dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
11,502 Commits 3 Branches 0 Tags 75 MiB
a431e0521a
Commit Graph

535 Commits

Author SHA1 Message Date
Christophe Maudoux
df8fc578b4 Merge branch 'v2.0' into 2589 2021-08-12 23:47:10 +02:00
Christophe Maudoux
4b592e1f48 Fix regex (#2589) 2021-08-12 22:57:59 +02:00
Maxime Besson
2fac0d9f47 Update LLNG download URL 2021-08-12 17:02:50 +02:00
Christophe Maudoux
a6ecbf1ec8 Fix version & comment 2021-07-26 22:55:27 +02:00
Maxime Besson
0d513ce5b7 Fix CORS on userinfo error response (#2567) 2021-07-26 15:44:20 +02:00
Yadd
83b45db614 Fix versions 2021-06-28 15:36:29 +02:00
Yadd
3732cdcc19 Better URL parsing (#2477) 2021-06-24 14:33:27 +02:00
Maxime Besson
b8e8bbcedd Ignore unknown scopes (#2496) 2021-06-03 18:24:55 +02:00
Maxime Besson
55cdfefd7b Workaround for #2472 2021-06-02 15:36:05 +02:00
Maxime Besson
91cfba275a Skip registration of SAML SP when config has errors (#2525) 2021-06-02 08:34:02 +02:00
Maxime Besson
71a8fc6d16 Skip registration of CAS App when config has errors (#2525) 2021-06-02 08:34:02 +02:00
Maxime Besson
e50db3f083 Skip registration of OIDC RP when config has errors (#2525) 2021-06-02 08:34:01 +02:00
Maxime Besson
15298466ea Fix JWT userinfo in Auth::OpenIDConnect (#2529) 2021-05-31 09:52:02 +02:00
Maxime Besson
cd97d3b922 Refactor $req->{cspFormAction} (#2513) 2021-04-23 09:02:24 +02:00
Maxime Besson
913ebbd556 fix missing domain in child-src during SAML POST logout (#2513) 2021-04-23 09:02:24 +02:00
Maxime Besson
a94fb616bd Allow admin to disallow host-based match (#2506) 2021-04-09 17:51:54 +02:00
Maxime Besson
c1e059eeb3 Use authChoiceAuthBasic to select Choice (#2502) 2021-04-07 16:40:32 +02:00
Christophe Maudoux
4751427105 Fix error level & Improve doc (#1976) 2021-04-01 23:31:48 +02:00
Christophe Maudoux
c0db322ef0 Perl critic 2021-04-01 23:07:58 +02:00
Maxime Besson
d696853556 Factor MAIN_LOGO variable in loadMailTemplate (#2495) 2021-03-31 14:27:23 +02:00
Maxime Besson
20e1f9ded0 Hash JWT to catch tampering (#2419) 
This mechanism's only purpose is to make the introsection endpoint fail
to verify the token when the JWT itself has been tampered with.
 2021-03-30 16:32:14 +02:00
Clément OUDOT
55ab4b5a5f Fix CAS log message on service ticket validation error (#2494) 2021-03-25 16:33:48 +01:00
Maxime Besson
a70051e3fe Remove deprecated base64url implementation 
All our target distros now have base64url in Mime::Base64
 2021-03-03 11:03:19 +01:00
Maxime Besson
bb95e681e6 Tidy 2021-03-03 11:03:19 +01:00
Maxime Besson
e10d1e291c Return granted scopes if different from requested scopes (#2424) 2021-03-03 11:03:19 +01:00
Maxime Besson
2d7f9e34a6 OIDC: Return error if multiple client auth used (#2474) 2021-02-24 17:48:12 +01:00
Maxime Besson
cceb6f767e Use a dedicated function for OIDC error reporting (#2465) 2021-02-18 22:06:39 +01:00
Maxime Besson
a1ed57c035 Add typ header to access token jwt (#2419) 2021-02-03 09:43:35 +01:00
Maxime Besson
1cd7dd3d2c Add hook for access token JWT payload (#2419) 2021-02-01 18:20:32 +01:00
Maxime Besson
d86e8ce0df Refactor: remove extractJWT 2021-02-01 18:20:32 +01:00
Maxime Besson
cb04670003 Refactor checksignature 2021-02-01 18:20:32 +01:00
Maxime Besson
435ba82144 Refactor: rename and move getJWTJSONData 2021-02-01 18:20:32 +01:00
Maxime Besson
6aef1a6317 Refactor: getUserInfo now returns a hash 2021-02-01 18:20:32 +01:00
Maxime Besson
f3c97c22dc Refactor access token id lookup into Common::JWT 2021-02-01 18:20:32 +01:00
Maxime Besson
aa877cf0a3 Let newAccessToken emit JWT (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
dc0bacd6f0 Accept Access Tokens in JWT format (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
acaaf1c749 Refactor buildUserInfo (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
dbddddfba1 Refactor newAccessToken (#2419) 2021-02-01 18:15:55 +01:00
Maxime Besson
5562d8b1dd Add a function to resolve allowed scopes from rules (#2424) 2021-02-01 16:25:35 +01:00
Maxime Besson
c30b452aa3 Load dynamic scopes from config (#2424) 2021-02-01 16:25:35 +01:00
Maxime Besson
c844cc25b0 Fix SAML logout propagation with Redirect binding (#2449) 2021-01-29 09:45:50 +01:00
Christophe Maudoux
5d56a88ff3 Use strict & Typo 2021-01-23 18:57:24 +01:00
Christophe Maudoux
d6e351ab90 Tidy 2021-01-19 22:45:05 +01:00
Maxime Besson
5b4e533f44 Add _scope and _clientID to portal (#1987) 2021-01-19 17:06:21 +01:00
Maxime Besson
dd5e9ec156 Tidy 2021-01-19 16:44:06 +01:00
Christophe Maudoux
bd1a0bf6da Fix regex (#1976) 2021-01-07 09:54:00 +01:00
Christophe Maudoux
1c45e8a8c0 Merge branch 'v2.0' into findUser 2021-01-05 22:14:28 +01:00
Christophe Maudoux
846d6a3655 Allow wildcard with searching parameters (#1976) & Improve unit tests 2021-01-05 22:08:48 +01:00
Maxime Besson
2a805e06b9 Match CAS service via prefix (#2331) 2021-01-05 17:34:57 +01:00
Maxime Besson
e78f8a2270 Refactor CAS code (#2321) 2021-01-05 17:34:57 +01:00