dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
12,267 Commits 3 Branches 0 Tags 75 MiB
79bd842424
Commit Graph

600 Commits

Author SHA1 Message Date
Maxime Besson
8cfab558c7 Improve detection of SAML Artifact response type (#2648) 2021-10-26 11:44:26 +02:00
Yadd
b5b8f3203c Spelling errors reported by lintian 2021-10-09 09:13:35 +02:00
Christophe Maudoux
ed56a171b9 Tidy (#2620) 2021-09-30 23:13:04 +02:00
Maxime Besson
24a989aa67 Remove unused method in Net::LDAP (#2620) 2021-09-29 11:43:19 +02:00
dcoutadeur dcoutadeur
ebb764a3c5 add more logs for ldap binding (ppolicy extended response code) + remove loadPP (#2620) 2021-09-29 09:36:58 +00:00
David Coutadeur
2c62720c43 display precise error while sending direct SOAP SAML message (#2614) 2021-09-13 10:32:07 +02:00
Christophe Maudoux
d51877a40d Code refactoring 2021-09-10 22:40:33 +02:00
Christophe Maudoux
1901ef8232 Spit Remote and Proxy Auth cookie name parameter (#2613) 2021-09-10 22:40:11 +02:00
Christophe Maudoux
7d40d917af Improve logout message (#2600) 2021-09-09 14:54:40 +02:00
Christophe Maudoux
b66798d159 Test cookieName & Improve code + unit test (#2600) 2021-09-09 14:28:06 +02:00
Christophe Maudoux
258e4fe731 Test URIs (#2600) 2021-09-08 22:10:45 +02:00
Alexandre KARIM
0c33da8cdc Lang, Doc, Sort Tree & Tests(#2600 #2601) 2021-09-08 16:41:53 +02:00
Alexandre KARIM
d8c512547a Test & code refactoring(#2601) 2021-09-06 17:10:55 +02:00
Alexandre KARIM
ad1244f272 Append spoofId parameter (#2601) 2021-09-06 14:18:10 +02:00
Alexandre KARIM
6b85a85026 Append ChoiceParam & ChoiceValue (#2600) 2021-09-06 10:47:06 +02:00
Christophe Maudoux
df8fc578b4 Merge branch 'v2.0' into 2589 2021-08-12 23:47:10 +02:00
Christophe Maudoux
4b592e1f48 Fix regex (#2589) 2021-08-12 22:57:59 +02:00
Maxime Besson
2fac0d9f47 Update LLNG download URL 2021-08-12 17:02:50 +02:00
Christophe Maudoux
a6ecbf1ec8 Fix version & comment 2021-07-26 22:55:27 +02:00
Maxime Besson
0d513ce5b7 Fix CORS on userinfo error response (#2567) 2021-07-26 15:44:20 +02:00
Yadd
83b45db614 Fix versions 2021-06-28 15:36:29 +02:00
Yadd
3732cdcc19 Better URL parsing (#2477) 2021-06-24 14:33:27 +02:00
Maxime Besson
b8e8bbcedd Ignore unknown scopes (#2496) 2021-06-03 18:24:55 +02:00
Maxime Besson
55cdfefd7b Workaround for #2472 2021-06-02 15:36:05 +02:00
Maxime Besson
91cfba275a Skip registration of SAML SP when config has errors (#2525) 2021-06-02 08:34:02 +02:00
Maxime Besson
71a8fc6d16 Skip registration of CAS App when config has errors (#2525) 2021-06-02 08:34:02 +02:00
Maxime Besson
e50db3f083 Skip registration of OIDC RP when config has errors (#2525) 2021-06-02 08:34:01 +02:00
Maxime Besson
15298466ea Fix JWT userinfo in Auth::OpenIDConnect (#2529) 2021-05-31 09:52:02 +02:00
Maxime Besson
cd97d3b922 Refactor $req->{cspFormAction} (#2513) 2021-04-23 09:02:24 +02:00
Maxime Besson
913ebbd556 fix missing domain in child-src during SAML POST logout (#2513) 2021-04-23 09:02:24 +02:00
Maxime Besson
a94fb616bd Allow admin to disallow host-based match (#2506) 2021-04-09 17:51:54 +02:00
Maxime Besson
c1e059eeb3 Use authChoiceAuthBasic to select Choice (#2502) 2021-04-07 16:40:32 +02:00
Christophe Maudoux
4751427105 Fix error level & Improve doc (#1976) 2021-04-01 23:31:48 +02:00
Christophe Maudoux
c0db322ef0 Perl critic 2021-04-01 23:07:58 +02:00
Maxime Besson
d696853556 Factor MAIN_LOGO variable in loadMailTemplate (#2495) 2021-03-31 14:27:23 +02:00
Maxime Besson
20e1f9ded0 Hash JWT to catch tampering (#2419) 
This mechanism's only purpose is to make the introsection endpoint fail
to verify the token when the JWT itself has been tampered with.
 2021-03-30 16:32:14 +02:00
Clément OUDOT
55ab4b5a5f Fix CAS log message on service ticket validation error (#2494) 2021-03-25 16:33:48 +01:00
Maxime Besson
a70051e3fe Remove deprecated base64url implementation 
All our target distros now have base64url in Mime::Base64
 2021-03-03 11:03:19 +01:00
Maxime Besson
bb95e681e6 Tidy 2021-03-03 11:03:19 +01:00
Maxime Besson
e10d1e291c Return granted scopes if different from requested scopes (#2424) 2021-03-03 11:03:19 +01:00
Maxime Besson
2d7f9e34a6 OIDC: Return error if multiple client auth used (#2474) 2021-02-24 17:48:12 +01:00
Maxime Besson
cceb6f767e Use a dedicated function for OIDC error reporting (#2465) 2021-02-18 22:06:39 +01:00
Maxime Besson
a1ed57c035 Add typ header to access token jwt (#2419) 2021-02-03 09:43:35 +01:00
Maxime Besson
1cd7dd3d2c Add hook for access token JWT payload (#2419) 2021-02-01 18:20:32 +01:00
Maxime Besson
d86e8ce0df Refactor: remove extractJWT 2021-02-01 18:20:32 +01:00
Maxime Besson
cb04670003 Refactor checksignature 2021-02-01 18:20:32 +01:00
Maxime Besson
435ba82144 Refactor: rename and move getJWTJSONData 2021-02-01 18:20:32 +01:00
Maxime Besson
6aef1a6317 Refactor: getUserInfo now returns a hash 2021-02-01 18:20:32 +01:00
Maxime Besson
f3c97c22dc Refactor access token id lookup into Common::JWT 2021-02-01 18:20:32 +01:00
Maxime Besson
aa877cf0a3 Let newAccessToken emit JWT (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
dc0bacd6f0 Accept Access Tokens in JWT format (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
acaaf1c749 Refactor buildUserInfo (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
dbddddfba1 Refactor newAccessToken (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
5562d8b1dd Add a function to resolve allowed scopes from rules (#2424) 2021-02-01 16:25:35 +01:00
Maxime Besson
c30b452aa3 Load dynamic scopes from config (#2424) 2021-02-01 16:25:35 +01:00
Maxime Besson
c844cc25b0 Fix SAML logout propagation with Redirect binding (#2449) 2021-01-29 09:45:50 +01:00
Christophe Maudoux
5d56a88ff3 Use strict & Typo 2021-01-23 18:57:24 +01:00
Christophe Maudoux
d6e351ab90 Tidy 2021-01-19 22:45:05 +01:00
Maxime Besson
5b4e533f44 Add _scope and _clientID to portal (#1987) 2021-01-19 17:06:21 +01:00
Maxime Besson
dd5e9ec156 Tidy 2021-01-19 16:44:06 +01:00
Christophe Maudoux
bd1a0bf6da Fix regex (#1976) 2021-01-07 09:54:00 +01:00
Christophe Maudoux
1c45e8a8c0 Merge branch 'v2.0' into findUser 2021-01-05 22:14:28 +01:00
Christophe Maudoux
846d6a3655 Allow wildcard with searching parameters (#1976) & Improve unit tests 2021-01-05 22:08:48 +01:00
Maxime Besson
2a805e06b9 Match CAS service via prefix (#2331) 2021-01-05 17:34:57 +01:00
Maxime Besson
e78f8a2270 Refactor CAS code (#2321) 2021-01-05 17:34:57 +01:00
Christophe Maudoux
fc6ea96954 FindUser with combination (#1976) 2021-01-03 19:00:20 +01:00
Christophe Maudoux
c2c02b4c86 Append REST UserDB unit test (#1976) 2021-01-02 22:50:56 +01:00
Christophe Maudoux
de1be30176 Fix other Backend (#1976) 2021-01-02 19:21:16 +01:00
Christophe Maudoux
597455dfcf FindUser with LDAP & AD & Append unit test (#1976) 2020-12-27 23:37:40 +01:00
Christophe Maudoux
072f68004a Improve debug log & unit tests (#1976) 2020-12-27 18:03:08 +01:00
Christophe Maudoux
0b750fb6cc Append Choice unit tests (#1976) 2020-12-27 14:24:15 +01:00
Christophe Maudoux
c0f71ee0f1 Fix FindUSer with Choice (#1976) 2020-12-27 13:29:10 +01:00
Christophe Maudoux
510a1dc1c2 WIP: UserDB findUser (#1976) 2020-12-22 17:02:51 +01:00
Christophe Maudoux
bfcdd370df Merge branch 'v2.0' into findUser 2020-12-21 21:11:55 +01:00
Maxime Besson
ed0be42c93 Merge branch 'WIP-plugin-hooks-2359' into 'v2.0' 
Plugin hook system to extend issuers (and maybe more)

See merge request lemonldap-ng/lemonldap-ng!166
 2020-12-21 16:35:03 +01:00
Christophe Maudoux
4d04672c20 WIP: FindUser skeleton (#1976) 2020-12-20 22:54:35 +01:00
Clément OUDOT
8211850be7 Better userLogger messages for password change (#2393) 2020-11-29 18:02:13 +01:00
Maxime Besson
f49c1adf17 add oidcGenerateIDToken hook (#2359) 2020-11-27 14:00:58 +01:00
Maxime Besson
daef0cf776 add oidcGenerateUserInfoResponse hook (#2359) 2020-11-27 14:00:58 +01:00
Christophe Maudoux
dfc68f9f98 Use Mouse instead of Exporter 2020-11-16 21:54:54 +01:00
Christophe Maudoux
c742d8320e Set user and oldpassword fields into reset password form & Improve unit tests (#2377) 2020-11-09 13:27:16 +01:00
Maxime Besson
fa2301ab0e Force OIDC claim types according to config (#2330) 2020-11-06 19:00:52 +01:00
Maxime Besson
367f1bc5ad Add LDAP IO timeout (#2267) 2020-10-27 16:01:39 +01:00
Maxime Besson
fcb8e6b3c5 Use keepalive for LDAP connections (#2344) 2020-10-09 12:22:28 +02:00
Maxime Besson
5606d0ed6f Add support for SHA384 and SHA512 (#2322) 2020-10-07 15:31:57 +02:00
Maxime Besson
1234d5294f Let users override default SAML signature method (#2319) 2020-10-07 15:31:27 +02:00
Christophe Maudoux
055ec69b92 Code cleaning & refactoring 2020-10-02 20:40:41 +02:00
Maxime Besson
89ec2b09b1 Improve SMTP error reporting (#2293) 2020-09-16 17:29:49 +02:00
Maxime Besson
1db67d735a Put mail transport code in Common so the manager can use it (#2293,#2304) 2020-09-16 17:27:00 +02:00
Xavier Guimard
e110517942 Fix misspelled parameter in call to ldap->search() (Fixes: #2310) 2020-09-10 08:40:23 +02:00
Maxime Besson
d31a14c303 Avoid accidentally creating an empty session (#2262) 2020-09-09 12:05:09 +02:00
Maxime Besson
683b5a7861 Resume logout when returning from Auth::SAML IDP (#2262) 2020-09-08 15:47:58 +02:00
Maxime Besson
3771ead3db Make LDAP auth/userdb/pass modules use ldapVerify (#2250) 2020-09-05 12:21:37 +02:00
Xavier Guimard
c8df084247 Update versions 2020-09-04 17:59:00 +02:00
Maxime Besson
ffb7c7430d Fix encoding workaround in recursive group search (#2306) 2020-09-03 15:59:18 +02:00
Christophe Maudoux
779fd983e5 Typo (#2302) 2020-08-28 21:56:54 +02:00
Maxime Besson
52c6edb453 Lookup oidcRPMetaDataOptionsUserIDAttr in per-RP macros (#2280) 2020-08-17 22:06:09 +02:00
Maxime Besson
b2a2575896 Fix incorrect SOAP content type in SAML issuer (#2263) 2020-08-10 15:06:00 +02:00
Maxime Besson
a96820d6f6 Set secure flag when removing cookie (#2272) 2020-08-10 12:10:33 +02:00
dcoutadeur
0045daa592 fix increase log level for mail sending and password reset (#2265) 2020-07-28 15:04:55 +02:00