Christophe de Vienne <christophe@unlish.com> [Thu, 18 Sep 2014 12:03:25 +0200] rev 11636
Add the 'pyramid-auth-secret' option to all-in-one.conf
Christophe de Vienne <christophe@unlish.com> [Thu, 18 Sep 2014 11:17:57 +0200] rev 11635
Add the 'pyramid-session-secret' option to all-in-one.conf
This value is used by pyramid_cubicweb to initialize the cookie factory.
Christophe de Vienne <christophe@unlish.com> [Fri, 05 Sep 2014 18:48:33 +0200] rev 11634
Add a CWSession entity.
It is a subset of the CWSession that will be added to cubicweb in a future version.
Closes #4317363
Christophe de Vienne <christophe@unlish.com> [Fri, 05 Sep 2014 12:38:13 +0200] rev 11633
Implements the 'pyramid' command.
It load an instance config, and load in the pyramid scaffolding provided by pyramid_cubicweb.
The application is then served by a waitress server.
Closes #4317312
Christophe de Vienne <christophe@unlish.com> [Fri, 05 Sep 2014 12:32:03 +0200] rev 11632
Project structure
Yann Voté <yann.vote@logilab.fr> [Mon, 26 Sep 2016 14:52:12 +0200] rev 11631
Merge with pyramid-cubicweb
The following tasks have been done:
- merge packaging files
- merge documentation
- move pyramid_cubicweb package at cubicweb/pyramid and update imports
accordingly
- rename tests directory into test
- move pyramid-cubicweb README.rst into README.pyramid.rst until better idea
- add a test dependency on unreleased cubicweb-pyramid to have both py27 and
py34 tests pass
Closes #14023058.
Denis Laxalde <denis.laxalde@logilab.fr> [Thu, 07 Jul 2016 14:30:32 +0200] rev 11630
Port to Python3 (closes #14159555)
Add py34 environments to tox configuration (only for CubicWeb >= 3.23).
And depend on hg version of cubicweb-pyramid since it is not currently
Python3-compatible.
Sylvain Thénault <sylvain.thenault@logilab.fr> [Tue, 28 Jun 2016 11:03:20 +0200] rev 11629
Use opened connections as much as possible
instead of opening a new internal connection to set the session cookie or
retrieve the session data, which may exhaust the connection pools.
Sylvain Thénault <sylvain.thenault@logilab.fr> [Wed, 01 Jun 2016 17:27:29 +0200] rev 11628
Test and fix status code and content of the login form on authentication error
The status code was 200 and is now fixed to 403, but the content part of the
test will fail until cset 02328f8cbd5c is integrated in cubicweb.
Denis Laxalde <denis.laxalde@logilab.fr> [Tue, 28 Jun 2016 09:44:08 +0200] rev 11627
Added tag 0.7.0, debian/0.7.0-1, centos/0.7.0-1 for changeset 0cf2972d2011
Denis Laxalde <denis.laxalde@logilab.fr> [Tue, 28 Jun 2016 09:33:20 +0200] rev 11626
[pkg] Version 0.7.0
Sylvain Thénault <sylvain.thenault@logilab.fr> [Fri, 03 Jun 2016 17:59:49 +0200] rev 11625
retrieve session data in a single query
instead of two (one for the session object, the other for its cwsessiondata attribute).
Denis Laxalde <denis.laxalde@logilab.fr> [Tue, 28 Jun 2016 09:07:12 +0200] rev 11624
[tox] Update CubicWeb version targets
* In -release, no need to specify cubicweb dependency, its pulled by setup.py.
* Use 3.22 as -compat.
* Point to "default" branch for -dev.
Also remove test directory from posargs.
Philippe Pepiot <philippe.pepiot@logilab.fr> [Thu, 16 Jun 2016 16:25:32 +0200] rev 11623
wsgi: clearer exception when CW_INSTANCE is missing
instance_name is mandatory for cwcfg.config_for()
Raise with a KeyError: 'CW_INSTANCE' instead of hard to read exception.
Sylvain Thénault <sylvain.thenault@logilab.fr> [Fri, 03 Jun 2016 17:58:43 +0200] rev 11622
typo
David Douard <david.douard@logilab.fr> [Wed, 11 May 2016 11:26:16 +0200] rev 11621
[doc] update a bit the documentation
Also convert the README in rst (so it can be properly displayed on
cubicweb.org).
Arthur Lutz <arthur.lutz@logilab.fr> [Fri, 17 Jun 2016 17:57:11 +0200] rev 11620
split collecting setting before using them, so the function can be reused when inserting WSGI middlewares
Arthur Lutz <arthur.lutz@logilab.fr> [Thu, 02 Jun 2016 12:11:07 +0200] rev 11619
[bwcompat] log execption even when cubicweb.bwcompat.errorhandler = True (closes #13421901)
Samuel Trégouët <samuel.tregouet@logilab.fr> [Fri, 27 May 2016 10:49:27 +0200] rev 11618
[pkg] add spec file
David Douard <david.douard@logilab.fr> [Tue, 12 Apr 2016 16:17:06 +0200] rev 11617
Added tag 0.6.1, debian/0.6.1-1 for changeset 2621daafa10c
David Douard <david.douard@logilab.fr> [Tue, 12 Apr 2016 15:41:09 +0200] rev 11616
[pkg] 0.6.1
Julien Cristau <julien.cristau@logilab.fr> [Fri, 01 Apr 2016 16:50:12 +0200] rev 11615
[bwcompat] send 403 on authentication errors (closes #12219849)
200 is just wrong.
Julien Cristau <julien.cristau@logilab.fr> [Fri, 01 Apr 2016 16:48:14 +0200] rev 11614
[bwcompat] set response headers on AuthenticationError (closes #12219860)
Turns out sending a response without a Content-Type header (among
others) is suboptimal. 5b36399b6b21 was not good enough.
David Douard <david.douard@logilab.fr> [Thu, 24 Mar 2016 12:08:59 +0100] rev 11613
Added tag 0.6.0, debian/0.6.0-1 for changeset 94d1a024b3bf
David Douard <david.douard@logilab.fr> [Fri, 18 Mar 2016 17:34:13 +0100] rev 11612
[pkg] 0.6.0
David Douard <david.douard@logilab.fr> [Tue, 22 Mar 2016 14:01:44 +0100] rev 11611
[tests] add a __main__ handler
the relative import in test_rest_api.py needs to be modified to prevent a
ValueError: Attempted relative import in non-package
David Douard <david.douard@logilab.fr> [Tue, 22 Mar 2016 13:58:38 +0100] rev 11610
[pkg] add a requirements-test.txt file
for test dependencies on WebTest and cubicweb-pyramid
Sylvain Thénault <sylvain.thenault@logilab.fr> [Fri, 18 Mar 2016 17:13:43 +0100] rev 11609
[login] fix the redirect url after login (closes #11689118)
redirecting to '/' by default after login doesn't work properly when a prefix
is used, whether we're sitting behind a PrefixMiddleware or not. To fix this,
rely on cubicweb's build_url to turn any relative path into an absolute url.
Adrien Di Mascio <Adrien.DiMascio@logilab.fr> [Tue, 08 Mar 2016 16:12:01 +0100] rev 11608
keep track of all traceback in error handling, not just the exception message (closes #11689093)
Julien Cristau <julien.cristau@logilab.fr> [Wed, 25 Nov 2015 12:32:59 +0100] rev 11607
[bwcompat] also set response headers in error cases
I had this sitting around in my local copy, I don't remember why I
needed this but it seems correct.
David Douard <david.douard@logilab.fr> [Mon, 29 Feb 2016 16:16:33 +0100] rev 11606
[config] move config of the secret used to encrypt session's data ID in pyramid.ini (closes #11689082)
Introduce a new config entry (in pyramid.ini) for this (cubicweb.session.secret)
to replace the (now deprecated) pyramid-session-secret (in all-in-one.conf).
So we have now 3 secrets to configure:
- cubicweb.session.secret: to encrypt session's data ID stored in a cookie,
- cubicweb.auth.authtkt.session.secret: to encrypt auth cookie
- cubicweb.auth.authtkt.persistent.secret: to encrypt persistent session auth cookie
Denis Laxalde <denis.laxalde@logilab.fr> [Mon, 07 Mar 2016 10:47:11 +0100] rev 11605
Document how to configure the "secure" flag for authentication policies
Closes #11376233.