summaryrefslogtreecommitdiff
path: root/openstack_auth
Commit message (Collapse)AuthorAgeFilesLines
* Imported Translations from Zanata16.1.0OpenStack Proposal Bot2020-01-091-3/+31
| | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: I036043880ade9669b4d828ae2099c6b002a4f3b8
* Imported Translations from ZanataOpenStack Proposal Bot2019-12-183-4/+186
| | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: Ic563fa8f86e155ef05222dd152ddcc5c0b712081
* Fix change expired password featureIvan Kolodyazhny2019-12-061-2/+8
| | | | | | Closes-Bug: #1791111 Change-Id: I5f2a027149be490613e7661b895325a63374334d (cherry picked from commit c0cc0433c645181a9031b99d23954ae9bece9542)
* Imported Translations from ZanataOpenStack Proposal Bot2019-10-081-4/+36
| | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: I82f2c3906ce970bfa49005dd666c5a41fa77e79f
* Imported Translations from ZanataOpenStack Proposal Bot2019-10-061-2/+34
| | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: If59a48e4ffbc3049c7ad0673da5e576f32eeb19f
* Imported Translations from ZanataOpenStack Proposal Bot2019-10-011-3/+37
| | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: I73cfc86ab2b4b730fb44f83bbf4e03ba6beffb46
* Imported Translations from ZanataOpenStack Proposal Bot2019-09-281-2/+8
| | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: I4bca53c9b58df0296e8a8daf9555b8661fc90f8f
* Merge "Handle partial dict setting"16.0.0.0rc1Zuul2019-09-261-1/+15
|\
| * Handle partial dict settingAkihiro Motoki2019-09-261-1/+15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In Train cycle, we moved the definition of default values to openstack_dashboard/defaults.py. The current code accesses a dict member using []. It requires operators to define a dict setting with a full member. This commit allows to use dict-type settings with partial members. A new function is introduced to retrieve a dict-type setting considering default values defined in {openstack_dashboard,horizon,openstack_auth}/defaults.py Change-Id: I7ff0ad4bca698aef9c0eba370b0570200a14367a Closes-Bug: #1843104
* | Merge "Handle Permission Denied for policy files"Zuul2019-09-261-1/+10
|\ \
| * | Handle Permission Denied for policy filesIvan Kolodyazhny2019-09-261-1/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | oslo.policy doesn't handle Permission Denied error during file parsing. This patch just ignores IOError exceptions to fallback to the default behaviour. Closes-Bug: #1845523 Change-Id: I87c2862e6e3a3f42d231552b00dc02364d6fa14f
* | | Merge "Don't display expiration warning for expiration date in the past"Zuul2019-09-251-2/+4
|\ \ \ | |_|/ |/| |
| * | Don't display expiration warning for expiration date in the pastRadomir Dopieralski2019-09-171-2/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If the expiration date of a password is in the past, don't display the expiration warning, as it's not helpful and confuses the user. This can happen after a user whose password was set to be changed on the first login changes it, but probably also in other situations, depending on how many more bugs in Keystone there are around expiring passwords. Change-Id: Ib79f6ef354c456bbdc2d7c1d4371ae15e825b557
* | | Imported Translations from ZanataOpenStack Proposal Bot2019-09-242-5/+39
| | | | | | | | | | | | | | | | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: I32bcf509dab5c4a754b8124014ed25cd59780ea9
* | | Merge "Documentation and release notes for changing expired passwords"Zuul2019-09-191-0/+5
|\ \ \
| * | | Documentation and release notes for changing expired passwordsRadomir Dopieralski2019-09-181-0/+5
| | | | | | | | | | | | | | | | | | | | Change-Id: I723f45e7ffe1f61bed244642c49eba24dafd7427 Part of blueprint: allow-users-change-expired-password
* | | | Merge "Automatically redirect to the password change when it's expired"Zuul2019-09-198-16/+112
|\ \ \ \ | |/ / /
| * | | Automatically redirect to the password change when it's expiredRadomir Dopieralski2019-09-168-16/+112
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Unfortunately the only way we can know the user_id at this point is by parsing the error message. I also refactored the exceptions in openstack_auth to make them use different classes (but one common superclass). Partially implements blueprint: allow-users-change-expired-password Change-Id: Ieceee09db21040b96577db19bd195dc3799e3892
* | | | Imported Translations from ZanataOpenStack Proposal Bot2019-09-171-3/+25
| |/ / |/| | | | | | | | | | | | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: I4c5b77c21ffe1f6669c02d3b203838b3f41c2cd8
* | | Imported Translations from ZanataOpenStack Proposal Bot2019-09-1612-49/+34
|/ / | | | | | | | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: I0ae103cf4ecbb7d16da1b05eae888f19aa8d0152
* | Merge "Drop deprecated Keystone V2 API support"Zuul2019-09-129-599/+37
|\ \
| * | Drop deprecated Keystone V2 API supportIvan Kolodyazhny2019-09-129-599/+37
| | | | | | | | | | | | | | | | | | | | | Keystone V2 API was deprecated in Stein release in Horizon and removed from Keystone in Queens release. Change-Id: I917e273d3174adf0874e516b3d635ccb8ba58a27
* | | Add a view for changing user password while not logged inRadomir Dopieralski2019-09-134-15/+112
|/ / | | | | | | | | | | | | | | | | | | | | | | | | | | Keystone's API for changing the user password doesn't require authentication, so we can have a page that doesn't require it too. In order to change the password, the user has to provide their old password. This is needed for when the password is expired or when it has to be changed on first use. The next step will be adding a redirect to this page when a password is expired or required to be changed. Part of blueprint: allow-users-change-expired-password Change-Id: I3b207ef6c5a3095022a2acb64d3988e127f0f49a
* | Define default settings explicitly (openstack_auth)Akihiro Motoki2019-09-128-97/+213
| | | | | | | | | | | | | | | | | | | | | | | | | | This commit also moves descriptions of settings defined in openstack_auth from openstack_dashboard/settings.py and local_settings.py(.example) to openstack_auth/settings.py. Note that if openstack_dashboard has different default settings from openstack_auth defaults, they are now moved to openstack_dashboard/defaults.py. Part of blueprint ini-based-configuration Change-Id: I59eebc388de0bcbd4d1fe35c6138efbd3e04c5b8
* | Merge "trivial: Remove vendored 'is_safe_url' function"Zuul2019-09-112-23/+6
|\ \
| * | trivial: Remove vendored 'is_safe_url' functionStephen Finucane2019-09-112-23/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This has been present since at least Django 1.6 [1], though the comment on the removed function suggests it might have been earlier (pre-Git days, perhaps?). [1] https://github.com/django/django/commit/a2f2a399566 Change-Id: Ib6978ffa8d3962383fbc0a1c3cfd9da9e162f7dd Signed-off-by: Stephen Finucane <stephenfin@redhat.com>
* | | Merge "trivial: Mark inner method as such"Zuul2019-09-111-13/+13
|\ \ \
| * | | trivial: Mark inner method as suchStephen Finucane2019-09-111-13/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Took me a while to figure out this wasn't part of the API for an auth backend. Make that more obvious. Change-Id: Idb5efd850426b41d638c6d8c7112735d1423fdab Signed-off-by: Stephen Finucane <stephenfin@redhat.com>
* | | | Merge "trivial: Remove dead code"Zuul2019-09-111-2/+0
|\ \ \ \
| * | | | trivial: Remove dead codeStephen Finucane2019-09-111-2/+0
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | We only support Django >= 1.11 now. Who cares about Django < 1.7. Change-Id: I3576b921b976ef9e5bb1561bda85348112e4b6e8 Signed-off-by: Stephen Finucane <stephenfin@redhat.com>
* | | | Merge "trivial: Add TODOs for remaining function-based views"Zuul2019-09-111-0/+6
|\ \ \ \ | |_|/ / |/| | |
| * | | trivial: Add TODOs for remaining function-based viewsStephen Finucane2019-09-111-0/+6
| |/ / | | | | | | | | | | | | | | | | | | | | | These are going the way of the dinosaur and will eventually need to be replaced, some of them in coming patches. Change-Id: I3a1d514c8770478349b4f91b128c8230b108d979 Signed-off-by: Stephen Finucane <stephenfin@redhat.com>
* | | django22: Call 'is_safe_url' with 'allowed_hosts'Stephen Finucane2019-08-271-3/+3
|/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Per the Django 2.1 release notes [1]: 'allowed_hosts' is now a required argument of private API 'django.utils.http.is_safe_url()'. This was actually changed in [2], [3]. [1] https://docs.djangoproject.com/en/2.2/releases/2.1/#miscellaneous [2] https://github.com/django/django/commit/96107e2844d [3] https://github.com/django/django/commit/1e81a4b897b Change-Id: Ibfd61c7197602aad9a833280f74f50e7819a39dd Signed-off-by: Stephen Finucane <stephenfin@redhat.com>
* | django22: Add 'request' as first argument to 'authenticate'Stephen Finucane2019-08-272-4/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | As noted in the Django 2.1 release notes [1]: The authenticate() method of authentication backends requires request as the first positional argument. This can be seen here [2]. Simple enough, though it took me ages to figure this out because Django gave me *zero* warning that a backend because of this change. Heck, raising the TypeError would have helped :( [1] https://docs.djangoproject.com/en/2.2/releases/2.1/#features-removed-in-2-1 [2] https://github.com/django/django/commit/5e31be1b96f Change-Id: I0dd37d33c8e42a70c00a9f1460c1cec86c5b6006 Signed-off-by: Stephen Finucane <stephenfin@redhat.com>
* | django22: The 'login' functional-based view is gone (pt. 2)Stephen Finucane2019-08-271-19/+18
|/ | | | | | | | | | | | | | | This is the larger change. We could attempt to rewrite this whole thing to a class-based view but that's more work that it's worth right now. Instead, we simply do what the now-removed 'login' function-based view was doing, as seen at [1]. A lot of never-used customizability is removed because it's not needed and made things more complicated than it needed to be. [1] https://github.com/django/django/blob/1.11/django/contrib/auth/views.py#L133-L139 Change-Id: Ib934d8a2c32cb32761558a68f061f415bb8737c4 Signed-off-by: Stephen Finucane <stephenfin@redhat.com>
* Imported Translations from ZanataOpenStack Proposal Bot2019-08-061-13/+19
| | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: I17469f7f710a0ea6c72a0b265e6f42698c57b602
* Imported Translations from ZanataOpenStack Proposal Bot2019-07-301-0/+92
| | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: I4f25958d400aa8f0eaddeaedf4d9101a0c48b504
* Imported Translations from ZanataOpenStack Proposal Bot2019-07-061-2/+8
| | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: Icb3905fc7dcb3d00c08e8852d9cc4798d6cbe427
* Cleanup unused util functionsIvan Kolodyazhny2019-06-211-2/+0
| | | | | | | There are a lot of util funtions that are not used neither in Horizon, nor in plugins. This patch removes them. Change-Id: I987b39d620a037834cb2d05a234a1ad089276108
* Fix :param: in docstringzhufl2019-06-141-1/+1
| | | | | | In docstring :param should be used instead of :param:. Change-Id: Id702ffe8968e8ba4f9a9834d8a16c45faca3e6ee
* Merge "Remove token object from credentials"16.0.0.0b1Zuul2019-06-061-1/+0
|\
| * Remove token object from credentialsGeorge Melikov2019-04-091-1/+0
| | | | | | | | | | | | | | | | | | | | Token is not used in policies, and json.dumps can't dump it when http rules are used. Closes-Bug: 1823977 Change-Id: Id1b0b94d27d24d7dfdd2f1542973088947d83ada Signed-off-by: George Melikov <mail@gmelikov.ru>
* | Imported Translations from ZanataOpenStack Proposal Bot2019-05-141-2/+7
| | | | | | | | | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: Ib1edeafd48098284cb54e45a417421cb29c7bca6
* | Imported Translations from ZanataOpenStack Proposal Bot2019-04-251-3/+8
| | | | | | | | | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: I63eb0cc9e086318169bf458275017845382d468b
* | Imported Translations from ZanataOpenStack Proposal Bot2019-04-2111-64/+12
| | | | | | | | | | | | | | For more information about this automatic import see: https://docs.openstack.org/i18n/latest/reviewing-translation-import.html Change-Id: Idaf58de99b11881a31f9f50761561b8cef7ab718
* | Add missing ws separator between wordszhufl2019-04-151-1/+1
|/ | | | | | This is to add missing ws separator between words. Change-Id: Icfe0c1f6893b5c54dfa0ef7fe15499b3b50079ed
* Fix untrusted dashboard hostSergey Vilgelm2019-01-221-1/+1
| | | | | | | | | | | | | | The `openstack_auth login` view uses `request.build_absolute_uri` function to build an origin uri when websso is enabled and the WEBSSO_DEFAULT_REDIRECT_PROTOCOL is set. This function doesn't insert the `WEBROOT` variable into uri what causes an error: http://domain.name/auth/websso/ is not a trusted dashboard host Using the `build_absolute_uri` from `utils` module fixes this problem. It generates the right uri: http://domain.name/dashboard/auth/websso/ Change-Id: I94100f66a9f07eb8da75d344cbd120838fe25d1e
* Merge "pylint: fix too-many-nested-blocks/redefined-argument-from-local"Zuul2019-01-161-4/+4
|\
| * pylint: fix too-many-nested-blocks/redefined-argument-from-localAkihiro Motoki2019-01-171-4/+4
| | | | | | | | | | | | | | | | openstack_dashboard/dashboards/project/cgroups/workflows.py:313:8: R1702: Too many nested blocks (6/5) (too-many-nested-blocks) openstack_auth/plugin/base.py:221:12: R1704: Redefining argument with the local name 'domain_name' (redefined-argument-from-local) horizon/tables/formset.py:59:16: R1704: Redefining argument with the local name 'column' (redefined-argument-from-local) Change-Id: Ifeb192efac83c0b2d5399c51f66c8fb8f8969fc0
* | pylint: fix several coding convention violationsAkihiro Motoki2019-01-171-2/+2
|/ | | | | | | | | | | | | | | | | | | openstack_dashboard/context_processors.py:94:15: C0122: Comparison should be link['url'] != 'horizon:project:api_access:openrcv2' (misplaced-comparison-constant) openstack_dashboard/settings.py:467:4: C0412: Imports from package horizon are not grouped (ungrouped-imports) openstack_dashboard/enabled/_1370_project_vg_snapshots.py:9:0: C0301: Line too long (86/80) (line-too-long) openstack_dashboard/enabled/_1360_project_volume_groups.py:9:0: C0301: Line too long (85/80) (line-too-long) openstack_dashboard/usage/base.py:62:8: W0106: Expression "[instance_list.extend(u.server_usages) for u in self.usage_list]" is assigned to nothing (expression-not-assigned) openstack_dashboard/dashboards/project/images/utils.py:43:12: W0106: Expression "[public_images.append(image) for image in images]" is assigned to nothing (expression-not-assigned) openstack_dashboard/dashboards/project/images/utils.py:75:12: W0106: Expression "[community_images.append(image) for image in images]" is assigned to nothing (expression-not-assigned) openstack_dashboard/api/glance.py:47:4: C0412: Imports from package glanceclient are not grouped (ungrouped-imports) openstack_dashboard/api/cinder.py:60:4: C0412: Imports from package cinderclient are not grouped (ungrouped-imports) openstack_auth/user.py:358:4: E0211: Method has no argument (no-method-argument) openstack_auth/user.py:362:4: E0211: Method has no argument (no-method-argument) openstack_dashboard/api/keystone.py:75:4: C0412: Imports from package keystoneclient are not grouped (ungrouped-imports) horizon/loaders.py:43:16: W0706: The except handler raises immediately (try-except-raise) horizon/themes.py:174:8: W0706: The except handler raises immediately (try-except-raise) Change-Id: I40cf3ffbc4519657e11180d2e2fe7401387c5556
View Lorry Controller Status