lp://qastaging/~roadmr/canonical-identity-provider/bulk-caveat-id-macaroon-discharge
- Get this branch:
- bzr branch lp://qastaging/~roadmr/canonical-identity-provider/bulk-caveat-id-macaroon-discharge
Branch merges
- Ubuntu One hackers: Pending requested
-
Diff: 185 lines (+127/-1)3 files modifieddocs/login.txt (+67/-0)
src/api/v20/handlers.py (+17/-1)
src/api/v20/tests/test_handlers.py (+43/-0)
Branch information
Recent revisions
- 1595. By Daniel Manrique
-
Documentation for the discharge endpoint explaining the single/multiple caveat_id flow.
Didn't document the old "root_macaroon(s)" API on purpose because it's deprecated and consumers
should NOT use it. - 1592. By Daniel Manrique
-
Allow sending multiple caveat_ids to MacaroonDischar
geHandler. The semantics are similar to the old macaroons parameter (contrast with
macaroon). A new payload parameter caveat_ids is supported, should receive
a list of lists/tuples with numeric_id/caveat_ id and should send back a
list of numeric_id/3rd_ party_discharge (or a nice error) for each. - 1590. By Daniel Manrique
-
Add SP-specific metadata view.
This allows URLs such as /+saml/metadata/4. If the SP with id 4 has a
custom certificate, it will be used in the metadata. If not, valid metadata
with the default global cert is shown. If no SP with the given primary key exists,
a 404 is raised.This avoids having to tell SPs "use this metadata URL but this certificate
because the one in the metadata is bad".The intended flow would be:
1- create the SPConfig, even if with partial config.
2- Add a custom cert
3- We can now give the SP's support people a metadata link with nice certificate.Merged from https:/
/code.launchpad .net/~roadmr/ canonical- identity- provider/ metadata- with-custom- cert/+merge/ 334994 - 1589. By Daniel Manrique
-
Use the SAML remote's configured certificate, if present.
This allows setting a custom certificate per RP. RPs for which this
field is empty fall back to the global certificate configured in settings.All certificates must be generated from the global private key in settings,
which is a single setting for all RPs. - 1588. By Daniel Manrique
-
Add "certificate" field to SAMLConfig model.
This allows setting a custom certificate per RP. RPs for which this
field is empty fall back to the global certificate configured in settings.All certificates must be generated from the global private key in settings,
which is a single setting for all RPs.Merged from https:/
/code.launchpad .net/~roadmr/ canonical- identity- provider/ samlconfig- certificate- field/+ merge/334784 - 1587. By Daniel Manrique
-
Revert r1586 because it broke non-Canonical logins to support.
canonical. com Mechanical revert by bzr merge -r 1586..1585 ./
Merged from https:/
/code.launchpad .net/~roadmr/ canonical- identity- provider/ revert- r1586/+ merge/334679
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)