dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
8,681 Commits 3 Branches 0 Tags 75 MiB
3dd4c52c65
Commit Graph

2013 Commits

Author SHA1 Message Date
Clément OUDOT
ae3a728378 Manage template inclusion when file is not in configured portal theme (#1653) 2019-04-10 15:42:58 +02:00
Christophe Maudoux
413cc98fba perltidy 2019-04-10 09:21:55 +02:00
Antoine ROSIER
6352dc6ac8 Sort idp and op (#1704) 2019-04-10 09:01:55 +02:00
Xavier
af707c5b1f Clear pdata on lmerror access 2019-04-10 07:14:36 +02:00
maudoux
4ff20f2d76 Fix Yubikey userLogger (#1702) 2019-04-09 23:40:16 +02:00
Xavier
a187e5c59b Fix some userLogger message (#1702) 2019-04-09 21:48:59 +02:00
Christophe Maudoux
f1cb8d236e Checkuser case unsensitive for URL only & Improve unit test (1667) 2019-04-09 16:56:00 +02:00
maudoux
1bc519d11d Fix warning (#1694) 2019-04-06 14:09:58 +02:00
Maxime Besson
666e59ad6e Fix #1698 by clearing saml request token on unauth issuer flow 
Add some unit tests to make sure relevant pdata is cleared after authentication
 2019-04-05 23:27:21 +02:00
maudoux
c573ec9625 Typo & upadte version 2019-04-05 22:58:48 +02:00
maudoux
956d934a93 Append GPG authentication level (#1699) 2019-04-05 22:38:20 +02:00
maudoux
85551ba5e1 Append REST authentication level (#1699) 2019-04-05 22:38:01 +02:00
Christophe Maudoux
cf36b44162 Cleaning code (#1664) 2019-04-05 20:04:17 +02:00
Christophe Maudoux
dc1f36daf0 Use OTT rule (#1664) 2019-04-05 20:03:42 +02:00
Christophe Maudoux
f4801f3587 Use OTT rule (#1664) 2019-04-05 20:03:37 +02:00
Christophe Maudoux
01006fc984 Use OTT rule (#1664) 2019-04-05 20:03:25 +02:00
Christophe Maudoux
cb53973881 Use OTT rule (#1694) 2019-04-05 17:24:16 +02:00
Christophe Maudoux
5a8a7d483f Use OTT rule (#1694) 2019-04-05 17:24:07 +02:00
Christophe Maudoux
2b818a9c02 Append specific ottRule dependency (#1694) 2019-04-05 17:23:09 +02:00
Xavier Guimard
10e8d51449 Fix Perl::Critic changes 2019-04-05 10:46:43 +02:00
Xavier Guimard
2159957c34 Update versions 2019-04-05 09:54:43 +02:00
maudoux
5b67f1f743 Use rule to enable OTT (#1694) 2019-04-03 23:28:45 +02:00
Clément OUDOT
8859fe342b Fix setHiddenFormValue (#1692) 2019-04-03 17:54:58 +02:00
Clément OUDOT
8be0817363 Send optional SAML attributes if they have a value (#1681) 2019-04-03 16:40:41 +02:00
Xavier Guimard
ece9b21219 Remove trailing whitespaces 2019-04-03 14:15:16 +02:00
Clément OUDOT
9a454fbb7a Manage SLO termination if there is no RelayState (#1671) 2019-04-03 12:26:01 +02:00
Maxime Besson
d44a042fd5 Revert 8f5fbb077e and change the way logout errors are handled 
Relating to issue #1668, the proposed fix works when there is only one
service provider to logout of.

Now that multiple service provider logout is starting to work again on
2.0, we cannot read the remote_ProviderID from the logout object because
it is only filled by lasso when actually building the response.

Instead, we ignore any error that could occur when building the
response, log a warning and show the portal instead. Still better than
an internal server error.
 2019-04-03 11:20:24 +02:00
maudoux
ae28ea3169 Append Conf domain to url if missing - Fix port (#1664) 2019-04-02 22:08:15 +02:00
maudoux
ec214c75c2 Append Conf domain to url if missing (#1664) 2019-04-02 22:08:15 +02:00
Clément OUDOT
a805a5a00b Manage SLO responses (#1671) 2019-04-02 17:27:47 +02:00
Clément OUDOT
4e76ee9582 Avoid warning during SAML SLO (#1671) 2019-04-02 16:13:45 +02:00
Clément OUDOT
bac2eb564c Remove antiframe protection in portal javascript (#1696) 2019-04-02 15:05:41 +02:00
Clément OUDOT
c4b4e95e9d Display password or login template after password modification (#1654) 2019-04-02 11:12:33 +02:00
Clément OUDOT
4af47ad6a4 Allow iframe from portal to be able to load saml SLO return page (#1671) 2019-04-01 18:09:31 +02:00
Clément OUDOT
5a30a82fa6 Add SLO Termination endpoint (#1671) 2019-04-01 18:02:38 +02:00
Clément OUDOT
59bc0642fc Always display info (#1693) 2019-04-01 17:18:28 +02:00
Clément OUDOT
502a32e257 Add unit test and fix code for ppolicy grace (#1691) 2019-04-01 09:58:56 +02:00
Xavier
01ab88ba57 Fix for #1691 2019-04-01 06:52:21 +02:00
Clément OUDOT
a1f5fb5170 Test return of getUser (#1654) 2019-03-29 11:53:52 +01:00
Xavier
906db8daa6 Merge branch 'antoinerosier/lemonldap-ng-logs' into v2.0 2019-03-27 21:44:25 +01:00
Antoine ROSIER
b79c9659cb Add user logs informations (#1687) 2019-03-27 16:00:39 +01:00
Clément OUDOT
4bab684e2d Refresh entry after password modification (#1654) 2019-03-27 09:59:22 +01:00
Xavier
5a5572ec1f Fix WSDL generation (Closes: #1686) 2019-03-26 21:47:14 +01:00
Clément OUDOT
39020e003e Fix server error on SAML SLO (#1671) 2019-03-26 17:15:01 +01:00
Clément OUDOT
aa139df89d Change criticity of password must be reset message (#1654) 2019-03-26 16:45:19 +01:00
Xavier Guimard
af4f123916 Fix cspScrip (Closes: #1683) 2019-03-26 09:56:46 +01:00
Xavier Guimard
99afd7243a Fix #1675 2019-03-26 08:06:55 +01:00
Xavier
f226bded41 Partial fix for /logout (#1675) 2019-03-26 07:30:36 +01:00
Xavier
774707ad65 Add cache to avoid parsing and compiling JSON files at each request (#1595) 2019-03-26 06:49:39 +01:00
Xavier Guimard
3c0a9d7ecc Second fix for #1673 2019-03-25 19:34:29 +01:00
Xavier Guimard
4138b7edae Fix menu app cache (#1673) 2019-03-25 16:48:57 +01:00
Maxime Besson
3575e0ef23 Clear url pdata on CDA redirection 
Fixes #1650
 2019-03-19 19:15:47 +01:00
Clément OUDOT
8a9a5b0b3a New method to override messages with JSON files (#1595) 2019-03-19 17:39:13 +01:00
Clément OUDOT
447c09c0a2 Remove old translation file (#1595) 2019-03-19 15:38:36 +01:00
Clément OUDOT
438d5bcbaf Revert patch on GrantSession plugin (#1666) 2019-03-18 21:35:02 +01:00
Clément OUDOT
4166ae6d90 Merge branch 'v2.0' of gitlab.ow2.org:lemonldap-ng/lemonldap-ng into v2.0 2019-03-18 21:29:31 +01:00
Clément OUDOT
9798c78068 Remove userData if authentication fails (#1666) 2019-03-18 21:29:15 +01:00
Christophe Maudoux
d412f3d807 Update version (#1666) 2019-03-18 17:14:22 +01:00
Clément OUDOT
4366488fb6 Adapt GrantSession plugin to display authentication error on login form (#1666) 2019-03-18 11:53:30 +01:00
Clément OUDOT
627548e95d Display authentication error on login form (#1666) 2019-03-18 11:41:41 +01:00
Clément OUDOT
d620ae2e8b Merge branch 'maxbes/lemonldap-ng-saml-issuer-entityid-override' into v2.0 2019-03-13 10:30:16 +01:00
Clément OUDOT
dee4818f0c Merge branch 'issue1543' into 'v2.0' 
Save Urldc when using SAML Discovery

See merge request lemonldap-ng/lemonldap-ng!62
 2019-03-13 10:19:14 +01:00
Maxime Besson
8f5fbb077e When logout-initiating SP has no known SLO endpoint, fallback to portal 
In some federations, SLO endpoints are not published, yet SP are still
able to initiate logouts.

This used to cause an error on the portal, this commit changes the error
into a warning in logs. The user remains on the portal and sees a normal
logout message.
 2019-03-12 17:58:41 +01:00
Clément OUDOT
f6a3b527c8 Process SAML request to get current SP in env (#1672) 2019-03-12 16:52:01 +01:00
Christophe Maudoux
e1aa654bbb Display session at first access (#1658) 2019-03-12 10:00:23 +01:00
Christophe Maudoux
d39078f29b Fix specific use cases with rules (#1664) 2019-03-11 22:07:38 +01:00
Maxime Besson
257d329151 Fix display of ok/nok image during multi-sp saml logout 2019-03-11 18:13:06 +01:00
Clément OUDOT
8cd579f19f Add a waiting message for Kerberos/SSL workflow (#1670) 2019-03-11 16:36:32 +01:00
Clément OUDOT
145db1cf60 Fix regexp for portal default condition (#1669) 2019-03-11 12:01:16 +01:00
Christophe Maudoux
30c0f2edf0 Improve code (#1658) 2019-03-10 22:01:55 +01:00
Christophe Maudoux
be28b60e66 Append identities rule (#1658) 2019-03-09 23:29:10 +01:00
Christophe Maudoux
7e1119a88d Fix mistake & typo (#1664) 2019-03-09 23:27:54 +01:00
Christophe Maudoux
bf8040a78a Fix empty submitted value (#1664) 2019-03-09 21:31:49 +01:00
Christophe Maudoux
049df70e53 Erase sessionInfo if spoofed identity is not allowed (#1664) 2019-03-09 13:18:39 +01:00
Christophe Maudoux
dfd286c9fa Compute spoofed session with real and spoofed attributes (#1664) 2019-03-09 13:05:44 +01:00
Christophe Maudoux
09281f8d22 Append identities rule and fix error catching (#1664) 2019-03-08 11:39:19 +01:00
Christophe Maudoux
bea84c8847 Typo (#1664) 2019-03-07 23:39:50 +01:00
Christophe Maudoux
b368925323 Typo (#1658) 2019-03-07 23:39:37 +01:00
Xavier Guimard
bc2bef4ff4 Please use our .perltidyrc 2019-03-07 18:22:58 +01:00
Xavier Guimard
c3f5960452 Improvements + API calls 
@maudoux: could you review this?
 2019-03-07 18:15:48 +01:00
Christophe Maudoux
a9b0298624 Fix using attributes (#1658) 2019-03-07 17:15:03 +01:00
Christophe Maudoux
cc04740252 Fix userControl (#1667) 2019-03-07 15:19:04 +01:00
Christophe Maudoux
ef4f1fb0bf Fix test submitted user param (#1667) 2019-03-07 10:47:14 +01:00
Christophe Maudoux
e0204c6a79 Test submitted user param (#1667) 2019-03-06 23:08:22 +01:00
Christophe Maudoux
9225d49216 Allow Impersonation with all auth modules (#1664) 2019-03-06 22:31:37 +01:00
Christophe Maudoux
6e50f41687 Fix session update (#1664) 2019-03-06 21:29:03 +01:00
Christophe Maudoux
e506c5cc58 Using current session if exists (#1664) 2019-03-06 19:26:32 +01:00
Christophe Maudoux
a05f71789e WIP - Fix groups merging (#1664) 2019-03-06 17:59:09 +01:00
Christophe Maudoux
8bc9e50947 WIP - Fix groups merging (#1664) 2019-03-06 17:58:40 +01:00
Christophe Maudoux
a31d26c608 Spoof Authentication and userDB modules (#1664) 2019-03-06 16:30:56 +01:00
Christophe Maudoux
7b08a7c442 Rename idSpoofing plugin to Impersonation & all relative parameters (#1664) 2019-03-06 16:30:56 +01:00
Xavier Guimard
26b80873be Modify Try.pm to handle authorizations (#1658) 2019-03-05 21:11:07 +01:00
Christophe Maudoux
4be42b06fe Alow DNS or URL (#1658) 2019-03-05 19:36:38 +01:00
Christophe Maudoux
e7d1b065b7 Merge SSO groups (#1664) 2019-03-05 14:50:30 +01:00
Christophe Maudoux
ff05a8f797 Modify parameters (#1664) 2019-03-05 14:50:01 +01:00
Christophe Maudoux
c7ddae854c Fix error & not found VH (#1664) 2019-03-04 20:53:39 +01:00
Maxime Besson
e290cd59d6 Fix undef warnings in metadata generation 
Fix some undef warnings introduced in
12d2db35a9
 2019-03-04 09:33:12 +01:00
Maxime Besson
25d1c45fd4 Add new option to override EntityID when acting as IDP 2019-03-04 09:33:10 +01:00
Christophe Maudoux
4e51cc342b Append access rule (#1664) 2019-03-03 21:27:27 +01:00
Christophe Maudoux
286f5b79e3 WIP - Append debug logs (#1664) 2019-03-03 21:27:27 +01:00