dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
11,034 Commits 3 Branches 0 Tags 75 MiB
55071d5210
Commit Graph

325 Commits

Author SHA1 Message Date
Maxime Besson
09dda56cb8 Refactor: rename method in issuer 2021-02-01 18:20:32 +01:00
Maxime Besson
435ba82144 Refactor: rename and move getJWTJSONData 2021-02-01 18:20:32 +01:00
Maxime Besson
aa877cf0a3 Let newAccessToken emit JWT (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
dc0bacd6f0 Accept Access Tokens in JWT format (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
dbddddfba1 Refactor newAccessToken (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
5303b4fc3e Fix error format when sending an expired refresh token 2021-02-01 18:15:55 +01:00
Maxime Besson
4c1f49a90f Use dynamic scope in issuer (#2424) 2021-02-01 16:25:35 +01:00
Christophe Maudoux
24cec1e08f Fix warning 2021-01-23 23:27:46 +01:00
Maxime Besson
25fb8ca0f0 Implement client credentials grant (#1987) 2021-01-19 17:06:21 +01:00
Maxime Besson
5e439b2f24 Advertise client credentials grant (#1987) 2021-01-19 16:47:21 +01:00
Maxime Besson
dd5e9ec156 Tidy 2021-01-19 16:44:06 +01:00
Christophe Maudoux
a93a85435d Improve debug msg 2021-01-07 10:04:15 +01:00
Maxime Besson
e78f8a2270 Refactor CAS code (#2321) 2021-01-05 17:34:57 +01:00
Maxime Besson
49905d4759 Remove debug log 2020-12-30 16:34:40 +01:00
Maxime Besson
4eeef91588 Add SAML ACS to environment (#2427) 2020-12-29 14:17:06 +01:00
Maxime Besson
daef0cf776 add oidcGenerateUserInfoResponse hook (#2359) 2020-11-27 14:00:58 +01:00
Maxime Besson
faadb3f059 add oidcGotRequest hook (#2359) 2020-11-27 14:00:58 +01:00
Maxime Besson
c19be1d501 Tidy SAML issuer (#2359) 2020-11-27 14:00:58 +01:00
Maxime Besson
a706f8a470 add samlBuildLogoutResponse hook (#2359) 2020-11-27 14:00:58 +01:00
Maxime Besson
ddc43f7c9c add samlGotLogoutRequest hook (#2359) 2020-11-27 14:00:58 +01:00
Maxime Besson
2dba11e6b3 Add samlBuildAuthnResponse hook (#2359) 2020-11-27 14:00:58 +01:00
Maxime Besson
de1d6e205b Add samlGotAuthnRequest hook (#2359) 2020-11-27 14:00:58 +01:00
Christophe Maudoux
c742d8320e Set user and oldpassword fields into reset password form & Improve unit tests (#2377) 2020-11-09 13:27:16 +01:00
Christophe Maudoux
e704fe24ea Fix warning if no path given & code refactoring 2020-10-26 19:21:54 +01:00
Maxime Besson
277e0872fa Fix missing session timeouts (#2262) 2020-09-09 12:04:17 +02:00
Maxime Besson
d598513504 Fix warning when resolving cas target authlevel (#2309) 2020-09-09 10:37:00 +02:00
Maxime Besson
f9c7d0bdf7 saml proxy logout: Delay info until we return from idp (#2262) 2020-09-08 17:25:11 +02:00
Maxime Besson
683b5a7861 Resume logout when returning from Auth::SAML IDP (#2262) 2020-09-08 15:47:58 +02:00
Maxime Besson
24297aa942 Redirect to external provider for logout (#2262) 2020-09-08 14:16:49 +02:00
Maxime Besson
8b5ddf6e43 Perform authLogout step during SAML SLO (#2262) 2020-09-08 14:16:49 +02:00
Maxime Besson
bd110e7de6 cas issuer: check auth level and reauth if insufficient (#2124) 2020-09-04 17:15:34 +02:00
Maxime Besson
ce5c19e3f4 saml issuer: check auth level and reauth if insufficient (#2124) 2020-09-04 17:15:34 +02:00
Maxime Besson
7a36489b73 oidc issuer: check auth level and reauth if insufficient (#2124) 2020-09-04 17:15:34 +02:00
Maxime Besson
8bfa5179cc Issuers: Store required auth level in pdata (#2124) 2020-09-04 17:14:04 +02:00
Maxime Besson
5e78464d7f Resolve nameid session attribute from local macros (#2280) 2020-08-17 22:06:09 +02:00
Maxime Besson
9ac49b881a Lookup casAppMetaDataOptionsUserAttribute in per-app macros (#2280) 2020-08-17 22:06:09 +02:00
Maxime Besson
52c6edb453 Lookup oidcRPMetaDataOptionsUserIDAttr in per-RP macros (#2280) 2020-08-17 22:06:09 +02:00
Maxime Besson
b2a2575896 Fix incorrect SOAP content type in SAML issuer (#2263) 2020-08-10 15:06:00 +02:00
Clément OUDOT
e544ee7778 Adapt user log in SAML issuer (#2244) 2020-06-18 18:40:13 +02:00
Clément OUDOT
5d5eda9799 Adapt user log in CAS issuer (#2244) 2020-06-18 18:39:53 +02:00
Clément OUDOT
0b3908e6dc Add user log in GET issuer (#2244) 2020-06-18 18:01:33 +02:00
Clément OUDOT
2da914cc90 Publish support for refresh_token grant_type (#2242) 2020-06-18 09:43:56 +02:00
Maxime Besson
33a5496e55 Fix regression in #2085 (#2224) 
Clearing all hidden form values was a mistake as it breaks SAML when the
redirection URL contains a query string. We should keep existing hidden
fields. In the context of OIDC request, we clear them before redirection
to avoid #2085
 2020-05-29 15:51:51 +02:00
Christophe Maudoux
bb9e03d1e5 Tidy 2020-05-24 00:04:33 +02:00
Christophe Maudoux
46bb6fea4f Return PE_SESSIONEXPIRED instead of 400 bad request (#2184) 2020-05-01 19:52:32 +02:00
Maxime Besson
e607d8281f OIDC: do not advertise missing functionality (#1194) 
Back-Channel logout is not supported yet
 2020-04-24 12:15:51 +02:00
Clément OUDOT
138ee4284f Disable cache when registering a new OIDC client (#2058) 2020-04-24 11:52:04 +02:00
Maxime Besson
a3821fc560 Implement additional audiences in ID token (#2177) 2020-04-24 11:10:44 +02:00
Maxime Besson
6ccf078432 Implement Resource Owner Password Credentials grant (#2155) 2020-04-23 17:49:25 +02:00
Maxime Besson
ded6c74fe0 Allow special characters in scope names (#2168) 2020-04-23 14:50:53 +02:00