1. 20 May, 2013 18 commits
  2. 17 May, 2013 14 commits
  3. 16 May, 2013 8 commits
    • Sofia Papagiannaki's avatar
      astakos: fix incomplete previous commit · 34f3fca9
      Sofia Papagiannaki authored
      commit 1439d6383113b151b6a3316e320a0418fa30d421
    • Sofia Papagiannaki's avatar
      astakos: api calls authenticated via X-Auth-Token shall not affect cookie · d350c42a
      Sofia Papagiannaki authored
      CookieAuthenticationMiddleware.process_request() synchronizes
      the astakos cookie with the request user.
      If an astakos cookie is set but there is no logged in user,
      the middleware deletes the cookie.
      Respectively, if there is a logged in user but the astakos cookie
      is not set, the middleware setis the cookie.
      In order to set/delete the cookie, redirects to the request path.
      For checking whether the user is logged in or not,
      utilized the django.contrib.auth.models.User.is_authenticated() method.
      This returns always True for django.contrib.auth.models.User instances
      (request.user for non authenticated requests is
       django.contrib.auth.models.AnonymousUser instance)
      Some astakos api calls are decorated by
      which checks the X-Auth-Token request header and if its valid
      sets the request.user to the respective AstakosUser instance.
      Therefore, the above check succeeded for these calls
      and the middleware used to set the cookie.
      Subsequent requests read the cookie and
      if it did not comform with the request.user
      (no authentication info supplied)
      redirected to request path for deleting it.
      In order to resolve this undesired behavior
      the cookie fix() method has been changed
      and if it is actually an api call request
      it returns immediately without affecting the cookie.
    • Kostas Papadimitriou's avatar
    • Kostas Papadimitriou's avatar
    • Kostas Papadimitriou's avatar
      astakos: Clean up user-list filter options · 5adacde7
      Kostas Papadimitriou authored
      removed deprecated options `-p` and `-n`. Admins should use
      `--pending-moderation` and `--pending-verification` instead.
    • Kostas Papadimitriou's avatar
      astakos: Allow admin to verify user from command line · e26bc7ca
      Kostas Papadimitriou authored
      using the new option `--verify` added in `user-modify` command
    • Kostas Papadimitriou's avatar
      Merge branch 'feature-branding' into develop · 324d2797
      Kostas Papadimitriou authored
    • Kostas Papadimitriou's avatar
      cyclades: Update proxy user services · 28fb25d2
      Kostas Papadimitriou authored
      use the common api.proxy method from snf-django-lib