External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-04-18 16:30:21 -02:30
Code Issues Packages Projects Releases Wiki Activity
13,724 Commits 57 Branches 102 Tags
a423084d554271320dbf4f87fba9ccfbb72a4d53
Commit Graph

78 Commits

Author SHA1 Message Date
Bill Nottingham
8482ed0432 Merge pull request #6818 from wenottingham/i-have-no-idea-what-im-doing 
SAML configuration changes based on feedback from field.
 2017-07-14 17:05:50 -04:00
Aaron Tan
c6ed70dd9d Merge pull request #6928 from jangsutsr/6904_strengthen_attribute_check_for_tower_conf_validators 
Strengthen attribute check for Tower configuration validations
 2017-07-12 13:30:44 -04:00
Aaron Tan
3fe12e77b7 Merge pull request #6837 from jangsutsr/6107_ldap_setting_field_validator_updates 
LDAP setting fields validation updates.
 2017-07-12 12:09:48 -04:00
Aaron Tan
0138510936 Strengthen attribute check for Tower configuration validations 2017-07-07 11:44:56 -04:00
Bill Nottingham
f8515857b2 Remove assorted references to Tower. 
Reword and remove references to Tower so they don't need parameterized.
 2017-07-05 16:42:47 -04:00
Aaron Tan
2c69d433e9 LDAP setting fields validation updates. 2017-06-30 15:30:59 -04:00
Bill Nottingham
d0a19d4f21 Fix flake8 2017-06-29 18:04:38 -04:00
Bill Nottingham
b1e6264ac0 SAML configuration changes based on feedback from field. 
1. Default SOCIAL_AUTH_SAML_SP_ENTITY_ID to the Tower hostname/base URL.
2. Refer to the callback URL as the Assertion Consumer Service, per common SAML notation.
 2017-06-29 16:33:34 -04:00
Aaron Tan
a184058aa2 Merge pull request #6642 from jangsutsr/6593_enforce_mutual_exclusiveness_of_tower_user_origins 
Expand scope of enterprise user types
 2017-06-29 12:15:07 -04:00
Aaron Tan
5e398e4a25 Add Tower configuration category validation for TACACS+ 2017-06-26 10:58:05 -04:00
Aaron Tan
70cccb0e57 Expand scope of enterprise user types. 2017-06-20 12:17:13 -04:00
Aaron Tan
3094527759 Fix usage of tacacs API 2017-05-31 11:49:03 -04:00
Aaron Tan
1eca41ce92 Merge pull request #6332 from jangsutsr/5943_simplify_tower_config_help_texts 
Simplify Tower configuration help texts
 2017-05-29 10:16:38 -04:00
Aaron Tan
2476c42b1e Simplify Tower configuration help texts. 2017-05-24 09:51:54 -04:00
Aaron Tan
a15bc6d0f7 Merge pull request #6295 from jangsutsr/6243_update_user_profile_to_record_source_backend 
Introduce sso UserEnterpriseAuth model
 2017-05-24 09:42:41 -04:00
Aaron Tan
d314f83416 Introduce sso UserEnterpriseAuth model. 2017-05-22 13:30:00 -04:00
Aaron Tan
4f9875f895 Prevent LDAP user from imposing existing Tower user. 2017-05-18 16:39:58 -04:00
Aaron Tan
f5e58922ab Create tacacs and radius users with password disabled. 2017-05-09 16:36:50 -04:00
Aaron Tan
7a6364c642 Prevent third-party-based user from imposing tower user. 2017-05-04 17:31:57 -04:00
Matthew Jones
e1e83598e9 Merge branch 'release_3.1.3' into devel 
* release_3.1.3: (52 commits)
  ack fact scan messages
  making ldap user/group search fields into codemirror instances
  removing UI parsing for LDAP User and Group Search fields
  Allow exception view to accept all valid HTTP methods.
  Restore ability of parsing extra_vars string for provisioning callback.
  Fix up backup/restore role broken in f7a8e45809758322d9ee41c5305850dd70ed5faf
  Stop / start ansible-tower-service during restores
  value_to_python should encode lookup fields as ascii
  fix brace interpolation on standard out pane
  Adjust some hardcoded usages of 'awx' to use 'aw_user' and 'aw_group'.
  Pull Spanish updates from Zanata
  Temporarily grant awx user createdb role
  Stop giving ownership of backups to postgres
  don't display chunked lines'
  Add dropdown li truncation with ellipsis
  CTiT -> adhoc modules should allow the user to add new modules
  Remove task that was replacing the supervisor systemd tmp file
  Fix failing supervisorctl commands on RH-based distros
  Give ownership of the supervisor socket to awx
  Setting for external log emissions cert verification
  ...
 2017-04-28 13:57:04 -04:00
Aaron Tan
07198a5ba6 Acceptance Docs. 2017-04-12 16:19:42 -04:00
Aaron Tan
fd4aaa6ca9 Implement tacacs+ auth backend. 2017-04-12 16:19:42 -04:00
Aaron Tan
f2c99eeaf5 Basic tacacs+ CTiT. 2017-04-12 16:19:42 -04:00
Ryan Petrello
d1eb33bca0 Be more restrictive in catching LDAP exceptions. 
django-auth-ldap can throw exceptions, like TypeError if it's
misconfigured.  If we encounter an exception attempting to log into an
LDAP server, log it and move on (otherwise, an uncaught exception will
cause local login to fail, too).

see: #5933
 2017-04-11 16:43:26 -04:00
Ryan Petrello
ec52e18be8 allow is_system_auditor with AUTH_LDAP_USER_FLAGS_BY_GROUP 
see: #4959
 2017-03-07 16:48:51 -05:00
Matthew Jones
2c7dd8497b Filter on reason also when logging in via sso and picking authtoken 2017-03-07 13:54:52 -05:00
Ryan Petrello
045994a472 properly detect the backend name in failed social_auth callbacks 
don't assume that the callback URL contains the correct social_auth
backend name; instead, store it temporarily in the session at
`/login/sso/`

see: #5324
 2017-02-14 16:19:39 -05:00
Ryan Petrello
f4d55659f0 enforce a sane default OPT_NETWORK_TIMEOUT for LDAP connections 
see: #5208
 2017-02-07 12:37:05 -05:00
Ryan Petrello
ea4682e782 catch and log LDAP auth plugin misconfigurations 
see: #5204
 2017-02-06 16:27:22 -05:00
Ryan Petrello
5bd670291b default certain LDAP settings to None instead of an empty string 
Related: #5148 #4678
 2017-02-02 13:06:59 -05:00
Ryan Petrello
f347bc5ae4 fix a typo that results in a NameError 
Resolves #4861
 2017-01-25 14:08:49 -05:00
Ryan Petrello
0bcbaa5c86 allow certain LDAP settings fields to be nullable 
necessary to completely resolve #4678
 2017-01-24 09:31:44 -05:00
Ryan Petrello
40a5c6cc0b fix an LDAP settings bug which can cause LDAP auth to fail 
django-ldap-auth expects the "unset/empty" state of certain LDAP DN
settings (such as AUTH_LDAP_REQUIRE_GROUP and
AUTH_LDAP_USER_DN_TEMPLATE) to be NULL/None (not an empty string).

Resolves #4678
 2017-01-23 15:35:23 -05:00
Alan Rominger
c39c62973b Merge pull request #4574 from AlanCoding/4519 
Provide __init__ arg for LDAP group type
 2017-01-06 13:28:14 -05:00
AlanCoding
983bee115c provide default for permanent attribute in redirect view before Django 1.9 hits 2017-01-04 15:06:10 -05:00
AlanCoding
2e220beda4 provide __init__ arg for LDAP group type 2017-01-04 10:51:20 -05:00
Chris Church
b947367606 Add default for ldap group type. 2016-12-14 11:54:50 -05:00
Chris Church
1e157c2255 Display error instead of raising 500 for invalid SAML config to generate metadata. 2016-12-06 12:57:01 -05:00
Chris Church
417d7c29ee Allow SAML entity ID to be any string, not required to be a URL. 2016-12-06 12:56:25 -05:00
Matthew Jones
408c79a845 Merge pull request #4219 from sundeep-co-in/STAGE 
add django.pot
 2016-12-04 21:04:41 -05:00
sundeep-co-in
cd5301bf49 add django.pot 2016-12-02 14:02:13 +05:30
Chris Church
6a02ca1de0 Add support for encrypting settings that are passwords. 2016-11-30 11:22:39 -05:00
Chris Church
934da3c425 Allow specifying multiple LDAP servers. 2016-11-28 16:54:16 -05:00
Chris Church
01f59b4696 Update defaults for SAML info/contact settings. 2016-11-28 13:16:29 -05:00
Chris Church
5b1df83fcc Add support for hiding settings based on whether features are enabled in the license. 2016-11-21 14:15:41 -05:00
Chris Church
9538ad2983 Merge pull request #4072 from cchurch/what-even-are-tuples 
No tuples for API config, mention JavaScript regular expression support.
 2016-11-21 11:35:12 -05:00
Chris Church
ac298ba2e2 Apply #4009 to #3910. 2016-11-20 11:02:22 -05:00
Chris Church
b5e5ed1fd4 No tuples for API config, mention JavaScript regular expression support. 2016-11-19 21:06:54 -05:00
Matthew Jones
b8db27bb39 Merge pull request #3910 from cchurch/azuread-oauth2 
Add AzureAD OAuth2 support.
 2016-11-18 11:28:04 -05:00
Aaron Tan
1cbeb71843 Merge pull request #4034 from jangsutsr/4023_resume_flake8_E302 
Resume flake8 E302.
 2016-11-16 10:41:18 -05:00