Maxime Besson
|
913ebbd556
|
fix missing domain in child-src during SAML POST logout (#2513)
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
a94fb616bd
|
Allow admin to disallow host-based match (#2506)
|
2021-04-09 17:51:54 +02:00 |
|
Maxime Besson
|
c1e059eeb3
|
Use authChoiceAuthBasic to select Choice (#2502)
|
2021-04-07 16:40:32 +02:00 |
|
Christophe Maudoux
|
4751427105
|
Fix error level & Improve doc (#1976)
|
2021-04-01 23:31:48 +02:00 |
|
Christophe Maudoux
|
c0db322ef0
|
Perl critic
|
2021-04-01 23:07:58 +02:00 |
|
Maxime Besson
|
d696853556
|
Factor MAIN_LOGO variable in loadMailTemplate (#2495)
|
2021-03-31 14:27:23 +02:00 |
|
Maxime Besson
|
20e1f9ded0
|
Hash JWT to catch tampering (#2419)
This mechanism's only purpose is to make the introsection endpoint fail
to verify the token when the JWT itself has been tampered with.
|
2021-03-30 16:32:14 +02:00 |
|
Clément OUDOT
|
55ab4b5a5f
|
Fix CAS log message on service ticket validation error (#2494)
|
2021-03-25 16:33:48 +01:00 |
|
Maxime Besson
|
a70051e3fe
|
Remove deprecated base64url implementation
All our target distros now have base64url in Mime::Base64
|
2021-03-03 11:03:19 +01:00 |
|
Maxime Besson
|
bb95e681e6
|
Tidy
|
2021-03-03 11:03:19 +01:00 |
|
Maxime Besson
|
e10d1e291c
|
Return granted scopes if different from requested scopes (#2424)
|
2021-03-03 11:03:19 +01:00 |
|
Maxime Besson
|
2d7f9e34a6
|
OIDC: Return error if multiple client auth used (#2474)
|
2021-02-24 17:48:12 +01:00 |
|
Maxime Besson
|
cceb6f767e
|
Use a dedicated function for OIDC error reporting (#2465)
|
2021-02-18 22:06:39 +01:00 |
|
Maxime Besson
|
a1ed57c035
|
Add typ header to access token jwt (#2419)
|
2021-02-03 09:43:35 +01:00 |
|
Maxime Besson
|
1cd7dd3d2c
|
Add hook for access token JWT payload (#2419)
|
2021-02-01 18:20:32 +01:00 |
|
Maxime Besson
|
d86e8ce0df
|
Refactor: remove extractJWT
|
2021-02-01 18:20:32 +01:00 |
|
Maxime Besson
|
cb04670003
|
Refactor checksignature
|
2021-02-01 18:20:32 +01:00 |
|
Maxime Besson
|
435ba82144
|
Refactor: rename and move getJWTJSONData
|
2021-02-01 18:20:32 +01:00 |
|
Maxime Besson
|
6aef1a6317
|
Refactor: getUserInfo now returns a hash
|
2021-02-01 18:20:32 +01:00 |
|
Maxime Besson
|
f3c97c22dc
|
Refactor access token id lookup into Common::JWT
|
2021-02-01 18:20:32 +01:00 |
|
Maxime Besson
|
aa877cf0a3
|
Let newAccessToken emit JWT (#2419)
|
2021-02-01 18:15:55 +01:00 |
|
Maxime Besson
|
dc0bacd6f0
|
Accept Access Tokens in JWT format (#2419)
|
2021-02-01 18:15:55 +01:00 |
|
Maxime Besson
|
acaaf1c749
|
Refactor buildUserInfo (#2419)
|
2021-02-01 18:15:55 +01:00 |
|
Maxime Besson
|
dbddddfba1
|
Refactor newAccessToken (#2419)
|
2021-02-01 18:15:55 +01:00 |
|
Maxime Besson
|
5562d8b1dd
|
Add a function to resolve allowed scopes from rules (#2424)
|
2021-02-01 16:25:35 +01:00 |
|
Maxime Besson
|
c30b452aa3
|
Load dynamic scopes from config (#2424)
|
2021-02-01 16:25:35 +01:00 |
|
Maxime Besson
|
c844cc25b0
|
Fix SAML logout propagation with Redirect binding (#2449)
|
2021-01-29 09:45:50 +01:00 |
|
Christophe Maudoux
|
5d56a88ff3
|
Use strict & Typo
|
2021-01-23 18:57:24 +01:00 |
|
Christophe Maudoux
|
d6e351ab90
|
Tidy
|
2021-01-19 22:45:05 +01:00 |
|
Maxime Besson
|
5b4e533f44
|
Add _scope and _clientID to portal (#1987)
|
2021-01-19 17:06:21 +01:00 |
|
Maxime Besson
|
dd5e9ec156
|
Tidy
|
2021-01-19 16:44:06 +01:00 |
|
Christophe Maudoux
|
bd1a0bf6da
|
Fix regex (#1976)
|
2021-01-07 09:54:00 +01:00 |
|
Christophe Maudoux
|
1c45e8a8c0
|
Merge branch 'v2.0' into findUser
|
2021-01-05 22:14:28 +01:00 |
|
Christophe Maudoux
|
846d6a3655
|
Allow wildcard with searching parameters (#1976) & Improve unit tests
|
2021-01-05 22:08:48 +01:00 |
|
Maxime Besson
|
2a805e06b9
|
Match CAS service via prefix (#2331)
|
2021-01-05 17:34:57 +01:00 |
|
Maxime Besson
|
e78f8a2270
|
Refactor CAS code (#2321)
|
2021-01-05 17:34:57 +01:00 |
|
Christophe Maudoux
|
fc6ea96954
|
FindUser with combination (#1976)
|
2021-01-03 19:00:20 +01:00 |
|
Christophe Maudoux
|
c2c02b4c86
|
Append REST UserDB unit test (#1976)
|
2021-01-02 22:50:56 +01:00 |
|
Christophe Maudoux
|
de1be30176
|
Fix other Backend (#1976)
|
2021-01-02 19:21:16 +01:00 |
|
Christophe Maudoux
|
597455dfcf
|
FindUser with LDAP & AD & Append unit test (#1976)
|
2020-12-27 23:37:40 +01:00 |
|
Christophe Maudoux
|
072f68004a
|
Improve debug log & unit tests (#1976)
|
2020-12-27 18:03:08 +01:00 |
|
Christophe Maudoux
|
0b750fb6cc
|
Append Choice unit tests (#1976)
|
2020-12-27 14:24:15 +01:00 |
|
Christophe Maudoux
|
c0f71ee0f1
|
Fix FindUSer with Choice (#1976)
|
2020-12-27 13:29:10 +01:00 |
|
Christophe Maudoux
|
510a1dc1c2
|
WIP: UserDB findUser (#1976)
|
2020-12-22 17:02:51 +01:00 |
|
Christophe Maudoux
|
bfcdd370df
|
Merge branch 'v2.0' into findUser
|
2020-12-21 21:11:55 +01:00 |
|
Maxime Besson
|
ed0be42c93
|
Merge branch 'WIP-plugin-hooks-2359' into 'v2.0'
Plugin hook system to extend issuers (and maybe more)
See merge request lemonldap-ng/lemonldap-ng!166
|
2020-12-21 16:35:03 +01:00 |
|
Christophe Maudoux
|
4d04672c20
|
WIP: FindUser skeleton (#1976)
|
2020-12-20 22:54:35 +01:00 |
|
Clément OUDOT
|
8211850be7
|
Better userLogger messages for password change (#2393)
|
2020-11-29 18:02:13 +01:00 |
|
Maxime Besson
|
f49c1adf17
|
add oidcGenerateIDToken hook (#2359)
|
2020-11-27 14:00:58 +01:00 |
|
Maxime Besson
|
daef0cf776
|
add oidcGenerateUserInfoResponse hook (#2359)
|
2020-11-27 14:00:58 +01:00 |
|