Typos & Doc
This commit is contained in:
parent
35b4a82943
commit
33d5c231b5
|
@ -64,12 +64,10 @@ to access required locations in Portal Virtual Host.
|
|||
**Choice used for password authentication** => 2_LDAP (by example)
|
||||
|
||||
|
||||
|
||||
|
||||
.. attention::
|
||||
|
||||
With HTTPS, you may have to set **LWP::UserAgent
|
||||
object** with ``verify_hostname => 0`` and ``SSL_verify_mode => 0``.
|
||||
With HTTPS, you may have to set **LWP::UserAgent object**
|
||||
with ``verify_hostname => 0`` and ``SSL_verify_mode => 0``.
|
||||
|
||||
Go to:
|
||||
|
||||
|
|
|
@ -248,3 +248,13 @@ Options
|
|||
- **Display name**: Name of the application
|
||||
- **Logo**: Logo of the application
|
||||
- **Order**: Number to sort buttons
|
||||
|
||||
|
||||
.. attention::
|
||||
|
||||
With HTTPS, you may have to set **LWP::UserAgent object**
|
||||
with ``verify_hostname => 0`` and ``SSL_verify_mode => 0``.
|
||||
|
||||
Go to:
|
||||
|
||||
``General Parameters > Advanced Parameters > Security > SSL options for server requests``
|
|
@ -59,18 +59,20 @@ Security
|
|||
- **Implicit flow**: Set to 1 to allow Implicit flow
|
||||
- **Hybrid flow**: Set to 1 to allow Hybrid flow
|
||||
|
||||
|
||||
Timeout
|
||||
~~~~~~~
|
||||
|
||||
- **Authorization Code expiration**: Expiration time of
|
||||
authorization code. The default value is one minute.
|
||||
authorization code. The default value is one minute.
|
||||
- **ID Token expiration**: Expiration time of ID Tokens. The default
|
||||
value is one hour.
|
||||
value is one hour.
|
||||
- **Access Token expiration**: Expiration time
|
||||
of Access Tokens. The default value is one hour.
|
||||
of Access Tokens. The default value is one hour.
|
||||
- **Offline session expiration**: This sets the lifetime of the
|
||||
refresh token obtained with the **offline_access** scope. The
|
||||
default value is one month.
|
||||
refresh token obtained with the ``offline_access`` scope. The
|
||||
default value is one month.
|
||||
|
||||
|
||||
Sessions
|
||||
~~~~~~~~
|
||||
|
@ -114,11 +116,11 @@ Session management
|
|||
LL::NG implements the `OpenID Connect Change Notification specification <http://openid.net/specs/openid-connect-session-1_0.html#ChangeNotification>`__
|
||||
|
||||
A ``changed`` state will be sent if the user is disconnected from LL::NG
|
||||
portal (or has destroyed its SSO cookie). Else the ``unchanged`` state
|
||||
portal (or has removed its SSO cookie). Else the ``unchanged`` state
|
||||
will be returned.
|
||||
|
||||
|
||||
.. tip::
|
||||
|
||||
To work, the LL::NG cookie must not be protected against
|
||||
javascript (``httpOnly`` option should be set to ``0``).
|
||||
This feature requires that the LL::NG cookie is exposed to
|
||||
javascript (``httpOnly`` option must be set to ``0``).
|
||||
|
|
|
@ -118,11 +118,11 @@ sub extractFormInfo {
|
|||
my $op = $req->data->{_oidcOPCurrent};
|
||||
|
||||
unless ($op) {
|
||||
$self->userLogger->error("OpenID Provider not found");
|
||||
$self->userLogger->error("OpenIDConnect Provider not found");
|
||||
return PE_OIDC_AUTH_ERROR;
|
||||
}
|
||||
|
||||
$self->logger->debug("Using OpenID Provider $op");
|
||||
$self->logger->debug("Using OpenIDConnect Provider $op");
|
||||
|
||||
# Check error
|
||||
my $error = $req->param("error");
|
||||
|
|
Loading…
Reference in New Issue