dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,888 Commits 3 Branches 0 Tags 75 MiB
47ea58cc86
Commit Graph

976 Commits

Author SHA1 Message Date
Clément Oudot
aeae8ce1d8 Typo in CDC writer URL call (#18) 2010-09-27 09:11:37 +00:00
Clément Oudot
6697e4a221 forcedSAML must not be shown in authentication choices 2010-09-27 08:53:16 +00:00
Clément Oudot
c546d7c9a9 Update Common Domain Cookie before IDP redirects to SP (#18) 2010-09-27 08:40:18 +00:00
Xavier Guimard
c57087d696 OpenID SREG in progress... 2010-09-26 13:09:46 +00:00
Xavier Guimard
657238d8d8 OpenID SREG in progress 2010-09-26 08:16:56 +00:00
Xavier Guimard
075767dacc OpenID SREG in progress 2010-09-25 14:40:38 +00:00
Xavier Guimard
545c05ca60 OpenID SREG in progress 2010-09-25 14:15:53 +00:00
Xavier Guimard
23f22817b0 OpenID SREG in progress 2010-09-25 12:55:29 +00:00
Clément Oudot
537fcbdf26 Use Common Domain Cookie in AuthSAML (#18) 2010-09-24 15:27:40 +00:00
Clément Oudot
c3e9fbba7e Module to manage SAML Common Domain Cookie (#18) 2010-09-24 14:23:27 +00:00
Xavier Guimard
e7fdfb79ed OpenID SREG in progress 2010-09-24 14:21:19 +00:00
Xavier Guimard
dab3aaa07f Closes #156 : "Confirm parameter is not secured" 2010-09-24 12:02:57 +00:00
Xavier Guimard
bcc84f0ceb make tidy 2010-09-23 16:41:39 +00:00
Xavier Guimard
7c0e37d6fd Closes: #157 "Warning messages in make test" 2010-09-23 16:21:47 +00:00
Clément Oudot
c5fefefe81 Use eval in _SAML BEGIN block to get Lasso constants values 2010-09-23 15:47:17 +00:00
Clément Oudot
8f7a94c1fb Add artifact resolution URL in authForce (fixes #170) 2010-09-23 15:29:48 +00:00
Xavier Guimard
fb88b25e10 Optimization to increase performances 2010-09-23 15:09:27 +00:00
Clément Oudot
a51202cd65 Correct a bug in CAS login return URL (#169) 2010-09-23 13:19:25 +00:00
Clément Oudot
6008516967 Add icons (GPL) for applications in Menu (#29) 2010-09-23 09:30:00 +00:00
Clément Oudot
890daaf5a5 'on' and 'off' are also valid values fo display mode (#29) 2010-09-22 14:26:28 +00:00
Clément Oudot
48a12e1610 Update MANIFEST for application logos (#29) 2010-09-20 15:23:55 +00:00
Clément Oudot
ff58e89b0a Categories and applications sorted by alphabetical order of their id (#29) 2010-09-20 14:04:33 +00:00
Clément Oudot
fd114a0345 New application list for dark theme (#29) 2010-09-20 13:07:28 +00:00
Clément Oudot
fecc9cc332 Adapt CSS for application list, skin pastel (#29) 2010-09-20 12:35:24 +00:00
Clément Oudot
36a1674c09 Use template loops to display categories and applications - work in progress (#29) 2010-09-20 10:39:23 +00:00
Clément Oudot
59c17a6604 Build applications list as a perl struct (#29) 2010-09-20 08:31:09 +00:00
Xavier Guimard
eae0070d8e Doxygen doc 2010-09-19 12:23:46 +00:00
Xavier Guimard
a28a147674 Little error 2010-09-19 09:47:38 +00:00
Xavier Guimard
e8b2860ff6 - Missing Debian dependencies 
- META.yml update
 2010-09-19 09:29:40 +00:00
Xavier Guimard
df0c8004c0 New feature : configuration is cached in portal memory 2010-09-19 09:25:47 +00:00
Xavier Guimard
85d384bac1 #28 in progress 2010-09-18 06:41:48 +00:00
Xavier Guimard
c80795805a #28 in progress 2010-09-18 06:23:34 +00:00
Xavier Guimard
305113c53f #28 in progress : 
- Extension to Net::OpenID::Server to manage extensions (and sign them)
 2010-09-17 15:32:43 +00:00
Clément Oudot
ce8b2f0adf Dark skin in progress 2010-09-17 12:20:58 +00:00
Xavier Guimard
09b6f037df _SOAP.pm and Menu.pm provide both _compileRules => moved to _LibAccess.pm 2010-09-17 10:23:49 +00:00
Clément Oudot
d2bef48797 New Menu in impact skin (#29) 2010-09-16 15:23:05 +00:00
Clément Oudot
d7fb73b2e2 Rewrite Menu module, to integrate it in Portal (#29) 2010-09-16 15:10:00 +00:00
Clément Oudot
b658c3df43 SAFEWRAP test was not good 2010-09-16 08:44:56 +00:00
Clément Oudot
30a337176e Correct confirmation template for skin impact 2010-09-15 15:14:11 +00:00
Clément Oudot
0ab89e1f14 Use a cookie to know which authchoice tab was selected 2010-09-15 08:31:44 +00:00
Clément Oudot
6623372844 Add SSL logo 2010-09-13 20:22:51 +00:00
Clément Oudot
dda83a3e67 Store authChoice in session, and load it for existing sessions 2010-09-13 15:14:19 +00:00
Clément Oudot
07c1c59d0e Load IDPs in SAML userDBInit to manage SLO in SAML proxy mode 2010-09-13 15:10:39 +00:00
Clément Oudot
657c39d563 Use subProcess to change password in Menu 2010-09-13 15:08:29 +00:00
Clément Oudot
3304885bf0 Register dn in session even if no UserDBLDAP selected 2010-09-13 14:09:07 +00:00
Clément Oudot
a9ab38424d Dark skin: mail reset form 2010-09-13 14:08:20 +00:00
Clément Oudot
c004e6363d Load correct authentication module on issuer logout process 2010-09-10 20:27:14 +00:00
Clément Oudot
0fb130e29e Correct UserDBSAML init test 2010-09-10 20:17:08 +00:00
Clément Oudot
17b3c15466 Code authentication choice like multiple authentication (#19) 2010-09-10 19:52:44 +00:00
Clément Oudot
974b4377f7 Dark theme in progress 2010-09-09 20:45:57 +00:00
Clément Oudot
18e62ab725 Work on a new skin (dark), based on pastel templates 2010-09-09 15:49:10 +00:00
Clément Oudot
1a7c6e5e77 Modify file organization for skins 2010-09-09 15:00:59 +00:00
Clément Oudot
789b726225 Some enhancements on skins 2010-09-08 20:17:56 +00:00
Clément Oudot
61a73e59dd Work on authentication choice (#19) 2010-09-08 20:16:32 +00:00
Clément Oudot
a565dd555a Display user login in impact theme 2010-09-07 14:02:18 +00:00
Clément Oudot
1f4a6e6450 #19: 
* Dedicated AuthChoice.pm
* Authentication choice parameters in Manager
 2010-09-06 15:05:54 +00:00
Clément Oudot
7bcbdaa318 Manage auth choice and OpenID in impact skin (#19) 2010-09-06 12:43:33 +00:00
Clément Oudot
13da8acd79 * Confirmation data are always resend to portal (form action=#) 
* Transport authentication choice in info and confirm steps (#19)
 2010-09-06 11:48:41 +00:00
Clément Oudot
d2549c2fbe Always display authentication choices if any (#19) 2010-09-06 09:35:05 +00:00
Xavier Guimard
c8a2b8c5e0 "_safe" instead of "safe" in Menu 2010-09-06 09:23:23 +00:00
Clément Oudot
b5361c1175 Specific templates for standard from and OpenID form (#19) 2010-09-06 08:45:22 +00:00
Clément Oudot
45bd8a6872 Use global_vars in template to see template vars inside loops (#19) 2010-09-05 13:57:07 +00:00
Xavier Guimard
29640f3829 test wrapper for Safe 2010-09-04 11:49:03 +00:00
Clément Oudot
09b06fecbf Add SSL and Apache in authentication choices (#19) 2010-09-03 16:02:10 +00:00
Xavier Guimard
d00f68a54b Try to close LEMONLDAP-117 2010-09-03 15:58:57 +00:00
Clément Oudot
b57ae4f34a Add logos for authentication choice (#19) 2010-09-03 15:43:41 +00:00
Clément Oudot
82b4ea080e Load correct authentication module for authLogout (#LEMONDLAP-19) 2010-09-03 15:23:08 +00:00
Xavier Guimard
8663fd29e9 AddUserDBOpenID 2010-09-03 15:20:38 +00:00
Clément Oudot
615f0ba259 Transport authChoice in OpenID workflow 2010-09-03 14:58:25 +00:00
Clément Oudot
a8cc940774 Manage authChoice in CAS proxy callback 2010-09-03 14:53:31 +00:00
Clément Oudot
9e38c5ea2a Transport authChoice in CAS authentication 2010-09-03 14:24:19 +00:00
Clément Oudot
41151228ff Typo in checkXSSAttack call 2010-09-03 14:23:54 +00:00
Clément Oudot
f47388bc32 Update MANIFEST for UserDBOpenID 2010-09-03 14:23:30 +00:00
Clément Oudot
ec8eb57b1f * Common XSS attack check method 
* Check XSS attack on authChoice parameter
 2010-09-03 14:15:44 +00:00
Xavier Guimard
eacdc8e2dd Typo 2010-09-03 13:37:49 +00:00
Xavier Guimard
47cb5c1a59 OpenID consumer now supports "OpenID Simple Registration Extension" 2010-09-03 13:34:35 +00:00
Clément Oudot
c10f1a96db Authentication choice in progress (#19) 2010-09-03 13:21:03 +00:00
Clément Oudot
0f4212abc2 URL param to choose authentication module (#LEMONLDAP19) 2010-09-02 15:32:40 +00:00
Xavier Guimard
0e1f5f4217 According to OpenID-2.0 specs, HTML field should be called "openid_identifier" 2010-09-02 10:38:28 +00:00
Clément Oudot
9992c56f43 Configure mapping between SAML authentication contexts and authentication levels (#152) 2010-09-02 09:09:10 +00:00
Clément Oudot
8d6899c2b2 Configuration keys for authentication levels (#152) 2010-09-01 16:06:01 +00:00
Xavier Guimard
06beaa6ff4 « make tidy » 2010-09-01 12:56:15 +00:00
Xavier Guimard
dd597a7cce OpenID federation message 2010-09-01 12:52:56 +00:00
Clément Oudot
a5ac6ee02b Recreate an ARRAY ref for ldapGroupAttributeNameSearch (#1) 2010-09-01 10:59:11 +00:00
Clément Oudot
6dd0c45e61 Add fake authFinish in Portal unit test 01 2010-09-01 10:29:24 +00:00
Clément Oudot
0f973b7b87 Set external authenticationLevel to 1 2010-09-01 09:53:55 +00:00
Xavier Guimard
7770f58ab2 Error using Lemonldap::NG::Common::Crypt 2010-09-01 09:16:02 +00:00
Clément Oudot
e5bbac08de Add authFinish, authLogout and authForce in authentication modules (#149) 2010-09-01 08:59:39 +00:00
Xavier Guimard
f7bc27e310 Typo 2010-09-01 08:13:44 +00:00
Xavier Guimard
ebc6609da9 Typo 2010-09-01 08:11:34 +00:00
Xavier Guimard
f6f09f635c IssuerOpenID in progress 2010-08-31 15:36:32 +00:00
Clément Oudot
038f57d7b5 SAML Issuer: redirect on logout page after logout process initiated by IDP 2010-08-31 15:21:17 +00:00
Clément Oudot
0d5faacc0a Manage // in path when checking IssuerDB path 2010-08-31 15:14:44 +00:00
Clément Oudot
88272cce87 Use _saml_id key in SAML sessions to rattach them to main SSO session_id (#148) 2010-08-31 14:36:45 +00:00
Clément Oudot
35935c5b7f Little bug in controlExistingSession 2010-08-31 12:23:11 +00:00
Clément Oudot
1e1f9bf5ea Modify binmode to bytes for SOAP responses (closes #144) 2010-08-31 10:34:28 +00:00
Xavier Guimard
2295d560f8 "make manifest" 2010-08-31 06:53:04 +00:00
Clément Oudot
a73968cd84 AuthCAS: use logoutServices to register CAS logout URL 2010-08-30 16:01:25 +00:00
Clément Oudot
92352246ee Support from logout services: they are deconnected with a GET request after portal logout (#121) 2010-08-30 15:46:26 +00:00
Clément Oudot
611d252ebc AuthCAS: renew and gateway flags can now been configured 2010-08-30 13:41:45 +00:00
Clément Oudot
9a4df749fe CAS: Manage renew flag in VALIDATE and SERVICE VALIDATE URL (#101) 2010-08-30 09:24:04 +00:00
Clément Oudot
d3aefd81b8 AuthCAS: declare authForce method 2010-08-30 09:01:15 +00:00
Clément Oudot
60296f0143 CAS: Manage renew flag in LOGIN URL (#101) 2010-08-30 08:56:16 +00:00
Clément Oudot
8e7c112181 AuthCAS: declare authLogout and authFinish methods 2010-08-30 08:38:53 +00:00
Clément Oudot
e3010de6e5 CAS Issuer (#101): 
* Manage gateway parameter (refused unauthenticated user)
* Display CAS logout URL message
* Do not check base64 encoded URL for CAS (mandatory for logout URL management)
 2010-08-27 16:07:19 +00:00
Xavier Guimard
7eb813fbca Little TODO 2010-08-27 15:35:53 +00:00
Xavier Guimard
cd00bf3b62 OpenID server in progress 2010-08-27 15:34:03 +00:00
Clément Oudot
6045909d1f AuthCAS: collect PT for each registered CAS proxied service (#146) 2010-08-27 14:42:07 +00:00
Clément Oudot
832f7050eb Add activation parameter for each IssuerDB module (#147) 2010-08-27 13:01:54 +00:00
Clément Oudot
ac47c65adb AuthCAS: remove unused parameters and add debug information (#146) 2010-08-27 08:50:09 +00:00
Clément Oudot
f4514c41e7 Manage all proxy workflow for CAS (#101) 2010-08-26 16:16:13 +00:00
Clément Oudot
b4f5adde99 Manage proxy granting ticket for CAS service validate URL (#101) 2010-08-26 14:43:32 +00:00
Clément Oudot
b721763e23 Manage CAS service validate URL (#101) 2010-08-26 12:24:38 +00:00
Clément Oudot
cf282a3c25 Add sample CAS client script (#101) 2010-08-26 10:25:58 +00:00
Clément Oudot
a19067e5a2 Delete CAS secondary sessions on logout (#101) 2010-08-26 08:42:28 +00:00
Clément Oudot
b819f75f9e Remove HTTP-Redirect binding for SAML authentication response because not supported in SAML 2.0 conformance document (#144) 2010-08-26 08:05:25 +00:00
Clément Oudot
04ede0a918 CAS: 
* Check the ticket is a service ticket
* Add _utime in CAS service sessions
* Add some debug messages
 2010-08-25 15:57:21 +00:00
Clément Oudot
2b1e09d09c Manage CAS logout and validate URL (#101) 2010-08-25 15:33:33 +00:00
Clément Oudot
a6acf86f4e Generate CAS Service Ticket (#101) 2010-08-25 14:23:45 +00:00
Clément Oudot
c6c8024326 Manage CAS URLs (#101) 2010-08-23 16:41:38 +00:00
Clément Oudot
5877fa95d6 CAS IssuerDB skeleton (#101) 2010-08-23 15:47:53 +00:00
Clément Oudot
dca8b923ac * Add setUserDBValue method for LDAP and DBI userDB 
* Add samlUserDBIdentityKey
* IssuerDBSAML now try to store Lasso identity in UserDB
* References #123
 2010-08-23 14:52:53 +00:00
Clément Oudot
240c2b56eb SAML: 
* Use request path to choose IssuerDB module to load
* Store all used IssuerDB module in user session
* Launch issuerLogout method for all used IssuerDB module
* References #102
 2010-08-23 13:27:16 +00:00
Clément Oudot
503fd5d9c3 Correct bug in javascript when action URL has no '?' (#125) 2010-08-20 15:36:06 +00:00
Clément Oudot
4fa2f6318e Build removeOther link with javascript, to get the final redirection URL and method (#125) 2010-08-20 15:07:55 +00:00
Clément Oudot
a9a2106e89 Add a back URL in removeOther link (#125) 2010-08-20 13:48:09 +00:00
Clément Oudot
a85958f90f Always clear previous hidden form value when PE_INFO is returned by autoRedirect and autoPost (#125) 2010-08-20 10:52:52 +00:00
Clément Oudot
5e6efebab1 Manage info form hidden fields for autoRedirect and autoPost (#125) 2010-08-20 10:31:20 +00:00
Clément Oudot
ead9413dd8 Possibility to control form method of info and confirm screen (references #125) 2010-08-19 16:19:30 +00:00
Clément Oudot
f0af83546a Correct bug for artifact resolution on IDP side (#143) 2010-08-19 14:17:25 +00:00
Clément Oudot
e29a65e92b Disable timer on IDP list (#141) 2010-08-18 15:10:30 +00:00
Clément Oudot
6781054397 Return error when SAML authentication is refused by user (#132) 2010-08-18 14:26:18 +00:00
Xavier Guimard
b09b37566d Update to Jquery 1.4.2 2010-08-18 13:54:50 +00:00
Clément Oudot
33403f3396 Display a link to go back to SP on IDP login page (#140) 2010-08-18 13:39:15 +00:00
Xavier Guimard
45aaa41cee Split extractFormInfo => create getIDP() 2010-08-18 10:07:42 +00:00
Clément Oudot
6c534022f4 Use #PORTAL# macro in SAML URL to ease SAML configuration (#139) 2010-08-18 09:49:55 +00:00
Xavier Guimard
7cf902d9e2 Debian packaging requires "/skins" due to symbolic links 2010-08-16 16:29:16 +00:00
Xavier Guimard
d32e31e5bd Perl dependency + typo 2010-08-05 08:21:31 +00:00
Clément Oudot
1dc1f926e4 Add timeout, version and binary attributes options for LDAP configuration (closes #129) 2010-07-28 10:00:30 +00:00
Clément Oudot
5cc3a3057a Update MailReset doxygen documentation (#7) 2010-07-22 09:06:50 +00:00
Clément Oudot
a32502b8f7 Do use st when browsing backends (authentication, userDB, ...) to prevent from a bug in Perl-LDAP 0.40 (#128) 2010-07-21 12:13:12 +00:00
Clément Oudot
6792a1350c Store replay protection for SAML SLO request sent by IDP 2010-07-05 21:24:34 +00:00
Clément Oudot
d475674b4c * Modify some default conf values 
* Add missing SAML error codes to portal CGI
 2010-07-05 21:09:55 +00:00
Clément Oudot
192dd9c8e1 Preparation for 1.0rc2 release 2010-07-05 16:20:17 +00:00
Clément Oudot
15cb8f6e29 SAML error codes for IDP and UserDBSAML (#40) 2010-07-05 15:58:03 +00:00
Clément Oudot
abfc445f38 SAML Error codes for SP (#40) 2010-07-05 15:38:02 +00:00
Clément Oudot
6fb21c669b Use private key passwords (#97) 2010-07-05 11:50:12 +00:00
Clément Oudot
3ed02a09b8 * Set noInfo flag when updating session 
* Get sessionIndex from SLO request before validating the request
* Use NameID dump in debug message
 2010-07-05 09:36:52 +00:00
Clément Oudot
5c406c5381 Counter is never negative (#124) 2010-07-04 14:05:20 +00:00
Clément Oudot
1c4d8535f7 SAML: Issuer can send SLO requests to SP and IDP when in proxy mode (#31) 2010-07-03 14:38:46 +00:00