68dd972bfa
Add more secure password storage via salt value and hmac
2012-07-18 13:27:30 -04:00
f170cb434c
Use a stateful object instead of arbitrary assignment of extension on app object
2012-07-16 19:07:19 -04:00
0a0b5ecade
Get rid of login_required decorator from roles_required and roles_accepted in order to be able to pair http_auth_required with roles_required or roles_accepted. Just be sure to put http_auth_required first.
2012-07-13 13:50:36 -04:00
18c7a838b0
Make most messages configurable
2012-07-12 15:24:57 -04:00
dcdfb4d3e7
Add configurable http auth realm and optional realm specification in http_auth_required decorator
2012-07-12 14:16:54 -04:00
dfcb3cdcc6
Add customizable unauthorized URL. Fixes #23
2012-07-12 12:47:21 -04:00
da031b8d15
Simplify routing a tiny bit
2012-07-12 11:29:42 -04:00
0befa34dc8
Trying to fix build, I don't think Travis likes the quickness of the token expiration tests
2012-07-11 18:26:10 -04:00
5e1d18c9e8
Changed token auth a bit, including the use of itsdangerous. Also added JSON authentication feature
2012-07-11 16:31:21 -04:00
b9a6a9c5a8
Use itsdangerous for activation and password reset tokens so they do not need to be stored in the database
2012-07-11 15:06:54 -04:00
815c8695fc
Code clean upr
2012-07-10 17:24:39 -04:00
2ed0ea48e6
Add trackable option and make extra features default to off/False to minimize about of application setup to get started
2012-07-09 18:57:43 -04:00
74e94b2628
Merge branch 'develop' of github.com:mattupstate/flask-security into develop
2012-06-29 13:18:14 -04:00
2ea835ec9f
Add a bunch of doc strings and add some more configuration values
2012-06-29 12:37:22 -04:00
24cd4938a5
correct roles_* decorator signature expectations
...
Having multiple RoleNeed objects in a Permission does not require
all to be satisfied in order to .can(), but will return True if
any are present. This makes the previous roles_required logic more
elegant for roles_accepted. roles_required decorator needs to check
all permissions individually and return only if all permissions exist
2012-06-22 00:15:43 -05:00
a7016c1cfa
Update build and dependencies
2012-06-20 15:36:44 -04:00
a902530773
Refactor forms and import other commonly used functions into package
2012-06-19 11:55:23 -04:00
5fdfa544db
Polish up some code and add some signals
2012-06-15 12:13:49 -04:00
c123e32ddc
decorators for basic http auth and token auth
2012-06-14 18:04:14 -04:00
7263388b7c
refactor tests a tiny bit
2012-06-07 11:15:42 -04:00
e0c7a3deb2
Fix #10
2012-06-06 17:51:14 -04:00
2a9e91dfe8
Added reset password error handling and associated test
2012-05-22 18:13:29 -04:00
09aa7e113c
Heavy work on confirmation and reset
2012-05-22 18:08:38 -04:00
19cc30a3c1
Fix up form classes and add ResetPasswordFOrm
2012-05-15 18:43:06 -04:00
0f914d1ea6
Attempting more clean up
2012-05-15 18:14:28 -04:00
17ea120032
Some more polish. Fix a test
2012-05-15 17:17:38 -04:00
4c1a16e2ee
Added register signal, some testing utils and basic confirmation
2012-05-11 18:15:46 -04:00
2b587f7047
Starting a large refactor and adding confirmation abilities
2012-05-11 13:23:42 -04:00
5e8b53ef46
Refactor views a bit to keep things cleaner and fix up tests
2012-05-10 12:31:37 -04:00
ed7beb529a
First commit of refactored code and removed default models. Now meant to provide models from app level, not within Flask-Security
2012-04-30 19:34:04 -04:00
ab08abcaf9
Fix #4
2012-04-27 13:37:50 -04:00
1a6cd10d09
Changed configuration values to use the prefix "SECURITY_" instead of a nested dictionary for easier overidding
2012-03-08 23:02:39 -05:00
9c8b8b8e39
Polish
2012-03-08 17:36:08 -05:00
ebe807b87b
MongoEngine datastore completed. Also refactored model classes to use a mixin
2012-03-08 17:06:23 -05:00
f5db44d0a1
First code commit
2012-03-08 16:03:53 -05:00
Matt Wright