dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
12,195 Commits 3 Branches 0 Tags 75 MiB
84d3ca2b89
Commit Graph

895 Commits

Author SHA1 Message Date
Christophe Maudoux
df9beb25f2 Merge branch 'fix-2081' into 'v2.0' 
Fix #2081 by detecting external URL

See merge request lemonldap-ng/lemonldap-ng!138
 2020-04-22 17:58:26 +02:00
Xavier Guimard
1f80a0ab8c Avoid little warning in test 2020-04-22 15:37:19 +02:00
Xavier Guimard
c9e7f3a1b0 Fix part of circular links (related to #1990) 2020-04-22 14:13:14 +02:00
Maxime Besson
ecbcc0b6b6 Fix #2081 by detecting external URL 2020-04-22 11:25:06 +02:00
Maxime Besson
0983c66139 Portal: add helper method to build a rule from a string 2020-04-22 11:02:59 +02:00
Maxime Besson
b8d72e21b4 fix display of deleted sessions (#2159) 2020-04-21 10:18:50 +02:00
Christophe Maudoux
478d205f07 Code refactoring & Tidy (#2138) 2020-04-17 20:00:36 +02:00
dcoutadeur dcoutadeur
2c6df4dfc0 Merge branch 'logoutforward' into 'v2.0' 
fix #2138 logout forward doesn't work anymore

See merge request lemonldap-ng/lemonldap-ng!136
 2020-04-17 17:56:48 +02:00
dcoutadeur
c984bb8b4a fix CAS logoutServices (see #2138 logout forward doesn't work anymore) 2020-04-17 17:36:43 +02:00
dcoutadeur
17e56da82b cleaner solution for #2138 logout forward doesn't work anymore 2020-04-17 16:26:40 +02:00
dcoutadeur
cd15ac7a67 fix #2138 logout forward doesn't work anymore 2020-04-16 17:27:14 +02:00
Maxime Besson
8c94bf0f13 Allow portal JSON responses to include a rendered HTML error block (#2110) 2020-04-15 18:42:31 +02:00
Maxime Besson
e1767abfda CORS: special handling for AJAX SSL (#2110) 2020-04-15 18:42:31 +02:00
Maxime Besson
2440fc7866 use sendJSONresponse instead of handcrafting portal response 2020-04-15 18:42:31 +02:00
Maxime Besson
4bcb391121 Add an easy way to set level of additional second factors (#2149) 2020-04-15 17:20:27 +02:00
Maxime Besson
755a5c3a6b post confirm to issuer url after restoring (#2142) 2020-04-14 21:46:30 +02:00
Maxime Besson
b512cc700c Replace hidden form values on info when urldc has a QS (#2085) 2020-04-14 18:48:35 +02:00
Christophe Maudoux
13bb55a818 Append an option to define apps tooltip & Improve unit test (#2140) 2020-04-08 22:40:28 +02:00
Christophe Maudoux
202a500c3e Tidy 2020-04-07 11:47:32 +02:00
Christophe Maudoux
0fb0bd1d07 Code refactoring (#2129) 2020-04-07 11:39:32 +02:00
Christophe Maudoux
9e84447d2d Fix update session (#2129) 2020-04-06 23:28:01 +02:00
Christophe Maudoux
e68d5ed2c8 Revert "Fix update session (#2129)" 
This reverts commit 1c65c72a62.
 2020-04-06 19:35:29 +02:00
Christophe Maudoux
1c65c72a62 Fix update session (#2129) 2020-04-06 19:24:50 +02:00
Christophe Maudoux
d53cddae39 Better fix & De-duplicate groups (#2129) 2020-04-06 19:05:50 +02:00
Clément OUDOT
c87a36e3ca Do not run setGroups after 2FA (#2129) 2020-04-06 18:36:51 +02:00
Christophe Maudoux
37a9360625 Append PPolicyNone message & Unit test & Update manifest 2020-04-05 12:19:05 +02:00
Christophe Maudoux
d6d9d6031d Append debug log (#1796) 2020-04-03 18:56:11 +02:00
Christophe Maudoux
f469180663 Improve unit test '#2130) 2020-04-03 00:21:15 +02:00
Christophe Maudoux
6382c35cd4 Update PP display (#2130) 2020-04-02 13:30:22 +02:00
Christophe Maudoux
71ba189edc Append special characters password policy (#2130) 2020-04-02 12:14:05 +02:00
Christophe Maudoux
2a34d1ae8c Update sessionInfo if second factor succeeds & Improve unit tests (#2129) 2020-04-01 15:43:46 +02:00
Clément OUDOT
9620e6870a Possibility to preselect choice tab (#2115) 2020-03-11 11:46:14 +01:00
Christophe Maudoux
c9b2eff039 More explicit error message (#2108) 2020-03-05 22:14:02 +01:00
Christophe Maudoux
903d3540e4 Show lang flags with redirect template 2020-03-02 14:30:58 +01:00
Christophe Maudoux
a4a73ca907 Don t prompt second factor after a failed log in attempt (#2088) 2020-02-27 14:49:27 +01:00
Christophe Maudoux
e89c017ff6 Increase lock time after each failed login attempt (#2088) 2020-02-24 22:20:40 +01:00
Christophe Maudoux
18b43cacfc Avoid unprotected urldc host with wildcard-protected hosts (#2101) 2020-02-22 00:13:52 +01:00
Clément OUDOT
53263c7f10 Remove references to keepPdata = 1 in code (#2099) 2020-02-21 09:29:10 +01:00
Xavier Guimard
4459a47f76 Tidy 2020-02-20 23:37:05 +01:00
Xavier Guimard
a76cba3856 Update versions 2020-02-20 23:37:01 +01:00
Maxime Besson
47068c51b8 Revert "Prevent portal from crashing when keepPdata=1 (#1893)" 
This reverts commit 2b4defb2a9 and
implements a fix "at the source" instead. Should fix #2099.
 2020-02-20 22:24:26 +01:00
Christophe Maudoux
57b546d112 Fix lmConfigEditor logger error (#2059) 2020-02-16 12:58:12 +01:00
Christophe Maudoux
8129d76d63 Improve code 2020-02-13 23:27:13 +01:00
Christophe Maudoux
2f04ffcc4a WIP - Notifications explorer (#2071) 2020-02-09 17:47:25 +01:00
Christophe Maudoux
dd9e849b3e Don t send params with GET method (#2081) 2020-02-07 21:39:58 +01:00
Maxime Besson
68be974e51 Add option to compute userdb groups before macros (#1877) 2020-02-05 15:39:45 +01:00
Maxime Besson
f997a26e41 Fix form method when displaying info in autoPost (#2080) 2020-01-30 20:43:04 +01:00
Clément OUDOT
faa65c4abf Options to add a custom CSS file (#2076) 2020-01-28 15:14:24 +01:00
Maxime Besson
5149ba8118 Make debug message less confusing when portal status is <0 2020-01-23 20:37:18 +01:00
Christophe Maudoux
8279733fbd Update Process.pm 
Typo
 2020-01-22 12:39:02 +01:00
Xavier Guimard
f3f97ccb80 Add sameSite parameter (#2069) 2020-01-20 06:21:09 +01:00
Christophe Maudoux
0408ce80b8 Better better fix (#2061) 2020-01-19 18:06:56 +01:00
Xavier Guimard
0fa90c5efe Avoid double encode_base64 call (#2061) 2020-01-18 22:25:48 +01:00
Christophe Maudoux
32d7f46b1a Better fix (#2061) 2020-01-18 18:58:42 +01:00
Christophe Maudoux
fd2a9ce226 Append info log msg (#2061) 2020-01-17 22:27:03 +01:00
Christophe Maudoux
138ef363d4 Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2061) 2020-01-17 22:17:02 +01:00
Christophe Maudoux
6f31d98710 Revert "Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2063)" 
This reverts commit 965678dde2.
 2020-01-17 22:16:44 +01:00
Christophe Maudoux
965678dde2 Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2063) 2020-01-17 22:10:06 +01:00
Christophe Maudoux
583bbbe285 Append CSP frame-ancestors option & Improve unit test (#2068) 2020-01-15 16:09:57 +01:00
Christophe Maudoux
b28a9d148e Modify log level 2020-01-08 23:06:49 +01:00
Christophe Maudoux
f37c2399b1 Update sessionInfo during auth process with 2FA 2020-01-04 13:36:21 +01:00
Xavier Guimard
43245bbf36 Fix warnings 2020-01-04 08:21:38 +01:00
Christophe Maudoux
a48daee305 Update sessionInfo during auth process 2020-01-03 23:39:57 +01:00
Christophe Maudoux
0f591496b4 Update sessionInfo during auth process to improve handler in-memory sessions security & Improve unit tests 2020-01-03 20:07:36 +01:00
Christophe Maudoux
f8046dd716 Update sessionInfo during auth process & Improve unit tests 2020-01-03 12:36:35 +01:00
Christophe Maudoux
1988983c90 Typo 2019-12-31 17:14:44 +01:00
Xavier Guimard
3317ab9fb1 Fix... 2019-12-25 13:30:54 +01:00
Xavier Guimard
d069f32438 Fix bad export 2019-12-25 13:11:58 +01:00
Christophe Maudoux
2954ea2abc Disable compactConf by default & Update unit tests (#2046) 2019-12-22 13:06:10 +01:00
Clément OUDOT
458d353af8 Merge branch 'v2.0' into dcoutadeur/lemonldap-ng-certificate-reset 2019-12-21 16:19:49 +01:00
Clément OUDOT
983af4dec1 make json (#1605) 2019-12-21 16:13:32 +01:00
dcoutadeur
a465a5d768 Reset Certificate module for v2.0.7 (#1605) 2019-12-19 19:10:32 +01:00
Clément OUDOT
3831b81255 Adapt log message in refresh (#2005) 2019-12-19 18:11:33 +01:00
Christophe Maudoux
c21ab76900 Better fix (#2005) 2019-12-15 12:54:28 +01:00
Christophe Maudoux
e4c5a9d723 Fix #2005 & improve unit test 2019-12-14 17:40:23 +01:00
Clément OUDOT
757399fa61 Catch PE_BADCREDENTIALS error in Combination display process (#2009) 2019-12-13 11:15:05 +01:00
Xavier
d01cfe94df Refresh plugin skeleton (#2006) 2019-12-08 17:19:50 +01:00
Christophe Maudoux
15711c642e Merge branch 'v2.0' into globalLogout 2019-11-15 21:49:56 +01:00
Maxime Besson
bedcf20806 Change portal error code on 2F failure (#2008) 2019-11-15 11:19:08 +01:00
Christophe Maudoux
297ef8cd8c Merge branch 'v2.0' into globalLogout 2019-11-12 22:17:09 +01:00
Christophe Maudoux
603293411b Use userData instead of sessionInfo to fix ContectSwitching debug log 2019-11-12 10:00:11 +01:00
Christophe Maudoux
80a1e4bf57 WIP - Append GlobalLogout plugin (#1999) 2019-11-11 22:33:30 +01:00
Christophe Maudoux
c01c26af6a Append option to override Issuer OTT storage (#1993) 2019-10-31 11:40:33 +01:00
Maxime Besson
5b2f3ca576 Merge branch 'remove-saml-idp-cookie-1941' into 'v2.0' 
Remove SAML IDP cookie (#1941)

See merge request lemonldap-ng/lemonldap-ng!99
 2019-10-30 16:01:11 +01:00
Clément OUDOT
fb74d03a89 Use whatToTrace for logging messages (#1991) 2019-10-29 17:28:55 +01:00
Maxime Besson
ed3e274ab1 Fix force password reset in Combination (#1984) 2019-10-24 08:58:04 +02:00
Maxime Besson
4afecb4620 Remove IDP cookie (#1941) 2019-10-17 23:09:03 +02:00
Christophe Maudoux
0ca649f106 Use custom decrypt functions (#1956) 2019-10-13 15:08:32 +02:00
Maxime Besson
2b4defb2a9 Prevent portal from crashing when keepPdata=1 (#1893) 
Since the changes introduced to fix #1893, keepPdata is expected to
contain an array of values.

When migrating from previous LLNG versions, cookies may contain
keepPdata=1, which crashes the server because 1 isn't an arrayref

This change makes LLNG consider that keepPdata=1 is not a valid value,
and replaces it with an empty arrayref when starting the login or logout
flow.
 2019-10-09 17:35:48 +02:00
Maxime Besson
2bce713f65 Set issuer urldc in pdata (#1893) 2019-10-08 22:40:10 +02:00
Maxime Besson
3ee708d8ff Delay cookie restore after hooks (#1965) 2019-10-07 17:26:40 +02:00
Christophe Maudoux
138cfe6edb Append DecryptValue plugin (#1956) 2019-09-30 22:29:49 +02:00
Christophe Maudoux
a219a51e1c Revert "Make manifest" 
This reverts commit c00110ed01.
 2019-09-30 22:28:55 +02:00
Christophe Maudoux
c00110ed01 Make manifest 2019-09-30 22:26:55 +02:00
Christophe Maudoux
b505d3a475 Typo 2019-09-30 19:10:05 +02:00
Xavier
461cd51e45 Try to fix #1785 without breaking pdata 2019-09-29 23:04:17 +02:00
Christophe Maudoux
2095fdf316 Improve log (#1702) 2019-09-18 19:59:35 +02:00
Clément OUDOT
ce6f6c3977 Get login to use it in password force change form (#1910) 2019-09-18 15:55:13 +02:00
Maxime Besson
98f55fd384 Translate the error code displayed in debug logs 2019-09-17 20:17:57 +02:00
Maxime Besson
c94e2534a9 Send CORS headers when doing JSON responses too (#1765) 2019-09-16 16:55:15 +02:00
Maxime Besson
e281ad7cc3 Add support for CORS preflight (#1765) 2019-09-16 16:55:15 +02:00
Christophe Maudoux
9c01c46fea Typo (#1932) 2019-09-14 23:37:50 +02:00
Christophe Maudoux
dd66f37739 Return httpSession id if exists (#1932) 2019-09-14 22:47:11 +02:00
Xavier
e50e7d09d1 Update version of (really) modified files 2019-09-12 21:56:49 +02:00
Christophe Maudoux
4287c39f5b typo 2019-09-11 16:20:28 +02:00
Christophe Maudoux
132f42d44c Forbid browsers to store users password & Improve unit tests (#1913) 2019-09-08 19:28:28 +02:00
Maxime Besson
00e91f374b Add specific error code when missing a required SAML attr (#1919) 
The MISSINGREQATTR message is a good default value, but a site
administrator may decide to override it with a personnalized version
that only applies to issuer errors caused by an incomplete user profile
(for example, giving a pointer to the local user profile management
application)
 2019-09-06 11:04:39 +02:00
Clément OUDOT
068ffbe604 Define portalDisplayPasswordPolicy parameter in Manager (#993) 2019-09-05 13:02:51 +02:00
Clément OUDOT
b44c13ba2f Display password policy in password change form (#993) 2019-09-05 12:46:32 +02:00
Christophe Maudoux
3e9a424090 Update version (#1916) 2019-09-03 22:57:51 +02:00
Christophe Maudoux
56ed8a5724 Append issuersTimeout option (#1916) 2019-09-03 22:52:07 +02:00
Clément OUDOT
177f446f25 Display main logo in redirect page (#1906) 2019-08-29 19:29:27 +02:00
Xavier Guimard
ae6e69667a Fix warning 2019-08-29 10:49:01 +02:00
Xavier
1f2f0240f0 Love Perl (#1863) 
TIMTOWTDI
 2019-08-28 00:36:18 +02:00
Maxime Besson
810d2c7f94 Disable template cache to avoid translation issues in mail (#1897) 2019-08-27 23:13:36 +02:00
Xavier Guimard
323d92fa1b Don't load Data::Dumper unless debug 2019-08-27 10:10:11 +02:00
Christophe Maudoux
ec59cc164c Catch error earlier in process (#1867) 2019-08-24 23:26:42 +02:00
Xavier
097183f2b3 Fix warning 2019-08-16 09:10:10 +02:00
Christophe Maudoux
7502e424e3 Revert "Concatenate pdata and lemon cookies in the same set-cookie header (#1863)" 
This reverts commit c3a01c042c
 2019-08-13 10:16:31 +02:00
Christophe Maudoux
c3a01c042c Concatenate pdata and lemon cookies in the same set-cookie header (#1863) 2019-08-12 23:52:33 +02:00
Christophe Maudoux
3891c9caec Fix log level & improve e2e ini file (#1878) 2019-08-12 22:20:22 +02:00
Christophe Maudoux
f8ef2797a8 Update manifest 2019-08-12 21:36:55 +02:00
Christophe Maudoux
d7cb8bf4b8 Force remove pdata cookie to avoid loop (#1878) 2019-08-12 21:29:08 +02:00
Christophe Maudoux
c1736f7f82 Catch error if setSecurity is undefined (#1874) 2019-08-04 12:08:34 +02:00
Christophe Maudoux
1422c28c0b Improve fix & unit test (#1874) 2019-08-03 23:49:02 +02:00
Christophe Maudoux
6cf1c83151 Fix & Improve unit test (#1874) 2019-08-03 22:48:07 +02:00
Maxime Besson
c1afdbefac Add labels and logos to all 2F providers (#1873) 2019-08-01 17:27:14 +02:00
Xavier
88f75c42ed Set pdata domain also when removing cookie (#1829) 2019-07-05 06:43:11 +02:00
Christophe Maudoux
6a579644f8 Fix warning (#1842) 2019-07-04 23:20:11 +02:00
Christophe Maudoux
2016abd2ee Send pdata cookie to cross domain (#1829) 2019-07-04 21:49:28 +02:00
Xavier
9cdfd4c9a6 Add notice when user is connected 2019-07-04 21:22:06 +02:00
Xavier
d4fedbdfcf Duplicate log rules in Plugin manpage 2019-07-04 07:09:39 +02:00
Xavier Guimard
c1137edba8 make tidy with perltidy-20181120 2019-07-02 20:03:40 +02:00
Christophe Maudoux
b94cbe0144 Fix default value (#1825) 2019-07-01 13:28:01 +02:00
Christophe Maudoux
69d2a2db0c Fix default value (#1825) 2019-07-01 12:56:10 +02:00
Christophe Maudoux
a1f5791e06 Merge branch '1783' into v2.0 2019-06-30 19:00:41 +02:00
Christophe Maudoux
bcbea7bee0 Update version (#1825) 2019-06-29 21:48:52 +02:00
Christophe Maudoux
eda8151432 Don t mix && with and (#1825) 2019-06-29 21:35:13 +02:00
Christophe Maudoux
11d2909b0a WIP - Disable persistent sessions storage (#1825) 2019-06-29 21:10:16 +02:00
Christophe Maudoux
897d04ac93 Merge branch 'v2.0' into 1783 2019-06-28 22:05:48 +02:00
Xavier
c921c295ed Use user skin in loadTemplate (Fixes: #1828) 2019-06-28 13:40:56 +02:00
Christophe Maudoux
8ad895c3b8 Merge branch 'v2.0' into 1783 2019-06-27 21:11:56 +02:00
Xavier Guimard
264410409d Move CAS service verification from main to Issuer::CAS (#1795) 2019-06-27 16:55:12 +02:00
Maxime Besson
e1f927a195 Check service= parameter on CAS logout (#1795) 
service= redirect URL is not checked when logging out from CAS, to avoid
insecure redirect attacks. The verification is only made if CAS access
control is enabled.

In order for this to work in common cases (applications redirects to an
unprotected page after logout), we add CAS App domains to the list of
globally trusted domains.

If your application wants to redirect to a third-party domain, it needs
to be added to LLNG's trustedDomains
 2019-06-27 12:40:40 +02:00
Maxime Besson
5f9c4c231d Add authenticated routes to 2FA for session upgrade (#1822) 2019-06-26 23:33:00 +02:00
Xavier Guimard
e15a41bc66 Fix typo: s/templatesDir/templateDir/g (#1819) 2019-06-26 11:59:13 +02:00
Christophe Maudoux
0b567d6c15 Merge branch 'v2.0' into 1783 2019-06-25 20:23:48 +02:00
Christophe Maudoux
b9af5d1adc Use Id 2019-06-25 19:30:06 +02:00
Christophe Maudoux
266f2fdf02 Merge branch 'v2.0' into 1783 2019-06-24 23:36:54 +02:00
Xavier
9df3d57bc9 In REST, PE_LOGOUT_OK must return 200 2019-06-24 23:06:15 +02:00
Christophe Maudoux
c24ff711a0 WIP - ContextSwitching (#1783) 2019-06-23 10:51:10 +02:00
Christophe Maudoux
b69ffc0ff8 WIP - ContextSwitching (#1783) 2019-06-21 15:23:06 +02:00
Christophe Maudoux
a2ebaf31b1 WIP - AdminImpersonation skeleton (#1783) 2019-06-19 18:13:17 +02:00
Christophe Maudoux
c4d4b482a5 Provide to plugins message display functions (#1796) 2019-06-18 22:00:03 +02:00
Xavier Guimard
5fbff01b27 Update versions 2019-06-14 17:27:54 +02:00
Xavier Guimard
65eaefa75f Tidy 2019-06-14 17:23:26 +02:00
Xavier Guimard
2a021e37ea Don't require getDisplayType in Choice (#1800) 2019-06-13 17:51:36 +02:00
Maxime Besson
1a66da30f9 Store portal language in _language user session key (#1764) 2019-06-13 09:26:19 +02:00
Maxime Besson
97d0bbf0aa Fix CASv2 logout (#1753) 2019-06-11 16:18:15 +02:00
Xavier
94c2a0bc3b Add addAuthRouteWithRedirect() doc (#1787) 2019-06-06 23:02:46 +02:00
Xavier
f4bca7430a Add addAuthRouteWithRedirect() method to Try (#1787) 2019-06-06 22:59:02 +02:00
Christophe Maudoux
eab00052f3 Fix debug msg (#1774) 2019-06-04 20:42:54 +02:00
Christophe Maudoux
18dd7c2c41 Append debug msg (#1765) 2019-06-04 16:19:01 +02:00
Christophe Maudoux
35f1677747 Append unit test and fix CORS headers (#1765) 2019-05-31 17:50:44 +02:00
Christophe Maudoux
132e57b4b3 Manage CORS headers (#1765) 2019-05-31 17:00:39 +02:00
Xavier Guimard
8fd3f6be90 Merge branch 'issue1521-appmenu' into 'v2.0' 
Preserve applicationList key names (#1521)

See merge request lemonldap-ng/lemonldap-ng!76
 2019-05-28 22:10:53 +02:00
Xavier
f0842569c2 Don't erase pdata on 404 errors (#1778) 2019-05-28 21:58:22 +02:00
Maxime Besson
b12992755f Preserve applicationList key names (#1521) 
Previously, every configuration save from the manager would overwrite
applicationList key names to preserve their ordering.

This commit introduces a new "order" key in the JSON config instead.
 2019-05-28 15:38:26 +02:00
Christophe Maudoux
26233106a5 Set _updateTime session value (#1771) 2019-05-26 11:56:58 +02:00
Christophe Maudoux
59f07b7b8f Avoid to renew double cookie sessions for refresh request (#1747) 2019-05-20 23:03:10 +02:00
Christophe Maudoux
29b7341345 Change code order (#1749) 2019-05-19 13:40:46 +02:00
Xavier
a2e78c88c3 Set versions 2019-05-16 20:42:31 +02:00
Xavier
1186aba52b lmError(): return JSON if wanted (#1745) 2019-05-16 06:50:13 +02:00
Xavier
f3c4ea0afb Tydy 2019-05-11 20:18:43 +02:00
Xavier
2ce7396bf2 Don't filter on session_kind with SOAP (#1742) 2019-05-11 15:41:14 +02:00
Clément OUDOT
259f9d8d94 Use same JSON fields for failure and success (#1711) 2019-04-13 15:23:40 +02:00
Clément OUDOT
9256571f25 Return session id with successful REST authentication (#1711) 2019-04-12 16:57:22 +02:00
Clément OUDOT
ae3a728378 Manage template inclusion when file is not in configured portal theme (#1653) 2019-04-10 15:42:58 +02:00
Xavier
af707c5b1f Clear pdata on lmerror access 2019-04-10 07:14:36 +02:00
Maxime Besson
666e59ad6e Fix #1698 by clearing saml request token on unauth issuer flow 
Add some unit tests to make sure relevant pdata is cleared after authentication
 2019-04-05 23:27:21 +02:00
Xavier Guimard
2159957c34 Update versions 2019-04-05 09:54:43 +02:00
Clément OUDOT
8859fe342b Fix setHiddenFormValue (#1692) 2019-04-03 17:54:58 +02:00
Xavier Guimard
ece9b21219 Remove trailing whitespaces 2019-04-03 14:15:16 +02:00
Clément OUDOT
bac2eb564c Remove antiframe protection in portal javascript (#1696) 2019-04-02 15:05:41 +02:00
Clément OUDOT
4af47ad6a4 Allow iframe from portal to be able to load saml SLO return page (#1671) 2019-04-01 18:09:31 +02:00
Clément OUDOT
59bc0642fc Always display info (#1693) 2019-04-01 17:18:28 +02:00
Xavier
906db8daa6 Merge branch 'antoinerosier/lemonldap-ng-logs' into v2.0 2019-03-27 21:44:25 +01:00
Antoine ROSIER
b79c9659cb Add user logs informations (#1687) 2019-03-27 16:00:39 +01:00
Clément OUDOT
aa139df89d Change criticity of password must be reset message (#1654) 2019-03-26 16:45:19 +01:00
Xavier Guimard
af4f123916 Fix cspScrip (Closes: #1683) 2019-03-26 09:56:46 +01:00
Xavier Guimard
99afd7243a Fix #1675 2019-03-26 08:06:55 +01:00
Xavier
f226bded41 Partial fix for /logout (#1675) 2019-03-26 07:30:36 +01:00
Xavier
774707ad65 Add cache to avoid parsing and compiling JSON files at each request (#1595) 2019-03-26 06:49:39 +01:00
Xavier Guimard
3c0a9d7ecc Second fix for #1673 2019-03-25 19:34:29 +01:00
Xavier Guimard
4138b7edae Fix menu app cache (#1673) 2019-03-25 16:48:57 +01:00
Clément OUDOT
8a9a5b0b3a New method to override messages with JSON files (#1595) 2019-03-19 17:39:13 +01:00
Clément OUDOT
447c09c0a2 Remove old translation file (#1595) 2019-03-19 15:38:36 +01:00
Clément OUDOT
9798c78068 Remove userData if authentication fails (#1666) 2019-03-18 21:29:15 +01:00
Clément OUDOT
627548e95d Display authentication error on login form (#1666) 2019-03-18 11:41:41 +01:00
Clément OUDOT
8cd579f19f Add a waiting message for Kerberos/SSL workflow (#1670) 2019-03-11 16:36:32 +01:00
Clément OUDOT
145db1cf60 Fix regexp for portal default condition (#1669) 2019-03-11 12:01:16 +01:00
Xavier Guimard
bc2bef4ff4 Please use our .perltidyrc 2019-03-07 18:22:58 +01:00
Christophe Maudoux
7b08a7c442 Rename idSpoofing plugin to Impersonation & all relative parameters (#1664) 2019-03-06 16:30:56 +01:00
Xavier Guimard
26b80873be Modify Try.pm to handle authorizations (#1658) 2019-03-05 21:11:07 +01:00
Christophe Maudoux
ff05a8f797 Modify parameters (#1664) 2019-03-05 14:50:01 +01:00
Christophe Maudoux
4e51cc342b Append access rule (#1664) 2019-03-03 21:27:27 +01:00
Christophe Maudoux
228a37c0d2 WIP - Append parameters (#1664) 2019-03-03 21:27:27 +01:00
Christophe Maudoux
3bb7f6e664 WIP - Create session (#1664) 2019-03-03 21:27:27 +01:00
Christophe Maudoux
a41b5fb945 Fix OTT & minor improvements (#1658) 2019-03-02 11:45:59 +01:00
Christophe Maudoux
4fe1473f9a Check access rules (#1658) 2019-02-28 21:59:59 +01:00
Clément OUDOT
d8a8832f4c Restore old login history (#1656) 2019-02-28 17:40:15 +01:00
Clément OUDOT
b3f917ac5a Improve log in updateSession (#1656) 2019-02-28 16:51:16 +01:00
Christophe Maudoux
697882bd45 WIP - checkUser plugin skeleton (#1658) 2019-02-23 09:35:43 +01:00
Christophe Maudoux
00fae442e9 Update version (#1595) 2019-02-21 16:33:12 +01:00
Christophe Maudoux
b57a0788c2 Check JSON structure (#1595) 2019-02-21 16:25:02 +01:00
Christophe Maudoux
9fafa1d8d5 Override msg with local json files (#1595) 2019-02-20 23:22:56 +01:00
Christophe Maudoux
28caeea3c2 Partial revert (#1595) 2019-02-19 20:10:41 +01:00
Christophe Maudoux
62167a41f1 Load Portal despite translation file does not exist (#1595) 2019-02-19 17:27:28 +01:00
Christophe Maudoux
063c0f0d1b Partial revert - Modify Portal side is more consistent (#1653) 2019-02-18 20:39:47 +01:00
Christophe Maudoux
9274c54f20 Disable Portal cache (#1651) 2019-02-13 22:35:23 +01:00
Christophe Maudoux
b777007ff6 Override msg by reading a file (#1595) 2019-02-09 22:38:13 +01:00
Christophe Maudoux
94574f2f19 Override msg by reading a file (#1595) 2019-02-09 20:48:46 +01:00
Christophe Maudoux
b1048043e9 Restore GET activation global rule & Improve unit test (#1625) 2019-02-07 17:16:29 +01:00
Xavier Guimard
c7b4eb5051 tidy with new conf 2019-02-07 09:27:56 +01:00
Christophe Maudoux
9cfef329ee Append PE_ERROR constants (#1625) 2019-02-06 23:10:43 +01:00
Xavier Guimard
747ee78dfd Improve authenticate() rejection (#1639) 2019-02-06 15:36:45 +01:00
Xavier Guimard
5886cbe2a0 Tidy 2019-02-05 23:12:17 +01:00
Xavier Guimard
f8942d156d Override templateDir before calling sendHtml (fixes: #1642) 2019-02-05 19:04:06 +01:00
Xavier Guimard
24ef6d3905 Revert "Override templateDir before calling sendHtml (#1642)" 
This reverts commit 0466bf2784.
 2019-02-05 19:00:01 +01:00
Clément OUDOT
0466bf2784 Override templateDir before calling sendHtml (#1642) 2019-02-05 18:46:14 +01:00
Clément OUDOT
8ca60a9238 Do not set portal background in CSS if no value is configured (#1643) 2019-02-05 18:39:43 +01:00
Christophe Maudoux
37cb923422 Fix error msg (#1628) 2019-02-04 19:15:58 +01:00
Christophe Maudoux
b70d8ea673 Revert "Catch error msg if Id doesn t exist (#1628)" 
This reverts commit 8b9c47d6eb
 2019-02-04 13:02:29 +01:00
Christophe Maudoux
8b9c47d6eb Catch error msg if Id doesn t exist (#1628) 2019-02-04 12:58:30 +01:00
Christophe Maudoux
fcac69fe7a Merge branch 'v2.0' of gitlab.ow2.org:lemonldap-ng/lemonldap-ng into v2.0 2019-02-03 20:05:40 +01:00
Christophe Maudoux
153084118f Fix SSL/Kerberos Auth with Choice & Improve unit tests (#1636) 2019-02-03 20:05:28 +01:00
Maxime Besson
f35a7c305a Add Mail second factor plugin 2019-02-03 14:46:40 +01:00
Christophe Maudoux
3021e998a7 Fix SSL/Kerberos Auth with Choice (#1636) 2019-02-03 00:17:53 +01:00
Clément OUDOT
b63dd14746 Update module version (#1634) 2019-01-31 15:40:54 +01:00
Clément OUDOT
059d5320cb Clean code that manages templates parameters (#1634, #1631) 2019-01-31 15:38:58 +01:00
Clément OUDOT
efb7f667c4 Allow to display env in main templates (#1631) 2019-01-31 14:05:24 +01:00
Christophe Maudoux
96b93a56c1 Partial revert rename parameters (#1605) 2019-01-24 19:45:43 +01:00
Christophe Maudoux
33ebe9178b Split mailReset plugin and SMTP parameters (#1616) 2019-01-19 17:08:15 +01:00
Christophe Maudoux
b486735d46 WIP - Split mailReset plugin and SMTP parameters (#1616) 2019-01-16 22:57:35 +01:00
Clément OUDOT
3c3b8eccb7 Remove utf8 decode for menu (#1614) 2019-01-15 22:42:42 +01:00
Xavier Guimard
2ab385e2df Update versions 2019-01-09 13:42:30 +01:00
Xavier Guimard
54539e97d9 Add aroundSub entrypoint 2018-12-21 16:07:28 +01:00
Xavier Guimard
06431d71f5 New endpoint: afterSub 2018-12-21 16:07:28 +01:00
Xavier Guimard
1e3ab69be3 Add minimal Auth::GPG 2018-12-21 16:07:28 +01:00
Xavier Guimard
c6ff9dcf0b Display error if a plugin sets it (#595) 2018-12-21 11:26:11 +01:00