dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
12,195 Commits 3 Branches 0 Tags 75 MiB
84d3ca2b89
Commit Graph

147 Commits

Author SHA1 Message Date
Maxime Besson
1986f730a7 Fix usage of script_name (#2650) 2022-08-12 09:09:22 +02:00
Christophe Maudoux
e05b51c9aa Perl critic 2022-07-18 23:35:37 +02:00
Christophe Maudoux
f0d102a6bb Fix debug log 2022-06-02 23:39:18 +02:00
Yadd
b88a72c267 tidy 2022-02-16 17:43:29 +01:00
Yadd
7b71a0c764 Always initialize groups and hGroups (Fixes: #2476) 2022-02-05 10:21:32 +01:00
Maxime Besson
2816586afe Fix regression from 3732cdcc (#2477) 2021-07-09 11:49:29 +02:00
Yadd
83b45db614 Fix versions 2021-06-28 15:36:29 +02:00
Maxime Besson
cf70ebe293 Stop triggering XSS protection on escaped commas 
Commas are safe in HTML and JS, so there is no risk of XSS
 2021-06-24 20:16:20 +02:00
Yadd
3732cdcc19 Better URL parsing (#2477) 2021-06-24 14:33:27 +02:00
Maxime Besson
63cd5ffb40 Revert 652d8ba9bc 
See #2482
 2021-06-11 08:53:26 +02:00
Yadd
3883c5abff Fix vhost regexp (#2477) 2021-03-02 07:57:21 +01:00
Maxime Besson
090fad7475 Add warning when hook stack encounters error 2021-02-01 18:15:55 +01:00
Christophe Maudoux
bfcdd370df Merge branch 'v2.0' into findUser 2020-12-21 21:11:55 +01:00
Maxime Besson
ed0be42c93 Merge branch 'WIP-plugin-hooks-2359' into 'v2.0' 
Plugin hook system to extend issuers (and maybe more)

See merge request lemonldap-ng/lemonldap-ng!166
 2020-12-21 16:35:03 +01:00
Christophe Maudoux
4d04672c20 WIP: FindUser skeleton (#1976) 2020-12-20 22:54:35 +01:00
Christophe Maudoux
652d8ba9bc Prevent authentication on backend if account is locked (#2243) 2020-12-16 22:49:41 +01:00
Christophe Maudoux
c2266720f9 Unauthenticated logout request with route & improve unit test (#2342) 2020-12-06 11:21:11 +01:00
Christophe Maudoux
41889e5ee2 Append unit test (#2342) 2020-12-05 20:37:50 +01:00
Christophe Maudoux
b2306cc8ad Unauthenticated logout (#2342) 2020-12-05 19:31:23 +01:00
Maxime Besson
f0dbb28866 Add Hook system for plugins (#2359) 2020-11-27 14:00:58 +01:00
Christophe Maudoux
231ec50d63 Fix protocol in log 2020-11-10 10:47:14 +01:00
Xavier Guimard
c8df084247 Update versions 2020-09-04 17:59:00 +02:00
Maxime Besson
ef6b8587ee Remember target authlevel in handler (#2124) 2020-09-04 17:14:05 +02:00
Maxime Besson
a96820d6f6 Set secure flag when removing cookie (#2272) 2020-08-10 12:10:33 +02:00
Maxime Besson
37f71a43b5 create helper function to display portal error code 2020-04-23 17:49:25 +02:00
Christophe Maudoux
478d205f07 Code refactoring & Tidy (#2138) 2020-04-17 20:00:36 +02:00
dcoutadeur
c984bb8b4a fix CAS logoutServices (see #2138 logout forward doesn't work anymore) 2020-04-17 17:36:43 +02:00
dcoutadeur
17e56da82b cleaner solution for #2138 logout forward doesn't work anymore 2020-04-17 16:26:40 +02:00
dcoutadeur
cd15ac7a67 fix #2138 logout forward doesn't work anymore 2020-04-16 17:27:14 +02:00
Christophe Maudoux
18b43cacfc Avoid unprotected urldc host with wildcard-protected hosts (#2101) 2020-02-22 00:13:52 +01:00
Maxime Besson
47068c51b8 Revert "Prevent portal from crashing when keepPdata=1 (#1893)" 
This reverts commit 2b4defb2a9 and
implements a fix "at the source" instead. Should fix #2099.
 2020-02-20 22:24:26 +01:00
Maxime Besson
5149ba8118 Make debug message less confusing when portal status is <0 2020-01-23 20:37:18 +01:00
Christophe Maudoux
8279733fbd Update Process.pm 
Typo
 2020-01-22 12:39:02 +01:00
Xavier Guimard
0fa90c5efe Avoid double encode_base64 call (#2061) 2020-01-18 22:25:48 +01:00
Christophe Maudoux
32d7f46b1a Better fix (#2061) 2020-01-18 18:58:42 +01:00
Xavier Guimard
43245bbf36 Fix warnings 2020-01-04 08:21:38 +01:00
Christophe Maudoux
a48daee305 Update sessionInfo during auth process 2020-01-03 23:39:57 +01:00
Christophe Maudoux
0f591496b4 Update sessionInfo during auth process to improve handler in-memory sessions security & Improve unit tests 2020-01-03 20:07:36 +01:00
Christophe Maudoux
f8046dd716 Update sessionInfo during auth process & Improve unit tests 2020-01-03 12:36:35 +01:00
Christophe Maudoux
603293411b Use userData instead of sessionInfo to fix ContectSwitching debug log 2019-11-12 10:00:11 +01:00
Clément OUDOT
fb74d03a89 Use whatToTrace for logging messages (#1991) 2019-10-29 17:28:55 +01:00
Maxime Besson
2b4defb2a9 Prevent portal from crashing when keepPdata=1 (#1893) 
Since the changes introduced to fix #1893, keepPdata is expected to
contain an array of values.

When migrating from previous LLNG versions, cookies may contain
keepPdata=1, which crashes the server because 1 isn't an arrayref

This change makes LLNG consider that keepPdata=1 is not a valid value,
and replaces it with an empty arrayref when starting the login or logout
flow.
 2019-10-09 17:35:48 +02:00
Xavier
461cd51e45 Try to fix #1785 without breaking pdata 2019-09-29 23:04:17 +02:00
Christophe Maudoux
2095fdf316 Improve log (#1702) 2019-09-18 19:59:35 +02:00
Maxime Besson
98f55fd384 Translate the error code displayed in debug logs 2019-09-17 20:17:57 +02:00
Xavier
e50e7d09d1 Update version of (really) modified files 2019-09-12 21:56:49 +02:00
Christophe Maudoux
4287c39f5b typo 2019-09-11 16:20:28 +02:00
Xavier
c921c295ed Use user skin in loadTemplate (Fixes: #1828) 2019-06-28 13:40:56 +02:00
Christophe Maudoux
b9af5d1adc Use Id 2019-06-25 19:30:06 +02:00
Maxime Besson
1a66da30f9 Store portal language in _language user session key (#1764) 2019-06-13 09:26:19 +02:00