dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
8,729 Commits 3 Branches 0 Tags 75 MiB
7ab5c3e654
Commit Graph

2027 Commits

Author SHA1 Message Date
Christophe Maudoux
432f2655bb Fix if no userDB (#1774) 2019-05-30 12:26:50 +02:00
Christophe Maudoux
04603c0169 Fix warning (#1774) 2019-05-30 12:26:50 +02:00
Xavier Guimard
6b5677b4ce Tidy (#1774) 2019-05-29 14:20:46 +02:00
Christophe Maudoux
224137462a Tidy (#1774) 2019-05-29 00:08:48 +02:00
Christophe Maudoux
a89f83294b Retrieve session from DB if exists & Improve unit test (#1774) 2019-05-28 23:55:54 +02:00
Xavier Guimard
8fd3f6be90 Merge branch 'issue1521-appmenu' into 'v2.0' 
Preserve applicationList key names (#1521)

See merge request lemonldap-ng/lemonldap-ng!76
 2019-05-28 22:10:53 +02:00
Xavier
db2ee96bc8 Update versions (#1777) 2019-05-28 22:04:45 +02:00
Xavier
f0842569c2 Don't erase pdata on 404 errors (#1778) 2019-05-28 21:58:22 +02:00
Xavier
82171e9a90 Fix missing $req in SLO responses (#1777) 2019-05-28 21:45:54 +02:00
Xavier
acd6ba50e8 Fix some missing $req (#1777) 2019-05-28 19:52:08 +02:00
Christophe Maudoux
5126e9003b Allow double sessions for double cookies with singleSession (#1775) 2019-05-28 17:32:06 +02:00
Maxime Besson
b12992755f Preserve applicationList key names (#1521) 
Previously, every configuration save from the manager would overwrite
applicationList key names to preserve their ordering.

This commit introduces a new "order" key in the JSON config instead.
 2019-05-28 15:38:26 +02:00
Christophe Maudoux
dece7d8aa0 Allow double sessions for double cookies (#1775) 2019-05-27 22:42:02 +02:00
Christophe Maudoux
26233106a5 Set _updateTime session value (#1771) 2019-05-26 11:56:58 +02:00
Christophe Maudoux
3dd4c52c65 Update version (#1766) 2019-05-26 10:33:39 +02:00
Christophe Maudoux
0e47cb4f5b Fix warning message 2019-05-23 15:52:11 +02:00
Maxime Besson
0babf4c6c3 Fix non-sso session removal in SoapServer 
closes #1762
 2019-05-21 17:30:37 +02:00
Christophe Maudoux
59f07b7b8f Avoid to renew double cookie sessions for refresh request (#1747) 2019-05-20 23:03:10 +02:00
Christophe Maudoux
29b7341345 Change code order (#1749) 2019-05-19 13:40:46 +02:00
Christophe Maudoux
006f862a69 Cleaning code (#1755) 2019-05-17 22:18:09 +02:00
Clément OUDOT
c024952b8f Do not fail if no RP or no OP configured (#1759) 2019-05-17 16:00:33 +02:00
Xavier
b91d1d4b87 Tidy 2019-05-16 20:45:14 +02:00
Xavier
a2e78c88c3 Set versions 2019-05-16 20:42:31 +02:00
Xavier
1186aba52b lmError(): return JSON if wanted (#1745) 2019-05-16 06:50:13 +02:00
Christophe Maudoux
e46fac82b2 CheckUser with tokenGlobalStorage & Warn if SSO groups are merged 2019-05-15 23:45:06 +02:00
Maxime Besson
1f1eeab9c8 Do not log a warning when displaying form with Combination 
When form-based authentication methods return PE_FIRSTLOGIN, do not log
a warning because it's normal behavior to show the form.
 2019-05-14 19:47:28 +02:00
Christophe Maudoux
fc034ad4bf Impersonation with doubleCookie (#1746) 2019-05-12 22:59:21 +02:00
Clément OUDOT
05cd4d4a58 Fix update token with global storage (#1742) 2019-05-12 20:39:25 +02:00
Clément OUDOT
682b193477 Use TOKEN kind for mail password reset sessions (#1743) 2019-05-12 20:04:38 +02:00
Clément OUDOT
07de622e83 Fix getRegisterSession and getMailSession (#1743) 2019-05-12 17:36:14 +02:00
Xavier
9a71709f44 Tidy 2019-05-11 23:03:48 +02:00
Christophe Maudoux
8737fc0808 Impersonation with doubleCookie & Append unit test (#1746) 2019-05-11 22:57:52 +02:00
Xavier
f3c4ea0afb Tydy 2019-05-11 20:18:43 +02:00
Christophe Maudoux
aeead582d8 Restore _httpSession (#1746) 2019-05-11 19:07:07 +02:00
Xavier
2ce7396bf2 Don't filter on session_kind with SOAP (#1742) 2019-05-11 15:41:14 +02:00
Xavier
6235b303b3 #1742 in progress... 2019-05-11 09:31:17 +02:00
Xavier Guimard
1cd50bb353 Fix Auth::Remote session kind (#1742) 2019-05-10 18:02:56 +02:00
Xavier Guimard
638a0de81a Don't use SSO session type for tokens (Fixes security part of #1742) 2019-05-10 17:35:10 +02:00
Clément OUDOT
fce270408e Improve log in plugin GrantSession (#1739) 2019-05-06 19:10:26 +02:00
Clément OUDOT
755b1ace78 Add some debug in Ext2F (#1738) 2019-05-06 14:28:28 +02:00
Clément OUDOT
a7c8b9d466 Fix error handling in Ext2F (#1738) 2019-05-06 14:07:42 +02:00
Christophe Maudoux
c8dd4554aa Test if required secret elements are set to sign JWT 2019-05-02 14:33:56 +02:00
Christophe Maudoux
f4938f3489 Grant access only if required Impersonation succeeds (#1664) 2019-04-30 14:57:45 +02:00
Christophe Maudoux
321fe29c35 Update version 2019-04-29 22:33:11 +02:00
Christophe Maudoux
2e9092d2bd Clean code 2019-04-29 22:33:11 +02:00
Christophe Maudoux
a89b92f265 Improve code (#1386) 2019-04-29 22:33:11 +02:00
Christophe Maudoux
2e3c2e1a16 Sort by spoofed and real attributes (#1658) 2019-04-29 22:33:11 +02:00
Clément OUDOT
926262170b Implement PKCE in OIDC provider (#1722) 2019-04-29 17:18:16 +02:00
Clément OUDOT
8e6f678be7 Create a configuration option to allow a Relying Party to be a public client 
Allow unauthenticated requests on OAuth2 token endoint

#1725
 2019-04-29 10:02:16 +02:00
Maxime Besson
2f9e6aa623 Allow override of username attribute for CAS apps 
Global CAS options allows the admistrator to set the session attribute
that gets exported to all CAS application as the main identifier
(cas:user)

This commit adds the ability to override this configuration for a
particular CAS application.

OIDC already allows this

Fixes #1713
 2019-04-28 21:06:34 +02:00