Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
865656a7d7e80ddd247c9c5b4bed4dbd9957feea
edx-platform/openedx/core/djangoapps/user_authn
History
Zachary Trabookis 7b3525278e Fix SameSite cookie issue for LTI Provider. EW-449 
There was an issue where external LMS system (e.g. Canvas, Blackboard) that used Open edX LTI Provider calls had cookies blocked. This update fixes this issue by defining third-party cookies to have attributes of `Secure=True` and `SameSite=None`.

Details here: https://discuss.openedx.org/t/lti-xblock-and-samesite/759/5

(cherry picked from commit 28479a2966b87b16a25dbc96c19b6f5817d255de)
2020-04-13 17:14:15 +09:30
..
config
Run 2to3 -f future . -w
2019-12-30 10:35:30 -05:00
migrations
Run 2to3 -f future . -w
2019-12-30 10:35:30 -05:00
templates/user_authn/edx_ace/passwordreset/email
Move password reset logic and code to user_authn.
2019-11-05 10:03:22 -05:00
tests
fix tests
2020-02-27 08:58:45 -05:00
views
Fix SameSite cookie issue for LTI Provider. EW-449
2020-04-13 17:14:15 +09:30
__init__.py
Consolidate user login and authentication code
2018-09-15 03:21:39 -04:00
apps.py
Fix all E303 pep8 errors.
2019-12-30 12:25:38 -05:00
cookies.py
Run 2to3 -f future . -w
2019-12-30 10:35:30 -05:00
exceptions.py
Fix all E303 pep8 errors.
2019-12-30 12:25:38 -05:00
message_types.py
Fix all E303 pep8 errors.
2019-12-30 12:25:38 -05:00
README.rst
update READMEs to clarify responsibilities
2019-12-16 13:51:43 -05:00
urls_common.py
changes for password_reset_confirm deprecated view
2020-01-23 03:27:42 +05:00
urls.py
Run 2to3 -f future . -w
2019-12-30 10:35:30 -05:00
utils.py
Handle next and course_id in /login_ajax
2020-02-13 12:24:51 -05:00

README.rst 

Status: Maintenance

Responsibilities
================
The ``user_authn`` app contains user authentication related features such as login, registration, and credential management.

Direction: Extract
==================
Ideally this would be in its own service, but at this point, LMS is the home of all authentication related features.

At this time, these features are still plugged into Studio. Future clean-up in Studio is intended to make this an LMS only feature.

Glossary
========

More Documentation
==================
Reference in New Issue View Git Blame Copy Permalink