Xavier
8d642da8cb
Improve #1782
2019-06-13 22:10:30 +02:00
Xavier Guimard
2a021e37ea
Don't require getDisplayType in Choice ( #1800 )
2019-06-13 17:51:36 +02:00
Maxime Besson
1a66da30f9
Store portal language in _language user session key ( #1764 )
2019-06-13 09:26:19 +02:00
Xavier
a6aaf8a507
Add XSS test ( #1795 )
2019-06-11 21:30:15 +02:00
Xavier
1a8948894d
Check CAS "service" parameter ( Fixes : #1795 )
2019-06-11 21:02:43 +02:00
Maxime Besson
97d0bbf0aa
Fix CASv2 logout ( #1753 )
2019-06-11 16:18:15 +02:00
Xavier Guimard
9e932b525c
Merge branch 'issue1794-accentregister' into 'v2.0'
...
Register: better handling of special chars (#1794 )
See merge request lemonldap-ng/lemonldap-ng!78
2019-06-10 22:57:34 +02:00
Maxime Besson
f195db2a5a
Register: better handling of special chars ( #1794 )
2019-06-10 22:45:15 +02:00
Christophe Maudoux
7a3ded7efb
Improve code ( #1782 )
2019-06-10 20:56:38 +02:00
Christophe Maudoux
441519a542
Typo ( #1791 )
2019-06-10 10:37:43 +02:00
Christophe Maudoux
8a35584e26
Fix empty hGroups ( #1791 )
2019-06-09 19:54:00 +02:00
Christophe Maudoux
63798f71f9
Change message condition ( #1791 )
2019-06-08 22:10:13 +02:00
Christophe Maudoux
b71f678f80
Filter SSO groups to merge ( #1791 )
2019-06-08 22:08:58 +02:00
Christophe Maudoux
e3c2766809
Test 2F TTL ( #1782 )
2019-06-07 19:51:51 +02:00
Xavier
94c2a0bc3b
Add addAuthRouteWithRedirect() doc ( #1787 )
2019-06-06 23:02:46 +02:00
Xavier
f4bca7430a
Add addAuthRouteWithRedirect() method to Try ( #1787 )
2019-06-06 22:59:02 +02:00
Xavier Guimard
946384272e
Partial revert "Typo"
...
This reverts commit f63a63eedb
.
2019-06-06 16:00:49 +02:00
Christophe Maudoux
801e2a17d6
Better fix ( #1769 )
2019-06-05 15:27:58 +02:00
Christophe Maudoux
30c4a9c787
setSecurity if failed login ( #1769 )
2019-06-05 11:29:04 +02:00
Christophe Maudoux
f63a63eedb
Typo
2019-06-05 11:25:50 +02:00
Christophe Maudoux
c044ebc473
Fix functions parameter ( #1774 )
2019-06-04 23:18:06 +02:00
Christophe Maudoux
eab00052f3
Fix debug msg ( #1774 )
2019-06-04 20:42:54 +02:00
Christophe Maudoux
95b188ccfe
Fix grant parameter, append warning msg & debug logs ( #1774 )
2019-06-04 18:19:33 +02:00
Christophe Maudoux
18dd7c2c41
Append debug msg ( #1765 )
2019-06-04 16:19:01 +02:00
Christophe Maudoux
f69b829f6c
Restore loginHistory ( #1780 ) & Improve code
2019-06-02 22:40:00 +02:00
Christophe Maudoux
054fda9cfd
Fix warnings ( #1781 )
2019-06-01 23:22:20 +02:00
Christophe Maudoux
491c54a3ee
Fix Impersonation with 2FA ( #1781 )
2019-06-01 19:13:45 +02:00
Christophe Maudoux
e36ce98dda
SetSecurity with AuthChoice ( #1769 )
2019-06-01 11:47:49 +02:00
Christophe Maudoux
35f1677747
Append unit test and fix CORS headers ( #1765 )
2019-05-31 17:50:44 +02:00
Christophe Maudoux
132e57b4b3
Manage CORS headers ( #1765 )
2019-05-31 17:00:39 +02:00
Christophe Maudoux
432f2655bb
Fix if no userDB ( #1774 )
2019-05-30 12:26:50 +02:00
Christophe Maudoux
04603c0169
Fix warning ( #1774 )
2019-05-30 12:26:50 +02:00
Xavier Guimard
6b5677b4ce
Tidy ( #1774 )
2019-05-29 14:20:46 +02:00
Christophe Maudoux
224137462a
Tidy ( #1774 )
2019-05-29 00:08:48 +02:00
Christophe Maudoux
a89f83294b
Retrieve session from DB if exists & Improve unit test ( #1774 )
2019-05-28 23:55:54 +02:00
Xavier Guimard
8fd3f6be90
Merge branch 'issue1521-appmenu' into 'v2.0'
...
Preserve applicationList key names (#1521 )
See merge request lemonldap-ng/lemonldap-ng!76
2019-05-28 22:10:53 +02:00
Xavier
db2ee96bc8
Update versions ( #1777 )
2019-05-28 22:04:45 +02:00
Xavier
f0842569c2
Don't erase pdata on 404 errors ( #1778 )
2019-05-28 21:58:22 +02:00
Xavier
82171e9a90
Fix missing $req in SLO responses ( #1777 )
2019-05-28 21:45:54 +02:00
Xavier
acd6ba50e8
Fix some missing $req ( #1777 )
2019-05-28 19:52:08 +02:00
Christophe Maudoux
5126e9003b
Allow double sessions for double cookies with singleSession ( #1775 )
2019-05-28 17:32:06 +02:00
Maxime Besson
b12992755f
Preserve applicationList key names ( #1521 )
...
Previously, every configuration save from the manager would overwrite
applicationList key names to preserve their ordering.
This commit introduces a new "order" key in the JSON config instead.
2019-05-28 15:38:26 +02:00
Christophe Maudoux
dece7d8aa0
Allow double sessions for double cookies ( #1775 )
2019-05-27 22:42:02 +02:00
Christophe Maudoux
26233106a5
Set _updateTime session value ( #1771 )
2019-05-26 11:56:58 +02:00
Christophe Maudoux
3dd4c52c65
Update version ( #1766 )
2019-05-26 10:33:39 +02:00
Christophe Maudoux
0e47cb4f5b
Fix warning message
2019-05-23 15:52:11 +02:00
Maxime Besson
0babf4c6c3
Fix non-sso session removal in SoapServer
...
closes #1762
2019-05-21 17:30:37 +02:00
Christophe Maudoux
59f07b7b8f
Avoid to renew double cookie sessions for refresh request ( #1747 )
2019-05-20 23:03:10 +02:00
Christophe Maudoux
29b7341345
Change code order ( #1749 )
2019-05-19 13:40:46 +02:00
Christophe Maudoux
006f862a69
Cleaning code ( #1755 )
2019-05-17 22:18:09 +02:00
Clément OUDOT
c024952b8f
Do not fail if no RP or no OP configured ( #1759 )
2019-05-17 16:00:33 +02:00
Xavier
b91d1d4b87
Tidy
2019-05-16 20:45:14 +02:00
Xavier
a2e78c88c3
Set versions
2019-05-16 20:42:31 +02:00
Xavier
1186aba52b
lmError(): return JSON if wanted ( #1745 )
2019-05-16 06:50:13 +02:00
Christophe Maudoux
e46fac82b2
CheckUser with tokenGlobalStorage & Warn if SSO groups are merged
2019-05-15 23:45:06 +02:00
Maxime Besson
1f1eeab9c8
Do not log a warning when displaying form with Combination
...
When form-based authentication methods return PE_FIRSTLOGIN, do not log
a warning because it's normal behavior to show the form.
2019-05-14 19:47:28 +02:00
Christophe Maudoux
fc034ad4bf
Impersonation with doubleCookie ( #1746 )
2019-05-12 22:59:21 +02:00
Clément OUDOT
05cd4d4a58
Fix update token with global storage ( #1742 )
2019-05-12 20:39:25 +02:00
Clément OUDOT
682b193477
Use TOKEN kind for mail password reset sessions ( #1743 )
2019-05-12 20:04:38 +02:00
Clément OUDOT
07de622e83
Fix getRegisterSession and getMailSession ( #1743 )
2019-05-12 17:36:14 +02:00
Xavier
9a71709f44
Tidy
2019-05-11 23:03:48 +02:00
Christophe Maudoux
8737fc0808
Impersonation with doubleCookie & Append unit test ( #1746 )
2019-05-11 22:57:52 +02:00
Xavier
f3c4ea0afb
Tydy
2019-05-11 20:18:43 +02:00
Christophe Maudoux
aeead582d8
Restore _httpSession ( #1746 )
2019-05-11 19:07:07 +02:00
Xavier
2ce7396bf2
Don't filter on session_kind with SOAP ( #1742 )
2019-05-11 15:41:14 +02:00
Xavier
6235b303b3
#1742 in progress...
2019-05-11 09:31:17 +02:00
Xavier Guimard
1cd50bb353
Fix Auth::Remote session kind ( #1742 )
2019-05-10 18:02:56 +02:00
Xavier Guimard
638a0de81a
Don't use SSO session type for tokens (Fixes security part of #1742 )
2019-05-10 17:35:10 +02:00
Clément OUDOT
fce270408e
Improve log in plugin GrantSession ( #1739 )
2019-05-06 19:10:26 +02:00
Clément OUDOT
755b1ace78
Add some debug in Ext2F ( #1738 )
2019-05-06 14:28:28 +02:00
Clément OUDOT
a7c8b9d466
Fix error handling in Ext2F ( #1738 )
2019-05-06 14:07:42 +02:00
Christophe Maudoux
c8dd4554aa
Test if required secret elements are set to sign JWT
2019-05-02 14:33:56 +02:00
Christophe Maudoux
f4938f3489
Grant access only if required Impersonation succeeds ( #1664 )
2019-04-30 14:57:45 +02:00
Christophe Maudoux
321fe29c35
Update version
2019-04-29 22:33:11 +02:00
Christophe Maudoux
2e9092d2bd
Clean code
2019-04-29 22:33:11 +02:00
Christophe Maudoux
a89b92f265
Improve code ( #1386 )
2019-04-29 22:33:11 +02:00
Christophe Maudoux
2e3c2e1a16
Sort by spoofed and real attributes ( #1658 )
2019-04-29 22:33:11 +02:00
Clément OUDOT
926262170b
Implement PKCE in OIDC provider ( #1722 )
2019-04-29 17:18:16 +02:00
Clément OUDOT
8e6f678be7
Create a configuration option to allow a Relying Party to be a public client
...
Allow unauthenticated requests on OAuth2 token endoint
#1725
2019-04-29 10:02:16 +02:00
Maxime Besson
2f9e6aa623
Allow override of username attribute for CAS apps
...
Global CAS options allows the admistrator to set the session attribute
that gets exported to all CAS application as the main identifier
(cas:user)
This commit adds the ability to override this configuration for a
particular CAS application.
OIDC already allows this
Fixes #1713
2019-04-28 21:06:34 +02:00
Maxime Besson
62f16721ff
Send username when calling CAS1.0 validation
...
Fixes #1724
2019-04-28 19:29:54 +02:00
Maxime Besson
64cc4ea0e6
Do not sent Kerberos js twice when using Combination
...
Fixes #1720
2019-04-25 17:17:03 +02:00
Christophe Maudoux
c86b76cb9c
Init. rules by using accessors ( #1658 )
2019-04-21 11:56:29 +02:00
maudoux
9b711e6c81
Update version
2019-04-13 22:57:30 +02:00
maudoux
cfa98b2723
Fix logo display
2019-04-13 21:02:47 +02:00
Clément OUDOT
259f9d8d94
Use same JSON fields for failure and success ( #1711 )
2019-04-13 15:23:40 +02:00
Clément OUDOT
9256571f25
Return session id with successful REST authentication ( #1711 )
2019-04-12 16:57:22 +02:00
maudoux
026fcd9f76
Fix warnings ( #1704 )
2019-04-10 22:14:46 +02:00
maudoux
1d08372a8c
Sort CAS servers & update langs ( #1704 )
2019-04-10 21:58:37 +02:00
Xavier
4a21e96426
Fix warning
2019-04-10 21:54:03 +02:00
Xavier
1bcf828a89
Merge remote-tracking branch 'arosier/idpsort' into v2.0
2019-04-10 19:48:26 +02:00
Antoine ROSIER
8875a4e985
perltidy
2019-04-10 17:21:33 +02:00
Antoine ROSIER
f7b296b032
Sorting OIDc ( #1704 )
2019-04-10 17:06:41 +02:00
Antoine ROSIER
8636da45be
Sorting SAML idp ( #1704 )
2019-04-10 17:06:41 +02:00
Clément OUDOT
ae3a728378
Manage template inclusion when file is not in configured portal theme ( #1653 )
2019-04-10 15:42:58 +02:00
Christophe Maudoux
413cc98fba
perltidy
2019-04-10 09:21:55 +02:00
Antoine ROSIER
6352dc6ac8
Sort idp and op ( #1704 )
2019-04-10 09:01:55 +02:00
Xavier
af707c5b1f
Clear pdata on lmerror access
2019-04-10 07:14:36 +02:00
maudoux
4ff20f2d76
Fix Yubikey userLogger ( #1702 )
2019-04-09 23:40:16 +02:00
Xavier
a187e5c59b
Fix some userLogger message ( #1702 )
2019-04-09 21:48:59 +02:00
Christophe Maudoux
f1cb8d236e
Checkuser case unsensitive for URL only & Improve unit test (1667)
2019-04-09 16:56:00 +02:00
maudoux
1bc519d11d
Fix warning ( #1694 )
2019-04-06 14:09:58 +02:00
Maxime Besson
666e59ad6e
Fix #1698 by clearing saml request token on unauth issuer flow
...
Add some unit tests to make sure relevant pdata is cleared after authentication
2019-04-05 23:27:21 +02:00
maudoux
c573ec9625
Typo & upadte version
2019-04-05 22:58:48 +02:00
maudoux
956d934a93
Append GPG authentication level ( #1699 )
2019-04-05 22:38:20 +02:00
maudoux
85551ba5e1
Append REST authentication level ( #1699 )
2019-04-05 22:38:01 +02:00
Christophe Maudoux
cf36b44162
Cleaning code ( #1664 )
2019-04-05 20:04:17 +02:00
Christophe Maudoux
dc1f36daf0
Use OTT rule ( #1664 )
2019-04-05 20:03:42 +02:00
Christophe Maudoux
f4801f3587
Use OTT rule ( #1664 )
2019-04-05 20:03:37 +02:00
Christophe Maudoux
01006fc984
Use OTT rule ( #1664 )
2019-04-05 20:03:25 +02:00
Christophe Maudoux
cb53973881
Use OTT rule ( #1694 )
2019-04-05 17:24:16 +02:00
Christophe Maudoux
5a8a7d483f
Use OTT rule ( #1694 )
2019-04-05 17:24:07 +02:00
Christophe Maudoux
2b818a9c02
Append specific ottRule dependency ( #1694 )
2019-04-05 17:23:09 +02:00
Xavier Guimard
10e8d51449
Fix Perl::Critic changes
2019-04-05 10:46:43 +02:00
Xavier Guimard
2159957c34
Update versions
2019-04-05 09:54:43 +02:00
maudoux
5b67f1f743
Use rule to enable OTT ( #1694 )
2019-04-03 23:28:45 +02:00
Clément OUDOT
8859fe342b
Fix setHiddenFormValue ( #1692 )
2019-04-03 17:54:58 +02:00
Clément OUDOT
8be0817363
Send optional SAML attributes if they have a value ( #1681 )
2019-04-03 16:40:41 +02:00
Xavier Guimard
ece9b21219
Remove trailing whitespaces
2019-04-03 14:15:16 +02:00
Clément OUDOT
9a454fbb7a
Manage SLO termination if there is no RelayState ( #1671 )
2019-04-03 12:26:01 +02:00
Maxime Besson
d44a042fd5
Revert 8f5fbb077e
and change the way logout errors are handled
...
Relating to issue #1668 , the proposed fix works when there is only one
service provider to logout of.
Now that multiple service provider logout is starting to work again on
2.0, we cannot read the remote_ProviderID from the logout object because
it is only filled by lasso when actually building the response.
Instead, we ignore any error that could occur when building the
response, log a warning and show the portal instead. Still better than
an internal server error.
2019-04-03 11:20:24 +02:00
maudoux
ae28ea3169
Append Conf domain to url if missing - Fix port ( #1664 )
2019-04-02 22:08:15 +02:00
maudoux
ec214c75c2
Append Conf domain to url if missing ( #1664 )
2019-04-02 22:08:15 +02:00
Clément OUDOT
a805a5a00b
Manage SLO responses ( #1671 )
2019-04-02 17:27:47 +02:00
Clément OUDOT
4e76ee9582
Avoid warning during SAML SLO ( #1671 )
2019-04-02 16:13:45 +02:00
Clément OUDOT
bac2eb564c
Remove antiframe protection in portal javascript ( #1696 )
2019-04-02 15:05:41 +02:00
Clément OUDOT
c4b4e95e9d
Display password or login template after password modification ( #1654 )
2019-04-02 11:12:33 +02:00
Clément OUDOT
4af47ad6a4
Allow iframe from portal to be able to load saml SLO return page ( #1671 )
2019-04-01 18:09:31 +02:00
Clément OUDOT
5a30a82fa6
Add SLO Termination endpoint ( #1671 )
2019-04-01 18:02:38 +02:00
Clément OUDOT
59bc0642fc
Always display info ( #1693 )
2019-04-01 17:18:28 +02:00
Clément OUDOT
502a32e257
Add unit test and fix code for ppolicy grace ( #1691 )
2019-04-01 09:58:56 +02:00
Xavier
01ab88ba57
Fix for #1691
2019-04-01 06:52:21 +02:00
Clément OUDOT
a1f5fb5170
Test return of getUser ( #1654 )
2019-03-29 11:53:52 +01:00
Xavier
906db8daa6
Merge branch 'antoinerosier/lemonldap-ng-logs' into v2.0
2019-03-27 21:44:25 +01:00
Antoine ROSIER
b79c9659cb
Add user logs informations ( #1687 )
2019-03-27 16:00:39 +01:00
Clément OUDOT
4bab684e2d
Refresh entry after password modification ( #1654 )
2019-03-27 09:59:22 +01:00
Xavier
5a5572ec1f
Fix WSDL generation ( Closes : #1686 )
2019-03-26 21:47:14 +01:00
Clément OUDOT
39020e003e
Fix server error on SAML SLO ( #1671 )
2019-03-26 17:15:01 +01:00
Clément OUDOT
aa139df89d
Change criticity of password must be reset message ( #1654 )
2019-03-26 16:45:19 +01:00
Xavier Guimard
af4f123916
Fix cspScrip ( Closes : #1683 )
2019-03-26 09:56:46 +01:00
Xavier Guimard
99afd7243a
Fix #1675
2019-03-26 08:06:55 +01:00
Xavier
f226bded41
Partial fix for /logout ( #1675 )
2019-03-26 07:30:36 +01:00
Xavier
774707ad65
Add cache to avoid parsing and compiling JSON files at each request ( #1595 )
2019-03-26 06:49:39 +01:00
Xavier Guimard
3c0a9d7ecc
Second fix for #1673
2019-03-25 19:34:29 +01:00
Xavier Guimard
4138b7edae
Fix menu app cache ( #1673 )
2019-03-25 16:48:57 +01:00
Maxime Besson
3575e0ef23
Clear url pdata on CDA redirection
...
Fixes #1650
2019-03-19 19:15:47 +01:00
Clément OUDOT
8a9a5b0b3a
New method to override messages with JSON files ( #1595 )
2019-03-19 17:39:13 +01:00
Clément OUDOT
447c09c0a2
Remove old translation file ( #1595 )
2019-03-19 15:38:36 +01:00
Clément OUDOT
438d5bcbaf
Revert patch on GrantSession plugin ( #1666 )
2019-03-18 21:35:02 +01:00
Clément OUDOT
4166ae6d90
Merge branch 'v2.0' of gitlab.ow2.org:lemonldap-ng/lemonldap-ng into v2.0
2019-03-18 21:29:31 +01:00
Clément OUDOT
9798c78068
Remove userData if authentication fails ( #1666 )
2019-03-18 21:29:15 +01:00
Christophe Maudoux
d412f3d807
Update version ( #1666 )
2019-03-18 17:14:22 +01:00
Clément OUDOT
4366488fb6
Adapt GrantSession plugin to display authentication error on login form ( #1666 )
2019-03-18 11:53:30 +01:00
Clément OUDOT
627548e95d
Display authentication error on login form ( #1666 )
2019-03-18 11:41:41 +01:00
Clément OUDOT
d620ae2e8b
Merge branch 'maxbes/lemonldap-ng-saml-issuer-entityid-override' into v2.0
2019-03-13 10:30:16 +01:00
Clément OUDOT
dee4818f0c
Merge branch 'issue1543' into 'v2.0'
...
Save Urldc when using SAML Discovery
See merge request lemonldap-ng/lemonldap-ng!62
2019-03-13 10:19:14 +01:00
Maxime Besson
8f5fbb077e
When logout-initiating SP has no known SLO endpoint, fallback to portal
...
In some federations, SLO endpoints are not published, yet SP are still
able to initiate logouts.
This used to cause an error on the portal, this commit changes the error
into a warning in logs. The user remains on the portal and sees a normal
logout message.
2019-03-12 17:58:41 +01:00
Clément OUDOT
f6a3b527c8
Process SAML request to get current SP in env ( #1672 )
2019-03-12 16:52:01 +01:00
Christophe Maudoux
e1aa654bbb
Display session at first access ( #1658 )
2019-03-12 10:00:23 +01:00
Christophe Maudoux
d39078f29b
Fix specific use cases with rules ( #1664 )
2019-03-11 22:07:38 +01:00
Maxime Besson
257d329151
Fix display of ok/nok image during multi-sp saml logout
2019-03-11 18:13:06 +01:00
Clément OUDOT
8cd579f19f
Add a waiting message for Kerberos/SSL workflow ( #1670 )
2019-03-11 16:36:32 +01:00
Clément OUDOT
145db1cf60
Fix regexp for portal default condition ( #1669 )
2019-03-11 12:01:16 +01:00
Christophe Maudoux
30c0f2edf0
Improve code ( #1658 )
2019-03-10 22:01:55 +01:00
Christophe Maudoux
be28b60e66
Append identities rule ( #1658 )
2019-03-09 23:29:10 +01:00
Christophe Maudoux
7e1119a88d
Fix mistake & typo ( #1664 )
2019-03-09 23:27:54 +01:00
Christophe Maudoux
bf8040a78a
Fix empty submitted value ( #1664 )
2019-03-09 21:31:49 +01:00
Christophe Maudoux
049df70e53
Erase sessionInfo if spoofed identity is not allowed ( #1664 )
2019-03-09 13:18:39 +01:00
Christophe Maudoux
dfd286c9fa
Compute spoofed session with real and spoofed attributes ( #1664 )
2019-03-09 13:05:44 +01:00
Christophe Maudoux
09281f8d22
Append identities rule and fix error catching ( #1664 )
2019-03-08 11:39:19 +01:00
Christophe Maudoux
bea84c8847
Typo ( #1664 )
2019-03-07 23:39:50 +01:00
Christophe Maudoux
b368925323
Typo ( #1658 )
2019-03-07 23:39:37 +01:00
Xavier Guimard
bc2bef4ff4
Please use our .perltidyrc
2019-03-07 18:22:58 +01:00
Xavier Guimard
c3f5960452
Improvements + API calls
...
@maudoux: could you review this?
2019-03-07 18:15:48 +01:00
Christophe Maudoux
a9b0298624
Fix using attributes ( #1658 )
2019-03-07 17:15:03 +01:00
Christophe Maudoux
cc04740252
Fix userControl ( #1667 )
2019-03-07 15:19:04 +01:00
Christophe Maudoux
ef4f1fb0bf
Fix test submitted user param ( #1667 )
2019-03-07 10:47:14 +01:00
Christophe Maudoux
e0204c6a79
Test submitted user param ( #1667 )
2019-03-06 23:08:22 +01:00
Christophe Maudoux
9225d49216
Allow Impersonation with all auth modules ( #1664 )
2019-03-06 22:31:37 +01:00
Christophe Maudoux
6e50f41687
Fix session update ( #1664 )
2019-03-06 21:29:03 +01:00
Christophe Maudoux
e506c5cc58
Using current session if exists ( #1664 )
2019-03-06 19:26:32 +01:00
Christophe Maudoux
a05f71789e
WIP - Fix groups merging ( #1664 )
2019-03-06 17:59:09 +01:00
Christophe Maudoux
8bc9e50947
WIP - Fix groups merging ( #1664 )
2019-03-06 17:58:40 +01:00
Christophe Maudoux
a31d26c608
Spoof Authentication and userDB modules ( #1664 )
2019-03-06 16:30:56 +01:00
Christophe Maudoux
7b08a7c442
Rename idSpoofing plugin to Impersonation & all relative parameters ( #1664 )
2019-03-06 16:30:56 +01:00
Xavier Guimard
26b80873be
Modify Try.pm to handle authorizations ( #1658 )
2019-03-05 21:11:07 +01:00
Christophe Maudoux
4be42b06fe
Alow DNS or URL ( #1658 )
2019-03-05 19:36:38 +01:00
Christophe Maudoux
e7d1b065b7
Merge SSO groups ( #1664 )
2019-03-05 14:50:30 +01:00
Christophe Maudoux
ff05a8f797
Modify parameters ( #1664 )
2019-03-05 14:50:01 +01:00
Christophe Maudoux
c7ddae854c
Fix error & not found VH ( #1664 )
2019-03-04 20:53:39 +01:00
Maxime Besson
e290cd59d6
Fix undef warnings in metadata generation
...
Fix some undef warnings introduced in
12d2db35a9
2019-03-04 09:33:12 +01:00
Maxime Besson
25d1c45fd4
Add new option to override EntityID when acting as IDP
2019-03-04 09:33:10 +01:00
Christophe Maudoux
4e51cc342b
Append access rule ( #1664 )
2019-03-03 21:27:27 +01:00
Christophe Maudoux
286f5b79e3
WIP - Append debug logs ( #1664 )
2019-03-03 21:27:27 +01:00
Christophe Maudoux
228a37c0d2
WIP - Append parameters ( #1664 )
2019-03-03 21:27:27 +01:00
Christophe Maudoux
f9db9a0258
WIP - Append conf. parameters ( #1664 )
2019-03-03 21:27:27 +01:00
Christophe Maudoux
3bb7f6e664
WIP - Create session ( #1664 )
2019-03-03 21:27:27 +01:00
Christophe Maudoux
a41b5fb945
Fix OTT & minor improvements ( #1658 )
2019-03-02 11:45:59 +01:00
Christophe Maudoux
a4af486181
Typo ( #1658 )
2019-03-01 21:46:05 +01:00
Christophe Maudoux
0cd3c12503
Fix error ( #1658 )
2019-03-01 14:07:26 +01:00
Christophe Maudoux
81a37e5bcc
Dispatching attributes ( #1658 )
2019-03-01 12:36:37 +01:00
Christophe Maudoux
4fe1473f9a
Check access rules ( #1658 )
2019-02-28 21:59:59 +01:00
Maxime Besson
4a2fecaa7a
Save Urldc when using SAML Discovery
...
Fixes #1543
2019-02-28 17:51:50 +01:00
Clément OUDOT
d8a8832f4c
Restore old login history ( #1656 )
2019-02-28 17:40:15 +01:00
Clément OUDOT
b3f917ac5a
Improve log in updateSession ( #1656 )
2019-02-28 16:51:16 +01:00
dcoutadeur
3af15b139e
fix id_token validity not correctly evaluated #1662
2019-02-28 09:56:21 +01:00
Maxime Besson
12d2db35a9
Add new URLs for SP-only or IDP-only SAML metadata
...
This commit adds two new URLs:
/saml/metadata/idp : IDP-only metadata
/saml/metadata/sp : SP-only metadata
/saml/metadata keeps providing metadata for all SAML services
2019-02-27 18:14:30 +01:00
Christophe Maudoux
36200c32c5
Improve display ( #1658 )
2019-02-26 20:05:44 +01:00
Christophe Maudoux
cc99cec73a
Improve code ( #1658 )
2019-02-26 20:05:44 +01:00
Christophe Maudoux
212be23313
Improve checkUser display ( #1658 )
2019-02-26 20:05:44 +01:00
Christophe Maudoux
70a5c645d8
Improve checkUser display ( #1658 )
2019-02-25 23:34:58 +01:00
Christophe Maudoux
3f9957ee6c
Fix log msg ( #1658 )
2019-02-25 22:25:25 +01:00
Christophe Maudoux
f702664409
WIP - checkUser Improve code ( #1658 )
2019-02-25 20:11:32 +01:00
Christophe Maudoux
f0684f6c24
WIP - checkUser use OTT ( #1658 )
2019-02-25 10:58:06 +01:00
Christophe Maudoux
0f04629ed1
WIP - checkUser prepare conf ( #1658 )
2019-02-24 22:47:39 +01:00
Christophe Maudoux
e22a2835d1
WIP - checkUser replace 'each' loop ;-) ( #1658 )
2019-02-24 22:31:04 +01:00
Christophe Maudoux
ba2ab0c4a2
WIP - checkUser display transmitted headers ( #1658 )
2019-02-24 22:10:45 +01:00
Christophe Maudoux
557539805a
WIP - checkUser hide secret attributes ( #1658 )
2019-02-23 23:24:13 +01:00
Christophe Maudoux
30148caf2d
WIP - checkUser hide secret attributes ( #1658 )
2019-02-23 23:02:42 +01:00
Christophe Maudoux
c3255e1ed8
WIP - checkUser prepare loop ( #1658 )
2019-02-23 20:39:53 +01:00
Christophe Maudoux
0c0b3dd069
WIP - checkUser test access ( #1658 )
2019-02-23 11:19:40 +01:00
Christophe Maudoux
697882bd45
WIP - checkUser plugin skeleton ( #1658 )
2019-02-23 09:35:43 +01:00
Christophe Maudoux
00fae442e9
Update version ( #1595 )
2019-02-21 16:33:12 +01:00
Christophe Maudoux
b57a0788c2
Check JSON structure ( #1595 )
2019-02-21 16:25:02 +01:00
Christophe Maudoux
9fafa1d8d5
Override msg with local json files ( #1595 )
2019-02-20 23:22:56 +01:00
Christophe Maudoux
28caeea3c2
Partial revert ( #1595 )
2019-02-19 20:10:41 +01:00
Christophe Maudoux
62167a41f1
Load Portal despite translation file does not exist ( #1595 )
2019-02-19 17:27:28 +01:00
Christophe Maudoux
063c0f0d1b
Partial revert - Modify Portal side is more consistent ( #1653 )
2019-02-18 20:39:47 +01:00
Christophe Maudoux
9679a67163
Tidy ( #1632 )
2019-02-16 22:42:08 +01:00
Christophe Maudoux
7802cbcc71
Optionaly let Ext2F module handle code generation ( #1632 )
2019-02-16 21:59:53 +01:00
Christophe Maudoux
90ddec7ce0
WIP - Optionaly let Ext2F module handle code generation ( #1632 )
2019-02-14 22:43:38 +01:00
Christophe Maudoux
60e80fe1b1
Improve code ( #1629 )
2019-02-14 22:41:58 +01:00
Christophe Maudoux
0690a0c7ab
Improve code ( #1625 )
2019-02-14 22:12:40 +01:00
Christophe Maudoux
9274c54f20
Disable Portal cache ( #1651 )
2019-02-13 22:35:23 +01:00
Xavier Guimard
3069887a52
Call PasswordDB::LDAP if unauth user requests changing password ( #1639 )
2019-02-11 15:40:27 +01:00
Clément OUDOT
ad10dc539d
Use ldapAuthnLevel and dbiAuthnLevel in portal ( #1648 )
2019-02-11 11:55:51 +01:00
Christophe Maudoux
46f2beb10a
Typo & perltidy ( #1629 )
2019-02-10 22:47:56 +01:00
Christophe Maudoux
b777007ff6
Override msg by reading a file ( #1595 )
2019-02-09 22:38:13 +01:00
Christophe Maudoux
94574f2f19
Override msg by reading a file ( #1595 )
2019-02-09 20:48:46 +01:00
Clément OUDOT
5f800003fd
Add security token when forcing password reset ( #1639 )
2019-02-08 10:46:06 +01:00
Christophe Maudoux
29c4a44975
Update version ( #1625 )
2019-02-07 17:22:14 +01:00
Christophe Maudoux
8b995f55bf
Restore OpenID activation global rule & Improve unit test ( #1625 )
2019-02-07 17:21:14 +01:00
Christophe Maudoux
b1048043e9
Restore GET activation global rule & Improve unit test ( #1625 )
2019-02-07 17:16:29 +01:00
Xavier Guimard
c7b4eb5051
tidy with new conf
2019-02-07 09:27:56 +01:00
Christophe Maudoux
9cfef329ee
Append PE_ERROR constants ( #1625 )
2019-02-06 23:10:43 +01:00
Christophe Maudoux
5055b18087
Restore OIDC activation global rule ( #1625 ) & Improve unit test
2019-02-06 23:10:10 +01:00
Christophe Maudoux
b36db9706e
Restore SAML activation global rule ( #1625 )
2019-02-06 22:55:23 +01:00
Christophe Maudoux
f8144bc108
Typo ( #1625 )
2019-02-06 22:54:15 +01:00
Christophe Maudoux
007a5432f9
Restore CAS activation global rule ( #1625 )
2019-02-06 22:16:34 +01:00
Xavier Guimard
58fc9c2fad
Update versions
2019-02-06 19:30:57 +01:00