dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
11,440 Commits 3 Branches 0 Tags 75 MiB
13a7a81173
Commit Graph

4557 Commits

Author SHA1 Message Date
Maxime Besson
cf70ebe293 Stop triggering XSS protection on escaped commas 
Commas are safe in HTML and JS, so there is no risk of XSS
 2021-06-24 20:16:20 +02:00
Maxime Besson
1d80c262ab Make unit test for #2539 less noisy 2021-06-24 19:05:11 +02:00
Maxime Besson
70bd06bc32 Fix unit test for #2534 2021-06-24 19:02:34 +02:00
Maxime Besson
4a2a786598 Fix CDA wildcard regexp (#2534) 2021-06-24 19:02:17 +02:00
Maxime Besson
3d1cc3f499 Unit test for #2534 2021-06-24 16:59:20 +02:00
Maxime Besson
dbd65d1b2b Handle wildcards in CDA check (#2534) 2021-06-24 16:59:20 +02:00
Christophe Maudoux
71fa5d09f7 Be more strict with URL (#2477) 2021-06-24 14:33:27 +02:00
Yadd
3732cdcc19 Better URL parsing (#2477) 2021-06-24 14:33:27 +02:00
Yadd
8a18543f55 Remove TODO loop 2021-06-24 14:04:31 +02:00
Maxime Besson
9a2dc48b56 Unit test for #2550 2021-06-21 09:38:03 +02:00
Maxime Besson
8db02a693f Only release IDtoken when scope contains openid (#2550) 2021-06-21 09:38:03 +02:00
Maxime Besson
ee51e010dc Unit test for #2548 2021-06-21 09:38:03 +02:00
Maxime Besson
e1b7f61d13 Update ID token unit tests 2021-06-21 09:38:03 +02:00
Maxime Besson
beaacca9a0 Refactor _handleRefreshTokenGrant to use _generateIDToken (#2550) 2021-06-21 09:38:03 +02:00
Maxime Besson
c931b30263 Refactor _generateIDToken (#2550) 2021-06-21 09:38:03 +02:00
Yadd
b6a1f946b2 Fix handler cache corruption (#2539) 2021-06-19 18:43:41 +02:00
Maxime Besson
2de2cbf454 Fix 2F unit test (#2539) 2021-06-19 18:25:07 +02:00
Clément OUDOT
bdeb1e70d9 Allow to display password value in login form (#2454) 2021-06-16 20:50:11 +02:00
Maxime Besson
b35bd70646 totp: add more instructions 2021-06-16 09:48:28 +02:00
Maxime Besson
3c37565eb9 Improve TOTP error reporting (#2541) 2021-06-15 18:07:03 +02:00
Maxime Besson
699943365b Improve messages on TOTP registration (#2541) 2021-06-15 15:56:18 +02:00
Maxime Besson
95fe0512c0 Display TOTP key in a readable form (#2541) 2021-06-15 15:48:10 +02:00
Maxime Besson
3ff680aceb Update templates for #2541 2021-06-15 14:54:33 +02:00
Maxime Besson
89b6215d9d Update translations for #2541 2021-06-15 14:54:33 +02:00
Maxime Besson
14548b9a1f Remove "new totp" from portal js 2021-06-15 14:54:33 +02:00
Maxime Besson
50ef67b678 Fix error display in 2F registration screens 2021-06-15 14:54:32 +02:00
Maxime Besson
7b0990addd Remove totp options from code (#2541) 2021-06-15 14:54:32 +02:00
Maxime Besson
dae4293ecf Unit test for #2518 2021-06-15 14:26:23 +02:00
Maxime Besson
77f5577dc4 Improve SAML test lib 2021-06-15 12:40:15 +02:00
Maxime Besson
cf59bb915e refactor expectAuthenticatedAs 2021-06-15 12:40:15 +02:00
Maxime Besson
6f5cd3b645 Fix some undef warnings 2021-06-15 12:40:15 +02:00
Maxime Besson
75b81fcb5a Fix NameID value when unspecified is requested by SP (#2518) 2021-06-15 11:27:37 +02:00
Maxime Besson
63cd5ffb40 Revert 652d8ba9bc 
See #2482
 2021-06-11 08:53:26 +02:00
Christophe Maudoux
469d2a40aa Fix warning (#2538) 2021-06-09 23:06:03 +02:00
Christophe Maudoux
86f46ebc5b Fix some warnings (#2538) 2021-06-08 23:03:54 +02:00
Yadd
5fc0b6f002 Update tr translation from transifex 2021-06-07 18:34:06 +02:00
Maxime Besson
87295178e0 optimize SingleSession to avoid unneeded session fetches (#2536) 2021-06-04 16:17:18 +02:00
Maxime Besson
275567436e Unit test for #2496 2021-06-03 18:31:38 +02:00
Maxime Besson
b8e8bbcedd Ignore unknown scopes (#2496) 2021-06-03 18:24:55 +02:00
Maxime Besson
50225ce438 Add option to only allow declared oidc scopes (#2496) 2021-06-03 17:40:49 +02:00
Maxime Besson
55cdfefd7b Workaround for #2472 2021-06-02 15:36:05 +02:00
Maxime Besson
2414fb4751 Unit tests for (#2510) 2021-06-02 11:08:07 +02:00
Maxime Besson
3b76479bda Add expectPdata function to test lib 2021-06-02 11:07:53 +02:00
Maxime Besson
fad337c58c Add hooks on password change (#2510) 2021-06-02 11:07:28 +02:00
Maxime Besson
d4aed0b332 Tidy test lib 2021-06-02 11:07:28 +02:00
Maxime Besson
91cfba275a Skip registration of SAML SP when config has errors (#2525) 2021-06-02 08:34:02 +02:00
Maxime Besson
71a8fc6d16 Skip registration of CAS App when config has errors (#2525) 2021-06-02 08:34:02 +02:00
Maxime Besson
e50db3f083 Skip registration of OIDC RP when config has errors (#2525) 2021-06-02 08:34:01 +02:00
Maxime Besson
6ef522c193 Unit tests for #2533 2021-06-01 11:28:34 +02:00
Maxime Besson
cf3809a0de Add CAS hooks (#2533) 2021-06-01 11:27:45 +02:00
Maxime Besson
ec2b904f4f Unit test for #2532 2021-05-31 11:23:38 +02:00
Maxime Besson
e98aafd6f7 add oidcGenerateCode hook (#2532) 2021-05-31 11:16:28 +02:00
Maxime Besson
8992b3e789 Unit test for #2529 2021-05-31 09:52:26 +02:00
Maxime Besson
15298466ea Fix JWT userinfo in Auth::OpenIDConnect (#2529) 2021-05-31 09:52:02 +02:00
Yadd
0f11d7c06e Finish BrowserID/Persona removal 2021-05-22 16:16:38 +02:00
Christophe Maudoux
66f428b474 Improve notifications display (Thx @antoinerosier) 2021-05-20 19:22:18 +02:00
Christophe Maudoux
7860e18034 Append unit test (#1976) 2021-05-08 21:38:13 +02:00
Christophe Maudoux
a3c48af972 Append unit test (#1976) 2021-05-07 08:15:32 +02:00
Christophe Maudoux
cf55716825 Allow findUser with UpgradeSession (#1976) 2021-05-06 23:16:26 +02:00
Yadd
a24ed7bc41 Fix GrantSession rules sort 2021-05-04 15:50:38 +02:00
Christophe Maudoux
de3164fea7 Fix button top margin (#1976) 2021-05-01 22:35:56 +02:00
Yadd
d1d3cfa3f2 Update tr translation from transifex 2021-05-01 07:57:04 +02:00
Christophe Maudoux
fc481d40d2 Rename param (#1976) 2021-04-30 22:36:31 +02:00
Maxime Besson
2142b90caa Unit test for #2513 2021-04-23 09:02:24 +02:00
Maxime Besson
16557f3965 Refactor child-src unit tests (#2513) 2021-04-23 09:02:24 +02:00
Maxime Besson
cd97d3b922 Refactor $req->{cspFormAction} (#2513) 2021-04-23 09:02:24 +02:00
Maxime Besson
a876d978af Suggest improvement for next major version 2021-04-23 09:02:24 +02:00
Maxime Besson
913ebbd556 fix missing domain in child-src during SAML POST logout (#2513) 2021-04-23 09:02:24 +02:00
Maxime Besson
5ba0c11b58 Add helper to build CSP host list (#2513) 2021-04-23 09:02:24 +02:00
Christophe Maudoux
b54c95ccd2 Improve unit tests & Fix regex (#2509) 2021-04-21 22:14:47 +02:00
Maxime Besson
8695a633a7 Force type of JSON fields in token response (#2511) 2021-04-20 11:31:32 +02:00
Christophe Maudoux
21ced5dbad Fix speChars test, typos & display (#2509) 2021-04-14 13:28:12 +02:00
Maxime Besson
d4c1c3c7de Unit test for #2506 2021-04-09 17:52:24 +02:00
Maxime Besson
a94fb616bd Allow admin to disallow host-based match (#2506) 2021-04-09 17:51:54 +02:00
Maxime Besson
1253effa29 Unit test for #2502 2021-04-07 16:40:32 +02:00
Maxime Besson
c1e059eeb3 Use authChoiceAuthBasic to select Choice (#2502) 2021-04-07 16:40:32 +02:00
Yadd
e6a2706c85 Update languages from transifex 2021-04-07 14:36:25 +02:00
Yadd
f930e449ab Order language keys 2021-04-07 13:46:32 +02:00
Christophe Maudoux
64dffcf4d0 Send only technical and exported attributes (#2503) 2021-04-03 16:46:43 +02:00
Christophe Maudoux
9f77e89f96 Send exported attributes with REST session server & typos (#2503) 2021-04-02 23:57:30 +02:00
Christophe Maudoux
4751427105 Fix error level & Improve doc (#1976) 2021-04-01 23:31:48 +02:00
Christophe Maudoux
c0db322ef0 Perl critic 2021-04-01 23:07:58 +02:00
Christophe Maudoux
bcfb075f63 Be more consistent with REST params & Update doc (#1976) 2021-04-01 22:48:08 +02:00
Christophe Maudoux
6eda19c112 Fix test (#2501) 2021-04-01 19:02:46 +02:00
Christophe Maudoux
b67d11c58a Update manifest 2021-04-01 14:49:44 +02:00
Christophe Maudoux
654184dd66 Fix bad request (#2501) 2021-04-01 14:49:44 +02:00
Maxime Besson
297dc830af Update mail templates to no longer use string substitution (#2495) 2021-03-31 14:27:23 +02:00
Maxime Besson
d696853556 Factor MAIN_LOGO variable in loadMailTemplate (#2495) 2021-03-31 14:27:23 +02:00
Christophe Maudoux
89111859a0 Typos (#1976) 2021-03-30 23:54:06 +02:00
Maxime Besson
20e1f9ded0 Hash JWT to catch tampering (#2419) 
This mechanism's only purpose is to make the introsection endpoint fail
to verify the token when the JWT itself has been tampered with.
 2021-03-30 16:32:14 +02:00
Maxime Besson
2c8cbbefe6 "xxx is allowed to update 2FA" should be a debug message 2021-03-30 16:32:14 +02:00
Clément OUDOT
55ab4b5a5f Fix CAS log message on service ticket validation error (#2494) 2021-03-25 16:33:48 +01:00
Maxime Besson
02b680df30 fix #2489 2021-03-19 16:45:37 +01:00
Maxime Besson
96a667cf2e clarify REST log messages 2021-03-17 14:24:47 +01:00
Maxime Besson
9fda75edc5 Unit test for #2488 2021-03-17 14:24:47 +01:00
Maxime Besson
ca6c98c26c Allow selection of saml ACS during idp initiated (#2488) 2021-03-17 14:24:47 +01:00
Maxime Besson
c0f8e8f46b Skip serializing psgi streams when saving request 
It can interfere with unit tests in some cases, like #2000
 2021-03-15 21:18:08 +01:00
Maxime Besson
fc693184dc Unit test for #2484 2021-03-10 15:47:46 +01:00
Maxime Besson
44abc1e889 Add hook for client credentials (#2484) 2021-03-10 15:47:19 +01:00
Maxime Besson
6a3479ea3c unit tests: Try to find templateDir in path 
This change makes running the testsuite from an external directory
easier. Which is useful if you want to unit test a custom module
 2021-03-08 18:45:13 +01:00