Jens Langhammer
|
5d1a3043b2
|
create SSOLoginPolicy, which allows factors to be applied when user comes from SSO login
implement SESSIION_IS_SSO_LOGIN for OAuth Client and core MFA
|
2019-04-29 23:19:37 +02:00 |
Jens Langhammer
|
b46958d1f9
|
send session to task
|
2019-04-29 23:18:51 +02:00 |
Jens Langhammer
|
5daa8d5fe3
|
fix missing/wrong widget inputs
|
2019-04-29 23:16:04 +02:00 |
Jens Langhammer
|
31846f1d05
|
Show redirect URL in <pre> element
|
2019-04-29 22:32:22 +02:00 |
Jens Langhammer
|
1fac964b8b
|
increase application close timeout
|
2019-04-29 22:19:26 +02:00 |
Jens Langhammer
|
dfa6ed8ac2
|
add help to show how SAML Property Mapping substitutes variables
|
2019-04-29 22:19:13 +02:00 |
Jens Langhammer
|
66fe10299e
|
new release: 0.1.37-beta
|
2019-04-29 21:43:18 +02:00 |
Jens Langhammer
|
e0a3ec033f
|
fix IDP-Initiated SAML Login
|
2019-04-29 21:39:41 +02:00 |
Jens Langhammer
|
7033ec0ab9
|
remove debug print
|
2019-04-29 21:39:30 +02:00 |
Jens Langhammer
|
4004579905
|
remove nexus_upload command
|
2019-04-29 21:39:16 +02:00 |
Jens Langhammer
|
9fe9e48a5c
|
new release: 0.1.36-beta
|
2019-04-29 20:57:57 +02:00 |
Jens Langhammer
|
595a6c7fe6
|
remove guardian completely
|
2019-04-29 20:57:54 +02:00 |
Jens Langhammer
|
11b5860d4a
|
new release: 0.1.35-beta
|
2019-04-29 20:47:32 +02:00 |
Jens Langhammer
|
9bdbff4cda
|
fix gitlab-ci using incorrect variables for docker access
|
2019-04-29 20:42:24 +02:00 |
Jens Langhammer
|
e0d597eeac
|
show cache on admin overview, add modal to clear cache, re-add logging to policy
|
2019-04-29 20:37:44 +02:00 |
Jens Langhammer
|
f576985cc9
|
remove django guardian and check application access via PolicyEngine
|
2019-04-29 20:07:18 +02:00 |
Jens Langhammer
|
22a6aef60b
|
fix wrong import
|
2019-04-29 20:06:52 +02:00 |
Jens Langhammer
|
ec0a6e7854
|
new release: 0.1.34-beta
|
2019-04-29 19:22:20 +02:00 |
Jens Langhammer
|
6904608e6f
|
fix clicking on administration always loading admin interface
|
2019-04-29 19:22:14 +02:00 |
Jens Langhammer
|
cb3732cb2b
|
filter out connection errors for sentry
|
2019-04-29 19:16:49 +02:00 |
Jens Langhammer
|
9f8fb7378a
|
add audience field, switch base processor, better handle processor loading failure
|
2019-04-18 11:30:21 +02:00 |
Jens Langhammer
|
98cd646044
|
remove unneeded processors
|
2019-04-18 11:09:12 +02:00 |
Jens Langhammer
|
53918462b6
|
new release: 0.1.33-beta
|
2019-04-18 10:28:12 +02:00 |
Jens Langhammer
|
8e5c3f2f31
|
remove unused import
|
2019-04-17 17:53:45 +02:00 |
Jens Langhammer
|
5a3b2fdd49
|
add Rancher SAML processor
|
2019-04-17 17:53:15 +02:00 |
Jens Langhammer
|
e47b9f0d57
|
fix SAML Request not being parsed all the time
|
2019-04-17 17:53:05 +02:00 |
Jens Langhammer
|
146dd747f1
|
fix EntityID being None in SAML Metadata
|
2019-04-17 17:52:24 +02:00 |
Jens Langhammer
|
f2ce56063b
|
bump version: 0.1.31-beta -> 0.1.32-beta
|
2019-04-17 14:27:41 +02:00 |
Jens Langhammer
|
9072b836c6
|
automatically add response_type if not given in OAuth Request
|
2019-04-17 14:25:51 +02:00 |
Jens Langhammer
|
2fa57d064e
|
bump version: 0.1.30-beta -> 0.1.31-beta
|
2019-04-13 17:58:09 +02:00 |
Jens Langhammer
|
e7129d18f6
|
fix inconsistent migrations
|
2019-04-13 17:52:11 +02:00 |
Jens Langhammer
|
d2bf9f81d6
|
remove raven middleware
|
2019-04-13 17:46:51 +02:00 |
Jens Langhammer
|
30acf0660b
|
Merge branch 'master' into 37-guardian
|
2019-04-13 17:43:02 +02:00 |
Jens Langhammer
|
dda41af5c8
|
remove logging to increase speed, add more caching to policy and rewriter
|
2019-04-13 17:22:03 +02:00 |
Jens Langhammer
|
9b5b03647b
|
move actual proxying logic to separate class
|
2019-04-13 16:05:11 +02:00 |
Jens Langhammer
|
940b3eb943
|
move logging to separate thread
|
2019-04-13 16:04:48 +02:00 |
Jens Langhammer
|
16eb629b71
|
only enable sentry when not DEBUG
|
2019-04-11 15:30:42 +02:00 |
Jens Langhammer
|
755045b226
|
try to fix app_gw being null
|
2019-04-11 15:30:07 +02:00 |
Jens Langhammer
|
61478db94e
|
use global urllib Pools
|
2019-04-11 15:29:35 +02:00 |
Jens Langhammer
|
f69f959bdb
|
allow setting authentication_header to empty string (disabling the header)
|
2019-04-11 15:29:01 +02:00 |
Jens Langhammer
|
146edb45d4
|
bump version: 0.1.29-beta -> 0.1.30-beta
|
2019-04-11 14:22:34 +02:00 |
Jens Langhammer
|
045a802365
|
don't use context manager in web command
|
2019-04-11 14:22:32 +02:00 |
Jens Langhammer
|
c90d8ddcff
|
bump version: 0.1.28-beta -> 0.1.29-beta
|
2019-04-11 14:03:08 +02:00 |
Jens Langhammer
|
a3ef26b7ad
|
Run collectstatic before coverage, use autoreload on celery worker
|
2019-04-11 13:54:11 +02:00 |
Jens Langhammer
|
19cd1624c1
|
replace cherrypy with daphne
|
2019-04-11 13:43:49 +02:00 |
Jens Langhammer
|
366ef352c6
|
switch to whitenoise for static files
|
2019-04-11 13:43:08 +02:00 |
Jens Langhammer
|
a1a5223b58
|
bump version: 0.1.27-beta -> 0.1.28-beta
|
2019-04-11 10:48:31 +02:00 |
Jens Langhammer
|
b369eb28f1
|
set default log level to warn, fix clean_nonces not working
|
2019-04-11 10:43:13 +02:00 |
Jens Langhammer
|
9b8f390e31
|
Merge branch '38-websocket-proxying' into 'master'
Resolve "Websocket Proxying"
Closes #38
See merge request BeryJu.org/passbook!24
|
2019-04-10 20:42:24 +00:00 |
Jens Langhammer
|
11630c9a74
|
switch kubernetes deployment to daphne server
|
2019-04-10 22:38:25 +02:00 |
Jens Langhammer
|
c9ac10f6f6
|
Implement websocket proxy
|
2019-04-10 19:03:42 +02:00 |
Jens Langhammer
|
04d613cb28
|
Move code from django-revproxy to app_gw to fix cookie bug
|
2019-04-10 19:03:22 +02:00 |
Jens Langhammer
|
40866f9ecd
|
Choose upstream more cleverly
|
2019-04-10 18:49:33 +02:00 |
Jens Langhammer
|
d8585eb872
|
trigger autoreload from config files
|
2019-04-10 18:48:55 +02:00 |
Jens Langhammer
|
15aaeda475
|
remove unused import
|
2019-04-10 18:47:21 +02:00 |
Jens Langhammer
|
8536ef9e23
|
Add guardian for Application permissions
|
2019-04-10 18:46:33 +02:00 |
Jens Langhammer
|
35b6bb6b3f
|
fix failing CI
|
2019-04-09 17:26:53 +02:00 |
Jens Langhammer
|
eaa573c715
|
fully remove raven and switch WSGI and logging to sentry_sdk
|
2019-04-05 16:11:53 +02:00 |
Jens Langhammer
|
660972e303
|
add ability to have non-expiring nonces, clean up expired nonces
|
2019-04-04 21:49:10 +02:00 |
Jens Langhammer
|
a21012bf0c
|
switch from raven to sentry_sdk
|
2019-04-04 21:48:50 +02:00 |
Jens Langhammer
|
80049413f0
|
bump version: 0.1.26-beta -> 0.1.27-beta
|
2019-03-22 14:51:13 +01:00 |
Jens Langhammer
|
2739442d4a
|
prepare 0.1.27
|
2019-03-22 14:51:09 +01:00 |
Jens Langhammer
|
c679f0a67c
|
bump version: 0.1.25-beta -> 0.1.26-beta
|
2019-03-22 12:48:00 +01:00 |
Jens Langhammer
|
4d6bb60134
|
add custom template views
|
2019-03-22 12:16:30 +01:00 |
Jens Langhammer
|
81ac951872
|
validate upstream in form
|
2019-03-22 10:55:26 +01:00 |
Jens Langhammer
|
f33e553cfd
|
always parse url instead of once
|
2019-03-22 10:55:04 +01:00 |
Jens Langhammer
|
9b0240dc26
|
bump version: 0.1.24-beta -> 0.1.25-beta
|
2019-03-21 16:50:00 +01:00 |
Jens Langhammer
|
c327310392
|
prepare 0.1.24-beta release
|
2019-03-21 16:49:57 +01:00 |
Jens Langhammer
|
7e87bfef5b
|
validate server_name in form
|
2019-03-21 16:36:38 +01:00 |
Jens Langhammer
|
a7af5268de
|
Invalidate cache when ApplicationGateway instance is saved
|
2019-03-21 16:27:37 +01:00 |
Jens Langhammer
|
6d916029bb
|
implement actual Rewriting logic
|
2019-03-21 16:22:07 +01:00 |
Jens Langhammer
|
81fdcbadad
|
add compiled regex to RewriteRule
|
2019-03-21 16:21:51 +01:00 |
Jens Langhammer
|
ec1e25fe71
|
cleanup property_mapping list
|
2019-03-21 16:21:11 +01:00 |
Jens Langhammer
|
b5306e4a94
|
Redirect to login on reverse proxy
|
2019-03-21 15:15:01 +01:00 |
Jens Langhammer
|
801b8a1e59
|
prevent ZeroDivisionError
|
2019-03-21 15:05:04 +01:00 |
Jens Langhammer
|
3a52059793
|
cleanup post-migration mess
|
2019-03-21 15:02:33 +01:00 |
Jens Langhammer
|
10b7d99b37
|
Merge branch 'master' into 30-application-security-gateway
# Conflicts:
# passbook/core/policies.py
# passbook/core/settings.py
|
2019-03-21 14:58:10 +01:00 |
Jens Langhammer
|
6be8d0cbb2
|
Better handle policy timeouts
|
2019-03-21 14:53:57 +01:00 |
Jens Langhammer
|
5b8e3689ec
|
Check for policies in app_gw
|
2019-03-21 14:53:47 +01:00 |
Jens Langhammer
|
25a5d8f5da
|
Don't use LoginRequired for PermissionDenied View
|
2019-03-21 14:53:38 +01:00 |
Jens Langhammer
|
883d439544
|
add timeout field to policy to prevent stuck policies
|
2019-03-21 14:48:51 +01:00 |
Jens Langhammer
|
29913773a7
|
invalidate cache when policy is saved
|
2019-03-21 11:29:11 +01:00 |
Jens Langhammer
|
0bc6a4fed4
|
explicitly use redis db
|
2019-03-21 11:28:57 +01:00 |
Jens Langhammer
|
4645d8353f
|
utilise cache in PolicyEngine
|
2019-03-21 11:08:32 +01:00 |
Jens Langhammer
|
260c5555fa
|
add redis dependency back in for caching
|
2019-03-21 11:08:08 +01:00 |
Jens Langhammer
|
6f7b917c38
|
bump version: 0.1.23-beta -> 0.1.24-beta
|
2019-03-20 23:00:33 +01:00 |
Jens Langhammer
|
ae3d3d0295
|
fix TypeError: can only concatenate list (not "str") to list
|
2019-03-20 22:50:09 +01:00 |
Jens Langhammer
|
c23ceacd0b
|
initial implementation of reverse proxy, using django-revproxy from within a middleware
add new config entry "primary_domain" which is used to set the cookie domain
|
2019-03-20 22:42:47 +01:00 |
Jens Langhammer
|
5155204283
|
Merge branch '32-automatically-set-owner-field-when-creating-oauth-provider' into 'master'
Resolve "Automatically set owner field when creating OAuth Provider"
Closes #32
See merge request BeryJu.org/passbook!16
|
2019-03-20 21:20:54 +00:00 |
Jens Langhammer
|
d6f9b2e47d
|
remove user field from form. Closes #32
|
2019-03-20 20:09:27 +01:00 |
Jens Langhammer
|
67aa4aef11
|
add modal for OAuth Providers showing the URLs
|
2019-03-20 20:03:28 +01:00 |
Jens Langhammer
|
9e46c8bfec
|
bump version: 0.1.22-beta -> 0.1.23-beta
|
2019-03-18 20:54:31 +01:00 |
Jens Langhammer
|
fccc8f4959
|
set issuer to root address instead of well-known path
|
2019-03-18 20:42:32 +01:00 |
Jens Langhammer
|
c9f73d718e
|
start implementing openid connect discovery
|
2019-03-18 20:35:11 +01:00 |
Jens Langhammer
|
bfa58be721
|
bump version: 0.1.21-beta -> 0.1.22-beta
|
2019-03-14 21:22:15 +01:00 |
Jens Langhammer
|
81ab9092fc
|
Fix OAuth Client's disconnect view having invalid URL names
|
2019-03-14 21:19:14 +01:00 |
Jens Langhammer
|
29d5962c4c
|
add Azure AD Source
|
2019-03-14 21:18:55 +01:00 |
Jens Langhammer
|
5c75339946
|
point to correct icons
|
2019-03-14 21:18:13 +01:00 |
Jens Langhammer
|
4774d9a46c
|
fix delete form not working
|
2019-03-14 21:17:41 +01:00 |
Jens Langhammer
|
dbe16ba4fd
|
fix layout when on mobile viewport and scrolling
|
2019-03-14 21:17:28 +01:00 |
Jens Langhammer
|
6972cf00a0
|
move icons to single folder, cleanup
|
2019-03-14 21:17:07 +01:00 |
Jens Langhammer
|
0445be9712
|
fix missing debug template
|
2019-03-14 21:16:27 +01:00 |
Jens Langhammer
|
89dbdd9585
|
bump version: 0.1.20-beta -> 0.1.21-beta
|
2019-03-14 18:08:02 +01:00 |
Jens Langhammer
|
5f50fcfcf5
|
detect HTTPS from reverse proxy
|
2019-03-14 18:01:41 +01:00 |
Jens Langhammer
|
96be087221
|
add request debug view
|
2019-03-14 18:01:27 +01:00 |
Jens Langhammer
|
a53a269a8c
|
bump version: 0.1.19-beta -> 0.1.20-beta
|
2019-03-13 16:51:43 +01:00 |
Jens Langhammer
|
ae3c092238
|
add user settings for Sources
|
2019-03-13 16:49:30 +01:00 |
Jens Langhammer
|
e98e5e4e3e
|
fix GitHub Pretend again
|
2019-03-13 15:52:05 +01:00 |
Jens Langhammer
|
d50c7ec8d4
|
bump version: 0.1.18-beta -> 0.1.19-beta
|
2019-03-13 15:16:48 +01:00 |
Jens Langhammer
|
70c11c8988
|
fix GitHub Pretend throwing a 500 error
|
2019-03-13 15:12:13 +01:00 |
Jens Langhammer
|
ae64024ef4
|
bump version: 0.1.17-beta -> 0.1.18-beta
|
2019-03-13 11:31:05 +01:00 |
Jens Langhammer
|
01b0eb159a
|
fix Server Error when downloading metadata
|
2019-03-12 17:08:53 +01:00 |
Jens Langhammer
|
63aa48d981
|
bump version: 0.1.16-beta -> 0.1.17-beta
|
2019-03-12 15:55:18 +01:00 |
Jens Langhammer
|
b2ac57bb67
|
switch to vertical navigation
|
2019-03-12 13:35:09 +01:00 |
Jens Langhammer
|
4c22e5c2c8
|
don't use celery heartbeat, use TCP keepalive instead
|
2019-03-12 13:34:54 +01:00 |
Jens Langhammer
|
4a7b0ec8a9
|
remove Application.user_is_authorized
|
2019-03-12 10:56:01 +01:00 |
Jens Langhammer
|
330118249e
|
bump version: 0.1.15-beta -> 0.1.16-beta
|
2019-03-11 21:35:11 +01:00 |
Jens Langhammer
|
8d4dabde02
|
finalize RabbitMQ replacement, update debian package, remove redis tgz
|
2019-03-11 21:35:06 +01:00 |
Jens Langhammer
|
cf7323c41b
|
bump version: 0.1.14-beta -> 0.1.15-beta
|
2019-03-11 21:01:18 +01:00 |
Jens Langhammer
|
edd856df7d
|
redis -> rabbitmq
|
2019-03-11 20:46:19 +01:00 |
Jens Langhammer
|
5e35859db6
|
bump version: 0.1.13-beta -> 0.1.14-beta
|
2019-03-11 11:44:34 +01:00 |
Jens Langhammer
|
acabb2df54
|
fix unittests
|
2019-03-11 11:44:12 +01:00 |
Jens Langhammer
|
e6376a05f7
|
bump version: 0.1.12-beta -> 0.1.13-beta
|
2019-03-11 11:31:12 +01:00 |
Jens Langhammer
|
e1f1f617b6
|
fix UserChangePasswordView not requiring Login
|
2019-03-11 11:25:59 +01:00 |
Jens Langhammer
|
7529b51358
|
Fix DoesNotExist error when running PolicyEngine against None user
|
2019-03-11 10:52:50 +01:00 |
Jens Langhammer
|
c394066d99
|
bump version: 0.1.11-beta -> 0.1.12-beta
|
2019-03-11 09:51:00 +01:00 |
Jens Langhammer
|
d408031304
|
fix OAuth Authorization View not requiring authentication
|
2019-03-11 09:48:36 +01:00 |
Jens Langhammer
|
501fed1922
|
rewrite PasswordFactor to use backends setting instead of trying all backends
|
2019-03-10 21:47:08 +01:00 |
Jens Langhammer
|
ad8125ac1c
|
bump version: 0.1.10-beta -> 0.1.11-beta
|
2019-03-10 19:56:30 +01:00 |
Jens Langhammer
|
f7c0c0146a
|
add LDAP Group Membership Policy
|
2019-03-10 19:45:16 +01:00 |
Jens Langhammer
|
e4baf8c21e
|
Add Group Member policy
|
2019-03-10 19:32:18 +01:00 |
Jens Langhammer
|
364f040b36
|
always use FilteredSelectMultiple for many-to-many fields
|
2019-03-10 18:34:09 +01:00 |
Jens Langhammer
|
2b8c2b2346
|
use Django's Admin FilteredSelectMultiple for Group Membership
|
2019-03-10 18:06:06 +01:00 |
Jens Langhammer
|
5f861189e4
|
Merge branch 'master' into 23-groups
# Conflicts:
# passbook/admin/templates/administration/base.html
|
2019-03-10 17:13:29 +01:00 |
Jens Langhammer
|
eebbae0677
|
bump version: 0.1.9-beta -> 0.1.10-beta
|
2019-03-10 15:54:50 +01:00 |
Jens Langhammer
|
0e425418df
|
better show loading state when testing a policy
|
2019-03-10 15:46:49 +01:00 |
Jens Langhammer
|
7fe0300b86
|
Fix button on policy test page
|
2019-03-10 15:36:49 +01:00 |
Jens Langhammer
|
a5dc193cfd
|
bump version: 0.1.8-beta -> 0.1.9-beta
|
2019-03-10 12:17:48 +01:00 |
Jens Langhammer
|
f1291fec8d
|
add impersonation middleware, add to templates
|
2019-03-10 02:41:31 +01:00 |
Jens Langhammer
|
37aeeea239
|
slightly refactor Factor View, add more unittests
|
2019-03-10 02:08:09 +01:00 |
Jens Langhammer
|
0fa1fc86da
|
add more Verbosity to PolicyEngine, rewrite SAML Authorisation check
|
2019-03-10 02:07:48 +01:00 |
Jens Langhammer
|
c3034ab9ac
|
consistently using PolicyEngine
|
2019-03-10 02:07:18 +01:00 |
Jens Langhammer
|
76694e037a
|
bump version: 0.1.7-beta -> 0.1.8-beta
|
2019-03-08 21:43:35 +01:00 |
Jens Langhammer
|
787db41cc3
|
prepare for 0.1.7
|
2019-03-08 21:43:33 +01:00 |
Jens Langhammer
|
74da3df7cd
|
bump version: 0.1.6-beta -> 0.1.7-beta
|
2019-03-08 21:37:59 +01:00 |
Jens Langhammer
|
c313b496aa
|
Improve access control for saml
|
2019-03-08 21:30:16 +01:00 |
Jens Langhammer
|
a7eaa74191
|
fix MATCH_EXACT not working as intended
|
2019-03-08 21:20:38 +01:00 |
Jens Langhammer
|
11ecdc4fcf
|
bump version: 0.1.5-beta -> 0.1.6-beta
|
2019-03-08 20:39:27 +01:00 |
Jens Langhammer
|
2f7781b67a
|
fix captcha factor not loading keys from Factor class
|
2019-03-08 20:08:28 +01:00 |
Jens Langhammer
|
296d4f691a
|
add passing property to PolicyEngine
|
2019-03-08 19:49:53 +01:00 |