wassname/flask-security
1
0
Fork 0
mirror of https://github.com/wassname/flask-security.git synced 2026-06-27 16:10:11 +08:00
Code Issues Packages Projects Releases Wiki Activity
701 Commits 3 Branches 26 Tags
ea77940ffcd644d3047d68db7ebc33ff474bbd26
Commit Graph

701 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Matt Wright ea77940ffc Merge pull request #454 from jonafato/changelog-1.7.5 
Add changelog for bugfix version 1.7.5
 2015-12-02 17:19:37 -05:00
Jon Banafato 2adc572e80 Add changelog for bugfix version 1.7.5 2015-12-02 17:13:32 -05:00
Jon Banafato 2ac4f373ab Merge pull request #438 from jonafato/is_active-fix 
Fix use of is_active for Flask-Login>=0.3.0
 2015-12-02 16:42:06 -05:00
Jon Banafato 132ced5675 Merge pull request #442 from nfvs/migrate_travis_containers 
Migrate to Travis container-based infrastructure, optimize build with pip caching.
 2015-11-18 11:29:14 -05:00
Nuno Santos aeb5ffbb1d Enable pip and apt cache in Travis for faster build times. 2015-11-12 16:07:00 +01:00
Nuno Santos c2ee2e2629 Migrate to Travis container-based infrastructure. 
Advantages are listed here:
http://docs.travis-ci.com/user/migrating-from-legacy
 2015-11-12 14:51:07 +01:00
Jon Banafato 8005709997 Fix use of is_active for Flask-Login>=0.3.0 2015-11-11 16:02:41 -05:00
Matt Wright 2abdaa873a Merge pull request #437 from jonafato/tox-test-improvements 
Fix tests, add py35
 2015-11-11 15:58:29 -05:00
Jon Banafato 4508c717fb Fix tests, add py35 
- Add Python 3.5 support on travis

- pytest-cache has been merged into pytest [0] and is no longer
  separately maintained, so pytest-cache-related requirements are being
  updated.

- Flask-Mongoengine latest stable is broken on Python 2.6 (but fixed in
  master [1]), so its version is being restricted for now.

[0] http://pytest.org/latest/changelog.html#id3 [1]
https://github.com/MongoEngine/flask-mongoengine/pull/174
 2015-11-03 14:14:11 -05:00
Matt Wright 9583dc3e63 Merge pull request #417 from ialex/develop 
Fixes #416 Changing is_authenticated from function to property & updating Flask-…
 2015-11-03 10:46:57 -05:00
Alejandro Villanueva 745fae1ab1 Adding >0.4 to flask-loginrequirement 2015-09-24 10:03:46 -05:00
Alejandro Villanueva 7e8551763e Changing is_authenticated from function to property & updating Flask-Login>=0.3.0 2015-09-11 10:31:01 -05:00
Matt Wright 4049c06203 Merge pull request #366 from covertgeek/develop 
Modified check_token function to handle list-type JSON post
 2015-07-10 14:11:15 -04:00
Matt Wright 3b678b872f Merge pull request #400 from feliciaan/patch-1 
Fixes a small spelling error
 2015-07-10 14:07:15 -04:00
Derek Rushing 17a79ed6a3 Merge branch 'develop' of https://github.com/mattupstate/flask-security into develop 2015-07-06 06:51:20 -05:00
Derek Rushing d65c3cadcd Merge branch 'master' of https://github.com/mattupstate/flask-security into develop 2015-07-06 06:47:23 -05:00
Feliciaan De Palmenaer bf01ad0727 Fixes a small spelling error 2015-06-28 20:17:23 +02:00
Matt Wright cbd0db7c39 Merge pull request #398 from jonafato/bcrypt-hotfix 
Restrict bcrypt to <2.0.0
 2015-06-24 22:23:36 -05:00
Jon Banafato 398f5c920b Restrict bcrypt to <2.0.0 
As of 2.0.0, passlib no longer correctly identifies bcrypt as bcrypt
(instead, it mistakenly applies pybcrypt logic to bcrypt). This results
in all Python 3 logic involving bcrypt failing. As a hotfix, we should
require users to be on a version of bcrypt that passlib can handle a fix
can be pushed into passlib.
 2015-06-23 13:23:07 -04:00
Matt Wright 33252ae178 Merge pull request #389 from nickretallack/develop 
Reset Password Fixes
 2015-05-26 14:59:30 -04:00
Nick Retallack c10c9050c7 test: reset password on a user who has no password 
The user may have been invited via a social network or an invitation
system.
 2015-05-11 23:22:30 -07:00
Nick Retallack 5697ff80c3 ignore the eggs readme 2015-05-11 23:16:04 -07:00
Nick Retallack 4411470202 test: invalidate used password reset tokens 
Also pep8 compliance and suggested changes.
 2015-05-11 23:12:05 -07:00
Nick Retallack a0e2037747 invalidate password reset tokens when the passwords changes 
Check that the previous password is the same as it was when this
password reset request was generated.
 2015-05-11 21:52:57 -07:00
Nick Retallack 7884d637c5 prevent password reset from breaking if you have no password 
If you've just been invited, or are using social auth, you have no
password set, so the reset password feature causes a crash.  This
doesn't need to happen.
 2015-05-11 21:52:57 -07:00
Matt Wright 8a14abaa1e Fix failing test 2015-05-02 14:57:34 -04:00
Matt Wright 6b55e9613a Merge pull request #255 from nfvs/unauthorized_override 
Allow overriding of an unauthorized callback.
 2015-05-02 14:45:57 -04:00
Matt Wright d08aac6d35 Fix pymongo version issue 2015-05-02 14:34:31 -04:00
Nuno Santos 10fd1844d8 Allow overriding of unauthorized callback. 
Related to issue #255.
 2015-05-02 20:17:38 +02:00
Matt Wright 72d3a4b5e3 Merge branch 'develop' of github.com:mattupstate/flask-security into develop 2015-05-02 13:57:29 -04:00
Matt Wright 6541640ee8 Merge pull request #373 from lnielsen/anonymoususer 
Add support for custom AnonymousUser class.
 2015-05-02 13:57:20 -04:00
Matt Wright 9cda8baff3 Fix #367 2015-05-02 13:55:05 -04:00
Matt Wright d907e5b890 Merge pull request #363 from jeffwidman/patch-1 
"overrided" --> "overriden"
 2015-05-02 13:50:39 -04:00
Matt Wright 8a62b5f193 Merge pull request #361 from nfvs/add_headers_to_auth_required 
Include WWW-Authenticate headers in @auth_required.
 2015-05-02 13:50:23 -04:00
Matt Wright 2e08ec87a6 Merge pull request #352 from fuhrysteve/develop 
X-Forwarded-For can contain multiple IP addresses
 2015-05-02 13:46:21 -04:00
Matt Wright 79fe821c80 Merge pull request #351 from denizdogan/master 
Add documentation about SECURITY_MSG configuration variables.
 2015-05-02 13:45:13 -04:00
Matt Wright 4d3c1c0bdc Merge pull request #347 from Jaza/slash-url-suffix 
re #343: Add slash before or after token in flask-security URLs correctly
 2015-05-02 13:43:36 -04:00
Matt Wright cd8982fa65 Merge pull request #342 from alexef/patch-1 
Fail silently for get_user(None)
 2015-05-02 13:30:01 -04:00
Matt Wright c8a3549e2d Merge pull request #331 from Diaoul/patch-2 
Fix ActivateUserCommand docstring
 2015-05-02 13:29:21 -04:00
Matt Wright 03d9cf2f0d Merge pull request #330 from Diaoul/patch-1 
Fix RemoveRoleCommand docstring
 2015-05-02 13:29:07 -04:00
Matt Wright e4d9d3ad17 Merge pull request #322 from waltaskew/develop 
Add configuration for token expiration
 2015-05-02 13:27:11 -04:00
Matt Wright f2a5e4b614 Normalize import paths. Fixes #313 2015-05-02 13:25:26 -04:00
Matt Wright 916f5ee012 Use StringField instead of TextField. Fixes #312 2015-05-02 13:05:46 -04:00
Matt Wright bc1f5dd7f9 Stricter tests for signals and a small docs update. Fixes #308 2015-05-02 12:59:02 -04:00
Matt Wright 4659d10c5c forgot password endpoint should be for anonymous users only. Fixes #291 2015-05-02 12:11:05 -04:00
Lars Holm Nielsen a4581681e5 Fix PEP8 error. 2015-03-06 13:09:05 +01:00
Lars Holm Nielsen 248ea5d272 Custom AnonymousUser support. 
(addresses #362)
 2015-03-06 12:45:17 +01:00
Derek Rushing 4debc8d102 Modified check_token function to account for multiple objects being posted via JSON. Resolves issue with it throwing an error when it encounters a list instead of a dict type. 2015-02-18 10:20:22 -06:00
Jeff Widman fccaccd282 "overrided" --> "overriden" 
Per http://english.stackexchange.com/questions/75786/overrode-vs-overridden
 2015-02-02 23:34:52 -08:00
Nuno Santos 3681823fcf Include WWW-Authenticate headers in @auth_required. 
When using @http_auth_required, the WWW-Authenticate header is included,
but when using @auth_required('basic'), it is not. This change includes
that header in every @auth_required call that contains the 'basic'
method.
 2015-01-30 11:27:53 +01:00