Clément OUDOT
fb74d03a89
Use whatToTrace for logging messages ( #1991 )
2019-10-29 17:28:55 +01:00
Maxime Besson
2b4defb2a9
Prevent portal from crashing when keepPdata=1 ( #1893 )
...
Since the changes introduced to fix #1893 , keepPdata is expected to
contain an array of values.
When migrating from previous LLNG versions, cookies may contain
keepPdata=1, which crashes the server because 1 isn't an arrayref
This change makes LLNG consider that keepPdata=1 is not a valid value,
and replaces it with an empty arrayref when starting the login or logout
flow.
2019-10-09 17:35:48 +02:00
Xavier
461cd51e45
Try to fix #1785 without breaking pdata
2019-09-29 23:04:17 +02:00
Maxime Besson
e281ad7cc3
Add support for CORS preflight ( #1765 )
2019-09-16 16:55:15 +02:00
Xavier
e50e7d09d1
Update version of (really) modified files
2019-09-12 21:56:49 +02:00
Maxime Besson
c1afdbefac
Add labels and logos to all 2F providers ( #1873 )
2019-08-01 17:27:14 +02:00
Christophe Maudoux
6a579644f8
Fix warning ( #1842 )
2019-07-04 23:20:11 +02:00
Xavier
9cdfd4c9a6
Add notice when user is connected
2019-07-04 21:22:06 +02:00
Xavier Guimard
c1137edba8
make tidy with perltidy-20181120
2019-07-02 20:03:40 +02:00
Xavier Guimard
264410409d
Move CAS service verification from main to Issuer::CAS ( #1795 )
2019-06-27 16:55:12 +02:00
Maxime Besson
e1f927a195
Check service= parameter on CAS logout ( #1795 )
...
service= redirect URL is not checked when logging out from CAS, to avoid
insecure redirect attacks. The verification is only made if CAS access
control is enabled.
In order for this to work in common cases (applications redirects to an
unprotected page after logout), we add CAS App domains to the list of
globally trusted domains.
If your application wants to redirect to a third-party domain, it needs
to be added to LLNG's trustedDomains
2019-06-27 12:40:40 +02:00
Christophe Maudoux
35f1677747
Append unit test and fix CORS headers ( #1765 )
2019-05-31 17:50:44 +02:00
Christophe Maudoux
132e57b4b3
Manage CORS headers ( #1765 )
2019-05-31 17:00:39 +02:00
Clément OUDOT
ae3a728378
Manage template inclusion when file is not in configured portal theme ( #1653 )
2019-04-10 15:42:58 +02:00
Xavier Guimard
2159957c34
Update versions
2019-04-05 09:54:43 +02:00
Xavier Guimard
af4f123916
Fix cspScrip ( Closes : #1683 )
2019-03-26 09:56:46 +01:00
Clément OUDOT
447c09c0a2
Remove old translation file ( #1595 )
2019-03-19 15:38:36 +01:00
Clément OUDOT
145db1cf60
Fix regexp for portal default condition ( #1669 )
2019-03-11 12:01:16 +01:00
Xavier Guimard
bc2bef4ff4
Please use our .perltidyrc
2019-03-07 18:22:58 +01:00
Xavier Guimard
26b80873be
Modify Try.pm to handle authorizations ( #1658 )
2019-03-05 21:11:07 +01:00
Christophe Maudoux
28caeea3c2
Partial revert ( #1595 )
2019-02-19 20:10:41 +01:00
Christophe Maudoux
62167a41f1
Load Portal despite translation file does not exist ( #1595 )
2019-02-19 17:27:28 +01:00
Christophe Maudoux
b777007ff6
Override msg by reading a file ( #1595 )
2019-02-09 22:38:13 +01:00
Christophe Maudoux
94574f2f19
Override msg by reading a file ( #1595 )
2019-02-09 20:48:46 +01:00
Xavier Guimard
c7b4eb5051
tidy with new conf
2019-02-07 09:27:56 +01:00
Xavier Guimard
2ab385e2df
Update versions
2019-01-09 13:42:30 +01:00
Xavier Guimard
54539e97d9
Add aroundSub entrypoint
2018-12-21 16:07:28 +01:00
Xavier Guimard
06431d71f5
New endpoint: afterSub
2018-12-21 16:07:28 +01:00
Xavier Guimard
c6ff9dcf0b
Display error if a plugin sets it ( #595 )
2018-12-21 11:26:11 +01:00
Xavier Guimard
f92a925fee
Restore custom messages ( #1518 )
2018-10-17 10:49:30 +02:00
Clément OUDOT
c5f9a7f95b
make tidy
2018-10-12 10:04:03 +02:00
Xavier Guimard
0d3cccc491
Fix loadPlugin/loadModule issues in Choice ( #1500 )
2018-10-03 22:31:28 +02:00
Christophe Maudoux
0ed8dbdde2
Fix logins history update - Failed and Granted Access with and without SFA ( #1501 )
2018-09-12 23:14:35 +02:00
Xavier Guimard
6278398060
Move "afterData" entry point before "buildCookie" and add "endAuth" entrypoint ( #1497 )
...
TODO: optimize notifications
2018-09-05 09:22:20 +02:00
Christophe Maudoux
1bebba42c3
WIP - Partial revert and debug messages appended to test ( #1480 )
2018-08-08 09:51:06 +02:00
Christophe Maudoux
6619e56714
WIP - Add CSP form-action attribute in LLNG conf. Need more tests ( #1480 )
2018-08-07 23:54:42 +02:00
Xavier Guimard
c118a60c1e
Fix "cancel" feature ( #1461 )
2018-07-10 11:43:36 +02:00
Xavier Guimard
8353215adb
Add authCancel entry point ( #1461 )
...
UNTESTED !!!
@clement_oudot: not enough time to test this morning
2018-07-10 07:11:08 +02:00
Xavier Guimard
b2620c2679
s/datas/data
...
datas => des données
data => les données
2018-07-05 22:56:16 +02:00
Xavier Guimard
b790270794
Fix issuers use of pdata ( #1461 )
2018-07-05 18:45:29 +02:00
Xavier Guimard
d0bd437191
Fix some test problems with pdata ( #1461 )
2018-07-05 17:39:44 +02:00
Xavier Guimard
e0b2797e70
In progress but federation proxy is broken ( #1461 )
2018-07-05 14:24:22 +02:00
Xavier Guimard
55cd51f27f
Clean $req->pdata when authentication succeeds ( #1461 )
2018-07-04 17:23:57 +02:00
Xavier Guimard
2634d4e0dd
More comments ( #595 )
2018-06-25 07:07:13 +02:00
Xavier Guimard
af42ed9306
Backtrace for #1454
2018-06-15 06:32:43 +02:00
Xavier Guimard
d5d74b93e4
Optimize conf check ( #595 )
2018-06-14 22:30:22 +02:00
Xavier Guimard
1a2a109025
More debug info ( #1449 )
2018-06-12 17:56:42 +02:00
Xavier Guimard
019f1e75e8
Uniq status daemon for Nginx ( #595 )
...
NB: not uniq for Apache for now
2018-06-11 22:11:18 +02:00
Xavier Guimard
0623b4f9fe
Add ini-only default values in DefaultValues.pm ( #595 )
2018-04-03 10:23:31 +02:00
Xavier Guimard
ffcc5dbd3e
UTOTP auth part works ( #1391 )
2018-03-18 09:15:23 +01:00