* Update django_openstack_auth from branch 'master'
to 031814a7bd81dd9a79a5070e7b37ce825fd13c7f
- Moving IRC network reference to OFTC
Change-Id: Ib811fb321d18fc01f3786f8b3ab16b2eda558864
- Revert "Prepare transitional DOA package"
This reverts commit aa06f462a6f74312289705f0da41ac5c2a549693.
We finally did not release the transitional package,
so the previous commit has no meaning.
Change-Id: I03f53dc45ec5c425863ac7278f2fb1a0d9a298f2
- Prepare transitional DOA package
It was suggested to create a new major version (which will be 4.0.0)
of DOA as a transitional package to stop providing any module itself.
http://lists.openstack.org/pipermail/openstack-dev/2018-January/126431.html
Queens release of horizon is planned to depend on the new DOA release.
Part of blueprint merge-openstack-auth
Change-Id: I3776fedcf21c1b4d669fede478f58518d489f0ef
- Retire project
In Queens development cycle, openstack_auth code was merged
into the horizon repository.
blueprint merge-openstack-auth
Change-Id: I74b10a90fe79fc768cfb8de6f68d3cd2f4938e51
- Don't add required attribute to html form fields
In Django 1.10 a new Form property was introduced, defaulting to True,
which enabled HTML form validation for fields marked "required" in
Django. This changed old behavior, which was that required fields were
only validated server-side. This patch restores old behavior by setting
use_required_attribute to False for the inherited AuthenticationForm.
This problem arose because when WebSSO is enabled and a
non-keystone-credentials authentication method is selected from the
dropdown list, the now-hidden username and password fields are still
marked "required" and still validated client-side, even though they are
invisible to the user and cannot be filled in. It would be nice to fix
the javascript to properly turn the "required" attribute on or off
depending on what authentication method is selected and whether the
"required" fields are even visible, but for now this just restores the
behavior we had before Djanto 1.10.
Change-Id: I3e798a2288d9c33396b40a86b07ea8c163d3b525
Closes-bug: #1703109
- Imported Translations from Zanata
For more information about this automatic import see:
https://docs.openstack.org/i18n/latest/reviewing-translation-import.html
Change-Id: Idf5ecc6044c4470cf4496fe7ca1eda2ee1e99679
- Merge "Imported Translations from Zanata"
- Updated from global requirements
Change-Id: Ia77c55d2d92f90c693a8b0925c02a4b2cd6e9f18
- Imported Translations from Zanata
For more information about this automatic import see:
https://docs.openstack.org/i18n/latest/reviewing-translation-import.html
Change-Id: Idc03c122787afcb1f3ba7d8ab630e0a15b5848a5
Project: openstack/django_openstack_auth 58e881ec93b9803141c0f519da2e8142183a10ab
Updated from global requirements
Change-Id: Icf6fd31cc858e859379264abdea5326b0652a95d
Project: openstack/django_openstack_auth e45760d904a6f286dcc5a3f746dbc544b27e2140
Imported Translations from Zanata
For more information about this automatic import see:
https://docs.openstack.org/i18n/latest/reviewing-translation-import.html
Change-Id: I8479435468d52b48f68fbd6d49de83b7de550598
Project: openstack/django_openstack_auth 2704f958595b27146441142c5887c62094a54d6b
Updated from global requirements
Change-Id: I9bcb892cafa8caa9ff391205c287a2654d243541
Project: openstack/django_openstack_auth 346c36d7985296dedcbcfa8a52248dd9f9d21f35
Add support for policy directories per service
This change introduces the POLICY_DIRS setting which adds the ability
to define multiple policy directories per service.
Blueprint: policy-dirs
Change-Id: Ie42f1aa68539b7388661ddfe2c265255cd574736
Project: openstack/django_openstack_auth 3688a8243f81ade78cb1d28400e8c9ae5a6e124e
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: I0ee8e7c43990706cb2cc57e159a6c4d2eec90a2b
Project: openstack/django_openstack_auth 5d78807403b36aed9cfde1003ead1aac82505e55
Updated from global requirements
Change-Id: I94a765fbc12cc2701cf9c5ec9577e9c64774048c
Project: openstack/django_openstack_auth da9abf6a32377fc49af5d0ebb9537670ed24ec0f
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: Ifed8fbafd93150cc869fed256c64c9e7526b32d3
Project: openstack/django_openstack_auth 54701dba1a19388b7e0b48bbd07aeb29e1839d57
Updated from global requirements
Change-Id: I6e1925c33651b0640d3af9d639c92efd890e238d
Project: openstack/django_openstack_auth 3fa43f1431cd12f0259d56ec6e16cd74e168ee35
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: I8169342b724fe533138d269a50d01b8797d23955
Project: openstack/django_openstack_auth acd690ae6c3c2e242c0c200ebac96c615a355d69
Allow for manual setting of default service region in config
In case DEFAULT_SERVICE_REGIONS setting in Horizon config is specified
(on a per-endpoint basis), use it instead of a value stored in
cookies. This value is still checked for sanity, i.e. it should be
present in Keystone service catalog.
Change-Id: Ia4787b56db7ce7787bd8aac21b5c0ec8a95a6f09
Related-Bug: #1506825
Closes-Bug: #1703390
Project: openstack/django_openstack_auth c6c8982fc1c65eb174ed72a548eb2a5691a91db4
hacking: Drop import_exceptions from tox.ini
Current hacking check actually does not check attribute-level
imports. We can safely drop import_exceptions from tox.ini.
Also drops noqa to guard import exceptions from the same reason.
Change-Id: I4e37931a7bfb0aa7867d027125ffcf66e414cf08
Project: openstack/django_openstack_auth 33524c8d2c5ba28303c86e94b697db7847d726b5
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: I859cd55204ac4837793d34ddc6b6bb014acc9779
Project: openstack/django_openstack_auth 39137dc8bef73dc23afbb7421c86b6947c12b4cb
Migrate settings on a feature merged recently
Recently the support for domain drop-down menu at login was merged
into django_openstack_auth and the corresponding settings docs were
merged into horizon. This commit migrates the settings docs from
horizon as we recently moved django_openstack_auth settings into
the in-tree docuemnt.
Change-Id: Idc84a2535c1918079c6dcba09aef9110cf9be7df
Project: openstack/django_openstack_auth 50d18d50f198be0963f4fa524507a117a6f37ddb
doc: Add configuration reference
Previously most (not all) openstack_auth configuration options
are documented in the horizon documentation.
It would be nice if we have the config reference in the same repo
so that we can easily manage the contents.
Horizon document will be updated to refer to this.
Change-Id: Ie1986a77bc5d69e27ae52f3b59377a41c3462e2b
Project: openstack/django_openstack_auth a1e421e0b782e4eaea7815033b04f8512cc44e42
Add support for a domain dropdown menu at login
On clouds that use domain-specific Identity configuration[1], a user
must provide both their username and domain in order to log into
horizon. Without this patch, users must be aware of their domain's name
and enter it into a text box at login. This is sensible on public
clouds, because supplying potential domains to an unauthenticated user
exposes too much information about other customers and makes potential
attacks easier. On private clouds, however, it is a hinderance to
usability. For example, when migrating from a single-domain
configuration to a multi-domain configuration, users must now guess or
be informed of their domain in order to enter it in the text box. As
another example, when keystone domains are mapped to Active Directory
domains, the user may not be used to having to know their AD domains and
would prefer to select a likely one based on their geographical location
or department from a dropdown menu.
This patch adds support for a new config option,
"OPENSTACK_KEYSTONE_DOMAIN_DROPDOWN" for enabling a dropdown menu
instead of a textbox when MULTIDOMAIN_SUPPORT is enabled. The dropdown
is disabled by default. If enabled, choices for domains to display and
submit are configured in "OPENSTACK_KEYSTONE_DOMAIN_CHOICES". It is not
possible to dynamically generate a list of domains before the user has
authenticated and this would be a huge security hole if this was
possible. Requiring the admin to statically set the domain list allows
them to hide private domains like the service users domain.
[1] https://docs.openstack.org/developer/keystone/configuration.html#domain-specific-drivers
Change-Id: Ie0a7e36b9975342fab81ddebb87880608d3ef187
Needed-By: I71d64182524d1f54745d9e42347b3a605fa2a920
Project: openstack/django_openstack_auth 011c2274a00f8b0d7313aa06843753e28326d47e
doc: cleanup doc build configuration
* Populate doc build timestamp
* Fix the title of reference/user.rst as openstackdocstheme does not
handle a title string with backquoted string in the nav icons.
* Remove unnecessary build configurations (manpage, latex, texinfo)
* Remove the heading "Indices and tables" in index.rst.
It simplifies the toc of the top page.
Change-Id: If35bd99ee203105418ea49eb921b2d6d428e0187
Project: openstack/django_openstack_auth c1b1d37b44cd3496f9fa8fa2b9f73fae966a3d4c
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: Ic6cc1494aa1ce4cdbb97912507d323fdf3fa1516
Project: openstack/django_openstack_auth 1faa0797790142ed4f840bb5fb6b4387b5441955
Updated from global requirements
Change-Id: I693e39d07f57248e792582340e5677c24af64c06
Project: openstack/django_openstack_auth 8455ebcf9dac74609f4c5f4aa760dd3dedb50b94
move documentation into the new standard layout
Change-Id: Ie16878c132794f74209d450670e12eaed80efd6a
Signed-off-by: Doug Hellmann <doug@doughellmann.com>
Project: openstack/django_openstack_auth 08a56228538d55c0686c61964e8052b67f1334f8
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: I19eab7d5dcdb2d1b8c505abba1fc44ef32d0ab99
Project: openstack/django_openstack_auth 243654a34289c8cc7c11b5ce4b0400a7688b2852
Updated from global requirements
Change-Id: Iddc30f7ebe482b4548ba3190a5ce25dc3b3a12d3
Project: openstack/django_openstack_auth b0a2a39508fe23d39be59663bb0aea6f6cb4e66f
Fix doc build
Starting in Django 1.7, standalone scripts, such as a sphinx build
require that django.setup() be called first. See:
https://docs.djangoproject.com/en/1.8/releases/1.7/#standalone-scripts
This should be added to the horizon/docs/source/conf.py
setenv DJANGO_SETTINGS_MODULE for docs env in tox.ini
is no longer needed as it is configured in doc/source/conf.py.
Change-Id: I910dae37770ab9767689918a0c61b78d9c56115a
Project: openstack/django_openstack_auth 525b76dc323db4c4e081eb5d42def6db14a84de9
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: Ica9d6ec65228b7815975c583ed0f62c9eebc0869
Project: openstack/django_openstack_auth 0dd54977b9a217728b618ea56e0e464da5013fc1
Updated from global requirements
Change-Id: Ie3f344e4beb65ddbfc2896acc77a7c2eba699ad8
Project: openstack/django_openstack_auth 45311106cb899e4fa29f2b39f6fc4fe2a37d2009
Updated from global requirements
Change-Id: Ie5d1be3313abf7314cb919b4d930fdb01f62b58e
Project: openstack/django_openstack_auth d17f699ed591ca73223490b71bc5e5ca817fdac1
Updated from global requirements
Change-Id: Ib6cb1615cfd05c8754bc4ac42f3a244d7f467421
Project: openstack/django_openstack_auth 09233f728e77263aad517fa2d2ba0db07a3c154c
Updated from global requirements
Change-Id: Id5f653b8cd46e83a7c499e982a7de43e6edc6c25
Project: openstack/django_openstack_auth 444b317195936dfc1def765f4bf06f2e45c3030a
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: Ia3ee207fcb608a4f553d77c31d7dbf28c5ac0b63
Project: openstack/django_openstack_auth 6eea808e2413916703e8c67e2c84955b49ea2112
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: Ibd980066d6fc32777cb49e21d0ad30e6e970f457
Project: openstack/django_openstack_auth 0a730b563a8e4064f2a98d22c8ceb70058ffb948
Updated from global requirements
Change-Id: Ie74a403cb578416218d92ece4e1afbb589fbb091
Project: openstack/django_openstack_auth 27a1b7a3126bbc3c5b2cc613f3dcbe1832e9354e
Cleanup doc warnings and enforce warning-is-error in sphinx
* doc/source/conf.py: html_static_path pointed to nonexisting dir
* Fix indent error in python codes
* Insert blank lines before starting code block
* Enable warning-is-error in setup.cfg to prevent future warnings
* 'all_files' should be 'all-files' in setup.cfg
Change-Id: I7c5bc31be9c95ec78f18f895014a03cb003d7e04
Project: openstack/django_openstack_auth 13af89c8653c2f75b4836397601f1ab993287c9a
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: Id081f21015abdbd447793d9c3b3d350b63511b8a
Project: openstack/django_openstack_auth a8111dadc01a2bf6bd4b7951a38e53e576849f4c
Updated from global requirements
Change-Id: I559b3f928eb7e70a1d0e8d09bc96f8c46befd152
Project: openstack/django_openstack_auth 4e24faa2cf3076e141ae4c78e90d455b232da1f2
The python 3.5 added
The python 3.5 as missing so i have added.
Change-Id: Ieaa2c7151167ea71f02ec1dd9d72b96618af5917
Project: openstack/django_openstack_auth a0f213f68fb038a7db73115bfb6a6ce99db17084
Updated from global requirements
Change-Id: Ib47056da8ac8d8aa204a9e02d8f365c72c564e65
Project: openstack/django_openstack_auth 1ff8021347b7913d1aa8e789ad0d1ba1d79f2156
Update hacking version to fix tests
See https://review.openstack.org/#/c/429481/ for discussion on why
these specific bounds were chosen.
Change-Id: I6cf7eda76130644b68b06ba47db35e17d3c6fdbf
Project: openstack/django_openstack_auth d0a4f14fbb97fac4b8c04bfd3d9fe26a5354b5b1
Implement expiration date alert message
A new attribute was added to keystone user response, that will allow
us to warn users if their passwords are about to expire.
This will be configured in the local_settings.py file
Implements blueprint: password-expires-validation
Change-Id: Id66aa1c9596f8db8d07f63f3feb5166cb723a8e1
Project: openstack/django_openstack_auth 9c02a16322f6c9ee0673f1d9aa173245858d6cca
Updated from global requirements
Change-Id: I42d62aa93ec82216fa17d7ec12f6b7ac7e5edfea
Project: openstack/django_openstack_auth b19cf2c852796c22dbdb1b510259000e19b16402
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: I7a8ada1d5e043e5bb461558af6305e620271dc6b
Project: openstack/django_openstack_auth 8fc4eb768bfa5bb49eaf9b26a203fdda706901eb
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: I467ec457ff34ffd3877dcca42852e654966ce575
Project: openstack/django_openstack_auth c4885055f0849fde862ce31f8a98893232f09d82
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: Ic4c4bef868112e38542ba290203a5fe9faf9a832
Project: openstack/django_openstack_auth 0c195604f6e0bc214309193eb0de0a46677626a5
Add info logs to plugin scoping
As requested[1], this patch adds info logging when an unscoped token
cannot be scoped to a given project or domain returned by list_projects
or list_domains.
[1] https://review.openstack.org/#/c/389337/
Change-Id: I0cb4b7450528cd1e056b8a2af4f820a17914209c
Project: openstack/django_openstack_auth 87f39581eb5afdb00c8fa752fdaf6c6e18c436f2
Imported Translations from Zanata
For more information about this automatic import see:
http://docs.openstack.org/developer/i18n/reviewing-translation-import.html
Change-Id: I4a5940a3045c6057a104239bf605092bc5f93983