Jens Langhammer
4991e9b825
Merge branch '1-suspicious-request' into 'master'
...
fix broken E-Mail templatetag
Closes #1
See merge request BeryJu.org/passbook!5
2019-03-03 20:18:23 +00:00
Jens Langhammer
612f95c3ba
fix broken E-Mail templatetag
2019-03-03 21:05:17 +01:00
Jens Langhammer
cd91d5ca15
Merge branch '1-suspicious-request' into 'master'
...
Resolve "Suspicious request detector (many invalid logins from one IP, many attempts on one username, etc)"
Closes #1
See merge request BeryJu.org/passbook!3
2019-03-03 20:04:56 +00:00
Jens Langhammer
c1640b9411
fix prospector/isort errors
2019-03-03 20:54:23 +01:00
Jens Langhammer
a4842c1f95
add sentry configuration
2019-03-03 20:48:31 +01:00
Jens Langhammer
a4707ddc54
fix failing unittests
2019-03-03 20:34:00 +01:00
Jens Langhammer
fb82d56307
create suspicious request detector and policy, add request to policy engine
2019-03-03 20:26:25 +01:00
Jens Langhammer
1a1005f80d
remove audit's LoginAttempt
2019-03-03 20:13:54 +01:00
Jens Langhammer
e86cae6cac
Merge branch '18-password-expiry' into 'master'
...
Resolve "Password Expiry"
Closes #18
See merge request BeryJu.org/passbook!2
2019-03-03 16:53:31 +00:00
Jens Langhammer
0b282f45e0
fix pylint messages
2019-03-03 17:45:20 +01:00
Jens Langhammer
791e88ffc1
Fix negate on FieldMatcherPolicy
2019-03-03 17:21:58 +01:00
Jens Langhammer
7bd3c4bccf
Better handle Policy.action and Policy.negate
2019-03-03 17:12:53 +01:00
Jens Langhammer
722e2e4050
Show warning when un-attached policies exist
2019-03-03 17:12:35 +01:00
Jens Langhammer
c7fc444c95
add password policy
2019-03-03 17:12:05 +01:00
Jens Langhammer
20ad062814
Log SAML Authorization actions
2019-03-03 00:34:34 +01:00
Jens Langhammer
fcb5d36e07
cleanup SAML urls
2019-03-03 00:07:40 +01:00
Jens Langhammer
9b131b619f
Show warning message when no Factor exists
2019-03-02 23:54:40 +01:00
Jens Langhammer
54427f7c68
use HTML5 autocomplete values to better handle password managers
2019-03-02 23:19:58 +01:00
Jens Langhammer
35eef9c28d
improve worker warning
2019-03-02 22:41:25 +01:00
Jens Langhammer
e88a82553d
use separate Form for Admin user editing (allow is_staff and is_active)
2019-03-02 22:41:14 +01:00
Jens Langhammer
01a9520140
add import_users script to import users from CSV with already hashed passwords
2019-03-02 22:40:47 +01:00
Jens Langhammer
c6721a83a4
bump version: 0.1.1-alpha -> 0.1.1-beta
2019-02-27 17:45:10 +01:00
Jens Langhammer
46866e8ef0
bump version: 0.1.0-beta -> 0.1.1-alpha
2019-02-27 17:43:28 +01:00
Jens Langhammer
4c3fced4e9
bump version: 0.1.0-alpha -> 0.1.0-beta
2019-02-27 16:45:52 +01:00
Jens Langhammer
172347d90f
bump version: 0.0.13-alpha -> 0.1.0-alpha
2019-02-27 16:42:52 +01:00
Jens Langhammer
f54520b5cf
bump version: 0.0.12-alpha -> 0.0.13-alpha
2019-02-27 16:06:28 +01:00
Jens Langhammer
d7c4697625
Only use one create template, get title from Form's Model
2019-02-27 16:06:20 +01:00
Jens Langhammer
5584f5bda8
switch to PolicyEngine everywhere
2019-02-27 15:49:20 +01:00
Jens Langhammer
2ce6f5a714
improve error display on forms
2019-02-27 15:49:05 +01:00
Jens Langhammer
c66945623a
Improve admin interface more (back links, better headlines)
2019-02-27 15:48:33 +01:00
Jens Langhammer
cbae05c74c
show more useful information on admin overview
2019-02-27 15:45:42 +01:00
Jens Langhammer
5b771da972
switch from first_name and last_name to name
2019-02-27 15:09:05 +01:00
Jens Langhammer
2db1738e4a
make Admin UI more consistent, better show when provider has no application assigned
2019-02-27 14:47:11 +01:00
Jens Langhammer
95de6a14fd
bump version: 0.0.11-alpha -> 0.0.12-alpha
2019-02-27 13:18:28 +01:00
Jens Langhammer
17132ebc19
Verify OAuth Username vuln and fix closes #9
2019-02-27 13:18:16 +01:00
Jens Langhammer
289be46388
fix SAML Views not having LoginRequiredMixin
2019-02-27 12:36:18 +01:00
Jens Langhammer
6c300b7b31
autofocus password field
2019-02-27 12:35:57 +01:00
Jens Langhammer
b726583084
Keep GET parameters throughout entire login process
2019-02-27 12:35:48 +01:00
Jens Langhammer
48055d1cfd
fix CSRF Bug in SAML
2019-02-27 11:20:52 +01:00
Jens Langhammer
e7a02104db
fix display on mobile
2019-02-27 09:33:12 +01:00
Jens Langhammer
556740d7bc
add PasswordPolicyForm back in
2019-02-26 15:41:11 +01:00
Jens Langhammer
421f51770c
implement password policy checking on signup and password change closes #8
2019-02-26 15:40:58 +01:00
Jens Langhammer
96f7e70f9e
enable always_eager when unittesting
2019-02-26 14:24:50 +01:00
Jens Langhammer
ad96f7dbb8
add E-Mail support via celery task, untested, closes #17
2019-02-26 14:10:53 +01:00
Jens Langhammer
e7fb48eba2
bump version: 0.0.10-alpha -> 0.0.11-alpha
2019-02-26 13:06:26 +01:00
Jens Langhammer
b19b5b644d
remove hardcoded passwords
2019-02-26 13:06:22 +01:00
Jens Langhammer
250b6691d4
bump version: 0.0.9-alpha -> 0.0.10-alpha
2019-02-26 12:44:02 +01:00
Jens Langhammer
e3b02a6e78
fix isort/pylint issues
2019-02-26 12:43:59 +01:00
Jens Langhammer
e94ef34d8f
bump version: 0.0.8-alpha -> 0.0.9-alpha
2019-02-26 12:35:28 +01:00
Jens Langhammer
49e945307a
Re-enable OTP Disable View
2019-02-26 12:35:24 +01:00