8 commits

Author	SHA1	Message	Date
Joseph Schorr	d7f56350a4	Make email addresses optional in external auth if email feature is turned off ... Before this change, external auth such as Keystone would fail if a user without an email address tried to login, even if the email feature was disabled.	2016-10-31 13:50:24 -04:00
Joseph Schorr	fbb524e34e	Add support to ExternalJWT Auth for external user linking	2016-10-27 15:42:03 -04:00
Jimmy Zelinskie	fc7301be0d	*: fix legacy imports ... This change reorganizes imports and renames the legacy flask extensions.	2016-09-28 20:17:14 -04:00
Jimmy Zelinskie	432c33209d	use different ports for jwt tests	2015-10-27 17:32:46 -04:00
Joseph Schorr	039768f17b	Fix JWT auth test	2015-09-04 16:31:37 -04:00
Joseph Schorr	0854d20cbd	SECURITY FIX FOR LDAP ... It appears the recent migration of the LDAP code and add of a check for the admin username/password being invalid *broke the LDAP password check*, allowing any password to succeed for login. This fixes the problem, add unit tests to verify the fix and add some tests to our other external auth test suite. A release will be needed immediately along with an announcement	2015-08-18 12:32:19 -04:00
Joseph Schorr	33b54218cc	Refactor the users class into their own files, add a common base class for federated users and add a verify_credentials method which only does the verification, without the linking. We use this in the superuser verification pass	2015-07-20 11:39:59 -04:00
Jake Moshenko	bc29561f8f	Fix and templatize the logic for external JWT AuthN and registry v2 Auth. ... Make it explicit that the registry-v2 stuff is not ready for prime time.	2015-07-17 11:56:15 -04:00

Renamed from test/test_jwt_auth.py (Browse further)