security-and-privacy/ldapcherry
security-and-privacy/ldapcherry
1
0
Fork 0
mirror of https://github.com/kakwa/ldapcherry synced 2024-06-11 21:29:52 +02:00
Code Releases Activity
601 Commits 3 Branches 22 Tags 1.6 MiB
8270988ed4
Commit Graph

243 Commits

Author SHA1 Message Date
kakwa
1885079444 pep8 compliance 2015-07-11 22:25:21 +02:00
kakwa
bbeaebe77d pep8 compliance 2015-07-11 22:05:33 +02:00
kakwa
f73d4e37bc more pep8 compliance 2015-07-11 22:03:58 +02:00
kakwa
f29039704e pep8 compliance on ldapcherry/exceptions.py 2015-07-11 09:05:01 +02:00
kakwa
24aabe2908 pep8 compilance for ldapcherry/__init__.py 2015-07-11 08:55:54 +02:00
kakwa
3712bb85cb many pep8 fixes thanks to pep8ify 2015-07-10 21:06:28 +02:00
kakwa
2d12335030 pep 8 on ppolicy + docstrings 2015-07-10 21:01:39 +02:00
kakwa
04c294e038 disable autofill for modify forms 2015-07-10 20:11:07 +02:00
kakwa
976f65529d replace brackets by quotes in logs 2015-07-06 08:36:01 +02:00
kakwa
9bd23e386b fix typo in log 2015-07-06 08:32:36 +02:00
kakwa
1f0cc50d58 adding a redirected to the originaly requested page on login 
user not authenticated and requesting an url are redirected to
the signin page with the requested page url as the query string (in
base64). It permits to redirect them to the requested page once they
've log in.
 2015-07-06 07:58:27 +02:00
kakwa
7241b6f8ee better error message for selfmodify if auth disabled 2015-07-05 23:09:32 +02:00
kakwa
df88f2f266 remove trailing spaces 2015-07-05 22:48:24 +02:00
kakwa
e9d5331d6a various fix on ssl/tls + tests 
* making ssl cert check and cert no check works
* adding a test to check if the cafile does exist
* reenable and fix ssl checks on travis
 2015-07-05 22:01:09 +02:00
kakwa
cd13bf5d22 fix error if no ppolicy module 2015-07-02 08:35:44 +02:00
kakwa
0d045576b2 implementing ppolicy handling and a simple ppolicy module 2015-07-02 07:42:38 +02:00
kakwa
e964c5151e implementing a simple ppolicy module 2015-07-01 23:00:42 +02:00
kakwa
c302198e6e initialize ppolicy module 2015-07-01 08:58:23 +02:00
kakwa
ac7661731c implementing frontend password policy check 2015-07-01 08:50:50 +02:00
kakwa
cd5069557c adding skeleton for ppolicy check 2015-06-29 23:07:53 +02:00
kakwa
ae5c857c74 fix error if password is not in modified attributes 2015-06-28 23:33:37 +02:00
kakwa
31907f726b change where form parsing is executed 
this change creates a cleaner api for core functions
 2015-06-28 23:10:58 +02:00
kakwa
373d897cab better exception handling in ldap backend 2015-06-28 19:54:19 +02:00
kakwa
1346bbe820 factoring source code 2015-06-28 15:29:02 +02:00
kakwa
3ccb5ecfc2 better docstring and splitting template load from reload 2015-06-28 15:14:31 +02:00
kakwa
e7053435e3 disable redirection + disable selfmodify if authentication is 'none' 2015-06-28 11:22:37 +02:00
kakwa
147cad3511 fix unicode 2015-06-27 22:35:34 +02:00
kakwa
b5a8e302d1 adding redirect to selfmodify on / 2015-06-26 00:03:26 +02:00
kakwa
11c4196959 implementing selfmodify 2015-06-25 23:42:37 +02:00
kakwa
45f32df72e make the key attribute not modifiable in modify form 2015-06-25 02:08:30 +02:00
kakwa
830e00a404 implementing modify 2015-06-25 01:26:28 +02:00
kakwa
be23277363 better log handler 2015-06-24 22:33:28 +02:00
kakwa
84c3d9604f replace uppercase characters in logs 2015-06-24 21:24:56 +02:00
kakwa
02c157b386 adding another debug log 2015-06-24 21:22:34 +02:00
kakwa
117d18bc92 prefixing all form attributes to differenciate between types 2015-06-24 00:46:10 +02:00
kakwa
314e0fc02b redirecting to the edit page once submit modify 2015-06-23 23:58:17 +02:00
kakwa
1b5c737cd5 implementing deletion of a user 2015-06-23 21:42:06 +02:00
kakwa
700ae5ce1e implementing backend method for delete user 2015-06-22 23:15:09 +02:00
kakwa
622e730017 fix adding multiple time to same group + logs 2015-06-21 23:41:24 +02:00
kakwa
71576f0aea code reorganization + logs 
* adding logs when adding users
* move adduser with other none exposed classes
* skeleton for modify and delete user
 2015-06-21 15:28:32 +02:00
kakwa
9cda4e6de0 better logs 2015-06-20 22:40:28 +02:00
kakwa
5e5e7e3c6a implementing displaying roles and standalone groups in modify form 2015-06-19 22:15:37 +02:00
kakwa
834b5a5152 begin implementing modify user form 2015-06-18 23:43:58 +02:00
kakwa
71c1eccc8e implementing adding user to roles 2015-06-18 20:38:39 +02:00
kakwa
f821aab9f4 adding logs when adding a user to a group 2015-06-18 20:38:10 +02:00
kakwa
01de849204 list of roles and not a uniq role for get_groups 2015-06-18 10:04:20 +02:00
kakwa
7d63e967da adding exception to prevent using skeleton module 2015-06-17 19:57:41 +02:00
kakwa
45393c3a80 fix backend module skeleton 2015-06-17 19:48:57 +02:00
kakwa
c2288eecf5 fix unit test and fix the way ldap connexion options are handled 2015-06-17 19:22:57 +02:00
kakwa
0d766d3303 fix add/del groups 2015-06-16 23:56:12 +02:00
kakwa
60a7329937 fix API for backend ldap on groups handling 2015-06-16 21:58:44 +02:00
kakwa
a2fe74539b multiple modification in backend ldap 
* better handling of which attributes is recovered
* fix set_attrs method
* change api of set_attrs method for constancy
* change calls to _get_user and _search methods (internal api change)
 2015-06-16 21:29:40 +02:00
kakwa
c5bd6a238b remove debuging log 2015-06-16 00:25:04 +02:00
kakwa
322aba33e8 fix search display 
* fix attritues handling, not using backend attribute name but key given
  in attributes.yml
 2015-06-15 23:03:47 +02:00
kakwa
47e51d2451 implementing basic add of users 2015-06-15 21:30:19 +02:00
kakwa
4a302750c0 implementing modify and add/rm to groups 2015-06-14 20:55:23 +02:00
kakwa
fce2f89103 adding notification on addes user 2015-06-14 15:31:43 +02:00
kakwa
6eece6f7ff implementing notification to explain automatic adding of roles 2015-06-12 00:25:17 +02:00
kakwa
5ddaa4c44f adding js to better handle parent/sub roles 
now js functions automatically enables parent roles of a selected
roles, and disables sub roles unselected role
 2015-06-11 23:36:50 +02:00
kakwa
a62c5a64ac fix unit tests + add graph method 
* fix unit tests on roles (adding mandatory description)
* adding a method to get roles graph in json
 2015-06-11 09:34:45 +02:00
kakwa
9b803008bc adding descriptions for roles 2015-06-11 00:33:14 +02:00
kakwa
494d553a74 implementing conditional navbar 
* implementing navbar that displays actions the user is authorized to do
 2015-06-10 21:26:59 +02:00
kakwa
8d08cf0284 implementing roles switchs on forms 2015-06-10 19:59:35 +02:00
kakwa
e2497671cb implementing adding default values to form 2015-06-09 09:19:58 +02:00
kakwa
556d1f744b implementing a method to get groups to remove 
* implement a way to remove roles from a user
  without removing groups of roles the user keeps
 2015-06-08 22:50:54 +02:00
kakwa
bc85d07921 implementing oriented graph for roles 2015-06-07 13:58:38 +02:00
kakwa
e9d4b381f4 create reverse structure to deduce which roles a group belongs 2015-06-07 12:17:15 +02:00
kakwa
247a1fed3a removing trailling spaces 2015-06-06 22:23:21 +02:00
kakwa
46470a0924 copying dictionnary 2015-06-05 00:56:37 +02:00
kakwa
d3da5507a6 adding a flatten method in roles 2015-06-05 00:49:13 +02:00
kakwa
1735f5da20 simplify roles configuration (backend groups) 2015-06-04 23:34:31 +02:00
kakwa
d1e0c4be93 adding self modify page 2015-05-31 23:42:24 +02:00
kakwa
f8b3df8b58 implementing weight and normalizing each kind of attributes 2015-05-31 23:27:04 +02:00
kakwa
af3326db07 adding form and better handling of search without results 2015-05-31 22:40:20 +02:00
kakwa
fb0bfb48cc adding not admin search 2015-05-31 19:46:50 +02:00
kakwa
53660ee1d2 implement search 2015-05-31 19:38:31 +02:00
kakwa
c9b971e8b0 adding key handling 2015-05-31 18:40:35 +02:00
kakwa
2860f5af6c adding key and fixing unit tests 2015-05-31 18:07:46 +02:00
kakwa
8d8f4ffbe5 cleaning ldapcherry class 2015-05-31 17:44:36 +02:00
kakwa
9263a8c963 implementing 'none' authentification (no authentification) 2015-05-31 11:39:15 +02:00
kakwa
181597e273 adding a search page dedicated for admin 2015-05-30 22:19:57 +02:00
kakwa
5d93bdcbe9 fix authentification and permission handling 2015-05-30 21:33:44 +02:00
kakwa
62a2d002de reorganize the ldap backend module 2015-05-28 09:45:10 +02:00
kakwa
0343af4270 correct backend module skeleton 2015-05-28 09:44:21 +02:00
kakwa
3bb36d1a74 implementing logout 2015-05-28 01:23:22 +02:00
kakwa
0ae234383a implementing access controle methods 2015-05-28 00:57:15 +02:00
kakwa
e559f69589 add exception handling 2015-05-27 21:59:54 +02:00
kakwa
dc7f07ab38 implement get_groups 2015-05-27 21:48:41 +02:00
kakwa
746c2a9978 fix logging in ldap backend 2015-05-26 23:12:33 +02:00
kakwa
9d314b6778 implement authentification 2015-05-26 22:51:57 +02:00
kakwa
91bc6bb18e reimplement get_user in ldap backend 2015-05-26 22:50:42 +02:00
kakwa
a1c7a529d8 adding methods add_user and del_user 
* adding add_user
* adding del_user
* adding unit tests
* adding configuration parameters for adding users
 2015-05-26 00:33:36 +02:00
kakwa
0f6e0c7cab adding objectclasses options 2015-05-25 22:53:34 +02:00
kakwa
16c757bdd4 factoring binding to the ldap 2015-05-25 22:17:17 +02:00
kakwa
8da0b7c533 code factoring 2015-05-25 19:52:54 +02:00
kakwa
7a7d6f5f6f implementing search users 
* adding search
* adding unit tests
 2015-05-25 19:30:41 +02:00
kakwa
6af8628d5d adding search template 2015-05-25 18:52:14 +02:00
kakwa
13cca11f51 adding skeleton of method search user 2015-05-24 17:32:03 +02:00
kakwa
97773549e0 fix method arguments 2015-05-24 15:20:17 +02:00
kakwa
efa7012adb more logical return for get_user 2015-05-24 15:11:49 +02:00
kakwa
63062be433 multiple changes 
* implemeting recover user attributes
* adding a unit test for unavailable ldap
* adding a parameter timeout to set the ldap timeout connexion
 2015-05-22 20:05:24 +02:00
kakwa
3fe59e4349 add passing attributes list to backend 2015-05-22 10:27:46 +02:00
kakwa
ab8c380bb1 adding the possibility to get a list of attributes in get_user 2015-05-22 09:51:46 +02:00
kakwa
f4906bb090 adding exception for wrong backend query 2015-05-22 09:50:44 +02:00
kakwa
74ed8fa0d4 adding method and unit tests to get all the attributes of one backend 2015-05-22 09:49:50 +02:00
kakwa
5b03596ed7 adding close connexion and exception handling 2015-05-22 01:48:27 +02:00
kakwa
95232ba432 fix wrong call to method 2015-05-22 01:32:35 +02:00
kakwa
189079cf21 many fixes in unit tests + fix in params + fix in constant 
Oh god, python-ldap is crap...
* add better unit test
* correct params name
* correct exception handling
* disable testConnectSSLNoCheck (impossible to test with a certificate
  previously defined)
 2015-05-22 01:16:53 +02:00
kakwa
93ed190913 multiple changes 
* change parameters name for Backend Ldap
* fix default value handling in backends get_param
* correct exception in backends get_param
* fix syntaxe error
* add backend name in test_BackendLdap.py
 2015-05-21 21:40:13 +02:00
kakwa
cb843a40e5 correct the way variables are recovered by ldap backend 2015-05-21 19:55:11 +02:00
kakwa
3ab1cbcdb2 adding a get_param method + pass backend name to backend 2015-05-21 19:54:38 +02:00
kakwa
1ac474647b fix backend name (collision with libraries name) 2015-05-21 08:52:06 +02:00
kakwa
1020c454d0 begin ldap backend implementation 2015-05-20 17:13:18 +02:00
kakwa
fc188df49e better logs 2015-05-20 15:16:01 +02:00
kakwa
1e5f057e36 implementing loading backends 
* fix conf file
* add exceptions
* fix modules skeletons
 2015-05-20 14:21:43 +02:00
kakwa
6a610c079e multiple modifications: 
* adding logs in conf loading
* fixing attributes/roles handling in class LdapCherry
* fix unit test on logs
* add unit test for random exception
 2015-05-20 12:44:33 +02:00
kakwa
56be37ff38 implementing backends parsing of main config file 2015-05-19 17:53:14 +02:00
kakwa
a3938c73b4 init backends initialization method 2015-05-19 00:14:34 +02:00
kakwa
84654b0cf0 displace _get_loglevel near othe log related methods 2015-05-19 00:03:28 +02:00
kakwa
bfd1969ab3 fix log_level + unit tests 
* python logging doesn't support the 7 log levels of syslog, compensate it
* adding unit test on log level
 2015-05-18 23:59:54 +02:00
kakwa
2ba56128ac adding loading roles and attributes 2015-05-18 20:04:47 +02:00
kakwa
d6bb5c38ed begin implementation of the main application 2015-05-18 19:56:44 +02:00
kakwa
2a4bc5d261 rename main class 2015-05-18 15:06:39 +02:00
kakwa
ab841b5baf adding get_attributes 2015-05-18 15:04:36 +02:00
kakwa
7cdbe459b6 change backend key name in attributes + methods 
* adding get_backends
* adding get_selfattributes (attributes users can change themselves)
* adding unit tests
* rename backend-attributes -> bakends (for homogeneity with role.yml)
 2015-05-18 12:30:51 +02:00
kakwa
a71093038c better checks for attributes 2015-05-17 19:49:13 +02:00
kakwa
679c2bba85 adding checks for mandatory elements of attributes.yml 2015-05-17 19:22:11 +02:00
kakwa
dbc88163dd begin attributes handling manipulation 2015-05-17 12:24:29 +02:00
kakwa
1211ab431b add methods for class Roles + unit tests 
* adding get_allroles (list all available roles)
* adding get_display_name (get display name of a role)
* add various unit tests
 2015-05-17 01:22:53 +02:00
kakwa
0416ebe05b unit test + admin roles fix 
* adding various unit tests
* now admin roles are inherited (ex admin-lv2 is admin -> admin-lv3 is admin
* adding an exception when requesting groups for none existant role
 2015-05-16 23:52:59 +02:00
kakwa
87820da7d0 implementing various methods: 
* get_groups (get_groups of a role)
* is_admin (determine if ldapcherry admin)
* get_backends (get list of role backends)
 2015-05-16 20:03:34 +02:00
kakwa
17499c82ae better comments and slight improvement in perf 2015-05-16 19:57:26 +02:00
kakwa
ab660ebe96 fix in get_roles 2015-05-16 19:11:52 +02:00
kakwa
3889a441a3 implementing roles resolution from list of groups 2015-05-16 18:44:02 +02:00
kakwa
7524a189fe implementing nesting roles 2015-05-15 01:03:31 +02:00
kakwa
d74893d104 fixing typos in role files 2015-05-14 22:10:26 +02:00
kakwa
804e2b7202 adding an exception for failures to open role file 2015-05-12 11:34:28 +02:00
kakwa
4aac712286 handling exception if a role key is duplicated 2015-05-12 01:42:08 +02:00
kakwa
e9ff75061d adding loading of the roles yaml file 2015-05-12 01:24:16 +02:00
kakwa
67b6c27273 adding skeleton to handle form attributes 2015-04-16 22:07:45 +02:00
kakwa
43299cb52f basic skeleton for web application 2015-04-15 23:10:01 +02:00
kakwa
7ec0cb4e74 adding skeleton for most files 2015-04-15 21:13:14 +02:00
kakwa
9f77cfc38c initial commit 2014-06-02 23:10:19 +02:00