Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
47,754 Commits 1 Branch 0 Tags
549941e6080b3a5bf43bf06db59101e52ea8d00a
Commit Graph

2915 Commits

Author SHA1 Message Date
Douglas Hall
b0eb347c32 Set CORS_ALLOW_HEADERS in devstack settings. 2018-11-06 14:56:31 -05:00
Douglas Hall
726b28d4fa Add LOGIN_REDIRECT_WHITELIST setting to production settings. 2018-11-05 14:31:56 -05:00
Calen Pennington
6c5ee7209c Merge pull request #19108 from cpennington/stacked-configuration-models 
Stacked configuration models
 2018-11-05 13:43:25 -05:00
Douglas Hall
82133433c5 Merge pull request #19211 from edx/douglashall/corsheaders_allow_methods 
Allow custom USE-JWT-COOKIE header on cross origin requests.
 2018-11-05 11:33:41 -05:00
Douglas Hall
0f125c7a62 Allow custom USE-JWT-COOKIE header on cross origin requests. 2018-11-05 10:56:22 -05:00
Shadi Naif
4df2073376 Fix exceptions raised when a lazy text is used in json dump 2018-11-05 12:24:45 +02:00
Calen Pennington
8901bf4482 Add a facility for building stacked configuration models that control the same configuration on a Global, Site, Org and Course level 2018-11-02 15:36:01 -04:00
Alex Dusenbery
99705e54a6 Remove GenericAPIView subclass from grades API views; add a test that /api-docs/ works. 2018-10-31 16:10:31 -04:00
Calen Pennington
83d676cbfa Add Content Type Gating Behind Waffle Flag 
Content Type Gating: Xblocks that have a graded component cannot be
accessed by audit track users.
  - Caveats:
    - In studio, instructors can set certain xblocks to be available to
      all users, but graded components will default to not being
      available for audit users
    - If a course does not have a verified mode option, all users will
      have access to graded content.

The Waffle Flag: The waffle flag is of for now.
  It's name is: ```content_type_gating.debug```

This Commit Does NOT Include: Displaying for a user WHY they do not have
access to a specific piece of content.  That change will be part of
another PR.
 2018-10-31 12:34:48 -04:00
Robert Raposa
53239bdf37 Remove JWT_COOKIES_FLAG. 
The JWT_COOKIES_FLAG was a temporary flag used for rollout of the new
JWT cookies. These are live in Production, so we are removing the flag.

Without this flag, we set JWT cookies during login. However, this
requires an oAuth Client that isn't always available during unit tests.
We introduced a feature flag that is only used for unit tests to
disable setting the JWT cookies. The code explains a bit more why this
solution was selected over adding the oauth client to the database.

ARCH-247
 2018-10-31 10:29:05 -04:00
Douglas Hall
d8d18829e6 Use JWT cookies for authentication when explicitly requested by client. 2018-10-30 15:56:26 -04:00
Diana Huang
2c9399aa7c Turn on logistration by default on devstack. 2018-10-29 16:33:10 -04:00
Calen Pennington
c02b195ff7 Merge pull request #19155 from edx/rev/allow-studio-content-gating-override 
Add Studio UI for tagging Full/Limited access contont
 2018-10-29 13:19:45 -04:00
Calen Pennington
0adb654724 Add a shell app for content_type_gating 2018-10-29 11:44:44 -04:00
Douglas Hall
f8008dacf5 Disable JWT auth cookie. 2018-10-26 21:23:19 -04:00
Nadeem Shahzad
0bef89413c Merge pull request #19087 from edx/nadeem/OPS-3544 
Add xforwardedformiddleware (OPS-3544)
 2018-10-25 19:41:29 +05:00
nadeemshahzad
1ff04aaf3d add xforwardedfor middlewar 2018-10-25 13:33:42 +00:00
Douglas Hall
8bcd5fd785 JwtAuthCookieMiddleware needs to come before AuthenticationMiddleware. 2018-10-24 10:19:36 -04:00
Douglas Hall
818bcc509c Add JWT_AUTH_COOKIE setting to enable JwtAuthentication on DRF API endpoints. 2018-10-23 17:01:46 -04:00
Matthew Piatetsky
073df570fa Merge pull request #19095 from edx/expired_dashboard_message 
Add course duration limit and dashboard expiration code
 2018-10-23 12:17:58 -04:00
J. Cliff Dyer
b3521e0f88 Add endpoint to get SAML providers for a user. 
View is combined with user SSO views.

Includes a new version of the view that takes explicit "username" or "email".

OC-4285
 2018-10-18 14:02:12 -04:00
Robert Raposa
fbc59231fc Update edx-drf-extensions to 2.0.0. 
Note: this version update is backward incompatible.

ARCH-255
 2018-10-17 01:00:34 -04:00
Calen Pennington
4642efbf08 Create shell django app for course duration feature 2018-10-12 16:43:13 -04:00
Nimisha Asthagiri
afd0e488ce Merge pull request #19085 from edx/arch/consistent-cookie-expiration 
Consistent expiration for all login-related cookies
 2018-10-11 13:15:57 -04:00
Calen Pennington
1d8fc40f29 Merge pull request #19064 from cpennington/courseware-absolute-import 
Import courseware module from fully-qualified module name
 2018-10-11 08:48:14 -04:00
Nimisha Asthagiri
2b8a9d5148 Consistent expiration for all login-related cookies 2018-10-10 22:13:28 -04:00
Douglas Hall
f93c9a9298 Merge pull request #19080 from edx/douglashall/upgrade_edx_drf_extensions_1_11_0 
Install the CSRF app included in edx-drf-extensions.
 2018-10-10 17:07:05 -04:00
Calen Pennington
72f556c1a9 Import courseware module from fully-qualified module name 2018-10-10 15:34:33 -04:00
Douglas Hall
61319bf2c0 Install the CSRF app included in edx-drf-extensions. 2018-10-10 11:19:23 -04:00
Dillon Dumesnil
deb758c808 Added in tests for the new password validation. Fixed old tests that 
relied on the old configuration values and old way of validating
passwords. Also improved registration page by always showing error
messages rather than hiding them on leaving the field.
 2018-10-10 11:06:30 -04:00
Dillon Dumesnil
4fa27f98dc Implementing django password validators for edX. This involves removing 
the old validate password method and configuration values in favor of
AUTH_PASSWORD_VALIDATORS, a list of validators to use to check a
password. These include some that come straight from Django and some
that were written according to Django's specifications. This work also
included maintaining the current messaging as instruction text and
passing along restrictions for the password field.
 2018-10-10 10:58:21 -04:00
Robert Raposa
3e3c1333f0 Add JWT Auth Middleware. 
From edx-drf-extensions:
1. EnsureJWTAuthSettingsMiddleware: Ensures proper JWT auth settings
   for endpoints.
2. JwtAuthCookieMiddleware: Combines the JWT auth cookie parts into a
   JWT auth cookie.

ARCH-233
 2018-10-03 16:26:05 -04:00
Cory Lee
257768c8a4 Merge pull request #19039 from edx/devops/move_tasks_to_more_appropriate_queues 
Move tasks to non-default queues
 2018-10-03 09:56:04 -04:00
Cory Lee
282bab3e90 Merge pull request #19041 from edx/coryleeio/remove_unneeded_log_config 
Removing broken log config
 2018-10-03 09:40:24 -04:00
Nimisha Asthagiri
1c1088358c Merge pull request #19031 from edx/arch/login-service-migration 
Login service user creation - data migration
 2018-10-02 20:45:42 -04:00
Cory Lee
bd6e060ea7 Use production.py instead of aws.py 2018-10-02 17:02:07 -04:00
Robert Raposa
4a0bda7690 Merge pull request #18988 from edx/robrap/ARCH-238-login-redirect 
ARCH-238: Add ability to redirect to subdomain for login.
 2018-10-02 16:34:13 -04:00
Robert Raposa
23b9cfd76c Add whitelist for login redirect. 
Use LOGIN_REDIRECT_WHITELIST to provide a whitelist of
additional domains to which login will now redirect.

ARCH-238
 2018-10-02 16:00:55 -04:00
Cory Lee
14ed6cf682 Prepare to remove low priority queue, replacing with default 2018-10-02 14:37:31 -04:00
Cory Lee
84e1076a11 Move certificate task to low priority queue 2018-10-02 13:37:46 -04:00
Nimisha Asthagiri
2a170549b4 Login service user creation - data migration 2018-10-02 12:26:50 -04:00
mduboseedx
932e7cacae Merge pull request #17216 from proversity-org/proversity/edx-pr-unsupported-browser-alert 
Show browser support alert
 2018-10-02 09:45:01 -04:00
Joseph Mulloy
c870ec3872 Fix pylint warnings OPS-3450 2018-10-01 14:54:58 -04:00
Cory Lee
688968e8c8 Add production.py OPS-3450 2018-10-01 14:54:55 -04:00
Cory Lee
e145049f46 Add deprecation warning to aws.py OPS-3450 2018-10-01 14:54:50 -04:00
Nimisha Asthagiri
31a1ad4a09 Merge pull request #18999 from edx/arch/refactor-jwt-builder 
JWT Cookies
 2018-10-01 13:45:15 -04:00
Nimisha Asthagiri
02ba5fb0e8 Login service support for JWT Cookies 2018-10-01 13:08:40 -04:00
Feanil Patel
17d8410b41 Merge pull request #18985 from edx/feanil/remove_lms_migrate 
Remove tools that don't seem to be used.
 2018-09-27 14:26:05 -04:00
Feanil Patel
58139bfcdb Remove tools that don't seem to be used. 
These views and tools don't seem to be enabled and I think it's safe to
say that we have migrated to LMS+CMS.
 2018-09-21 10:37:48 -04:00
Feanil Patel
8bcdc65e4c Remove the cybersource processor that was deprecated in 2014. 2018-09-20 13:54:27 -04:00