Maxime Besson
09dda56cb8
Refactor: rename method in issuer
2021-02-01 18:20:32 +01:00
Maxime Besson
435ba82144
Refactor: rename and move getJWTJSONData
2021-02-01 18:20:32 +01:00
Maxime Besson
aa877cf0a3
Let newAccessToken emit JWT ( #2419 )
2021-02-01 18:15:55 +01:00
Maxime Besson
dc0bacd6f0
Accept Access Tokens in JWT format ( #2419 )
2021-02-01 18:15:55 +01:00
Maxime Besson
dbddddfba1
Refactor newAccessToken ( #2419 )
2021-02-01 18:15:55 +01:00
Maxime Besson
5303b4fc3e
Fix error format when sending an expired refresh token
2021-02-01 18:15:55 +01:00
Maxime Besson
4c1f49a90f
Use dynamic scope in issuer ( #2424 )
2021-02-01 16:25:35 +01:00
Christophe Maudoux
24cec1e08f
Fix warning
2021-01-23 23:27:46 +01:00
Maxime Besson
25fb8ca0f0
Implement client credentials grant ( #1987 )
2021-01-19 17:06:21 +01:00
Maxime Besson
5e439b2f24
Advertise client credentials grant ( #1987 )
2021-01-19 16:47:21 +01:00
Maxime Besson
dd5e9ec156
Tidy
2021-01-19 16:44:06 +01:00
Christophe Maudoux
a93a85435d
Improve debug msg
2021-01-07 10:04:15 +01:00
Maxime Besson
e78f8a2270
Refactor CAS code ( #2321 )
2021-01-05 17:34:57 +01:00
Maxime Besson
49905d4759
Remove debug log
2020-12-30 16:34:40 +01:00
Maxime Besson
4eeef91588
Add SAML ACS to environment ( #2427 )
2020-12-29 14:17:06 +01:00
Maxime Besson
daef0cf776
add oidcGenerateUserInfoResponse hook ( #2359 )
2020-11-27 14:00:58 +01:00
Maxime Besson
faadb3f059
add oidcGotRequest hook ( #2359 )
2020-11-27 14:00:58 +01:00
Maxime Besson
c19be1d501
Tidy SAML issuer ( #2359 )
2020-11-27 14:00:58 +01:00
Maxime Besson
a706f8a470
add samlBuildLogoutResponse hook ( #2359 )
2020-11-27 14:00:58 +01:00
Maxime Besson
ddc43f7c9c
add samlGotLogoutRequest hook ( #2359 )
2020-11-27 14:00:58 +01:00
Maxime Besson
2dba11e6b3
Add samlBuildAuthnResponse hook ( #2359 )
2020-11-27 14:00:58 +01:00
Maxime Besson
de1d6e205b
Add samlGotAuthnRequest hook ( #2359 )
2020-11-27 14:00:58 +01:00
Christophe Maudoux
c742d8320e
Set user and oldpassword fields into reset password form & Improve unit tests ( #2377 )
2020-11-09 13:27:16 +01:00
Christophe Maudoux
e704fe24ea
Fix warning if no path given & code refactoring
2020-10-26 19:21:54 +01:00
Maxime Besson
277e0872fa
Fix missing session timeouts ( #2262 )
2020-09-09 12:04:17 +02:00
Maxime Besson
d598513504
Fix warning when resolving cas target authlevel ( #2309 )
2020-09-09 10:37:00 +02:00
Maxime Besson
f9c7d0bdf7
saml proxy logout: Delay info until we return from idp ( #2262 )
2020-09-08 17:25:11 +02:00
Maxime Besson
683b5a7861
Resume logout when returning from Auth::SAML IDP ( #2262 )
2020-09-08 15:47:58 +02:00
Maxime Besson
24297aa942
Redirect to external provider for logout ( #2262 )
2020-09-08 14:16:49 +02:00
Maxime Besson
8b5ddf6e43
Perform authLogout step during SAML SLO ( #2262 )
2020-09-08 14:16:49 +02:00
Maxime Besson
bd110e7de6
cas issuer: check auth level and reauth if insufficient ( #2124 )
2020-09-04 17:15:34 +02:00
Maxime Besson
ce5c19e3f4
saml issuer: check auth level and reauth if insufficient ( #2124 )
2020-09-04 17:15:34 +02:00
Maxime Besson
7a36489b73
oidc issuer: check auth level and reauth if insufficient ( #2124 )
2020-09-04 17:15:34 +02:00
Maxime Besson
8bfa5179cc
Issuers: Store required auth level in pdata ( #2124 )
2020-09-04 17:14:04 +02:00
Maxime Besson
5e78464d7f
Resolve nameid session attribute from local macros ( #2280 )
2020-08-17 22:06:09 +02:00
Maxime Besson
9ac49b881a
Lookup casAppMetaDataOptionsUserAttribute in per-app macros ( #2280 )
2020-08-17 22:06:09 +02:00
Maxime Besson
52c6edb453
Lookup oidcRPMetaDataOptionsUserIDAttr in per-RP macros ( #2280 )
2020-08-17 22:06:09 +02:00
Maxime Besson
b2a2575896
Fix incorrect SOAP content type in SAML issuer ( #2263 )
2020-08-10 15:06:00 +02:00
Clément OUDOT
e544ee7778
Adapt user log in SAML issuer ( #2244 )
2020-06-18 18:40:13 +02:00
Clément OUDOT
5d5eda9799
Adapt user log in CAS issuer ( #2244 )
2020-06-18 18:39:53 +02:00
Clément OUDOT
0b3908e6dc
Add user log in GET issuer ( #2244 )
2020-06-18 18:01:33 +02:00
Clément OUDOT
2da914cc90
Publish support for refresh_token grant_type ( #2242 )
2020-06-18 09:43:56 +02:00
Maxime Besson
33a5496e55
Fix regression in #2085 ( #2224 )
...
Clearing all hidden form values was a mistake as it breaks SAML when the
redirection URL contains a query string. We should keep existing hidden
fields. In the context of OIDC request, we clear them before redirection
to avoid #2085
2020-05-29 15:51:51 +02:00
Christophe Maudoux
bb9e03d1e5
Tidy
2020-05-24 00:04:33 +02:00
Christophe Maudoux
46bb6fea4f
Return PE_SESSIONEXPIRED instead of 400 bad request ( #2184 )
2020-05-01 19:52:32 +02:00
Maxime Besson
e607d8281f
OIDC: do not advertise missing functionality ( #1194 )
...
Back-Channel logout is not supported yet
2020-04-24 12:15:51 +02:00
Clément OUDOT
138ee4284f
Disable cache when registering a new OIDC client ( #2058 )
2020-04-24 11:52:04 +02:00
Maxime Besson
a3821fc560
Implement additional audiences in ID token ( #2177 )
2020-04-24 11:10:44 +02:00
Maxime Besson
6ccf078432
Implement Resource Owner Password Credentials grant ( #2155 )
2020-04-23 17:49:25 +02:00
Maxime Besson
ded6c74fe0
Allow special characters in scope names ( #2168 )
2020-04-23 14:50:53 +02:00