Back to releases

Highlights

This release is the first one after merging the FedOAuth code into Ipsilon, and has some big new features.

Some of the big new features are:

• OpenID support (includes Simple Registration, Attribute Exchange and Teams plugins)
• Persona support
• A transactional session system so that Ipsilon can be used in multiple tabs at the same time
• A big overhaul on the admin panel to make it more usable
• Ability to store configuration and data in a SQL database
• Ability to use completely file-based configuration (for configuration management)
• And a lot of other changes and cleanup

= Detailed Changelog =

Jan Pazdziora (3):

• If there are some errors while semanaging, we want to see them.
• Make sure semanage and restorecon are installed when we want to use them.
• Clean up only after package removal, not during upgrades.

Patrick Uiterwijk (15):

• Fix the check for hasattr(., 'admin')
• Add testdir/ to gitignore.
• The quickrun workdir and cscope.out should be ignored
• Add OpenIDP Provider
• Show login target on the login screen
• Make the template directory configurable
• Map some common attributes from fas to userdata
• infoldap is of course LDAP
• Fix LDAP plugin configuration checks
• Delay exposing OpenID
• Make sure the XRDS is returned as string
• Add support for Persona Identity Provider
• Add OpenIDStore to store associations and nonces
• Make quickrun create a symlink to ui
• Update version and maintainer info

Simo Sorce (111):

• Print more info about the steps being performed
• Add server install option to turn on debugging
• Move parsing code into helpers module
• Fix non-'make test' installation
• Strenghten default Security options in IDP
• Add project url and maintainer data to setup file
• Add tests to source distribution too
• Fix warning
• Change test executables into modules
• Rework remote_login and remove protect decorator
• Add External form auth plugin
• Prefer the 'form' login manager in ipa setups
• Add Log class that can be inherited from safely
• Use new Log class everywhere
• Move user attribute storage into session functions
• Restore ability to run from checkout
• Add FAS login plugin
• Declare admin attribute
• Do not reprovision if conf is already available
• Allow deferred initialization of providers
• Cast db value to string before comparison
• Handle the presence of additional form fields
• Remove unused option from the FAS login plugin
• Rename form login page
• Create common form handler page
• Use helper cookie to remember the username
• Confine session to the instance
• Use an instance specific session id cookie name
• Remove service name from the form plugin
• Allow plugins to determine config options order
• Add proper ordering to login plugins config opts
• Add error log facility to Log utility
• Add Info Provider plugin framework
• Add support for returning user attributes
• Add test that checks attrs are properly returned
• Add Info providers Admin pages
• Add abstraction class to handle cookies
• Refactor the data store a bit
• Add transactions support
• Use transactions throughout the code
• Test transactions code with full redirect login
• Add very simple LDAP authentication plugin
• Fix login session's userdata acquisition
• Fix transaction handling in providers
• Make Transaction code more robust
• Add transactions db default paths
• Add make cscope target
• Use installation template in quickrun
• Provide cleanup switch to quickrun
• Remove unused dependency
• Databases must be configured in cherrypy.config
• Move wipe_data into Store() as reset_data
• Fix storing login plugin status and order
• Additional data store refactoring
• Redirect anonymous users away
• Fix make cscope and clean
• Fix exposed functions
• Add pretty handler for 404
• Add way to set default headers
• Add AdminPage abstraction on top of util.Page
• Add auto-auth requirement to all admin pages
• Fix mod_auth_kerb based authentication
• Add sqlalchemy dependency to contrib rpm
• Fix storing info plugin status and order
• Move some exceptions into provider.common
• Add helpers to store per plugin user preferences
• Do not overwrite default plugin options
• Handle lists type options in plugins configuration
• Add attribute mapping for user information
• Add OpenId extensions
• Add group and CLA support to FAS login plugin
• Drop custom FAS template
• Remove useless log file
• Handle invalid/expired transactions gracefully
• Return to provider if user cancels login
• Properly handle empty values in storage
• Fix lp-test target compaints
• Use self.log in authpam.py
• Allow to call forms from any of the admin pages
• Add default link to system fonts
• Disable clean-css for now
• Change default font-size to a bigger one
• Improve UI for enabling/disabling plugins config
• Reuse the AdminPlugins class for the providers too
• Update style of plugins config page too
• Add SVG Image to the Home administration page
• Fix plugins enablement code
• Add test to check a real database (pgsql) works
• Add simple SqlSession implementation
• In configure we do not need to set_config()
• Add config utilities to represent data types
• Refactor plugin configuration
• Set newurl on admin actions to stay on the page
• Refactor plugin initialization and enablement
• Remove unused function
• Make internal functions private
• Remove unused option
• Add option to source configuration from a file
• Return proper errors if config is read-only
• Add test to check file based configuration works
• Use indirection to report error strings
• Add visual cues to configuration panels
• Add missing openid paths to setup.py
• Add admin svg to setup.py
• Fix svg parsing in mod_wsgi
• Bump version to 0.2.6
• Improve spec file
• Allow to pass drectly a URL to the Store class
• Add defaults to List objects
• Make pep8 happy again
• Change working directory for quickrun