Required auth providers functionality
if one of auth providers is set to be required, user with no suchprovider can only view his profile page and is prompted to add anew login method.
Merge branch 'devel-0.13' of https://code.grnet.gr/git/astakos into latest-quota
Conflicts: snf-astakos-app/astakos/im/messages.py snf-astakos-app/astakos/im/notifications.py snf-astakos-app/astakos/im/urls.py snf-astakos-app/astakos/im/views.py
Merge branch 'devel-0.13' of https://code.grnet.gr/git/astakos into devel-0.13
New style for table sorting
Auth providers fixes
handle is_available_for_{create, add}
Remove dummy debug statement
Handle invalid google auth response
Force login when adding third party auth providers
use proper oauth parameters to force user to login and confirm his thirdparty account every time he adds a new login method
Remember last login method
when multiple login methods are enabled in settings only the primary oneis visible by default in the login page. Keeping last successful loginmethod in a cookie allows us to override that behaviour and improve userexperience for users that login using secondary login methods.
Improve third party login methods messages
Twitter client improvements
- handle denied auth response- configurable force_login param
Google and LinkedIn oauth support
Conflicts: snf-astakos-app/astakos/im/forms.py snf-astakos-app/astakos/im/management/commands/service-add.py snf-astakos-app/astakos/im/messages.py snf-astakos-app/astakos/im/models.py...
Single model for ProjectApplication & Definition - Membership sync
Third party providers fixes
- Proper third party user getter. Do not include info in queryset.- Fix signup_url. key param only needed for login
Additional messages in third party registration/login process
Configurable shibboleth provider strict mode
shibboleth provider can now be configured whether or not to requireadditional provider information.
Updated auth methods messages/redirects
- Redirect to index on password reset views (no need for intermediate views)- Show login success message
Shibboleth fixes
- Do not require name (some providers don't provide it)- Proper can_add_auth_provider use
Configurable auth providers messages
Store additional provider info
store useful account details for third party authentication providersthat provide such info.
Third party login providers fixes/improvements
- Store additional provider info in PendingThirdPartyUser entries- Include third party registration logic in main signup view. Additional per provider signup views removed.- Unique email validation for all activation backend forms...
Automatic local auth provider assignment
when a valid user with empty authentication providers list tries tolog in
Dynamic third party signup url
Twitter authentication backend
Additional multiple auth methods fixes and tests
Merge branch 'devel-0.13' into multipleauthmethods
Conflicts: snf-astakos-app/astakos/im/context_processors.py snf-astakos-app/astakos/im/forms.py snf-astakos-app/astakos/im/models.py snf-astakos-app/astakos/im/target/local.py snf-astakos-app/astakos/im/target/shibboleth.py...
Allow multiple login methods per account
Merge remote-tracking branch 'origin/0.12' into devel-0.13
Conflicts: snf-astakos-app/astakos/im/activation_backends.py snf-astakos-app/astakos/im/api/admin.py snf-astakos-app/astakos/im/auth_backends.py snf-astakos-app/astakos/im/forms.py snf-astakos-app/astakos/im/functions.py...
Flush other user sessions during password/token change
Refs: #3007
Force astakos cookie to follow session state.
Enable inactive shibboleth users to change email
Refs: #3041
Updated shibboleth workflow (enable user change email before activation)
Special handling for login failure messages
Return BadResponse if shibboleth returns empty SHIB_EPPN
Restrict next url parameter
Refs: #3008
Customize third party signup form fields
Refine shibboleth signup mechanism
Back up file
Merged demo
Remove obsolete import
Explicitly allow only POST and GET requests
Fix code formatting to conform to the PEP 8 style guide
AstakosUser signed_terms property instead of function
remove unused imports & code refinement
remove obsolete import
use status specific wrappers for adding messages
named reverse urls
remove oauth2 files
fix "None" next value in local login form
fix local login from cms
register email returned by shibboleth (either as a primary or additional email)
Refs: #2416
Log main astakos functions
Refs: #2448
remove get_or_create_user
handle AstakosUser model validation error
remove has_signed_terms utility, introduce AstakosUser signed_terms function instead
ask acknowledgment for switching local account to shibboleth one
Ratelimit login attempts
Refs: #2267
support shibboleth with invitations & enable modifyuser command to remove a user group
Refs: #2167
add support for groups
change authentication methods: progress I
check in /login (redirect) whether user has signed the terms and if not redirect to approval terms
Refs: #2019
merge with master
Fallback on HTTP_X_REAL_IP meta to retrieve client ip
thats where nginx sets the client ip
add captcha field in local user creation form
Ref: #2117
Repo refactor and webproject hooks fixes