Maxime Besson
92af252ae9
Make SingleSession configurable by rule ( #2164 )
2020-04-22 11:02:59 +02:00
Maxime Besson
0983c66139
Portal: add helper method to build a rule from a string
2020-04-22 11:02:59 +02:00
Xavier Guimard
1a13e3d0dc
Really fix #2161
2020-04-21 22:09:40 +02:00
Maxime Besson
b8d72e21b4
fix display of deleted sessions ( #2159 )
2020-04-21 10:18:50 +02:00
Xavier Guimard
faadd4fc52
DBI: verify parameters during init ( Fixes : #2161 )
2020-04-21 07:55:07 +02:00
Christophe Maudoux
cd8f8bd847
Typo ( #2159 )
2020-04-21 00:03:45 +02:00
Maxime Besson
deab21e091
RESTServer: Clarify error message when time skew is too great
2020-04-20 17:14:32 +02:00
Christophe Maudoux
dcef93eea9
Update version ( #2154 )
2020-04-19 19:25:26 +02:00
Maxime Besson
55f3ca0e77
Improve error reporting for SAML replay protection
2020-04-18 19:54:02 +02:00
Christophe Maudoux
e00cb0ecf0
use localDate & Improve unit test ( #1999 )
2020-04-18 11:50:07 +02:00
Christophe Maudoux
612682fddb
Sort active sessions ( #1999 )
2020-04-18 00:32:21 +02:00
Clément OUDOT
fb29673fdf
GitHub authentication module ( #2154 )
2020-04-17 23:34:45 +02:00
Christophe Maudoux
478d205f07
Code refactoring & Tidy ( #2138 )
2020-04-17 20:00:36 +02:00
dcoutadeur dcoutadeur
2c6df4dfc0
Merge branch 'logoutforward' into 'v2.0'
...
fix #2138 logout forward doesn't work anymore
See merge request lemonldap-ng/lemonldap-ng!136
2020-04-17 17:56:48 +02:00
dcoutadeur
c984bb8b4a
fix CAS logoutServices (see #2138 logout forward doesn't work anymore)
2020-04-17 17:36:43 +02:00
dcoutadeur
641c523b62
revert c1b61f535
fix CAS logoutServices
2020-04-17 17:14:16 +02:00
dcoutadeur
c1b61f535a
fix CAS logoutServices (see #2138 logout forward doesn't work anymore)
2020-04-17 16:56:35 +02:00
dcoutadeur
17e56da82b
cleaner solution for #2138 logout forward doesn't work anymore
2020-04-17 16:26:40 +02:00
Christophe Maudoux
c3f7755055
Merge branch 'v2.0' into fix-ssl-error-reporting-2110
2020-04-16 23:05:09 +02:00
Christophe Maudoux
b82bdd9e6f
Tidy
2020-04-16 22:46:11 +02:00
Christophe Maudoux
4521705013
Avoid to create an empty SSO session ( #1783 )
2020-04-16 22:42:40 +02:00
dcoutadeur
cd15ac7a67
fix #2138 logout forward doesn't work anymore
2020-04-16 17:27:14 +02:00
Maxime Besson
7cc02dc179
Add auth routes for 2f choice screen ( #2151 )
2020-04-16 14:26:33 +02:00
Maxime Besson
6447396888
Improve SSL error reporting ( #2110 )
2020-04-15 18:43:27 +02:00
Maxime Besson
8c94bf0f13
Allow portal JSON responses to include a rendered HTML error block ( #2110 )
2020-04-15 18:42:31 +02:00
Maxime Besson
e1767abfda
CORS: special handling for AJAX SSL ( #2110 )
2020-04-15 18:42:31 +02:00
Maxime Besson
2440fc7866
use sendJSONresponse instead of handcrafting portal response
2020-04-15 18:42:31 +02:00
Maxime Besson
4bcb391121
Add an easy way to set level of additional second factors ( #2149 )
2020-04-15 17:20:27 +02:00
Maxime Besson
755a5c3a6b
post confirm to issuer url after restoring ( #2142 )
2020-04-14 21:46:30 +02:00
Maxime Besson
b512cc700c
Replace hidden form values on info when urldc has a QS ( #2085 )
2020-04-14 18:48:35 +02:00
Christophe Maudoux
6d146f9c4b
Verify that $field is defined with AuthSSL ( #2141 )
2020-04-11 22:54:55 +02:00
Christophe Maudoux
082d12ca5f
Append customParam to globalLogout plugin ( #2145 )
2020-04-11 22:34:29 +02:00
Christophe Maudoux
3a4ab3bbec
setSecurity if an error occurs with AuthChoice ( #2144 )
2020-04-11 18:55:44 +02:00
Christophe Maudoux
13bb55a818
Append an option to define apps tooltip & Improve unit test ( #2140 )
2020-04-08 22:40:28 +02:00
Christophe Maudoux
202a500c3e
Tidy
2020-04-07 11:47:32 +02:00
Christophe Maudoux
0fb0bd1d07
Code refactoring ( #2129 )
2020-04-07 11:39:32 +02:00
Christophe Maudoux
d56a76584a
Retrieve 'allusers' notifications ( #2071 )
2020-04-06 23:55:04 +02:00
Christophe Maudoux
9e84447d2d
Fix update session ( #2129 )
2020-04-06 23:28:01 +02:00
Christophe Maudoux
e68d5ed2c8
Revert "Fix update session ( #2129 )"
...
This reverts commit 1c65c72a62
.
2020-04-06 19:35:29 +02:00
Christophe Maudoux
1c65c72a62
Fix update session ( #2129 )
2020-04-06 19:24:50 +02:00
Christophe Maudoux
d53cddae39
Better fix & De-duplicate groups ( #2129 )
2020-04-06 19:05:50 +02:00
Clément OUDOT
c87a36e3ca
Do not run setGroups after 2FA ( #2129 )
2020-04-06 18:36:51 +02:00
Christophe Maudoux
37a9360625
Append PPolicyNone message & Unit test & Update manifest
2020-04-05 12:19:05 +02:00
Christophe Maudoux
dbf6415a12
Improve code ( #1783 )
2020-04-04 00:08:20 +02:00
Christophe Maudoux
30f6a889de
Append contextSwitching prefix parameter ( #1783 )
2020-04-03 23:09:55 +02:00
Christophe Maudoux
d6d9d6031d
Append debug log ( #1796 )
2020-04-03 18:56:11 +02:00
Christophe Maudoux
c179654fc4
Fix typo notification reference & Update unit tests( #2133 )
2020-04-03 18:26:22 +02:00
Christophe Maudoux
0ec9ff84e2
Fix test & notification reference ( #2133 )
2020-04-03 14:34:44 +02:00
Christophe Maudoux
f469180663
Improve unit test ' #2130 )
2020-04-03 00:21:15 +02:00
Christophe Maudoux
6382c35cd4
Update PP display ( #2130 )
2020-04-02 13:30:22 +02:00
Christophe Maudoux
71ba189edc
Append special characters password policy ( #2130 )
2020-04-02 12:14:05 +02:00
Christophe Maudoux
b924b96176
WIP - Append PP special characters options ( #2130 )
2020-04-02 01:03:42 +02:00
Christophe Maudoux
154250e6e7
Use real authentificationLevel & Improve unit test ( #2129 )
2020-04-01 19:33:18 +02:00
Christophe Maudoux
2a34d1ae8c
Update sessionInfo if second factor succeeds & Improve unit tests ( #2129 )
2020-04-01 15:43:46 +02:00
Christophe Maudoux
ea8b0bb024
Highlight error message ( #2126 & #1625 )
2020-03-28 18:12:34 +01:00
Christophe Maudoux
68e2e81898
Fix warning if error is undefined ( #2126 & #1625 )
2020-03-28 17:59:37 +01:00
Xavier Montagutelli
9c0e09f89d
Update OpenIDConnect.pm - Correct typo staticPrefi*x*
2020-03-26 16:48:31 +01:00
Maxime Besson
e9bab71585
Make sure restCall returns a hashref ( #2125 )
2020-03-26 11:31:33 +01:00
Maxime Besson
845ff2da85
fix param transmission in rest2f ( #2123 )
2020-03-26 10:58:27 +01:00
Maxime Besson
34928123f3
OIDC refactoring
...
split token method by response type
factor ID token generation between implicit and hybrid flows
still a lot to do!
2020-03-18 21:14:54 +01:00
Maxime Besson
168dc75f96
OIDC: return id_token in hybrid flow ( #2120 )
2020-03-18 21:05:39 +01:00
Clément OUDOT
4c36c77452
Set default value for encryption_mode ( #2117 )
2020-03-12 17:00:50 +01:00
Clément OUDOT
9620e6870a
Possibility to preselect choice tab ( #2115 )
2020-03-11 11:46:14 +01:00
Clément OUDOT
921cf16fcf
Format parameters for trspan ( #2113 )
2020-03-10 11:28:04 +01:00
Clément OUDOT
7c947ab976
Use the correct message for ppolicy time before expiration ( #2113 )
2020-03-10 11:16:43 +01:00
Clément OUDOT
f830fc4d8a
Add some debug logs for ppolicy ( #2113 )
2020-03-10 10:50:02 +01:00
Christophe Maudoux
c9b2eff039
More explicit error message ( #2108 )
2020-03-05 22:14:02 +01:00
Christophe Maudoux
824acec27f
Improve log ( #2071 )
2020-03-03 22:25:30 +01:00
Christophe Maudoux
ea9f019bc8
Append debug logs ( #2071 )
2020-03-03 17:41:19 +01:00
Maxime Besson
fab2553064
Merge branch 'improve-group-2036' into 'v2.0'
...
New macro for group handling, and group-handling examples in default config
See merge request lemonldap-ng/lemonldap-ng!128
2020-03-02 17:02:35 +01:00
Christophe Maudoux
903d3540e4
Show lang flags with redirect template
2020-03-02 14:30:58 +01:00
Christophe Maudoux
8753cc4cf6
Option to hide empty headers with CheckUser ( #2106 )
2020-02-28 22:24:13 +01:00
Christophe Maudoux
a4a73ca907
Don t prompt second factor after a failed log in attempt ( #2088 )
2020-02-27 14:49:27 +01:00
Christophe Maudoux
549d0e8d5c
Typo
2020-02-25 22:03:01 +01:00
Christophe Maudoux
683d5f0d86
Append unit test ( #2088 )
2020-02-25 16:50:50 +01:00
Christophe Maudoux
549658fa72
Compute session with real and spoofed attributes & Improve unit test ( #2104 )
2020-02-25 14:02:16 +01:00
Christophe Maudoux
e89c017ff6
Increase lock time after each failed login attempt ( #2088 )
2020-02-24 22:20:40 +01:00
Maxime Besson
4ae628bfcd
Avoid generatin a bogus ID token when generation fails ( #2105 )
2020-02-24 16:28:41 +01:00
Christophe Maudoux
53d7923cd4
WIP - Increase lock time after each failed login attempt ( #2088 )
2020-02-23 23:19:32 +01:00
Christophe Maudoux
9a6b604f5c
Skip bad rule & improve unit test ( #2102 )
2020-02-22 22:03:00 +01:00
Christophe Maudoux
18b43cacfc
Avoid unprotected urldc host with wildcard-protected hosts ( #2101 )
2020-02-22 00:13:52 +01:00
Clément OUDOT
53263c7f10
Remove references to keepPdata = 1 in code ( #2099 )
2020-02-21 09:29:10 +01:00
Xavier Guimard
4459a47f76
Tidy
2020-02-20 23:37:05 +01:00
Xavier Guimard
a76cba3856
Update versions
2020-02-20 23:37:01 +01:00
Maxime Besson
47068c51b8
Revert "Prevent portal from crashing when keepPdata=1 ( #1893 )"
...
This reverts commit 2b4defb2a9
and
implements a fix "at the source" instead. Should fix #2099 .
2020-02-20 22:24:26 +01:00
Xavier Guimard
22c1f7270c
Add feature to override SOAP Proxy URN ( #2100 )
2020-02-20 21:49:55 +01:00
Maxime Besson
5758e371bf
Improve introspection endpoint ( #2096 )
2020-02-19 21:49:51 +01:00
Christophe Maudoux
95ad4cac37
Improve code
2020-02-17 23:22:31 +01:00
Christophe Maudoux
385a1c1f38
Improve code & typo
2020-02-16 22:53:15 +01:00
Christophe Maudoux
82f2e8d00c
Append log ( #2019 )
2020-02-16 13:20:37 +01:00
Christophe Maudoux
57b546d112
Fix lmConfigEditor logger error ( #2059 )
2020-02-16 12:58:12 +01:00
Christophe Maudoux
9a8d668c61
Improve code ( #2093 )
2020-02-14 22:02:10 +01:00
Christophe Maudoux
15c12346ab
Hide persistent session attributes & Improve unit tests ( #2093 )
2020-02-14 16:21:31 +01:00
Christophe Maudoux
8129d76d63
Improve code
2020-02-13 23:27:13 +01:00
Christophe Maudoux
a0ef149b5f
Fix userData ( #2071 )
2020-02-12 22:50:08 +01:00
Christophe Maudoux
4da346b104
Merge branch 'v2.0' into 2071
2020-02-12 22:22:56 +01:00
Christophe Maudoux
6996c79cab
Improve code ( #2071 )
2020-02-12 22:14:02 +01:00
Christophe Maudoux
99c539fe53
Use a var & Update version ( #2071 )
2020-02-10 22:35:37 +01:00
Christophe Maudoux
d91bb8f6b9
Improve toggle ( #2071 )
2020-02-10 11:57:49 +01:00
Christophe Maudoux
83e802f208
Disable & tick checkboxes ( #2071 )
2020-02-10 10:04:10 +01:00
Christophe Maudoux
0df38323af
Typo & improve msg ( #2071 )
2020-02-10 09:31:43 +01:00
Christophe Maudoux
0b2ab19b7f
Toggle buttons - Fix message ( #2071 )
2020-02-09 23:05:33 +01:00
Christophe Maudoux
73a0ec9dc6
Toggle buttons ( #2071 )
2020-02-09 21:55:52 +01:00
Christophe Maudoux
c23b6c90ff
Fix missing flags
2020-02-09 18:42:29 +01:00
Christophe Maudoux
ef01060c54
Update langs ( #2071 )
2020-02-09 18:30:08 +01:00
Christophe Maudoux
2f04ffcc4a
WIP - Notifications explorer ( #2071 )
2020-02-09 17:47:25 +01:00
Christophe Maudoux
dd9e849b3e
Don t send params with GET method ( #2081 )
2020-02-07 21:39:58 +01:00
Maxime Besson
f8b93f8c35
Add some demo groups ( #2036 )
2020-02-06 16:22:23 +01:00
Maxime Besson
68be974e51
Add option to compute userdb groups before macros ( #1877 )
2020-02-05 15:39:45 +01:00
Maxime Besson
3b48746948
SAML: Hide error in storeEnv ( #2084 )
2020-02-03 17:08:18 +01:00
Maxime Besson
e52f6d3ba7
Increase visibility of Lasso errors ( #2084 )
2020-02-03 17:08:18 +01:00
Maxime Besson
f4b11e9a0d
fix whitespace ( #2082 )
2020-01-31 17:48:21 +01:00
Maxime Besson
e40568a330
Manager: fix SSLVarIf syntax ( #2082 )
2020-01-31 17:43:49 +01:00
Maxime Besson
f997a26e41
Fix form method when displaying info in autoPost ( #2080 )
2020-01-30 20:43:04 +01:00
Clément OUDOT
faa65c4abf
Options to add a custom CSS file ( #2076 )
2020-01-28 15:14:24 +01:00
Clément OUDOT
681452524d
Associate SAML access rule to SP conf key and not SP entityID ( #2074 )
2020-01-24 09:01:56 +01:00
Maxime Besson
5149ba8118
Make debug message less confusing when portal status is <0
2020-01-23 20:37:18 +01:00
Christophe Maudoux
8279733fbd
Update Process.pm
...
Typo
2020-01-22 12:39:02 +01:00
Xavier Guimard
f3f97ccb80
Add sameSite parameter ( #2069 )
2020-01-20 06:21:09 +01:00
Christophe Maudoux
0408ce80b8
Better better fix ( #2061 )
2020-01-19 18:06:56 +01:00
Xavier Guimard
0fa90c5efe
Avoid double encode_base64 call ( #2061 )
2020-01-18 22:25:48 +01:00
Christophe Maudoux
32d7f46b1a
Better fix ( #2061 )
2020-01-18 18:58:42 +01:00
Christophe Maudoux
fd2a9ce226
Append info log msg ( #2061 )
2020-01-17 22:27:03 +01:00
Christophe Maudoux
138ef363d4
Force cleaning pdata cookie if redirect url match _url & Improve unit test ( #2061 )
2020-01-17 22:17:02 +01:00
Christophe Maudoux
6f31d98710
Revert "Force cleaning pdata cookie if redirect url match _url & Improve unit test ( #2063 )"
...
This reverts commit 965678dde2
.
2020-01-17 22:16:44 +01:00
Christophe Maudoux
965678dde2
Force cleaning pdata cookie if redirect url match _url & Improve unit test ( #2063 )
2020-01-17 22:10:06 +01:00
Christophe Maudoux
583bbbe285
Append CSP frame-ancestors option & Improve unit test ( #2068 )
2020-01-15 16:09:57 +01:00
Christophe Maudoux
d7c2b36d15
Don t load bruteForceProtection plugin without persistent storage
2020-01-14 19:01:37 +01:00
Christophe Maudoux
c47466698d
Load bruteForce plugin only if history is gt attempts
2020-01-13 14:10:36 +01:00
Christophe Maudoux
27b0b7fde4
Append Custom backend & Improve unit test ( #1605 )
2020-01-10 17:48:49 +01:00
Christophe Maudoux
2ba565693b
Append Demo backend & Unit test ( #1605 )
2020-01-10 17:26:20 +01:00
Christophe Maudoux
b28a9d148e
Modify log level
2020-01-08 23:06:49 +01:00
Christophe Maudoux
94cefa3ef4
Typo
2020-01-07 22:38:08 +01:00
Christophe Maudoux
cf6f1ca532
Test if Captcha is enabled & Improve unit test ( #2057 )
2020-01-05 21:57:24 +01:00
Christophe Maudoux
b08400d4bb
Fix langs & Append template ( #1605 )
2020-01-05 19:24:47 +01:00
Christophe Maudoux
aa7df251b7
Remove useless parameters ( #1605 )
2020-01-04 22:19:21 +01:00
Christophe Maudoux
b029fdf604
Typo ( #1605 )
2020-01-04 16:58:33 +01:00
Christophe Maudoux
f37c2399b1
Update sessionInfo during auth process with 2FA
2020-01-04 13:36:21 +01:00
Xavier Guimard
43245bbf36
Fix warnings
2020-01-04 08:21:38 +01:00
Christophe Maudoux
a48daee305
Update sessionInfo during auth process
2020-01-03 23:39:57 +01:00
Christophe Maudoux
0f591496b4
Update sessionInfo during auth process to improve handler in-memory sessions security & Improve unit tests
2020-01-03 20:07:36 +01:00
Christophe Maudoux
f8046dd716
Update sessionInfo during auth process & Improve unit tests
2020-01-03 12:36:35 +01:00
Christophe Maudoux
1988983c90
Typo
2019-12-31 17:14:44 +01:00
Christophe Maudoux
23b7919940
Merge branch 'reset-certificate' into 'v2.0'
...
fix call to mailTemplate in ResetCertificate module (#1605 )
See merge request lemonldap-ng/lemonldap-ng!120
2019-12-30 09:31:28 +01:00
Christophe Maudoux
bd85aff978
Typo & FR translation & Container type ( #1605 )
2019-12-29 21:48:56 +01:00
epictete
908082aa54
fix call to mailTemplate in ResetCertificate module ( #1605 )
2019-12-29 00:18:14 +01:00
Christophe Maudoux
7b499f9bd1
Fix wrong message & Improve unit test ( #2050 )
2019-12-26 17:06:59 +01:00
Xavier Guimard
3317ab9fb1
Fix...
2019-12-25 13:30:54 +01:00
Xavier Guimard
d069f32438
Fix bad export
2019-12-25 13:11:58 +01:00
Christophe Maudoux
2954ea2abc
Disable compactConf by default & Update unit tests ( #2046 )
2019-12-22 13:06:10 +01:00
Clément OUDOT
7d13400be4
Update version in modules
2019-12-21 16:33:39 +01:00
Clément OUDOT
458d353af8
Merge branch 'v2.0' into dcoutadeur/lemonldap-ng-certificate-reset
2019-12-21 16:19:49 +01:00
Clément OUDOT
983af4dec1
make json ( #1605 )
2019-12-21 16:13:32 +01:00
Clément OUDOT
f5c2b81051
Possibility to add extra claims and extra vars in OIDC register ( #2003 )
2019-12-21 12:08:48 +01:00
Christophe Maudoux
39f93b0eb0
Retrieve all notifications & Improve unit test ( #2012 )
2019-12-19 20:52:34 +01:00
dcoutadeur
a465a5d768
Reset Certificate module for v2.0.7 ( #1605 )
2019-12-19 19:10:32 +01:00
Clément OUDOT
3831b81255
Adapt log message in refresh ( #2005 )
2019-12-19 18:11:33 +01:00
Clément OUDOT
ae0d455e7f
Use base64 URL to decode JWT ( #2045 )
2019-12-19 17:31:02 +01:00
Maxime Besson
f7f526b825
Fix #1882 in refresh token code
2019-12-17 10:59:45 +01:00
Maxime Besson
3094c04470
Merge branch '2010-upgradesession-kerberos' into 'v2.0'
...
Fix Kerberos in session upgrade (#2010 )
See merge request lemonldap-ng/lemonldap-ng!105
2019-12-16 18:14:57 +01:00
Maxime Besson
a410793122
CAS per-service macros portal code ( #2042 )
2019-12-16 17:26:35 +01:00
Maxime Besson
2a15bb0523
SAML per-service macros portal code ( #2042 )
2019-12-16 17:26:34 +01:00
Maxime Besson
32ecf37be4
OIDC per-service macros portal code ( #2042 )
2019-12-16 17:26:34 +01:00
Christophe Maudoux
c21ab76900
Better fix ( #2005 )
2019-12-15 12:54:28 +01:00
Christophe Maudoux
e4c5a9d723
Fix #2005 & improve unit test
2019-12-14 17:40:23 +01:00
Clément OUDOT
757399fa61
Catch PE_BADCREDENTIALS error in Combination display process ( #2009 )
2019-12-13 11:15:05 +01:00
Clément OUDOT
c2c11342ac
setSecurity method for Combination ( #2009 )
2019-12-13 11:12:26 +01:00
Xavier
5bb6f2fd3b
Refresh plugin ( #2006 )
2019-12-08 17:28:51 +01:00
Xavier
d01cfe94df
Refresh plugin skeleton ( #2006 )
2019-12-08 17:19:50 +01:00
Christophe Maudoux
a3a800108c
Append renew captcha button ( #2019 )
2019-12-01 22:03:58 +01:00
Christophe Maudoux
5d6151f0d1
Fix version
2019-11-29 19:23:22 +01:00
Maxime Besson
75559bfb15
Fix TTL of offline session ( #813 )
2019-11-27 12:12:47 +01:00
Christophe Maudoux
6f2e5c1811
Typo
2019-11-25 22:48:12 +01:00
Christophe Maudoux
a54a8228b4
Check only active notifications & Improve unit test - XML format ( #2012 )
2019-11-25 11:55:19 +01:00
Christophe Maudoux
80f19e4e71
Check only active notifications & Improve unit test - JSON format ( #2012 )
2019-11-25 11:51:08 +01:00
Christophe Maudoux
c1c6a8a9a6
Update langs & version ( #1999 )
2019-11-22 22:39:56 +01:00
Christophe Maudoux
60ef07bcd6
Check notifications date ( #2012 )
2019-11-22 21:08:28 +01:00
Christophe Maudoux
60bf01d27a
Update version ( #1999 )
2019-11-22 20:40:28 +01:00
Christophe Maudoux
7324172023
Merge branch 'v2.0' into globalLogout
2019-11-20 21:11:34 +01:00
Maxime Besson
e130c6160b
Validate LDAP connections in getUser ( #2018 )
2019-11-20 20:57:33 +01:00
Xavier
6cdfd72197
setSecurity skeleton for Combination ( #2009 )
2019-11-20 17:47:56 +01:00
Christophe Maudoux
ef5d0cde48
Merge branch 'v2.0' into globalLogout
2019-11-18 22:15:54 +01:00
Christophe Maudoux
e20555623e
Append defaulCondition option ( #2012 )
2019-11-18 17:34:56 +01:00
Christophe Maudoux
ea3337574c
Append conf manager test ( #2012 )
2019-11-17 22:36:52 +01:00
Christophe Maudoux
d935753eaf
Append to JSON format condition check & improve unit test ( #2012 )
2019-11-17 22:25:06 +01:00
Christophe Maudoux
c548a4d03e
Typo
2019-11-17 22:23:12 +01:00
Christophe Maudoux
15711c642e
Merge branch 'v2.0' into globalLogout
2019-11-15 21:49:56 +01:00
Christophe Maudoux
7b637f5a04
Update response and unit test ( #1999 )
2019-11-15 21:49:01 +01:00
Christophe Maudoux
632f731774
Allow non array ref with single checkbox and split notification body ( #2012 )
2019-11-15 21:03:18 +01:00
Maxime Besson
04f5116c23
Fix Kerberos in session upgrade ( #2010 )
2019-11-15 16:10:37 +01:00
Maxime Besson
57b28940fa
Do not show password change prompt when AD password is incorrect ( #2007 )
2019-11-15 11:59:03 +01:00
Maxime Besson
258fba5eaa
Do not store session key if attribute was missing from UserDB ( #2004 )
2019-11-15 11:29:46 +01:00
Maxime Besson
bedcf20806
Change portal error code on 2F failure ( #2008 )
2019-11-15 11:19:08 +01:00
Christophe Maudoux
193666d963
Tidy ( #1999 )
2019-11-14 22:06:15 +01:00
Christophe Maudoux
bd3cfb0c1c
Append REST service ( #1999 )
2019-11-14 22:02:18 +01:00
Christophe Maudoux
ad1040986b
Typo
2019-11-13 21:27:48 +01:00
Christophe Maudoux
7ef9e132c9
Append GlobalLogout plugin ( #1999 )
2019-11-13 20:56:56 +01:00
Christophe Maudoux
818ebc89be
Improve code ( #1999 )
2019-11-13 16:42:32 +01:00
Christophe Maudoux
8f3c0d234e
Force globalLogout ( #1999 )
2019-11-13 16:10:20 +01:00
Christophe Maudoux
297ef8cd8c
Merge branch 'v2.0' into globalLogout
2019-11-12 22:17:09 +01:00
Christophe Maudoux
75b37eadb2
Fix CheckUser search attributes
2019-11-12 22:16:05 +01:00
Christophe Maudoux
603293411b
Use userData instead of sessionInfo to fix ContectSwitching debug log
2019-11-12 10:00:11 +01:00
Christophe Maudoux
7245e5349c
Typo
2019-11-11 22:38:51 +01:00
Christophe Maudoux
0967a82e99
Check OTT ( #1783 )
2019-11-11 22:34:16 +01:00
Christophe Maudoux
80a1e4bf57
WIP - Append GlobalLogout plugin ( #1999 )
2019-11-11 22:33:30 +01:00
Christophe Maudoux
2e0d2b7e14
Typo
2019-11-11 21:50:28 +01:00
Christophe Maudoux
e225516105
Typo
2019-11-10 21:43:21 +01:00
Maxime Besson
2639c482b1
Fix cookie removal on SAML logout ( #2001 )
...
Since the fixes for #1863 , calling p->do consumes the response headers
set by any previous code. So we must only call do() in a return statement.
2019-11-06 18:44:10 +01:00
Maxime Besson
7bdd33eb46
Fix token ID format ( #1998 )
2019-11-06 11:45:47 +01:00
Christophe Maudoux
32126c4aca
Set ENV ( #1996 )
2019-11-05 11:03:10 +01:00
Maxime Besson
713737c11f
Add an option to return claims in ID token
2019-11-04 18:27:28 +01:00
Maxime Besson
b34a229eda
Add doc for buildUserInfoResponseFromId
2019-11-04 10:47:35 +01:00
Maxime Besson
68704955d2
Apply suggestion to lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Issuer/OpenIDConnect.pm
2019-11-04 10:47:35 +01:00
Maxime Besson
a386a7502a
Allow refresh tokens to be emitted for regular sessions ( #813 )
2019-11-04 10:44:54 +01:00
Maxime Besson
ea2365cc98
Implement OIDC Offline sessions through refresh tokens ( #813 )
2019-11-04 10:44:54 +01:00
Christophe Maudoux
c01c26af6a
Append option to override Issuer OTT storage ( #1993 )
2019-10-31 11:40:33 +01:00
Maxime Besson
7d3b2a95a5
Avoid setting req->user to emtpy value in Demo module
...
This can cause issues when using Combination and password reset in
testing environments
2019-10-30 20:22:37 +01:00
Maxime Besson
5b2f3ca576
Merge branch 'remove-saml-idp-cookie-1941' into 'v2.0'
...
Remove SAML IDP cookie (#1941 )
See merge request lemonldap-ng/lemonldap-ng!99
2019-10-30 16:01:11 +01:00
Clément OUDOT
fb74d03a89
Use whatToTrace for logging messages ( #1991 )
2019-10-29 17:28:55 +01:00
Christophe Maudoux
9892173cc3
Tidy & update version ( #1989 )
2019-10-27 21:15:48 +01:00
Christophe Maudoux
73d83dd7f0
Append missing parameters & improve unit test ( #1989 )
2019-10-27 21:13:25 +01:00
Maxime Besson
ed3e274ab1
Fix force password reset in Combination ( #1984 )
2019-10-24 08:58:04 +02:00
Maxime Besson
4afecb4620
Remove IDP cookie ( #1941 )
2019-10-17 23:09:03 +02:00
Christophe Maudoux
3c2ecfd04a
Tidy ( #1956 )
2019-10-13 22:47:57 +02:00
Christophe Maudoux
f188426f8b
Fix custom function parameter ( #1956 )
2019-10-13 22:29:12 +02:00
Christophe Maudoux
0ca649f106
Use custom decrypt functions ( #1956 )
2019-10-13 15:08:32 +02:00
Maxime Besson
2b4defb2a9
Prevent portal from crashing when keepPdata=1 ( #1893 )
...
Since the changes introduced to fix #1893 , keepPdata is expected to
contain an array of values.
When migrating from previous LLNG versions, cookies may contain
keepPdata=1, which crashes the server because 1 isn't an arrayref
This change makes LLNG consider that keepPdata=1 is not a valid value,
and replaces it with an empty arrayref when starting the login or logout
flow.
2019-10-09 17:35:48 +02:00
Maxime Besson
ff9bb46301
Make notification system take pdata url into account ( #1893 )
2019-10-08 22:40:10 +02:00
Maxime Besson
2bce713f65
Set issuer urldc in pdata ( #1893 )
2019-10-08 22:40:10 +02:00
Maxime Besson
3ee708d8ff
Delay cookie restore after hooks ( #1965 )
2019-10-07 17:26:40 +02:00
Maxime Besson
474bb48aa1
Make Password::LDAP/AD check connection before use ( #1909 )
...
Also remove a mostly redundant wrapper method in Auth::LDAP
2019-10-01 19:17:31 +02:00
Maxime Besson
fa49e77495
Better logs in case of a LDAP error
2019-10-01 15:14:51 +02:00
Clément OUDOT
a239091553
Load String::Random ( #1963 )
2019-10-01 14:49:41 +02:00
Christophe Maudoux
138cfe6edb
Append DecryptValue plugin ( #1956 )
2019-09-30 22:29:49 +02:00
Christophe Maudoux
a219a51e1c
Revert "Make manifest"
...
This reverts commit c00110ed01
.
2019-09-30 22:28:55 +02:00
Christophe Maudoux
35de9fd3e8
Re-order
2019-09-30 22:27:03 +02:00
Christophe Maudoux
c00110ed01
Make manifest
2019-09-30 22:26:55 +02:00
Christophe Maudoux
b3791cc65b
Typo
2019-09-30 19:10:05 +02:00
Christophe Maudoux
b505d3a475
Typo
2019-09-30 19:10:05 +02:00
Maxime Besson
e9153957da
IDP selection phrasing
2019-09-30 18:55:09 +02:00
Maxime Besson
e693e5e649
Fix IDP selection rules ( #1961 )
2019-09-30 18:54:02 +02:00
Xavier
461cd51e45
Try to fix #1785 without breaking pdata
2019-09-29 23:04:17 +02:00
Christophe Maudoux
6df7412bcf
Fix log with Impersonation plugin ( #1664 )
2019-09-26 20:24:12 +02:00
Maxime Besson
5d5ac66a6e
Add Date: field to emails ( #1953 )
...
This adds a dependancy to Email::Date::Format, but it's already a
dependancy of Email::Sender::Simple (and probably more), so in practice
no new packages are going to be installed
2019-09-26 12:32:58 +02:00
Christophe Maudoux
5d9fc02205
Typo & logger
2019-09-20 22:47:48 +02:00
Christophe Maudoux
c34c6e646e
Append search parameters & improve unit test ( #1938 )
2019-09-19 22:51:10 +02:00
Clément OUDOT
dc0a8f7848
Add some log when user is authorized to access to service ( #1702 )
2019-09-19 16:52:08 +02:00
Clément OUDOT
dd76c4f3db
Improve log for CAS Issuer ( #1702 )
2019-09-19 16:18:51 +02:00
Clément OUDOT
e446e09a7f
Improve log ( #1702 )
2019-09-19 16:07:10 +02:00
Christophe Maudoux
84778604fd
Typo
2019-09-18 21:01:24 +02:00
Christophe Maudoux
2095fdf316
Improve log ( #1702 )
2019-09-18 19:59:35 +02:00
Christophe Maudoux
92c8e6791f
Typo ( #1702 )
2019-09-18 19:49:22 +02:00
Clément OUDOT
5512d38f81
Improve log on 2F unregistration ( #1702 )
2019-09-18 18:09:18 +02:00
Clément OUDOT
ce6f6c3977
Get login to use it in password force change form ( #1910 )
2019-09-18 15:55:13 +02:00
Maxime Besson
98f55fd384
Translate the error code displayed in debug logs
2019-09-17 20:17:57 +02:00
Christophe Maudoux
146aca7c82
Remove trailing whitespaces
2019-09-16 20:30:35 +02:00
Christophe Maudoux
fcf05c5602
Avoid warning
2019-09-16 17:22:35 +02:00
Maxime Besson
c94e2534a9
Send CORS headers when doing JSON responses too ( #1765 )
2019-09-16 16:55:15 +02:00
Maxime Besson
e281ad7cc3
Add support for CORS preflight ( #1765 )
2019-09-16 16:55:15 +02:00
Christophe Maudoux
9c01c46fea
Typo ( #1932 )
2019-09-14 23:37:50 +02:00
Christophe Maudoux
dd66f37739
Return httpSession id if exists ( #1932 )
2019-09-14 22:47:11 +02:00
Christophe Maudoux
5615d5b2a3
Append display Slave logo option ( #1936 )
2019-09-14 22:07:44 +02:00
Christophe Maudoux
ce4cdcee85
Don t display Slave module
2019-09-13 22:37:35 +02:00
Christophe Maudoux
9784e75ead
Check Slave credential headers ( #1935 )
2019-09-13 22:21:09 +02:00
Clément OUDOT
5c7905e342
Improve regexp ( #1891 )
2019-09-13 15:35:05 +02:00
Clément OUDOT
36a1f07786
Remove cancel parameter in CAS service value ( #1891 )
2019-09-13 15:17:51 +02:00
Xavier
e50e7d09d1
Update version of (really) modified files
2019-09-12 21:56:49 +02:00
Clément OUDOT
70d2856d71
Option to display password generation box ( #1928 )
2019-09-12 18:26:56 +02:00
Clément OUDOT
c75a74da5a
Display password form if password is refused ( #1930 )
2019-09-12 17:54:43 +02:00
Christophe Maudoux
4287c39f5b
typo
2019-09-11 16:20:28 +02:00
Christophe Maudoux
bb0b5814f7
Fix empty groups ( #1791 )
2019-09-11 16:18:35 +02:00
Christophe Maudoux
c1af9e49f7
WIP - Append extractFormInfo step & AuthChoiceParam for AuthChoice ( #1925 )
2019-09-09 23:23:52 +02:00
Christophe Maudoux
132f42d44c
Forbid browsers to store users password & Improve unit tests ( #1913 )
2019-09-08 19:28:28 +02:00
Maxime Besson
94877793d4
increase clock tolerance during rest secret check ( #1923 )
2019-09-06 17:45:51 +02:00
Maxime Besson
00e91f374b
Add specific error code when missing a required SAML attr ( #1919 )
...
The MISSINGREQATTR message is a good default value, but a site
administrator may decide to override it with a personnalized version
that only applies to issuer errors caused by an incomplete user profile
(for example, giving a pointer to the local user profile management
application)
2019-09-06 11:04:39 +02:00
Clément OUDOT
e54355ff9f
Use conf as HASH key ( #1619 )
2019-09-05 17:16:55 +02:00
Clément OUDOT
5b7bb4b9cd
Check error message from ITDS ( #1619 )
2019-09-05 17:14:44 +02:00
Clément OUDOT
17123d6196
Avoid plugin conflicts ( #993 )
2019-09-05 13:30:49 +02:00
Clément OUDOT
068ffbe604
Define portalDisplayPasswordPolicy parameter in Manager ( #993 )
2019-09-05 13:02:51 +02:00
Clément OUDOT
b44c13ba2f
Display password policy in password change form ( #993 )
2019-09-05 12:46:32 +02:00
Clément OUDOT
2f2f62ae1c
Check password quality in mail reset plugin ( #993 )
2019-09-05 12:02:51 +02:00
Clément OUDOT
3700a1b54c
Fix logger in Kerberos Auth init
2019-09-04 15:42:33 +02:00
Christophe Maudoux
3e9a424090
Update version ( #1916 )
2019-09-03 22:57:51 +02:00
Christophe Maudoux
56ed8a5724
Append issuersTimeout option ( #1916 )
2019-09-03 22:52:07 +02:00
Clément OUDOT
a2d3ae1d03
Local password policy: minimal digits ( #993 )
2019-09-03 19:08:19 +02:00
Clément OUDOT
28309dca9b
Merge branch 'v2.0' of gitlab.ow2.org:lemonldap-ng/lemonldap-ng into v2.0
2019-09-03 19:07:22 +02:00
Clément OUDOT
b52bbdb838
Local password policy: minimal upper characters ( #993 )
2019-09-03 18:45:35 +02:00
Maxime Besson
ff3d4e218c
doc: suggest a better fix for #1864
...
We can't do it yet because the issue isn't fixed in versions of Lasso
found in the wild. But someday it will be.
2019-09-03 18:13:13 +02:00
Clément OUDOT
ef3d6a26c4
Local password policy: minimal lower characters ( #993 )
2019-09-03 16:10:04 +02:00
Clément OUDOT
8998eb183e
Local password policy: minimal size ( #993 )
2019-09-03 14:30:22 +02:00
Clément OUDOT
82a06fce91
Pass skin parameter in 2F flows ( #1915 )
2019-09-03 11:56:48 +02:00
Clément OUDOT
fca831411b
Fix call to logger in REST authentication backend
2019-08-30 09:46:25 +02:00
Clément OUDOT
177f446f25
Display main logo in redirect page ( #1906 )
2019-08-29 19:29:27 +02:00
Maxime Besson
d61935ab6e
Implement introspection endpoint for access tokens ( #1843 )
2019-08-29 19:10:51 +02:00
Maxime Besson
fd7453b7a5
Refactor endpoint auth
2019-08-29 18:57:26 +02:00
Xavier Guimard
ae6e69667a
Fix warning
2019-08-29 10:49:01 +02:00
Xavier Guimard
9379188000
Fix ^ ( #1903 )
2019-08-28 19:28:20 +02:00
Xavier Guimard
df4e7e7522
Generic fix for issues like #1903
2019-08-28 19:12:29 +02:00
Clément OUDOT
2145483be7
Pass extra args in Combination module ( #1903 )
2019-08-28 18:22:19 +02:00
Xavier Guimard
1660109e2f
Security: use 3-form for open
2019-08-28 11:32:54 +02:00