Xavier Guimard
|
1cd5a706c9
|
Avoid session conflict between Issuer and Auth OIDC (#1468)
|
2018-06-30 07:51:22 +02:00 |
|
Xavier Guimard
|
a5cc73a54c
|
Avoid session conflict between Issuer and Auth CAS (#1468)
|
2018-06-30 07:44:05 +02:00 |
|
Xavier Guimard
|
33712dcf13
|
Set ignore system for issuers (#1468)
|
2018-06-29 14:31:43 +02:00 |
|
Xavier Guimard
|
e6ad687618
|
Change session key names between Auth and Issuer (SAML #1468)
|
2018-06-29 06:50:31 +02:00 |
|
Xavier Guimard
|
8596b339e8
|
Use build_urlencoded everywhere (#1461)
|
2018-06-26 19:13:06 +02:00 |
|
Clément OUDOT
|
3ba56c41b5
|
Manage CAS gateway mode (#1425)
|
2018-06-25 10:10:22 +02:00 |
|
Clément OUDOT
|
808922a388
|
Store CAS app in ENV (#1161)
|
2018-06-23 10:18:55 +02:00 |
|
Xavier Guimard
|
5129647d04
|
Don't add RP if already connected (#1431)
|
2018-06-21 17:43:36 +02:00 |
|
Clément OUDOT
|
0c8ab9a5f6
|
Apply patch to other location (#1449)
|
2018-06-13 10:50:57 +02:00 |
|
Clément OUDOT
|
dc978f5cc2
|
Remove bak file (#1449)
|
2018-06-13 10:37:01 +02:00 |
|
Clément OUDOT
|
ee7cf94a95
|
Fix debug message for artifact endpoint (#1449)
|
2018-06-13 10:34:23 +02:00 |
|
Xavier Guimard
|
2f008fc490
|
Fix bad usage of constants (#1449)
|
2018-06-13 06:34:08 +02:00 |
|
Xavier Guimard
|
772a69d90e
|
Missing error catch (#595)
|
2018-06-06 21:05:43 +02:00 |
|
Xavier Guimard
|
86283952b0
|
Fix partially #1422
|
2018-05-15 19:46:02 +02:00 |
|
Xavier Guimard
|
b0d16d653d
|
Fix renew problem with CAS (fixes: #1422)
|
2018-05-14 21:33:21 +02:00 |
|
Clément OUDOT
|
bd33897a52
|
Fix multi values separator (#1420)
|
2018-05-14 12:21:17 +02:00 |
|
Clément OUDOT
|
a27ef657b7
|
Rewrite code for CAS proxy (#1420)
|
2018-05-14 12:15:26 +02:00 |
|
Xavier Guimard
|
e0d83f5268
|
Fix some errors (#1395)
|
2018-03-12 06:43:47 +01:00 |
|
Clément OUDOT
|
a129f1e296
|
Allow CAS p3 URLs (#1362)
|
2018-02-08 22:40:06 +01:00 |
|
Xavier Guimard
|
0d491e96f4
|
Use same name for SP rules (#1330)
|
2017-11-11 13:51:48 +01:00 |
|
Clément Oudot
|
c6137d12d8
|
Possibility to override SAML Issuer value with domain (#1324)
|
2017-11-06 16:36:45 +00:00 |
|
Clément Oudot
|
251e78d5ab
|
Allow SLO without SessionIndex (#1326)
|
2017-11-03 08:23:29 +00:00 |
|
Xavier Guimard
|
a09af34412
|
Missing $req in updatePersistentSession calls (fixes: #1319)
|
2017-10-31 12:04:05 +00:00 |
|
Clément Oudot
|
80db34a4f2
|
Remove unused 'no strict subs' (#595)
|
2017-10-30 13:47:39 +00:00 |
|
Xavier Guimard
|
38df1cff91
|
Better Lasso import (#595)
|
2017-10-26 09:16:44 +00:00 |
|
Xavier Guimard
|
2dbdf55404
|
Typo (#1302)
|
2017-10-26 08:14:58 +00:00 |
|
Xavier Guimard
|
6072a31152
|
Move OIDC HTML fragments to tpl (#1302)
|
2017-10-11 11:51:50 +00:00 |
|
Xavier Guimard
|
46364da414
|
Move some HTML fragments to templates (#1302)
|
2017-10-10 11:04:40 +00:00 |
|
Xavier Guimard
|
fc582377ff
|
Clean SAML storage code (#1305)
|
2017-09-27 05:00:00 +00:00 |
|
Xavier Guimard
|
10177b4bfd
|
Default storage values (may fix #1305)
|
2017-09-26 20:15:50 +00:00 |
|
Xavier Guimard
|
2787c33c01
|
Revert r6726 (#1305)
|
2017-09-26 19:54:45 +00:00 |
|
Xavier Guimard
|
69ece7740d
|
Update debian/control
|
2017-09-26 19:11:04 +00:00 |
|
Xavier Guimard
|
89f5783d16
|
More tests (#1305)
|
2017-09-26 17:50:38 +00:00 |
|
Xavier Guimard
|
306af4fa36
|
Normalize URL to be tolerant to SAML Path (references #1304)
|
2017-09-22 14:20:55 +00:00 |
|
Clément Oudot
|
c5368caac2
|
Manage CAS logout service (#1298)
|
2017-09-11 15:26:44 +00:00 |
|
Clément Oudot
|
aecc815e4e
|
Do not use encrypt/decrypt for SAML session index (#1261)
|
2017-07-12 16:11:42 +00:00 |
|
Xavier Guimard
|
fefd723226
|
Avoid some warnings
|
2017-07-11 11:50:21 +00:00 |
|
Clément Oudot
|
ab3661fbf9
|
Fix translation of OIDC items in confirm.tpl (#1250)
|
2017-06-28 15:41:31 +00:00 |
|
Xavier Guimard
|
012cb3c23e
|
May fix #1236
|
2017-06-12 19:10:37 +00:00 |
|
Clément Oudot
|
318d43e07f
|
Check logout redirect URI (#1233)
|
2017-05-18 14:52:38 +00:00 |
|
Clément Oudot
|
851311ffe0
|
Prevent redirect before verifying authorized URI (#1233)
|
2017-05-16 15:26:28 +00:00 |
|
Xavier Guimard
|
74f780733d
|
Use App ExportedVars if defined (#1183)
|
2017-04-14 07:40:01 +00:00 |
|
Xavier Guimard
|
b83374b274
|
New Issuer::CAS (#1183)
|
2017-04-13 19:17:29 +00:00 |
|
Xavier Guimard
|
8e4dc89918
|
Some errors (#595)
|
2017-04-07 04:39:55 +00:00 |
|
Xavier Guimard
|
e7c3561451
|
Some errors (#595)
|
2017-04-07 04:39:53 +00:00 |
|
Xavier Guimard
|
2e59ea441a
|
Replace request management in handler (#1044)
Note: this is a big change, more tests needed
|
2017-03-28 21:07:49 +00:00 |
|
Xavier Guimard
|
775f1da607
|
Reauth for OIDC (#1204)
|
2017-03-28 17:09:46 +00:00 |
|
Xavier Guimard
|
c761cc5781
|
Mark some properties "lazy" to be sure conf is intialized (#595)
|
2017-03-27 16:51:18 +00:00 |
|
Xavier Guimard
|
20717fcce0
|
Verify SAML reauth (#595)
|
2017-03-26 05:26:25 +00:00 |
|
Xavier Guimard
|
d93130d168
|
Adapt SAML forceAuth to new portal (#595)
|
2017-03-24 18:04:46 +00:00 |
|
Xavier Guimard
|
6a651b5bee
|
Try to implement SAML reauth (#595)
|
2017-03-23 20:49:52 +00:00 |
|
Xavier Guimard
|
7e81e1b1e0
|
Add OIDC-RP rule (#1161)
|
2017-03-22 20:47:07 +00:00 |
|
Xavier Guimard
|
62528e8b6a
|
Add SAML-SP rule (#1161)
|
2017-03-22 20:20:30 +00:00 |
|
Xavier Guimard
|
077455e015
|
Update TODO list
|
2017-03-22 14:10:21 +00:00 |
|
Xavier Guimard
|
51665b41f8
|
Validate OIDC-RP-to-SAML-IdP with POST (#1113)
|
2017-03-21 19:36:10 +00:00 |
|
Xavier Guimard
|
919a706efa
|
Restore OpenID-2 (#1113)
|
2017-03-21 16:06:44 +00:00 |
|
Xavier Guimard
|
6dba4fd1c2
|
Better request management in issuers (#595)
|
2017-03-21 06:23:58 +00:00 |
|
Xavier Guimard
|
60796fa6a1
|
SAML in progress (#595)
|
2017-03-20 06:16:56 +00:00 |
|
Clément Oudot
|
272296841a
|
Force AllowCreate in NameIDPolicy (#1200)
|
2017-03-16 18:39:00 +00:00 |
|
Clément Oudot
|
efb776a7bf
|
Remove unused icons (#1184)
|
2017-03-14 14:40:09 +00:00 |
|
Xavier Guimard
|
c73dce5c3f
|
Typo (#1194)
|
2017-03-11 07:16:27 +00:00 |
|
Xavier Guimard
|
7f460429e1
|
OIDC OP2RP logout in progress (#1194)
|
2017-03-10 11:39:19 +00:00 |
|
Xavier Guimard
|
8a5f8d96ef
|
Front-channel logout (#1032)
|
2017-03-09 21:56:51 +00:00 |
|
Xavier Guimard
|
2c5dddde8a
|
Unused constant (#595)
|
2017-03-09 21:56:50 +00:00 |
|
Xavier Guimard
|
4d9a8da274
|
Register OIDC associations (#1032)
|
2017-03-09 21:56:47 +00:00 |
|
Xavier Guimard
|
179f6e0381
|
Follow OIDC spec: bad error codes (closes: #1191)
|
2017-03-09 21:56:43 +00:00 |
|
Xavier Guimard
|
6c042c5660
|
Launch other logouts in OIDC (#1032)
|
2017-03-08 22:49:00 +00:00 |
|
Xavier Guimard
|
244fad96a0
|
no strict (#595)
|
2017-03-08 22:48:57 +00:00 |
|
Xavier Guimard
|
f63e5eaca1
|
Add version in conf (to be used later with #797)
|
2017-03-07 17:49:46 +00:00 |
|
Xavier Guimard
|
64e5b3c53c
|
Import local configuration for conf access (#595)
|
2017-03-06 12:18:06 +00:00 |
|
Xavier Guimard
|
96263e0e65
|
Clean repo
|
2017-03-03 17:25:03 +00:00 |
|
Xavier Guimard
|
59970dd3d6
|
Typo (#595)
|
2017-03-03 12:17:15 +00:00 |
|
Xavier Guimard
|
8c3ff5fb0b
|
Minimize Apache::Session tie/untie (closes: #1173)
|
2017-02-20 21:00:05 +00:00 |
|
Xavier Guimard
|
271a30ec28
|
Import SAML SP parameters in $req->env (closes: #1157)
|
2017-02-16 08:24:02 +00:00 |
|
Xavier Guimard
|
ddc7e01a08
|
Try to implement re-auth (#595)
@coudot: must be tested ;-)
|
2017-02-15 19:03:59 +00:00 |
|
Clément Oudot
|
c702ba763b
|
Export CAS request parameters in %ENV (#1158)
|
2017-02-15 14:59:56 +00:00 |
|
Xavier Guimard
|
b829b6c19b
|
Replace userNotice/Error... by userLogger (#857)
|
2017-02-15 14:16:59 +00:00 |
|
Clément Oudot
|
80a03c6290
|
Add more OIDC request parameters in %ENV (#1156)
|
2017-02-15 10:45:57 +00:00 |
|
Xavier Guimard
|
deb28bc9cb
|
Replace lmLog by logger-> (#857)
|
2017-02-15 06:41:50 +00:00 |
|
Clément Oudot
|
21f59356e5
|
Return invalid_grant when provided code is invalid (#1142)
|
2017-02-14 14:28:53 +00:00 |
|
Xavier Guimard
|
18a51d858a
|
Replace %ENV by $req->env (#1156)
|
2017-02-09 08:05:55 +00:00 |
|
Clément Oudot
|
b938f523e4
|
Put OIDC request parameters in %ENV (#1156)
|
2017-02-08 13:51:46 +00:00 |
|
Clément Oudot
|
6009adc71b
|
Fix typo on acr_values (#1155)
|
2017-02-08 10:10:16 +00:00 |
|
Xavier Guimard
|
8936677deb
|
Avoid info() wrapper (#595)
|
2017-02-07 17:57:19 +00:00 |
|
Xavier Guimard
|
81b47b7988
|
Declare PE_BADURL (#1142)
|
2017-01-24 21:02:06 +00:00 |
|
Clément Oudot
|
77e98dd26f
|
Publish minimal list of supported claims in OIDC metatada (#1142)
|
2017-01-24 16:53:59 +00:00 |
|
Clément Oudot
|
53014dd483
|
Do not redirect on unauthorized OIDC redirection URI (#1142)
|
2017-01-24 16:19:18 +00:00 |
|
Xavier Guimard
|
a865cea016
|
Little change (#595)
|
2017-01-24 05:10:57 +00:00 |
|
Xavier Guimard
|
9827d0e888
|
Disable CSP for frames (#1138)
|
2017-01-20 06:29:49 +00:00 |
|
Xavier Guimard
|
1491ad4515
|
Disable CSP for frames (#1138)
|
2017-01-20 06:19:54 +00:00 |
|
Xavier Guimard
|
64a6cb6dbc
|
Remove inline CSS in perl (#1137)
|
2017-01-19 13:20:02 +00:00 |
|
Xavier Guimard
|
1b88459c31
|
Remove samlIDPSSODescriptorSingleSignOnServiceSOAP from everywhere
|
2017-01-13 08:17:20 +00:00 |
|
Xavier Guimard
|
3c5cb018ef
|
Compact conf
|
2017-01-11 21:10:13 +00:00 |
|
Xavier Guimard
|
b24343bd10
|
SOAP server (#970)
|
2017-01-07 18:04:20 +00:00 |
|
Xavier Guimard
|
99d294d7c4
|
Replace read_body by Plack::Request::content() (#595)
|
2017-01-07 07:45:36 +00:00 |
|
Xavier Guimard
|
99932aa08c
|
OpenID-2 seems ready (#595)
|
2017-01-06 06:22:31 +00:00 |
|
Xavier Guimard
|
61eddee9f7
|
OpenID 2 in progress (#595)
|
2017-01-06 06:02:52 +00:00 |
|
Xavier Guimard
|
c834aa7c89
|
OpenID-2 in progress (#595)
|
2017-01-05 22:05:41 +00:00 |
|
Xavier Guimard
|
7805387aff
|
OpenID-2 in progress (#595)
|
2017-01-05 21:45:34 +00:00 |
|
Xavier Guimard
|
e4bf8ac619
|
OpenID2 in progress (#595)
|
2017-01-05 16:44:16 +00:00 |
|
Xavier Guimard
|
0ef263b33a
|
OpenID 2 in progress (#595)
|
2017-01-05 11:55:46 +00:00 |
|
Xavier Guimard
|
b94a337a05
|
Optimize checksession endpoint (#595)
|
2017-01-04 22:19:17 +00:00 |
|
Xavier Guimard
|
83c3b50355
|
Update POD (#595)
|
2017-01-04 20:51:46 +00:00 |
|
Xavier Guimard
|
a09d12031e
|
Some big changes (#595)
Replace uri_escape by WWW::Form::UrlEncoded
Replace PSGI:Request by inheritance from Plack::Request
|
2017-01-04 16:36:54 +00:00 |
|
Xavier Guimard
|
1d7d95941d
|
OIDC tests (#595)
|
2017-01-03 19:00:35 +00:00 |
|
Xavier Guimard
|
44954cd0f9
|
OIDC in progress (#595)
|
2017-01-03 13:44:40 +00:00 |
|
Xavier Guimard
|
b436379874
|
Revert "Update token reg (#595)"
This reverts commit 606b1ae453c04d2e413a4f13e1044444de0634dd.
|
2017-01-03 13:44:22 +00:00 |
|
Xavier Guimard
|
6053003576
|
Update token reg (#595)
|
2017-01-03 12:54:25 +00:00 |
|
Xavier Guimard
|
937a87c904
|
Update (c)
|
2017-01-02 22:21:40 +00:00 |
|
Xavier Guimard
|
3e81f56a0f
|
OIDC checksession (#595)
|
2017-01-02 20:20:42 +00:00 |
|
Xavier Guimard
|
31ac440377
|
OIDC in progress (#595)
|
2017-01-01 17:56:46 +00:00 |
|
Xavier Guimard
|
cdbe7d89e9
|
OIDC in progress (#595)
|
2017-01-01 09:43:48 +00:00 |
|
Xavier Guimard
|
4fc1f6afa2
|
OIDC metadata (#595)
|
2016-12-31 13:08:39 +00:00 |
|
Xavier Guimard
|
438289b4f4
|
OIDC written (not tested) (#595)
|
2016-12-31 07:57:24 +00:00 |
|
Xavier Guimard
|
ef8f8e59f7
|
OIDC in progress (#595)
|
2016-12-30 08:39:15 +00:00 |
|
Xavier Guimard
|
3c8e3fbe9d
|
OIDC in progress (#595)
|
2016-12-30 08:39:13 +00:00 |
|
Xavier Guimard
|
9373f3eaa7
|
OIDC issuer skeleton (#595)
|
2016-12-30 08:01:55 +00:00 |
|
Xavier Guimard
|
10d4f39511
|
SAML OK with artifact + SOAP SLO (#595)
|
2016-12-27 11:17:25 +00:00 |
|
Xavier Guimard
|
e09eb9c237
|
SAML SLO in progress (#595)
|
2016-12-27 08:40:12 +00:00 |
|
Xavier Guimard
|
86b5d7a8db
|
SAML attribute server (#595)
Note: not fully tested
|
2016-12-26 14:35:30 +00:00 |
|
Xavier Guimard
|
0da228ff35
|
make tidy
|
2016-12-26 09:23:35 +00:00 |
|
Xavier Guimard
|
41afc83760
|
SAML in progress (#595)
|
2016-12-25 15:41:28 +00:00 |
|
Xavier Guimard
|
aba27302f7
|
Split SLO from run [SAML] (#595)
|
2016-12-25 15:41:23 +00:00 |
|
Xavier Guimard
|
47f9865efb
|
SAML in progress (#595)
|
2016-12-23 16:03:36 +00:00 |
|
Xavier Guimard
|
207ab38839
|
Missing auth path (#595)
|
2016-12-23 10:02:11 +00:00 |
|
Xavier Guimard
|
3d23dc272d
|
CAS in progress (#595)
|
2016-12-22 22:06:13 +00:00 |
|
Xavier Guimard
|
7281481802
|
CAS in progress (#595)
|
2016-12-22 20:18:59 +00:00 |
|
Xavier Guimard
|
13514267e0
|
CAS in progress (#595)
NB: I know that test is broken for now
|
2016-12-22 18:41:11 +00:00 |
|
Xavier Guimard
|
5ac69452df
|
CAS in progress (#595)
|
2016-12-22 08:40:50 +00:00 |
|
Xavier Guimard
|
d01e3472ff
|
CAS in progress (#595)
|
2016-12-22 06:05:14 +00:00 |
|
Xavier Guimard
|
de969f19c4
|
CAS in progress (#595)
|
2016-12-22 05:57:44 +00:00 |
|
Xavier Guimard
|
747cd86047
|
CAS in progress (#595)
|
2016-12-21 22:39:12 +00:00 |
|
Xavier Guimard
|
ffd9ca4387
|
CAS in progress (#595)
|
2016-12-21 18:06:23 +00:00 |
|
Xavier Guimard
|
036ef59256
|
CAS in progress (#595)
|
2016-12-21 05:32:38 +00:00 |
|
Xavier Guimard
|
51e7e6bc79
|
Starting CAS IdP (#595)
|
2016-12-20 12:19:26 +00:00 |
|
Xavier Guimard
|
c7da9254a2
|
More pod (#595)
|
2016-12-20 09:39:06 +00:00 |
|
Xavier Guimard
|
909391ffc7
|
Spelling errors
|
2016-12-19 20:47:44 +00:00 |
|
Xavier Guimard
|
dfcb0f8605
|
More doc (#595)
|
2016-12-19 16:15:31 +00:00 |
|
Xavier Guimard
|
1b03f1fba0
|
Use routes for SAML IdP (#595)
|
2016-12-19 06:14:46 +00:00 |
|
Xavier Guimard
|
7b36248c45
|
SAML tests (#595)
|
2016-12-19 05:31:51 +00:00 |
|
Xavier Guimard
|
ec83414576
|
SAML in progress (#595)
To do: authSAML SOAP server
|
2016-12-17 07:58:53 +00:00 |
|
Xavier Guimard
|
b57d76c0ce
|
SAML in (big) progress (#595)
|
2016-12-15 21:22:15 +00:00 |
|
Xavier Guimard
|
a829958d3d
|
SAML in progress (#595)
|
2016-12-15 20:34:56 +00:00 |
|
Xavier Guimard
|
e259c534c2
|
SAML in progress (#595)
|
2016-12-15 05:55:09 +00:00 |
|
Xavier Guimard
|
6e29bbe2a4
|
More debug (#595)
|
2016-12-14 14:13:57 +00:00 |
|
Xavier Guimard
|
ba1d1e9720
|
SAML idp logout (#595)
|
2016-12-14 08:49:30 +00:00 |
|
Xavier Guimard
|
329993a40a
|
SLO Soap server in progress [SAML] (#595)
|
2016-12-14 05:51:45 +00:00 |
|
Xavier Guimard
|
0380452082
|
SLO Soap server [SAML] (#595)
|
2016-12-13 19:21:36 +00:00 |
|
Xavier Guimard
|
2a3001a97b
|
SAML Artifact in progress (#595)
|
2016-12-07 22:30:00 +00:00 |
|
Xavier Guimard
|
a8fd940407
|
SAML Redirect in progress (#595)
|
2016-12-05 21:34:06 +00:00 |
|
Xavier Guimard
|
3e0c1b5633
|
Store initial method in issuers (#595)
|
2016-12-05 20:53:34 +00:00 |
|
Xavier Guimard
|
6c7e797a3a
|
Avoid some warnings (#LEMONDAP-595)
|
2016-12-02 16:29:04 +00:00 |
|
Xavier Guimard
|
c550606f50
|
SAML in progress (#595)
|
2016-11-29 21:10:00 +00:00 |
|
Xavier Guimard
|
e5fdcbc3fd
|
SAML in progress (#595)
|
2016-11-28 21:15:57 +00:00 |
|
Xavier Guimard
|
605514e7bc
|
Avoid some warnings (#595)
|
2016-11-20 05:35:03 +00:00 |
|
Xavier Guimard
|
b3e18e2f35
|
SAML in progress (#595)
|
2016-11-16 15:27:01 +00:00 |
|
Clément Oudot
|
30aa96fc82
|
Prevent Lasso error in IDP initiated code (#1101)
|
2016-11-14 10:09:28 +00:00 |
|
Clément Oudot
|
14ac79ef48
|
Force NameID Format and AllowCreate in IDP initiated request (#1101)
|
2016-10-27 09:15:25 +00:00 |
|
Xavier Guimard
|
ec758e7696
|
Working on SAML (#595)
|
2016-09-27 19:43:38 +00:00 |
|
Xavier Guimard
|
f483500222
|
IssuerGet login is working (#595)
|
2016-06-12 19:26:14 +00:00 |
|
Xavier Guimard
|
ed5882bbe5
|
IssuerGet skeleton
|
2016-06-12 16:52:37 +00:00 |
|