dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
10,338 Commits 3 Branches 0 Tags 75 MiB
79d0a4c936
Commit Graph

722 Commits

Author SHA1 Message Date
Christophe Maudoux
d53cddae39 Better fix & De-duplicate groups (#2129) 2020-04-06 19:05:50 +02:00
Clément OUDOT
c87a36e3ca Do not run setGroups after 2FA (#2129) 2020-04-06 18:36:51 +02:00
Christophe Maudoux
37a9360625 Append PPolicyNone message & Unit test & Update manifest 2020-04-05 12:19:05 +02:00
Christophe Maudoux
d6d9d6031d Append debug log (#1796) 2020-04-03 18:56:11 +02:00
Christophe Maudoux
f469180663 Improve unit test '#2130) 2020-04-03 00:21:15 +02:00
Christophe Maudoux
6382c35cd4 Update PP display (#2130) 2020-04-02 13:30:22 +02:00
Christophe Maudoux
71ba189edc Append special characters password policy (#2130) 2020-04-02 12:14:05 +02:00
Christophe Maudoux
2a34d1ae8c Update sessionInfo if second factor succeeds & Improve unit tests (#2129) 2020-04-01 15:43:46 +02:00
Clément OUDOT
9620e6870a Possibility to preselect choice tab (#2115) 2020-03-11 11:46:14 +01:00
Christophe Maudoux
c9b2eff039 More explicit error message (#2108) 2020-03-05 22:14:02 +01:00
Christophe Maudoux
903d3540e4 Show lang flags with redirect template 2020-03-02 14:30:58 +01:00
Christophe Maudoux
a4a73ca907 Don t prompt second factor after a failed log in attempt (#2088) 2020-02-27 14:49:27 +01:00
Christophe Maudoux
e89c017ff6 Increase lock time after each failed login attempt (#2088) 2020-02-24 22:20:40 +01:00
Christophe Maudoux
18b43cacfc Avoid unprotected urldc host with wildcard-protected hosts (#2101) 2020-02-22 00:13:52 +01:00
Clément OUDOT
53263c7f10 Remove references to keepPdata = 1 in code (#2099) 2020-02-21 09:29:10 +01:00
Xavier Guimard
4459a47f76 Tidy 2020-02-20 23:37:05 +01:00
Xavier Guimard
a76cba3856 Update versions 2020-02-20 23:37:01 +01:00
Maxime Besson
47068c51b8 Revert "Prevent portal from crashing when keepPdata=1 (#1893)" 
This reverts commit 2b4defb2a9 and
implements a fix "at the source" instead. Should fix #2099.
 2020-02-20 22:24:26 +01:00
Christophe Maudoux
57b546d112 Fix lmConfigEditor logger error (#2059) 2020-02-16 12:58:12 +01:00
Christophe Maudoux
8129d76d63 Improve code 2020-02-13 23:27:13 +01:00
Christophe Maudoux
2f04ffcc4a WIP - Notifications explorer (#2071) 2020-02-09 17:47:25 +01:00
Christophe Maudoux
dd9e849b3e Don t send params with GET method (#2081) 2020-02-07 21:39:58 +01:00
Maxime Besson
68be974e51 Add option to compute userdb groups before macros (#1877) 2020-02-05 15:39:45 +01:00
Maxime Besson
f997a26e41 Fix form method when displaying info in autoPost (#2080) 2020-01-30 20:43:04 +01:00
Clément OUDOT
faa65c4abf Options to add a custom CSS file (#2076) 2020-01-28 15:14:24 +01:00
Maxime Besson
5149ba8118 Make debug message less confusing when portal status is <0 2020-01-23 20:37:18 +01:00
Christophe Maudoux
8279733fbd Update Process.pm 
Typo
 2020-01-22 12:39:02 +01:00
Xavier Guimard
f3f97ccb80 Add sameSite parameter (#2069) 2020-01-20 06:21:09 +01:00
Christophe Maudoux
0408ce80b8 Better better fix (#2061) 2020-01-19 18:06:56 +01:00
Xavier Guimard
0fa90c5efe Avoid double encode_base64 call (#2061) 2020-01-18 22:25:48 +01:00
Christophe Maudoux
32d7f46b1a Better fix (#2061) 2020-01-18 18:58:42 +01:00
Christophe Maudoux
fd2a9ce226 Append info log msg (#2061) 2020-01-17 22:27:03 +01:00
Christophe Maudoux
138ef363d4 Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2061) 2020-01-17 22:17:02 +01:00
Christophe Maudoux
6f31d98710 Revert "Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2063)" 
This reverts commit 965678dde2.
 2020-01-17 22:16:44 +01:00
Christophe Maudoux
965678dde2 Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2063) 2020-01-17 22:10:06 +01:00
Christophe Maudoux
583bbbe285 Append CSP frame-ancestors option & Improve unit test (#2068) 2020-01-15 16:09:57 +01:00
Christophe Maudoux
b28a9d148e Modify log level 2020-01-08 23:06:49 +01:00
Christophe Maudoux
f37c2399b1 Update sessionInfo during auth process with 2FA 2020-01-04 13:36:21 +01:00
Xavier Guimard
43245bbf36 Fix warnings 2020-01-04 08:21:38 +01:00
Christophe Maudoux
a48daee305 Update sessionInfo during auth process 2020-01-03 23:39:57 +01:00
Christophe Maudoux
0f591496b4 Update sessionInfo during auth process to improve handler in-memory sessions security & Improve unit tests 2020-01-03 20:07:36 +01:00
Christophe Maudoux
f8046dd716 Update sessionInfo during auth process & Improve unit tests 2020-01-03 12:36:35 +01:00
Christophe Maudoux
1988983c90 Typo 2019-12-31 17:14:44 +01:00
Xavier Guimard
3317ab9fb1 Fix... 2019-12-25 13:30:54 +01:00
Xavier Guimard
d069f32438 Fix bad export 2019-12-25 13:11:58 +01:00
Christophe Maudoux
2954ea2abc Disable compactConf by default & Update unit tests (#2046) 2019-12-22 13:06:10 +01:00
Clément OUDOT
458d353af8 Merge branch 'v2.0' into dcoutadeur/lemonldap-ng-certificate-reset 2019-12-21 16:19:49 +01:00
Clément OUDOT
983af4dec1 make json (#1605) 2019-12-21 16:13:32 +01:00
dcoutadeur
a465a5d768 Reset Certificate module for v2.0.7 (#1605) 2019-12-19 19:10:32 +01:00
Clément OUDOT
3831b81255 Adapt log message in refresh (#2005) 2019-12-19 18:11:33 +01:00
Christophe Maudoux
c21ab76900 Better fix (#2005) 2019-12-15 12:54:28 +01:00
Christophe Maudoux
e4c5a9d723 Fix #2005 & improve unit test 2019-12-14 17:40:23 +01:00
Clément OUDOT
757399fa61 Catch PE_BADCREDENTIALS error in Combination display process (#2009) 2019-12-13 11:15:05 +01:00
Xavier
d01cfe94df Refresh plugin skeleton (#2006) 2019-12-08 17:19:50 +01:00
Christophe Maudoux
15711c642e Merge branch 'v2.0' into globalLogout 2019-11-15 21:49:56 +01:00
Maxime Besson
bedcf20806 Change portal error code on 2F failure (#2008) 2019-11-15 11:19:08 +01:00
Christophe Maudoux
297ef8cd8c Merge branch 'v2.0' into globalLogout 2019-11-12 22:17:09 +01:00
Christophe Maudoux
603293411b Use userData instead of sessionInfo to fix ContectSwitching debug log 2019-11-12 10:00:11 +01:00
Christophe Maudoux
80a1e4bf57 WIP - Append GlobalLogout plugin (#1999) 2019-11-11 22:33:30 +01:00
Christophe Maudoux
c01c26af6a Append option to override Issuer OTT storage (#1993) 2019-10-31 11:40:33 +01:00
Maxime Besson
5b2f3ca576 Merge branch 'remove-saml-idp-cookie-1941' into 'v2.0' 
Remove SAML IDP cookie (#1941)

See merge request lemonldap-ng/lemonldap-ng!99
 2019-10-30 16:01:11 +01:00
Clément OUDOT
fb74d03a89 Use whatToTrace for logging messages (#1991) 2019-10-29 17:28:55 +01:00
Maxime Besson
ed3e274ab1 Fix force password reset in Combination (#1984) 2019-10-24 08:58:04 +02:00
Maxime Besson
4afecb4620 Remove IDP cookie (#1941) 2019-10-17 23:09:03 +02:00
Christophe Maudoux
0ca649f106 Use custom decrypt functions (#1956) 2019-10-13 15:08:32 +02:00
Maxime Besson
2b4defb2a9 Prevent portal from crashing when keepPdata=1 (#1893) 
Since the changes introduced to fix #1893, keepPdata is expected to
contain an array of values.

When migrating from previous LLNG versions, cookies may contain
keepPdata=1, which crashes the server because 1 isn't an arrayref

This change makes LLNG consider that keepPdata=1 is not a valid value,
and replaces it with an empty arrayref when starting the login or logout
flow.
 2019-10-09 17:35:48 +02:00
Maxime Besson
2bce713f65 Set issuer urldc in pdata (#1893) 2019-10-08 22:40:10 +02:00
Maxime Besson
3ee708d8ff Delay cookie restore after hooks (#1965) 2019-10-07 17:26:40 +02:00
Christophe Maudoux
138cfe6edb Append DecryptValue plugin (#1956) 2019-09-30 22:29:49 +02:00
Christophe Maudoux
a219a51e1c Revert "Make manifest" 
This reverts commit c00110ed01.
 2019-09-30 22:28:55 +02:00
Christophe Maudoux
c00110ed01 Make manifest 2019-09-30 22:26:55 +02:00
Christophe Maudoux
b505d3a475 Typo 2019-09-30 19:10:05 +02:00
Xavier
461cd51e45 Try to fix #1785 without breaking pdata 2019-09-29 23:04:17 +02:00
Christophe Maudoux
2095fdf316 Improve log (#1702) 2019-09-18 19:59:35 +02:00
Clément OUDOT
ce6f6c3977 Get login to use it in password force change form (#1910) 2019-09-18 15:55:13 +02:00
Maxime Besson
98f55fd384 Translate the error code displayed in debug logs 2019-09-17 20:17:57 +02:00
Maxime Besson
c94e2534a9 Send CORS headers when doing JSON responses too (#1765) 2019-09-16 16:55:15 +02:00
Maxime Besson
e281ad7cc3 Add support for CORS preflight (#1765) 2019-09-16 16:55:15 +02:00
Christophe Maudoux
9c01c46fea Typo (#1932) 2019-09-14 23:37:50 +02:00
Christophe Maudoux
dd66f37739 Return httpSession id if exists (#1932) 2019-09-14 22:47:11 +02:00
Xavier
e50e7d09d1 Update version of (really) modified files 2019-09-12 21:56:49 +02:00
Christophe Maudoux
4287c39f5b typo 2019-09-11 16:20:28 +02:00
Christophe Maudoux
132f42d44c Forbid browsers to store users password & Improve unit tests (#1913) 2019-09-08 19:28:28 +02:00
Maxime Besson
00e91f374b Add specific error code when missing a required SAML attr (#1919) 
The MISSINGREQATTR message is a good default value, but a site
administrator may decide to override it with a personnalized version
that only applies to issuer errors caused by an incomplete user profile
(for example, giving a pointer to the local user profile management
application)
 2019-09-06 11:04:39 +02:00
Clément OUDOT
068ffbe604 Define portalDisplayPasswordPolicy parameter in Manager (#993) 2019-09-05 13:02:51 +02:00
Clément OUDOT
b44c13ba2f Display password policy in password change form (#993) 2019-09-05 12:46:32 +02:00
Christophe Maudoux
3e9a424090 Update version (#1916) 2019-09-03 22:57:51 +02:00
Christophe Maudoux
56ed8a5724 Append issuersTimeout option (#1916) 2019-09-03 22:52:07 +02:00
Clément OUDOT
177f446f25 Display main logo in redirect page (#1906) 2019-08-29 19:29:27 +02:00
Xavier Guimard
ae6e69667a Fix warning 2019-08-29 10:49:01 +02:00
Xavier
1f2f0240f0 Love Perl (#1863) 
TIMTOWTDI
 2019-08-28 00:36:18 +02:00
Maxime Besson
810d2c7f94 Disable template cache to avoid translation issues in mail (#1897) 2019-08-27 23:13:36 +02:00
Xavier Guimard
323d92fa1b Don't load Data::Dumper unless debug 2019-08-27 10:10:11 +02:00
Christophe Maudoux
ec59cc164c Catch error earlier in process (#1867) 2019-08-24 23:26:42 +02:00
Xavier
097183f2b3 Fix warning 2019-08-16 09:10:10 +02:00
Christophe Maudoux
7502e424e3 Revert "Concatenate pdata and lemon cookies in the same set-cookie header (#1863)" 
This reverts commit c3a01c042c
 2019-08-13 10:16:31 +02:00
Christophe Maudoux
c3a01c042c Concatenate pdata and lemon cookies in the same set-cookie header (#1863) 2019-08-12 23:52:33 +02:00
Christophe Maudoux
3891c9caec Fix log level & improve e2e ini file (#1878) 2019-08-12 22:20:22 +02:00
Christophe Maudoux
f8ef2797a8 Update manifest 2019-08-12 21:36:55 +02:00
Christophe Maudoux
d7cb8bf4b8 Force remove pdata cookie to avoid loop (#1878) 2019-08-12 21:29:08 +02:00