Clément Oudot
c546d7c9a9
Update Common Domain Cookie before IDP redirects to SP ( #18 )
2010-09-27 08:40:18 +00:00
Xavier Guimard
e7fdfb79ed
OpenID SREG in progress
2010-09-24 14:21:19 +00:00
Xavier Guimard
dab3aaa07f
Closes #156 : "Confirm parameter is not secured"
2010-09-24 12:02:57 +00:00
Xavier Guimard
bcc84f0ceb
make tidy
2010-09-23 16:41:39 +00:00
Clément Oudot
d7fb73b2e2
Rewrite Menu module, to integrate it in Portal ( #29 )
2010-09-16 15:10:00 +00:00
Clément Oudot
dda83a3e67
Store authChoice in session, and load it for existing sessions
2010-09-13 15:14:19 +00:00
Clément Oudot
c004e6363d
Load correct authentication module on issuer logout process
2010-09-10 20:27:14 +00:00
Clément Oudot
17b3c15466
Code authentication choice like multiple authentication ( #19 )
2010-09-10 19:52:44 +00:00
Clément Oudot
61a73e59dd
Work on authentication choice ( #19 )
2010-09-08 20:16:32 +00:00
Clément Oudot
d2549c2fbe
Always display authentication choices if any ( #19 )
2010-09-06 09:35:05 +00:00
Xavier Guimard
c8a2b8c5e0
"_safe" instead of "safe" in Menu
2010-09-06 09:23:23 +00:00
Clément Oudot
09b06fecbf
Add SSL and Apache in authentication choices ( #19 )
2010-09-03 16:02:10 +00:00
Clément Oudot
82b4ea080e
Load correct authentication module for authLogout (#LEMONDLAP-19)
2010-09-03 15:23:08 +00:00
Clément Oudot
41151228ff
Typo in checkXSSAttack call
2010-09-03 14:23:54 +00:00
Clément Oudot
ec8eb57b1f
* Common XSS attack check method
...
* Check XSS attack on authChoice parameter
2010-09-03 14:15:44 +00:00
Clément Oudot
c10f1a96db
Authentication choice in progress ( #19 )
2010-09-03 13:21:03 +00:00
Clément Oudot
0f4212abc2
URL param to choose authentication module (#LEMONLDAP19)
2010-09-02 15:32:40 +00:00
Clément Oudot
9992c56f43
Configure mapping between SAML authentication contexts and authentication levels ( #152 )
2010-09-02 09:09:10 +00:00
Clément Oudot
8d6899c2b2
Configuration keys for authentication levels ( #152 )
2010-09-01 16:06:01 +00:00
Xavier Guimard
06beaa6ff4
« make tidy »
2010-09-01 12:56:15 +00:00
Xavier Guimard
f6f09f635c
IssuerOpenID in progress
2010-08-31 15:36:32 +00:00
Clément Oudot
0d5faacc0a
Manage // in path when checking IssuerDB path
2010-08-31 15:14:44 +00:00
Clément Oudot
35935c5b7f
Little bug in controlExistingSession
2010-08-31 12:23:11 +00:00
Clément Oudot
1e1f9bf5ea
Modify binmode to bytes for SOAP responses ( closes #144 )
2010-08-31 10:34:28 +00:00
Clément Oudot
92352246ee
Support from logout services: they are deconnected with a GET request after portal logout ( #121 )
2010-08-30 15:46:26 +00:00
Clément Oudot
611d252ebc
AuthCAS: renew and gateway flags can now been configured
2010-08-30 13:41:45 +00:00
Clément Oudot
e3010de6e5
CAS Issuer ( #101 ):
...
* Manage gateway parameter (refused unauthenticated user)
* Display CAS logout URL message
* Do not check base64 encoded URL for CAS (mandatory for logout URL management)
2010-08-27 16:07:19 +00:00
Xavier Guimard
cd00bf3b62
OpenID server in progress
2010-08-27 15:34:03 +00:00
Clément Oudot
832f7050eb
Add activation parameter for each IssuerDB module ( #147 )
2010-08-27 13:01:54 +00:00
Clément Oudot
a6acf86f4e
Generate CAS Service Ticket ( #101 )
2010-08-25 14:23:45 +00:00
Clément Oudot
5877fa95d6
CAS IssuerDB skeleton ( #101 )
2010-08-23 15:47:53 +00:00
Clément Oudot
240c2b56eb
SAML:
...
* Use request path to choose IssuerDB module to load
* Store all used IssuerDB module in user session
* Launch issuerLogout method for all used IssuerDB module
* References #102
2010-08-23 13:27:16 +00:00
Clément Oudot
4fa2f6318e
Build removeOther link with javascript, to get the final redirection URL and method ( #125 )
2010-08-20 15:07:55 +00:00
Clément Oudot
a9a2106e89
Add a back URL in removeOther link ( #125 )
2010-08-20 13:48:09 +00:00
Clément Oudot
a85958f90f
Always clear previous hidden form value when PE_INFO is returned by autoRedirect and autoPost ( #125 )
2010-08-20 10:52:52 +00:00
Clément Oudot
5e6efebab1
Manage info form hidden fields for autoRedirect and autoPost ( #125 )
2010-08-20 10:31:20 +00:00
Clément Oudot
ead9413dd8
Possibility to control form method of info and confirm screen (references #125 )
2010-08-19 16:19:30 +00:00
Clément Oudot
e29a65e92b
Disable timer on IDP list ( #141 )
2010-08-18 15:10:30 +00:00
Clément Oudot
33403f3396
Display a link to go back to SP on IDP login page ( #140 )
2010-08-18 13:39:15 +00:00
Clément Oudot
a32502b8f7
Do use st when browsing backends (authentication, userDB, ...) to prevent from a bug in Perl-LDAP 0.40 ( #128 )
2010-07-21 12:13:12 +00:00
Clément Oudot
15cb8f6e29
SAML error codes for IDP and UserDBSAML ( #40 )
2010-07-05 15:58:03 +00:00
Clément Oudot
abfc445f38
SAML Error codes for SP ( #40 )
2010-07-05 15:38:02 +00:00
Clément Oudot
3ed02a09b8
* Set noInfo flag when updating session
...
* Get sessionIndex from SLO request before validating the request
* Use NameID dump in debug message
2010-07-05 09:36:52 +00:00
Clément Oudot
0dac2f1374
* authInit should be called before issuerForAuthUser when we catch SLO URL in IDP proxy mode
...
* do not 'return' sendSLOErrorMessage
2010-07-02 15:42:22 +00:00
Clément Oudot
b635d87761
* authInit should be called before issuerForAuthUser when we catch SLO URL in IDP proxy mode
...
* do not 'return' sendSLOErrorMessage
2010-07-02 15:14:54 +00:00
Clément Oudot
3ee1e9b393
Add an option to encode Metadata in UTF-8 ( #119 )
2010-06-28 09:11:59 +00:00
Xavier Guimard
0e082b1d8f
Closes : #114 : Bad usage of Apache::Session::searchOn() on portal
2010-06-22 16:30:38 +00:00
Xavier Guimard
aa190c7f35
make tidy
2010-06-21 15:29:59 +00:00
Xavier Guimard
11dd597a41
Some Lintian tips
2010-06-08 10:39:34 +00:00
Xavier Guimard
208a4f34d2
Closes #82 : CDA always use secured cookie even if requested site is a http one
2010-06-04 08:43:42 +00:00