dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
9,581 Commits 3 Branches 0 Tags 75 MiB
165eced237
Commit Graph

3596 Commits

Author SHA1 Message Date
Christophe Maudoux
44a6f2c960 Typo 2019-08-03 22:33:02 +02:00
Christophe Maudoux
058ef90662 Append dependency 2019-08-03 11:05:12 +02:00
Christophe Maudoux
6ad07f9c4d Fix debug log 2019-08-03 11:04:58 +02:00
Christophe Maudoux
5cb5406246 Typo (#1862) 2019-08-02 23:23:07 +02:00
Christophe Maudoux
3821e9e7d2 Append unit test (#1867) 2019-08-02 23:10:40 +02:00
Christophe Maudoux
6658204c7f Improve unit test (#1862) 2019-08-02 23:09:51 +02:00
Christophe Maudoux
dcd0c53fde Fix warning message 2019-08-02 22:58:36 +02:00
Christophe Maudoux
6c408ff0fb Typo 2019-08-02 22:57:54 +02:00
Christophe Maudoux
46208d74fe Improve unit test (#1870) 2019-08-02 21:58:08 +02:00
Maxime Besson
0febdda551 Fix unit tests 2019-08-02 18:03:10 +02:00
Maxime Besson
15c3b0bbf8 Add Radius second factor (#1847) 2019-08-02 18:03:10 +02:00
Maxime Besson
68c8be333a Fix translation override in mails 2019-08-02 17:45:03 +02:00
Christophe Maudoux
529c17042c Improve unit test (#1870) 2019-08-01 20:26:50 +02:00
Maxime Besson
c1afdbefac Add labels and logos to all 2F providers (#1873) 2019-08-01 17:27:14 +02:00
Christophe Maudoux
216d683f22 Fix debug log (#1870) 2019-08-01 11:59:02 +02:00
Christophe Maudoux
188c7be337 perltidy 2019-07-31 23:38:48 +02:00
Christophe Maudoux
ee5a705d2f Append REST API to retrieve error message (#1870) 2019-07-31 23:09:38 +02:00
Maxime Besson
42ac5f30e2 Improve yubikey registration (#1868) 
an IE bug prevents forms from being submitted if the submit button is
display: none of visible: hidden so we use a bootstrap class that hides
it through "opacity" instead

The ID field is now focused by default so that a user can simply click
their yubikey immediately when they get to the registration page
 2019-07-31 18:34:42 +02:00
Christophe Maudoux
ec675d6a25 POST pathname after AJAX request (#1829) 2019-07-30 21:58:04 +02:00
Christophe Maudoux
6a625c265c Improve unit test (#1862) 2019-07-26 17:49:35 +02:00
Christophe Maudoux
ec199c9100 Improve unit test (#1851) 2019-07-26 17:49:35 +02:00
Clément OUDOT
67c03b2bd2 Set hidden field for skin in 2fchoice template (#1866) 2019-07-26 11:25:27 +02:00
Clément OUDOT
4ee49de4c2 Adapt grant_types_supported attribute (#1846) 2019-07-25 19:06:53 +02:00
Maxime Besson
c9dba5212e HTML-decode entityID from metadata (#1864) 2019-07-25 18:29:46 +02:00
Christophe Maudoux
3d6a7bd843 Sort notifications: JSON format (#1862) 2019-07-25 12:42:58 +02:00
Christophe Maudoux
65a5a1d41b Improve unit test (#1851) 2019-07-25 12:00:51 +02:00
Christophe Maudoux
bf5fe2246d Send specified parameters (#1851) 2019-07-25 12:00:37 +02:00
Christophe Maudoux
3082168617 Append HTTP method options (#1851) 2019-07-25 10:49:49 +02:00
Christophe Maudoux
11f2d0f34a Improve notifications REST API & unit test (#1851) 2019-07-23 15:54:53 +02:00
Xavier
46fda2c26e Update langs 2019-07-22 22:39:17 +02:00
Xavier
37c07d0919 Update langs 2019-07-22 22:35:29 +02:00
Maxime Besson
d82f776df8 Allow multi instanciation of 2F modules (#1860) 
This commit adds a manager interface to declare multiple instances of a
single 2F module, in a manner similar to Combination.

An additional portal code reads the `sfExtra` variable to load the
declared modules.

An empty rules means the module will be always active.
 2019-07-22 19:30:37 +02:00
Christophe Maudoux
6d0967f16f Improve unit test (#1851) 2019-07-22 15:40:16 +02:00
Christophe Maudoux
fb7a222c9d Append notifications REST API (#1851) 2019-07-22 15:39:59 +02:00
Christophe Maudoux
05cb1e1c91 Revert test-lib (#1851) 2019-07-22 15:39:04 +02:00
Christophe Maudoux
81aa2fb37b Improve test-lib & unit test (#1851) 2019-07-21 23:23:20 +02:00
Christophe Maudoux
3972861ba4 WIP - Improve unit test & need to fix list notifications feature!!! (#1851) 2019-07-21 22:47:48 +02:00
Christophe Maudoux
3e50fbca20 Improve unit test (#1851) 2019-07-21 22:35:23 +02:00
Christophe Maudoux
34039ef7ef Improve test-lib & unit test (#1851) 2019-07-21 21:56:09 +02:00
Clément OUDOT
f15e8bd108 Possibility to list notifications (#1851) 2019-07-21 20:47:16 +02:00
Christophe Maudoux
ca7ebe09f7 WIP - REST service to remove notification (#1851) 2019-07-20 22:25:03 +02:00
Christophe Maudoux
21c1d83df3 Typo 2019-07-20 13:28:48 +02:00
Christophe Maudoux
27116ca1af Improve unit tests & update version (#1853) 2019-07-19 10:09:07 +02:00
Christophe Maudoux
b9aa198188 Improve unit test (#1856) 2019-07-18 13:38:10 +02:00
Christophe Maudoux
36a547cba5 Typo (#1857) 2019-07-18 13:12:12 +02:00
Christophe Maudoux
b6be20f988 Improve unit test (#1857) 2019-07-18 13:05:16 +02:00
Christophe Maudoux
4eecd90230 Typo (#1857) 2019-07-17 12:20:30 +02:00
Christophe Maudoux
b99b76e2d6 Improve code (#1857) 2019-07-17 12:18:15 +02:00
Christophe Maudoux
304e511b66 Improve unit test (#1857) 2019-07-17 12:06:21 +02:00
Christophe Maudoux
24a1fdcdb9 Improve unit test (#1857) 2019-07-17 11:58:49 +02:00
Christophe Maudoux
b56331c649 Typo 2019-07-17 11:58:22 +02:00
Christophe Maudoux
d8b3eb2a34 Remove cipher cookie if notification refused (#1857) 2019-07-16 13:51:01 +02:00
Clément OUDOT
e12cb3a905 Fix loop on notifications (#1856) 2019-07-15 10:55:33 +02:00
Xavier
64c587417b Improvement 2019-07-12 19:09:55 +02:00
Clément OUDOT
c024ed0fe6 Improve logging when a notification is added by REST (#1853) 2019-07-12 18:34:55 +02:00
Xavier Guimard
0b5fc64b0e Keep original PATH_INFO during notification process (Fixes: #1852) 2019-07-12 10:34:38 +02:00
Xavier Guimard
3c6a301785 Keep original PATH_INFO during notification process (Fixes: #1852) 2019-07-12 10:33:36 +02:00
Xavier Guimard
966eef33ee Fix df96168c error: _example/conf/lmConf-1.json is auto-generated (#1850) 2019-07-10 17:15:40 +02:00
Xavier Guimard
a1df1157f4 Render CDA compatible with Try (Fixes: #1849) 2019-07-10 10:40:32 +02:00
Christophe Maudoux
e877982253 Send pathname with AJAX (#1829) 2019-07-09 10:40:52 +02:00
Clément OUDOT
c76dc52436 Adapt response_types_supported attribute in OpenID Connect metadata depending on configured flows (#1846) 2019-07-08 15:38:57 +02:00
Clément OUDOT
9b98893c44 Manage claims in ID token if no access token requested (#1846) 2019-07-08 15:15:13 +02:00
Clément OUDOT
ac618f551e Prepare unit test for #1838 2019-07-08 14:26:13 +02:00
Christophe Maudoux
240617d8d8 Fix unit tests 2019-07-06 23:27:45 +02:00
Christophe Maudoux
d0da10b375 Improve code (#1664) 2019-07-06 23:00:35 +02:00
Christophe Maudoux
619ea8258f Improve unit test & fix warning - Expired sessions (#1783) 2019-07-06 23:00:24 +02:00
Christophe Maudoux
2d6c46920e Fix & improve unit test (#1844) 2019-07-05 22:53:48 +02:00
Christophe Maudoux
3e08f8bc08 Fix langs (#1844) 2019-07-05 22:53:22 +02:00
Xavier
88f75c42ed Set pdata domain also when removing cookie (#1829) 2019-07-05 06:43:11 +02:00
Christophe Maudoux
6a579644f8 Fix warning (#1842) 2019-07-04 23:20:11 +02:00
Christophe Maudoux
f38a583967 Improve code 2019-07-04 22:50:46 +02:00
Christophe Maudoux
2016abd2ee Send pdata cookie to cross domain (#1829) 2019-07-04 21:49:28 +02:00
Xavier
9cdfd4c9a6 Add notice when user is connected 2019-07-04 21:22:06 +02:00
Clément OUDOT
1ebbde9a50 Tidy code and add missing check on hash_level (#1835) 2019-07-04 09:49:01 +02:00
Xavier
a104db2f2d Clean logs 2019-07-04 07:24:50 +02:00
Xavier
d4fedbdfcf Duplicate log rules in Plugin manpage 2019-07-04 07:09:39 +02:00
Christophe Maudoux
6df12176de Disable secondFactor (#1783) 2019-07-03 23:21:19 +02:00
Christophe Maudoux
2f541370a6 perltidy (#1783) 2019-07-03 23:12:15 +02:00
Christophe Maudoux
03f2d89d0c ContextSwitching: Check (expiration) errors & Improve logs (#1783) 2019-07-03 23:08:50 +02:00
Xavier
ff6a3369a7 Fix warning 2019-07-03 22:34:48 +02:00
Xavier
2354a52e5f Fix warning 2019-07-03 22:32:36 +02:00
Christophe Maudoux
161d6cee0f Fix unit test warning (Auth-and-issuer-OIDC-authorization_code-with-none-alg.t) 2019-07-03 22:17:22 +02:00
Maxime Besson
6f058fb2fa Add manager manpages to deb 2019-07-03 15:17:16 +02:00
Maxime Besson
396e61491e Improve mail2F display in outlook 2019-07-03 11:03:37 +02:00
Xavier
78a4bb4987 ContextSwitching: Check (expiration) errors (#1783) 2019-07-03 06:47:33 +02:00
Christophe Maudoux
5a53fee2db WIP - Improve log (#1783) 2019-07-03 00:09:14 +02:00
Christophe Maudoux
42bc5efdb3 Use skin rules in plugins (#1828) 2019-07-02 22:17:53 +02:00
Christophe Maudoux
9c62a04f22 Improve code (#1783) 2019-07-02 22:08:17 +02:00
Christophe Maudoux
12e0853b51 Improve log (#1783) 2019-07-02 21:33:32 +02:00
Xavier Guimard
c1137edba8 make tidy with perltidy-20181120 2019-07-02 20:03:40 +02:00
Clément OUDOT
26c107cddb Add unit test (#1835) 2019-07-02 17:47:27 +02:00
Clément OUDOT
7c7dad9ab6 Enforce ID token signature verification in unit test (#1835) 2019-07-02 17:27:17 +02:00
Clément OUDOT
e04a6f1983 Reject none algorithm when checking JWT signature (#1835) 2019-07-02 16:36:43 +02:00
Xavier Guimard
f370255c3a Fix Perl dependencies (see RT#129960) 2019-07-02 08:56:12 +02:00
Clément OUDOT
60c03010ce Use Base64URL for JWT generation (#1834) 2019-07-01 17:29:35 +02:00
Xavier Guimard
360db2b5d5 Update manifest 2019-07-01 16:15:25 +02:00
Christophe Maudoux
b94cbe0144 Fix default value (#1825) 2019-07-01 13:28:01 +02:00
Christophe Maudoux
69d2a2db0c Fix default value (#1825) 2019-07-01 12:56:10 +02:00
Christophe Maudoux
a1f5791e06 Merge branch '1783' into v2.0 2019-06-30 19:00:41 +02:00
Christophe Maudoux
bcbea7bee0 Update version (#1825) 2019-06-29 21:48:52 +02:00
Christophe Maudoux
eda8151432 Don t mix && with and (#1825) 2019-06-29 21:35:13 +02:00
Christophe Maudoux
5054f5ac95 Append unit test (#1825) 2019-06-29 21:13:08 +02:00
Christophe Maudoux
11d2909b0a WIP - Disable persistent sessions storage (#1825) 2019-06-29 21:10:16 +02:00
Christophe Maudoux
acd6e5513c Improve unit test (#1783) 2019-06-29 00:16:37 +02:00
Christophe Maudoux
d97c36a97e Disable spoofed sessions (#1783) 2019-06-28 23:53:43 +02:00
Christophe Maudoux
897d04ac93 Merge branch 'v2.0' into 1783 2019-06-28 22:05:48 +02:00
Xavier Guimard
43d5139040 Update versions 2019-06-28 17:04:14 +02:00
Xavier Guimard
f59caf3ea1 Merge branch 'ssl-button-race-fix' into 'v2.0' 
Avoid race when clicking the login button in SSL form (#1826)

See merge request lemonldap-ng/lemonldap-ng!82
 2019-06-28 16:56:46 +02:00
Clément OUDOT
b0a69d3473 Use skin rules in 2F plugins (#1828) 2019-06-28 15:56:57 +02:00
Xavier
c921c295ed Use user skin in loadTemplate (Fixes: #1828) 2019-06-28 13:40:56 +02:00
Christophe Maudoux
87329a26a1 Make manifest 2019-06-28 11:22:23 +02:00
Xavier Guimard
44a6e25851 Improve cryptographic functions (#1823) 2019-06-28 10:30:37 +02:00
Christophe Maudoux
6519695797 Tidy (#1783) 2019-06-27 22:02:11 +02:00
Christophe Maudoux
bb39dca317 Append & update unit tests (#1783) 2019-06-27 21:54:14 +02:00
Christophe Maudoux
6510f854c8 Append unit test (#1783) 2019-06-27 21:13:10 +02:00
Christophe Maudoux
8ad895c3b8 Merge branch 'v2.0' into 1783 2019-06-27 21:11:56 +02:00
Maxime Besson
a7c7c51bba Avoid race when clicking the login button in SSL form (#1826) 2019-06-27 17:05:29 +02:00
Xavier Guimard
264410409d Move CAS service verification from main to Issuer::CAS (#1795) 2019-06-27 16:55:12 +02:00
Maxime Besson
e1f927a195 Check service= parameter on CAS logout (#1795) 
service= redirect URL is not checked when logging out from CAS, to avoid
insecure redirect attacks. The verification is only made if CAS access
control is enabled.

In order for this to work in common cases (applications redirects to an
unprotected page after logout), we add CAS App domains to the list of
globally trusted domains.

If your application wants to redirect to a third-party domain, it needs
to be added to LLNG's trustedDomains
 2019-06-27 12:40:40 +02:00
Maxime Besson
5f9c4c231d Add authenticated routes to 2FA for session upgrade (#1822) 2019-06-26 23:33:00 +02:00
Maxime Besson
98650cd9f0 Add unit test for #1821 2019-06-26 22:13:12 +02:00
Xavier
3582cfb12b Don't keep pdata on upgrade (Fixes: #1821) 2019-06-26 21:47:01 +02:00
Xavier Guimard
a42c5f9f71 Clean tests (#1819) 2019-06-26 13:17:26 +02:00
Xavier Guimard
e15a41bc66 Fix typo: s/templatesDir/templateDir/g (#1819) 2019-06-26 11:59:13 +02:00
Xavier Guimard
45a0b68c3b Disable external entities in XML parsers (Fixes: #1818) 2019-06-26 11:32:10 +02:00
Christophe Maudoux
f11c34e9cd Cleaning code (#1783 & #1658) 2019-06-25 23:04:27 +02:00
Christophe Maudoux
f5587ac477 Improve code (#1783) 2019-06-25 22:01:20 +02:00
Christophe Maudoux
73cd751bfd Update manifest & copying (#1783) 2019-06-25 20:52:40 +02:00
Christophe Maudoux
0b567d6c15 Merge branch 'v2.0' into 1783 2019-06-25 20:23:48 +02:00
Christophe Maudoux
b9af5d1adc Use Id 2019-06-25 19:30:06 +02:00
Christophe Maudoux
7a97bc46c4 Improve code (#1783) 2019-06-25 19:28:05 +02:00
Christophe Maudoux
13ed1589e4 Update lang 2019-06-25 19:03:04 +02:00
Xavier Guimard
e91f6df254 Fix test count (#1813) 2019-06-25 10:00:46 +02:00
Xavier Guimard
390ccb4f5b Fix Apache::Session::REST::get_key_from_all_sessions when using CODE (#1813) 2019-06-25 09:48:15 +02:00
Xavier Guimard
93ccb9fd76 Set Content-Length in Apache::Session::REST requests (#1813) 2019-06-25 09:37:37 +02:00
Xavier Guimard
ddde26fa1c Add searchOn() in Apache::Session::REST (#1813) 2019-06-25 09:18:58 +02:00
Christophe Maudoux
32cb9e3a8f Delete session (#1783) 2019-06-24 23:52:39 +02:00
Christophe Maudoux
266f2fdf02 Merge branch 'v2.0' into 1783 2019-06-24 23:36:54 +02:00
Christophe Maudoux
786e136754 Create session with ContextSwitching plugin (#1783) 2019-06-24 23:36:23 +02:00
Christophe Maudoux
28fd7ea0b8 Change log level (#1664) 2019-06-24 23:35:33 +02:00
Xavier
c5d6bc42b6 Add get_key_from_all_sessions in Apache::Session::REST (#1813) 2019-06-24 23:07:34 +02:00
Xavier
9df3d57bc9 In REST, PE_LOGOUT_OK must return 200 2019-06-24 23:06:15 +02:00
Xavier Guimard
1c17c6b077 Update portal JS 2019-06-24 11:38:00 +02:00
Christophe Maudoux
5efa6c111a Append log (#1783) 2019-06-23 22:56:05 +02:00
Christophe Maudoux
8d2367c6d7 Typo 2019-06-23 22:55:46 +02:00
Christophe Maudoux
e5f03f34d9 Append ContextSwitching plugin (#1783) 2019-06-23 22:19:40 +02:00
Christophe Maudoux
c24ff711a0 WIP - ContextSwitching (#1783) 2019-06-23 10:51:10 +02:00
Christophe Maudoux
6e029c413f Merge branch 'v2.0' into 1783 2019-06-23 10:19:13 +02:00
Christophe Maudoux
bdc5007e43 Update sort condition (#1658) 2019-06-23 10:18:05 +02:00
Christophe Maudoux
dd94351f35 WIP - ContextSwitching (#1783) 2019-06-22 23:46:02 +02:00
Christophe Maudoux
8c47c913fe WIP - ContextSwitching (#1783) 2019-06-21 16:24:50 +02:00
Christophe Maudoux
b69ffc0ff8 WIP - ContextSwitching (#1783) 2019-06-21 15:23:06 +02:00
Xavier
750eaafe65 Fix test rule to hide some warnings 2019-06-20 21:48:13 +02:00
Xavier
38bb0cedf6 Typo 2019-06-20 21:27:49 +02:00
Xavier
8bd2a6c244 Prove that sessionInfo() is launched by each UserDB in combination (#1809) 2019-06-20 21:17:29 +02:00
Christophe Maudoux
a2ebaf31b1 WIP - AdminImpersonation skeleton (#1783) 2019-06-19 18:13:17 +02:00
Xavier
2d5b38fb95 Fix LDAP schema path for Debian. This permits to enable LDAP tests during build 2019-06-19 09:22:44 +02:00
Xavier
05f2dc6993 Fix t/28-AuthChoice-and-password.t 2019-06-19 09:14:03 +02:00
Christophe Maudoux
c4d4b482a5 Provide to plugins message display functions (#1796) 2019-06-18 22:00:03 +02:00
Christophe Maudoux
86b305d19b Typo (#1664) 2019-06-18 21:57:40 +02:00
Christophe Maudoux
9fa11709e6 Append options to use Notifications plugin & set notification reference (#1796) 2019-06-17 22:31:44 +02:00
Xavier
8b488e4d51 Move LDAP::getUser() to Lib::LDAP (Fixes: #1805) 2019-06-17 21:15:38 +02:00
Christophe Maudoux
e0b593152f Merge branch 'bootstrap' into 'v2.0' 
Improve displaying checkuser template and rewrite tests #1806

See merge request lemonldap-ng/lemonldap-ng!79
 2019-06-17 21:00:41 +02:00
Xavier
aff7527580 Fix bad call in LDAP (#1805) 2019-06-17 19:21:48 +02:00
Antoine ROSIER
dab5a9c3df Improve displaying checkuser template and rewrite tests #1806 2019-06-17 14:56:31 +02:00
Christophe Maudoux
862116245d Fix unit tests (#1796) 2019-06-16 23:01:13 +02:00
Christophe Maudoux
1b4d1b5bdf Avoid notification reference to be truncated (#1796) 2019-06-16 20:57:53 +02:00
Christophe Maudoux
c3b3c281ad Hide _2fDevices with REST services 2019-06-16 20:33:34 +02:00
Christophe Maudoux
d6f3dd459a Display message (#1796) 2019-06-16 16:02:48 +02:00
Xavier
8cc2beb976 Fix #1799 test 2019-06-15 08:42:21 +02:00
Xavier
e30cf69053 Add #1799 test 2019-06-15 08:29:36 +02:00
Christophe Maudoux
5218944bf2 Improve unit tests (#1796) 2019-06-14 23:11:10 +02:00
Christophe Maudoux
ecf84e8a4d WIP (#1796) 2019-06-14 23:09:32 +02:00
Christophe Maudoux
fde6ff2cc8 WIP (#1796) 2019-06-14 23:09:32 +02:00
Xavier Guimard
5fbff01b27 Update versions 2019-06-14 17:27:54 +02:00
Xavier Guimard
65eaefa75f Tidy 2019-06-14 17:23:26 +02:00
Clément OUDOT
4e5c450b8b Return error if no code provided on token endpoint (#1802) 2019-06-14 16:05:39 +02:00
Xavier Guimard
e7bc7b3f4e Add restExportSecretKeys option (#1799) 2019-06-14 08:51:58 +02:00
Xavier
5dc5b88daa Permit to show $_password in REST session server (#1799) 2019-06-14 07:09:55 +02:00
Xavier
4ad0da0315 Fix syntax error (#1794) 2019-06-14 06:33:27 +02:00
Christophe Maudoux
73f689eca4 Fix 2F types (#1782) 2019-06-13 23:28:57 +02:00
Christophe Maudoux
c8295b60b5 Fix 2F types (#1782) 2019-06-13 23:27:30 +02:00
Xavier
c7ef665bf9 Fix #1782 2019-06-13 22:23:20 +02:00
Xavier
bb0784b843 Typo 2019-06-13 22:15:46 +02:00
Xavier
8d642da8cb Improve #1782 2019-06-13 22:10:30 +02:00
Xavier
c8696262ee Test that proves that Choice can be embedded in Combination (#1801) 
TODO: display fails
 2019-06-13 19:58:34 +02:00
Xavier Guimard
2a021e37ea Don't require getDisplayType in Choice (#1800) 2019-06-13 17:51:36 +02:00
Xavier Guimard
288fe5159c Merge remote-tracking branch 'maxbes/issue1764-langsession' into v2.0 2019-06-13 09:59:33 +02:00
Maxime Besson
0cd12999dd Make impersonation tests insensitive to ordering 2019-06-13 09:26:19 +02:00
Maxime Besson
1a66da30f9 Store portal language in _language user session key (#1764) 2019-06-13 09:26:19 +02:00
Christophe Maudoux
53daa6cee6 Improve unit tests (#1782) 2019-06-12 22:33:18 +02:00
Xavier
eef82808a2 Improve #1795 test 2019-06-11 21:49:27 +02:00
Xavier
a6aaf8a507 Add XSS test (#1795) 2019-06-11 21:30:15 +02:00
Xavier
1a8948894d Check CAS "service" parameter (Fixes: #1795) 2019-06-11 21:02:43 +02:00
Maxime Besson
97d0bbf0aa Fix CASv2 logout (#1753) 2019-06-11 16:18:15 +02:00
Xavier Guimard
77490381d0 Revert "Add systemd scripts for cron tasks" 
This reverts commit 78e50ac855.
 2019-06-11 15:07:57 +02:00
Xavier Guimard
4ea4b727d1 Revert "Add systemd timer (replace cron)" 
This reverts commit c47091b944.
 2019-06-11 15:07:49 +02:00
Xavier Guimard
9e932b525c Merge branch 'issue1794-accentregister' into 'v2.0' 
Register: better handling of special chars (#1794)

See merge request lemonldap-ng/lemonldap-ng!78
 2019-06-10 22:57:34 +02:00
Maxime Besson
f195db2a5a Register: better handling of special chars (#1794) 2019-06-10 22:45:15 +02:00
Christophe Maudoux
0d5903ea25 Update manifest 2019-06-10 21:29:05 +02:00
Christophe Maudoux
7a3ded7efb Improve code (#1782) 2019-06-10 20:56:38 +02:00
Christophe Maudoux
e638f5ff58 Improve & rename unit test (#1782) 2019-06-10 20:56:22 +02:00
Christophe Maudoux
441519a542 Typo (#1791) 2019-06-10 10:37:43 +02:00
Christophe Maudoux
8a35584e26 Fix empty hGroups (#1791) 2019-06-09 19:54:00 +02:00
Christophe Maudoux
0fd070cbad Append unit test (#1791) 2019-06-08 22:22:08 +02:00
Christophe Maudoux
63798f71f9 Change message condition (#1791) 2019-06-08 22:10:13 +02:00
Christophe Maudoux
e57de60ac2 Improve unit tests (#1791) 2019-06-08 22:09:32 +02:00
Christophe Maudoux
b71f678f80 Filter SSO groups to merge (#1791) 2019-06-08 22:08:58 +02:00
Christophe Maudoux
ee7af4aec0 Improve unit tests (#1782) 2019-06-07 19:51:51 +02:00
Christophe Maudoux
e3c2766809 Test 2F TTL (#1782) 2019-06-07 19:51:51 +02:00
Xavier Guimard
5885af8448 Typo in translations 2019-06-07 17:44:25 +02:00
Xavier
94c2a0bc3b Add addAuthRouteWithRedirect() doc (#1787) 2019-06-06 23:02:46 +02:00
Xavier
f4bca7430a Add addAuthRouteWithRedirect() method to Try (#1787) 2019-06-06 22:59:02 +02:00
Xavier Guimard
946384272e Partial revert "Typo" 
This reverts commit f63a63eedb.
 2019-06-06 16:00:49 +02:00
Christophe Maudoux
801e2a17d6 Better fix (#1769) 2019-06-05 15:27:58 +02:00
Christophe Maudoux
30c4a9c787 setSecurity if failed login (#1769) 2019-06-05 11:29:04 +02:00
Christophe Maudoux
f63a63eedb Typo 2019-06-05 11:25:50 +02:00
Christophe Maudoux
59637200fd Improve unit test (#1774) 2019-06-04 23:18:35 +02:00
Christophe Maudoux
c044ebc473 Fix functions parameter (#1774) 2019-06-04 23:18:06 +02:00
Christophe Maudoux
eab00052f3 Fix debug msg (#1774) 2019-06-04 20:42:54 +02:00
Christophe Maudoux
95b188ccfe Fix grant parameter, append warning msg & debug logs (#1774) 2019-06-04 18:19:33 +02:00
Christophe Maudoux
2b21762a9a Update unit tests (#1774) 2019-06-04 18:18:53 +02:00
Christophe Maudoux
dfe8335520 Update langs (#1774) 2019-06-04 18:18:33 +02:00
Christophe Maudoux
18dd7c2c41 Append debug msg (#1765) 2019-06-04 16:19:01 +02:00
Christophe Maudoux
3b68263761 Make manifest 2019-06-02 22:42:49 +02:00
Christophe Maudoux
02b7126d16 Append unit test (#1780) 2019-06-02 22:40:19 +02:00
Christophe Maudoux
f69b829f6c Restore loginHistory (#1780) & Improve code 2019-06-02 22:40:00 +02:00
Christophe Maudoux
0546af93e0 Append diag msg 2019-06-02 22:38:34 +02:00
Christophe Maudoux
5ce1220d76 Rename test file 2019-06-02 22:37:54 +02:00
Christophe Maudoux
1609fda5a4 Make manifest 2019-06-01 23:23:14 +02:00
Christophe Maudoux
9123cb0c35 Append unit test (#1781) 2019-06-01 23:22:48 +02:00
Christophe Maudoux
054fda9cfd Fix warnings (#1781) 2019-06-01 23:22:20 +02:00
Christophe Maudoux
58c1a58129 Append unit test - Captcha (#1769) 2019-06-01 20:54:39 +02:00
Christophe Maudoux
9dfb0cffa3 Typo 2019-06-01 20:53:34 +02:00
Christophe Maudoux
491c54a3ee Fix Impersonation with 2FA (#1781) 2019-06-01 19:13:45 +02:00
Christophe Maudoux
fca77bbc7a Append unit test (#1769) 2019-06-01 11:48:29 +02:00
Christophe Maudoux
dc4ca65d1b Typo 2019-06-01 11:48:07 +02:00
Christophe Maudoux
e36ce98dda SetSecurity with AuthChoice (#1769) 2019-06-01 11:47:49 +02:00
Christophe Maudoux
a584fd1251 Improve unit test (#1765) 2019-05-31 21:26:09 +02:00
Christophe Maudoux
62beda5cab Update manifest 2019-05-31 17:51:27 +02:00
Christophe Maudoux
beecf460f9 Improve unit tests 2019-05-31 17:50:59 +02:00
Christophe Maudoux
35f1677747 Append unit test and fix CORS headers (#1765) 2019-05-31 17:50:44 +02:00
Christophe Maudoux
132e57b4b3 Manage CORS headers (#1765) 2019-05-31 17:00:39 +02:00
Christophe Maudoux
666aeeebbc Improve unit test (#1774) 2019-05-31 00:06:26 +02:00
Christophe Maudoux
6b7748ca40 Improve unit test (#1774) 2019-05-30 23:59:47 +02:00
Christophe Maudoux
2be32cfb40 Improve & append unit test (#1774) 2019-05-30 12:29:51 +02:00
Christophe Maudoux
432f2655bb Fix if no userDB (#1774) 2019-05-30 12:26:50 +02:00
Christophe Maudoux
04603c0169 Fix warning (#1774) 2019-05-30 12:26:50 +02:00
Christophe Maudoux
3e2a6aeb34 Append unit test (#1774) 2019-05-30 12:26:50 +02:00
Xavier Guimard
6b5677b4ce Tidy (#1774) 2019-05-29 14:20:46 +02:00
Clément OUDOT
8279fde2d7 Fix register mail template (#1779) 2019-05-29 14:05:20 +02:00
Christophe Maudoux
8e19bc2279 Diag msg ;-) 2019-05-29 00:09:23 +02:00
Christophe Maudoux
224137462a Tidy (#1774) 2019-05-29 00:08:48 +02:00
Christophe Maudoux
a89f83294b Retrieve session from DB if exists & Improve unit test (#1774) 2019-05-28 23:55:54 +02:00
Xavier Guimard
8fd3f6be90 Merge branch 'issue1521-appmenu' into 'v2.0' 
Preserve applicationList key names (#1521)

See merge request lemonldap-ng/lemonldap-ng!76
 2019-05-28 22:10:53 +02:00
Xavier
db2ee96bc8 Update versions (#1777) 2019-05-28 22:04:45 +02:00
Xavier
f0842569c2 Don't erase pdata on 404 errors (#1778) 2019-05-28 21:58:22 +02:00
Xavier
e4174be166 Increase timeout (#1777) 2019-05-28 21:51:11 +02:00
Xavier
6f9e857136 Update manifest 2019-05-28 21:50:16 +02:00
Xavier
ead61416e0 Add test for #1777 2019-05-28 21:50:07 +02:00
Xavier
82171e9a90 Fix missing $req in SLO responses (#1777) 2019-05-28 21:45:54 +02:00
Xavier
acd6ba50e8 Fix some missing $req (#1777) 2019-05-28 19:52:08 +02:00
Christophe Maudoux
5126e9003b Allow double sessions for double cookies with singleSession (#1775) 2019-05-28 17:32:06 +02:00
Maxime Besson
b12992755f Preserve applicationList key names (#1521) 
Previously, every configuration save from the manager would overwrite
applicationList key names to preserve their ordering.

This commit introduces a new "order" key in the JSON config instead.
 2019-05-28 15:38:26 +02:00
Christophe Maudoux
dece7d8aa0 Allow double sessions for double cookies (#1775) 2019-05-27 22:42:02 +02:00
Christophe Maudoux
b8d242464d Improve unit tests (#1775) 2019-05-27 22:42:02 +02:00
Christophe Maudoux
621603d312 Improve unit test (#1771) 2019-05-26 17:28:16 +02:00
Christophe Maudoux
0b9695e5b9 Rename unit tests (69 already used by FavApps plugin) 2019-05-26 12:57:39 +02:00
Christophe Maudoux
ab0bab22c6 Improve Impersonation unit tests 2019-05-26 12:56:33 +02:00
Christophe Maudoux
26233106a5 Set _updateTime session value (#1771) 2019-05-26 11:56:58 +02:00
Christophe Maudoux
3dd4c52c65 Update version (#1766) 2019-05-26 10:33:39 +02:00
Maxime Besson
c65e22dcf8 Add missing Finnish flag 
And some unit tests to make all language have a matching flag icon
 2019-05-24 15:18:49 +02:00
Christophe Maudoux
0e47cb4f5b Fix warning message 2019-05-23 15:52:11 +02:00
Maxime Besson
0babf4c6c3 Fix non-sso session removal in SoapServer 
closes #1762
 2019-05-21 17:30:37 +02:00
Christophe Maudoux
1bcf4e09af Append double cookies and refresh request unit tests (#1747) 2019-05-20 23:05:47 +02:00
Christophe Maudoux
59f07b7b8f Avoid to renew double cookie sessions for refresh request (#1747) 2019-05-20 23:03:10 +02:00
Christophe Maudoux
a03301fabd Tidy (#1749) 2019-05-20 23:03:10 +02:00
Xavier Guimard
78e50ac855 Add systemd scripts for cron tasks 2019-05-20 10:23:18 +02:00
Xavier
c47091b944 Add systemd timer (replace cron) 2019-05-19 23:29:16 +02:00
Christophe Maudoux
dbb2aa093e Append double cookies unit tests (#1749) 2019-05-19 21:52:46 +02:00
Christophe Maudoux
2b49ce5bd0 Append DoubleCookies unit test & Update manifest (#1749) 2019-05-19 14:06:43 +02:00
Christophe Maudoux
29b7341345 Change code order (#1749) 2019-05-19 13:40:46 +02:00
Christophe Maudoux
006f862a69 Cleaning code (#1755) 2019-05-17 22:18:09 +02:00
Clément OUDOT
c024952b8f Do not fail if no RP or no OP configured (#1759) 2019-05-17 16:00:33 +02:00
Xavier Guimard
7abbb3fa66 Permit html use in lang templates 
Closes: #1706
 2019-05-17 08:05:36 +02:00
Xavier
b91d1d4b87 Tidy 2019-05-16 20:45:14 +02:00
Xavier
a2e78c88c3 Set versions 2019-05-16 20:42:31 +02:00
Xavier
1186aba52b lmError(): return JSON if wanted (#1745) 2019-05-16 06:50:13 +02:00
Christophe Maudoux
c20c14ac95 Append unit test (#1755) 2019-05-15 23:50:28 +02:00
Christophe Maudoux
e46fac82b2 CheckUser with tokenGlobalStorage & Warn if SSO groups are merged 2019-05-15 23:45:06 +02:00
Maxime Besson
1f1eeab9c8 Do not log a warning when displaying form with Combination 
When form-based authentication methods return PE_FIRSTLOGIN, do not log
a warning because it's normal behavior to show the form.
 2019-05-14 19:47:28 +02:00
Christophe Maudoux
fc034ad4bf Impersonation with doubleCookie (#1746) 2019-05-12 22:59:21 +02:00
Clément OUDOT
05cd4d4a58 Fix update token with global storage (#1742) 2019-05-12 20:39:25 +02:00
Clément OUDOT
682b193477 Use TOKEN kind for mail password reset sessions (#1743) 2019-05-12 20:04:38 +02:00
Clément OUDOT
07de622e83 Fix getRegisterSession and getMailSession (#1743) 2019-05-12 17:36:14 +02:00
Clément OUDOT
332fb4f9da Update version in module dependencies 2019-05-12 16:22:50 +02:00
Christophe Maudoux
e8b4e0c52c Update manifest 2019-05-11 23:21:54 +02:00
Xavier
9a71709f44 Tidy 2019-05-11 23:03:48 +02:00
Christophe Maudoux
a93caace4b Improve unit test (#1746) 2019-05-11 23:01:52 +02:00
Christophe Maudoux
8737fc0808 Impersonation with doubleCookie & Append unit test (#1746) 2019-05-11 22:57:52 +02:00
Xavier
f3c4ea0afb Tydy 2019-05-11 20:18:43 +02:00
Christophe Maudoux
aeead582d8 Restore _httpSession (#1746) 2019-05-11 19:07:07 +02:00
Xavier
e78cfefae8 Update translation (~100% match) 2019-05-11 18:08:50 +02:00
Xavier
a96238c2c3 Update translations 2019-05-11 18:04:41 +02:00
Xavier
7177e8d644 make manifest 2019-05-11 17:38:37 +02:00
Xavier
000db1536b Update versions 2019-05-11 17:37:56 +02:00
Xavier
fe4fe6a7d3 Add security test (#1742) 2019-05-11 15:56:17 +02:00
Xavier
5d1c8ff6b2 make manifest 2019-05-11 15:45:25 +02:00
Xavier
2ce7396bf2 Don't filter on session_kind with SOAP (#1742) 2019-05-11 15:41:14 +02:00
Xavier
6235b303b3 #1742 in progress... 2019-05-11 09:31:17 +02:00
Xavier
22acb06555 Test to prove that #1743 is fixed 2019-05-10 18:50:20 +02:00
Xavier Guimard
1cd50bb353 Fix Auth::Remote session kind (#1742) 2019-05-10 18:02:56 +02:00
Xavier Guimard
638a0de81a Don't use SSO session type for tokens (Fixes security part of #1742) 2019-05-10 17:35:10 +02:00
Maxime Besson
e31a607c35 Fix typos in fr/en manager translations 2019-05-09 17:32:30 +02:00
Christophe Maudoux
3132378bea Fix CSP warning "Refused to apply in-line style" 2019-05-07 22:57:22 +02:00
Clément OUDOT
fce270408e Improve log in plugin GrantSession (#1739) 2019-05-06 19:10:26 +02:00
Xavier Guimard
57ccf2d7ba Fix cron syntax (#1733) 2019-05-06 18:45:00 +02:00
Xavier Guimard
d2442724f4 Generate debian/*cron* files from LLNG ones (#1733) 2019-05-06 18:37:26 +02:00
Clément OUDOT
755b1ace78 Add some debug in Ext2F (#1738) 2019-05-06 14:28:28 +02:00
Clément OUDOT
a7c8b9d466 Fix error handling in Ext2F (#1738) 2019-05-06 14:07:42 +02:00
Christophe Maudoux
c40857f747 Improve unit test (#1664) 2019-05-04 12:32:38 +02:00
Christophe Maudoux
99e80a1c4b Improve unit test (#1730) 2019-05-03 21:43:49 +02:00
Christophe Maudoux
c8dd4554aa Test if required secret elements are set to sign JWT 2019-05-02 14:33:56 +02:00
Christophe Maudoux
789cbbb340 Fix unit test 2019-05-01 23:39:22 +02:00
Clément OUDOT
2b28e8e61f Modify redirect page (#1728) 2019-04-30 17:02:52 +02:00
Christophe Maudoux
409f845dd2 Improve unit test (#1664) 2019-04-30 14:57:45 +02:00
Christophe Maudoux
f4938f3489 Grant access only if required Impersonation succeeds (#1664) 2019-04-30 14:57:45 +02:00
Christophe Maudoux
04aae64a9f Improve unit test 2019-04-29 22:33:11 +02:00
Christophe Maudoux
321fe29c35 Update version 2019-04-29 22:33:11 +02:00
Christophe Maudoux
4f430ca4be Improve unit test 2019-04-29 22:33:11 +02:00
Christophe Maudoux
2e9092d2bd Clean code 2019-04-29 22:33:11 +02:00
Christophe Maudoux
a89b92f265 Improve code (#1386) 2019-04-29 22:33:11 +02:00
Christophe Maudoux
2e3c2e1a16 Sort by spoofed and real attributes (#1658) 2019-04-29 22:33:11 +02:00
Clément OUDOT
926262170b Implement PKCE in OIDC provider (#1722) 2019-04-29 17:18:16 +02:00
Clément OUDOT
8e6f678be7 Create a configuration option to allow a Relying Party to be a public client 
Allow unauthenticated requests on OAuth2 token endoint

#1725
 2019-04-29 10:02:16 +02:00
Maxime Besson
2f9e6aa623 Allow override of username attribute for CAS apps 
Global CAS options allows the admistrator to set the session attribute
that gets exported to all CAS application as the main identifier
(cas:user)

This commit adds the ability to override this configuration for a
particular CAS application.

OIDC already allows this

Fixes #1713
 2019-04-28 21:06:34 +02:00
Maxime Besson
62f16721ff Send username when calling CAS1.0 validation 
Fixes #1724
 2019-04-28 19:29:54 +02:00
Maxime Besson
64cc4ea0e6 Do not sent Kerberos js twice when using Combination 
Fixes #1720
 2019-04-25 17:17:03 +02:00
Xavier Guimard
3ac6cf67f1 Clean old "liberty alliance" messages (#1719) 2019-04-23 16:36:04 +02:00
Xavier Guimard
ea90f3c7e4 Update translations 2019-04-23 15:14:06 +02:00
Clément OUDOT
cb0b05304a Update portal MANIFEST 2019-04-22 18:00:28 +02:00
Christophe Maudoux
c86b76cb9c Init. rules by using accessors (#1658) 2019-04-21 11:56:29 +02:00
Xavier Guimard
795a846ec3 Switch to jQuery 3.4 (#1716) 2019-04-19 14:50:44 +02:00
Xavier Guimard
0ae3b221bc Update Portal JS libs (#1716) 2019-04-19 13:35:48 +02:00
Xavier Guimard
974007ec8b Update translation (using 100% match suggestions) 2019-04-17 18:10:56 +02:00
Xavier Guimard
4f90db8918 Enable Finnish on portal 2019-04-17 18:01:46 +02:00
Xavier Guimard
d0e5be2797 Enable Finnish on portal 2019-04-17 17:58:55 +02:00
Christophe Maudoux
69444b701b Improve unit test (#1712) 2019-04-16 21:13:02 +02:00
Xavier Guimard
221e4c0a6e Update translation (using 100% match suggestions) 2019-04-16 13:30:35 +02:00
Xavier Guimard
b252bb3818 Update translation (using 100% match suggestions) 2019-04-16 13:19:59 +02:00