Maxime Besson
|
a876d978af
|
Suggest improvement for next major version
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
913ebbd556
|
fix missing domain in child-src during SAML POST logout (#2513)
|
2021-04-23 09:02:24 +02:00 |
|
Maxime Besson
|
5ba0c11b58
|
Add helper to build CSP host list (#2513)
|
2021-04-23 09:02:24 +02:00 |
|
Christophe Maudoux
|
652d8ba9bc
|
Prevent authentication on backend if account is locked (#2243)
|
2020-12-16 22:49:41 +01:00 |
|
Christophe Maudoux
|
c2266720f9
|
Unauthenticated logout request with route & improve unit test (#2342)
|
2020-12-06 11:21:11 +01:00 |
|
Christophe Maudoux
|
b2306cc8ad
|
Unauthenticated logout (#2342)
|
2020-12-05 19:31:23 +01:00 |
|
Maxime Besson
|
0263865faa
|
Add CORS headers to error pages (#2380)
|
2020-11-12 14:34:16 +01:00 |
|
Xavier Guimard
|
893385d007
|
Replace application/javascript by application/json (Fixes #2376)
|
2020-11-06 17:58:41 +01:00 |
|
Maxime Besson
|
1de41224f8
|
Avoid memory leaks in $req->steps (#2369)
|
2020-11-02 23:22:04 +01:00 |
|
Xavier Guimard
|
c8df084247
|
Update versions
|
2020-09-04 17:59:00 +02:00 |
|
Maxime Besson
|
f9cdb5497a
|
Only clean _url part of pdata when redirecting to issuer (#1878,#2124)
|
2020-09-04 17:17:04 +02:00 |
|
Maxime Besson
|
4497f39efe
|
Factor psession id calculation into Common
|
2020-08-17 18:43:29 +02:00 |
|
Maxime Besson
|
26cd1945fb
|
Try to compute the correct value of SameSite by default (#2281)
|
2020-08-17 18:05:09 +02:00 |
|
Maxime Besson
|
7a02fdf8e5
|
rollback caa346d075 (#2179)
No longer needed since #2261
|
2020-08-12 09:49:14 +02:00 |
|
Maxime Besson
|
9d9e16e3f9
|
Remove setAuthSessionInfo from refresh process (#2261)
|
2020-08-12 09:49:14 +02:00 |
|
Maxime Besson
|
9aa3b9b03f
|
Add correct secure flag to pdata cookie (#2272)
|
2020-08-10 12:10:33 +02:00 |
|
Maxime Besson
|
a96820d6f6
|
Set secure flag when removing cookie (#2272)
|
2020-08-10 12:10:33 +02:00 |
|
Maxime Besson
|
5df1850847
|
Add cache-control headers to sendJSONresponse (#2234)
|
2020-06-24 15:49:50 +02:00 |
|
Christophe Maudoux
|
caa346d075
|
Restore previous authentication level (#2179)
|
2020-04-27 18:20:23 +02:00 |
|
Xavier Guimard
|
1f80a0ab8c
|
Avoid little warning in test
|
2020-04-22 15:37:19 +02:00 |
|
Maxime Besson
|
8c94bf0f13
|
Allow portal JSON responses to include a rendered HTML error block (#2110)
|
2020-04-15 18:42:31 +02:00 |
|
Maxime Besson
|
e1767abfda
|
CORS: special handling for AJAX SSL (#2110)
|
2020-04-15 18:42:31 +02:00 |
|
Maxime Besson
|
2440fc7866
|
use sendJSONresponse instead of handcrafting portal response
|
2020-04-15 18:42:31 +02:00 |
|
Christophe Maudoux
|
9e84447d2d
|
Fix update session (#2129)
|
2020-04-06 23:28:01 +02:00 |
|
Xavier Guimard
|
4459a47f76
|
Tidy
|
2020-02-20 23:37:05 +01:00 |
|
Maxime Besson
|
47068c51b8
|
Revert "Prevent portal from crashing when keepPdata=1 (#1893)"
This reverts commit 2b4defb2a9 and
implements a fix "at the source" instead. Should fix #2099.
|
2020-02-20 22:24:26 +01:00 |
|
Maxime Besson
|
68be974e51
|
Add option to compute userdb groups before macros (#1877)
|
2020-02-05 15:39:45 +01:00 |
|
Maxime Besson
|
f997a26e41
|
Fix form method when displaying info in autoPost (#2080)
|
2020-01-30 20:43:04 +01:00 |
|
Clément OUDOT
|
faa65c4abf
|
Options to add a custom CSS file (#2076)
|
2020-01-28 15:14:24 +01:00 |
|
Xavier Guimard
|
f3f97ccb80
|
Add sameSite parameter (#2069)
|
2020-01-20 06:21:09 +01:00 |
|
Christophe Maudoux
|
0408ce80b8
|
Better better fix (#2061)
|
2020-01-19 18:06:56 +01:00 |
|
Christophe Maudoux
|
32d7f46b1a
|
Better fix (#2061)
|
2020-01-18 18:58:42 +01:00 |
|
Christophe Maudoux
|
fd2a9ce226
|
Append info log msg (#2061)
|
2020-01-17 22:27:03 +01:00 |
|
Christophe Maudoux
|
138ef363d4
|
Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2061)
|
2020-01-17 22:17:02 +01:00 |
|
Christophe Maudoux
|
6f31d98710
|
Revert "Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2063)"
This reverts commit 965678dde2.
|
2020-01-17 22:16:44 +01:00 |
|
Christophe Maudoux
|
965678dde2
|
Force cleaning pdata cookie if redirect url match _url & Improve unit test (#2063)
|
2020-01-17 22:10:06 +01:00 |
|
Christophe Maudoux
|
583bbbe285
|
Append CSP frame-ancestors option & Improve unit test (#2068)
|
2020-01-15 16:09:57 +01:00 |
|
Christophe Maudoux
|
b28a9d148e
|
Modify log level
|
2020-01-08 23:06:49 +01:00 |
|
Christophe Maudoux
|
1988983c90
|
Typo
|
2019-12-31 17:14:44 +01:00 |
|
Clément OUDOT
|
3831b81255
|
Adapt log message in refresh (#2005)
|
2019-12-19 18:11:33 +01:00 |
|
Christophe Maudoux
|
c21ab76900
|
Better fix (#2005)
|
2019-12-15 12:54:28 +01:00 |
|
Christophe Maudoux
|
e4c5a9d723
|
Fix #2005 & improve unit test
|
2019-12-14 17:40:23 +01:00 |
|
Maxime Besson
|
bedcf20806
|
Change portal error code on 2F failure (#2008)
|
2019-11-15 11:19:08 +01:00 |
|
Maxime Besson
|
c94e2534a9
|
Send CORS headers when doing JSON responses too (#1765)
|
2019-09-16 16:55:15 +02:00 |
|
Maxime Besson
|
e281ad7cc3
|
Add support for CORS preflight (#1765)
|
2019-09-16 16:55:15 +02:00 |
|
Christophe Maudoux
|
9c01c46fea
|
Typo (#1932)
|
2019-09-14 23:37:50 +02:00 |
|
Christophe Maudoux
|
dd66f37739
|
Return httpSession id if exists (#1932)
|
2019-09-14 22:47:11 +02:00 |
|
Xavier Guimard
|
ae6e69667a
|
Fix warning
|
2019-08-29 10:49:01 +02:00 |
|
Xavier
|
1f2f0240f0
|
Love Perl (#1863)
TIMTOWTDI
|
2019-08-28 00:36:18 +02:00 |
|
Maxime Besson
|
810d2c7f94
|
Disable template cache to avoid translation issues in mail (#1897)
|
2019-08-27 23:13:36 +02:00 |
|