Merge branch 'master' into portal-multi-U2F-registration
This commit is contained in:
commit
b972c8fcf8
59
Makefile
59
Makefile
@ -102,6 +102,12 @@ FASTCGISOCKDIR=$(PREFIX)/run
|
|||||||
FASTCGIUSER=$(APACHEUSER)
|
FASTCGIUSER=$(APACHEUSER)
|
||||||
FASTCGIGROUP=$(APACHEGROUP)
|
FASTCGIGROUP=$(APACHEGROUP)
|
||||||
|
|
||||||
|
# uWSGI
|
||||||
|
UWSGIYAMLDIR=$(LMPREFIX)/uwsgi
|
||||||
|
LLNGAPPDIR=$(LMPREFIX)/llng-server
|
||||||
|
UWSGIUSER=$(APACHEUSER)
|
||||||
|
UWSGIGROUP=$(APACHEGROUP)
|
||||||
|
|
||||||
# Apache version
|
# Apache version
|
||||||
APACHEVERSION=2.X
|
APACHEVERSION=2.X
|
||||||
|
|
||||||
@ -133,6 +139,8 @@ ERASECONFIG=1 # Set to 0 if you do not want to replace your configuration
|
|||||||
RLMPREFIX=$(DESTDIR)/$(LMPREFIX)
|
RLMPREFIX=$(DESTDIR)/$(LMPREFIX)
|
||||||
RBINDIR=$(DESTDIR)/$(BINDIR)
|
RBINDIR=$(DESTDIR)/$(BINDIR)
|
||||||
RSBINDIR=$(DESTDIR)/$(SBINDIR)
|
RSBINDIR=$(DESTDIR)/$(SBINDIR)
|
||||||
|
RUWSGIYAMLDIR=$(DESTDIR)/$(UWSGIYAMLDIR)
|
||||||
|
RLLNGAPPDIR=$(DESTDIR)/$(LLNGAPPDIR)
|
||||||
RINITDIR=$(DESTDIR)/$(INITDIR)
|
RINITDIR=$(DESTDIR)/$(INITDIR)
|
||||||
RETCDEFAULTDIR=$(DESTDIR)/$(ETCDEFAULTDIR)
|
RETCDEFAULTDIR=$(DESTDIR)/$(ETCDEFAULTDIR)
|
||||||
RDATADIR=$(DESTDIR)/$(DATADIR)
|
RDATADIR=$(DESTDIR)/$(DATADIR)
|
||||||
@ -255,8 +263,9 @@ all: configure common handler manager portal
|
|||||||
@echo " - install_handler_libs"
|
@echo " - install_handler_libs"
|
||||||
@echo " * Binaries install :"
|
@echo " * Binaries install :"
|
||||||
@echo " - install_bin ($(BINDIR))"
|
@echo " - install_bin ($(BINDIR))"
|
||||||
@echo " * FastCGI server install (required for Nginx)"
|
@echo " * FastCGI (or uWSGI) server install (required for Nginx)"
|
||||||
@echo " - install_fastcgi_server ($(SBINDIR))"
|
@echo " - install_fastcgi_server ($(SBINDIR))"
|
||||||
|
@echo " - install_uwsgi_server ($(UWSGIYAMLDIR))"
|
||||||
@echo " * Web sites install :"
|
@echo " * Web sites install :"
|
||||||
@echo " - install_site (all sites including install_doc_site)"
|
@echo " - install_site (all sites including install_doc_site)"
|
||||||
@echo " - install_portal_site ($(PORTALDIR))"
|
@echo " - install_portal_site ($(PORTALDIR))"
|
||||||
@ -552,7 +561,7 @@ install_test:
|
|||||||
|
|
||||||
# Install targets
|
# Install targets
|
||||||
# ---------------
|
# ---------------
|
||||||
install: install_libs install_bin install_fastcgi_server install_site
|
install: install_libs install_bin install_fastcgi_server install_uwsgi_server install_site
|
||||||
|
|
||||||
# Perl libraires install
|
# Perl libraires install
|
||||||
|
|
||||||
@ -574,7 +583,7 @@ install_bin: install_conf_dir
|
|||||||
# Binary install
|
# Binary install
|
||||||
@install -v -d $(RBINDIR)
|
@install -v -d $(RBINDIR)
|
||||||
@cp -f\
|
@cp -f\
|
||||||
${SRCHANDLERDIR}/example/scripts/purgeLocalCache \
|
${SRCHANDLERDIR}/eg/scripts/purgeLocalCache \
|
||||||
${SRCPORTALDIR}/site/cron/purgeCentralCache \
|
${SRCPORTALDIR}/site/cron/purgeCentralCache \
|
||||||
${SRCCOMMONDIR}/scripts/convertConfig \
|
${SRCCOMMONDIR}/scripts/convertConfig \
|
||||||
${SRCCOMMONDIR}/scripts/lmMigrateConfFiles2ini \
|
${SRCCOMMONDIR}/scripts/lmMigrateConfFiles2ini \
|
||||||
@ -624,6 +633,12 @@ install_fastcgi_server:
|
|||||||
chmod 777 $(RFASTCGISOCKDIR); \
|
chmod 777 $(RFASTCGISOCKDIR); \
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
install_uwsgi_server:
|
||||||
|
@install -v -d $(RUWSGIYAMLDIR) $(RLLNGAPPDIR)
|
||||||
|
@install -m 644 -v fastcgi-server/uwsgi/llng-server.yaml $(RUWSGIYAMLDIR)/llng-server.yaml
|
||||||
|
@install -m 644 -v $(SRCHANDLERDIR)/eg/llng-server.psgi $(RLLNGAPPDIR)/llng-server.psgi
|
||||||
|
$(PERL) -pi -e 's#__APPDIR__#$(LLNGAPPDIR)#' $(RUWSGIYAMLDIR)/llng-server.yaml
|
||||||
|
|
||||||
# Site install
|
# Site install
|
||||||
|
|
||||||
install_site: install_manager_site install_portal_site install_handler_site install_test_site install_examples_site install_doc_site install_webserver_conf
|
install_site: install_manager_site install_portal_site install_handler_site install_test_site install_examples_site install_doc_site install_webserver_conf
|
||||||
@ -765,7 +780,7 @@ install_portal_site: install_conf_dir
|
|||||||
install_handler_site: install_conf_dir
|
install_handler_site: install_conf_dir
|
||||||
# Handler install
|
# Handler install
|
||||||
@install -v -d ${RHANDLERDIR}
|
@install -v -d ${RHANDLERDIR}
|
||||||
@cp -f $(SRCHANDLERDIR)/example/scripts/purgeLocalCache.cron.d $(RCRONDIR)/lemonldap-ng-handler
|
@cp -f $(SRCHANDLERDIR)/eg/scripts/purgeLocalCache.cron.d $(RCRONDIR)/lemonldap-ng-handler
|
||||||
@if [ ! "$(APACHEUSER)" ]; then \
|
@if [ ! "$(APACHEUSER)" ]; then \
|
||||||
$(PERL) -i -pe 's#__APACHEUSER__#nobody#g;' $(RCRONDIR)/lemonldap-ng-handler; \
|
$(PERL) -i -pe 's#__APACHEUSER__#nobody#g;' $(RCRONDIR)/lemonldap-ng-handler; \
|
||||||
else \
|
else \
|
||||||
@ -785,10 +800,7 @@ install_test_site:
|
|||||||
install_examples_site:
|
install_examples_site:
|
||||||
# Examples install
|
# Examples install
|
||||||
@install -v -d $(REXAMPLESDIR)
|
@install -v -d $(REXAMPLESDIR)
|
||||||
@for i in handler; do \
|
@for i in portal manager handler; do \
|
||||||
cp -a -f lemonldap-ng-$$i/example $(REXAMPLESDIR)/$$i; \
|
|
||||||
done
|
|
||||||
@for i in portal manager; do \
|
|
||||||
cp -a -f lemonldap-ng-$$i/eg $(REXAMPLESDIR)/$$i; \
|
cp -a -f lemonldap-ng-$$i/eg $(REXAMPLESDIR)/$$i; \
|
||||||
done
|
done
|
||||||
@cp -a -f fastcgi-server/psgi/llngapp.psgi $(REXAMPLESDIR)/$$i
|
@cp -a -f fastcgi-server/psgi/llngapp.psgi $(REXAMPLESDIR)/$$i
|
||||||
@ -1061,37 +1073,6 @@ manager_cpan: manager_conf
|
|||||||
documentation:
|
documentation:
|
||||||
@cd doc/ && ../scripts/doc.pl
|
@cd doc/ && ../scripts/doc.pl
|
||||||
|
|
||||||
diff: debian-diff
|
|
||||||
|
|
||||||
# TODO: change this
|
|
||||||
default-diff:
|
|
||||||
@# Portal
|
|
||||||
@$(DIFF) $(SRCPORTALDIR)/lib/Lemonldap/NG/Portal /usr/local/share/perl/$(PERLVERSION)/Lemonldap/NG/Portal ||true
|
|
||||||
@$(DIFF) $(SRCPORTALDIR)/example/scripts/purgeCentralCache $(LMPREFIX)/bin/purgeCentralCache ||true
|
|
||||||
@$(DIFF) $(SRCPORTALDIR)/example/skins $(LMPREFIX)/htdocs/portal/skins ||true
|
|
||||||
@$(DIFF) $(SRCPORTALDIR)/example/index_skin.pl $(LMPREFIX)/htdocs/portal/index.pl ||true
|
|
||||||
@$(DIFF) $(SRCPORTALDIR)/example/mail.pl $(LMPREFIX)/htdocs/portal/mail.pl ||true
|
|
||||||
@$(DIFF) $(SRCPORTALDIR)/example/register.pl $(LMPREFIX)/htdocs/portal/register.pl ||true
|
|
||||||
@$(DIFF) $(SRCPORTALDIR)/example/metadata.pl $(LMPREFIX)/htdocs/portal/metadata.pl ||true
|
|
||||||
@$(DIFF) $(SRCPORTALDIR)/example/openid-configuration.pl $(LMPREFIX)/htdocs/portal/openid-configuration.pl ||true
|
|
||||||
@$(DIFF) $(SRCPORTALDIR)/example/cdc.pl $(LMPREFIX)/htdocs/portal/cdc.pl ||true
|
|
||||||
@# Handler
|
|
||||||
@$(DIFF) $(SRCHANDLERDIR)/lib/Lemonldap/NG/Handler /usr/local/share/perl/$(PERLVERSION)/Lemonldap/NG/Handler ||true
|
|
||||||
@$(DIFF) $(SRCHANDLERDIR)/example/scripts/purgeLocalCache $(LMPREFIX)/bin/purgeLocalCache ||true
|
|
||||||
@# Common
|
|
||||||
@$(DIFF) $(SRCCOMMONDIR)/lib/Lemonldap/NG/Common /usr/local/share/perl/$(PERLVERSION)/Lemonldap/NG/Common ||true
|
|
||||||
@$(DIFF) $(SRCCOMMONDIR)/lib/Lemonldap/NG/Common.pm /usr/local/share/perl/$(PERLVERSION)/Lemonldap/NG/Common.pm ||true
|
|
||||||
@$(DIFF) $(SRCCOMMONDIR)/scripts/lmMigrateConfFiles2ini $(LMPREFIX)/bin/lmMigrateConfFiles2ini ||true
|
|
||||||
@$(DIFF) $(SRCCOMMONDIR)/scripts/convertConfig $(LMPREFIX)/bin/convertConfig ||true
|
|
||||||
@$(DIFF) $(SRCCOMMONDIR)/scripts/rotateOidcKeys $(LMPREFIX)/bin/rotateOidcKeys ||true
|
|
||||||
@# Manager
|
|
||||||
@$(DIFF) $(SRCMANAGERDIR)/lib/Lemonldap/NG/Manager /usr/local/share/perl/$(PERLVERSION)/Lemonldap/NG/Manager ||true
|
|
||||||
@$(DIFF) $(SRCMANAGERDIR)/lib/Lemonldap/NG/Manager.pm /usr/local/share/perl/$(PERLVERSION)/Lemonldap/NG/Manager.pm ||true
|
|
||||||
@$(DIFF) $(SRCMANAGERDIR)/site/htdocs/static $(LMPREFIX)/htdocs/manager/static ||true
|
|
||||||
@$(DIFF) $(SRCMANAGERDIR)/site/templates $(LMPREFIX)/htdocs/manager/templates ||true
|
|
||||||
@$(DIFF) --ignore-matching-lines='set.*get.*\[2\]' $(SRCMANAGERDIR)/scripts/lmConfigEditor $(LMPREFIX)/bin/lmConfigEditor ||true
|
|
||||||
@$(DIFF) --ignore-matching-lines='set.*get.*' $(SRCCOMMONDIR)/scripts/lemonldap-ng-cli $(LMPREFIX)/bin/lemonldap-ng-cli ||true
|
|
||||||
|
|
||||||
test-diff:
|
test-diff:
|
||||||
@for file in `find lemonldap-ng-*/lib -type f`; do \
|
@for file in `find lemonldap-ng-*/lib -type f`; do \
|
||||||
$(DIFF) $$file `echo $$file|sed -e s/lib/blib\\\/lib/`; \
|
$(DIFF) $$file `echo $$file|sed -e s/lib/blib\\\/lib/`; \
|
||||||
|
211
debian/control
vendored
211
debian/control
vendored
@ -47,8 +47,8 @@ Build-Depends-Indep: libapache-session-perl,
|
|||||||
libxml-simple-perl,
|
libxml-simple-perl,
|
||||||
perl
|
perl
|
||||||
Standards-Version: 4.1.3
|
Standards-Version: 4.1.3
|
||||||
Vcs-Browser: https://anonscm.debian.org/cgit/pkg-perl/packages/lemonldap-ng.git
|
Vcs-Browser: https://salsa.debian.org/perl-team/modules/packages/lemonldap-ng
|
||||||
Vcs-Git: https://anonscm.debian.org/git/pkg-perl/packages/lemonldap-ng.git
|
Vcs-Git: https://salsa.debian.org/perl-team/modules/packages/lemonldap-ng.git
|
||||||
Homepage: https://lemonldap-ng.org/
|
Homepage: https://lemonldap-ng.org/
|
||||||
|
|
||||||
Package: lemonldap-ng
|
Package: lemonldap-ng
|
||||||
@ -110,6 +110,100 @@ Description: French documentation of Lemonldap::NG Web-SSO system
|
|||||||
.
|
.
|
||||||
This package contains French html documentation.
|
This package contains French html documentation.
|
||||||
|
|
||||||
|
Package: lemonldap-ng-handler
|
||||||
|
Architecture: all
|
||||||
|
Depends: ${misc:Depends},
|
||||||
|
liblemonldap-ng-handler-perl (= ${binary:Version})
|
||||||
|
Breaks: liblemonldap-ng-handler-perl (<< 1.9.1-2~)
|
||||||
|
Replaces: liblemonldap-ng-handler-perl (<< 1.9.1-2~)
|
||||||
|
Recommends: lemonldap-ng-fastcgi-server (= ${binary:Version}) | lemonldap-ng-uwsgi-app (= ${binary:Version}) | libapache2-mod-perl2
|
||||||
|
Suggests: libcache-memcached-perl,
|
||||||
|
libdigest-hmac-perl,
|
||||||
|
libsoap-lite-perl
|
||||||
|
Description: Lemonldap::NG handler part
|
||||||
|
Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies
|
||||||
|
or directly on application webservers. It can be used in conjunction with
|
||||||
|
OpenID-Connect, CAS and SAML systems as identity or service provider. It can
|
||||||
|
also be used as proxy between those federation systems.
|
||||||
|
.
|
||||||
|
It manages both authentication and authorization and provides headers for
|
||||||
|
accounting. So you can have a full AAA protection. Authorization are built by
|
||||||
|
associating a regular expression and a rule. Regular expression is applied on
|
||||||
|
the requested URL and the rule calculates if the user is authorized.
|
||||||
|
.
|
||||||
|
This package provides configuration files for Apache and Nginx used to protect
|
||||||
|
web areas.
|
||||||
|
|
||||||
|
Package: liblemonldap-ng-manager-perl
|
||||||
|
Architecture: all
|
||||||
|
Depends: ${misc:Depends},
|
||||||
|
${perl:Depends},
|
||||||
|
libconvert-pem-perl,
|
||||||
|
libcrypt-openssl-rsa-perl,
|
||||||
|
liblemonldap-ng-handler-perl (= ${binary:Version}),
|
||||||
|
lemonldap-ng-fastcgi-server (= ${binary:Version}) | lemonldap-ng-uwsgi-app (= ${binary:Version}) | apache2 | httpd-cgi
|
||||||
|
Recommends: lemonldap-ng-doc (= ${binary:Version}),
|
||||||
|
libxml-libxml-perl,
|
||||||
|
libxml-libxslt-perl,
|
||||||
|
libxml-simple-perl
|
||||||
|
Suggests: libclone-perl,
|
||||||
|
libregexp-assemble-perl
|
||||||
|
Pre-Depends: debconf
|
||||||
|
Description: Lemonldap::NG manager part
|
||||||
|
Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies
|
||||||
|
or directly on application webservers. It can be used in conjunction with
|
||||||
|
OpenID-Connect, CAS and SAML systems as identity or service provider. It can
|
||||||
|
also be used as proxy between those federation systems.
|
||||||
|
.
|
||||||
|
It manages both authentication and authorization and provides headers for
|
||||||
|
accounting. So you can have a full AAA protection. Authorization are built by
|
||||||
|
associating a regular expression and a rule. Regular expression is applied on
|
||||||
|
the requested URL and the rule calculates if the user is authorized.
|
||||||
|
.
|
||||||
|
Lemonldap::NG::Manager provides the administration interface.
|
||||||
|
|
||||||
|
Package: liblemonldap-ng-portal-perl
|
||||||
|
Architecture: all
|
||||||
|
Depends: ${misc:Depends},
|
||||||
|
${perl:Depends},
|
||||||
|
lemonldap-ng-fastcgi-server (= ${binary:Version}) | lemonldap-ng-uwsgi-app (= ${binary:Version}) | apache2 | httpd-cgi,
|
||||||
|
libclone-perl,
|
||||||
|
liblemonldap-ng-handler-perl (= ${binary:Version}),
|
||||||
|
libregexp-assemble-perl
|
||||||
|
Recommends: libcrypt-openssl-bignum-perl,
|
||||||
|
libemail-sender-perl (>=1.300027) | libemail-sender-transport-smtps-perl,
|
||||||
|
libmime-tools-perl,
|
||||||
|
libnet-ldap-perl,
|
||||||
|
libstring-random-perl,
|
||||||
|
libunicode-string-perl
|
||||||
|
Suggests: libauthcas-perl,
|
||||||
|
libcrypt-u2f-server-perl,
|
||||||
|
libdbi-perl,
|
||||||
|
libgd-securityimage-perl,
|
||||||
|
libglib-perl,
|
||||||
|
libimage-magick-perl,
|
||||||
|
liblasso-perl,
|
||||||
|
libnet-facebook-oauth2-perl,
|
||||||
|
libnet-openid-consumer-perl,
|
||||||
|
libnet-openid-server-perl,
|
||||||
|
libnet-oauth-perl,
|
||||||
|
libsoap-lite-perl,
|
||||||
|
libweb-id-perl,
|
||||||
|
slapd
|
||||||
|
Pre-Depends: debconf
|
||||||
|
Description: Lemonldap::NG authentication portal part
|
||||||
|
Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies
|
||||||
|
or directly on application webservers. It can be used in conjunction with
|
||||||
|
OpenID-Connect, CAS and SAML systems as identity or service provider. It can
|
||||||
|
also be used as proxy between those federation systems.
|
||||||
|
.
|
||||||
|
It manages both authentication and authorization and provides headers for
|
||||||
|
accounting. So you can have a full AAA protection. Authorization are built by
|
||||||
|
associating a regular expression and a rule. Regular expression is applied on
|
||||||
|
the requested URL and the rule calculates if the user is authorized.
|
||||||
|
.
|
||||||
|
Lemonldap::NG::Portal provides the authentication portal.
|
||||||
|
|
||||||
Package: lemonldap-ng-fastcgi-server
|
Package: lemonldap-ng-fastcgi-server
|
||||||
Architecture: all
|
Architecture: all
|
||||||
Depends: ${misc:Depends},
|
Depends: ${misc:Depends},
|
||||||
@ -132,16 +226,19 @@ Description: Lemonldap::NG FastCGI server
|
|||||||
associating a regular expression and a rule. Regular expression is applied on
|
associating a regular expression and a rule. Regular expression is applied on
|
||||||
the requested URL and the rule calculates if the user is authorized.
|
the requested URL and the rule calculates if the user is authorized.
|
||||||
.
|
.
|
||||||
Lemonldap::NG FastCGI server provides a Nginx auth_request server.
|
Lemonldap::NG FastCGI server provides a Nginx auth_request server that handles
|
||||||
|
also LLNG Portal and Manager.
|
||||||
|
|
||||||
Package: lemonldap-ng-handler
|
Package: lemonldap-ng-uwsgi-app
|
||||||
Architecture: all
|
Architecture: all
|
||||||
Depends: ${misc:Depends},
|
Depends: ${misc:Depends},
|
||||||
liblemonldap-ng-handler-perl (= ${binary:Version})
|
${perl:Depends},
|
||||||
Breaks: liblemonldap-ng-handler-perl (<< 1.9.1-2~)
|
liblemonldap-ng-handler-perl (= ${binary:Version}),
|
||||||
Replaces: liblemonldap-ng-handler-perl (<< 1.9.1-2~)
|
uwsgi-plugin-psgi
|
||||||
Recommends: lemonldap-ng-fastcgi-server (= ${binary:Version}) | libapache2-mod-perl2
|
Recommends: libhttp-parser-xs-perl,
|
||||||
Description: Lemonldap::NG handler part
|
nginx-extras | nginx
|
||||||
|
Section: web
|
||||||
|
Description: Lemonldap::NG uWSGI server
|
||||||
Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies
|
Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies
|
||||||
or directly on application webservers. It can be used in conjunction with
|
or directly on application webservers. It can be used in conjunction with
|
||||||
OpenID-Connect, CAS and SAML systems as identity or service provider. It can
|
OpenID-Connect, CAS and SAML systems as identity or service provider. It can
|
||||||
@ -152,21 +249,14 @@ Description: Lemonldap::NG handler part
|
|||||||
associating a regular expression and a rule. Regular expression is applied on
|
associating a regular expression and a rule. Regular expression is applied on
|
||||||
the requested URL and the rule calculates if the user is authorized.
|
the requested URL and the rule calculates if the user is authorized.
|
||||||
.
|
.
|
||||||
This package provides configuration files for Apache and Nginx used to protect
|
Lemonldap::NG uWSGI server provides a replacement to Lemonldap::NG FastCGI
|
||||||
web areas.
|
server, using uWSGI instead of Plack FCGI.
|
||||||
|
|
||||||
Package: liblemonldap-ng-handler-perl
|
Package: liblemonldap-ng-handler-perl
|
||||||
Architecture: all
|
Architecture: all
|
||||||
Depends: ${misc:Depends},
|
Depends: ${misc:Depends},
|
||||||
${perl:Depends},
|
${perl:Depends},
|
||||||
liblemonldap-ng-common-perl (= ${binary:Version}),
|
liblemonldap-ng-common-perl (= ${binary:Version})
|
||||||
libmouse-perl,
|
|
||||||
liburi-perl,
|
|
||||||
libwww-perl
|
|
||||||
Recommends: liblwp-protocol-https-perl
|
|
||||||
Suggests: libcache-memcached-perl,
|
|
||||||
libdigest-hmac-perl,
|
|
||||||
libsoap-lite-perl
|
|
||||||
Description: Lemonldap::NG handler common libraries
|
Description: Lemonldap::NG handler common libraries
|
||||||
Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies
|
Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies
|
||||||
or directly on application webservers. It can be used in conjunction with
|
or directly on application webservers. It can be used in conjunction with
|
||||||
@ -195,9 +285,12 @@ Depends: ${misc:Depends},
|
|||||||
libjson-perl,
|
libjson-perl,
|
||||||
libmouse-perl,
|
libmouse-perl,
|
||||||
libplack-perl,
|
libplack-perl,
|
||||||
liburi-perl
|
liburi-perl,
|
||||||
|
libwww-perl
|
||||||
Recommends: libapache-session-browseable-perl,
|
Recommends: libapache-session-browseable-perl,
|
||||||
libdbi-perl,
|
libdbi-perl,
|
||||||
|
libhttp-parser-xs-perl,
|
||||||
|
libjson-xs-perl,
|
||||||
liblwp-protocol-https-perl
|
liblwp-protocol-https-perl
|
||||||
Suggests: libconvert-base32-perl,
|
Suggests: libconvert-base32-perl,
|
||||||
libnet-ldap-perl,
|
libnet-ldap-perl,
|
||||||
@ -219,81 +312,3 @@ Description: Lemonldap::NG common files
|
|||||||
Lemonldap::NG::Common contains common files used by other Lemonldap::NG
|
Lemonldap::NG::Common contains common files used by other Lemonldap::NG
|
||||||
modules.
|
modules.
|
||||||
|
|
||||||
Package: liblemonldap-ng-manager-perl
|
|
||||||
Architecture: all
|
|
||||||
Depends: ${misc:Depends},
|
|
||||||
${perl:Depends},
|
|
||||||
libconvert-pem-perl,
|
|
||||||
libcrypt-openssl-rsa-perl,
|
|
||||||
liblemonldap-ng-common-perl (= ${binary:Version}),
|
|
||||||
liblemonldap-ng-handler-perl (= ${binary:Version}),
|
|
||||||
libmouse-perl,
|
|
||||||
libwww-perl
|
|
||||||
Recommends: lemonldap-ng-doc (= ${binary:Version}),
|
|
||||||
libapache-session-browseable-perl,
|
|
||||||
lemonldap-ng-fastcgi-server (= ${binary:Version}) | libapache2-mod-fcgid | libapache2-mod-fastcgi,
|
|
||||||
libjson-xs-perl,
|
|
||||||
libhttp-parser-xs-perl,
|
|
||||||
liblwp-protocol-https-perl,
|
|
||||||
libxml-libxml-perl,
|
|
||||||
libxml-libxslt-perl,
|
|
||||||
libxml-simple-perl
|
|
||||||
Suggests: libclone-perl
|
|
||||||
Pre-Depends: debconf
|
|
||||||
Description: Lemonldap::NG manager part
|
|
||||||
Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies
|
|
||||||
or directly on application webservers. It can be used in conjunction with
|
|
||||||
OpenID-Connect, CAS and SAML systems as identity or service provider. It can
|
|
||||||
also be used as proxy between those federation systems.
|
|
||||||
.
|
|
||||||
It manages both authentication and authorization and provides headers for
|
|
||||||
accounting. So you can have a full AAA protection. Authorization are built by
|
|
||||||
associating a regular expression and a rule. Regular expression is applied on
|
|
||||||
the requested URL and the rule calculates if the user is authorized.
|
|
||||||
.
|
|
||||||
Lemonldap::NG::Manager provides the administration interface.
|
|
||||||
|
|
||||||
Package: liblemonldap-ng-portal-perl
|
|
||||||
Architecture: all
|
|
||||||
Depends: ${misc:Depends},
|
|
||||||
${perl:Depends},
|
|
||||||
nginx | apache2 | httpd-cgi,
|
|
||||||
libclone-perl,
|
|
||||||
liblemonldap-ng-handler-perl (= ${binary:Version}),
|
|
||||||
libregexp-assemble-perl
|
|
||||||
Recommends: libcrypt-openssl-bignum-perl,
|
|
||||||
libemail-sender-perl (>=1.300027) | libemail-sender-transport-smtps-perl,
|
|
||||||
libmime-tools-perl,
|
|
||||||
libnet-ldap-perl,
|
|
||||||
libstring-random-perl,
|
|
||||||
libunicode-string-perl,
|
|
||||||
libwww-perl
|
|
||||||
Suggests: libauthcas-perl,
|
|
||||||
libcrypt-u2f-server-perl,
|
|
||||||
libdbi-perl,
|
|
||||||
libgd-securityimage-perl,
|
|
||||||
libglib-perl,
|
|
||||||
libimage-magick-perl,
|
|
||||||
liblasso-perl,
|
|
||||||
libnet-facebook-oauth2-perl,
|
|
||||||
libnet-openid-consumer-perl,
|
|
||||||
libnet-openid-server-perl,
|
|
||||||
libnet-oauth-perl,
|
|
||||||
libsoap-lite-perl,
|
|
||||||
libweb-id-perl,
|
|
||||||
liblwp-protocol-https-perl,
|
|
||||||
slapd
|
|
||||||
Pre-Depends: debconf
|
|
||||||
Description: Lemonldap::NG authentication portal part
|
|
||||||
Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies
|
|
||||||
or directly on application webservers. It can be used in conjunction with
|
|
||||||
OpenID-Connect, CAS and SAML systems as identity or service provider. It can
|
|
||||||
also be used as proxy between those federation systems.
|
|
||||||
.
|
|
||||||
It manages both authentication and authorization and provides headers for
|
|
||||||
accounting. So you can have a full AAA protection. Authorization are built by
|
|
||||||
associating a regular expression and a rule. Regular expression is applied on
|
|
||||||
the requested URL and the rule calculates if the user is authorized.
|
|
||||||
.
|
|
||||||
Lemonldap::NG::Portal provides the authentication portal.
|
|
||||||
|
|
||||||
|
7
debian/copyright
vendored
7
debian/copyright
vendored
@ -48,13 +48,6 @@ Files: lemonldap-ng-portal/site/htdocs/static/common/modules/CAS.png
|
|||||||
Copyright: Jasig
|
Copyright: Jasig
|
||||||
License: Apache-2.0
|
License: Apache-2.0
|
||||||
|
|
||||||
Files: lemonldap-ng-portal/site/htdocs/static/common/modules/BrowserID.png
|
|
||||||
Copyright: 2013, Xavier Guimard <x.guimard@free.fr>
|
|
||||||
License: CC-3
|
|
||||||
Comment: created using images of YellowIcon and Innerer Schweinehund
|
|
||||||
(http://findicons.com/icon/168665/firefox?id=292029 and
|
|
||||||
http://commons.wikimedia.org/wiki/File:Mail-closed.svg)
|
|
||||||
|
|
||||||
Files: lemonldap-ng-portal/site/htdocs/static/common/modules/Google.png lemonldap-ng-portal/site/htdocs/static/common/modules/Facebook.png
|
Files: lemonldap-ng-portal/site/htdocs/static/common/modules/Google.png lemonldap-ng-portal/site/htdocs/static/common/modules/Facebook.png
|
||||||
Copyright: http://tempest.deviantart.com/
|
Copyright: http://tempest.deviantart.com/
|
||||||
License: CC-3
|
License: CC-3
|
||||||
|
2
debian/lemonldap-ng-handler.examples
vendored
2
debian/lemonldap-ng-handler.examples
vendored
@ -3,4 +3,4 @@ debian/tmp/etc/lemonldap-ng/handler-nginx.conf
|
|||||||
debian/tmp/etc/lemonldap-ng/test-apache2.conf
|
debian/tmp/etc/lemonldap-ng/test-apache2.conf
|
||||||
debian/tmp/etc/lemonldap-ng/test-nginx.conf
|
debian/tmp/etc/lemonldap-ng/test-nginx.conf
|
||||||
debian/tmp/var/lib/lemonldap-ng/test
|
debian/tmp/var/lib/lemonldap-ng/test
|
||||||
lemonldap-ng-handler/example/handler.psgi
|
lemonldap-ng-handler/eg/*.psgi
|
||||||
|
1
debian/lemonldap-ng-uwsgi-app.install
vendored
Normal file
1
debian/lemonldap-ng-uwsgi-app.install
vendored
Normal file
@ -0,0 +1 @@
|
|||||||
|
/etc/uwsgi/apps-available/llng-server.yaml
|
1
debian/lemonldap-ng.examples
vendored
1
debian/lemonldap-ng.examples
vendored
@ -1 +1,2 @@
|
|||||||
fastcgi-server/psgi/llngapp.psgi
|
fastcgi-server/psgi/llngapp.psgi
|
||||||
|
lemonldap-ng-common/eg/*
|
||||||
|
2
debian/liblemonldap-ng-handler-perl.examples
vendored
2
debian/liblemonldap-ng-handler-perl.examples
vendored
@ -1 +1 @@
|
|||||||
lemonldap-ng-handler/example/handler.psgi
|
lemonldap-ng-handler/eg/*
|
||||||
|
1
debian/liblemonldap-ng-handler-perl.install
vendored
1
debian/liblemonldap-ng-handler-perl.install
vendored
@ -4,3 +4,4 @@
|
|||||||
/usr/share/man/man3/Lemonldap::NG::Handler*
|
/usr/share/man/man3/Lemonldap::NG::Handler*
|
||||||
/usr/share/man/man3/Plack::Middleware::Auth::LemonldapNG*
|
/usr/share/man/man3/Plack::Middleware::Auth::LemonldapNG*
|
||||||
/usr/share/lemonldap-ng/bin/purgeLocalCache
|
/usr/share/lemonldap-ng/bin/purgeLocalCache
|
||||||
|
/usr/share/lemonldap-ng/llng-server/llng-server.psgi
|
||||||
|
3
debian/rules
vendored
3
debian/rules
vendored
@ -30,7 +30,7 @@ override_dh_auto_install:
|
|||||||
$(MAKE) install \
|
$(MAKE) install \
|
||||||
DESTDIR=$(CURDIR)/debian/tmp \
|
DESTDIR=$(CURDIR)/debian/tmp \
|
||||||
PREFIX=/usr \
|
PREFIX=/usr \
|
||||||
LMPREFIX=/usr/share/lemonldap-ng/ \
|
LMPREFIX=/usr/share/lemonldap-ng \
|
||||||
BINDIR=$(LMSHAREDIR)/bin \
|
BINDIR=$(LMSHAREDIR)/bin \
|
||||||
SBINDIR=/usr/sbin \
|
SBINDIR=/usr/sbin \
|
||||||
FASTCGISOCKDIR=/var/run/llng-fastcgi-server \
|
FASTCGISOCKDIR=/var/run/llng-fastcgi-server \
|
||||||
@ -48,6 +48,7 @@ override_dh_auto_install:
|
|||||||
APACHEGROUP=www-data \
|
APACHEGROUP=www-data \
|
||||||
DEFDOCDIR=/usr/share/doc/lemonldap-ng-doc \
|
DEFDOCDIR=/usr/share/doc/lemonldap-ng-doc \
|
||||||
FRDOCDIR=/usr/share/doc/lemonldap-ng-fr-doc \
|
FRDOCDIR=/usr/share/doc/lemonldap-ng-fr-doc \
|
||||||
|
UWSGIYAMLDIR=/etc/uwsgi/apps-available \
|
||||||
PROD=yes
|
PROD=yes
|
||||||
$(MAKE) install_fr_doc_site \
|
$(MAKE) install_fr_doc_site \
|
||||||
DESTDIR=$(CURDIR)/debian/tmp \
|
DESTDIR=$(CURDIR)/debian/tmp \
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
uwsgi:
|
uwsgi:
|
||||||
plugins: psgi
|
plugins: psgi
|
||||||
socket: 127.0.0.1:5000
|
socket: 127.0.0.1:5000
|
||||||
psgi: /TODO/macro/to/llng-server.psgi
|
psgi: __APPDIR__/llng-server.psgi
|
||||||
master: true
|
master: true
|
||||||
|
@ -1,4 +1,5 @@
|
|||||||
Changes
|
Changes
|
||||||
|
eg/llng-app.psgi
|
||||||
lemonldap-ng.ini
|
lemonldap-ng.ini
|
||||||
lib/Lemonldap/NG/Common.pm
|
lib/Lemonldap/NG/Common.pm
|
||||||
lib/Lemonldap/NG/Common/Apache/Session.pm
|
lib/Lemonldap/NG/Common/Apache/Session.pm
|
||||||
|
@ -1,7 +1,8 @@
|
|||||||
Changes
|
Changes
|
||||||
example/handler.psgi
|
eg/handler.psgi
|
||||||
example/scripts/purgeLocalCache
|
eg/llng-server.psgi
|
||||||
example/scripts/purgeLocalCache.cron.d
|
eg/scripts/purgeLocalCache
|
||||||
|
eg/scripts/purgeLocalCache.cron.d
|
||||||
lib/Lemonldap/NG/Handler.pm
|
lib/Lemonldap/NG/Handler.pm
|
||||||
lib/Lemonldap/NG/Handler/ApacheMP2.pm
|
lib/Lemonldap/NG/Handler/ApacheMP2.pm
|
||||||
lib/Lemonldap/NG/Handler/ApacheMP2/AuthBasic.pm
|
lib/Lemonldap/NG/Handler/ApacheMP2/AuthBasic.pm
|
||||||
|
@ -4,9 +4,6 @@ Changes
|
|||||||
eg/index.cgi
|
eg/index.cgi
|
||||||
eg/index.fcgi
|
eg/index.fcgi
|
||||||
eg/index.psgi
|
eg/index.psgi
|
||||||
example/soapconfigtest.pl
|
|
||||||
example/soaperrortest.pl
|
|
||||||
example/soaptest.pl
|
|
||||||
inc/LWP/Protocol/PSGI.pm
|
inc/LWP/Protocol/PSGI.pm
|
||||||
lib/Lemonldap/NG/Portal.pm
|
lib/Lemonldap/NG/Portal.pm
|
||||||
lib/Lemonldap/NG/Portal/2F/Engines/Default.pm
|
lib/Lemonldap/NG/Portal/2F/Engines/Default.pm
|
||||||
|
@ -1,24 +0,0 @@
|
|||||||
#!/usr/bin/perl
|
|
||||||
|
|
||||||
#==============================================================================
|
|
||||||
#
|
|
||||||
# Simple script to test LemonLDAP::NG SOAP configuration service
|
|
||||||
#
|
|
||||||
#==============================================================================
|
|
||||||
|
|
||||||
use strict;
|
|
||||||
use SOAP::Lite;
|
|
||||||
use Data::Dumper;
|
|
||||||
|
|
||||||
# Service
|
|
||||||
my $soap = SOAP::Lite->new( proxy => 'http://auth.example.com/config' );
|
|
||||||
$soap->default_ns('urn:Lemonldap/NG/Common/CGI/SOAPService');
|
|
||||||
|
|
||||||
# Call SOAP methods
|
|
||||||
my $lastCfg = $soap->call('lastCfg')->result();
|
|
||||||
print "Last configuration:\n" . Dumper $lastCfg;
|
|
||||||
|
|
||||||
my $config = $soap->call('getConfig')->result();
|
|
||||||
print "Configuration data:\n" . Dumper $config;
|
|
||||||
|
|
||||||
exit;
|
|
@ -1,26 +0,0 @@
|
|||||||
#!/usr/bin/perl
|
|
||||||
|
|
||||||
#==============================================================================
|
|
||||||
#
|
|
||||||
# Simple script to test LemonLDAP::NG SOAP error method
|
|
||||||
#
|
|
||||||
#==============================================================================
|
|
||||||
|
|
||||||
use strict;
|
|
||||||
use SOAP::Lite;
|
|
||||||
use Data::Dumper;
|
|
||||||
|
|
||||||
my $error_code = 15;
|
|
||||||
|
|
||||||
# Service
|
|
||||||
my $soap = SOAP::Lite->new( proxy => 'http://auth.example.com/index.pl' );
|
|
||||||
$soap->default_ns('urn:Lemonldap/NG/Common/CGI/SOAPService');
|
|
||||||
|
|
||||||
# Call error SOAP method
|
|
||||||
my $error_fr = $soap->call( 'error', $error_code, 'fr' )->result();
|
|
||||||
print Dumper $error_fr;
|
|
||||||
|
|
||||||
my $error_en = $soap->call( 'error', $error_code, 'en' )->result();
|
|
||||||
print Dumper $error_en;
|
|
||||||
|
|
||||||
exit;
|
|
@ -1,27 +0,0 @@
|
|||||||
#!/usr/bin/perl
|
|
||||||
|
|
||||||
#==============================================================================
|
|
||||||
#
|
|
||||||
# Simple script to test LemonLDAP::NG SOAP services
|
|
||||||
#
|
|
||||||
#==============================================================================
|
|
||||||
|
|
||||||
use strict;
|
|
||||||
use SOAP::Lite;
|
|
||||||
use Data::Dumper;
|
|
||||||
|
|
||||||
# Session ID (first parameter)
|
|
||||||
my $session_id = shift @ARGV;
|
|
||||||
|
|
||||||
# Service
|
|
||||||
my $soap = SOAP::Lite->new( proxy => 'http://auth.example.com/sessions' );
|
|
||||||
$soap->default_ns('urn:Lemonldap/NG/Common/CGI/SOAPService');
|
|
||||||
|
|
||||||
# Call some SOAP methods
|
|
||||||
my $attributes = $soap->call( 'getAttributes', $session_id )->result();
|
|
||||||
print Dumper $attributes;
|
|
||||||
|
|
||||||
my $applications = $soap->call( 'getMenuApplications', $session_id )->result();
|
|
||||||
print Dumper $applications;
|
|
||||||
|
|
||||||
exit;
|
|
Loading…
Reference in New Issue
Block a user