Maxime Besson
9ac49b881a
Lookup casAppMetaDataOptionsUserAttribute in per-app macros ( #2280 )
2020-08-17 22:06:09 +02:00
Clément OUDOT
5d5eda9799
Adapt user log in CAS issuer ( #2244 )
2020-06-18 18:39:53 +02:00
Christophe Maudoux
ea8b0bb024
Highlight error message ( #2126 & #1625 )
2020-03-28 18:12:34 +01:00
Christophe Maudoux
68e2e81898
Fix warning if error is undefined ( #2126 & #1625 )
2020-03-28 17:59:37 +01:00
Xavier Guimard
a76cba3856
Update versions
2020-02-20 23:37:01 +01:00
Christophe Maudoux
1988983c90
Typo
2019-12-31 17:14:44 +01:00
Maxime Besson
a410793122
CAS per-service macros portal code ( #2042 )
2019-12-16 17:26:35 +01:00
Xavier
461cd51e45
Try to fix #1785 without breaking pdata
2019-09-29 23:04:17 +02:00
Clément OUDOT
dc0a8f7848
Add some log when user is authorized to access to service ( #1702 )
2019-09-19 16:52:08 +02:00
Clément OUDOT
dd76c4f3db
Improve log for CAS Issuer ( #1702 )
2019-09-19 16:18:51 +02:00
Xavier Guimard
c1137edba8
make tidy with perltidy-20181120
2019-07-02 20:03:40 +02:00
Xavier
c921c295ed
Use user skin in loadTemplate ( Fixes : #1828 )
2019-06-28 13:40:56 +02:00
Xavier Guimard
264410409d
Move CAS service verification from main to Issuer::CAS ( #1795 )
2019-06-27 16:55:12 +02:00
Maxime Besson
e1f927a195
Check service= parameter on CAS logout ( #1795 )
...
service= redirect URL is not checked when logging out from CAS, to avoid
insecure redirect attacks. The verification is only made if CAS access
control is enabled.
In order for this to work in common cases (applications redirects to an
unprotected page after logout), we add CAS App domains to the list of
globally trusted domains.
If your application wants to redirect to a third-party domain, it needs
to be added to LLNG's trustedDomains
2019-06-27 12:40:40 +02:00
Xavier
a6aaf8a507
Add XSS test ( #1795 )
2019-06-11 21:30:15 +02:00
Xavier
1a8948894d
Check CAS "service" parameter ( Fixes : #1795 )
2019-06-11 21:02:43 +02:00
Maxime Besson
97d0bbf0aa
Fix CASv2 logout ( #1753 )
2019-06-11 16:18:15 +02:00
Maxime Besson
2f9e6aa623
Allow override of username attribute for CAS apps
...
Global CAS options allows the admistrator to set the session attribute
that gets exported to all CAS application as the main identifier
(cas:user)
This commit adds the ability to override this configuration for a
particular CAS application.
OIDC already allows this
Fixes #1713
2019-04-28 21:06:34 +02:00
Maxime Besson
62f16721ff
Send username when calling CAS1.0 validation
...
Fixes #1724
2019-04-28 19:29:54 +02:00
Clément OUDOT
4e76ee9582
Avoid warning during SAML SLO ( #1671 )
2019-04-02 16:13:45 +02:00
Christophe Maudoux
0690a0c7ab
Improve code ( #1625 )
2019-02-14 22:12:40 +01:00
Christophe Maudoux
29c4a44975
Update version ( #1625 )
2019-02-07 17:22:14 +01:00
Xavier Guimard
c7b4eb5051
tidy with new conf
2019-02-07 09:27:56 +01:00
Christophe Maudoux
f8144bc108
Typo ( #1625 )
2019-02-06 22:54:15 +01:00
Christophe Maudoux
007a5432f9
Restore CAS activation global rule ( #1625 )
2019-02-06 22:16:34 +01:00
Clément OUDOT
4038bbb798
Fix call to returnCasServiceValidateError
2018-10-29 08:10:01 +01:00
Clément OUDOT
0839c9e3fd
Clear pdata when redirecting in CAS gateway mode ( #1528 )
2018-10-29 07:45:57 +01:00
Xavier Guimard
b2620c2679
s/datas/data
...
datas => des données
data => les données
2018-07-05 22:56:16 +02:00
Xavier Guimard
a5cc73a54c
Avoid session conflict between Issuer and Auth CAS ( #1468 )
2018-06-30 07:44:05 +02:00
Xavier Guimard
8596b339e8
Use build_urlencoded everywhere ( #1461 )
2018-06-26 19:13:06 +02:00
Clément OUDOT
3ba56c41b5
Manage CAS gateway mode ( #1425 )
2018-06-25 10:10:22 +02:00
Clément OUDOT
808922a388
Store CAS app in ENV ( #1161 )
2018-06-23 10:18:55 +02:00
Xavier Guimard
86283952b0
Fix partially #1422
2018-05-15 19:46:02 +02:00
Xavier Guimard
b0d16d653d
Fix renew problem with CAS ( fixes : #1422 )
2018-05-14 21:33:21 +02:00
Clément OUDOT
bd33897a52
Fix multi values separator ( #1420 )
2018-05-14 12:21:17 +02:00
Clément OUDOT
a27ef657b7
Rewrite code for CAS proxy ( #1420 )
2018-05-14 12:15:26 +02:00
Clément OUDOT
a129f1e296
Allow CAS p3 URLs ( #1362 )
2018-02-08 22:40:06 +01:00
Xavier Guimard
0d491e96f4
Use same name for SP rules ( #1330 )
2017-11-11 13:51:48 +01:00
Xavier Guimard
46364da414
Move some HTML fragments to templates ( #1302 )
2017-10-10 11:04:40 +00:00
Xavier Guimard
2787c33c01
Revert r6726 ( #1305 )
2017-09-26 19:54:45 +00:00
Xavier Guimard
69ece7740d
Update debian/control
2017-09-26 19:11:04 +00:00
Xavier Guimard
89f5783d16
More tests ( #1305 )
2017-09-26 17:50:38 +00:00
Clément Oudot
c5368caac2
Manage CAS logout service ( #1298 )
2017-09-11 15:26:44 +00:00
Xavier Guimard
74f780733d
Use App ExportedVars if defined ( #1183 )
2017-04-14 07:40:01 +00:00
Xavier Guimard
b83374b274
New Issuer::CAS ( #1183 )
2017-04-13 19:17:29 +00:00
Xavier Guimard
2e59ea441a
Replace request management in handler ( #1044 )
...
Note: this is a big change, more tests needed
2017-03-28 21:07:49 +00:00
Xavier Guimard
59970dd3d6
Typo ( #595 )
2017-03-03 12:17:15 +00:00
Xavier Guimard
8c3ff5fb0b
Minimize Apache::Session tie/untie ( closes : #1173 )
2017-02-20 21:00:05 +00:00
Clément Oudot
c702ba763b
Export CAS request parameters in %ENV ( #1158 )
2017-02-15 14:59:56 +00:00
Xavier Guimard
deb28bc9cb
Replace lmLog by logger-> ( #857 )
2017-02-15 06:41:50 +00:00