctly to local identifiers Actions Bug #7150: Get authentic2 working with Django 1.8 Actions Bug #7245: authentic2_idp_cas: fix wrong namespace for the cas:attributes element in serviceValidate responses Actions Bug #7247: settings.py: make a special handler for DB logs as the request_context filter could create infinite loops Actions Bug #7249: forms: fix modelform_factory for non user models Actions Bug #7251: custom_user: fix changepassword command Actions Bug #7259: SSL authentication fail Actions Bug #7279: manager: in PermissionMixin fix name of the add permission Actions Bug #7280: manager: fix permission checking in UserAdd and UserEdit views Actions Bug #7282: the aggregate function max(boolean) does not exist on postgres, only sqlite Actions Bug #7297: Remove settings.py at the root of the project Actions Bug #7298: Remove --dependency-links argument to pip install in the README Actions Bug #7300: admin: fix password change linkg Actions Bug #7301: authentic2_idp_cas: Service.clean must call its parent method Actions Bug #7305: manager: return 404 if the export format is unknown¶ Actions Bug #7307: manager: simplify RoleTable.name and fix ordering for RoleTable.service Actions Bug #7308: manager/templates: unbreak display condition of pagination links Actions Bug #7309: admin: add ou field to AddLibertyProviderFromUrlForm¶ Actions Bug #7313: a2_rbac: forbid removing the default flag on organizational unit Actions Bug #7314: manager: display administrative role of organizational units in RolesView Actions Bug #7316: manager/tests: modify test case since roles from the global level are seen Actions Bug #7328: Error 500 when adding an user Actions Bug #7334: manager: remove group management Actions Bug #7335: manager&rbac: update french translations Actions Bug #7336: manager/css: truncate uuid column using CSS instead of doing it server side Actions Bug #7339: manager: improve users management views Actions Bug #7340: manager: do not protect with login_required "js i18n catalog" and django-select2 views Actions Bug #7342: new account template mentions password even if it has not been set Actions Bug #7353: a2_rbac/signal_handlers: add missing .objects accessor Actions Bug #7358: forms: set a default base model for forms built with modelform_factory Actions Bug #7361: manager/role_views: fix duplicate implementation of form_valid() in RoleManagersView Actions Bug #7364: registration_backend/views: set the required flag on admin defined fields Actions Bug #7366: expose /manage/ backoffice menu entries in jsonp Actions Bug #7386: custom user fields appear on profile edit page even if not set as user_visible and editable Actions Bug #7387: wrong edit profile page title Actions Bug #7388: blank page /idp/saml2/continue Actions Bug #7391: custom user fields empty on profile page Actions Bug #7392: migrations: do not run CreatePartialIndexes if router.allow_migrate() is False Actions Bug #7412: models: make Service.ou not mandatory Actions Bug #7413: 403.html: make it translatable, add button to go back to homepage Actions Bug #7417: attributes_ng/django_user: add user's roles names, slugs and uuids to Django user attribute source Actions Bug #7463: Allow setting a different homepage URL for the manager as we can already do for the homepage of authentic Actions Bug #7474: views: keep ordering of authentication frontends when building the login forms Actions Bug #7476: manager/views: remove ManagerMixin, as the logout URL is hardcoded in the template now Actions Bug #7503: a2_rbac: fix default slug for the default organizational unit Actions Bug #7504: django_rbac: give all permissions to superusers, and none to inactive users Actions Bug #7523: User credentials in APITest tests are not coherent with the name of the test Actions Bug #7525: custom_user/models: restore default value of User.last_login Actions Bug #7527: Another case of unicode error when writing logs Actions Bug #7530: Role views on service always returns 404 Actions Bug #7545: add service to autocompletion of role Actions Bug #7559: MultipleObjectsReturned: get() returned more than one LibertySessionDump -- it returned 2! Actions Bug #7573: manager: possibility to sort users by creation date Actions Bug #7583: Add autoescape off to all text email templates Actions Bug #7585: authentic2/manager/form.html does not handle forms needing multipart/form-data (forms with file fields) Actions Bug #7590: Password change dialog does not emit a message anymore Actions Bug #7591: On page with forms (based on authentic2/manager/form.html) message do not fade out Actions Bug #7594: manager: allow middle clicking on rows Actions Bug #7595: a2_role_names, a2_role_slugs and a2_role_uuids attributes does not list inherited roles Actions Bug #7598: Allow django-debug-toolbar to work in the manager Actions Bug #7599: manager: enlarge "add a user/role" select2 widget Actions Bug #7612: NameIDPolicy is optional Actions Bug #7613: Next URL in the CAS logout view is wrong Actions Bug #7614: To help registration and password reset views, IdP should pass a next URL containing the nonce to the login page Actions Bug #7615: Password reset form template loose the next URL parameter Actions Bug #7616: The new PasswordResetView should use the local SetPasswordForm from the registration_backend package Actions Bug #7617: PasswordResetView test must be update to comply with its new behaviour Actions Bug #7621: The new PasswordResetView forget to save the new password Actions Bug #7634: Error when sorting roles on service Actions Bug #7660: do not indent form elements (labels, buttons, selects) Actions Bug #7666: Rename a2_role_*s attributes to user_role_* Actions Bug #7691: (multitenant) error in create_default_ou when running migrations Actions Bug #7694: api_views: make the check for email uniqueness on registration case insensitive Actions Bug #7700: In debian packaging make a special handler for DB logs as the request_context filter could create infinite loops Actions Bug #7730: In manager the entity fields is ignored on role creation, and the description modify dialog does not work Actions Bug #7731: Improve wording of mail notifications Actions Bug #7734: manage: when search retyrn an empty queryset, django-tables2 should show the None string Actions Bug #7735: manager: the HTML export lacks headers (for the encoding) Actions Bug #7739: manager: align m2m add form elements Actions Bug #7741: Add middleware to show user messages before redirecting to another domain Actions Bug #7745: Gado theme was updated and <select> element layout is broken Actions Bug #7746: XForwardedForMiddleware is an old style class, it should be a new one Actions Bug #7749: GlobalCache with vary by hostname does not work when called from a command Actions Bug #7750: Show last login time in the user interface Actions Bug #7751: Improve exports of users and roles Actions Bug #7752: Members export view is broken Actions Bug #7758: simple users have access to /manage/ Actions Bug #7759: user who is manager of a role cannot add any user to it Actions Bug #7787: Allow limiting the content types associated to manager roles, add a global manager role like ou scoped manager roles Actions Bug #7790: django_rbac: fix hiding of exceptions by the decorator defer_update_transitive_closure Actions Bug #7791: a2_rbac: fix missing definition of Permission in management.py Actions Bug #7792: manager: override BaseDeleteView.authorize() like in BaseAddView and BaseEditView Actions Bug #7806: Add a user API endpoint Actions Bug #7809: Do not fail in the renderblock template tag if addtoblock has never been called Actions Bug #7822: CAS URLs : permit call without trailing slash Actions Bug #7861: manage: entity field is disabled and readonly, but considered when looking for required field Actions Bug #7952: Role deletion impossible from manage page Actions Bug #8012: The @update_service_role_ou@ post_save handler should also be called on the Service model Actions Bug #8013: manager: sorting of role tables by their name does not work anymore Actions Bug #8026: OrganizationalUnit.email_is_unique is ignored by RegistrationCompletionView Actions Bug #8030: custom_user: fix left join query to get user roles and direct relationship status Actions Bug #8087: wrong call to error_page Actions Bug #8138: debian: bump python-six dep Actions Bug #8152: django_rbac.models.PermissionMixin.has_perm_any and other new permission methods should work for superusers event if the DjangoRBAC backend is not loaded Actions Bug #8159: sync-ldap-users emit tracebacks Actions Bug #8214: Link to the manager is conditionned on user.is_staff, it should be controlled by test on real permissions like on the manager homepage Actions Bug #8234: webservice to add/remove users to/from roles Actions Bug #8258: New backend DummyBackend lacks a get_saml2_authn_context() method Actions Bug #8278: remove setting of TEST_RUNNER, it was only done to remove a warning Actions Bug #8284: error on upgrading authentic2 Actions Bug #8307: Style des liens désactivés ne plait pas à Pierre Actions Bug #8327: silent asserts produce a gettext header Actions Bug #8363: Ignore LDAP referrals returned by search() Actions Bug #8370: Using OPT_X_TLS_NEWCTX stop loading the default system trust store Actions Bug #8378: OpenedSessionCookieMiddleware is broken since it still uses activation through environment variables Actions Bug #8380: manager: in HideOUFieldMixin when the ou field is hidden, set it to the default OU Actions Bug #8381: attributes_ng: fix typo in attribute names related to roles Actions Bug #8390: handle all kinds of iterable but strings in normalize_attribute_values Actions Bug #8426: Fix addition of the registration realm as suffix to users chosen username Actions Bug #8429: django-select2 >= 5.0 is incompatible with authentic2 Actions Bug #8558: Change to the admin roles permissions are not applied Actions Bug #8563: views: fix homepage redirect with multitenant settings Actions Bug #8565: NameError: global name 'ou_admin_perms' is not defined Actions Bug #8586: User.__repr__ returns unicode / UTF-8 strings Actions Bug #8602: Show ou__uuid and ou__name in Service and Role to_json() documents Actions Bug #8603: In /api/user/ show all role from the same ou as the service in the service roles, and show all user roles in the user.to_json() document Actions Bug #8609: Unicode error on log format string Actions Bug #8620: Role.clean() fails on role edit forms when slug starts with an underscore Actions Bug #8747: do not warn about 0 users and 0 services going to be removed Actions Bug #8885: authentic2 traceback when an LDAP is unreachable for synchronization Actions Bug #8971: In log_filters do not fail if REMOTE_ADDR is missing from environment Actions Bug #9162: Collision between LDAP attributs and User fields in get_users() Actions Bug #9165: use RequestContext when sending activation email Actions Bug #9166: use RequestContext for password reset emails Actions Bug #9191: DisplayMessageBeforeRedirectMiddleware cannot reset the storage.used flag Actions Bug #9192: django-model-utils 2.4 break authentic Actions Bug #9195: Modify logout view to take in account redirections. Actions Bug #9198: Use <h2> in every templates Actions Bug #9199: trivial: use three dots in logout messages (not four) Actions Bug #9206: idp_cas: error 500 when service url is higher than 256 chars Actions Bug #9207: Prevent LDAP password from appearing in debug tracebacks Actions Bug #9216: keep manager/base.html using gadjo.html directly Actions Bug #9232: Hide "Add ou" button on /manager/organizationalunits/ page when user does not have the permission Actions Bug #9260: Prevent problem of slug collision when slug are autogenerated by django_rbac.models.AbstractBase.save() Actions Bug #9274: logout link on management pages Actions Bug #9275: has_self_administration() fails with MultipleObjectReturned Actions Bug #9747: Improve performance of users export to ODS Actions Bug #9812: RolesAPI : typo authentication_class / authentication_classes Actions Bug #9952: django.contrib.contenttypes must be loaded before django.contrib.auth Actions Bug #9954: user's API should cache modified serializer and user classes Actions Bug #10046: AttributeError: 'DatabaseWrapper' object has no attribute 'get_tenant' Actions Bug #10047: Creation of permissions in RoleManager.get_admin_role() is not concurrent safe Actions Bug #10063: In the register API when first_name or last_name is absent a DatabaseError for NULL column is raised Actions Bug #10071: /api/register/ should serialize user using the new BaseUserSerializer Actions Bug #10200: In multitenant_context A2_ATTRIBUTE_KIND_TITLE_CHOICES is never reloaded Actions Bug #10215: Register API without mail validation does not honor the "email is unique" flag of OU models Actions Bug #10229: if an exception occur before the SessionMiddleware has been run there can be an AttributeError in a2_processor() Actions Bug #10230: StoreRequestMiddleware should execute before any other middleware Actions Bug #10239: ldap: do not traceback when _auth_user_id references no user Actions Bug #10255: Attach self-admin permission to roles using get_or_create() Actions Bug #10266: /accounts/ is not protected by login_required() Actions Bug #10719: SPOptionsPolicy.encrypt_nameid & encrypt_assertion have no effects Actions Bug #10734: When a role is an admin role, removing a parent role should be impossible Actions Bug #10844: logout redirects to img are cached Actions Bug #11008: debian: deprecate /etc/init.d/authentic2 manage Actions Bug #11318: Add login_required to password_change_view Actions
future Future release 69% 71 issues (49 closed — 22 open) Related issues Support #1329: IDP SAML Metadata Attribute Actions Support #5451: Update entrouvert website page on authentic2 Actions Support #5453: Update redmine homepage Actions Support #6047: Section fonctionnement des settings Actions Support #6048: Complete the section settings list Actions Support #6049: Update references to settings Actions Support #6050: Update upgrading section Actions Support #6051: Remove the FAQ style (rewrite section title written as question) Actions Support #6052: Rewrite attribute section Actions Support #6053: Write a quick start note for oauth2 idp Actions Support #6054: Write a quick start note for saml2 sp - google apps use case Actions Support #6055: Check the section on how policy works Actions Support #6056: Add a section on user regsitration and emailing Actions Support #6057: Write a quick start note for saml2 idp Actions Development #59: CAS 1.0 & 2.0 Server Actions Development #60: IP-STS server for Infocard card selectors Actions Development #61: Backend LDAP Actions Development #64: Authorisation management Actions Development #65: Infocard authentication Actions Development #66: Finish ID-FFv1.2 identity provider support Actions Development #67: Signature and trust Actions Development #68: ID-WSF 2.0 Discovery service Actions Development #69: Simple cookie identity provider Actions Development #74: Create an administrator documentation for authentic 1.0 Actions Development #105: Preferences support Actions Development #229: Authsaml2 bad loading provider method Actions Development #253: Ajout d'une fonction remailer Actions Development #287: NameIDManagement in idp saml2 Actions Development #342: Choix des choses à logger Actions Development #672: Support Identity Provider Discovery Service profile Actions Development #736: User interface on the IdP to propagate SLO Actions Development #739: Authncontext management policy on the IdP side Actions Development #744: Authorization management at login Actions Development #745: Authorization protocol Actions Development #750: SAML2 Holder of key Actions Development #752: OCSP and CRL support Actions Development #753: Authsaml2 standalone django module Actions Development #756: Complete attribute namespace mapping Actions Development #757: Cleaning function for profile not attached to a user Actions Development #804: Bench Actions Development #1145: [Authsaml2] Pass the provider id from the UI by POST Actions Development #1147: Manage prefered IdP to enhance the Idp selection UI Actions Development #1148: Extend the attribute user profile Actions Development #1169: Add support of Sites Actions Development #1370: Rename term 'option' in 'parameter' when necessary Actions Development #1374: Load the url tag from the future tag library Actions Development #1376: Use class-based generic views instead of function-based Actions Development #2779: CAS Authentication Actions Development #3236: use django-allauth instead of django-registration Actions Development #4010: Faire un benchmark Login+SSO initié par l'IdP Actions Development #5157: page d'accueil "intelligente" Actions Development #5279: Expression attribute source Actions Development #5385: Add service provisioning Actions Development #5815: An authentic2-auth-allauth plugin would be cool Actions Development #6265: Only remove the opened session cookie when the feature is activated Actions Development #6379: sync-ldap-users do not remove deleted accounts Actions Development #6916: Handle nested LDAP groups Actions Development #6918: Multiple user login Actions Development #20184: Écran de gestion des permissions d'un rôle : clarifier la liste des objets Actions Bug #71: UI for adding a provider by its metadata URL Actions Bug #72: Mailed link authentication Actions Bug #73: User information page Actions Bug #286: NameIdManagement in authsaml2 Actions Bug #1302: HTTP 404 error code on static files Actions Bug #1313: Inconsistency in Attribute Management in Authentic 2 documentation Actions Bug #1322: login_password_profile template assumes openid user if there's no password Actions Bug #3379: Manage attributes at sso using policies whatever protocol Actions Bug #4465: don't use django.contrib.sites in settings.py Actions Bug #10688: Do not raise AssertError when get_user_from_session_key() return an AnonymousUser Actions Bug #20160: liste des rôles quand "toutes les collectivités" est choisie lors de la modification des rôles d'un usager Actions Bug #20185: /manage/ : ne pas lister les utilisateurs en cours de suppression Actions
Plugin FS FranceConnect - future 43% 7 issues (3 closed — 4 open) Related issues Plugin FS FranceConnect - Development #12921: utiliser une vue dédiée pour le retour de SSO non fédéré Actions Plugin FS FranceConnect - Development #13178: Définir un AuthnContext particulier Actions Plugin FS FranceConnect - Development #19471: gestion des images de fond des boutons par la CSS Actions Plugin FS FranceConnect - Development #22915: Passer les textes de liaison de compte sur la page Mon compte lorsqu'une seule fédération est autorisé Actions Plugin FS FranceConnect - Bug #21546: Limiter la largeur du bouton de connexion FC Actions Plugin FS FranceConnect - Bug #21908: prise en compte du champ slug lors d'un SSO vers FC Actions Plugin FS FranceConnect - Bug #21961: Séparer le template login.html en 3 Actions