Index

Symbols

--access-log-format canaille-run command line option --access-token canaille-delete-token command line option canaille-get-token command line option canaille-set-token command line option --accesslog canaille-run command line option --acr canaille-delete-authorizationcode command line option canaille-get-authorizationcode command line option canaille-set-authorizationcode command line option --alpn-protocols canaille-run command line option --alt-svc-headers canaille-run command line option --amr canaille-delete-authorizationcode command line option canaille-get-authorizationcode command line option canaille-set-authorizationcode command line option --application-type canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --audience canaille-delete-client command line option canaille-delete-token command line option canaille-get-client command line option canaille-get-token command line option canaille-set-client command line option canaille-set-token command line option --auth-time canaille-delete-authorizationcode command line option canaille-get-authorizationcode command line option canaille-set-authorizationcode command line option --authorization-code-id canaille-delete-authorizationcode command line option canaille-get-authorizationcode command line option canaille-set-authorizationcode command line option --backlog canaille-run command line option --bind canaille-run command line option --ca-certs canaille-run command line option --certfile canaille-run command line option --challenge canaille-delete-authorizationcode command line option canaille-get-authorizationcode command line option canaille-set-authorizationcode command line option --challenge-method canaille-delete-authorizationcode command line option canaille-get-authorizationcode command line option canaille-set-authorizationcode command line option --ciphers canaille-run command line option --client canaille-delete-authorizationcode command line option canaille-delete-consent command line option canaille-delete-token command line option canaille-get-authorizationcode command line option canaille-get-consent command line option canaille-get-token command line option canaille-set-authorizationcode command line option canaille-set-consent command line option canaille-set-token command line option --client-id canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --client-id-issued-at canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --client-name canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --client-secret canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --client-secret-expires-at canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --client-uri canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --code canaille-delete-authorizationcode command line option canaille-get-authorizationcode command line option canaille-set-authorizationcode command line option --consent-id canaille-delete-consent command line option canaille-get-consent command line option canaille-set-consent command line option --contacts canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --created canaille-create-authorizationcode command line option canaille-create-client command line option canaille-create-consent command line option canaille-create-group command line option canaille-create-token command line option canaille-create-user command line option canaille-delete-authorizationcode command line option canaille-delete-client command line option canaille-delete-consent command line option canaille-delete-group command line option canaille-delete-token command line option canaille-delete-user command line option canaille-get-authorizationcode command line option canaille-get-client command line option canaille-get-consent command line option canaille-get-group command line option canaille-get-token command line option canaille-get-user command line option canaille-set-authorizationcode command line option canaille-set-client command line option canaille-set-consent command line option canaille-set-group command line option canaille-set-token command line option canaille-set-user command line option --crv canaille-jwk-create-ec command line option canaille-jwk-create-okp command line option --debug canaille-run command line option --default-acr-values canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --default-max-age canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --department canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --description canaille-delete-client command line option canaille-delete-group command line option canaille-get-client command line option canaille-get-group command line option canaille-set-client command line option canaille-set-group command line option --display-name canaille-delete-group command line option canaille-delete-user command line option canaille-get-group command line option canaille-get-user command line option canaille-set-group command line option canaille-set-user command line option --dogstatsd-tags canaille-run command line option --emails canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --employee-number canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --errorlog canaille-run command line option --family-name canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --format canaille-jwk-create-ec command line option canaille-jwk-create-oct command line option canaille-jwk-create-okp command line option canaille-jwk-create-rsa command line option --formatted-address canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --formatted-name canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --given-name canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --graceful-timeout canaille-run command line option --grant-types canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --group canaille-run command line option --groups canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --h11-max-incomplete-size canaille-run command line option --h11-pass-raw-headers canaille-run command line option --h2-max-concurrent-streams canaille-run command line option --h2-max-header-list-size canaille-run command line option --h2-max-inbound-frame-size canaille-run command line option --hotp-counter canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --id canaille-delete-authorizationcode command line option canaille-delete-client command line option canaille-delete-consent command line option canaille-delete-group command line option canaille-delete-token command line option canaille-delete-user command line option canaille-get-authorizationcode command line option canaille-get-client command line option canaille-get-consent command line option canaille-get-group command line option canaille-get-token command line option canaille-get-user command line option --id-token-encrypted-response-alg canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --id-token-encrypted-response-enc canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --id-token-signed-response-alg canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --ignore-errors canaille-create-authorizationcode command line option canaille-create-client command line option canaille-create-consent command line option canaille-create-group command line option canaille-create-token command line option canaille-create-user command line option canaille-delete-authorizationcode command line option canaille-delete-client command line option canaille-delete-consent command line option canaille-delete-group command line option canaille-delete-token command line option canaille-delete-user command line option canaille-get-authorizationcode command line option canaille-get-client command line option canaille-get-consent command line option canaille-get-group command line option canaille-get-token command line option canaille-get-user command line option canaille-set-authorizationcode command line option canaille-set-client command line option canaille-set-consent command line option canaille-set-group command line option canaille-set-token command line option canaille-set-user command line option --include-date-header canaille-run command line option --include-server-header canaille-run command line option --initiate-login-uri canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --insecure-bind canaille-run command line option --issue-date canaille-delete-authorizationcode command line option canaille-delete-consent command line option canaille-delete-token command line option canaille-get-authorizationcode command line option canaille-get-consent command line option canaille-get-token command line option canaille-set-authorizationcode command line option canaille-set-consent command line option canaille-set-token command line option --jwks canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --jwks-uri canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --keep-alive-max-requests canaille-run command line option --keep-alive-timeout canaille-run command line option --keyfile canaille-run command line option --keyfile-password canaille-run command line option --last-modified canaille-create-authorizationcode command line option canaille-create-client command line option canaille-create-consent command line option canaille-create-group command line option canaille-create-token command line option canaille-create-user command line option canaille-delete-authorizationcode command line option canaille-delete-client command line option canaille-delete-consent command line option canaille-delete-group command line option canaille-delete-token command line option canaille-delete-user command line option canaille-get-authorizationcode command line option canaille-get-client command line option canaille-get-consent command line option canaille-get-group command line option canaille-get-token command line option canaille-get-user command line option canaille-set-authorizationcode command line option canaille-set-client command line option canaille-set-consent command line option canaille-set-group command line option canaille-set-token command line option canaille-set-user command line option --last-otp-login canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option

--lifetime canaille-delete-authorizationcode command line option canaille-delete-token command line option canaille-get-authorizationcode command line option canaille-get-token command line option canaille-set-authorizationcode command line option canaille-set-token command line option --locality canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --lock-date canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --logconfig canaille-run command line option --logconfig-dict canaille-run command line option --loglevel canaille-run command line option --logo-uri canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --max-app-queue-size canaille-run command line option --max-requests canaille-run command line option --max-requests-jitter canaille-run command line option --members canaille-delete-group command line option canaille-get-group command line option canaille-set-group command line option --nb canaille-populate command line option --nb-users-max canaille-populate-groups command line option --noconfirm canaille-delete-authorizationcode command line option canaille-delete-client command line option canaille-delete-consent command line option canaille-delete-group command line option canaille-delete-token command line option canaille-delete-user command line option --nonce canaille-delete-authorizationcode command line option canaille-get-authorizationcode command line option canaille-set-authorizationcode command line option --one-time-password canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --one-time-password-emission-date canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --organization canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --owner canaille-delete-group command line option canaille-get-group command line option canaille-set-group command line option --password canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --password-failure-timestamps canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --password-last-update canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --path canaille-config-dump command line option --phone-numbers canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --photo canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --pid-path canaille-run command line option --policy-uri canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --post-logout-redirect-uris canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --postal-code canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --preferred-language canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --processes canaille-worker command line option --profile-url canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --proxy-mode canaille-run command line option --proxy-trusted-hops canaille-run command line option --queues canaille-worker command line option --quic-bind canaille-run command line option --quiet canaille-create-authorizationcode command line option canaille-create-client command line option canaille-create-consent command line option canaille-create-group command line option canaille-create-token command line option canaille-create-user command line option canaille-set-authorizationcode command line option canaille-set-client command line option canaille-set-consent command line option canaille-set-group command line option canaille-set-token command line option canaille-set-user command line option --read-timeout canaille-run command line option --redirect-uri canaille-delete-authorizationcode command line option canaille-get-authorizationcode command line option canaille-set-authorizationcode command line option --redirect-uris canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --refresh-token canaille-delete-token command line option canaille-get-token command line option canaille-set-token command line option --region canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --request-object-encryption-alg canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --request-object-encryption-enc canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --request-object-signing-alg canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --request-uris canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --require-auth-time canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --require-signed-request-object canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --response-type canaille-delete-authorizationcode command line option canaille-get-authorizationcode command line option canaille-set-authorizationcode command line option --response-types canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --revokation-date canaille-delete-authorizationcode command line option canaille-delete-consent command line option canaille-delete-token command line option canaille-get-authorizationcode command line option canaille-get-consent command line option canaille-get-token command line option canaille-set-authorizationcode command line option canaille-set-consent command line option canaille-set-token command line option --root-path canaille-run command line option --scope canaille-delete-authorizationcode command line option canaille-delete-client command line option canaille-delete-consent command line option canaille-delete-token command line option canaille-get-authorizationcode command line option canaille-get-client command line option canaille-get-consent command line option canaille-get-token command line option canaille-set-authorizationcode command line option canaille-set-client command line option canaille-set-consent command line option canaille-set-token command line option --secret-token canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --sector-identifier-uri canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --server-names canaille-run command line option --shutdown-timeout canaille-run command line option --size canaille-jwk-create-oct command line option canaille-jwk-create-rsa command line option --software-id canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --software-version canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --ssl-handshake-timeout canaille-run command line option --startup-timeout canaille-run command line option --statsd-host canaille-run command line option --statsd-prefix canaille-run command line option --street canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --subject canaille-delete-authorizationcode command line option canaille-delete-consent command line option canaille-delete-token command line option canaille-get-authorizationcode command line option canaille-get-consent command line option canaille-get-token command line option canaille-set-authorizationcode command line option canaille-set-consent command line option canaille-set-token command line option --subject-type canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --threads canaille-worker command line option --title canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --token-endpoint-auth-method canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --token-endpoint-auth-signing-alg canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --token-id canaille-delete-token command line option canaille-get-token command line option canaille-set-token command line option --tos-uri canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --type canaille-delete-token command line option canaille-get-token command line option canaille-set-token command line option --umask canaille-run command line option --use-reloader canaille-run command line option --user canaille-run command line option --user-name canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --userinfo-encrypted-response-alg canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --userinfo-encrypted-response-enc canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --userinfo-signed-response-alg canaille-delete-client command line option canaille-get-client command line option canaille-set-client command line option --verbose canaille-worker command line option --verify-flags canaille-run command line option --verify-mode canaille-run command line option --webauthn-credentials canaille-delete-user command line option canaille-get-user command line option canaille-set-user command line option --websocket-max-message-size canaille-run command line option --websocket-ping-interval canaille-run command line option --worker-class canaille-run command line option --workers canaille-run command line option --wsgi-max-body-size canaille-run command line option -p canaille-worker command line option -Q canaille-worker command line option -t canaille-worker command line option -v canaille-worker command line option

A

aaguid (canaille.core.models.WebAuthnCredential attribute) ACCESS_LOG_FORMAT (canaille.hypercorn.configuration.HypercornSettings attribute) ACCESSLOG (canaille.hypercorn.configuration.HypercornSettings attribute) ACL (canaille.core.configuration.CoreSettings attribute) acr (canaille.oidc.basemodels.AuthorizationCode attribute) ACTIVE_JWKS (canaille.oidc.configuration.OIDCSettings attribute) add_captcha_fields() (in module canaille.core.endpoints.forms) ADDRESS (canaille.oidc.configuration.UserInfoMappingSettings attribute) ADMIN_EMAIL (canaille.core.configuration.CoreSettings attribute)

ALPN_PROTOCOLS (canaille.hypercorn.configuration.HypercornSettings attribute) ALT_SVC_HEADERS (canaille.hypercorn.configuration.HypercornSettings attribute) amr (canaille.oidc.basemodels.AuthorizationCode attribute) application_type (canaille.oidc.basemodels.Client attribute) auth_time (canaille.oidc.basemodels.AuthorizationCode attribute) AUTHENTICATION_FACTORS (canaille.core.configuration.CoreSettings attribute) AuthorizationCode (class in canaille.oidc.basemodels) AuthorizeForm (class in canaille.oidc.endpoints.forms) AUTO_MIGRATE (canaille.backends.sql.configuration.SQLSettings attribute)

B

BackendModel (class in canaille.backends.models) BACKLOG (canaille.hypercorn.configuration.HypercornSettings attribute) BIND (canaille.hypercorn.configuration.HypercornSettings attribute) BIND_DN (canaille.backends.ldap.configuration.LDAPSettings attribute)

BIND_PW (canaille.backends.ldap.configuration.LDAPSettings attribute) BROKER (canaille.app.configuration.RootSettings attribute) BROKER_NAME canaille-worker command line option BROKER_URL (canaille.app.configuration.RootSettings attribute)

C

CA_CERTS (canaille.hypercorn.configuration.HypercornSettings attribute) CACHE_TYPE (canaille.app.configuration.RootSettings attribute) can() (canaille.core.models.User method) canaille-config-dump command line option --path canaille-create-authorizationcode command line option --created --ignore-errors --last-modified --quiet canaille-create-client command line option --created --ignore-errors --last-modified --quiet canaille-create-consent command line option --created --ignore-errors --last-modified --quiet canaille-create-group command line option --created --ignore-errors --last-modified --quiet canaille-create-token command line option --created --ignore-errors --last-modified --quiet canaille-create-user command line option --created --ignore-errors --last-modified --quiet canaille-delete-authorizationcode command line option --acr --amr --auth-time --authorization-code-id --challenge --challenge-method --client --code --created --id --ignore-errors --issue-date --last-modified --lifetime --noconfirm --nonce --redirect-uri --response-type --revokation-date --scope --subject canaille-delete-client command line option --application-type --audience --client-id --client-id-issued-at --client-name --client-secret --client-secret-expires-at --client-uri --contacts --created --default-acr-values --default-max-age --description --grant-types --id --id-token-encrypted-response-alg --id-token-encrypted-response-enc --id-token-signed-response-alg --ignore-errors --initiate-login-uri --jwks --jwks-uri --last-modified --logo-uri --noconfirm --policy-uri --post-logout-redirect-uris --redirect-uris --request-object-encryption-alg --request-object-encryption-enc --request-object-signing-alg --request-uris --require-auth-time --require-signed-request-object --response-types --scope --sector-identifier-uri --software-id --software-version --subject-type --token-endpoint-auth-method --token-endpoint-auth-signing-alg --tos-uri --userinfo-encrypted-response-alg --userinfo-encrypted-response-enc --userinfo-signed-response-alg canaille-delete-consent command line option --client --consent-id --created --id --ignore-errors --issue-date --last-modified --noconfirm --revokation-date --scope --subject canaille-delete-group command line option --created --description --display-name --id --ignore-errors --last-modified --members --noconfirm --owner canaille-delete-token command line option --access-token --audience --client --created --id --ignore-errors --issue-date --last-modified --lifetime --noconfirm --refresh-token --revokation-date --scope --subject --token-id --type canaille-delete-user command line option --created --department --display-name --emails --employee-number --family-name --formatted-address --formatted-name --given-name --groups --hotp-counter --id --ignore-errors --last-modified --last-otp-login --locality --lock-date --noconfirm --one-time-password --one-time-password-emission-date --organization --password --password-failure-timestamps --password-last-update --phone-numbers --photo --postal-code --preferred-language --profile-url --region --secret-token --street --title --user-name --webauthn-credentials canaille-dump command line option MODEL canaille-get-authorizationcode command line option --acr --amr --auth-time --authorization-code-id --challenge --challenge-method --client --code --created --id --ignore-errors --issue-date --last-modified --lifetime --nonce --redirect-uri --response-type --revokation-date --scope --subject canaille-get-client command line option --application-type --audience --client-id --client-id-issued-at --client-name --client-secret --client-secret-expires-at --client-uri --contacts --created --default-acr-values --default-max-age --description --grant-types --id --id-token-encrypted-response-alg --id-token-encrypted-response-enc --id-token-signed-response-alg --ignore-errors --initiate-login-uri --jwks --jwks-uri --last-modified --logo-uri --policy-uri --post-logout-redirect-uris --redirect-uris --request-object-encryption-alg --request-object-encryption-enc --request-object-signing-alg --request-uris --require-auth-time --require-signed-request-object --response-types --scope --sector-identifier-uri --software-id --software-version --subject-type --token-endpoint-auth-method --token-endpoint-auth-signing-alg --tos-uri --userinfo-encrypted-response-alg --userinfo-encrypted-response-enc --userinfo-signed-response-alg canaille-get-consent command line option --client --consent-id --created --id --ignore-errors --issue-date --last-modified --revokation-date --scope --subject canaille-get-group command line option --created --description --display-name --id --ignore-errors --last-modified --members --owner canaille-get-token command line option --access-token --audience --client --created --id --ignore-errors --issue-date --last-modified --lifetime --refresh-token --revokation-date --scope --subject --token-id --type canaille-get-user command line option --created --department --display-name --emails --employee-number --family-name --formatted-address --formatted-name --given-name --groups --hotp-counter --id --ignore-errors --last-modified --last-otp-login --locality --lock-date --one-time-password --one-time-password-emission-date --organization --password --password-failure-timestamps --password-last-update --phone-numbers --photo --postal-code --preferred-language --profile-url --region --secret-token --street --title --user-name --webauthn-credentials

canaille-jwk-create-ec command line option --crv --format canaille-jwk-create-oct command line option --format --size canaille-jwk-create-okp command line option --crv --format canaille-jwk-create-rsa command line option --format --size canaille-populate command line option --nb canaille-populate-groups command line option --nb-users-max canaille-reset-otp command line option IDENTIFIER canaille-run command line option --access-log-format --accesslog --alpn-protocols --alt-svc-headers --backlog --bind --ca-certs --certfile --ciphers --debug --dogstatsd-tags --errorlog --graceful-timeout --group --h11-max-incomplete-size --h11-pass-raw-headers --h2-max-concurrent-streams --h2-max-header-list-size --h2-max-inbound-frame-size --include-date-header --include-server-header --insecure-bind --keep-alive-max-requests --keep-alive-timeout --keyfile --keyfile-password --logconfig --logconfig-dict --loglevel --max-app-queue-size --max-requests --max-requests-jitter --pid-path --proxy-mode --proxy-trusted-hops --quic-bind --read-timeout --root-path --server-names --shutdown-timeout --ssl-handshake-timeout --startup-timeout --statsd-host --statsd-prefix --umask --use-reloader --user --verify-flags --verify-mode --websocket-max-message-size --websocket-ping-interval --worker-class --workers --wsgi-max-body-size canaille-set-authorizationcode command line option --acr --amr --auth-time --authorization-code-id --challenge --challenge-method --client --code --created --ignore-errors --issue-date --last-modified --lifetime --nonce --quiet --redirect-uri --response-type --revokation-date --scope --subject IDENTIFIER canaille-set-client command line option --application-type --audience --client-id --client-id-issued-at --client-name --client-secret --client-secret-expires-at --client-uri --contacts --created --default-acr-values --default-max-age --description --grant-types --id-token-encrypted-response-alg --id-token-encrypted-response-enc --id-token-signed-response-alg --ignore-errors --initiate-login-uri --jwks --jwks-uri --last-modified --logo-uri --policy-uri --post-logout-redirect-uris --quiet --redirect-uris --request-object-encryption-alg --request-object-encryption-enc --request-object-signing-alg --request-uris --require-auth-time --require-signed-request-object --response-types --scope --sector-identifier-uri --software-id --software-version --subject-type --token-endpoint-auth-method --token-endpoint-auth-signing-alg --tos-uri --userinfo-encrypted-response-alg --userinfo-encrypted-response-enc --userinfo-signed-response-alg IDENTIFIER canaille-set-consent command line option --client --consent-id --created --ignore-errors --issue-date --last-modified --quiet --revokation-date --scope --subject IDENTIFIER canaille-set-group command line option --created --description --display-name --ignore-errors --last-modified --members --owner --quiet IDENTIFIER canaille-set-token command line option --access-token --audience --client --created --ignore-errors --issue-date --last-modified --lifetime --quiet --refresh-token --revokation-date --scope --subject --token-id --type IDENTIFIER canaille-set-user command line option --created --department --display-name --emails --employee-number --family-name --formatted-address --formatted-name --given-name --groups --hotp-counter --ignore-errors --last-modified --last-otp-login --locality --lock-date --one-time-password --one-time-password-emission-date --organization --password --password-failure-timestamps --password-last-update --phone-numbers --photo --postal-code --preferred-language --profile-url --quiet --region --secret-token --street --title --user-name --webauthn-credentials IDENTIFIER canaille-worker command line option --processes --queues --threads --verbose -p -Q -t -v BROKER_NAME canaille.backends.models module canaille.core.endpoints.forms module canaille.core.models module canaille.oidc.basemodels module canaille.oidc.endpoints.forms module CANAILLE_CONFIG CAPTCHA_ENABLED (canaille.core.configuration.CoreSettings attribute) CAPTCHA_FAILURE_THRESHOLD (canaille.core.configuration.CoreSettings attribute) CAPTCHA_LENGTH (canaille.core.configuration.CoreSettings attribute) CaptchaField (class in canaille.core.endpoints.forms) CERTFILE (canaille.hypercorn.configuration.HypercornSettings attribute) CIPHERS (canaille.hypercorn.configuration.HypercornSettings attribute) Client (class in canaille.oidc.basemodels) client_id (canaille.oidc.basemodels.Client attribute) client_id_issued_at (canaille.oidc.basemodels.Client attribute) client_name (canaille.oidc.basemodels.Client attribute) client_secret (canaille.oidc.basemodels.Client attribute) client_secret_expires_at (canaille.oidc.basemodels.Client attribute) client_uri (canaille.oidc.basemodels.Client attribute) ClientAddForm (class in canaille.oidc.endpoints.forms) ClientEditForm (class in canaille.oidc.endpoints.forms) Consent (class in canaille.oidc.basemodels) contacts (canaille.oidc.basemodels.Client attribute) created (canaille.backends.models.Model attribute) created_at (canaille.core.models.WebAuthnCredential attribute) CreateGroupForm (class in canaille.core.endpoints.forms) credential_id (canaille.core.models.WebAuthnCredential attribute)

D

DATABASE (canaille.core.configuration.CoreSettings attribute) DATABASE_URI (canaille.backends.sql.configuration.SQLSettings attribute) DEBUG (canaille.app.configuration.RootSettings attribute) (canaille.hypercorn.configuration.HypercornSettings attribute) default_acr_values (canaille.oidc.basemodels.Client attribute) default_max_age (canaille.oidc.basemodels.Client attribute)

DELETE_ACCOUNT (canaille.core.configuration.Permission attribute) DeleteGroupMemberForm (class in canaille.core.endpoints.forms) department (canaille.core.models.User attribute) display_name (canaille.core.models.Group attribute) (canaille.core.models.User attribute) DOGSTATSD_TAGS (canaille.hypercorn.configuration.HypercornSettings attribute) DYNAMIC_CLIENT_REGISTRATION_OPEN (canaille.oidc.configuration.OIDCSettings attribute)

E

EDIT_SELF (canaille.core.configuration.Permission attribute) EditGroupForm (class in canaille.core.endpoints.forms) EMAIL (canaille.oidc.configuration.UserInfoMappingSettings attribute) EMAIL_CONFIRMATION (canaille.core.configuration.CoreSettings attribute) EmailConfirmationForm (class in canaille.core.endpoints.forms) emails (canaille.core.models.User attribute) employee_number (canaille.core.models.User attribute) ENABLE_CLIENT (canaille.scim.configuration.SCIMSettings attribute)

ENABLE_INTRUDER_LOCKOUT (canaille.core.configuration.CoreSettings attribute) ENABLE_OIDC (canaille.oidc.configuration.OIDCSettings attribute) ENABLE_PASSWORD_COMPROMISSION_CHECK (canaille.core.configuration.CoreSettings attribute) ENABLE_PASSWORD_RECOVERY (canaille.core.configuration.CoreSettings attribute) ENABLE_REGISTRATION (canaille.core.configuration.CoreSettings attribute) ENABLE_SERVER (canaille.scim.configuration.SCIMSettings attribute) environment variable CANAILLE_CONFIG, [1] ERRORLOG (canaille.hypercorn.configuration.HypercornSettings attribute)

F

family_name (canaille.core.models.User attribute) FAMILY_NAME (canaille.oidc.configuration.UserInfoMappingSettings attribute) FAVICON (canaille.core.configuration.CoreSettings attribute) Features (class in canaille.app.features) FIDO_ATTESTATION (canaille.core.configuration.CoreSettings attribute) FIDO_MAX_CREDENTIALS (canaille.core.configuration.CoreSettings attribute) FIDO_TIMEOUT (canaille.core.configuration.CoreSettings attribute) FIDO_USER_VERIFICATION (canaille.core.configuration.CoreSettings attribute)

FILTER (canaille.core.configuration.ACLSettings attribute) FirstLoginForm (class in canaille.core.endpoints.forms) FORCE_HTTPS (canaille.core.configuration.CoreSettings attribute) ForgottenPasswordCodeForm (class in canaille.core.endpoints.forms) ForgottenPasswordForm (class in canaille.core.endpoints.forms) formatted_address (canaille.core.models.User attribute) formatted_name (canaille.core.models.User attribute) FROM_ADDR (canaille.core.configuration.SMTPSettings attribute)

G

given_name (canaille.core.models.User attribute) GIVEN_NAME (canaille.oidc.configuration.UserInfoMappingSettings attribute) GRACEFUL_TIMEOUT (canaille.hypercorn.configuration.HypercornSettings attribute) grant_types (canaille.oidc.basemodels.Client attribute) GROUP (canaille.hypercorn.configuration.HypercornSettings attribute) Group (class in canaille.core.models)

GROUP_BASE (canaille.backends.ldap.configuration.LDAPSettings attribute) GROUP_CLASS (canaille.backends.ldap.configuration.LDAPSettings attribute) GROUP_NAME_ATTRIBUTE (canaille.backends.ldap.configuration.LDAPSettings attribute) GROUP_RDN (canaille.backends.ldap.configuration.LDAPSettings attribute) GroupInvitationForm (class in canaille.core.endpoints.forms) groups (canaille.core.models.User attribute)

H

H11_MAX_INCOMPLETE_SIZE (canaille.hypercorn.configuration.HypercornSettings attribute) H11_PASS_RAW_HEADERS (canaille.hypercorn.configuration.HypercornSettings attribute) H2_MAX_CONCURRENT_STREAMS (canaille.hypercorn.configuration.HypercornSettings attribute) H2_MAX_HEADER_LIST_SIZE (canaille.hypercorn.configuration.HypercornSettings attribute) H2_MAX_INBOUND_FRAME_SIZE (canaille.hypercorn.configuration.HypercornSettings attribute) has_account_lockability (canaille.app.features.Features property) has_captcha (canaille.app.features.Features property) has_email_confirmation (canaille.app.features.Features property) has_fido (canaille.app.features.Features property) has_intruder_lockout (canaille.app.features.Features property) has_oidc (canaille.app.features.Features property) has_otp (canaille.app.features.Features property)

has_password() (canaille.core.models.User method) has_password_recovery (canaille.app.features.Features property) has_registration (canaille.app.features.Features property) has_scim_client (canaille.app.features.Features property) has_scim_server (canaille.app.features.Features property) has_smtp (canaille.app.features.Features property) has_trusted_hosts (canaille.app.features.Features property) has_webauthn_credential() (canaille.core.models.User method) HIDE_INVALID_LOGINS (canaille.core.configuration.CoreSettings attribute) HOST (canaille.core.configuration.SMPPSettings attribute) (canaille.core.configuration.SMTPSettings attribute) hotp_counter (canaille.core.models.User attribute) HTMX (canaille.core.configuration.CoreSettings attribute)

I

id (canaille.backends.models.Model attribute) id_token_encrypted_response_alg (canaille.oidc.basemodels.Client attribute) id_token_encrypted_response_enc (canaille.oidc.basemodels.Client attribute) id_token_signed_response_alg (canaille.oidc.basemodels.Client attribute) IDENTIFIER canaille-reset-otp command line option canaille-set-authorizationcode command line option canaille-set-client command line option canaille-set-consent command line option canaille-set-group command line option canaille-set-token command line option canaille-set-user command line option

identifier (canaille.backends.models.Model property) IMPERSONATE_USERS (canaille.core.configuration.Permission attribute) INACTIVE_JWKS (canaille.oidc.configuration.OIDCSettings attribute) INCLUDE_DATE_HEADER (canaille.hypercorn.configuration.HypercornSettings attribute) INCLUDE_SERVER_HEADER (canaille.hypercorn.configuration.HypercornSettings attribute) initiate_login_uri (canaille.oidc.basemodels.Client attribute) INSECURE_BIND (canaille.hypercorn.configuration.HypercornSettings attribute) INVITATION_EXPIRATION (canaille.core.configuration.CoreSettings attribute) InvitationForm (class in canaille.core.endpoints.forms)

J

JAVASCRIPT (canaille.core.configuration.CoreSettings attribute) JoinForm (class in canaille.core.endpoints.forms)

JoinFormWithCaptcha (class in canaille.core.endpoints.forms) jwks (canaille.oidc.basemodels.Client attribute) jwks_uri (canaille.oidc.basemodels.Client attribute)

K

KEEP_ALIVE_MAX_REQUESTS (canaille.hypercorn.configuration.HypercornSettings attribute) KEEP_ALIVE_TIMEOUT (canaille.hypercorn.configuration.HypercornSettings attribute)

KEYFILE (canaille.hypercorn.configuration.HypercornSettings attribute) KEYFILE_PASSWORD (canaille.hypercorn.configuration.HypercornSettings attribute)

L

LANGUAGE (canaille.core.configuration.CoreSettings attribute) last_modified (canaille.backends.models.Model attribute) last_otp_login (canaille.core.models.User attribute) last_used_at (canaille.core.models.WebAuthnCredential attribute) LOCALE (canaille.oidc.configuration.UserInfoMappingSettings attribute) locality (canaille.core.models.User attribute) lock_date (canaille.core.models.User attribute) locked (canaille.core.models.User property) LOGCONFIG (canaille.hypercorn.configuration.HypercornSettings attribute)

LOGCONFIG_DICT (canaille.hypercorn.configuration.HypercornSettings attribute) LOGGING (canaille.core.configuration.CoreSettings attribute) LOGIN (canaille.core.configuration.SMPPSettings attribute) (canaille.core.configuration.SMTPSettings attribute) LOGIN_ATTRIBUTES (canaille.core.configuration.CoreSettings attribute) LoginForm (class in canaille.core.endpoints.forms) LOGLEVEL (canaille.hypercorn.configuration.HypercornSettings attribute) LOGO (canaille.core.configuration.CoreSettings attribute) logo_uri (canaille.oidc.basemodels.Client attribute) LogoutForm (class in canaille.oidc.endpoints.forms)

M

MANAGE_ALL_GROUPS (canaille.core.configuration.Permission attribute) MANAGE_OIDC (canaille.core.configuration.Permission attribute) MANAGE_OWN_GROUPS (canaille.core.configuration.Permission attribute) MANAGE_USERS (canaille.core.configuration.Permission attribute) MAX_APP_QUEUE_SIZE (canaille.hypercorn.configuration.HypercornSettings attribute) MAX_PASSWORD_LENGTH (canaille.core.configuration.CoreSettings attribute) MAX_REQUESTS (canaille.hypercorn.configuration.HypercornSettings attribute) MAX_REQUESTS_JITTER (canaille.hypercorn.configuration.HypercornSettings attribute) members (canaille.core.models.Group attribute)

MIN_PASSWORD_LENGTH (canaille.core.configuration.CoreSettings attribute) MODEL canaille-dump command line option Model (class in canaille.backends.models) module canaille.backends.models canaille.core.endpoints.forms canaille.core.models canaille.oidc.basemodels canaille.oidc.endpoints.forms

N

NAME (canaille.core.configuration.CoreSettings attribute)

name (canaille.core.models.WebAuthnCredential attribute) NAME (canaille.oidc.configuration.UserInfoMappingSettings attribute)

O

one_time_password (canaille.core.models.User attribute) one_time_password_emission_date (canaille.core.models.User attribute) organization (canaille.core.models.User attribute)

OTP_LIFETIME (canaille.core.configuration.CoreSettings attribute) OTP_METHOD (canaille.core.configuration.CoreSettings attribute) owner (canaille.core.models.Group attribute)

P

page (canaille.app.forms.TableForm attribute) PASSWORD (canaille.core.configuration.SMPPSettings attribute) (canaille.core.configuration.SMTPSettings attribute) password (canaille.core.models.User attribute) PASSWORD_COMPROMISSION_CHECK_API_URL (canaille.core.configuration.CoreSettings attribute) password_failure_timestamps (canaille.core.models.User attribute) PASSWORD_HASH_PARAMS (canaille.backends.sql.configuration.SQLSettings attribute) password_last_update (canaille.core.models.User attribute) PASSWORD_LIFETIME (canaille.core.configuration.CoreSettings attribute) PASSWORD_SCHEMES (canaille.backends.sql.configuration.SQLSettings attribute) PasswordForm (class in canaille.core.endpoints.forms) PasswordResetForm (class in canaille.core.endpoints.forms) PasswordWithCaptchaForm (class in canaille.core.endpoints.forms) PERMANENT_SESSION_LIFETIME (canaille.app.configuration.RootSettings attribute) Permission (class in canaille.core.configuration) PERMISSIONS (canaille.core.configuration.ACLSettings attribute) PHONE_NUMBER (canaille.oidc.configuration.UserInfoMappingSettings attribute) phone_numbers (canaille.core.models.User attribute) photo (canaille.core.models.User attribute) PICTURE (canaille.oidc.configuration.UserInfoMappingSettings attribute)

PID_PATH (canaille.hypercorn.configuration.HypercornSettings attribute) policy_uri (canaille.oidc.basemodels.Client attribute) POOL_MAX_LIFETIME (canaille.backends.ldap.configuration.LDAPSettings attribute) POOL_MAX_OVERFLOW (canaille.backends.sql.configuration.SQLSettings attribute) POOL_PRE_PING (canaille.backends.sql.configuration.SQLSettings attribute) POOL_RECYCLE (canaille.backends.sql.configuration.SQLSettings attribute) POOL_RETRY_DELAY (canaille.backends.ldap.configuration.LDAPSettings attribute) POOL_RETRY_MAX (canaille.backends.ldap.configuration.LDAPSettings attribute) POOL_SIZE (canaille.backends.ldap.configuration.LDAPSettings attribute) (canaille.backends.sql.configuration.SQLSettings attribute) PORT (canaille.core.configuration.SMPPSettings attribute) (canaille.core.configuration.SMTPSettings attribute) post_logout_redirect_uris (canaille.oidc.basemodels.Client attribute) postal_code (canaille.core.models.User attribute) preferred_language (canaille.core.models.User attribute) PREFERRED_URL_SCHEME (canaille.app.configuration.RootSettings attribute) PREFERRED_USERNAME (canaille.oidc.configuration.UserInfoMappingSettings attribute) profile_url (canaille.core.models.User attribute) PROXY_MODE (canaille.hypercorn.configuration.HypercornSettings attribute) PROXY_TRUSTED_HOPS (canaille.hypercorn.configuration.HypercornSettings attribute) public_key (canaille.core.models.WebAuthnCredential attribute)

Q

query (canaille.app.forms.TableForm attribute)

QUIC_BIND (canaille.hypercorn.configuration.HypercornSettings attribute)

R

READ (canaille.core.configuration.ACLSettings attribute) READ_TIMEOUT (canaille.hypercorn.configuration.HypercornSettings attribute) readable_fields (canaille.core.models.User property) redirect_uris (canaille.oidc.basemodels.Client attribute) region (canaille.core.models.User attribute) request_object_encryption_alg (canaille.oidc.basemodels.Client attribute) request_object_encryption_enc (canaille.oidc.basemodels.Client attribute) request_object_signing_alg (canaille.oidc.basemodels.Client attribute) request_uris (canaille.oidc.basemodels.Client attribute) require_auth_time (canaille.oidc.basemodels.Client attribute) REQUIRE_NONCE (canaille.oidc.configuration.OIDCSettings attribute) require_signed_request_object (canaille.oidc.basemodels.Client attribute) response_types (canaille.oidc.basemodels.Client attribute) RFC RFC 7523 RFC 7591 RFC 7592 RFC 7642 RFC 7643 RFC 7644 Section 3.11, [1], [2] RFC 7644 Section 3.14 RFC 7644 Section 3.4.2.2 RFC 7644 Section 3.4.2.3 RFC 7644 Section 3.4.2.4 RFC 7644 Section 3.4.2.5 RFC 7644 Section 3.4.3 RFC 9101 RFC 9207

ROOT_DN (canaille.backends.ldap.configuration.LDAPSettings attribute) ROOT_PATH (canaille.hypercorn.configuration.HypercornSettings attribute)

S

scope (canaille.oidc.basemodels.Client attribute) SECRET_KEY (canaille.app.configuration.RootSettings attribute) secret_token (canaille.core.models.User attribute) sector_identifier_uri (canaille.oidc.basemodels.Client attribute) SENTRY_DSN (canaille.core.configuration.CoreSettings attribute) SERVER_NAME (canaille.app.configuration.RootSettings attribute) SERVER_NAMES (canaille.hypercorn.configuration.HypercornSettings attribute) SESSION_TYPE (canaille.app.configuration.RootSettings attribute) SHUTDOWN_TIMEOUT (canaille.hypercorn.configuration.HypercornSettings attribute) sign_count (canaille.core.models.WebAuthnCredential attribute) SMPP (canaille.core.configuration.CoreSettings attribute)

SMTP (canaille.core.configuration.CoreSettings attribute) software_id (canaille.oidc.basemodels.Client attribute) software_version (canaille.oidc.basemodels.Client attribute) SSL (canaille.core.configuration.SMTPSettings attribute) SSL_HANDSHAKE_TIMEOUT (canaille.hypercorn.configuration.HypercornSettings attribute) STARTUP_TIMEOUT (canaille.hypercorn.configuration.HypercornSettings attribute) STATSD_HOST (canaille.hypercorn.configuration.HypercornSettings attribute) STATSD_PREFIX (canaille.hypercorn.configuration.HypercornSettings attribute) street (canaille.core.models.User attribute) string_code() (in module canaille.core.models) SUB (canaille.oidc.configuration.UserInfoMappingSettings attribute) subject_type (canaille.oidc.basemodels.Client attribute)

T

TableForm (class in canaille.app.forms) THEME (canaille.core.configuration.CoreSettings attribute) TIMEOUT (canaille.backends.ldap.configuration.LDAPSettings attribute) TIMEZONE (canaille.core.configuration.CoreSettings attribute) title (canaille.core.models.User attribute) TLS (canaille.core.configuration.SMTPSettings attribute) Token (class in canaille.oidc.basemodels) token_endpoint_auth_method (canaille.oidc.basemodels.Client attribute)

token_endpoint_auth_signing_alg (canaille.oidc.basemodels.Client attribute) TokenRevokationForm (class in canaille.oidc.endpoints.forms) tos_uri (canaille.oidc.basemodels.Client attribute) TOTP_LIFETIME (canaille.core.configuration.CoreSettings attribute) transports (canaille.core.models.WebAuthnCredential attribute) trusted (canaille.oidc.basemodels.Client property) TRUSTED_DOMAINS (canaille.oidc.configuration.OIDCSettings attribute) TRUSTED_HOSTS (canaille.app.configuration.RootSettings attribute) TwoFactorForm (class in canaille.core.endpoints.forms)

U

UMASK (canaille.hypercorn.configuration.HypercornSettings attribute) UPDATED_AT (canaille.oidc.configuration.UserInfoMappingSettings attribute) URI (canaille.backends.ldap.configuration.LDAPSettings attribute) USE_OIDC (canaille.core.configuration.Permission attribute) USE_RELOADER (canaille.hypercorn.configuration.HypercornSettings attribute) user (canaille.core.models.WebAuthnCredential attribute) USER (canaille.hypercorn.configuration.HypercornSettings attribute) User (class in canaille.core.models)

USER_BASE (canaille.backends.ldap.configuration.LDAPSettings attribute) user_can_edit() (canaille.core.models.Group method) USER_CLASS (canaille.backends.ldap.configuration.LDAPSettings attribute) user_name (canaille.core.models.User attribute) USER_RDN (canaille.backends.ldap.configuration.LDAPSettings attribute) userinfo_encrypted_response_alg (canaille.oidc.basemodels.Client attribute) userinfo_encrypted_response_enc (canaille.oidc.basemodels.Client attribute) USERINFO_MAPPING (canaille.oidc.configuration.OIDCSettings attribute) userinfo_signed_response_alg (canaille.oidc.basemodels.Client attribute)

V

validate_page() (canaille.app.forms.TableForm method)

VERIFY_FLAGS (canaille.hypercorn.configuration.HypercornSettings attribute) VERIFY_MODE (canaille.hypercorn.configuration.HypercornSettings attribute)

W

webauthn_credentials (canaille.core.models.User attribute) WebAuthnCredential (class in canaille.core.models) WEBSITE (canaille.oidc.configuration.UserInfoMappingSettings attribute) WEBSOCKET_MAX_MESSAGE_SIZE (canaille.hypercorn.configuration.HypercornSettings attribute) WEBSOCKET_PING_INTERVAL (canaille.hypercorn.configuration.HypercornSettings attribute)

WORKER_CLASS (canaille.hypercorn.configuration.HypercornSettings attribute) WORKERS (canaille.hypercorn.configuration.HypercornSettings attribute) writable_fields (canaille.core.models.User property) WRITE (canaille.core.configuration.ACLSettings attribute) WSGI_MAX_BODY_SIZE (canaille.hypercorn.configuration.HypercornSettings attribute)