dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
9,859 Commits 3 Branches 0 Tags 75 MiB
8116cf2d63
Commit Graph

1086 Commits

Author SHA1 Message Date
Maxime Besson
94877793d4 increase clock tolerance during rest secret check (#1923) 2019-09-06 17:45:51 +02:00
Clément OUDOT
a0f9c85913 Define ldapITDS parameter in Manager (#1619) 2019-09-05 17:17:21 +02:00
Clément OUDOT
068ffbe604 Define portalDisplayPasswordPolicy parameter in Manager (#993) 2019-09-05 13:02:51 +02:00
Clément OUDOT
d7262767dc Add local password policy parameters in Manager (#993) 2019-09-05 10:55:08 +02:00
Xavier
a74f676773 Revert "Fix bad hmac (no effect on LLNG itself but bug with future node handler)" 
I'll update node handler to avoid breaking change
 2019-09-03 23:00:02 +02:00
Christophe Maudoux
56ed8a5724 Append issuersTimeout option (#1916) 2019-09-03 22:52:07 +02:00
Xavier
0642d7aa2f Fix bad hmac (no effect on LLNG itself but bug with future node handler) 2019-09-03 22:09:28 +02:00
Xavier
36ee1b80c2 Use double eval for alarms as recommended by DBI(3) 2019-09-03 06:31:58 +02:00
Xavier
a04bbf15b7 Add timeout for configuration load (#1908) 2019-09-02 23:01:09 +02:00
Xavier
352177b6ea Set a timeout for sessions (#1908) 2019-09-02 23:01:09 +02:00
Christophe Maudoux
873e5084e0 Append "Don t compact conf" option (#1904) 2019-08-31 23:03:17 +02:00
Maxime Besson
d61935ab6e Implement introspection endpoint for access tokens (#1843) 2019-08-29 19:10:51 +02:00
Xavier Guimard
667757a1a8 Update prove state 2019-08-29 11:42:36 +02:00
Xavier Guimard
aeff014f79 Parallel tests 2019-08-29 10:48:55 +02:00
Xavier Guimard
df4e7e7522 Generic fix for issues like #1903 2019-08-28 19:12:29 +02:00
Clément OUDOT
2145483be7 Pass extra args in Combination module (#1903) 2019-08-28 18:22:19 +02:00
Xavier Guimard
1660109e2f Security: use 3-form for open 2019-08-28 11:32:54 +02:00
Xavier
1f2f0240f0 Love Perl (#1863) 
TIMTOWTDI
 2019-08-28 00:36:18 +02:00
Xavier Guimard
3cc4362873 Fix version 2019-08-27 08:15:44 +02:00
Clément OUDOT
47dc4936ac Replace default LinkedIn scopes (#1890) 2019-08-22 15:08:45 +02:00
Christophe Maudoux
96c5006d9a Fix wrapper (#1885) 2019-08-20 22:36:51 +02:00
Christophe Maudoux
4d583ceb9c Append a custom param to log (#1885) 2019-08-20 22:04:05 +02:00
Christophe Maudoux
d7e7b622ce Disable viewer with default options (#1880) 2019-08-20 17:06:51 +02:00
Maxime Besson
c718e806ed Fix reporting of getMod errors 2019-08-19 17:22:14 +02:00
Christophe Maudoux
1360306b36 Improve viewer default hidden keys 2019-08-19 09:42:30 +02:00
Christophe Maudoux
b1c637cfca Revert "Append a custom param to be logged (#1885)" 
This reverts commit 1e838f0487
 2019-08-16 15:28:47 +02:00
Christophe Maudoux
1e838f0487 Append a custom param to be logged (#1885) 2019-08-16 15:25:21 +02:00
Christophe Maudoux
78a82dbee9 Override OTT conf. for Upgrade tokens (#1884) 2019-08-15 22:01:44 +02:00
Maxime Besson
2e9f57ab6f Better default behavior for oidcServiceMetaDataIssuer (#1882) 2019-08-13 18:09:59 +02:00
Christophe Maudoux
33e7a05f8a Append parameter to set Manager default route (#1880) 2019-08-08 22:39:09 +02:00
Maxime Besson
15c3b0bbf8 Add Radius second factor (#1847) 2019-08-02 18:03:10 +02:00
Maxime Besson
c1afdbefac Add labels and logos to all 2F providers (#1873) 2019-08-01 17:27:14 +02:00
Christophe Maudoux
ecb3204d38 Append conf parameters (#1851) 2019-07-25 11:59:00 +02:00
Maxime Besson
d82f776df8 Allow multi instanciation of 2F modules (#1860) 
This commit adds a manager interface to declare multiple instances of a
single 2F module, in a manner similar to Combination.

An additional portal code reads the `sfExtra` variable to load the
declared modules.

An empty rules means the module will be always active.
 2019-07-22 19:30:37 +02:00
Christophe Maudoux
8c776c0c27 Update langs (#1851) 2019-07-21 21:56:09 +02:00
Christophe Maudoux
ca7ebe09f7 WIP - REST service to remove notification (#1851) 2019-07-20 22:25:03 +02:00
Christophe Maudoux
15777cc74a Typo 2019-07-20 16:03:38 +02:00
Christophe Maudoux
27116ca1af Improve unit tests & update version (#1853) 2019-07-19 10:09:07 +02:00
Christophe Maudoux
f515819c61 Fixed for XML request (#1853) 2019-07-19 10:06:23 +02:00
Clément OUDOT
64b091bac1 Do not allow to add a notification with the same reference (#1853) 2019-07-12 18:39:31 +02:00
Xavier Guimard
966eef33ee Fix df96168c error: _example/conf/lmConf-1.json is auto-generated (#1850) 2019-07-10 17:15:40 +02:00
Xavier Guimard
ee3d12d02f Fix warning in Logger::_Duplicate (Fixes: #1842) 2019-07-10 10:41:38 +02:00
Clément OUDOT
d45754d507 Update MANIFEST (#1842) 2019-07-08 14:11:53 +02:00
Christophe Maudoux
36c806fa61 make json 2019-07-07 22:30:24 +02:00
Christophe Maudoux
2aee0467b0 Hide _session_id with CheckUser (#1658) 2019-07-06 22:55:31 +02:00
Christophe Maudoux
2016abd2ee Send pdata cookie to cross domain (#1829) 2019-07-04 21:49:28 +02:00
Xavier
81d18516a8 Fix #1842 tests 2019-07-04 21:26:28 +02:00
Xavier
7aad1563c0 Duplicate userLogger into logger->debug (#1842) 2019-07-04 21:22:06 +02:00
Maxime Besson
6f058fb2fa Add manager manpages to deb 2019-07-03 15:17:16 +02:00
Xavier Guimard
c1137edba8 make tidy with perltidy-20181120 2019-07-02 20:03:40 +02:00
Christophe Maudoux
b94cbe0144 Fix default value (#1825) 2019-07-01 13:28:01 +02:00
Xavier
7ffca14f5a Improve crypto test 2019-06-30 23:11:39 +02:00
Christophe Maudoux
1be79bce4b make json 2019-06-30 19:01:14 +02:00
Christophe Maudoux
a1f5791e06 Merge branch '1783' into v2.0 2019-06-30 19:00:41 +02:00
Christophe Maudoux
06d4faafe1 Merge branch 'v2.0' into 1825 2019-06-30 18:22:39 +02:00
Christophe Maudoux
0f5030e345 Merge branch 'v2.0' into 1783 2019-06-30 18:22:13 +02:00
Clément OUDOT
3f4ceb94f0 Update CLI help (#1832) 2019-06-30 17:51:30 +02:00
Christophe Maudoux
11d2909b0a WIP - Disable persistent sessions storage (#1825) 2019-06-29 21:10:16 +02:00
Christophe Maudoux
897d04ac93 Merge branch 'v2.0' into 1783 2019-06-28 22:05:48 +02:00
Xavier Guimard
43d5139040 Update versions 2019-06-28 17:04:14 +02:00
Xavier Guimard
44a6e25851 Improve cryptographic functions (#1823) 2019-06-28 10:30:37 +02:00
Christophe Maudoux
8ad895c3b8 Merge branch 'v2.0' into 1783 2019-06-27 21:11:56 +02:00
Clément OUDOT
e53129568a Set some default values for lemonldap-ng-cli info (#1827) 2019-06-27 17:29:56 +02:00
Xavier Guimard
45a0b68c3b Disable external entities in XML parsers (Fixes: #1818) 2019-06-26 11:32:10 +02:00
Christophe Maudoux
0b567d6c15 Merge branch 'v2.0' into 1783 2019-06-25 20:23:48 +02:00
Xavier Guimard
390ccb4f5b Fix Apache::Session::REST::get_key_from_all_sessions when using CODE (#1813) 2019-06-25 09:48:15 +02:00
Xavier Guimard
93ccb9fd76 Set Content-Length in Apache::Session::REST requests (#1813) 2019-06-25 09:37:37 +02:00
Xavier Guimard
ddde26fa1c Add searchOn() in Apache::Session::REST (#1813) 2019-06-25 09:18:58 +02:00
Christophe Maudoux
266f2fdf02 Merge branch 'v2.0' into 1783 2019-06-24 23:36:54 +02:00
Xavier
c5d6bc42b6 Add get_key_from_all_sessions in Apache::Session::REST (#1813) 2019-06-24 23:07:34 +02:00
Xavier Guimard
2cb221b4e0 Set cache_depth to 3 in local config cache (Fixes: #1814) 2019-06-24 18:51:15 +02:00
Christophe Maudoux
831a988516 Append conf test (#1783) 2019-06-23 22:55:10 +02:00
Christophe Maudoux
6e029c413f Merge branch 'v2.0' into 1783 2019-06-23 10:19:13 +02:00
Christophe Maudoux
b69ffc0ff8 WIP - ContextSwitching (#1783) 2019-06-21 15:23:06 +02:00
Xavier
50ba6e6144 Install nginx* files for all handlers (Fixes: #1811) 2019-06-20 12:51:00 +02:00
Xavier
c325c55e5c Use only Crypt::URandom for session id (#1808) 2019-06-19 19:14:31 +02:00
Christophe Maudoux
a2ebaf31b1 WIP - AdminImpersonation skeleton (#1783) 2019-06-19 18:13:17 +02:00
Xavier
4a58de0b92 Apache::Session::Generate::SHA256 improvements (#1808) 2019-06-19 08:30:38 +02:00
Christophe Maudoux
9fa11709e6 Append options to use Notifications plugin & set notification reference (#1796) 2019-06-17 22:31:44 +02:00
Christophe Maudoux
c3b3c281ad Hide _2fDevices with REST services 2019-06-16 20:33:34 +02:00
Christophe Maudoux
d6f3dd459a Display message (#1796) 2019-06-16 16:02:48 +02:00
Christophe Maudoux
f514da3c3a Hide _2fDevices with REST services 2019-06-15 22:38:21 +02:00
Christophe Maudoux
fde6ff2cc8 WIP (#1796) 2019-06-14 23:09:32 +02:00
Xavier Guimard
e7bc7b3f4e Add restExportSecretKeys option (#1799) 2019-06-14 08:51:58 +02:00
Xavier
5dc5b88daa Permit to show $_password in REST session server (#1799) 2019-06-14 07:09:55 +02:00
Xavier Guimard
ee95ac786f Workaround for #1655 2019-06-12 09:55:06 +02:00
Christophe Maudoux
b71f678f80 Filter SSO groups to merge (#1791) 2019-06-08 22:08:58 +02:00
Christophe Maudoux
3015faef0e Share functions with Safe (#1717) 2019-06-07 11:26:07 +02:00
Christophe Maudoux
132e57b4b3 Manage CORS headers (#1765) 2019-05-31 17:00:39 +02:00
Xavier
20ef62e4fb Add restore command to cli (#1770) 2019-05-30 10:18:41 +02:00
Xavier
4970787dd6 update doc 2019-05-30 09:48:43 +02:00
Xavier
a09e299b3d Rename dump command to save (#1770) 2019-05-30 09:43:28 +02:00
Xavier
00852d1a66 Add dump() command in cli 
Closes: #1770
 2019-05-30 09:39:36 +02:00
Xavier Guimard
8fd3f6be90 Merge branch 'issue1521-appmenu' into 'v2.0' 
Preserve applicationList key names (#1521)

See merge request lemonldap-ng/lemonldap-ng!76
 2019-05-28 22:10:53 +02:00
Xavier
db2ee96bc8 Update versions (#1777) 2019-05-28 22:04:45 +02:00
Xavier
acd6ba50e8 Fix some missing $req (#1777) 2019-05-28 19:52:08 +02:00
Maxime Besson
b12992755f Preserve applicationList key names (#1521) 
Previously, every configuration save from the manager would overwrite
applicationList key names to preserve their ordering.

This commit introduces a new "order" key in the JSON config instead.
 2019-05-28 15:38:26 +02:00
Xavier Guimard
2da63b7283 Fix bad cache management on configuration saving 
Closes: #1754
 2019-05-27 16:34:04 +02:00
Christophe Maudoux
535ae3f7be Append ServiceToken TTL option (#1773) 2019-05-26 21:43:13 +02:00
Christophe Maudoux
73fd322e60 Update lemonldap-ng.ini (#1773) 2019-05-26 18:35:03 +02:00
Christophe Maudoux
74c5f50e89 Append option to modify ServiceToken TTL (#1773) 2019-05-26 18:24:08 +02:00
Xavier
a2e78c88c3 Set versions 2019-05-16 20:42:31 +02:00
Maxime Besson
3a8b6da81a Add date and PID to default stderr logger 
When using Apache or docker, the default Std logger does not write a
timestamp.

This format (poorly) imitates the error_log format so that LLNG messages
will stand out a little less in apache logs. And so that our docker
users can have timestamped messages
 2019-05-16 17:39:20 +02:00
Maxime Besson
2f9c7b787e Change default syslog format to include [level] 
The default configuration of syslog/journald in pretty much all
environments does not include the log level in the message

This means that it's hard to know which log messages are important and
which aren't at a glance, especially in `debug` level.

This commit should make debugging a lot easier by default.

Savvy users who need precise control on the syslog format should
probably use Log4Perl
 2019-05-16 14:02:37 +02:00
Clément OUDOT
332fb4f9da Update version in module dependencies 2019-05-12 16:22:50 +02:00
Xavier
f3c4ea0afb Tydy 2019-05-11 20:18:43 +02:00
Xavier
000db1536b Update versions 2019-05-11 17:37:56 +02:00
Xavier
8897fd49b3 Don't filter on session_kind with REST (#1742) 
Same to do with SOAP
 2019-05-11 15:29:29 +02:00
Xavier
2351251c49 #1742 in progress... 2019-05-11 09:32:50 +02:00
Xavier Guimard
1cd50bb353 Fix Auth::Remote session kind (#1742) 2019-05-10 18:02:56 +02:00
Xavier Guimard
55eeb303a2 Verify session kind if given (#1742) 
This breaks AuthRemote
 2019-05-10 17:35:10 +02:00
Xavier
4ed5c282a2 Fix syntax error 2019-05-10 06:19:54 +02:00
Clément OUDOT
d388461909 Add PKCE option in Manager (#1722) 2019-04-29 17:35:23 +02:00
Clément OUDOT
8e6f678be7 Create a configuration option to allow a Relying Party to be a public client 
Allow unauthenticated requests on OAuth2 token endoint

#1725
 2019-04-29 10:02:16 +02:00
Maxime Besson
2f9e6aa623 Allow override of username attribute for CAS apps 
Global CAS options allows the admistrator to set the session attribute
that gets exported to all CAS application as the main identifier
(cas:user)

This commit adds the ability to override this configuration for a
particular CAS application.

OIDC already allows this

Fixes #1713
 2019-04-28 21:06:34 +02:00
Clément OUDOT
06a7c97fd8 Add OAuth2 vhostType (#1146) 2019-04-22 19:10:50 +02:00
Christophe Maudoux
3491adbd3d Upgrade default authentication level (#1699) 2019-04-21 21:30:38 +02:00
Christophe Maudoux
3672d934d9 Set Viewer options by using rules (#1661) 2019-04-21 11:58:13 +02:00
Xavier Guimard
d0e5be2797 Enable Finnish on portal 2019-04-17 17:58:55 +02:00
Xavier Guimard
69fdc95229 Enable german on portal 2019-04-17 17:56:28 +02:00
Xavier Guimard
889c1da46e Enable italian language in default install 2019-04-17 17:16:01 +02:00
Xavier Guimard
5fd9e9d422 Fix boolean values for YAML 
Closes: #1684
 2019-04-15 11:44:11 +02:00
maudoux
1d08372a8c Sort CAS servers & update langs (#1704) 2019-04-10 21:58:37 +02:00
Antoine ROSIER
f7b296b032 Sorting OIDc (#1704) 2019-04-10 17:06:41 +02:00
Antoine ROSIER
8636da45be Sorting SAML idp (#1704) 2019-04-10 17:06:41 +02:00
Clément OUDOT
ae3a728378 Manage template inclusion when file is not in configured portal theme (#1653) 2019-04-10 15:42:58 +02:00
Xavier
804a996810 Update versions 2019-04-09 22:04:19 +02:00
Xavier
046585020f Allow hashes in Combination module overload (Closes: #1707) 2019-04-09 21:01:55 +02:00
maudoux
02c473c919 Update ConfTree (#1699) 2019-04-05 22:39:58 +02:00
Xavier Guimard
2159957c34 Update versions 2019-04-05 09:54:43 +02:00
maudoux
5b67f1f743 Use rule to enable OTT (#1694) 2019-04-03 23:28:45 +02:00
maudoux
fe248d194d Typo 2019-04-03 22:13:53 +02:00
Xavier Guimard
ece9b21219 Remove trailing whitespaces 2019-04-03 14:15:16 +02:00
Xavier Guimard
141ba96c92 Update version 2019-04-03 13:53:56 +02:00
maudoux
b7a826abfd Make json (#1661) 2019-04-01 14:57:41 +02:00
maudoux
b790949492 Update parameter name (#1661) 2019-04-01 14:52:23 +02:00
maudoux
b6162f5ae9 Hide secret keys in diff.html 2019-04-01 14:42:52 +02:00
Clément OUDOT
b21696185a Typo in error page HTML code 2019-04-01 10:46:26 +02:00
Xavier
8144ef9132 Fix boolean display with YAML backend (Fixes: #1684) 2019-03-26 22:55:52 +01:00
Clément OUDOT
93ee1bcfa3 Keep LDAP parameters for AD in Choice/Combination (#1676) 2019-03-21 20:02:21 +01:00
Clément OUDOT
447c09c0a2 Remove old translation file (#1595) 2019-03-19 15:38:36 +01:00
Christophe Maudoux
d1ce6384b6 Fix default conf manager rule 2019-03-18 16:43:56 +01:00
Christophe Maudoux
e7f21b2c73 Append Viewer SPA (#1661) 2019-03-15 15:40:08 +01:00
Christophe Maudoux
71fc765d01 WIP - Inherits Conf.pm (#1661) 2019-03-15 15:40:08 +01:00
Christophe Maudoux
bfa7482a1f WIP - Hidden ConfTree PK (#1661) 2019-03-15 15:40:08 +01:00
Xavier Guimard
b7a78b500e Merge remote-tracking branch 'maxbes/proverc' into v2.0 2019-03-14 17:27:31 +01:00
Maxime Besson
7c16a2f7ad Exclude .proverc from manifests 2019-03-14 16:57:08 +01:00
Xavier Guimard
cd41efa378 Update META 2019-03-14 16:47:09 +01:00
Maxime Besson
f46260204c Provide configuration for manual launching of unit tests 
This commit adds a .proverc configuration in lemonldap-* subdirectories

It allows you to run unit tests easily during development

    make clean && make
    cd lemonldap-ng-portal
    prove t/my-unit-test.t
    prove -v t/my-unit-test.t
    prove t/*.t

You'll get a nice colored output, plenty of details with '-v' (great is
you set logLevel to "debug" in the test), etc.
 2019-03-14 16:38:40 +01:00
Clément OUDOT
d620ae2e8b Merge branch 'maxbes/lemonldap-ng-saml-issuer-entityid-override' into v2.0 2019-03-13 10:30:16 +01:00