Christophe Maudoux
|
a7467b1d15
|
Fix version (#2605)
|
2021-09-23 21:27:05 +02:00 |
|
Maxime Besson
|
6302c957cc
|
Add SAMESITE template param (#2605)
|
2021-09-23 17:44:52 +02:00 |
|
Christophe Maudoux
|
a4e15ad9a9
|
Set sameSite value for llnglanguage cookie (#2605)
|
2021-09-23 17:38:44 +02:00 |
|
Yadd
|
3ed77a01c2
|
Add buildurl method (#2594)
|
2021-08-27 14:35:07 +02:00 |
|
Christophe Maudoux
|
21ba445141
|
Fix unit test (#2564) & some warnings
|
2021-07-28 10:38:45 +02:00 |
|
Christophe Maudoux
|
a6ecbf1ec8
|
Fix version & comment
|
2021-07-26 22:55:27 +02:00 |
|
Maxime Besson
|
0d513ce5b7
|
Fix CORS on userinfo error response (#2567)
|
2021-07-26 15:44:20 +02:00 |
|
Maxime Besson
|
15054b9038
|
Extra precaution for #2539
|
2021-06-25 07:54:03 +02:00 |
|
Yadd
|
3732cdcc19
|
Better URL parsing (#2477)
|
2021-06-24 14:33:27 +02:00 |
|
Maxime Besson
|
63cd5ffb40
|
Revert 652d8ba9bc
See #2482
|
2021-06-11 08:53:26 +02:00 |
|
Maxime Besson
|
cd97d3b922
|
Refactor $req->{cspFormAction} (#2513)
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
a876d978af
|
Suggest improvement for next major version
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
913ebbd556
|
fix missing domain in child-src during SAML POST logout (#2513)
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
5ba0c11b58
|
Add helper to build CSP host list (#2513)
|
2021-04-23 09:02:24 +02:00 |
|
Christophe Maudoux
|
652d8ba9bc
|
Prevent authentication on backend if account is locked (#2243)
|
2020-12-16 22:49:41 +01:00 |
|
Christophe Maudoux
|
c2266720f9
|
Unauthenticated logout request with route & improve unit test (#2342)
|
2020-12-06 11:21:11 +01:00 |
|
Christophe Maudoux
|
b2306cc8ad
|
Unauthenticated logout (#2342)
|
2020-12-05 19:31:23 +01:00 |
|
Maxime Besson
|
0263865faa
|
Add CORS headers to error pages (#2380)
|
2020-11-12 14:34:16 +01:00 |
|
Xavier Guimard
|
893385d007
|
Replace application/javascript by application/json (Fixes #2376)
|
2020-11-06 17:58:41 +01:00 |
|
Maxime Besson
|
1de41224f8
|
Avoid memory leaks in $req->steps (#2369)
|
2020-11-02 23:22:04 +01:00 |
|
Xavier Guimard
|
c8df084247
|
Update versions
|
2020-09-04 17:59:00 +02:00 |
|
Maxime Besson
|
f9cdb5497a
|
Only clean _url part of pdata when redirecting to issuer (#1878,#2124)
|
2020-09-04 17:17:04 +02:00 |
|
Maxime Besson
|
4497f39efe
|
Factor psession id calculation into Common
|
2020-08-17 18:43:29 +02:00 |
|
Maxime Besson
|
26cd1945fb
|
Try to compute the correct value of SameSite by default (#2281)
|
2020-08-17 18:05:09 +02:00 |
|
Maxime Besson
|
7a02fdf8e5
|
rollback caa346d075 (#2179)
No longer needed since #2261
|
2020-08-12 09:49:14 +02:00 |
|
Maxime Besson
|
9d9e16e3f9
|
Remove setAuthSessionInfo from refresh process (#2261)
|
2020-08-12 09:49:14 +02:00 |
|
Maxime Besson
|
9aa3b9b03f
|
Add correct secure flag to pdata cookie (#2272)
|
2020-08-10 12:10:33 +02:00 |
|
Maxime Besson
|
a96820d6f6
|
Set secure flag when removing cookie (#2272)
|
2020-08-10 12:10:33 +02:00 |
|
Maxime Besson
|
5df1850847
|
Add cache-control headers to sendJSONresponse (#2234)
|
2020-06-24 15:49:50 +02:00 |
|
Christophe Maudoux
|
caa346d075
|
Restore previous authentication level (#2179)
|
2020-04-27 18:20:23 +02:00 |
|
Xavier Guimard
|
1f80a0ab8c
|
Avoid little warning in test
|
2020-04-22 15:37:19 +02:00 |
|
Maxime Besson
|
8c94bf0f13
|
Allow portal JSON responses to include a rendered HTML error block (#2110)
|
2020-04-15 18:42:31 +02:00 |
|
Maxime Besson
|
e1767abfda
|
CORS: special handling for AJAX SSL (#2110)
|
2020-04-15 18:42:31 +02:00 |
|
Maxime Besson
|
2440fc7866
|
use sendJSONresponse instead of handcrafting portal response
|
2020-04-15 18:42:31 +02:00 |
|
Christophe Maudoux
|
9e84447d2d
|
Fix update session (#2129)
|
2020-04-06 23:28:01 +02:00 |
|
Xavier Guimard
|
4459a47f76
|
Tidy
|
2020-02-20 23:37:05 +01:00 |
|
Maxime Besson
|
47068c51b8
|
Revert "Prevent portal from crashing when keepPdata=1 (#1893)"
This reverts commit 2b4defb2a9 and
implements a fix "at the source" instead. Should fix #2099.
|
2020-02-20 22:24:26 +01:00 |
|
Maxime Besson
|
68be974e51
|
Add option to compute userdb groups before macros (#1877)
|
2020-02-05 15:39:45 +01:00 |
|
Maxime Besson
|
f997a26e41
|
Fix form method when displaying info in autoPost (#2080)
|
2020-01-30 20:43:04 +01:00 |
|
Clément OUDOT
|
faa65c4abf
|
Options to add a custom CSS file (#2076)
|
2020-01-28 15:14:24 +01:00 |
|
Xavier Guimard
|
f3f97ccb80
|
Add sameSite parameter (#2069)
|
2020-01-20 06:21:09 +01:00 |
|
Christophe Maudoux
|
0408ce80b8
|
Better better fix (#2061)
|
2020-01-19 18:06:56 +01:00 |
|
Christophe Maudoux
|
32d7f46b1a
|
Better fix (#2061)
|
2020-01-18 18:58:42 +01:00 |
|
Christophe Maudoux
|
fd2a9ce226
|
Append info log msg (#2061)
|
2020-01-17 22:27:03 +01:00 |
|
Christophe Maudoux
|
138ef363d4
|
Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2061)
|
2020-01-17 22:17:02 +01:00 |
|
Christophe Maudoux
|
6f31d98710
|
Revert "Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2063)"
This reverts commit 965678dde2 .
|
2020-01-17 22:16:44 +01:00 |
|
Christophe Maudoux
|
965678dde2
|
Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2063)
|
2020-01-17 22:10:06 +01:00 |
|
Christophe Maudoux
|
583bbbe285
|
Append CSP frame-ancestors option & Improve unit test (#2068)
|
2020-01-15 16:09:57 +01:00 |
|
Christophe Maudoux
|
b28a9d148e
|
Modify log level
|
2020-01-08 23:06:49 +01:00 |
|
Christophe Maudoux
|
1988983c90
|
Typo
|
2019-12-31 17:14:44 +01:00 |
|