Clément Oudot
|
7db6b51ece
|
Use Safe jail to manage GET parameters (#1025)
|
2016-06-06 13:14:03 +00:00 |
|
Clément Oudot
|
7be4088df1
|
Escape values in URI (#1025)
|
2016-06-06 09:51:12 +00:00 |
|
David COUTADEUR
|
c658710e64
|
first working version of IssuerDBGet (correct typo + add session variable substitution) (references #1025)
|
2016-06-05 13:14:31 +00:00 |
|
David COUTADEUR
|
2d3c8d026b
|
Work on IssuerDBGet module backend part (references #1025)
|
2016-06-04 13:35:53 +00:00 |
|
Clément Oudot
|
98139efb1e
|
Tolerate some differences in CAS service URI to behave like JASIG CAS (#1031)
|
2016-06-03 10:02:32 +00:00 |
|
Xavier Guimard
|
c1fb44a2b7
|
Many changes in notifications (#595)
|
2016-06-02 21:20:36 +00:00 |
|
Xavier Guimard
|
201913d603
|
Verify notification delete (#595)
|
2016-06-01 19:19:53 +00:00 |
|
Xavier Guimard
|
3d1f71fcfb
|
Add update session methods (#595)
|
2016-06-01 17:36:51 +00:00 |
|
Xavier Guimard
|
3a309684f4
|
Working on notifications (#595)
|
2016-06-01 05:20:55 +00:00 |
|
Xavier Guimard
|
3414f923f4
|
Working on notifications (#595)
|
2016-05-31 21:52:18 +00:00 |
|
Xavier Guimard
|
00a0fe7241
|
Working on notifications (#595)
|
2016-05-31 20:41:35 +00:00 |
|
Xavier Guimard
|
4a18a3f528
|
Set default values for request (#595)
|
2016-05-31 11:47:10 +00:00 |
|
Xavier Guimard
|
bdace9151f
|
Notification is displayed (#595)
|
2016-05-31 11:47:08 +00:00 |
|
Xavier Guimard
|
181461e2f7
|
Working on notifications (#595)
|
2016-05-30 20:20:53 +00:00 |
|
Xavier Guimard
|
c138514b34
|
Working on notifications (#595)
|
2016-05-30 11:32:21 +00:00 |
|
Xavier Guimard
|
12b23f18e6
|
Working on notifications (#595)
|
2016-05-30 05:15:57 +00:00 |
|
Xavier Guimard
|
205bf2e7ea
|
Working on notifications (#595)
|
2016-05-29 07:48:06 +00:00 |
|
Xavier Guimard
|
ad2f8b643f
|
Notifications skeleton (#595)
|
2016-05-28 08:33:39 +00:00 |
|
Xavier Guimard
|
cb91d97b2b
|
Remove cda code: already written in plugin (#595)
|
2016-05-27 05:00:50 +00:00 |
|
Xavier Guimard
|
70f4302984
|
Remove old file (#595)
|
2016-05-27 05:00:49 +00:00 |
|
Xavier Guimard
|
647ad67eeb
|
Translate Remote in new format + add test (#595)
|
2016-05-26 21:26:49 +00:00 |
|
Xavier Guimard
|
73e0199c8b
|
Enable jsRedirect (#595)
|
2016-05-26 21:26:47 +00:00 |
|
Xavier Guimard
|
4ee99bd0f9
|
Add slave auth (#595)
|
2016-05-25 19:30:43 +00:00 |
|
Xavier Guimard
|
408e19642a
|
Delete transformed files (#595)
|
2016-05-25 05:13:36 +00:00 |
|
Xavier Guimard
|
1eb433140d
|
Working on Facebook (#595)
Seems to work but not fully tested
|
2016-05-24 21:18:19 +00:00 |
|
Xavier Guimard
|
fa45062be5
|
Display errors in HTML (#595)
|
2016-05-24 20:50:22 +00:00 |
|
Xavier Guimard
|
d63fefe415
|
Working on Facebook (#595)
|
2016-05-24 16:53:43 +00:00 |
|
Xavier Guimard
|
baadb59f63
|
Working on Facebook (#595)
|
2016-05-24 16:53:41 +00:00 |
|
Xavier Guimard
|
6b2b7edd80
|
Remove already transformed files (#595)
|
2016-05-24 05:23:05 +00:00 |
|
Xavier Guimard
|
6e837af219
|
Working on BrowserID (#595)
|
2016-05-24 05:05:51 +00:00 |
|
Xavier Guimard
|
25365061de
|
In progress... (#595)
|
2016-05-23 21:52:32 +00:00 |
|
Xavier Guimard
|
c535422a98
|
customParameters for templates (#595)
|
2016-05-23 21:52:29 +00:00 |
|
Xavier Guimard
|
bb39433ad5
|
Avoid some warnings (#595)
|
2016-05-23 19:28:32 +00:00 |
|
Xavier Guimard
|
47de9275fa
|
Working on logout and XSS (#595)
|
2016-05-23 16:55:23 +00:00 |
|
Xavier Guimard
|
f5000726d5
|
Keep urldc after logout (#595)
|
2016-05-23 16:55:18 +00:00 |
|
Xavier Guimard
|
5a45bcf719
|
Avoid some warnings (#595)
|
2016-05-23 16:55:16 +00:00 |
|
Xavier Guimard
|
73a51bb4fb
|
Working on XSS detection (#595)
|
2016-05-23 11:53:09 +00:00 |
|
Xavier Guimard
|
159eb4a6ce
|
Enable logout (#LEMONDAP-595)
|
2016-05-22 17:06:55 +00:00 |
|
Xavier Guimard
|
258fcd7f13
|
Update doc (#595)
|
2016-05-22 12:23:04 +00:00 |
|
Xavier Guimard
|
232ab78860
|
Limit PE_* imports (#595)
|
2016-05-22 12:22:59 +00:00 |
|
Xavier Guimard
|
37ec0b0f9c
|
Apache auth (#595)
|
2016-05-22 11:27:37 +00:00 |
|
Xavier Guimard
|
1ed7473797
|
Null auth (#595)
|
2016-05-22 11:27:34 +00:00 |
|
Xavier Guimard
|
baa102a6c9
|
Documentation for authentication plugins (#595)
|
2016-05-22 08:59:49 +00:00 |
|
Xavier Guimard
|
bd7d6716aa
|
Load languages (#595)
|
2016-05-21 12:24:42 +00:00 |
|
Clément Oudot
|
a65e1f6f0a
|
Use REQUEST_URI to restore request path in Choice URL (#1022)
|
2016-05-20 08:47:39 +00:00 |
|
Xavier Guimard
|
3cca919cc8
|
Improve AD (#595)
|
2016-05-20 04:49:00 +00:00 |
|
Xavier Guimard
|
a00d0d2546
|
Add AD [Not tested !] (#595)
|
2016-05-19 21:00:58 +00:00 |
|
Xavier Guimard
|
e7a712c082
|
DBI auth works (#595)
|
2016-05-19 20:07:46 +00:00 |
|
Clément Oudot
|
0ca85d42bb
|
Fix redirection in Twitter (#1012)
|
2016-05-19 10:01:58 +00:00 |
|
Xavier Guimard
|
80434610c4
|
DBI in progress (#595)
|
2016-05-19 05:11:50 +00:00 |
|
Clément Oudot
|
b7668c890b
|
Evaluation of custom template parameters (#1019)
|
2016-05-18 08:13:35 +00:00 |
|
Xavier Guimard
|
b394ba2523
|
Import r5060 (#1016)
|
2016-05-17 20:06:49 +00:00 |
|
Clément Oudot
|
fc02bce9d0
|
Rewrite Twitter authentication module with Net::OAuth (#1012)
|
2016-05-15 14:43:48 +00:00 |
|
Xavier Guimard
|
2ebfc8b9b9
|
Transform old _DBI.pmin new format (#595)
|
2016-05-14 18:05:40 +00:00 |
|
Xavier Guimard
|
5dac8432b8
|
Remove old unused sub (#595)
|
2016-05-14 17:42:19 +00:00 |
|
Clément Oudot
|
59a377f29a
|
Export checkHeader method in _Slave (#1018)
|
2016-05-14 14:00:34 +00:00 |
|
Xavier Guimard
|
2eafb60240
|
LDAP auth works (#595)
|
2016-05-12 19:02:48 +00:00 |
|
Clément Oudot
|
6e1dc4b20b
|
Apply patch on new trunk LDAP code (#1011)
|
2016-05-11 13:04:40 +00:00 |
|
Xavier Guimard
|
3bce0abda4
|
LDAP in progress (#595)
|
2016-05-11 11:42:37 +00:00 |
|
Clément Oudot
|
7db58e5b4b
|
Apply patch on old trunk LDAP code (#1011)
|
2016-05-11 09:39:57 +00:00 |
|
Clément Oudot
|
eb87ab449e
|
Use only specific Facebook variables, to prevent errors (#1013)
|
2016-05-10 14:49:48 +00:00 |
|
Clément Oudot
|
95c772bf38
|
Offline mode scope is no more available (#1013)
|
2016-05-10 14:49:47 +00:00 |
|
Clément Oudot
|
99dd68ec4f
|
Do not query username field, not available anymore (#1013)
|
2016-05-10 14:49:45 +00:00 |
|
Xavier Guimard
|
566dbcc9e2
|
LDAP in progress (#595)
|
2016-05-07 11:27:08 +00:00 |
|
Xavier Guimard
|
0aa2c4c76f
|
LDAP in progress (#595)
|
2016-05-05 20:26:41 +00:00 |
|
Xavier Guimard
|
20cf296e81
|
Typo (#1004)
|
2016-05-05 07:34:15 +00:00 |
|
Xavier Guimard
|
840ee06eab
|
Import es, it, pt, ne and de translation (#1004)
|
2016-05-05 07:21:51 +00:00 |
|
Xavier Guimard
|
0de8e5a534
|
#595 in progress
|
2016-05-04 11:38:49 +00:00 |
|
Xavier Guimard
|
00214387c9
|
LDAP in progress (#595)
|
2016-05-02 10:30:23 +00:00 |
|
Xavier Guimard
|
13f24796b8
|
LDAP in progress (#595)
|
2016-05-01 07:30:21 +00:00 |
|
Xavier Guimard
|
39c6713aea
|
Tidy
|
2016-04-29 07:27:26 +00:00 |
|
Xavier Guimard
|
6172c767d8
|
LDAP in progress (#595)
|
2016-04-28 20:07:35 +00:00 |
|
Clément Oudot
|
a35f694828
|
Do not use cache for persistent sessions (#1000)
|
2016-04-25 17:12:11 +00:00 |
|
Clément Oudot
|
12621981e0
|
Force UTF-8 decoding of menu categories and applications (#995)
|
2016-04-20 16:36:30 +00:00 |
|
Xavier Guimard
|
eebe2bbfab
|
Starting import LDAP in new portal (#595)
|
2016-04-20 05:09:23 +00:00 |
|
Clément Oudot
|
2e795e8ed1
|
Apply patch to 1.4 branch and trunk (#991)
|
2016-04-19 13:25:20 +00:00 |
|
Xavier Guimard
|
c0e0e32740
|
Reset groups (Closes: #992)
|
2016-04-18 20:23:41 +00:00 |
|
Xavier Guimard
|
b9cd5a89dd
|
Improve logout for plugins (#595)
|
2016-04-18 20:23:40 +00:00 |
|
Xavier Guimard
|
35d1ad0b3c
|
Simple logout works (#595)
|
2016-04-14 19:49:27 +00:00 |
|
Xavier Guimard
|
d32d9646f8
|
Menu seems to work (#595)
|
2016-04-14 18:42:59 +00:00 |
|
Xavier Guimard
|
05977bca3b
|
Fix replay list for Multi (may fix #992)
|
2016-04-14 10:51:06 +00:00 |
|
Xavier Guimard
|
24d536b7d1
|
Menu in progress (#595)
|
2016-04-13 21:06:04 +00:00 |
|
Xavier Guimard
|
8cc77fc304
|
Menu in progress (#595)
|
2016-04-13 11:56:19 +00:00 |
|
Xavier Guimard
|
a1d177900f
|
Start menu rewriting (#595)
|
2016-04-13 05:32:10 +00:00 |
|
Xavier Guimard
|
2f19ccb169
|
prepare display() for later Ajax usage (#595)
|
2016-04-11 05:12:39 +00:00 |
|
Xavier Guimard
|
a3866bc1cc
|
Login template in progress (#595)
|
2016-04-11 05:00:34 +00:00 |
|
Xavier Guimard
|
6bd696aabd
|
Trying to display menu (#595)
|
2016-04-10 11:33:27 +00:00 |
|
Xavier Guimard
|
479a3fac28
|
Login form is displayed (#595)
|
2016-04-10 07:20:54 +00:00 |
|
Xavier Guimard
|
72a076d980
|
Adapt Display.pm
|
2016-04-07 21:31:56 +00:00 |
|
Xavier Guimard
|
12fbce8ac2
|
Get ini parameters before conf reload (#595)
|
2016-04-06 20:10:01 +00:00 |
|
Xavier Guimard
|
099e7e9ff4
|
Log users even on error (#595)
|
2016-04-06 12:01:53 +00:00 |
|
Xavier Guimard
|
2fb42670f8
|
Start templates (#595)
|
2016-04-06 05:16:47 +00:00 |
|
Xavier Guimard
|
4f8830fdf6
|
Macros are working now (#595)
|
2016-04-05 20:46:11 +00:00 |
|
Xavier Guimard
|
dc8ac8030c
|
autoRedirect works (#595)
but macros() doesn't
|
2016-04-05 11:12:53 +00:00 |
|
Xavier Guimard
|
b6f2946c22
|
Finish "onReload" call (#595)
|
2016-04-04 21:22:27 +00:00 |
|
Xavier Guimard
|
ca84a928db
|
"onReload" system: handler reload calls portal reload (#595)
|
2016-04-04 21:22:25 +00:00 |
|
Xavier Guimard
|
4fe318a5ea
|
Authentication succeeds (#595)
|
2016-04-04 20:39:22 +00:00 |
|
Xavier Guimard
|
33569f8c8c
|
Little bugs (#595)
|
2016-04-04 08:39:26 +00:00 |
|
Xavier Guimard
|
8d1c669a3b
|
#595 in progress...
|
2016-04-04 05:08:26 +00:00 |
|
Xavier Guimard
|
a16d452a62
|
AuthDemo asks for auth (#595)
|
2016-04-03 16:51:23 +00:00 |
|
Xavier Guimard
|
ca16584d8b
|
#595 in progress...
|
2016-04-03 16:27:22 +00:00 |
|
Xavier Guimard
|
80f17a91ea
|
Compile macros and groups (#595)
|
2016-04-03 16:27:19 +00:00 |
|
Xavier Guimard
|
41d487ee1f
|
Share sessionInfo with underlying handler (#595)
|
2016-04-03 16:27:17 +00:00 |
|
Xavier Guimard
|
1a16c2dbc8
|
First running test (#595)
|
2016-04-03 16:27:13 +00:00 |
|
Xavier Guimard
|
13051ce0af
|
#595 in progress
|
2016-04-03 08:44:58 +00:00 |
|
Xavier Guimard
|
d3d6410646
|
#595 in progress
|
2016-04-03 06:33:50 +00:00 |
|
Xavier Guimard
|
eb4b72168b
|
#595 in progress
|
2016-04-02 20:17:39 +00:00 |
|
Xavier Guimard
|
8af86353d7
|
#595 in progress
|
2016-04-01 10:46:12 +00:00 |
|
Xavier Guimard
|
78f074bd3d
|
#595 in progress...
|
2016-04-01 10:10:42 +00:00 |
|
Xavier Guimard
|
b1d6dcd041
|
Typo
|
2016-04-01 05:31:55 +00:00 |
|
Xavier Guimard
|
acb6071206
|
New portal in progress... (#595)
|
2016-04-01 05:24:27 +00:00 |
|
Xavier Guimard
|
055e4a7f0e
|
New process skeleton
|
2016-03-31 20:08:43 +00:00 |
|
Xavier Guimard
|
ce0f0d09c4
|
s/CAS_/CAS/
|
2016-03-31 20:08:40 +00:00 |
|
Xavier Guimard
|
928c669dc4
|
New portal in progress... (#595)
|
2016-03-31 05:27:59 +00:00 |
|
Xavier Guimard
|
165eed1234
|
New portal in progress... (#595)
|
2016-03-30 20:01:24 +00:00 |
|
Xavier Guimard
|
d58795456c
|
New portal in progress... (#595)
|
2016-03-30 19:51:15 +00:00 |
|
Xavier Guimard
|
a13e8870cd
|
New portal in progress (#595)
|
2016-03-30 19:51:12 +00:00 |
|
Xavier Guimard
|
fca652b75d
|
New portal in progress (#595)
|
2016-03-30 05:47:38 +00:00 |
|
Xavier Guimard
|
d6cd2512d8
|
New portal in progress (#595)
|
2016-03-29 21:09:55 +00:00 |
|
Xavier Guimard
|
a11a5565ca
|
Remove old unused module
|
2016-03-29 21:09:53 +00:00 |
|
Xavier Guimard
|
2244a8c208
|
Split PSGI
|
2016-03-28 07:46:05 +00:00 |
|
Xavier Guimard
|
6452347384
|
Portal PSGI in progress
|
2016-03-28 07:46:02 +00:00 |
|
Xavier Guimard
|
43cf53b2a2
|
Portal PSGI in progress (#595)
|
2016-03-27 18:17:01 +00:00 |
|
Xavier Guimard
|
9be52a6216
|
Portal PSGI in progress
|
2016-03-27 18:10:36 +00:00 |
|
Xavier Guimard
|
73f3fc0576
|
#595 in progress
|
2016-03-24 22:16:13 +00:00 |
|
Xavier Guimard
|
bd03549d88
|
PSGI portal skeleton (#595)
|
2016-03-24 06:23:40 +00:00 |
|
Xavier Guimard
|
2d2edb61ac
|
Merge experimental branch (#960)
Also update version to 2.0
|
2016-03-17 22:19:44 +00:00 |
|
Clément Oudot
|
175367f96c
|
Do not check pwdLastSet if user not found in AD (#980)
|
2016-03-16 12:48:08 +00:00 |
|
Xavier Guimard
|
49743e06fc
|
Keep _session_id in SOAP requests (#977)
|
2016-03-14 06:22:00 +00:00 |
|
Xavier Guimard
|
ef48301771
|
Spelling errors
|
2016-03-05 08:42:06 +00:00 |
|
Xavier Guimard
|
7ac07074ae
|
Update versions
|
2016-03-03 20:25:16 +00:00 |
|
Xavier Guimard
|
9d779015c0
|
Set pivotal variables (needed for status)
|
2016-03-01 14:26:37 +00:00 |
|
Clément Oudot
|
fff8ba5baa
|
Block redirection when error must be displayed (#958)
|
2016-03-01 10:40:45 +00:00 |
|
Xavier Guimard
|
8134295c05
|
Clean strange hook (probably added for experimental Perl Nginx (#583)
|
2016-02-29 21:10:47 +00:00 |
|
Xavier Guimard
|
8c1bd8efeb
|
Avoid using each(): it tries to delete key
|
2016-02-13 10:06:48 +00:00 |
|
Xavier Guimard
|
584de6373b
|
Update portal to use modified status (#897)
|
2016-02-12 17:08:09 +00:00 |
|
Clément Oudot
|
59a262aa00
|
Force decoding of LDAP Manager password (#827)
|
2016-02-10 15:38:40 +00:00 |
|
Clément Oudot
|
e19bb1e192
|
Do not import encode_base64url and decode_base64url from MIME::Base64 (#932)
|
2016-02-09 11:13:25 +00:00 |
|
Xavier Guimard
|
9097135ecd
|
Spelling errors
|
2016-02-06 18:41:21 +00:00 |
|
Clément Oudot
|
1843fe7434
|
Create stop method for AD backend (#914)
|
2016-02-02 14:57:49 +00:00 |
|
Clément Oudot
|
cd56a89b9e
|
Create a stop method to know if the Multi process should stop (#914)
|
2016-02-02 13:58:54 +00:00 |
|
Clément Oudot
|
333403dfd0
|
Possibility to override Portal standard messages (#915)
|
2016-02-02 11:24:44 +00:00 |
|
Clément Oudot
|
607641dcfd
|
Possibility to use certificate in SAML response (#836)
|
2016-02-01 16:42:15 +00:00 |
|
Clément Oudot
|
7d7e5a6717
|
Decode internal perl encoding for SAML attribute (#864)
|
2016-01-29 17:21:23 +00:00 |
|
Xavier Guimard
|
b6f7b2a96a
|
Move Ajax hook from handler to portal (Closes: #790)
|
2016-01-28 22:25:46 +00:00 |
|
Clément Oudot
|
ce188e628e
|
Manage logo customization in Choice (#911)
|
2016-01-22 13:09:05 +00:00 |
|
Xavier Guimard
|
5bef7284b3
|
Update copyright years
|
2016-01-21 21:15:19 +00:00 |
|
Clément Oudot
|
fd11f7f814
|
Import forgotten sha functions (#184)
|
2016-01-21 13:10:08 +00:00 |
|
Clément Oudot
|
6165ac1e59
|
Add _utime in persistent session (#495)
|
2016-01-20 09:33:27 +00:00 |
|
Clément Oudot
|
412420267d
|
Remove back to SP link (#891)
|
2016-01-14 15:55:34 +00:00 |
|
Xavier Guimard
|
d2fcb5083a
|
Back from JSON::MaybeXS to JSON (#877)
|
2016-01-13 19:47:56 +00:00 |
|
Xavier Guimard
|
6eaea5081a
|
Avoid double utf8 management (#827)
|
2016-01-11 20:32:44 +00:00 |
|
Clément Oudot
|
c90e91b9d5
|
Set main identifier in persistent session (#495)
|
2016-01-07 13:46:15 +00:00 |
|
Xavier Guimard
|
c0e5e0010e
|
utf8 anywhere in conf
|
2016-01-07 12:34:34 +00:00 |
|
Xavier Guimard
|
eb6bfa7107
|
Insert 'remoteCookieName' as known exception
|
2016-01-06 06:02:51 +00:00 |
|
Clément Oudot
|
196c59c027
|
Update session activity when receiving IssuerDB request (#870)
|
2016-01-05 16:44:59 +00:00 |
|
Xavier Guimard
|
103e3da144
|
make tidy
|
2016-01-02 09:35:40 +00:00 |
|
Xavier Guimard
|
e8dac0fe6b
|
Replace 'splice' by copy (Closes: #534)
|
2016-01-02 09:29:05 +00:00 |
|
Xavier Guimard
|
0b52c97cfe
|
Use JSON::MaybeXS instead of JSON
JSON::Any used before as been deprecated
|
2015-12-28 16:35:32 +00:00 |
|
Xavier Guimard
|
ae675692c4
|
+Attribute to change LDAP alias dereference (Closes: #787)
|
2015-12-28 11:58:53 +00:00 |
|
Xavier Guimard
|
10323d6b76
|
Check conditions in AuthSlave and UserDBSlave
Closes: #865
|
2015-12-27 12:29:32 +00:00 |
|
Xavier Guimard
|
8f78863dcf
|
Change OIDC(JSON|JWKS) key storage
Due to old manager behavior, they were stored as key->partner->key. Now
it's simply key->partner
|
2015-12-20 07:04:38 +00:00 |
|
Xavier Guimard
|
355b298a3a
|
Better regexp
|
2015-12-19 06:56:59 +00:00 |
|
Clément Oudot
|
c257baddd9
|
Fix session management (bug introduced in r4024)
|
2015-12-18 18:01:15 +00:00 |
|
Clément Oudot
|
4a1f957fdd
|
Set trunk version to 1.9.0
|
2015-12-18 09:31:36 +00:00 |
|
Xavier Guimard
|
2df6075dfa
|
Persistent sessions explorer in progress
|
2015-12-18 06:17:30 +00:00 |
|
Xavier Guimard
|
6daa0bc77b
|
Strange bug
It happends when serveur is restarted and the first call to portal uses
"?logout=1" with a valid session
|
2015-12-16 20:44:27 +00:00 |
|
Xavier Guimard
|
3372341fec
|
Start authChoice management
|
2015-12-12 13:18:48 +00:00 |
|
Xavier Guimard
|
5a3fc1bfed
|
Adapt "multi" system to the new manager
IMPORTANT: auth and userDB stacks are now in distinct keys
|
2015-12-10 20:05:29 +00:00 |
|
Clément Oudot
|
8c109061a9
|
Return error if no OpenID Provider configured (#183)
|
2015-10-22 13:40:11 +00:00 |
|
Clément Oudot
|
a6821a7fca
|
Fix trailing slash in post logout URL (#183)
|
2015-10-22 09:24:18 +00:00 |
|
Clément Oudot
|
df59540d22
|
make tidy
|
2015-10-22 08:40:12 +00:00 |
|
David COUTADEUR
|
7fd8390c85
|
correcting typo for #822 feature (checking pwdLastSet in AD is not sufficient)
|
2015-10-08 12:49:32 +00:00 |
|
Clément Oudot
|
d1540c280f
|
Move AD specific code in AuthAD and check userAccountControl before displaying expiration warning (#822)
|
2015-10-06 09:39:23 +00:00 |
|
Clément Oudot
|
ad0c56cb84
|
Manage password expiration for AD authentication backend (#822)
|
2015-10-05 14:07:24 +00:00 |
|
Clément Oudot
|
b05fab6eac
|
Dump variables stored in session in debug mode (#792)
|
2015-09-25 15:29:57 +00:00 |
|
Clément Oudot
|
b8d8b01ea4
|
Create hGroups to store groups as an HashRef:
* Allows to store multivaluated attributes of groups (#792)
* Remove duplicate groups when using recursive groups (#823)
|
2015-09-25 09:43:04 +00:00 |
|
Clément Oudot
|
f8d9274a2c
|
Store multi full module name in another session variable (#715)
|
2015-09-24 06:58:21 +00:00 |
|
Clément Oudot
|
62a8fb17ac
|
Fix SOAP data formatting (#850)
|
2015-09-23 09:02:47 +00:00 |
|
Clément Oudot
|
99953c14eb
|
Add _lastSeen to default exported attributes with SOAP (#845)
|
2015-09-23 08:31:46 +00:00 |
|
Xavier Guimard
|
9298c07510
|
Typo
|
2015-09-22 05:38:23 +00:00 |
|
Clément Oudot
|
fa95ab2ee7
|
Possibility to define extra claims (#184)
|
2015-06-19 09:06:13 +00:00 |
|
Clément Oudot
|
c5a6d3f31c
|
Force Base64 URL for JWT signature (#184)
|
2015-06-18 12:47:35 +00:00 |
|
Xavier Guimard
|
87fd52a0ab
|
Update copyrights
|
2015-06-18 11:00:24 +00:00 |
|
Clément Oudot
|
13dc6d5755
|
Fix 'exp' field in ID Token (#184)
|
2015-06-18 10:20:15 +00:00 |
|
Clément Oudot
|
96207ab19d
|
Support URL for application logo (#183)
|
2015-06-16 15:43:07 +00:00 |
|
Clément Oudot
|
15cfb0ed43
|
Support URL for application logo (#184)
|
2015-06-16 15:34:11 +00:00 |
|
Clément Oudot
|
ef43679ce1
|
Manage session not found in portal (#825)
|
2015-06-12 10:56:38 +00:00 |
|
Clément Oudot
|
12890c4512
|
Fix oidcStorageOptions initialization (#184)
|
2015-06-12 07:51:37 +00:00 |
|
Clément Oudot
|
e3af829e5a
|
Remove portalAutocomplete configuration (#824)
|
2015-06-11 12:59:20 +00:00 |
|
Clément Oudot
|
b81aea14b4
|
Define an ID for public key (#184)
|
2015-06-05 12:55:06 +00:00 |
|
Clément Oudot
|
fe77ab4dbb
|
CHeck session iframe with CORS for session management (#184)
|
2015-06-01 18:22:36 +00:00 |
|
Clément Oudot
|
05ecd34598
|
Parameter to define allowed flows (#184)
|
2015-05-29 16:49:32 +00:00 |
|
Clément Oudot
|
121e578b7e
|
Parameter to allow dynamic client registration (#184)
|
2015-05-29 10:07:54 +00:00 |
|
Clément Oudot
|
b66a90e197
|
Register dynamic client in configuration (#184)
|
2015-05-29 08:50:51 +00:00 |
|
Clément Oudot
|
ab0b6e7190
|
Display correct skin in register page (#818)
|
2015-05-11 14:06:20 +00:00 |
|
Clément Oudot
|
f82a7319be
|
Display correct skin in mail reset page (#818)
|
2015-05-11 13:50:55 +00:00 |
|
Clément Oudot
|
fe2ad66a29
|
Add attributes in CAS serviceValidate response (#773)
|
2015-05-09 17:49:56 +00:00 |
|
Clément Oudot
|
ad2c67c2ba
|
Support Request URI (#184)
|
2015-04-30 06:09:51 +00:00 |
|
Clément Oudot
|
159f71fd25
|
Verify Request JWT signature (#184)
|
2015-04-25 15:19:12 +00:00 |
|
Clément Oudot
|
94f1065e5d
|
Accept 'request' parameter in authorization requests (#184)
|
2015-04-22 17:16:32 +00:00 |
|
Clément Oudot
|
0b3f9a78ff
|
Parse UserInfo response as JWT (#183)
|
2015-04-18 08:36:42 +00:00 |
|
Clément Oudot
|
1c0df34268
|
Replace version 2.00 by 2.0.0
|
2015-04-15 14:18:38 +00:00 |
|
Clément Oudot
|
9520bef489
|
Manager UserInfo signature (JWT response) (#184)
|
2015-04-14 18:42:02 +00:00 |
|
Clément Oudot
|
572636ead1
|
Use Base64 URL to decode JWT (#184)
|
2015-04-11 11:15:01 +00:00 |
|
Clément Oudot
|
a63918d28f
|
Return session state for session management (#184)
|
2015-04-07 09:04:17 +00:00 |
|
Clément Oudot
|
ac5f76f898
|
Option to deactivate nonce (#183)
|
2015-04-03 13:45:38 +00:00 |
|
Clément Oudot
|
a17159f105
|
Don't send max_age if value is 0 (#183)
|
2015-04-03 13:23:52 +00:00 |
|
Clément Oudot
|
3ad495f824
|
Call endsession point in authLogout (#183)
|
2015-04-03 13:00:30 +00:00 |
|
Clément Oudot
|
328a280601
|
Work on implementation of OIDC logout (#184)
|
2015-04-03 09:05:36 +00:00 |
|
Clément Oudot
|
841f057c25
|
Work on implementation of OIDC logout (#184)
|
2015-04-02 16:54:00 +00:00 |
|
Clément Oudot
|
85650ae3be
|
Start implementation of OIDC logout (#184)
|
2015-04-02 07:02:21 +00:00 |
|
Clément Oudot
|
72aecd6cf1
|
Configuration of Authentication Class Ref (#184)
|
2015-04-01 15:45:08 +00:00 |
|
Clément Oudot
|
b9494d1b0a
|
Check iat (#183)
|
2015-04-01 15:10:08 +00:00 |
|
Clément Oudot
|
0fa5cf2614
|
Use max_age, ui_locales and acr_values (#183)
|
2015-04-01 14:51:49 +00:00 |
|
Clément Oudot
|
01aec28467
|
Use prompt (#183)
|
2015-04-01 13:00:31 +00:00 |
|
Clément Oudot
|
865551989b
|
Use display (#183)
|
2015-04-01 12:53:18 +00:00 |
|
Clément Oudot
|
9936ade26b
|
Use nonce (#183)
|
2015-03-31 16:07:50 +00:00 |
|
Clément Oudot
|
2e0f1b7088
|
Start of registration endpoint implementation (#184)
|
2015-03-30 15:57:23 +00:00 |
|
Clément Oudot
|
b14ec43a88
|
Check redirect_uri (#184)
|
2015-03-30 12:58:56 +00:00 |
|
Clément Oudot
|
da31a15cb9
|
Add support for RS256/RS384/RS512 to sign ID Tokens (#184)
|
2015-03-27 15:13:00 +00:00 |
|
Clément Oudot
|
895d7f3ef1
|
Display pretty JSON (#184)
|
2015-03-27 14:33:13 +00:00 |
|
Clément Oudot
|
d22853d775
|
Support for JWKS URI and signing public key (#184)
|
2015-03-27 14:21:43 +00:00 |
|
Clément Oudot
|
f8e37c0c8b
|
Use SAML message creation time to set netBefore and notOnOrAfter (#799)
|
2015-03-27 08:29:12 +00:00 |
|
Clément Oudot
|
6c5487ab0e
|
Check prompt parameter when displaying consent (#184)
|
2015-03-27 08:25:36 +00:00 |
|
Clément Oudot
|
9f06668eef
|
Check id_token_hint request parameter for authenticated user (#184)
|
2015-03-25 16:13:09 +00:00 |
|
Clément Oudot
|
46e3b460c1
|
Check max_age request parameter for authenticated user (#184)
|
2015-03-25 16:11:45 +00:00 |
|
Clément Oudot
|
e1794d1be7
|
Check prompt request parameter for authenticated user (#184)
|
2015-03-25 14:55:46 +00:00 |
|
Clément Oudot
|
80480e302c
|
Prompt parameter is a space delimited value (#184)
|
2015-03-25 13:48:36 +00:00 |
|
Clément Oudot
|
1937448419
|
Check hidden fields in issuerForUnAuthUser (#184)
|
2015-03-25 11:53:03 +00:00 |
|
Clément Oudot
|
158c097e66
|
Manage login_hint request parameter (#184)
|
2015-03-25 11:40:58 +00:00 |
|
Clément Oudot
|
70bcd003f6
|
Manage ui_locales request parameter (#184)
|
2015-03-25 11:15:31 +00:00 |
|
Clément Oudot
|
c6589a7f7b
|
Check display and prompt request parameters for unauthenticated user (#184)
|
2015-03-25 10:54:00 +00:00 |
|
Clément Oudot
|
c07f698bdb
|
Manage consent refuse and server_error errors (#184)
|
2015-03-25 09:11:46 +00:00 |
|
Clément Oudot
|
8e06ec1bd1
|
Get all OIDC parameters on authorization endpoint and check required ones (#184)
|
2015-03-24 17:01:15 +00:00 |
|
Clément Oudot
|
699303cf47
|
Use redirection for errors on authorization endpoint (#184)
|
2015-03-24 16:40:00 +00:00 |
|
Clément Oudot
|
45ed174666
|
Generate at_hash at token endpoint (#184)
|
2015-03-23 17:04:00 +00:00 |
|
Clément Oudot
|
2ff0b7277a
|
Add hybrid flow support (#184)
|
2015-03-23 11:54:22 +00:00 |
|
Clément Oudot
|
539f241725
|
Generate at_hash in ID Token for implicit flow (#184)
|
2015-03-19 17:04:13 +00:00 |
|
Clément Oudot
|
c3cb985323
|
Manage access token hash in RP (#183)
|
2015-03-19 15:28:58 +00:00 |
|
Clément Oudot
|
4e7f4eb85e
|
Use nonce in Authentication Code Flow (#184)
|
2015-03-17 12:56:11 +00:00 |
|
Clément Oudot
|
89e3678bdf
|
Manage OIDC Implicit Flow (#184)
|
2015-03-17 11:01:11 +00:00 |
|
Clément Oudot
|
33bc52b619
|
Skeleton to manage different OIDC response types (#184)
|
2015-03-16 17:00:56 +00:00 |
|
Clément Oudot
|
71bc645d51
|
Authentication Context in ID Token (#184)
|
2015-03-13 12:54:04 +00:00 |
|
Clément Oudot
|
23b2c6f996
|
Configure Access Token expiration (#184)
|
2015-03-13 11:09:39 +00:00 |
|
Clément Oudot
|
74958870bb
|
Auth time and expiration in ID Token (#184)
|
2015-03-13 10:54:36 +00:00 |
|
Clément Oudot
|
6d6d7e6424
|
Fix typo on Relying Party (#184)
|
2015-03-11 16:24:10 +00:00 |
|
Clément Oudot
|
167fdb66c4
|
Possibility to configure attribute used to fill OIDC User ID (#184)
|
2015-03-11 16:16:37 +00:00 |
|
Clément Oudot
|
55fe1a5ec8
|
Refactor code that build authz response (#184)
|
2015-03-11 15:47:24 +00:00 |
|
Clément Oudot
|
ca146c7525
|
Remove unused imports (#184)
|
2015-03-11 15:07:00 +00:00 |
|
Clément Oudot
|
f3dcec7ad7
|
Display user friendly messages for scope consent (#184)
|
2015-03-11 14:34:31 +00:00 |
|
Clément Oudot
|
495da0dde5
|
Check accepted scope in consent step (#184)
|
2015-03-11 13:53:58 +00:00 |
|
Clément Oudot
|
2d015ebdcd
|
Possibility to change backend for OIDC sessions (#184)
|
2015-03-11 11:39:20 +00:00 |
|
Clément Oudot
|
6f128235af
|
Set version 2.00 in the trunk
|
2015-03-11 09:05:04 +00:00 |
|
Clément Oudot
|
7a7bb1fbda
|
make tidy on all files
|
2015-03-10 15:07:33 +00:00 |
|
Clément Oudot
|
a31663cf38
|
Delete captcha session only when authentication process is finished (#788)
|
2015-03-09 16:44:19 +00:00 |
|
Xavier Guimard
|
53e41d145c
|
Auth modules must be set
|
2015-03-09 15:55:46 +00:00 |
|
Clément Oudot
|
ef4af6b3f2
|
ID Token signature configuration (#184)
|
2015-02-19 18:04:29 +00:00 |
|
Clément Oudot
|
d1d97d16c3
|
Set _utime in OIDC sessions (#184)
|
2015-02-19 15:17:49 +00:00 |
|
Clément Oudot
|
68607ca947
|
Implement UserInfo endpoint (#184)
|
2015-02-04 13:25:13 +00:00 |
|
Clément Oudot
|
968f0e065a
|
Check authentication on token endpoint (#184)
|
2015-02-02 09:44:33 +00:00 |
|
Clément Oudot
|
9f69f03b09
|
Store scope in access token session (#184)
|
2015-01-31 15:17:56 +00:00 |
|
Clément Oudot
|
31e0a1cfb5
|
Obtain user consent for OpenID Connect requested scope (#184)
|
2015-01-31 14:34:52 +00:00 |
|
Clément Oudot
|
3c3cc39d0c
|
Check sub of UserInfo JSON (references #183)
|
2015-01-31 14:33:05 +00:00 |
|
Clément Oudot
|
e6ae3b9925
|
Restore hidden form values (#184)
|
2015-01-29 13:32:31 +00:00 |
|
Clément Oudot
|
0be124d3d7
|
Prevent reuse of authorization code (#184)
|
2015-01-28 16:53:06 +00:00 |
|
Clément Oudot
|
70281de82d
|
Add some debug logs (#184)
|
2015-01-28 13:41:10 +00:00 |
|
Clément Oudot
|
39b83ae46a
|
OpenIDConnect Service metadata parameters in Manager (#184)
|
2015-01-28 13:07:11 +00:00 |
|
Clément Oudot
|
2abb7fafde
|
Check that RP is registered (#184)
|
2015-01-23 13:06:54 +00:00 |
|
Clément Oudot
|
b82153ab17
|
Start implementation of OpenID Connect provider (#184)
|
2015-01-20 10:04:44 +00:00 |
|
David COUTADEUR
|
a82d36a794
|
Fix LEMONLDAP-784: https://jira.ow2.org/browse/LEMONLDAP-784
reset password in AD not working
|
2015-01-08 17:05:40 +00:00 |
|
Clément Oudot
|
7e74e27a3b
|
Autoselect OP if only one is configured (#183)
|
2014-12-15 14:58:42 +00:00 |
|
Clément Oudot
|
922b92bbbe
|
Configuration of OpenID Connect auth module and OP in Manager (#183)
|
2014-12-15 13:55:23 +00:00 |
|
Clément Oudot
|
18072723de
|
Compatibility with AuthChoice (#183)
|
2014-12-11 17:05:33 +00:00 |
|
Clément Oudot
|
8b7ad81ff5
|
Add first OpenID Connect RP parameters in Manager (#183)
|
2014-12-11 16:54:27 +00:00 |
|
Clément Oudot
|
0014e2cdaf
|
Invalidate CAS Service Ticket when it is used (#775)
|
2014-12-05 09:21:07 +00:00 |
|
Clément Oudot
|
8b1ea19725
|
Possibility to define a background image for portal skin (#770)
|
2014-12-02 14:51:23 +00:00 |
|
Clément Oudot
|
eea1fedd3c
|
Better look of OpenID Provider list (#183)
|
2014-12-01 17:07:55 +00:00 |
|
Clément Oudot
|
44c64ea606
|
Manage refresh of JWKS data (#183)
|
2014-12-01 10:27:47 +00:00 |
|
Clément Oudot
|
c5ad64e694
|
Try to fix build #491 (#183)
|
2014-11-24 08:39:16 +00:00 |
|
Clément Oudot
|
c09d2c4e00
|
Check ID Token validity (#183)
|
2014-11-22 08:53:17 +00:00 |
|
Clément Oudot
|
ee43c5010f
|
Check token response validity (references #183)
|
2014-11-22 08:46:41 +00:00 |
|
Clément Oudot
|
c0b7af29b8
|
Support client_secret_basic and client_secret_post for token endpoint authentication (references #183)
|
2014-11-21 17:15:47 +00:00 |
|
Clément Oudot
|
bc6920dd03
|
Check error in authn response (#183)
|
2014-11-21 10:32:35 +00:00 |
|
Clément Oudot
|
6ba3d9e44e
|
Manage exported vars per OP (#183)
|
2014-11-20 15:53:26 +00:00 |
|
Clément Oudot
|
687f0ed094
|
Change configuration format to allow to define several OP (#183)
|
2014-11-20 14:03:32 +00:00 |
|
Clément Oudot
|
74a7770fa4
|
Use extractJWT method (#183)
|
2014-11-20 09:11:55 +00:00 |
|
Clément Oudot
|
53aab6d3c0
|
Verify JWT signature for RS256/RS384/RS512 alg (#183)
|
2014-11-19 14:17:39 +00:00 |
|
Clément Oudot
|
ab1e318149
|
Add support for HS368 and HS512 JWT signature alg (#183)
Get OpenID configuration data from configuration URI (#183)
|
2014-11-19 11:09:37 +00:00 |
|
Clément Oudot
|
5a09c04445
|
Add some log to JWT signature verification (#183)
|
2014-11-18 14:32:15 +00:00 |
|
Clément Oudot
|
27225cfe86
|
Option to check JWT Signature (#183)
|
2014-11-18 14:24:03 +00:00 |
|
Clément Oudot
|
2a33f67155
|
Verify JWT signature for HS256 alg (#183)
|
2014-11-17 18:09:55 +00:00 |
|
Clément Oudot
|
3cde211810
|
Save/restore state in OpenID Connect RP (#183)
|
2014-11-17 13:55:26 +00:00 |
|
Clément Oudot
|
c64f69a852
|
Use eval to decode JSON content (#183)
|
2014-11-14 16:53:56 +00:00 |
|
Clément Oudot
|
914fe20eb5
|
Create OpenIDConnect library (#183)
|
2014-11-14 16:18:50 +00:00 |
|
Clément Oudot
|
2ff2d0e01a
|
First version of OpenIDConnect RP module (#183)
|
2014-11-14 14:29:55 +00:00 |
|
Clément Oudot
|
5bb0f01de4
|
Manage vhost aliases in portal menu (#755)
|
2014-11-03 17:07:47 +00:00 |
|
Clément Oudot
|
2af54acd97
|
Do not call data on undefined session object (#762)
|
2014-10-27 11:19:25 +00:00 |
|
Clément Oudot
|
2a343dff84
|
Fix TODO by using autoRedirect (#753)
|
2014-08-21 12:22:10 +00:00 |
|
Clément Oudot
|
7e517cbdd0
|
Do not hardcode OpenID server path (#753)
|
2014-08-21 12:19:12 +00:00 |
|