Additional multiple auth methods fixes and tests
Merge branch 'devel-0.13' into multipleauthmethods
Conflicts: snf-astakos-app/astakos/im/context_processors.py snf-astakos-app/astakos/im/forms.py snf-astakos-app/astakos/im/models.py snf-astakos-app/astakos/im/target/local.py snf-astakos-app/astakos/im/target/shibboleth.py...
Allow multiple login methods per account
Merge remote-tracking branch 'origin/0.12' into devel-0.13
Conflicts: snf-astakos-app/astakos/im/activation_backends.py snf-astakos-app/astakos/im/api/admin.py snf-astakos-app/astakos/im/auth_backends.py snf-astakos-app/astakos/im/forms.py snf-astakos-app/astakos/im/functions.py...
Flush other user sessions during password/token change
Refs: #3007
Force astakos cookie to follow session state.
Enable inactive shibboleth users to change email
Refs: #3041
Updated shibboleth workflow (enable user change email before activation)
Special handling for login failure messages
Return BadResponse if shibboleth returns empty SHIB_EPPN
Restrict next url parameter
Refs: #3008
Customize third party signup form fields
Refine shibboleth signup mechanism
Back up file
Merged demo
Remove obsolete import
Explicitly allow only POST and GET requests
Fix code formatting to conform to the PEP 8 style guide
AstakosUser signed_terms property instead of function
remove unused imports & code refinement
remove obsolete import
use status specific wrappers for adding messages
named reverse urls
remove oauth2 files
fix "None" next value in local login form
fix local login from cms
register email returned by shibboleth (either as a primary or additional email)
Refs: #2416
Log main astakos functions
Refs: #2448
remove get_or_create_user
handle AstakosUser model validation error
remove has_signed_terms utility, introduce AstakosUser signed_terms function instead
ask acknowledgment for switching local account to shibboleth one
Ratelimit login attempts
Refs: #2267
support shibboleth with invitations & enable modifyuser command to remove a user group
Refs: #2167
add support for groups
change authentication methods: progress I
check in /login (redirect) whether user has signed the terms and if not redirect to approval terms
Refs: #2019
merge with master
Fallback on HTTP_X_REAL_IP meta to retrieve client ip
thats where nginx sets the client ip
add captcha field in local user creation form
Ref: #2117
Repo refactor and webproject hooks fixes