| Commit message (Collapse) | Author | Age | Files | Lines |
... | |
|\ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
With python 3, hasher.update() must be called with byte encoding.
Hashing without encoding first in python 3 results in this error:
TypeError: Unicode-objects must be encoded before hashing
Using byte encoding also works with python 2.7, so convert tokens
to bytes before hashing regardless of python version.
Change-Id: I837566c669565ed8c11dacbefc273dae3ff580bb
Closes-Bug: #1552443
|
|\ \
| |/ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
There are certain cases the user.Token constructor is called with
the default unscoped_token value of None. When this happens using
PKI, an unexpected error occurs. If the token is None, we know it's
not pki and should not make an extra call to the Keystone client to
check.
A test is provided to demonstrate the issue, and the test fails
without the included code change.
Change-Id: Ie8e93eda4cf8e8285785335126624781470be19c
Closes-Bug: #1551977
|
| |
| |
| |
| |
| |
| |
| | |
For more information about this automatic import see:
https://wiki.openstack.org/wiki/Translations/Infrastructure
Change-Id: I8addb5cf27d91afc32af7f7a0ede7b67a6561da4
|
| |
| |
| |
| |
| |
| |
| | |
For more information about this automatic import see:
https://wiki.openstack.org/wiki/Translations/Infrastructure
Change-Id: I8c2e0883b3f6b0898958f513b60df4f3728060dd
|
|/
|
|
|
|
|
| |
For more information about this automatic import see:
https://wiki.openstack.org/wiki/Translations/Infrastructure
Change-Id: I716665078700133611881ccb028d405cee6b8556
|
|
|
|
| |
Change-Id: I7434883051f449b3f485351e92f28319c00d0d37
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Django 1.8 altered and deprecated the existing pattern for defining
URLs. This will be removed in 1.10, meaning that many deprecation
warnings show up under Django 1.9. We should fix the URLs promptly to
avoid logspam, and to support Django 1.10 in Newton.
See
https://docs.djangoproject.com/en/1.9/releases/1.8/#django-conf-urls-patterns
Change-Id: Ieea8e1058c833be07c57e5949d4c5f614359a1ea
Partially-Implements: blueprint dj110
|
|\ |
|
| |
| |
| |
| |
| |
| |
| | |
Change supoort python3.3 to python3.4
ref:https://blueprints.launchpad.net/horizon/+spec/porting-python3
Change-Id: I0f4d5afbcbb46d665edf9ad67ba61482e15d6035
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Looks like the actual repercussion from this "error" is
nothing at all, so the log should be changed to a warning
as _domain_to_credentials returns even if an exception is
raised.
So when a function like this works even if an exception is
raised, the log level should be a warning at best, as the rest
of the code depending on this still seems to work no matter
what is returned.
Change-Id: I8ea690923010674351d45ef5122bb046ee5e46b5
Closes-Bug: #1527575
|
|\ \ \ |
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Caching is enabled by default from pip version 6.0
More info:
https://testrun.org/tox/latest/config.html#confval-downloadcache=path
https://pip.pypa.io/en/stable/reference/pip_install/#caching
Change-Id: Ie0744b5b9b85e2210d94e68fa12be1be0fcce9a0
|
|\ \ \ \ |
|
| | |/ /
| |/| |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
This is required by Django 1.9. See
https://docs.djangoproject.com/en/1.9/ref/models/options/#app-label
Partially-Implements: blueprint drop-dj17
Change-Id: I0403d7cc478302a9d88f8fc3df50a16a96af0d76
|
|\ \ \ \ |
|
| | |_|/
| |/| |
| | | |
| | | |
| | | |
| | | | |
We don't sync from oslo-incubator, it's an useless file.
Change-Id: Id82082987be43d450569d14c19e1bcfc93f41513
|
| |/ /
|/| |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Change Ieff5a6cdd1ad352a9731d46785802e8c36adcdd1 introduced an
uncomplete fix when trying to fix the auth_url.
Given the case that a auth url already has a version included, an extra
version was added. This leads to messages in the keystone.log that
horizon is trying to authenticate with "POST /v3/v3/auth/tokens
HTTP/1.1".
Use urlparse correctly and also add a testcase for fix_auth_url_version().
Change-Id: I80fb310d95e8fdab1212fc5b092a37fd7b26a37a
Closes-Bug: 1508421
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
admin roles and admin permissions (like 'openstack.roles.xxxx')
depends on OPENSTACK_KEYSTONE_ADMIN_ROLES.
These information is needed with openstack_auth and Horizon at least
as common information.
So, this patch provide these methods as a convenient method at
openstack_auth.
Change-Id: Idad1860684b1e772fc31f16fc8c0263e49fc3919
Closes-Bug: #1536896
|
|/ /
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Follow new infra setup for translations, see spec
http://specs.openstack.org/openstack-infra/infra-specs/specs/translation_setup.html
for full details.
Prepare babel-django.cfg qnd remove babel.cfg.
This repository is django related. Though django_openstack_auth has
only python files, it is reasonable to follow Django repos convention
in OpenStack.
This basically renames openstack_auth/locale/openstack_auth.pot to
openstack_auth/locale/django.pot to follow Django POT file convention.
setup.cfg babel entries are kept as this repository has
only python files and it still works.
Depends-On: Ie2462614ce92ee09a4d84481b4df9410f57f597b
Change-Id: Id817cdbe6925d505c183c555f5e59361b5d6fcaf
|
| |
| |
| |
| | |
Change-Id: Ie0586cc2d7f8fd7d156bb07dd951a7336e59726b
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
- Wrap the expected_url variable in a django 1.9 condition so that it
returns as expected.
- Use request.GET/request.POST instead of request.REQUEST
- Remove some conditional code required for old Django versions
This is the first step in getting Horizon to fully support Django 1.9.
It does *not* yet aim to offer full support, which is why the
requirements have not been bumped.
Change-Id: I7f8f3cde92cafdb5c9134baf75fc736cbf35ff6a
Partially-Implements: blueprint drop-dj17
Depends-On: Ia6cbbc281732e9c466edeaa76739122e006a997e
|
|/ /
| |
| |
| | |
Change-Id: I149eeb5c750e011be505ac910888c6ffb937b79e
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Now that the keystoneauth package is being used, we need to
update calls to url_for to use the "interface" parameter instead
of "endpoint_type".
Change-Id: I441e9f085569f76115d235a210ebb5f296208c69
Closes-Bug: #1532308
|
|\ \ \ |
|
| |/ /
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
When using WebSSO, if the Keystone server has "auth" in
the hostname, the existing regular expression below is
problematic which causes a failed replacement.
Change-Id: I564d9af4be837f83f5ef1f8b00b794befafeeb7b
Closes-Bug: #1532032
|
|\ \ \ |
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
This adds a failing Django 1.9 tox env. This will be followed by a
non-voting Jenkins job to show the tests failing, and then a follow up
patch to make them pass.
Also removes an extra blank line.
Change-Id: Ib1633fb90a3a1f2e064b9f8a3fa37d76c63650be
|
|\ \ \ \ |
|
| |/ / /
| | | |
| | | |
| | | | |
Change-Id: I9b4e0d0b617033e97cbe0474c48eaf96cf3d2a7a
|
|\ \ \ \
| |/ / /
|/| | | |
|
| |/ /
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Python 3 deprecated the logger.warn method, see:
https://docs.python.org/3/library/logging.html#logging.warning, so we
prefer to use warning to avoid DeprecationWarning.
Change-Id: Ibc234aedad20351861462f1ebd0457632bdfd048
Closes-Bug: #1508442
|
|\ \ \ |
|
| |/ /
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
When token hashing is used with pki tokens, the unscoped token
gets re-hashed when switching project. This fix checks
if the unscoped token needs to be hashed before doing so.
The project list operation when switching project in horizon
failed because the unscoped token could for example be an
md5 of an md5.
Change-Id: I64684ca251eb4d0c6164e58c078cf7d132eb3cc1
Closes-Bug: #1487372
|
|/ /
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This change makes it so that the auth_url you have configured will
be the primary region used during initial login. This will help make
multi region keystone / horizon deployments more reliable and predictable.
Also, it may perform better if horizon is configured to point to the nearest
auth_url in multi region setups.
Change-Id: I99d40ed580a25f3694fbbd8e54d0b6416907f31b
Closes-bug: #1531003
|
| |
| |
| |
| |
| |
| |
| | |
For more information about this automatic import see:
https://wiki.openstack.org/wiki/Translations/Infrastructure
Change-Id: Icd1947df4dba7e496034bc8e13ee3e10020ac122
|
| |
| |
| |
| |
| |
| |
| | |
For more information about this automatic import see:
https://wiki.openstack.org/wiki/Translations/Infrastructure
Change-Id: I952644cdfaf3d45d0e4cad674c05da51f766a199
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This change adds the Keystone API version to the identity endpoint URL
retrieved from Keystone's endpoint list. This is neccessary in Kilo and
later, since identity endpoint URLs retrieved from Keystone no longer
contain the API version path they used to contain until Juno. See
https://bugs.launchpad.net/horizon/+bug/1508421 for a detailed analysis
of the problem.
Change-Id: Ieff5a6cdd1ad352a9731d46785802e8c36adcdd1
Closes-Bug: 1508421
|
|/ /
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The remove_project_cache method was removed because the underlying
functionality never really worked. Unfortunately, that method was
called directly from Horizon in the Liberty release. An empty
signature is being added back to fix backward compatibility.
Change-Id: I9ee475d94dee38e8a76b4aee371b962640f76f31
Closes-Bug: #1526572
|
|\ \
| |/
|/| |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Currently there is no default value for
domain field of login form.
This patch add saving last login domain
name into coookies and pre-filling
'Domain' field value on login with
this saved value from cookies.
Closes-Bug: #1523957
Change-Id: Idbbd741358ecabeb51de47cdece662b5019d2092
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This patch takes advantage of python set comprehensions
syntax instead of constructing a list and converting
it to set later.
Also takes advantage of .isdisjoint function,
that returns True if two sets have a null intersection.
Should slightly improve performance and readability.
Closes-Bug: #1506925
Change-Id: Ia3d8b47efcf1b2280d7570e782fd196ce716ac8a
|
|\ \ \ |
|
| | |/
| |/|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
With the keystoneauth release, the authentication library
should move from keystoneclient to keystoneauth.
Co-Authored-By: Diego Adolfo <diegoado@gmail.com>
Change-Id: If880022f447255e7d943915087e229778cc6acf8
Implements: blueprint keystoneauth-update
|