This repository has been archived on 2020-03-24. You can view files and clone it, but you cannot make any changes to it's state, such as pushing and creating new issues, pull requests or comments.

Joseph Schorr 0854d20cbd SECURITY FIX FOR LDAP ... It appears the recent migration of the LDAP code and add of a check for the admin username/password being invalid *broke the LDAP password check*, allowing any password to succeed for login. This fixes the problem, add unit tests to verify the fix and add some tests to our other external auth test suite. A release will be needed immediately along with an announcement		2015-08-18 12:32:19 -04:00
..
__init__.py	Refactor the util directory to use subpackages.	2015-08-03 16:04:19 -04:00
database.py	Refactor the users class into their own files, add a common base class for federated users and add a verify_credentials method which only does the verification, without the linking. We use this in the superuser verification pass	2015-07-20 11:39:59 -04:00
externaljwt.py	Refactor the users class into their own files, add a common base class for federated users and add a verify_credentials method which only does the verification, without the linking. We use this in the superuser verification pass	2015-07-20 11:39:59 -04:00
externalldap.py	SECURITY FIX FOR LDAP	2015-08-18 12:32:19 -04:00
federated.py	Refactor the users class into their own files, add a common base class for federated users and add a verify_credentials method which only does the verification, without the linking. We use this in the superuser verification pass	2015-07-20 11:39:59 -04:00
keystone.py	Refactor the users class into their own files, add a common base class for federated users and add a verify_credentials method which only does the verification, without the linking. We use this in the superuser verification pass	2015-07-20 11:39:59 -04:00