summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Bump version up to 0.2.1Simo Sorce2014-04-251-1/+1
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Do not hardcode sessions directory in spec fileSimo Sorce2014-04-211-2/+0
| | | | | | | This directory is now generated dynamicaly based on the instance name at ipsilon-server-install time. Signed-off-by: Simo Sorce <simo@redhat.com>
* Make it easy to install mutiple server instancesSimo Sorce2014-04-215-31/+48
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Move templatized file creation to toolsSimo Sorce2014-04-212-15/+19
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Move fixing files functionality to toolsSimo Sorce2014-04-213-21/+40
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Convert all forms to use util.Page form supportSimo Sorce2014-04-213-26/+4
| | | | | | This way all forms will get Referer checking automaticaly Signed-off-by: Simo Sorce <simo@redhat.com>
* Add New form helper to Page objectSimo Sorce2014-04-201-4/+19
| | | | | | | | This removes the need to define a root funciton only to redirect to a GET/POST one. Also adds basic CSRF protection if the page is declared a form. Signed-off-by: Simo Sorce <simo@redhat.com>
* Update contrib spec file for version 0.2Simo Sorce2014-04-181-8/+3
| | | | | | Drop changelog, it's unnecessary, commit logs are available in git Signed-off-by: Simo Sorce <simo@redhat.com>
* Fix warningSimo Sorce2014-04-181-2/+2
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Revert incorrect change to template fileSimo Sorce2014-04-181-4/+4
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Add missing install fileSimo Sorce2014-04-182-1/+14
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Bump up to version 0.2Simo Sorce2014-04-161-1/+1
| | | | | | | now that we have a basic client and server installers we have reached a milestone. Bump up the version. Signed-off-by: Simo Sorce <simo@redhat.com>
* Fix NameId exceptionSimo Sorce2014-04-151-2/+2
| | | | | | | Report what invalid name was used and fix exception on raising the exception on line 129 Signed-off-by: Simo Sorce <simo@redhat.com>
* Add nameid values validationSimo Sorce2014-04-142-0/+15
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Refactor argument validation for SP formsSimo Sorce2014-04-141-61/+105
| | | | | | | Use helper functions to make the code more readbale and exceptions to reduce error hndling duplication. Signed-off-by: Simo Sorce <simo@redhat.com>
* Validate Service Provider namesSimo Sorce2014-04-111-0/+16
| | | | | | We use the name to construct the admin page path, avoid odd characters Signed-off-by: Simo Sorce <simo@redhat.com>
* Install client tools in a separate rpm packageSimo Sorce2014-04-111-2/+38
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Add basic installation script with saml supportSimo Sorce2014-04-114-1/+301
| | | | | | | | | Generates (self signed) certificates and a metdata.xml file. Optionally configures an Apache Httpd server. If the admin does not configure a specific application at install time a default landing page is made available to be able to test that the SP configuration works. Uninstall removes all certificates and metadata file and is irreversible.
* Allow to set additional custom keys on servicesSimo Sorce2014-04-111-1/+3
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Simplify metadata add_service signatureSimo Sorce2014-04-112-15/+19
| | | | | | Add a map that takes care of the lower level lasso-related details Signed-off-by: Simo Sorce <simo@redhat.com>
* Store full path immediatelySimo Sorce2014-04-111-6/+5
| | | | | | | | Allows to query .key and .cert to e used to find the files on the system directly w/o having to know what path was previously used to initialize the class. Signed-off-by: Simo Sorce <simo@redhat.com>
* If no path is provided use current directorySimo Sorce2014-04-111-1/+4
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Move accessory functions to a generic tools moduleSimo Sorce2014-04-116-23/+24
| | | | | | | This will allow to easly share the module with install tools, without the need to install server side modules in clients Signed-off-by: Simo Sorce <simo@redhat.com>
* Rename scripts and mark them as suchSimo Sorce2014-04-115-9/+5
| | | | | | | | | | | | Mark actual top level scripts as such instead of disguising them as modules. Also remove __init__.py from ipsilon/install as this is not a module just the place where install scripts are kept, for now. Note: Scripts are installed in the bin directory but the contrib spec file moves them to sbin. Signed-off-by: Simo Sorce <simo@redhat.com>
* Add debug logging of lasso librarySimo Sorce2014-04-111-0/+7
| | | | | | | | | | | If debug is enabled make lasso spit debug messages to stderr too, to aid admins in resolving issues related to saml2 issues, like finding out why a metadata file may be rejected. This is very simple for now, a future enhancement may involve piping the logs into a calss so they can be spat out as feedback to users. Signed-off-by: Simo Sorce <simo@redhat.com>
* Return Idps metadata file on requestSimo Sorce2014-04-111-0/+11
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Fix generation of endopint URLsSimo Sorce2014-04-111-2/+2
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Change provider plugins registration and enablementSimo Sorce2014-04-113-19/+46
| | | | | | | | | | | | | When plugins are not enabled at startup the admin page is not available as it is created only on enablement. Split enablement and registration, so plugins can be registered even when actually disabled. Also rework the way enablement is tracked and make sure enablement status is saved back to the database when it changes so it is kept on restarts. Signed-off-by: Simo Sorce <simo@redhat.com>
* Add explicit error for Unknown ProvidersSimo Sorce2014-04-111-1/+11
| | | | | | This way the user will get a slightly more meaningful error message. Signed-off-by: Simo Sorce <simo@redhat.com>
* Properly support rename operationSimo Sorce2014-04-041-0/+9
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Admin functions to delete Service ProvidersSimo Sorce2014-04-043-0/+24
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Add infrastructure to delete plugin data by idSimo Sorce2014-04-042-0/+20
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Admin functions to add new Service ProvidersSimo Sorce2014-04-043-0/+111
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Admin classes to change SP propertiesSimo Sorce2014-04-043-16/+172
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Providers can save properties back to the databaseSimo Sorce2014-04-041-4/+43
| | | | | | | This way a provider class can be used in admin pages as well and remain consistent. Signed-off-by: Simo Sorce <simo@redhat.com>
* Add Service and Identity Provider abstractionSimo Sorce2014-04-043-19/+71
| | | | | | | | | | | | This commit adds: - helper functions to create new providers - separate IdentityProvider class to represent the IDP. Database changes: The saml2 plugin database now contain the metadata file contents and does not rely anymore on on-disk data. Signed-off-by: Simo Sorce <simo@redhat.com>
* Add racefree way to add a new unique data pointSimo Sorce2014-04-042-0/+33
| | | | | | | | | | | | | | Our schema gathers together data related to a service by using an ID column. This column cannot be unique or a primary key as the ID is repeated for each key/value pair in the datum group. Use a unique identifier to make sure we can let dqlite generate a new ID internally and then find out wat it is as race-free as possible. We keep this method in the data module so it can be changed later without affecting application logic. Signed-off-by: Simo Sorce <simo@redhat.com>
* No need to have a separate certificate fileSimo Sorce2014-04-041-2/+1
| | | | | | Certificates are already contained in the metadata.xml file Signed-off-by: Simo Sorce <simo@redhat.com>
* Saml2 initial admin pageSimo Sorce2014-03-284-0/+76
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Add generic support for IdP plugin admin pagesSimo Sorce2014-03-283-1/+8
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Basic Identity providers plugin configurationSimo Sorce2014-03-283-0/+100
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Refactor provider plugins enablementSimo Sorce2014-03-281-6/+37
| | | | | | | This allow to enable/disable Identity Providers directly from the configuration interface. Signed-off-by: Simo Sorce <simo@redhat.com>
* Refactor login plugin enablement codeSimo Sorce2014-03-283-16/+103
| | | | | | | This allows us to finally implement the plugin enable/disable configuration buttons and enable/disable plugins on the fly. Signed-off-by: Simo Sorce <simo@redhat.com>
* Automatically build configuration page menuSimo Sorce2014-03-283-27/+38
| | | | | | Do not hardcode it, rather build it out of the pages tree. Signed-off-by: Simo Sorce <simo@redhat.com>
* Add common way to add a subtree to a pageSimo Sorce2014-03-281-0/+6
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Move login plugin configuration to its own moduleSimo Sorce2014-03-268-130/+168
| | | | | | | move also the template, in preparation for handling other configuration data in the main page. Signed-off-by: Simo Sorce <simo@redhat.com>
* Move admin_protect to a more generic moduleSimo Sorce2014-03-242-12/+12
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Implement plugin ordering configurationSimo Sorce2014-03-243-2/+105
| | | | | | Allows to change the login plugins order from the admin configuration page. Signed-off-by: Simo Sorce <simo@redhat.com>
* Add a default admin user at install timeSimo Sorce2014-03-211-0/+10
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
* Add way to save user preferencesSimo Sorce2014-03-211-0/+33
| | | | Signed-off-by: Simo Sorce <simo@redhat.com>
generated by cgit (git 2.34.1) at 2024-06-13 07:33:11 +0000