Commit 3a71cc2c authored by Valentin Samir's avatar Valentin Samir

Add "remember my identity provider" expiry time in a setting parameter

parent bec51755
...@@ -146,6 +146,9 @@ Federation settings: ...@@ -146,6 +146,9 @@ Federation settings:
The default is ``False``. The default is ``False``.
* ``CAS_FEDERATE_PROVIDERS``: A distionnary for the allowed identity providers (see the federate * ``CAS_FEDERATE_PROVIDERS``: A distionnary for the allowed identity providers (see the federate
section below). The default is ``{}``. section below). The default is ``{}``.
* ``CAS_FEDERATE_REMEMBER_TIMEOUT``: Time after witch the cookie use for "remember my identity
provider" expire. The default is ``604800``, one week. The cookie is called
``_remember_provider``.
Tickets validity settings: Tickets validity settings:
......
...@@ -81,6 +81,7 @@ setting_default('CAS_SQL_PASSWORD_CHECK', 'crypt') # crypt or plain ...@@ -81,6 +81,7 @@ setting_default('CAS_SQL_PASSWORD_CHECK', 'crypt') # crypt or plain
setting_default('CAS_FEDERATE', False) setting_default('CAS_FEDERATE', False)
# A dict of "provider suffix" -> (provider CAS server url, CAS version, verbose name) # A dict of "provider suffix" -> (provider CAS server url, CAS version, verbose name)
setting_default('CAS_FEDERATE_PROVIDERS', {}) setting_default('CAS_FEDERATE_PROVIDERS', {})
setting_default('CAS_FEDERATE_REMEMBER_TIMEOUT', 604800) # one week
if settings.CAS_FEDERATE: if settings.CAS_FEDERATE:
settings.CAS_AUTH_CLASS = "cas_server.auth.CASFederateAuth" settings.CAS_AUTH_CLASS = "cas_server.auth.CASFederateAuth"
......
...@@ -197,7 +197,7 @@ class FederateAuth(View): ...@@ -197,7 +197,7 @@ class FederateAuth(View):
) )
response = HttpResponseRedirect(url) response = HttpResponseRedirect(url)
if form.cleaned_data["remember"]: if form.cleaned_data["remember"]:
max_age = 7 * 24 * 60 * 60 # one week max_age = settings.CAS_FEDERATE_REMEMBER_TIMEOUT
utils.set_cookie(response, "_remember_provider", request.POST["provider"], max_age) utils.set_cookie(response, "_remember_provider", request.POST["provider"], max_age)
return response return response
else: else:
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment