dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
11,633 Commits 3 Branches 0 Tags 75 MiB
94ec375094
Commit Graph

1626 Commits

Author SHA1 Message Date
Christophe Maudoux
48df4a8807 Fix conf test & unit test (#2243) 2020-12-19 19:46:36 +01:00
Christophe Maudoux
7be0240389 Update default values & Tidy (#2243) 2020-12-16 22:58:01 +01:00
Christophe Maudoux
652d8ba9bc Prevent authentication on backend if account is locked (#2243) 2020-12-16 22:49:41 +01:00
Christophe Maudoux
b1232739a0 Fix unit test 2020-12-10 23:54:43 +01:00
Christophe Maudoux
df82d9d185 Take useSafeJail option into account in Manager & 
Append an option to skip assignment test & Improve unit test (#2414, #2360)
 2020-12-10 22:43:26 +01:00
Clément OUDOT
afe516c761 Mail 2F session key in Manager (#2406) 2020-12-03 20:53:57 +01:00
Christophe Maudoux
82187419a7 Warn if assignment & improve message (#2360) 2020-12-01 23:16:54 +01:00
Christophe Maudoux
ef0d10d91d Warn if assignment (#2360) 2020-12-01 22:58:14 +01:00
Christophe Maudoux
32d52b96d8 Append an option to obfuscate some headers value (#2398) 2020-11-27 23:09:18 +01:00
Christophe Maudoux
0a4fabb4e4 Use strict & fix warnings 2020-11-21 19:24:04 +01:00
Christophe Maudoux
d356455ed8 Merge branch 'v2.0' into 2381 2020-11-15 16:31:49 +01:00
Xavier Guimard
93cb619cd2 Merge branch 'v2.0' into master 2020-11-13 06:17:45 +01:00
Christophe Maudoux
a0feeae9a1 Append accessToTrace parameter (#2381) 2020-11-12 13:43:41 +01:00
Maxime Besson
dcfd2a8968 Remove warning when using special session keys in whatToTrace #2232 2020-11-12 09:48:30 +01:00
Maxime Besson
5714a753be Add manager form for OIDC attribute (#2330) 2020-11-06 19:00:52 +01:00
Maxime Besson
8b9c6be6f6 Add krbAllowedDomains in manager (#2372) 2020-11-05 10:39:20 +01:00
Christophe Maudoux
602ccf91f6 Append parameters (#2368) 2020-11-04 13:49:51 +01:00
Christophe Maudoux
ac98c223d3 Merge branch 'v2.0' 2020-11-01 00:03:07 +01:00
Maxime Besson
e505e0e7e5 Encrypt session IDs to avoid disclosing them to admins (#2350) 2020-10-30 16:45:58 +01:00
Christophe Maudoux
42871a73c5 Warn if assignment (#2360) 2020-10-30 13:08:20 +01:00
Christophe Maudoux
b869b59da7 Avoid assignment (#2360) 2020-10-30 12:55:39 +01:00
Christophe Maudoux
600569247f WIP: Hide _session_id with session & 2ndFA explorers (#2350) 2020-10-28 09:31:12 +01:00
Maxime Besson
dd199e32b8 Add manager test for LDAPS connect timeout support (#2267) 2020-10-27 16:01:39 +01:00
Maxime Besson
1623c542a0 Add ldap IO timeout option to manager (#2267) 2020-10-27 16:01:36 +01:00
Christophe Maudoux
b3ad81ec8c Display notification content (#2353) 2020-10-16 23:28:00 +02:00
Maxime Besson
ac3d521c5e API: remove confKey from PUT body 2020-10-14 14:18:17 +02:00
Maxime Besson
338958f269 API: add redirectUris to top level response 2020-10-14 11:37:13 +02:00
Maxime Besson
0ca8701ea7 Api: friendly error if confKey is empty during creation 2020-10-14 11:36:37 +02:00
Maxime Besson
2b4c76cf4d API: tidy CasApp.pm 2020-10-14 11:36:16 +02:00
Christophe Maudoux
bf9ecc35ad Re-order tree to be more consistent (#2336) 2020-10-12 16:59:14 +02:00
Christophe Maudoux
dd833c2843 Update doc (#1605) 2020-10-12 16:39:12 +02:00
Xavier Guimard
28c9623b73 Merge branch 'v2.0' into master 2020-10-12 16:08:36 +02:00
Xavier Guimard
61df3e83e7 Merge branch 'v2.0' into master 2020-10-12 15:51:48 +02:00
Christophe Maudoux
1c574f03da Rule is not parsed -> convert to bool & be more consistent (#1605) 2020-10-12 15:38:57 +02:00
Christophe Maudoux
9f57ec474b Code refactoring (#2339) 2020-10-12 15:03:21 +02:00
Maxime Besson
3a4d2f1939 Add a manager test to warn user when Lasso is too old for SHA2 (#2341) 2020-10-07 19:13:15 +02:00
Xavier Guimard
e7526f32af Fix versions 2020-10-07 17:15:20 +02:00
Xavier Guimard
4583f3a9e6 Merge branch 'v2.0' into master 2020-10-07 17:11:27 +02:00
Maxime Besson
f74787f81a Switch default SAML signature alg to SHA256 (#2341) 2020-10-07 15:35:37 +02:00
Maxime Besson
5606d0ed6f Add support for SHA384 and SHA512 (#2322) 2020-10-07 15:31:57 +02:00
Maxime Besson
aec6f82ffd Add manager test for signature method override (#2319) 2020-10-07 15:31:27 +02:00
Maxime Besson
4d5de59735 Add manager option to override SAML signature method (#2319) 2020-10-07 15:31:27 +02:00
Maxime Besson
e72d7d7235 Update manager to generate saml certs by default (#2316) 2020-10-07 15:25:08 +02:00
Maxime Besson
2ba14db40e Add new route to generate a X509 self signed cert (#2316) 2020-10-07 15:24:44 +02:00
Maxime Besson
7a68c1e407 lemonldap-ng-cli: fix restore when config is empty (#2340) 2020-10-07 15:07:42 +02:00
Christophe Maudoux
352b97f681 Append option to modify 2FA during context switching (#2338) 2020-10-04 21:18:09 +02:00
Christophe Maudoux
bd1b153561 Re-order and update lang to be more consistent 2020-10-02 20:42:46 +02:00
Clément OUDOT
9cec235472 Configuration of adaptative authentication level plugin in Manager (#2336) 2020-10-02 16:41:35 +02:00
Christophe Maudoux
8a4903abd8 Typo 2020-09-30 21:41:27 +02:00
Christophe Maudoux
3ca6a04ec9 Append manager test (#2329) 2020-09-26 22:30:30 +02:00
Xavier Guimard
b8102d127e Merge remote-tracking branch 'origin/v2.0' into master 2020-09-22 13:05:37 +02:00
Maxime Besson
c7d878f893 Implement a new config test for #2293 2020-09-16 17:29:49 +02:00
Maxime Besson
afb62cb1a6 Add test mail server endpoint (#2293) 2020-09-16 17:29:49 +02:00
Maxime Besson
022ecdf6f7 Add button in manager to send a test mail (#2293) 2020-09-16 17:29:48 +02:00
Maxime Besson
99dc799534 Remove SMTP config test (#2293) 2020-09-16 17:27:00 +02:00
Christophe Maudoux
1a73f7ab7f Append rule & fix userData (#2314 & #2315) 2020-09-15 14:13:34 +02:00
Christophe Maudoux
059b2b13f1 Merge branch 'v2.0' into 2266 2020-09-07 18:56:37 +02:00
Clément OUDOT
f835f3d36f Update version in modules 2020-09-06 19:58:58 +02:00
Maxime Besson
4e5578e32f New manager options for ldap certificate validation (#2250) 2020-09-05 12:21:34 +02:00
Xavier Guimard
c8df084247 Update versions 2020-09-04 17:59:00 +02:00
Maxime Besson
66c68f6056 Merge branch 'feature-delayed-2fa-2124' into 'v2.0' 
Delay 2FA until required by an application

See merge request lemonldap-ng/lemonldap-ng!147
 2020-09-04 17:40:46 +02:00
Maxime Besson
eb191be72e Add error message when no sf available during upgrade (#2124) 2020-09-04 17:17:02 +02:00
Maxime Besson
c183675651 Add option to skip session upgrade confirmation (#2124) 2020-09-04 17:16:09 +02:00
Maxime Besson
1cf1990fe2 Add portal code for session upgrade 2020-09-04 17:15:34 +02:00
Maxime Besson
ab356f12fb Add manager option for delayed 2FA (#2124) 2020-09-04 17:15:29 +02:00
Maxime Besson
cb43b27904 Add manager options for authn level in issuer apps (#2124, #1848) 2020-09-04 17:14:04 +02:00
Xavier Guimard
4e130f327c Merge branch 'v2.0' into master 2020-09-04 06:24:55 +02:00
Xavier Guimard
b9e9ff1f3f Make autopkgtest happy 2020-09-04 06:23:35 +02:00
Christophe Maudoux
937bdd4e8b Merge branch 'v2.0' 2020-09-02 18:55:23 +02:00
Christophe Maudoux
2cf9af77d5 Merge branch 'v2.0' into 2266 2020-09-02 18:54:29 +02:00
Christophe Maudoux
c5f9514d11 Update warn message 2020-09-02 18:49:46 +02:00
Clément OUDOT
2ca72e5613 Add del method in CLI (#2303) 2020-09-01 18:14:00 +02:00
Clément OUDOT
c2bc521938 Replace messages keyin CLI output by default translation (#2233) 2020-08-31 22:03:55 +02:00
Christophe Maudoux
05096327c0 Re-order menu & Update langs (#2266) 2020-08-29 22:50:29 +02:00
Christophe Maudoux
7a9020ff25 Modify type (#2266) 2020-08-29 20:13:11 +02:00
Christophe Maudoux
0a4812203c Allowed all special chars and rule to disable local password policy (#2266) 2020-08-29 19:08:47 +02:00
Christophe Maudoux
5496d798a3 Merge branch 'v2.0' 2020-08-28 22:05:52 +02:00
Maxime Besson
07828a9a85 Add healthcheck endpoint to manager API (#2299) 2020-08-28 17:00:48 +02:00
Christophe Maudoux
5d056699c4 Merge branch '2276' into 'v2.0' 
2276

See merge request lemonldap-ng/lemonldap-ng!159
 2020-08-28 15:06:01 +02:00
Christophe Maudoux
8b6ab584cf WIP: Update langs & append conf test (#2276) 2020-08-27 14:38:11 +02:00
Maxime Besson
a5deca8ce8 Fix localConf object when checking new conf in UI (#2296) 2020-08-26 09:20:03 +02:00
Christophe Maudoux
4d52fedfe5 WIP - Incremental tempo 2020-08-25 22:58:47 +02:00
Christophe Maudoux
0614c69a91 Typo 2020-08-25 20:03:58 +02:00
Christophe Maudoux
81a5d2552e Make json - Display oidc tab only if not empty 2020-08-25 11:12:48 +02:00
Christophe Maudoux
0ca3e1fcf5 Update Attributes.pm 2020-08-25 11:07:06 +02:00
Christophe Maudoux
08fb50191e Improve notifications explorer & unit tests (#2283) 2020-08-19 22:52:28 +02:00
Christophe Maudoux
1ce89fb696 Fix warning (#2283) 2020-08-19 22:52:28 +02:00
Maxime Besson
c5c6c4ab0c Factor genId2F method into Common 2020-08-17 18:43:29 +02:00
Maxime Besson
a4b80b1a37 Manager tests for SameSite attribute 2020-08-17 18:05:09 +02:00
Maxime Besson
26cd1945fb Try to compute the correct value of SameSite by default (#2281) 2020-08-17 18:05:09 +02:00
Maxime Besson
4ba29f10a7 Merge branch 'fix-cache-dir-2254' into 'v2.0' 
Move cache directory to /var/cache (#2254)

See merge request lemonldap-ng/lemonldap-ng!157
 2020-08-14 18:34:31 +02:00
Christophe Maudoux
3af35204c5 Append conf tests (#2274) 2020-08-11 22:03:32 +02:00
Christophe Maudoux
b3164d4bb5 De duplicate test name (#2237) 2020-08-11 22:03:32 +02:00
Maxime Besson
ea134d0bfc Fix generation of lmConf-1.json (#2254) 2020-08-10 15:15:32 +02:00
Maxime Besson
2054799baf Move cache directory to /var/cache (#2254) 
In order to avoid namespace issues, and for better compliance with the
FHS.

Only the default configs are changed.
 2020-08-10 15:15:32 +02:00
Maxime Besson
593e48e63e Add manager test for #2237 2020-07-24 17:10:11 +02:00
Maxime Besson
bef2411132 Allow empty URLs in config values by default (#2253) 2020-07-24 16:54:25 +02:00
Soisik Froger
cbe85dd6a2 Manager API: Check confKey is valid when adding a new cat or app to avoid breaking configuration 2020-06-26 10:05:08 +00:00
Soisik Froger
e558b30628 Manager API: Fixed error when adding an app to non existing category - now returns a 404 2020-06-26 07:46:24 +00:00
Soisik Froger
53cce170d2 Manager API: Added 404 response code to openapi spec, improved error message on category not found when getting/listing application(s) and added tests to ensure 404 is returned on category or apps not found. 2020-06-26 07:30:22 +00:00
Soisik Froger
72f957957a Manager API: Added menu category and application API (includes openapi spec & tests) 2020-06-24 14:58:10 +00:00
Maxime Besson
d1cbb7263f Remove default value of ldapPort 2020-06-23 17:42:00 +02:00
Maxime Besson
914251d163 Update Build.pm for #2214 2020-06-23 11:29:58 +02:00
Maxime Besson
1ed5b95fd9 Merge branch 'cas-and-apps-api' into 'v2.0' 
Manager API: Added some minor fixes for CasApp provider API

See merge request lemonldap-ng/lemonldap-ng!149
 2020-06-22 18:41:17 +02:00
Christophe Maudoux
d9fb4e3a17 Typo & Append debug log (#2055) 2020-06-21 13:00:49 +02:00
Christophe Maudoux
954643994f Typo and update PSGI doc 2020-06-20 12:36:17 +02:00
Soisik Froger
dcc49bd58e Manager API: Added some minor fixes for CasApp provider API 2020-06-18 09:18:10 +02:00
Maxime Besson
9dcfeadc7c Merge branch 'soifro/lemonldap-ng-cas-and-apps-api' into v2.0 2020-06-17 22:25:39 +02:00
Maxime Besson
0c70e8be0c Manager API: compare host part of service URL only 2020-06-17 22:21:01 +02:00
Maxime Besson
4e0003d5d8 Manager API: fix perl warning 2020-06-17 22:21:01 +02:00
Maxime Besson
51762ca85f Add config test for CAS App url presence/uniqueness (#2240) 
The issuer code only looks at the host part
 2020-06-17 19:14:09 +02:00
Maxime Besson
7d5d62541a Add config test for OIDCRP client id presence/uniqueness (#2240) 2020-06-17 19:14:09 +02:00
Soisik Froger
4699a1accb Manager API: service as primary key for CAS application 2020-06-17 09:33:33 +00:00
Soisik Froger
bbc9d27a8b Manager API: Added CAS provider API (includes openapi spec & tests) 2020-06-17 06:57:40 +00:00
Maxime Besson
3d92ab15dd Merge branch 'v2.0' 2020-06-01 16:42:58 +02:00
Maxime Besson
695ed61c77 Merge branch 'doc-2.0' into v2.0 2020-06-01 16:23:26 +02:00
Maxime Besson
a98e5c05b4 doc: fix markup 2020-06-01 16:22:25 +02:00
Maxime Besson
c5c9d581cb Improve error message when cli fails to save (#2223) 2020-05-28 22:04:08 +02:00
Maxime Besson
0757f0af28 Add manager option for external yubikey ID provisionning (#2189) 2020-05-25 18:57:07 +02:00
Christophe Maudoux
bb9e03d1e5 Tidy 2020-05-24 00:04:33 +02:00
Christophe Maudoux
79246c8da9 Tidy 2020-05-23 23:52:09 +02:00
Christophe Maudoux
532ffe3fea Merge branch 'v2.0' 2020-05-23 23:38:06 +02:00
Christophe Maudoux
eb65264d5d Append Impersonation unrestrictedUsers rule & Update langs (#2207) 2020-05-19 23:33:07 +02:00
Xavier Guimard
ee6fd758f1 fix cfgAuthor when manager is protected by webserver (#2209) 2020-05-15 14:21:57 +02:00
Xavier Guimard
9b2ac6488a Use REMOTE_USER environment variable to set cfgAuthor if exists (#2209) 2020-05-15 09:57:17 +02:00
Xavier Guimard
fcaa959219 Add X-Real-IP in cfgAuthorIP if exists (#2195) 2020-05-12 17:02:59 +02:00
Xavier Guimard
3385fc3ae2 Register X-Forwarded-For value in cfgAuthorIP when available (fixes: #2195) 2020-05-12 15:58:41 +02:00
Maxime Besson
db9e862843 Merge branch 'feature-userdb-password-restserver' into v2.0 2020-05-09 20:07:24 +02:00
Christophe Maudoux
9bf915b5dc Fix unit tests & Version 2020-05-08 23:03:16 +02:00
Christophe Maudoux
097ddc4251 Fix OIDC default value 2020-05-08 22:06:25 +02:00
Xavier Guimard
ba86f7e2f5 Accept vhost wildcards in manager 2020-05-06 10:30:23 +02:00
Maxime Besson
c687bb63ec Add manager option for password reset REST endpoint (/#1598) 2020-05-01 13:44:23 +02:00
Maxime Besson
444cacf2de Add option to enable REST auth/userdb server (#1659) 2020-05-01 13:44:00 +02:00
Maxime Besson
172993fcd6 Add useMail to UserDB::REST (#1659) 2020-05-01 13:43:12 +02:00
Christophe Maudoux
7014327232 Append an option to display sfManager link (#2185) 2020-04-30 20:50:10 +02:00
Christophe Maudoux
763eb04b4b Update tree (#2178) 2020-04-27 20:39:02 +02:00
Maxime Besson
7e502af391 Add option to remove "Refresh my rights" from menu 2020-04-27 17:19:41 +02:00
Christophe Maudoux
d2d9988b61 Merge branch 'v2.0' 2020-04-25 23:16:21 +02:00
Maxime Besson
e607d8281f OIDC: do not advertise missing functionality (#1194) 
Back-Channel logout is not supported yet
 2020-04-24 12:15:51 +02:00
Maxime Besson
ce49bad847 Add link to OIDC RP doc (#2175) 2020-04-24 11:18:17 +02:00
Maxime Besson
00e9e2ec57 Add manager option for additional audiences (#2177) 2020-04-24 11:10:44 +02:00
Maxime Besson
ada6e9f056 Reorganize OIDC options (#2175) 2020-04-24 11:10:44 +02:00
Christophe Maudoux
6018610196 Make checkUser option rules (#2173) 2020-04-24 00:25:10 +02:00
Maxime Besson
64d023b731 Add manager option for password grant (#2155) 2020-04-23 17:49:25 +02:00
Maxime Besson
ded6c74fe0 Allow special characters in scope names (#2168) 2020-04-23 14:50:53 +02:00
Maxime Besson
91ba11b898 API: change success codes (#2034) 2020-04-22 11:55:53 +02:00
Maxime Besson
b36a891dfb Api: replace regep pattern with globs (#2034) 2020-04-22 11:54:38 +02:00
Maxime Besson
4a610f036d API: return 409 on resource conflicts (#2034) 2020-04-22 11:54:38 +02:00
Maxime Besson
ceac3e7d6f API: change clientID to clientId in options (#2034) 2020-04-22 11:54:38 +02:00
Maxime Besson
0d951c55f1 API: Check configuration validity before saving (#2034) 2020-04-22 11:54:38 +02:00