Clément Oudot
b146969947
OpenID Issuer parameters in Manager ( #175 )
2010-10-04 09:55:50 +00:00
Clément Oudot
6f37ca1ddf
check authChoice in Manager globalTests
2010-10-04 09:07:30 +00:00
Xavier Guimard
382ac53b4e
More global tests:
...
- UserDB(OpenID|SAML) must be used with Auth$1
- Remove CAS, OpenID unsed and uncustomized parameters
2010-10-04 05:48:22 +00:00
Xavier Guimard
162bcd3858
- More configuration test
...
- Compact configuration by removing unused and non-customized parameters (not finished)
2010-10-03 21:43:22 +00:00
Xavier Guimard
04c2f65230
More comments on globalTests()
2010-10-03 20:06:13 +00:00
Xavier Guimard
f570afbad1
Closes #181
2010-10-03 19:58:07 +00:00
Xavier Guimard
84a56ef1d8
- make tidy
...
- OpenID log levels
- DIFFPREFIX in Makefile (for vservers,...)
2010-10-03 18:32:53 +00:00
Xavier Guimard
2ae2c53868
Doxygen comments
2010-10-03 10:26:50 +00:00
Xavier Guimard
5dd15f78f3
- Doxygen doc in progress
...
- lmLog display caller in case of level != debug
2010-10-03 08:25:40 +00:00
Xavier Guimard
65985c304f
Display caller for a no-debug message
2010-10-02 21:55:57 +00:00
Xavier Guimard
ad0ebc182e
Doxygen comments
2010-10-02 15:45:10 +00:00
Clément Oudot
d745debde9
Complete OpenID category in sessions manager
2010-10-01 15:24:55 +00:00
Clément Oudot
df72fa3d52
Add a category for OpenID attributes in sessions explorer
2010-10-01 15:17:52 +00:00
Clément Oudot
7a84710467
Close bug #179
2010-10-01 15:05:06 +00:00
Clément Oudot
24dc3d54e9
Use get_module for check in AuthOpenID
2010-10-01 14:21:46 +00:00
Clément Oudot
68daddc246
Simple tests for OpenID
2010-10-01 13:21:54 +00:00
Clément Oudot
a346e07f1d
Do not abort on unknow attribute, as OpenID can be used with Multi or Choice authentication
2010-10-01 13:21:25 +00:00
Clément Oudot
a81c8c7f52
Use get_module for check in UserDBOpenID init
2010-10-01 13:04:13 +00:00
Clément Oudot
82feff1eb7
OpenID: prefill user login with submitted OpenID identity
2010-10-01 12:36:45 +00:00
Clément Oudot
4a181801e5
Correct previous commit
2010-10-01 09:47:06 +00:00
Clément Oudot
8cc808f1de
IssuerOpenID: store only OpenID params in hidden fields ( #177 )
2010-10-01 09:34:42 +00:00
Clément Oudot
52e8221608
Correct code of updateSession
2010-10-01 09:06:32 +00:00
Clément Oudot
42e19787f1
Use standard header for OpenID Issuer template
2010-10-01 07:48:50 +00:00
Clément Oudot
1ad26b0f42
Add CSS special styles for webkit
2010-10-01 07:48:21 +00:00
Xavier Guimard
f804756fad
Debian install: links in /etc/apache2/sites-available
2010-09-30 20:20:12 +00:00
Clément Oudot
7601bc6415
Configure POST form replay for each vhost in Manager ( #174 )
2010-09-30 12:22:18 +00:00
Clément Oudot
eec03867da
Add Vhost support for POST ( #174 )
2010-09-29 12:59:35 +00:00
Clément Oudot
595c2ad96e
Allow to use HASHREF in expr parameter of POST feature ( #174 )
2010-09-29 11:07:42 +00:00
Xavier Guimard
a406d79d2f
updateSession + checkboxes checked
2010-09-29 10:09:04 +00:00
Xavier Guimard
431a809a90
Messages update
2010-09-29 07:24:56 +00:00
Xavier Guimard
aa39949546
OpenID SREG works !!!
2010-09-29 06:42:48 +00:00
Xavier Guimard
7db3b688fa
make tidy
2010-09-29 06:28:15 +00:00
Xavier Guimard
b48232068e
OpenID SREG in progress
2010-09-28 16:26:35 +00:00
Clément Oudot
181ff5b309
Add Handler version in Apache Server Signature
2010-09-28 15:18:23 +00:00
Clément Oudot
6147019e90
* Portal error page merged with main portal script
...
* Option to use Redirect instead of Forbidden in Handler (#6 )
2010-09-28 14:40:50 +00:00
Clément Oudot
7f3b69b8c9
Create Display module to clean portal index.pl ( #160 )
2010-09-28 10:30:57 +00:00
Xavier Guimard
ed4de56194
Doxygen comments for inheritance
2010-09-28 05:47:47 +00:00
Clément Oudot
6ddf9774c5
Menu applications can now be requested trought SOAP ( #25 )
2010-09-27 14:18:48 +00:00
Clément Oudot
0a0c13a1b9
Common Domain Cookie parameters in Manager ( #18 )
2010-09-27 10:09:06 +00:00
Clément Oudot
19a5ec8512
Allow empty strings in Manager Regexp, because all parameters are not mandatory
2010-09-27 10:07:47 +00:00
Clément Oudot
aeae8ce1d8
Typo in CDC writer URL call ( #18 )
2010-09-27 09:11:37 +00:00
Clément Oudot
6697e4a221
forcedSAML must not be shown in authentication choices
2010-09-27 08:53:16 +00:00
Clément Oudot
c546d7c9a9
Update Common Domain Cookie before IDP redirects to SP ( #18 )
2010-09-27 08:40:18 +00:00
Xavier Guimard
c57087d696
OpenID SREG in progress...
2010-09-26 13:09:46 +00:00
Xavier Guimard
657238d8d8
OpenID SREG in progress
2010-09-26 08:16:56 +00:00
Xavier Guimard
075767dacc
OpenID SREG in progress
2010-09-25 14:40:38 +00:00
Xavier Guimard
545c05ca60
OpenID SREG in progress
2010-09-25 14:15:53 +00:00
Xavier Guimard
23f22817b0
OpenID SREG in progress
2010-09-25 12:55:29 +00:00
Clément Oudot
537fcbdf26
Use Common Domain Cookie in AuthSAML ( #18 )
2010-09-24 15:27:40 +00:00
Clément Oudot
c3e9fbba7e
Module to manage SAML Common Domain Cookie ( #18 )
2010-09-24 14:23:27 +00:00
Xavier Guimard
e7fdfb79ed
OpenID SREG in progress
2010-09-24 14:21:19 +00:00
Xavier Guimard
dab3aaa07f
Closes #156 : "Confirm parameter is not secured"
2010-09-24 12:02:57 +00:00
Xavier Guimard
625383fd8d
Redis is now supported by session explorer
2010-09-24 09:29:43 +00:00
Xavier Guimard
3831981423
When configuration is not correct, Manager must even be launched
2010-09-24 08:41:45 +00:00
Clément Oudot
6b81b4ab3f
Correct session explorer javascript to be compatible with Chrome
2010-09-24 08:22:56 +00:00
Xavier Guimard
10989d498d
lmLog is not exported now
2010-09-24 07:45:40 +00:00
Xavier Guimard
dd1b73d8c4
Debugging for CGIs when using cig-script instead of ModPerl::Registry (this become the default for Debian install)
2010-09-24 07:40:51 +00:00
Xavier Guimard
bcc84f0ceb
make tidy
2010-09-23 16:41:39 +00:00
Xavier Guimard
7c0e37d6fd
Closes : #157 "Warning messages in make test"
2010-09-23 16:21:47 +00:00
Clément Oudot
c5fefefe81
Use eval in _SAML BEGIN block to get Lasso constants values
2010-09-23 15:47:17 +00:00
Clément Oudot
8f7a94c1fb
Add artifact resolution URL in authForce ( fixes #170 )
2010-09-23 15:29:48 +00:00
Xavier Guimard
fb88b25e10
Optimization to increase performances
2010-09-23 15:09:27 +00:00
Clément Oudot
a51202cd65
Correct a bug in CAS login return URL ( #169 )
2010-09-23 13:19:25 +00:00
Clément Oudot
cccc42fa66
Application list removed from ini file and stored in first configuration file ( #29 )
2010-09-23 10:49:02 +00:00
Clément Oudot
3f076ea350
Empty ini sections causes portal crash ( fixes #167 )
2010-09-23 10:19:06 +00:00
Clément Oudot
6008516967
Add icons (GPL) for applications in Menu ( #29 )
2010-09-23 09:30:00 +00:00
Clément Oudot
193833b756
Fix bug for creating applications under created categories in Manager ( #29 )
2010-09-23 09:07:36 +00:00
Xavier Guimard
bb234bfb9e
Better regexp for tests
2010-09-23 07:17:24 +00:00
Clément Oudot
890daaf5a5
'on' and 'off' are also valid values fo display mode ( #29 )
2010-09-22 14:26:28 +00:00
Clément Oudot
6a870286b2
Configure applications in categories in Manager - need tests ( #29 )
2010-09-22 13:59:35 +00:00
Clément Oudot
55be387a5c
Menu categories can be configured trough manager ( #29 )
2010-09-21 15:38:13 +00:00
Clément Oudot
d89f1822f6
Dark theme can now be selected in Manager
2010-09-20 15:39:12 +00:00
Clément Oudot
48a12e1610
Update MANIFEST for application logos ( #29 )
2010-09-20 15:23:55 +00:00
Clément Oudot
68420c6e42
Configure application list in Manager - work in progress ( #29 )
2010-09-20 15:23:03 +00:00
Clément Oudot
ff58e89b0a
Categories and applications sorted by alphabetical order of their id ( #29 )
2010-09-20 14:04:33 +00:00
Clément Oudot
fd114a0345
New application list for dark theme ( #29 )
2010-09-20 13:07:28 +00:00
Clément Oudot
fecc9cc332
Adapt CSS for application list, skin pastel ( #29 )
2010-09-20 12:35:24 +00:00
Clément Oudot
36a1674c09
Use template loops to display categories and applications - work in progress ( #29 )
2010-09-20 10:39:23 +00:00
Clément Oudot
59c17a6604
Build applications list as a perl struct ( #29 )
2010-09-20 08:31:09 +00:00
Xavier Guimard
eae0070d8e
Doxygen doc
2010-09-19 12:23:46 +00:00
Xavier Guimard
a28a147674
Little error
2010-09-19 09:47:38 +00:00
Xavier Guimard
e8b2860ff6
- Missing Debian dependencies
...
- META.yml update
2010-09-19 09:29:40 +00:00
Xavier Guimard
df0c8004c0
New feature : configuration is cached in portal memory
2010-09-19 09:25:47 +00:00
Xavier Guimard
b529a4c794
Warn if key is not defined
2010-09-18 16:11:13 +00:00
Xavier Guimard
416fa64a0d
Set a default value to encryption key
2010-09-18 16:08:26 +00:00
Xavier Guimard
85d384bac1
#28 in progress
2010-09-18 06:41:48 +00:00
Xavier Guimard
c80795805a
#28 in progress
2010-09-18 06:23:34 +00:00
Xavier Guimard
305113c53f
#28 in progress :
...
- Extension to Net::OpenID::Server to manage extensions (and sign them)
2010-09-17 15:32:43 +00:00
Clément Oudot
ce8b2f0adf
Dark skin in progress
2010-09-17 12:20:58 +00:00
Xavier Guimard
09b6f037df
_SOAP.pm and Menu.pm provide both _compileRules => moved to _LibAccess.pm
2010-09-17 10:23:49 +00:00
Xavier Guimard
65b51d7c60
Autocommit for DBI
2010-09-17 09:28:26 +00:00
Xavier Guimard
35385562ec
Join DBI files + closes #118 (locks not managed for other DB than MySQL)
2010-09-17 09:26:03 +00:00
Clément Oudot
d2bef48797
New Menu in impact skin ( #29 )
2010-09-16 15:23:05 +00:00
Clément Oudot
d7fb73b2e2
Rewrite Menu module, to integrate it in Portal ( #29 )
2010-09-16 15:10:00 +00:00
Clément Oudot
b658c3df43
SAFEWRAP test was not good
2010-09-16 08:44:56 +00:00
Clément Oudot
30a337176e
Correct confirmation template for skin impact
2010-09-15 15:14:11 +00:00
Clément Oudot
598190ede8
Manager: display all authentication modules if Multi is selected
2010-09-15 12:00:55 +00:00
Clément Oudot
0ab89e1f14
Use a cookie to know which authchoice tab was selected
2010-09-15 08:31:44 +00:00
Clément Oudot
978a354970
By default, display password form only for LDAP and DBI authentication modules
2010-09-15 08:29:34 +00:00
Clément Oudot
6623372844
Add SSL logo
2010-09-13 20:22:51 +00:00
Clément Oudot
2bd3f69fe9
Attributes in exportedVars can have a '-' in their name
2010-09-13 15:19:30 +00:00
Clément Oudot
dda83a3e67
Store authChoice in session, and load it for existing sessions
2010-09-13 15:14:19 +00:00
Clément Oudot
07c1c59d0e
Load IDPs in SAML userDBInit to manage SLO in SAML proxy mode
2010-09-13 15:10:39 +00:00
Clément Oudot
657c39d563
Use subProcess to change password in Menu
2010-09-13 15:08:29 +00:00
Clément Oudot
3304885bf0
Register dn in session even if no UserDBLDAP selected
2010-09-13 14:09:07 +00:00
Clément Oudot
a9ab38424d
Dark skin: mail reset form
2010-09-13 14:08:20 +00:00
Clément Oudot
c004e6363d
Load correct authentication module on issuer logout process
2010-09-10 20:27:14 +00:00
Clément Oudot
0fb130e29e
Correct UserDBSAML init test
2010-09-10 20:17:08 +00:00
Clément Oudot
17b3c15466
Code authentication choice like multiple authentication ( #19 )
2010-09-10 19:52:44 +00:00
Clément Oudot
974b4377f7
Dark theme in progress
2010-09-09 20:45:57 +00:00
Clément Oudot
18e62ab725
Work on a new skin (dark), based on pastel templates
2010-09-09 15:49:10 +00:00
Clément Oudot
1a7c6e5e77
Modify file organization for skins
2010-09-09 15:00:59 +00:00
Clément Oudot
789b726225
Some enhancements on skins
2010-09-08 20:17:56 +00:00
Clément Oudot
61a73e59dd
Work on authentication choice ( #19 )
2010-09-08 20:16:32 +00:00
Clément Oudot
a565dd555a
Display user login in impact theme
2010-09-07 14:02:18 +00:00
Clément Oudot
1f4a6e6450
#19 :
...
* Dedicated AuthChoice.pm
* Authentication choice parameters in Manager
2010-09-06 15:05:54 +00:00
Clément Oudot
7bcbdaa318
Manage auth choice and OpenID in impact skin ( #19 )
2010-09-06 12:43:33 +00:00
Clément Oudot
13da8acd79
* Confirmation data are always resend to portal (form action=#)
...
* Transport authentication choice in info and confirm steps (#19 )
2010-09-06 11:48:41 +00:00
Clément Oudot
d2549c2fbe
Always display authentication choices if any ( #19 )
2010-09-06 09:35:05 +00:00
Xavier Guimard
c8a2b8c5e0
"_safe" instead of "safe" in Menu
2010-09-06 09:23:23 +00:00
Clément Oudot
b5361c1175
Specific templates for standard from and OpenID form ( #19 )
2010-09-06 08:45:22 +00:00
Clément Oudot
45bd8a6872
Use global_vars in template to see template vars inside loops ( #19 )
2010-09-05 13:57:07 +00:00
Xavier Guimard
29640f3829
test wrapper for Safe
2010-09-04 11:49:03 +00:00
Clément Oudot
09b06fecbf
Add SSL and Apache in authentication choices ( #19 )
2010-09-03 16:02:10 +00:00
Xavier Guimard
d00f68a54b
Try to close LEMONLDAP-117
2010-09-03 15:58:57 +00:00
Clément Oudot
b57ae4f34a
Add logos for authentication choice ( #19 )
2010-09-03 15:43:41 +00:00
Xavier Guimard
d82d2ae2c3
Remove purge sub
2010-09-03 15:24:06 +00:00
Clément Oudot
82b4ea080e
Load correct authentication module for authLogout (#LEMONDLAP-19)
2010-09-03 15:23:08 +00:00
Xavier Guimard
8663fd29e9
AddUserDBOpenID
2010-09-03 15:20:38 +00:00
Xavier Guimard
ec71ba81e3
Remove Cache::Cache->purge() call (keys are checked by get())
2010-09-03 15:14:54 +00:00
Clément Oudot
615f0ba259
Transport authChoice in OpenID workflow
2010-09-03 14:58:25 +00:00
Clément Oudot
a8cc940774
Manage authChoice in CAS proxy callback
2010-09-03 14:53:31 +00:00
Clément Oudot
9e38c5ea2a
Transport authChoice in CAS authentication
2010-09-03 14:24:19 +00:00
Clément Oudot
41151228ff
Typo in checkXSSAttack call
2010-09-03 14:23:54 +00:00
Clément Oudot
f47388bc32
Update MANIFEST for UserDBOpenID
2010-09-03 14:23:30 +00:00
Clément Oudot
ec8eb57b1f
* Common XSS attack check method
...
* Check XSS attack on authChoice parameter
2010-09-03 14:15:44 +00:00
Xavier Guimard
eacdc8e2dd
Typo
2010-09-03 13:37:49 +00:00
Xavier Guimard
47cb5c1a59
OpenID consumer now supports "OpenID Simple Registration Extension"
2010-09-03 13:34:35 +00:00
Clément Oudot
c10f1a96db
Authentication choice in progress ( #19 )
2010-09-03 13:21:03 +00:00
Clément Oudot
0f4212abc2
URL param to choose authentication module (#LEMONLDAP19)
2010-09-02 15:32:40 +00:00
Clément Oudot
c76fca5f0e
Work on sessions explorer ( #154 )
2010-09-02 14:32:21 +00:00
Xavier Guimard
0e1f5f4217
According to OpenID-2.0 specs, HTML field should be called "openid_identifier"
2010-09-02 10:38:28 +00:00
Clément Oudot
9992c56f43
Configure mapping between SAML authentication contexts and authentication levels ( #152 )
2010-09-02 09:09:10 +00:00
Clément Oudot
8d6899c2b2
Configuration keys for authentication levels ( #152 )
2010-09-01 16:06:01 +00:00
Clément Oudot
093019d623
Resolve conflicts between UTF8 and JSON responses in Manager ( #150 )
2010-09-01 15:02:55 +00:00
Xavier Guimard
06beaa6ff4
« make tidy »
2010-09-01 12:56:15 +00:00
Xavier Guimard
dd597a7cce
OpenID federation message
2010-09-01 12:52:56 +00:00
Clément Oudot
a5ac6ee02b
Recreate an ARRAY ref for ldapGroupAttributeNameSearch ( #1 )
2010-09-01 10:59:11 +00:00
Clément Oudot
aa42a1cd62
Manage UTF-8 in Manager the same way we do for Portal
2010-09-01 10:30:07 +00:00
Clément Oudot
6dd0c45e61
Add fake authFinish in Portal unit test 01
2010-09-01 10:29:24 +00:00
Clément Oudot
0f973b7b87
Set external authenticationLevel to 1
2010-09-01 09:53:55 +00:00
Xavier Guimard
a54b43a4c8
* jquery not managed in Debian install for "impact"
...
* new sub searchLt in Common/Apache/Session.pm to be used later by purgeCentralCache
* lemonldap-ng.ini: link to lemonldap/ow2.org instead of direct link on Wiki
* Some unused Data::Dumper
2010-09-01 09:47:46 +00:00
Xavier Guimard
7770f58ab2
Error using Lemonldap::NG::Common::Crypt
2010-09-01 09:16:02 +00:00
Clément Oudot
e5bbac08de
Add authFinish, authLogout and authForce in authentication modules ( #149 )
2010-09-01 08:59:39 +00:00
Xavier Guimard
f7bc27e310
Typo
2010-09-01 08:13:44 +00:00
Xavier Guimard
ebc6609da9
Typo
2010-09-01 08:11:34 +00:00
Clément Oudot
3b8a38c083
Manage UTF-8 strings in template
2010-08-31 15:47:50 +00:00
Xavier Guimard
f6f09f635c
IssuerOpenID in progress
2010-08-31 15:36:32 +00:00
Clément Oudot
038f57d7b5
SAML Issuer: redirect on logout page after logout process initiated by IDP
2010-08-31 15:21:17 +00:00
Clément Oudot
0d5faacc0a
Manage // in path when checking IssuerDB path
2010-08-31 15:14:44 +00:00
Clément Oudot
88272cce87
Use _saml_id key in SAML sessions to rattach them to main SSO session_id ( #148 )
2010-08-31 14:36:45 +00:00
Clément Oudot
35935c5b7f
Little bug in controlExistingSession
2010-08-31 12:23:11 +00:00
Clément Oudot
1e1f9bf5ea
Modify binmode to bytes for SOAP responses ( closes #144 )
2010-08-31 10:34:28 +00:00
Xavier Guimard
2295d560f8
"make manifest"
2010-08-31 06:53:04 +00:00
Clément Oudot
a73968cd84
AuthCAS: use logoutServices to register CAS logout URL
2010-08-30 16:01:25 +00:00
Clément Oudot
92352246ee
Support from logout services: they are deconnected with a GET request after portal logout ( #121 )
2010-08-30 15:46:26 +00:00
Clément Oudot
611d252ebc
AuthCAS: renew and gateway flags can now been configured
2010-08-30 13:41:45 +00:00
Clément Oudot
9a4df749fe
CAS: Manage renew flag in VALIDATE and SERVICE VALIDATE URL ( #101 )
2010-08-30 09:24:04 +00:00
Clément Oudot
d3aefd81b8
AuthCAS: declare authForce method
2010-08-30 09:01:15 +00:00
Clément Oudot
60296f0143
CAS: Manage renew flag in LOGIN URL ( #101 )
2010-08-30 08:56:16 +00:00
Clément Oudot
8e7c112181
AuthCAS: declare authLogout and authFinish methods
2010-08-30 08:38:53 +00:00
Clément Oudot
e3010de6e5
CAS Issuer ( #101 ):
...
* Manage gateway parameter (refused unauthenticated user)
* Display CAS logout URL message
* Do not check base64 encoded URL for CAS (mandatory for logout URL management)
2010-08-27 16:07:19 +00:00
Xavier Guimard
7eb813fbca
Little TODO
2010-08-27 15:35:53 +00:00
Xavier Guimard
cd00bf3b62
OpenID server in progress
2010-08-27 15:34:03 +00:00
Clément Oudot
6045909d1f
AuthCAS: collect PT for each registered CAS proxied service ( #146 )
2010-08-27 14:42:07 +00:00
Clément Oudot
832f7050eb
Add activation parameter for each IssuerDB module ( #147 )
2010-08-27 13:01:54 +00:00
Clément Oudot
373c4a31b5
* Add CAS_pgtFile and CAS_proxiedServices parameters in Manager ( #146 )
...
* Correct bug for samlStorageOptions (#127 ) and other StorageOptions impacted
* Add more debug messages in Manager module
* Set a default test in Manager/Uploader.pm if no test defined in Manager/_Struct.pm
2010-08-27 12:39:27 +00:00
Clément Oudot
ac47c65adb
AuthCAS: remove unused parameters and add debug information ( #146 )
2010-08-27 08:50:09 +00:00
Clément Oudot
f4514c41e7
Manage all proxy workflow for CAS ( #101 )
2010-08-26 16:16:13 +00:00
Clément Oudot
b4f5adde99
Manage proxy granting ticket for CAS service validate URL ( #101 )
2010-08-26 14:43:32 +00:00
Clément Oudot
b721763e23
Manage CAS service validate URL ( #101 )
2010-08-26 12:24:38 +00:00
Clément Oudot
cf282a3c25
Add sample CAS client script ( #101 )
2010-08-26 10:25:58 +00:00
Clément Oudot
a19067e5a2
Delete CAS secondary sessions on logout ( #101 )
2010-08-26 08:42:28 +00:00
Clément Oudot
b819f75f9e
Remove HTTP-Redirect binding for SAML authentication response because not supported in SAML 2.0 conformance document ( #144 )
2010-08-26 08:05:25 +00:00
Clément Oudot
04ede0a918
CAS:
...
* Check the ticket is a service ticket
* Add _utime in CAS service sessions
* Add some debug messages
2010-08-25 15:57:21 +00:00
Clément Oudot
2b1e09d09c
Manage CAS logout and validate URL ( #101 )
2010-08-25 15:33:33 +00:00
Clément Oudot
a6acf86f4e
Generate CAS Service Ticket ( #101 )
2010-08-25 14:23:45 +00:00
Clément Oudot
c6c8024326
Manage CAS URLs ( #101 )
2010-08-23 16:41:38 +00:00
Clément Oudot
5877fa95d6
CAS IssuerDB skeleton ( #101 )
2010-08-23 15:47:53 +00:00
Clément Oudot
dca8b923ac
* Add setUserDBValue method for LDAP and DBI userDB
...
* Add samlUserDBIdentityKey
* IssuerDBSAML now try to store Lasso identity in UserDB
* References #123
2010-08-23 14:52:53 +00:00
Clément Oudot
240c2b56eb
SAML:
...
* Use request path to choose IssuerDB module to load
* Store all used IssuerDB module in user session
* Launch issuerLogout method for all used IssuerDB module
* References #102
2010-08-23 13:27:16 +00:00
Clément Oudot
503fd5d9c3
Correct bug in javascript when action URL has no '?' ( #125 )
2010-08-20 15:36:06 +00:00
Clément Oudot
4fa2f6318e
Build removeOther link with javascript, to get the final redirection URL and method ( #125 )
2010-08-20 15:07:55 +00:00
Clément Oudot
a9a2106e89
Add a back URL in removeOther link ( #125 )
2010-08-20 13:48:09 +00:00
Clément Oudot
a85958f90f
Always clear previous hidden form value when PE_INFO is returned by autoRedirect and autoPost ( #125 )
2010-08-20 10:52:52 +00:00
Clément Oudot
5e6efebab1
Manage info form hidden fields for autoRedirect and autoPost ( #125 )
2010-08-20 10:31:20 +00:00
Clément Oudot
ead9413dd8
Possibility to control form method of info and confirm screen (references #125 )
2010-08-19 16:19:30 +00:00
Xavier Guimard
9445690b40
SOAP Response are not (perl)tagged as UTF-8 but they are => "binmode(STDOUT,':bytes')"
2010-08-19 15:33:26 +00:00
Xavier Guimard
ad8635f868
Use bytes::length instead of bytes to avoid utf8 problems
2010-08-19 15:11:32 +00:00
Clément Oudot
f0af83546a
Correct bug for artifact resolution on IDP side ( #143 )
2010-08-19 14:17:25 +00:00
Clément Oudot
354a7570e4
Delete session from tree of sessions explorer when we click on the delet button ( #63 )
2010-08-18 15:57:14 +00:00
Clément Oudot
28122ee748
Remove unused images ( #22 )
2010-08-18 15:33:37 +00:00
Clément Oudot
e29a65e92b
Disable timer on IDP list ( #141 )
2010-08-18 15:10:30 +00:00
Clément Oudot
6781054397
Return error when SAML authentication is refused by user ( #132 )
2010-08-18 14:26:18 +00:00
Xavier Guimard
2ec7297695
Upgrade to JQuery-1.4.2 step 2
2010-08-18 14:08:30 +00:00
Xavier Guimard
b09b37566d
Update to Jquery 1.4.2
2010-08-18 13:54:50 +00:00
Clément Oudot
33403f3396
Display a link to go back to SP on IDP login page ( #140 )
2010-08-18 13:39:15 +00:00
Xavier Guimard
6421a38443
* Use startTime instead of _utime
...
* order datas (customized before internal)
* Closes : #142
2010-08-18 11:14:05 +00:00
Xavier Guimard
45aaa41cee
Split extractFormInfo => create getIDP()
2010-08-18 10:07:42 +00:00
Clément Oudot
6c534022f4
Use #PORTAL# macro in SAML URL to ease SAML configuration ( #139 )
2010-08-18 09:49:55 +00:00
Xavier Guimard
7cf902d9e2
Debian packaging requires "/skins" due to symbolic links
2010-08-16 16:29:16 +00:00
Clément Oudot
ac0ac04daf
Private key password is now updated if it is empty ( #138 )
2010-08-16 16:10:36 +00:00
Clément Oudot
6bca11ba57
Correct bug when reading portal value to fill default values in Manager
2010-08-16 14:20:55 +00:00
Clément Oudot
9c5d2e648c
Hash default values in subDefaultConf, and do not initialize macros config key to get default values in Manager
2010-08-16 14:05:27 +00:00
Xavier Guimard
135a1d9200
'"' must be escaped in values
2010-08-16 11:25:52 +00:00
Xavier Guimard
aab981a086
* New default value for whatToTrace
...
* missing character in macro names control ("_")
2010-08-16 11:01:39 +00:00
Clément Oudot
45027c8ba7
Corrections to repair 'make test'
2010-08-16 08:24:17 +00:00
Xavier Guimard
eefa9cba7a
PostgreSQL bug in progress
2010-08-13 15:54:43 +00:00
Xavier Guimard
e1fa0ec489
* JSON.pm dependency
...
* Ajax error when JSON.pm is missing
* unused file
2010-08-12 08:01:58 +00:00
Xavier Guimard
ccea1947fb
Missing dependencies + Typo
2010-08-05 16:02:30 +00:00
Xavier Guimard
d32e31e5bd
Perl dependency + typo
2010-08-05 08:21:31 +00:00
Clément Oudot
4ff9614cfc
Manager: better management of integer values
2010-07-30 15:29:23 +00:00
Clément Oudot
00ef7ef782
Create reload virtualhost, so that test applications configuration can be safely removed ( #130 )
2010-07-28 14:34:38 +00:00
Clément Oudot
757f178d5d
Allow empty textarea in Manager ( Fixes #65 )
2010-07-28 13:34:15 +00:00
Clément Oudot
1dc1f926e4
Add timeout, version and binary attributes options for LDAP configuration ( closes #129 )
2010-07-28 10:00:30 +00:00
Clément Oudot
5cc3a3057a
Update MailReset doxygen documentation ( #7 )
2010-07-22 09:06:50 +00:00
Clément Oudot
a32502b8f7
Do use st when browsing backends (authentication, userDB, ...) to prevent from a bug in Perl-LDAP 0.40 ( #128 )
2010-07-21 12:13:12 +00:00
Clément Oudot
6792a1350c
Store replay protection for SAML SLO request sent by IDP
2010-07-05 21:24:34 +00:00
Clément Oudot
d475674b4c
* Modify some default conf values
...
* Add missing SAML error codes to portal CGI
2010-07-05 21:09:55 +00:00
Clément Oudot
192dd9c8e1
Preparation for 1.0rc2 release
2010-07-05 16:20:17 +00:00
Clément Oudot
15cb8f6e29
SAML error codes for IDP and UserDBSAML ( #40 )
2010-07-05 15:58:03 +00:00
Clément Oudot
abfc445f38
SAML Error codes for SP ( #40 )
2010-07-05 15:38:02 +00:00
Clément Oudot
2090093830
Add advanced SAML parameters in Manager ( #126 )
2010-07-05 14:35:06 +00:00
Clément Oudot
6fb21c669b
Use private key passwords ( #97 )
2010-07-05 11:50:12 +00:00
Clément Oudot
3ed02a09b8
* Set noInfo flag when updating session
...
* Get sessionIndex from SLO request before validating the request
* Use NameID dump in debug message
2010-07-05 09:36:52 +00:00
Clément Oudot
5c406c5381
Counter is never negative ( #124 )
2010-07-04 14:05:20 +00:00
Clément Oudot
1c4d8535f7
SAML: Issuer can send SLO requests to SP and IDP when in proxy mode ( #31 )
2010-07-03 14:38:46 +00:00
Clément Oudot
c0548bab70
Modify XML namespace for Lasso Session empty object
2010-07-03 13:55:43 +00:00
Clément Oudot
0dac2f1374
* authInit should be called before issuerForAuthUser when we catch SLO URL in IDP proxy mode
...
* do not 'return' sendSLOErrorMessage
2010-07-02 15:42:22 +00:00
Clément Oudot
b635d87761
* authInit should be called before issuerForAuthUser when we catch SLO URL in IDP proxy mode
...
* do not 'return' sendSLOErrorMessage
2010-07-02 15:14:54 +00:00
Clément Oudot
f193d0b66d
Really exit if sendSLOErrorMessage fail
2010-07-02 14:17:01 +00:00
Clément Oudot
a6c60ec1a7
Keep and restore SAML request for IDP proxy ( #31 )
2010-07-02 11:29:00 +00:00
Clément Oudot
e0bbb1c9d0
Delete SAML sessions on local logout ( #122 )
2010-07-02 09:05:46 +00:00
Clément Oudot
1f28b97cd8
Wrong error level in debug message
2010-07-02 08:54:54 +00:00
Clément Oudot
b5074e8c51
Correct a bug for troolean values in Manager
2010-07-02 08:41:03 +00:00
Clément Oudot
e359e1a7d1
SAML: use correct method to build artifact message ( #32 )
2010-07-02 08:14:26 +00:00
Clément Oudot
5754d86ff5
* Add a troolean type in Manager
...
* Sign SAML Message options can accept the default value (#88 )
2010-07-01 16:05:57 +00:00
Clément Oudot
2ce4e19a0d
SAML: catch SSO artifact URL in IssuerDBSAML ( #32 )
2010-07-01 11:31:24 +00:00
Clément Oudot
90debded1d
SAML: add Artifact binding in metadata ( #32 )
2010-07-01 09:58:39 +00:00
Clément Oudot
f46c3b4224
SAML: artifact for sending authn request, work in progress ( #32 )
2010-07-01 09:48:50 +00:00
Clément Oudot
edb345f23c
SAML:
...
* Correct a SLO bug when only one SP in session
* Check NotOnOrAfter in SLO request (#36 )
2010-06-30 08:05:20 +00:00
Clément Oudot
b2381101d7
SAML: use getSamlSession whenever it's possible
2010-06-28 16:22:07 +00:00
Clément Oudot
758c133f81
SAML: encode metadata flag was not honored for attribute authority
2010-06-28 15:04:40 +00:00
Clément Oudot
d07eaab83f
SAML: keep SAML request in memory for IDP Proxy management ( #31 )
2010-06-28 15:00:14 +00:00
Clément Oudot
81eff4aa16
SAML: group IDP and SP options ( #90 )
2010-06-28 12:28:48 +00:00
Clément Oudot
3ee1e9b393
Add an option to encode Metadata in UTF-8 ( #119 )
2010-06-28 09:11:59 +00:00
Clément Oudot
f5367d4dc9
* Create sendSLOErrorResponse subroutine
...
* Send SLO error if REDIRECT or POST SLO request on a closed session (#107 )
* Send SLO error instead of empty SOAP message, or local error page
2010-06-28 08:34:15 +00:00
Clément Oudot
dee65a4d00
SAML: cache Lasso::Server object to increase performances ( #86 )
2010-06-25 15:38:14 +00:00
Clément Oudot
d114827e70
Store metadata in raw format ( #104 )
2010-06-25 13:51:09 +00:00
Clément Oudot
edaec866d0
Manager: filearea can now be edited in-place ( #116 )
2010-06-24 16:10:46 +00:00
Clément Oudot
b32d4e8f52
Remove HttpRedirect and HttpDisableSubmit options in info.tpl, and use hidden fields to store URL parameters, for form GET to work ( #115 )
2010-06-23 14:03:18 +00:00
Clément Oudot
07f648cd7e
SLO termination complete ( #111 )
2010-06-23 09:58:14 +00:00
Xavier Guimard
0e082b1d8f
Closes : #114 : Bad usage of Apache::Session::searchOn() on portal
2010-06-22 16:30:38 +00:00
Clément Oudot
33699a6d40
SAML: build a SLO termination state ( #111 )
2010-06-21 16:24:50 +00:00
Clément Oudot
174026f44c
SAML: validate SLO request before building other SP SLO request ( #111 )
2010-06-21 15:44:18 +00:00
Xavier Guimard
aa190c7f35
make tidy
2010-06-21 15:29:59 +00:00
Clément Oudot
58419de458
Portal: we can have information message for unauthenticated users
2010-06-21 15:20:51 +00:00
Xavier Guimard
8139248c15
Closes : #113 : Lemonldap::NG is not compatible with the use of a LDAP server using a different encoding than UTF-8 for storing passwords
2010-06-21 14:47:27 +00:00
Clément Oudot
8b23a63fb3
SAML: use a SLO status session to store SLO status on IDP side ( #111 )
2010-06-21 14:28:42 +00:00
Xavier Guimard
920e0630a1
Closes #112 : Handler/AuthBasic does not use local cache
2010-06-21 13:35:36 +00:00
Clément Oudot
3b6e0567ee
SAML: store SAML Token in session ( #110 )
2010-06-18 13:07:20 +00:00
Clément Oudot
11761807f4
SAML: do not send empty Attribute Statement ( #109 )
2010-06-18 07:50:37 +00:00
Clément Oudot
af0f4ef88e
SAML: force NameID format if requested format is unspecified ( #108 )
2010-06-17 13:29:53 +00:00
Clément Oudot
e33f7c2efc
SAML:
...
* Use table instead of list for SP SLO status
* Catch SLO response and display status logo (#106 )
2010-06-16 16:17:05 +00:00
Clément Oudot
885966f04b
SAML: error in SAML POST field name ( #56 )
2010-06-16 13:08:18 +00:00
Clément Oudot
1aec1902f5
SAML: create POST relay mechanism to send POST SLO requests ( #56 )
2010-06-16 10:32:43 +00:00
Clément Oudot
8ffd3e6244
Display status of SLO request in debug level ( #78 )
2010-06-14 15:42:32 +00:00
Clément Oudot
d1d0accae6
Rebuild logout object before sending SLO response ( #78 )
2010-06-14 15:29:37 +00:00
Clément Oudot
ebc421d335
Return directly if no local session ( #105 )
2010-06-14 14:52:52 +00:00
Thomas CHEMINEAU
47f5d94097
SAML #97 - group some security parameters
2010-06-14 14:45:06 +00:00
Thomas CHEMINEAU
c0c246516e
SAML #97 - Allow generating a private key with password
2010-06-14 14:33:38 +00:00
Clément Oudot
021f89d918
Check session before closing it ( #105 )
2010-06-14 14:18:27 +00:00
Thomas CHEMINEAU
16435b7444
SAML #97 - Add config parameter into the manager for private key password
2010-06-14 12:51:17 +00:00
Xavier Guimard
22387615fb
Permit direct OpenID server side direct authentication
2010-06-14 06:19:34 +00:00
Clément Oudot
6bc5246690
Send SOAP SLO request to other entities when receiving a SOAP SLO request on IDP ( #78 )
2010-06-11 14:50:28 +00:00
Clément Oudot
98a9b6ef40
SAML: delete secondary SAML sessions ( #100 )
2010-06-11 14:13:26 +00:00
Clément Oudot
a570447179
SAML: use another method to set NameID in Attribute request ( #83 )
2010-06-11 13:49:33 +00:00
Clément Oudot
62befdfe19
Add utility function for HTTP-BASIC and string encoding ( #99 )
2010-06-11 13:00:05 +00:00
Clément Oudot
a62484dc91
SAML: manage SOAP SLO request - work in progress ( #78 )
2010-06-11 10:17:43 +00:00
Clément Oudot
c6ff319439
SAML: add unit test for SAML date with milliseconds
2010-06-11 08:48:00 +00:00
Clément Oudot
2b7cbd4d83
SAML:
...
* IDP Option to check conditions (#98 )
* Extend SAML date format (add milliseconds)
2010-06-10 15:01:05 +00:00
Clément Oudot
a2921f9d10
SAML: add encryption key in attribute authority metadata ( #96 )
2010-06-10 10:06:42 +00:00
Thomas CHEMINEAU
4b8100fca4
SAML #89 - remove samlServicePrivateKey
2010-06-09 08:54:48 +00:00
Thomas CHEMINEAU
3fb6a0ccd1
SAML #89 - Now use a different private key for encryption when creation Lasso::Server object
2010-06-09 08:42:30 +00:00
Thomas CHEMINEAU
da5e716bef
SAML #89 - remove unused samlIDPSSODescriptorKeyDescriptorSigning and samlSPSSODescriptorKeyDescriptorSigning parameters
2010-06-08 16:27:54 +00:00
Thomas CHEMINEAU
a410b90dc4
SAML #89 - metadata file of the service now use newly defined public keys parameter
2010-06-08 16:20:17 +00:00
Clément Oudot
2ab40fea15
Soap is not required for SAML ( #91 )
2010-06-08 13:19:00 +00:00
Xavier Guimard
11dd597a41
Some Lintian tips
2010-06-08 10:39:34 +00:00
Thomas CHEMINEAU
d222dfb9c1
SAML #89 - adding an image to indicate that the process of generate keys is in progress
2010-06-07 16:00:18 +00:00
Thomas CHEMINEAU
4e99c602de
SAML #89 - Fix html encoding of french character, and disallow download button when empty file
2010-06-07 15:47:23 +00:00