bedrock/media/css/csrf-failure.scss

// This Source Code Form is subject to the terms of the Mozilla Public
// License, v. 2.0. If a copy of the MPL was not distributed with this
// file, You can obtain one at https://mozilla.org/MPL/2.0/.

@import '~@mozilla-protocol/core/protocol/css/includes/lib';

body {
    min-height: 350px;
    color: #000;
    background-color: #fff;
    font: 100%/1.5 sans-serif;
    padding: 40px;
}
Port CSRF page to Protocol (#7800) 2019-09-27 19:42:10 +03:00			`// This Source Code Form is subject to the terms of the Mozilla Public`
			`// License, v. 2.0. If a copy of the MPL was not distributed with this`
Add pre-commit hook for including the MPLv2 in all source code files (#10617) * 10614: Add pre-commit hook for including the MPLv2 Adds to Python, JS, SCSS, Jinja HTML, Fluent templates and shell scripts Note that the order of application of the hooks is important - we want to add a missing license before we check the formatting of files * 10614: Update MPLv2 comments on all templates to match standard format produced by pre-commit hook * Updates existing MPLv2 text to use a https URL * Amend a handful of Fluent templates that used a token instead of the string "Mozilla" - this standardised things; translation was not used or needed * Add missing MPLv2 where needed * Update three tests that regressed with these changes, above * 10614: Update pre-commit config to not add MPL to JS libraries; Remove MPL from the four files which should not have had it 2021-10-22 15:09:44 +03:00			`// file, You can obtain one at https://mozilla.org/MPL/2.0/.`
Port CSRF page to Protocol (#7800) 2019-09-27 19:42:10 +03:00
Migrate to Webpack (Issue #10310) 2020-06-01 15:56:19 +03:00			`@import '~@mozilla-protocol/core/protocol/css/includes/lib';`
Port CSRF page to Protocol (#7800) 2019-09-27 19:42:10 +03:00
Add SSO auth to Wagtail and Django admins (#14649) * Add mozilla-django-oidc to the project dependencies * Add SSO support to Bedrock for accessing Wagtail and Django admins * Plumbs in mozilla-django-oidc * Add custom login pages for Wagtail and Django admins that show an SSO button instead of form fields * Retain support for username + password login (for local development) * Tests * Add custom CSRF page to help explain SSO-related session loss, if it occurs Because a renewed/cycled OIDC/SSO session can zap a CSRF token and block a user from submitting a CMS edit, we need to provide a bit more information about what's happened. This changeset adds that, via a new template and a tiny view to serve it, plugged in as Django's default CSRF view Logged out users (who are very unlikely to see this anyway) get a simple version of the message, while logged in users get more detail/context. * Bump SSO lease time to 18 hours - trying to balance awkward signouts with wanting re-checks * Update test.env so that Wagtail and Django admins are available by default when urlconf is generated. Oddly the reload trick didn't work here * Update bedrock/base/templates/403_csrf.html Co-authored-by: Alex Gibson <alexgibson@users.noreply.github.com> * Make translation tagging consistent on new login templates * Move new CSRF view to use a CSS bundle, not inline CSS * Remove old, redundant CSRF view It looks like this was no longer in use. It wasn't specified as settings.CSRF_FAILURE_VIEW so wouldn't have been used/found by Django I believe * Drop translation markup from login templates to simplify * Don't count the test 404 and 500 views as nonlocaled, because we do localize them * Update bedrock/admin/templates/wagtailadmin/login.html * Tweak wording re SSO for login pages --------- Co-authored-by: Alex Gibson <alexgibson@users.noreply.github.com> 2024-06-07 13:47:33 +03:00			`body {`
Port CSRF page to Protocol (#7800) 2019-09-27 19:42:10 +03:00			`min-height: 350px;`
Add SSO auth to Wagtail and Django admins (#14649) * Add mozilla-django-oidc to the project dependencies * Add SSO support to Bedrock for accessing Wagtail and Django admins * Plumbs in mozilla-django-oidc * Add custom login pages for Wagtail and Django admins that show an SSO button instead of form fields * Retain support for username + password login (for local development) * Tests * Add custom CSRF page to help explain SSO-related session loss, if it occurs Because a renewed/cycled OIDC/SSO session can zap a CSRF token and block a user from submitting a CMS edit, we need to provide a bit more information about what's happened. This changeset adds that, via a new template and a tiny view to serve it, plugged in as Django's default CSRF view Logged out users (who are very unlikely to see this anyway) get a simple version of the message, while logged in users get more detail/context. * Bump SSO lease time to 18 hours - trying to balance awkward signouts with wanting re-checks * Update test.env so that Wagtail and Django admins are available by default when urlconf is generated. Oddly the reload trick didn't work here * Update bedrock/base/templates/403_csrf.html Co-authored-by: Alex Gibson <alexgibson@users.noreply.github.com> * Make translation tagging consistent on new login templates * Move new CSRF view to use a CSS bundle, not inline CSS * Remove old, redundant CSRF view It looks like this was no longer in use. It wasn't specified as settings.CSRF_FAILURE_VIEW so wouldn't have been used/found by Django I believe * Drop translation markup from login templates to simplify * Don't count the test 404 and 500 views as nonlocaled, because we do localize them * Update bedrock/admin/templates/wagtailadmin/login.html * Tweak wording re SSO for login pages --------- Co-authored-by: Alex Gibson <alexgibson@users.noreply.github.com> 2024-06-07 13:47:33 +03:00			`color: #000;`
			`background-color: #fff;`
			`font: 100%/1.5 sans-serif;`
			`padding: 40px;`
Port CSRF page to Protocol (#7800) 2019-09-27 19:42:10 +03:00			`}`