dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
10,108 Commits 3 Branches 0 Tags 75 MiB
7c0e6a2d00
Commit Graph

71 Commits

Author SHA1 Message Date
Christophe Maudoux
c4ebfc3484 Merge branch 'v2.0' 2020-03-22 22:47:09 +01:00
Maxime Besson
168dc75f96 OIDC: return id_token in hybrid flow (#2120) 2020-03-18 21:05:39 +01:00
Christophe Maudoux
ff095ca156 Merge branch 'v2.0' 2019-12-19 21:29:18 +01:00
Clément OUDOT
ae0d455e7f Use base64 URL to decode JWT (#2045) 2019-12-19 17:31:02 +01:00
Maxime Besson
32ecf37be4 OIDC per-service macros portal code (#2042) 2019-12-16 17:26:34 +01:00
Xavier
947dd9a438 Merge branch 'v2.0' 
TODO: Fix OIDC
 2019-12-11 08:00:40 +01:00
Maxime Besson
713737c11f Add an option to return claims in ID token 2019-11-04 18:27:28 +01:00
Maxime Besson
b34a229eda Add doc for buildUserInfoResponseFromId 2019-11-04 10:47:35 +01:00
Maxime Besson
a386a7502a Allow refresh tokens to be emitted for regular sessions (#813) 2019-11-04 10:44:54 +01:00
Maxime Besson
ea2365cc98 Implement OIDC Offline sessions through refresh tokens (#813) 2019-11-04 10:44:54 +01:00
Christophe Maudoux
174193e74c Merge branch 'v2.0' 2019-09-01 22:11:33 +02:00
Maxime Besson
d61935ab6e Implement introspection endpoint for access tokens (#1843) 2019-08-29 19:10:51 +02:00
Maxime Besson
fd7453b7a5 Refactor endpoint auth 2019-08-29 18:57:26 +02:00
Christophe Maudoux
1212cd9ba2 Merge branch 'v2.0' 2019-08-25 18:47:43 +02:00
Maxime Besson
661a007b4a Check OIDC access token expiration (#1879) 2019-08-21 12:18:55 +02:00
Christophe Maudoux
b7c8d30b3f Merge branch 'v2.0' 2019-07-10 12:16:43 +02:00
Maxime Besson
6f058fb2fa Add manager manpages to deb 2019-07-03 15:17:16 +02:00
Xavier
3b7a70e0b7 Merge branch 'v2.0' (with new tidy) 2019-07-02 20:12:11 +02:00
Clément OUDOT
e04a6f1983 Reject none algorithm when checking JWT signature (#1835) 2019-07-02 16:36:43 +02:00
Clément OUDOT
60c03010ce Use Base64URL for JWT generation (#1834) 2019-07-01 17:29:35 +02:00
Xavier Guimard
4678649367 Merge branch 'v2.0' 2019-05-24 10:23:40 +02:00
Clément OUDOT
c024952b8f Do not fail if no RP or no OP configured (#1759) 2019-05-17 16:00:33 +02:00
Xavier
f1f3929cf1 Merge branch 'v2.0' 2019-05-02 14:49:35 +02:00
Christophe Maudoux
c8dd4554aa Test if required secret elements are set to sign JWT 2019-05-02 14:33:56 +02:00
Christophe Maudoux
cb9add6eac Fix warning message 2019-05-01 13:09:26 +02:00
Xavier
29b71569de Merge branch 'v2.0' 2019-04-30 21:03:14 +02:00
Clément OUDOT
926262170b Implement PKCE in OIDC provider (#1722) 2019-04-29 17:18:16 +02:00
Clément OUDOT
8e6f678be7 Create a configuration option to allow a Relying Party to be a public client 
Allow unauthenticated requests on OAuth2 token endoint

#1725
 2019-04-29 10:02:16 +02:00
Xavier Guimard
2159957c34 Update versions 2019-04-05 09:54:43 +02:00
dcoutadeur
5324da2c15 fix id_token validity not correctly evaluated #1662 2019-03-03 09:19:42 +01:00
dcoutadeur
3af15b139e fix id_token validity not correctly evaluated #1662 2019-02-28 09:56:21 +01:00
Xavier Guimard
5862481956 Set master version to 2.1.0 2019-02-12 18:21:38 +01:00
Xavier Guimard
c7b4eb5051 tidy with new conf 2019-02-07 09:27:56 +01:00
Clément OUDOT
b634bc91c2 token_type is case insensitive (#1474) 2018-07-10 18:53:40 +02:00
Xavier Guimard
b2620c2679 s/datas/data 
datas => des données
data => les données
 2018-07-05 22:56:16 +02:00
Xavier Guimard
1a6f717dfc Use pdata in Choice (#1461) 2018-07-05 22:05:24 +02:00
Xavier Guimard
1cd5a706c9 Avoid session conflict between Issuer and Auth OIDC (#1468) 2018-06-30 07:51:22 +02:00
Clément OUDOT
3898db68a7 Provide kid in JWT only for RS signatures (#1426) 2018-05-19 16:29:05 +02:00
Xavier Guimard
0849df9da0 Avoid little warning (#595) 2018-05-14 21:52:52 +02:00
Xavier Guimard
7f0ff6d0d8 Replace Jira by GitLab 2017-11-11 14:06:23 +01:00
Xavier Guimard
0d491e96f4 Use same name for SP rules (#1330) 2017-11-11 13:51:48 +01:00
Clément Oudot
a7401b72f6 Fix from_json methods (#1303) 2017-09-28 12:52:14 +00:00
Clément Oudot
04acb221d3 Fix JSON parsing for Debian 9 in OpenIDConnect code (#1303) 2017-09-21 13:35:26 +00:00
Xavier Guimard
5e4ef360e0 Use globalStorage unless oidcStorage is defined (may fix #1251) 2017-06-22 09:12:28 +00:00
Xavier Guimard
2e59ea441a Replace request management in handler (#1044) 
Note: this is a big change, more tests needed
 2017-03-28 21:07:49 +00:00
Xavier Guimard
7e81e1b1e0 Add OIDC-RP rule (#1161) 2017-03-22 20:47:07 +00:00
Xavier Guimard
6dba4fd1c2 Better request management in issuers (#595) 2017-03-21 06:23:58 +00:00
Xavier Guimard
f1ac524c24 Use OTT for state token (#(595) 2017-03-18 19:51:00 +00:00
Xavier Guimard
1a65e9a0fe Use OTT for nonce token (#(595) 2017-03-18 19:50:56 +00:00
Xavier Guimard
7f460429e1 OIDC OP2RP logout in progress (#1194) 2017-03-10 11:39:19 +00:00