Created by Natalia Bidart and last modified
Get this branch:
bzr branch lp:~nataliabidart/canonical-identity-provider/admin-access-via-sso
Only Natalia Bidart can upload to this branch. If you are Natalia Bidart please log in for upload directions.

Branch merges

Related bugs

Related blueprints

Branch information

Natalia Bidart
Canonical SSO provider

Recent revisions

1354. By Natalia Bidart

COuntless attempts to properly auth in admin area.

1353. By Daniel Manrique

[r=nataliabidart,james-w] New parameters for more secure AuthToken strings.

20-character tokens taken from a set of hopefully non-ambiguous letters
and numbers will yield tokens with about 110 bits of entropy, as opposed
to the 36 bits we had with 6-character a-zA-Z0-9 tokens.

1352. By Daniel Manrique

[r=ricardokirkner,matt-goodall] Admin-side tweaks to display a shortened version of hashed tokens and avoid the unwieldy 64-character sha256 hashes.

1351. By Daniel Manrique

[r=ricardokirkner,james-w] Store only AuthToken hashes in the database.

Since AuthTokens are security-sensitive, once a raw token is generated and sent to the user via either e-mail or URL redirection, the raw value is discarded and only a hash is kept in the database. So raw tokens can't be recovered directly from the database.

The data is stored in the same existing "token" column (though renamed at model-level to "hashed_token").

The code accounts for "old-style", raw tokens to be stored in the same table; all existing tokens continue to be valid and can be used. However, only "new-style", hashed tokens will be stored in the future.

1350. By Ricardo Kirkner

[r=nataliabidart] update sphinx to 1.3 to work with readthedocs

1349. By Natalia Bidart

[r=wesmason] - Reduce logging for OAuth handler now that we have deployed the feature.

1348. By Ricardo Kirkner

[r=nataliabidart,roadmr] split docs requirements to it's own file so that readthedocs.org can build the docs properly

1347. By Ricardo Kirkner

[r=roadmr] removed obsoleted standalone raven code

1346. By Ricardo Kirkner

[r=roadmr] replace custom raven for canonical-raven

1345. By Natalia Bidart

[r=ricardokirkner] - Minor fixes and extensions to API v2.0 documentation.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
This branch contains Public information 
Everyone can see this information.