Configure OIDC sessions in Manager (#183 / #LEMONLDAP-184)
This commit is contained in:
parent
8075b60af8
commit
ae76600d6f
|
@ -1993,6 +1993,10 @@ m{^(?:ldapi://[^/]*/?|\w[\w\-\.]*(?::\d{1,5})?|ldap(?:s|\+tls)?://\w[\w\-\.]*(?:
|
|||
default => '0',
|
||||
documentation => 'OpenID Connect allow hybrid flow',
|
||||
},
|
||||
oidcStorage => { type => 'PerlModule', },
|
||||
oidcStorageOptions => {
|
||||
type => 'keyTextContainer',
|
||||
},
|
||||
|
||||
# OpenID Connect metadata nodes
|
||||
oidcOPMetaDataNodes =>
|
||||
|
|
|
@ -19,7 +19,7 @@ our $specialNodeHash = {
|
|||
oidcRPMetaDataNodes => [qw(oidcRPMetaDataOptions oidcRPMetaDataExportedVars)],
|
||||
};
|
||||
|
||||
our $simpleHashKeys = '(?:(?:g(?:r(?:antSessionRule|oup)|lobalStorageOption|oogleExportedVar)|l(?:o(?:calSessionStorageOption|goutService)|dapExportedVar)|(?:(?:d(?:emo|bi)|facebook|webID)E|e)xportedVar|(?:ca(?:ptcha|s)|notification)StorageOption|p(?:ersistentStorageOption|ortalSkinRule)|re(?:moteGlobalStorageOption|loadUrl)|CAS_proxiedService|macro)s|s(?:(?:amlStorageOption|laveExportedVar)s|essionDataToRemember)|o(?:idcServiceMetaDataAuthnContext|penIdExportedVars)|a(?:uthChoiceModules|pplicationList))';
|
||||
our $simpleHashKeys = '(?:(?:g(?:r(?:antSessionRule|oup)|lobalStorageOption|oogleExportedVar)|l(?:o(?:calSessionStorageOption|goutService)|dapExportedVar)|(?:(?:d(?:emo|bi)|facebook|webID)E|e)xportedVar|(?:ca(?:ptcha|s)|notification)StorageOption|p(?:ersistentStorageOption|ortalSkinRule)|re(?:moteGlobalStorageOption|loadUrl)|CAS_proxiedService|macro)s|o(?:idcS(?:erviceMetaDataAuthnContext|torageOptions)|penIdExportedVars)|s(?:(?:amlStorageOption|laveExportedVar)s|essionDataToRemember)|a(?:uthChoiceModules|pplicationList))';
|
||||
our $specialNodeKeys = '(?:(?:saml(?:ID|S)|oidc[OR])PMetaDataNode|virtualHost)s';
|
||||
our $oidcOPMetaDataNodeKeys = 'oidcOPMetaData(?:Options(?:C(?:lient(?:Secret|ID)|heckJWTSignature|onfigurationURI)|TokenEndpointAuthMethod|(?:JWKSTimeou|Promp)t|I(?:DTokenMaxAge|con)|U(?:iLocales|seNonce)|Display(?:Name)?|(?:MaxAg|Scop)e|AcrValues)|ExportedVars|J(?:SON|WKS))';
|
||||
our $oidcRPMetaDataNodeKeys = 'oidcRPMetaData(?:Options(?:I(?:DToken(?:Expiration|SignAlg)|con)|AccessTokenExpiration|Client(?:Secret|ID)|RedirectUris|DisplayName|UserIDAttr)|ExportedVars)';
|
||||
|
|
|
@ -838,6 +838,10 @@ sub tree {
|
|||
'oidcServiceAllowHybridFlow',
|
||||
],
|
||||
},
|
||||
{
|
||||
title => "oidcServiceMetaDataSessions",
|
||||
nodes => [ 'oidcStorage', 'oidcStorageOptions', ],
|
||||
},
|
||||
]
|
||||
},
|
||||
'oidcOPMetaDataNodes',
|
||||
|
|
|
@ -356,9 +356,12 @@
|
|||
"oidcServiceMetaDataSecurity": "Security",
|
||||
"oidcServiceMetaDataEndSessionURI": "End of session",
|
||||
"oidcServiceMetaDataAuthnContext": "Authentication context",
|
||||
"oidcServiceMetaDataSessions": "Sessions",
|
||||
"oidcServicePrivateKeySig": "Signing private key",
|
||||
"oidcServicePublicKeySig": "Signing public key",
|
||||
"oidcServiceKeyIdSig": "Signing key ID",
|
||||
"oidcStorage": "Sessions module name",
|
||||
"oidcStorageOptions": "Sessions module options",
|
||||
"oidcOPMetaDataNodes": "OpenID Connect Providers",
|
||||
"oidcRPMetaDataNodes": "OpenID Connect Relying Parties",
|
||||
"oidcOPMetaDataOptionsPrompt": "Prompt",
|
||||
|
|
|
@ -356,9 +356,12 @@
|
|||
"oidcServiceMetaDataSecurity": "Securité",
|
||||
"oidcServiceMetaDataEndSessionURI": "Fin de session",
|
||||
"oidcServiceMetaDataAuthnContext": "Contexte d'authentification",
|
||||
"oidcServiceMetaDataSessions": "Sessions",
|
||||
"oidcServicePrivateKeySig": "Clef privée de signature",
|
||||
"oidcServicePublicKeySig": "Clef publique de signature",
|
||||
"oidcServiceKeyIdSig": "Identifiant de clef de signature",
|
||||
"oidcStorage": "Nom du module de sessions",
|
||||
"oidcStorageOptions": "Options du module de sessions",
|
||||
"oidcOPMetaDataNodes": "Fournisseurs OpenID Connect",
|
||||
"oidcRPMetaDataNodes": "Clients OpenID Connect",
|
||||
"oidcOPMetaDataOptionsPrompt": "Interaction",
|
||||
|
|
File diff suppressed because one or more lines are too long
Loading…
Reference in New Issue
Block a user