{% extends "base.j2" %}
{% import 'wtf.j2' as wtf %}

{% block app_content %}
<h1>Configuration du Service d'Authentification Central (CAS)</h1>


<div class="help">
    <p>Le CAS permet d'utiliser un service SSO pour connecter les utilisateurs.</p>
</div>
<div class="row">
    <div class="col-md-8">

        <form class="form form-horizontal" method="post" enctype="multipart/form-data" role="form">
        {{ form.hidden_tag() }}
        {{ wtf.form_errors(form, hiddens="only") }}

        {{ wtf.form_field(form.cas_enable) }}
        {{ wtf.form_field(form.cas_force) }}
        {{ wtf.form_field(form.cas_allow_for_new_users) }}
        {{ wtf.form_field(form.cas_server) }}
        {{ wtf.form_field(form.cas_login_route) }}
        {{ wtf.form_field(form.cas_logout_route) }}
        {{ wtf.form_field(form.cas_validate_route) }}
        {{ wtf.form_field(form.cas_attribute_id) }}
        {{ wtf.form_field(form.cas_uid_from_mail_regexp) }}
        {{ wtf.form_field(form.cas_edt_id_from_xml_regexp) }}
        <div class="cas_settings">
            {{ wtf.form_field(form.cas_ssl_verify) }}
            {{ wtf.form_field(form.cas_ssl_certificate_file) }}
            <div class="cas_etat_certif_ssl">Certificat SSL
                {% if cas_ssl_certificate_loaded %}
                    chargé.
                {% else %}
                    non chargé.
                {% endif %}
            </div>
        </div>
        <div class="form-group">
            {{ wtf.form_field(form.submit) }}
            {{ wtf.form_field(form.cancel) }}
        </div>
        <div class="form-group" style="margin-top:16px;">
            ℹ️ <em>Note: si le  CAS est forcé, le super-admin et les utilisateurs autorisés
            à "se connecter via ScoDoc" pourront toujours se
            connecter via l'adresse spéciale</em>
            <tt style="color: blue;">{{url_for("auth.login_scodoc", _external=True)}}</tt>
        </div>
        </form>
    </div>
</div>




{% endblock %}