Yadd
|
3b8222ae8a
|
Fix trusted domains regex (#2535)
|
2021-06-25 08:59:52 +02:00 |
|
Maxime Besson
|
15054b9038
|
Extra precaution for #2539
|
2021-06-25 07:54:03 +02:00 |
|
Maxime Besson
|
cf70ebe293
|
Stop triggering XSS protection on escaped commas
Commas are safe in HTML and JS, so there is no risk of XSS
|
2021-06-24 20:16:20 +02:00 |
|
Maxime Besson
|
1d80c262ab
|
Make unit test for #2539 less noisy
|
2021-06-24 19:05:11 +02:00 |
|
Maxime Besson
|
70bd06bc32
|
Fix unit test for #2534
|
2021-06-24 19:02:34 +02:00 |
|
Maxime Besson
|
4a2a786598
|
Fix CDA wildcard regexp (#2534)
|
2021-06-24 19:02:17 +02:00 |
|
Maxime Besson
|
3d1cc3f499
|
Unit test for #2534
|
2021-06-24 16:59:20 +02:00 |
|
Maxime Besson
|
dbd65d1b2b
|
Handle wildcards in CDA check (#2534)
|
2021-06-24 16:59:20 +02:00 |
|
Christophe Maudoux
|
71fa5d09f7
|
Be more strict with URL (#2477)
|
2021-06-24 14:33:27 +02:00 |
|
Yadd
|
3732cdcc19
|
Better URL parsing (#2477)
|
2021-06-24 14:33:27 +02:00 |
|
Yadd
|
8a18543f55
|
Remove TODO loop
|
2021-06-24 14:04:31 +02:00 |
|
Maxime Besson
|
9a2dc48b56
|
Unit test for #2550
|
2021-06-21 09:38:03 +02:00 |
|
Maxime Besson
|
8db02a693f
|
Only release IDtoken when scope contains openid (#2550)
|
2021-06-21 09:38:03 +02:00 |
|
Maxime Besson
|
ee51e010dc
|
Unit test for #2548
|
2021-06-21 09:38:03 +02:00 |
|
Maxime Besson
|
e1b7f61d13
|
Update ID token unit tests
|
2021-06-21 09:38:03 +02:00 |
|
Maxime Besson
|
beaacca9a0
|
Refactor _handleRefreshTokenGrant to use _generateIDToken (#2550)
|
2021-06-21 09:38:03 +02:00 |
|
Maxime Besson
|
c931b30263
|
Refactor _generateIDToken (#2550)
|
2021-06-21 09:38:03 +02:00 |
|
Yadd
|
b6a1f946b2
|
Fix handler cache corruption (#2539)
|
2021-06-19 18:43:41 +02:00 |
|
Maxime Besson
|
2de2cbf454
|
Fix 2F unit test (#2539)
|
2021-06-19 18:25:07 +02:00 |
|
Clément OUDOT
|
bdeb1e70d9
|
Allow to display password value in login form (#2454)
|
2021-06-16 20:50:11 +02:00 |
|
Maxime Besson
|
b35bd70646
|
totp: add more instructions
|
2021-06-16 09:48:28 +02:00 |
|
Maxime Besson
|
3c37565eb9
|
Improve TOTP error reporting (#2541)
|
2021-06-15 18:07:03 +02:00 |
|
Maxime Besson
|
699943365b
|
Improve messages on TOTP registration (#2541)
|
2021-06-15 15:56:18 +02:00 |
|
Maxime Besson
|
95fe0512c0
|
Display TOTP key in a readable form (#2541)
|
2021-06-15 15:48:10 +02:00 |
|
Maxime Besson
|
3ff680aceb
|
Update templates for #2541
|
2021-06-15 14:54:33 +02:00 |
|
Maxime Besson
|
89b6215d9d
|
Update translations for #2541
|
2021-06-15 14:54:33 +02:00 |
|
Maxime Besson
|
14548b9a1f
|
Remove "new totp" from portal js
|
2021-06-15 14:54:33 +02:00 |
|
Maxime Besson
|
50ef67b678
|
Fix error display in 2F registration screens
|
2021-06-15 14:54:32 +02:00 |
|
Maxime Besson
|
7b0990addd
|
Remove totp options from code (#2541)
|
2021-06-15 14:54:32 +02:00 |
|
Maxime Besson
|
dae4293ecf
|
Unit test for #2518
|
2021-06-15 14:26:23 +02:00 |
|
Maxime Besson
|
77f5577dc4
|
Improve SAML test lib
|
2021-06-15 12:40:15 +02:00 |
|
Maxime Besson
|
cf59bb915e
|
refactor expectAuthenticatedAs
|
2021-06-15 12:40:15 +02:00 |
|
Maxime Besson
|
6f5cd3b645
|
Fix some undef warnings
|
2021-06-15 12:40:15 +02:00 |
|
Maxime Besson
|
75b81fcb5a
|
Fix NameID value when unspecified is requested by SP (#2518)
|
2021-06-15 11:27:37 +02:00 |
|
Maxime Besson
|
63cd5ffb40
|
Revert 652d8ba9bc
See #2482
|
2021-06-11 08:53:26 +02:00 |
|
Christophe Maudoux
|
469d2a40aa
|
Fix warning (#2538)
|
2021-06-09 23:06:03 +02:00 |
|
Christophe Maudoux
|
86f46ebc5b
|
Fix some warnings (#2538)
|
2021-06-08 23:03:54 +02:00 |
|
Yadd
|
5fc0b6f002
|
Update tr translation from transifex
|
2021-06-07 18:34:06 +02:00 |
|
Maxime Besson
|
87295178e0
|
optimize SingleSession to avoid unneeded session fetches (#2536)
|
2021-06-04 16:17:18 +02:00 |
|
Maxime Besson
|
275567436e
|
Unit test for #2496
|
2021-06-03 18:31:38 +02:00 |
|
Maxime Besson
|
b8e8bbcedd
|
Ignore unknown scopes (#2496)
|
2021-06-03 18:24:55 +02:00 |
|
Maxime Besson
|
50225ce438
|
Add option to only allow declared oidc scopes (#2496)
|
2021-06-03 17:40:49 +02:00 |
|
Maxime Besson
|
55cdfefd7b
|
Workaround for #2472
|
2021-06-02 15:36:05 +02:00 |
|
Maxime Besson
|
2414fb4751
|
Unit tests for (#2510)
|
2021-06-02 11:08:07 +02:00 |
|
Maxime Besson
|
3b76479bda
|
Add expectPdata function to test lib
|
2021-06-02 11:07:53 +02:00 |
|
Maxime Besson
|
fad337c58c
|
Add hooks on password change (#2510)
|
2021-06-02 11:07:28 +02:00 |
|
Maxime Besson
|
d4aed0b332
|
Tidy test lib
|
2021-06-02 11:07:28 +02:00 |
|
Maxime Besson
|
91cfba275a
|
Skip registration of SAML SP when config has errors (#2525)
|
2021-06-02 08:34:02 +02:00 |
|
Maxime Besson
|
71a8fc6d16
|
Skip registration of CAS App when config has errors (#2525)
|
2021-06-02 08:34:02 +02:00 |
|
Maxime Besson
|
e50db3f083
|
Skip registration of OIDC RP when config has errors (#2525)
|
2021-06-02 08:34:01 +02:00 |
|
Maxime Besson
|
6ef522c193
|
Unit tests for #2533
|
2021-06-01 11:28:34 +02:00 |
|
Maxime Besson
|
cf3809a0de
|
Add CAS hooks (#2533)
|
2021-06-01 11:27:45 +02:00 |
|
Maxime Besson
|
ec2b904f4f
|
Unit test for #2532
|
2021-05-31 11:23:38 +02:00 |
|
Maxime Besson
|
e98aafd6f7
|
add oidcGenerateCode hook (#2532)
|
2021-05-31 11:16:28 +02:00 |
|
Maxime Besson
|
8992b3e789
|
Unit test for #2529
|
2021-05-31 09:52:26 +02:00 |
|
Maxime Besson
|
15298466ea
|
Fix JWT userinfo in Auth::OpenIDConnect (#2529)
|
2021-05-31 09:52:02 +02:00 |
|
Yadd
|
0f11d7c06e
|
Finish BrowserID/Persona removal
|
2021-05-22 16:16:38 +02:00 |
|
Christophe Maudoux
|
66f428b474
|
Improve notifications display (Thx @antoinerosier)
|
2021-05-20 19:22:18 +02:00 |
|
Christophe Maudoux
|
7860e18034
|
Append unit test (#1976)
|
2021-05-08 21:38:13 +02:00 |
|
Christophe Maudoux
|
a3c48af972
|
Append unit test (#1976)
|
2021-05-07 08:15:32 +02:00 |
|
Christophe Maudoux
|
cf55716825
|
Allow findUser with UpgradeSession (#1976)
|
2021-05-06 23:16:26 +02:00 |
|
Yadd
|
a24ed7bc41
|
Fix GrantSession rules sort
|
2021-05-04 15:50:38 +02:00 |
|
Christophe Maudoux
|
de3164fea7
|
Fix button top margin (#1976)
|
2021-05-01 22:35:56 +02:00 |
|
Yadd
|
d1d3cfa3f2
|
Update tr translation from transifex
|
2021-05-01 07:57:04 +02:00 |
|
Christophe Maudoux
|
fc481d40d2
|
Rename param (#1976)
|
2021-04-30 22:36:31 +02:00 |
|
Maxime Besson
|
2142b90caa
|
Unit test for #2513
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
16557f3965
|
Refactor child-src unit tests (#2513)
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
cd97d3b922
|
Refactor $req->{cspFormAction} (#2513)
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
a876d978af
|
Suggest improvement for next major version
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
913ebbd556
|
fix missing domain in child-src during SAML POST logout (#2513)
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
5ba0c11b58
|
Add helper to build CSP host list (#2513)
|
2021-04-23 09:02:24 +02:00 |
|
Christophe Maudoux
|
b54c95ccd2
|
Improve unit tests & Fix regex (#2509)
|
2021-04-21 22:14:47 +02:00 |
|
Maxime Besson
|
8695a633a7
|
Force type of JSON fields in token response (#2511)
|
2021-04-20 11:31:32 +02:00 |
|
Christophe Maudoux
|
21ced5dbad
|
Fix speChars test, typos & display (#2509)
|
2021-04-14 13:28:12 +02:00 |
|
Maxime Besson
|
d4c1c3c7de
|
Unit test for #2506
|
2021-04-09 17:52:24 +02:00 |
|
Maxime Besson
|
a94fb616bd
|
Allow admin to disallow host-based match (#2506)
|
2021-04-09 17:51:54 +02:00 |
|
Maxime Besson
|
1253effa29
|
Unit test for #2502
|
2021-04-07 16:40:32 +02:00 |
|
Maxime Besson
|
c1e059eeb3
|
Use authChoiceAuthBasic to select Choice (#2502)
|
2021-04-07 16:40:32 +02:00 |
|
Yadd
|
e6a2706c85
|
Update languages from transifex
|
2021-04-07 14:36:25 +02:00 |
|
Yadd
|
f930e449ab
|
Order language keys
|
2021-04-07 13:46:32 +02:00 |
|
Christophe Maudoux
|
64dffcf4d0
|
Send only technical and exported attributes (#2503)
|
2021-04-03 16:46:43 +02:00 |
|
Christophe Maudoux
|
9f77e89f96
|
Send exported attributes with REST session server & typos (#2503)
|
2021-04-02 23:57:30 +02:00 |
|
Christophe Maudoux
|
4751427105
|
Fix error level & Improve doc (#1976)
|
2021-04-01 23:31:48 +02:00 |
|
Christophe Maudoux
|
c0db322ef0
|
Perl critic
|
2021-04-01 23:07:58 +02:00 |
|
Christophe Maudoux
|
bcfb075f63
|
Be more consistent with REST params & Update doc (#1976)
|
2021-04-01 22:48:08 +02:00 |
|
Christophe Maudoux
|
6eda19c112
|
Fix test (#2501)
|
2021-04-01 19:02:46 +02:00 |
|
Christophe Maudoux
|
b67d11c58a
|
Update manifest
|
2021-04-01 14:49:44 +02:00 |
|
Christophe Maudoux
|
654184dd66
|
Fix bad request (#2501)
|
2021-04-01 14:49:44 +02:00 |
|
Maxime Besson
|
297dc830af
|
Update mail templates to no longer use string substitution (#2495)
|
2021-03-31 14:27:23 +02:00 |
|
Maxime Besson
|
d696853556
|
Factor MAIN_LOGO variable in loadMailTemplate (#2495)
|
2021-03-31 14:27:23 +02:00 |
|
Christophe Maudoux
|
89111859a0
|
Typos (#1976)
|
2021-03-30 23:54:06 +02:00 |
|
Maxime Besson
|
20e1f9ded0
|
Hash JWT to catch tampering (#2419)
This mechanism's only purpose is to make the introsection endpoint fail
to verify the token when the JWT itself has been tampered with.
|
2021-03-30 16:32:14 +02:00 |
|
Maxime Besson
|
2c8cbbefe6
|
"xxx is allowed to update 2FA" should be a debug message
|
2021-03-30 16:32:14 +02:00 |
|
Clément OUDOT
|
55ab4b5a5f
|
Fix CAS log message on service ticket validation error (#2494)
|
2021-03-25 16:33:48 +01:00 |
|
Maxime Besson
|
02b680df30
|
fix #2489
|
2021-03-19 16:45:37 +01:00 |
|
Maxime Besson
|
96a667cf2e
|
clarify REST log messages
|
2021-03-17 14:24:47 +01:00 |
|
Maxime Besson
|
9fda75edc5
|
Unit test for #2488
|
2021-03-17 14:24:47 +01:00 |
|
Maxime Besson
|
ca6c98c26c
|
Allow selection of saml ACS during idp initiated (#2488)
|
2021-03-17 14:24:47 +01:00 |
|
Maxime Besson
|
c0f8e8f46b
|
Skip serializing psgi streams when saving request
It can interfere with unit tests in some cases, like #2000
|
2021-03-15 21:18:08 +01:00 |
|
Maxime Besson
|
fc693184dc
|
Unit test for #2484
|
2021-03-10 15:47:46 +01:00 |
|