Christophe Maudoux
3dd4c52c65
Update version ( #1766 )
2019-05-26 10:33:39 +02:00
Christophe Maudoux
0e47cb4f5b
Fix warning message
2019-05-23 15:52:11 +02:00
Maxime Besson
0babf4c6c3
Fix non-sso session removal in SoapServer
...
closes #1762
2019-05-21 17:30:37 +02:00
Christophe Maudoux
59f07b7b8f
Avoid to renew double cookie sessions for refresh request ( #1747 )
2019-05-20 23:03:10 +02:00
Christophe Maudoux
29b7341345
Change code order ( #1749 )
2019-05-19 13:40:46 +02:00
Christophe Maudoux
006f862a69
Cleaning code ( #1755 )
2019-05-17 22:18:09 +02:00
Clément OUDOT
c024952b8f
Do not fail if no RP or no OP configured ( #1759 )
2019-05-17 16:00:33 +02:00
Xavier
b91d1d4b87
Tidy
2019-05-16 20:45:14 +02:00
Xavier
a2e78c88c3
Set versions
2019-05-16 20:42:31 +02:00
Xavier
1186aba52b
lmError(): return JSON if wanted ( #1745 )
2019-05-16 06:50:13 +02:00
Christophe Maudoux
e46fac82b2
CheckUser with tokenGlobalStorage & Warn if SSO groups are merged
2019-05-15 23:45:06 +02:00
Maxime Besson
1f1eeab9c8
Do not log a warning when displaying form with Combination
...
When form-based authentication methods return PE_FIRSTLOGIN, do not log
a warning because it's normal behavior to show the form.
2019-05-14 19:47:28 +02:00
Christophe Maudoux
fc034ad4bf
Impersonation with doubleCookie ( #1746 )
2019-05-12 22:59:21 +02:00
Clément OUDOT
05cd4d4a58
Fix update token with global storage ( #1742 )
2019-05-12 20:39:25 +02:00
Clément OUDOT
682b193477
Use TOKEN kind for mail password reset sessions ( #1743 )
2019-05-12 20:04:38 +02:00
Clément OUDOT
07de622e83
Fix getRegisterSession and getMailSession ( #1743 )
2019-05-12 17:36:14 +02:00
Xavier
9a71709f44
Tidy
2019-05-11 23:03:48 +02:00
Christophe Maudoux
8737fc0808
Impersonation with doubleCookie & Append unit test ( #1746 )
2019-05-11 22:57:52 +02:00
Xavier
f3c4ea0afb
Tydy
2019-05-11 20:18:43 +02:00
Christophe Maudoux
aeead582d8
Restore _httpSession ( #1746 )
2019-05-11 19:07:07 +02:00
Xavier
2ce7396bf2
Don't filter on session_kind with SOAP ( #1742 )
2019-05-11 15:41:14 +02:00
Xavier
6235b303b3
#1742 in progress...
2019-05-11 09:31:17 +02:00
Xavier Guimard
1cd50bb353
Fix Auth::Remote session kind ( #1742 )
2019-05-10 18:02:56 +02:00
Xavier Guimard
638a0de81a
Don't use SSO session type for tokens (Fixes security part of #1742 )
2019-05-10 17:35:10 +02:00
Clément OUDOT
fce270408e
Improve log in plugin GrantSession ( #1739 )
2019-05-06 19:10:26 +02:00
Clément OUDOT
755b1ace78
Add some debug in Ext2F ( #1738 )
2019-05-06 14:28:28 +02:00
Clément OUDOT
a7c8b9d466
Fix error handling in Ext2F ( #1738 )
2019-05-06 14:07:42 +02:00
Christophe Maudoux
c8dd4554aa
Test if required secret elements are set to sign JWT
2019-05-02 14:33:56 +02:00
Christophe Maudoux
f4938f3489
Grant access only if required Impersonation succeeds ( #1664 )
2019-04-30 14:57:45 +02:00
Christophe Maudoux
321fe29c35
Update version
2019-04-29 22:33:11 +02:00
Christophe Maudoux
2e9092d2bd
Clean code
2019-04-29 22:33:11 +02:00
Christophe Maudoux
a89b92f265
Improve code ( #1386 )
2019-04-29 22:33:11 +02:00
Christophe Maudoux
2e3c2e1a16
Sort by spoofed and real attributes ( #1658 )
2019-04-29 22:33:11 +02:00
Clément OUDOT
926262170b
Implement PKCE in OIDC provider ( #1722 )
2019-04-29 17:18:16 +02:00
Clément OUDOT
8e6f678be7
Create a configuration option to allow a Relying Party to be a public client
...
Allow unauthenticated requests on OAuth2 token endoint
#1725
2019-04-29 10:02:16 +02:00
Maxime Besson
2f9e6aa623
Allow override of username attribute for CAS apps
...
Global CAS options allows the admistrator to set the session attribute
that gets exported to all CAS application as the main identifier
(cas:user)
This commit adds the ability to override this configuration for a
particular CAS application.
OIDC already allows this
Fixes #1713
2019-04-28 21:06:34 +02:00
Maxime Besson
62f16721ff
Send username when calling CAS1.0 validation
...
Fixes #1724
2019-04-28 19:29:54 +02:00
Maxime Besson
64cc4ea0e6
Do not sent Kerberos js twice when using Combination
...
Fixes #1720
2019-04-25 17:17:03 +02:00
Christophe Maudoux
c86b76cb9c
Init. rules by using accessors ( #1658 )
2019-04-21 11:56:29 +02:00
maudoux
9b711e6c81
Update version
2019-04-13 22:57:30 +02:00
maudoux
cfa98b2723
Fix logo display
2019-04-13 21:02:47 +02:00
Clément OUDOT
259f9d8d94
Use same JSON fields for failure and success ( #1711 )
2019-04-13 15:23:40 +02:00
Clément OUDOT
9256571f25
Return session id with successful REST authentication ( #1711 )
2019-04-12 16:57:22 +02:00
maudoux
026fcd9f76
Fix warnings ( #1704 )
2019-04-10 22:14:46 +02:00
maudoux
1d08372a8c
Sort CAS servers & update langs ( #1704 )
2019-04-10 21:58:37 +02:00
Xavier
4a21e96426
Fix warning
2019-04-10 21:54:03 +02:00
Xavier
1bcf828a89
Merge remote-tracking branch 'arosier/idpsort' into v2.0
2019-04-10 19:48:26 +02:00
Antoine ROSIER
8875a4e985
perltidy
2019-04-10 17:21:33 +02:00
Antoine ROSIER
f7b296b032
Sorting OIDc ( #1704 )
2019-04-10 17:06:41 +02:00
Antoine ROSIER
8636da45be
Sorting SAML idp ( #1704 )
2019-04-10 17:06:41 +02:00