Maxime Besson
e281ad7cc3
Add support for CORS preflight ( #1765 )
2019-09-16 16:55:15 +02:00
Christophe Maudoux
9c01c46fea
Typo ( #1932 )
2019-09-14 23:37:50 +02:00
Christophe Maudoux
dd66f37739
Return httpSession id if exists ( #1932 )
2019-09-14 22:47:11 +02:00
Xavier
e50e7d09d1
Update version of (really) modified files
2019-09-12 21:56:49 +02:00
Christophe Maudoux
4287c39f5b
typo
2019-09-11 16:20:28 +02:00
Christophe Maudoux
132f42d44c
Forbid browsers to store users password & Improve unit tests ( #1913 )
2019-09-08 19:28:28 +02:00
Maxime Besson
00e91f374b
Add specific error code when missing a required SAML attr ( #1919 )
...
The MISSINGREQATTR message is a good default value, but a site
administrator may decide to override it with a personnalized version
that only applies to issuer errors caused by an incomplete user profile
(for example, giving a pointer to the local user profile management
application)
2019-09-06 11:04:39 +02:00
Clément OUDOT
068ffbe604
Define portalDisplayPasswordPolicy parameter in Manager ( #993 )
2019-09-05 13:02:51 +02:00
Clément OUDOT
b44c13ba2f
Display password policy in password change form ( #993 )
2019-09-05 12:46:32 +02:00
Christophe Maudoux
3e9a424090
Update version ( #1916 )
2019-09-03 22:57:51 +02:00
Christophe Maudoux
56ed8a5724
Append issuersTimeout option ( #1916 )
2019-09-03 22:52:07 +02:00
Clément OUDOT
177f446f25
Display main logo in redirect page ( #1906 )
2019-08-29 19:29:27 +02:00
Xavier Guimard
ae6e69667a
Fix warning
2019-08-29 10:49:01 +02:00
Xavier
1f2f0240f0
Love Perl ( #1863 )
...
TIMTOWTDI
2019-08-28 00:36:18 +02:00
Maxime Besson
810d2c7f94
Disable template cache to avoid translation issues in mail ( #1897 )
2019-08-27 23:13:36 +02:00
Xavier Guimard
323d92fa1b
Don't load Data::Dumper unless debug
2019-08-27 10:10:11 +02:00
Christophe Maudoux
ec59cc164c
Catch error earlier in process ( #1867 )
2019-08-24 23:26:42 +02:00
Xavier
097183f2b3
Fix warning
2019-08-16 09:10:10 +02:00
Christophe Maudoux
7502e424e3
Revert "Concatenate pdata and lemon cookies in the same set-cookie header ( #1863 )"
...
This reverts commit c3a01c042c
2019-08-13 10:16:31 +02:00
Christophe Maudoux
c3a01c042c
Concatenate pdata and lemon cookies in the same set-cookie header ( #1863 )
2019-08-12 23:52:33 +02:00
Christophe Maudoux
3891c9caec
Fix log level & improve e2e ini file ( #1878 )
2019-08-12 22:20:22 +02:00
Christophe Maudoux
f8ef2797a8
Update manifest
2019-08-12 21:36:55 +02:00
Christophe Maudoux
d7cb8bf4b8
Force remove pdata cookie to avoid loop ( #1878 )
2019-08-12 21:29:08 +02:00
Christophe Maudoux
c1736f7f82
Catch error if setSecurity is undefined ( #1874 )
2019-08-04 12:08:34 +02:00
Christophe Maudoux
1422c28c0b
Improve fix & unit test ( #1874 )
2019-08-03 23:49:02 +02:00
Christophe Maudoux
6cf1c83151
Fix & Improve unit test ( #1874 )
2019-08-03 22:48:07 +02:00
Maxime Besson
c1afdbefac
Add labels and logos to all 2F providers ( #1873 )
2019-08-01 17:27:14 +02:00
Xavier
88f75c42ed
Set pdata domain also when removing cookie ( #1829 )
2019-07-05 06:43:11 +02:00
Christophe Maudoux
6a579644f8
Fix warning ( #1842 )
2019-07-04 23:20:11 +02:00
Christophe Maudoux
2016abd2ee
Send pdata cookie to cross domain ( #1829 )
2019-07-04 21:49:28 +02:00
Xavier
9cdfd4c9a6
Add notice when user is connected
2019-07-04 21:22:06 +02:00
Xavier
d4fedbdfcf
Duplicate log rules in Plugin manpage
2019-07-04 07:09:39 +02:00
Xavier Guimard
c1137edba8
make tidy with perltidy-20181120
2019-07-02 20:03:40 +02:00
Christophe Maudoux
b94cbe0144
Fix default value ( #1825 )
2019-07-01 13:28:01 +02:00
Christophe Maudoux
69d2a2db0c
Fix default value ( #1825 )
2019-07-01 12:56:10 +02:00
Christophe Maudoux
a1f5791e06
Merge branch '1783' into v2.0
2019-06-30 19:00:41 +02:00
Christophe Maudoux
bcbea7bee0
Update version ( #1825 )
2019-06-29 21:48:52 +02:00
Christophe Maudoux
eda8151432
Don t mix && with and ( #1825 )
2019-06-29 21:35:13 +02:00
Christophe Maudoux
11d2909b0a
WIP - Disable persistent sessions storage ( #1825 )
2019-06-29 21:10:16 +02:00
Christophe Maudoux
897d04ac93
Merge branch 'v2.0' into 1783
2019-06-28 22:05:48 +02:00
Xavier
c921c295ed
Use user skin in loadTemplate ( Fixes : #1828 )
2019-06-28 13:40:56 +02:00
Christophe Maudoux
8ad895c3b8
Merge branch 'v2.0' into 1783
2019-06-27 21:11:56 +02:00
Xavier Guimard
264410409d
Move CAS service verification from main to Issuer::CAS ( #1795 )
2019-06-27 16:55:12 +02:00
Maxime Besson
e1f927a195
Check service= parameter on CAS logout ( #1795 )
...
service= redirect URL is not checked when logging out from CAS, to avoid
insecure redirect attacks. The verification is only made if CAS access
control is enabled.
In order for this to work in common cases (applications redirects to an
unprotected page after logout), we add CAS App domains to the list of
globally trusted domains.
If your application wants to redirect to a third-party domain, it needs
to be added to LLNG's trustedDomains
2019-06-27 12:40:40 +02:00
Maxime Besson
5f9c4c231d
Add authenticated routes to 2FA for session upgrade ( #1822 )
2019-06-26 23:33:00 +02:00
Xavier Guimard
e15a41bc66
Fix typo: s/templatesDir/templateDir/g ( #1819 )
2019-06-26 11:59:13 +02:00
Christophe Maudoux
0b567d6c15
Merge branch 'v2.0' into 1783
2019-06-25 20:23:48 +02:00
Christophe Maudoux
b9af5d1adc
Use Id
2019-06-25 19:30:06 +02:00
Christophe Maudoux
266f2fdf02
Merge branch 'v2.0' into 1783
2019-06-24 23:36:54 +02:00
Xavier
9df3d57bc9
In REST, PE_LOGOUT_OK must return 200
2019-06-24 23:06:15 +02:00
Christophe Maudoux
c24ff711a0
WIP - ContextSwitching ( #1783 )
2019-06-23 10:51:10 +02:00
Christophe Maudoux
b69ffc0ff8
WIP - ContextSwitching ( #1783 )
2019-06-21 15:23:06 +02:00
Christophe Maudoux
a2ebaf31b1
WIP - AdminImpersonation skeleton ( #1783 )
2019-06-19 18:13:17 +02:00
Christophe Maudoux
c4d4b482a5
Provide to plugins message display functions ( #1796 )
2019-06-18 22:00:03 +02:00
Xavier Guimard
5fbff01b27
Update versions
2019-06-14 17:27:54 +02:00
Xavier Guimard
65eaefa75f
Tidy
2019-06-14 17:23:26 +02:00
Xavier Guimard
2a021e37ea
Don't require getDisplayType in Choice ( #1800 )
2019-06-13 17:51:36 +02:00
Maxime Besson
1a66da30f9
Store portal language in _language user session key ( #1764 )
2019-06-13 09:26:19 +02:00
Maxime Besson
97d0bbf0aa
Fix CASv2 logout ( #1753 )
2019-06-11 16:18:15 +02:00
Xavier
94c2a0bc3b
Add addAuthRouteWithRedirect() doc ( #1787 )
2019-06-06 23:02:46 +02:00
Xavier
f4bca7430a
Add addAuthRouteWithRedirect() method to Try ( #1787 )
2019-06-06 22:59:02 +02:00
Christophe Maudoux
eab00052f3
Fix debug msg ( #1774 )
2019-06-04 20:42:54 +02:00
Christophe Maudoux
18dd7c2c41
Append debug msg ( #1765 )
2019-06-04 16:19:01 +02:00
Christophe Maudoux
35f1677747
Append unit test and fix CORS headers ( #1765 )
2019-05-31 17:50:44 +02:00
Christophe Maudoux
132e57b4b3
Manage CORS headers ( #1765 )
2019-05-31 17:00:39 +02:00
Xavier Guimard
8fd3f6be90
Merge branch 'issue1521-appmenu' into 'v2.0'
...
Preserve applicationList key names (#1521 )
See merge request lemonldap-ng/lemonldap-ng!76
2019-05-28 22:10:53 +02:00
Xavier
f0842569c2
Don't erase pdata on 404 errors ( #1778 )
2019-05-28 21:58:22 +02:00
Maxime Besson
b12992755f
Preserve applicationList key names ( #1521 )
...
Previously, every configuration save from the manager would overwrite
applicationList key names to preserve their ordering.
This commit introduces a new "order" key in the JSON config instead.
2019-05-28 15:38:26 +02:00
Christophe Maudoux
26233106a5
Set _updateTime session value ( #1771 )
2019-05-26 11:56:58 +02:00
Christophe Maudoux
59f07b7b8f
Avoid to renew double cookie sessions for refresh request ( #1747 )
2019-05-20 23:03:10 +02:00
Christophe Maudoux
29b7341345
Change code order ( #1749 )
2019-05-19 13:40:46 +02:00
Xavier
a2e78c88c3
Set versions
2019-05-16 20:42:31 +02:00
Xavier
1186aba52b
lmError(): return JSON if wanted ( #1745 )
2019-05-16 06:50:13 +02:00
Xavier
f3c4ea0afb
Tydy
2019-05-11 20:18:43 +02:00
Xavier
2ce7396bf2
Don't filter on session_kind with SOAP ( #1742 )
2019-05-11 15:41:14 +02:00
Clément OUDOT
259f9d8d94
Use same JSON fields for failure and success ( #1711 )
2019-04-13 15:23:40 +02:00
Clément OUDOT
9256571f25
Return session id with successful REST authentication ( #1711 )
2019-04-12 16:57:22 +02:00
Clément OUDOT
ae3a728378
Manage template inclusion when file is not in configured portal theme ( #1653 )
2019-04-10 15:42:58 +02:00
Xavier
af707c5b1f
Clear pdata on lmerror access
2019-04-10 07:14:36 +02:00
Maxime Besson
666e59ad6e
Fix #1698 by clearing saml request token on unauth issuer flow
...
Add some unit tests to make sure relevant pdata is cleared after authentication
2019-04-05 23:27:21 +02:00
Xavier Guimard
2159957c34
Update versions
2019-04-05 09:54:43 +02:00
Clément OUDOT
8859fe342b
Fix setHiddenFormValue ( #1692 )
2019-04-03 17:54:58 +02:00
Xavier Guimard
ece9b21219
Remove trailing whitespaces
2019-04-03 14:15:16 +02:00
Clément OUDOT
bac2eb564c
Remove antiframe protection in portal javascript ( #1696 )
2019-04-02 15:05:41 +02:00
Clément OUDOT
4af47ad6a4
Allow iframe from portal to be able to load saml SLO return page ( #1671 )
2019-04-01 18:09:31 +02:00
Clément OUDOT
59bc0642fc
Always display info ( #1693 )
2019-04-01 17:18:28 +02:00
Xavier
906db8daa6
Merge branch 'antoinerosier/lemonldap-ng-logs' into v2.0
2019-03-27 21:44:25 +01:00
Antoine ROSIER
b79c9659cb
Add user logs informations ( #1687 )
2019-03-27 16:00:39 +01:00
Clément OUDOT
aa139df89d
Change criticity of password must be reset message ( #1654 )
2019-03-26 16:45:19 +01:00
Xavier Guimard
af4f123916
Fix cspScrip ( Closes : #1683 )
2019-03-26 09:56:46 +01:00
Xavier Guimard
99afd7243a
Fix #1675
2019-03-26 08:06:55 +01:00
Xavier
f226bded41
Partial fix for /logout ( #1675 )
2019-03-26 07:30:36 +01:00
Xavier
774707ad65
Add cache to avoid parsing and compiling JSON files at each request ( #1595 )
2019-03-26 06:49:39 +01:00
Xavier Guimard
3c0a9d7ecc
Second fix for #1673
2019-03-25 19:34:29 +01:00
Xavier Guimard
4138b7edae
Fix menu app cache ( #1673 )
2019-03-25 16:48:57 +01:00
Clément OUDOT
8a9a5b0b3a
New method to override messages with JSON files ( #1595 )
2019-03-19 17:39:13 +01:00
Clément OUDOT
447c09c0a2
Remove old translation file ( #1595 )
2019-03-19 15:38:36 +01:00
Clément OUDOT
9798c78068
Remove userData if authentication fails ( #1666 )
2019-03-18 21:29:15 +01:00
Clément OUDOT
627548e95d
Display authentication error on login form ( #1666 )
2019-03-18 11:41:41 +01:00
Clément OUDOT
8cd579f19f
Add a waiting message for Kerberos/SSL workflow ( #1670 )
2019-03-11 16:36:32 +01:00
Clément OUDOT
145db1cf60
Fix regexp for portal default condition ( #1669 )
2019-03-11 12:01:16 +01:00
Xavier Guimard
bc2bef4ff4
Please use our .perltidyrc
2019-03-07 18:22:58 +01:00
Christophe Maudoux
7b08a7c442
Rename idSpoofing plugin to Impersonation & all relative parameters ( #1664 )
2019-03-06 16:30:56 +01:00
Xavier Guimard
26b80873be
Modify Try.pm to handle authorizations ( #1658 )
2019-03-05 21:11:07 +01:00
Christophe Maudoux
ff05a8f797
Modify parameters ( #1664 )
2019-03-05 14:50:01 +01:00
Christophe Maudoux
4e51cc342b
Append access rule ( #1664 )
2019-03-03 21:27:27 +01:00
Christophe Maudoux
228a37c0d2
WIP - Append parameters ( #1664 )
2019-03-03 21:27:27 +01:00
Christophe Maudoux
3bb7f6e664
WIP - Create session ( #1664 )
2019-03-03 21:27:27 +01:00
Christophe Maudoux
a41b5fb945
Fix OTT & minor improvements ( #1658 )
2019-03-02 11:45:59 +01:00
Christophe Maudoux
4fe1473f9a
Check access rules ( #1658 )
2019-02-28 21:59:59 +01:00
Clément OUDOT
d8a8832f4c
Restore old login history ( #1656 )
2019-02-28 17:40:15 +01:00
Clément OUDOT
b3f917ac5a
Improve log in updateSession ( #1656 )
2019-02-28 16:51:16 +01:00
Christophe Maudoux
697882bd45
WIP - checkUser plugin skeleton ( #1658 )
2019-02-23 09:35:43 +01:00
Christophe Maudoux
00fae442e9
Update version ( #1595 )
2019-02-21 16:33:12 +01:00
Christophe Maudoux
b57a0788c2
Check JSON structure ( #1595 )
2019-02-21 16:25:02 +01:00
Christophe Maudoux
9fafa1d8d5
Override msg with local json files ( #1595 )
2019-02-20 23:22:56 +01:00
Christophe Maudoux
28caeea3c2
Partial revert ( #1595 )
2019-02-19 20:10:41 +01:00
Christophe Maudoux
62167a41f1
Load Portal despite translation file does not exist ( #1595 )
2019-02-19 17:27:28 +01:00
Christophe Maudoux
063c0f0d1b
Partial revert - Modify Portal side is more consistent ( #1653 )
2019-02-18 20:39:47 +01:00
Christophe Maudoux
9274c54f20
Disable Portal cache ( #1651 )
2019-02-13 22:35:23 +01:00
Christophe Maudoux
b777007ff6
Override msg by reading a file ( #1595 )
2019-02-09 22:38:13 +01:00
Christophe Maudoux
94574f2f19
Override msg by reading a file ( #1595 )
2019-02-09 20:48:46 +01:00
Christophe Maudoux
b1048043e9
Restore GET activation global rule & Improve unit test ( #1625 )
2019-02-07 17:16:29 +01:00
Xavier Guimard
c7b4eb5051
tidy with new conf
2019-02-07 09:27:56 +01:00
Christophe Maudoux
9cfef329ee
Append PE_ERROR constants ( #1625 )
2019-02-06 23:10:43 +01:00
Xavier Guimard
747ee78dfd
Improve authenticate() rejection ( #1639 )
2019-02-06 15:36:45 +01:00
Xavier Guimard
5886cbe2a0
Tidy
2019-02-05 23:12:17 +01:00
Xavier Guimard
f8942d156d
Override templateDir before calling sendHtml ( fixes : #1642 )
2019-02-05 19:04:06 +01:00
Xavier Guimard
24ef6d3905
Revert "Override templateDir before calling sendHtml ( #1642 )"
...
This reverts commit 0466bf2784
.
2019-02-05 19:00:01 +01:00
Clément OUDOT
0466bf2784
Override templateDir before calling sendHtml ( #1642 )
2019-02-05 18:46:14 +01:00
Clément OUDOT
8ca60a9238
Do not set portal background in CSS if no value is configured ( #1643 )
2019-02-05 18:39:43 +01:00
Christophe Maudoux
37cb923422
Fix error msg ( #1628 )
2019-02-04 19:15:58 +01:00
Christophe Maudoux
b70d8ea673
Revert "Catch error msg if Id doesn t exist ( #1628 )"
...
This reverts commit 8b9c47d6eb
2019-02-04 13:02:29 +01:00
Christophe Maudoux
8b9c47d6eb
Catch error msg if Id doesn t exist ( #1628 )
2019-02-04 12:58:30 +01:00
Christophe Maudoux
fcac69fe7a
Merge branch 'v2.0' of gitlab.ow2.org:lemonldap-ng/lemonldap-ng into v2.0
2019-02-03 20:05:40 +01:00
Christophe Maudoux
153084118f
Fix SSL/Kerberos Auth with Choice & Improve unit tests ( #1636 )
2019-02-03 20:05:28 +01:00
Maxime Besson
f35a7c305a
Add Mail second factor plugin
2019-02-03 14:46:40 +01:00
Christophe Maudoux
3021e998a7
Fix SSL/Kerberos Auth with Choice ( #1636 )
2019-02-03 00:17:53 +01:00
Clément OUDOT
b63dd14746
Update module version ( #1634 )
2019-01-31 15:40:54 +01:00
Clément OUDOT
059d5320cb
Clean code that manages templates parameters ( #1634 , #1631 )
2019-01-31 15:38:58 +01:00
Clément OUDOT
efb7f667c4
Allow to display env in main templates ( #1631 )
2019-01-31 14:05:24 +01:00
Christophe Maudoux
96b93a56c1
Partial revert rename parameters ( #1605 )
2019-01-24 19:45:43 +01:00
Christophe Maudoux
33ebe9178b
Split mailReset plugin and SMTP parameters ( #1616 )
2019-01-19 17:08:15 +01:00
Christophe Maudoux
b486735d46
WIP - Split mailReset plugin and SMTP parameters ( #1616 )
2019-01-16 22:57:35 +01:00
Clément OUDOT
3c3b8eccb7
Remove utf8 decode for menu ( #1614 )
2019-01-15 22:42:42 +01:00
Xavier Guimard
2ab385e2df
Update versions
2019-01-09 13:42:30 +01:00
Xavier Guimard
54539e97d9
Add aroundSub entrypoint
2018-12-21 16:07:28 +01:00
Xavier Guimard
06431d71f5
New endpoint: afterSub
2018-12-21 16:07:28 +01:00
Xavier Guimard
1e3ab69be3
Add minimal Auth::GPG
2018-12-21 16:07:28 +01:00
Xavier Guimard
c6ff9dcf0b
Display error if a plugin sets it ( #595 )
2018-12-21 11:26:11 +01:00