Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merge latest develop to master #285

Merged
merged 8 commits into from
May 25, 2023
Merged

Merge latest develop to master #285

merged 8 commits into from
May 25, 2023

Conversation

mikkokeskinen
Copy link
Contributor

No description provided.

@mikkokeskinen
Add ability to set the sub value in DummyFixedOidcBackend responses
10da8d4 
The sub value can be changed by setting a value to a setting named
"SOCIAL_AUTH_DUMMYFIXEDOIDCBACKEND_SUB_VALUE"
@mikkokeskinen
Return early in the check_existing_social_associations pipeline part
e1a66e8 
If nothing to do.
@mikkokeskinen
HP-1934 Prevent users from adding additional social auths
8fb2c82 
When the user was logged in with a backend that is in the
ALWAYS_REAUTHENTICATE_BACKENDS setting, there could be a case where
another log in with the same backend but with a different user would add
a second social auth to the user.

It happened if the user was still logged in to Tunnistamo but logged
out of the backend.
@mikkokeskinen
HP-1946 Update sqlparse from 0.4.2 to 0.4.4
069d51e 
sqlparse had one vulnerability:
GHSA-rrm6-wvj7-cwh2
@mikkokeskinen
HP-1946 Update django from 3.2.18 to 3.2.19
cf51a26 
django had one vulnerability:
https://nvd.nist.gov/vuln/detail/CVE-2023-31047
@mikkokeskinen
HP-1946 Update requests from 2.26.0 to 2.31.0
47b8d08 
requests had one vulnerability:
GHSA-j8r2-6x86-q33q
@mikkokeskinen
HP-1946 Update pillow from 9.3.0 to 9.5.0
ddab7ee 
pillow had one vulnerability:
https://security.snyk.io/vuln/SNYK-PYTHON-PILLOW-5489784
@codecov
Copy link

codecov bot commented May 25, 2023
edited

Codecov Report

Merging #285 (ddab7ee) into master (ad5cf7c) will increase coverage by 0.16%.
The diff coverage is 66.66%.

❗ Current head ddab7ee differs from pull request most recent head 22efe32. Consider uploading reports for the commit 22efe32 to get more accurate results

@@            Coverage Diff             @@
##           master     #285      +/-   ##
==========================================
+ Coverage   80.06%   80.23%   +0.16%     
==========================================
  Files          90       90              
  Lines        3753     3764      +11     
==========================================
+ Hits         3005     3020      +15     
+ Misses        748      744       -4
Impacted Files Coverage Δ
users/pipeline.py 76.42% <66.66%> (+4.33%) ⬆️

... and 1 file with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

akikoskinen
akikoskinen previously approved these changes May 25, 2023
View reviewed changes
@mikkokeskinen
HP-1915 Fix server error when ADFS doesn't return unique_name
22efe32 
clean_attributes function tried to call split function on None.

That was because if "unique_name" was not in attrs_in the attribute
mapping would set attrs['last_first_name'] to None and the following
code only checked that the key exists in the dict before using
attrs['last_first_name'] as a string.
@sonarcloud
Copy link

sonarcloud bot commented May 25, 2023

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

@akikoskinen akikoskinen self-requested a review May 25, 2023 12:39
@mikkokeskinen mikkokeskinen merged commit 22efe32 into master May 25, 2023
10 of 13 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@akikoskinen akikoskinen akikoskinen approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@mikkokeskinen @akikoskinen