lemonldap-ng

Author	SHA1	Message	Date
Clément Oudot	6008516967	Add icons (GPL) for applications in Menu (#29 )	2010-09-23 09:30:00 +00:00
Clément Oudot	890daaf5a5	'on' and 'off' are also valid values fo display mode (#29 )	2010-09-22 14:26:28 +00:00
Clément Oudot	48a12e1610	Update MANIFEST for application logos (#29 )	2010-09-20 15:23:55 +00:00
Clément Oudot	ff58e89b0a	Categories and applications sorted by alphabetical order of their id (#29 )	2010-09-20 14:04:33 +00:00
Clément Oudot	fd114a0345	New application list for dark theme (#29 )	2010-09-20 13:07:28 +00:00
Clément Oudot	fecc9cc332	Adapt CSS for application list, skin pastel (#29 )	2010-09-20 12:35:24 +00:00
Clément Oudot	36a1674c09	Use template loops to display categories and applications - work in progress (#29 )	2010-09-20 10:39:23 +00:00
Clément Oudot	59c17a6604	Build applications list as a perl struct (#29 )	2010-09-20 08:31:09 +00:00
Xavier Guimard	eae0070d8e	Doxygen doc	2010-09-19 12:23:46 +00:00
Xavier Guimard	a28a147674	Little error	2010-09-19 09:47:38 +00:00
Xavier Guimard	e8b2860ff6	- Missing Debian dependencies - META.yml update	2010-09-19 09:29:40 +00:00
Xavier Guimard	df0c8004c0	New feature : configuration is cached in portal memory	2010-09-19 09:25:47 +00:00
Xavier Guimard	85d384bac1	#28 in progress	2010-09-18 06:41:48 +00:00
Xavier Guimard	c80795805a	#28 in progress	2010-09-18 06:23:34 +00:00
Xavier Guimard	305113c53f	#28 in progress : - Extension to Net::OpenID::Server to manage extensions (and sign them)	2010-09-17 15:32:43 +00:00
Clément Oudot	ce8b2f0adf	Dark skin in progress	2010-09-17 12:20:58 +00:00
Xavier Guimard	09b6f037df	_SOAP.pm and Menu.pm provide both _compileRules => moved to _LibAccess.pm	2010-09-17 10:23:49 +00:00
Clément Oudot	d2bef48797	New Menu in impact skin (#29 )	2010-09-16 15:23:05 +00:00
Clément Oudot	d7fb73b2e2	Rewrite Menu module, to integrate it in Portal (#29 )	2010-09-16 15:10:00 +00:00
Clément Oudot	b658c3df43	SAFEWRAP test was not good	2010-09-16 08:44:56 +00:00
Clément Oudot	30a337176e	Correct confirmation template for skin impact	2010-09-15 15:14:11 +00:00
Clément Oudot	0ab89e1f14	Use a cookie to know which authchoice tab was selected	2010-09-15 08:31:44 +00:00
Clément Oudot	6623372844	Add SSL logo	2010-09-13 20:22:51 +00:00
Clément Oudot	dda83a3e67	Store authChoice in session, and load it for existing sessions	2010-09-13 15:14:19 +00:00
Clément Oudot	07c1c59d0e	Load IDPs in SAML userDBInit to manage SLO in SAML proxy mode	2010-09-13 15:10:39 +00:00
Clément Oudot	657c39d563	Use subProcess to change password in Menu	2010-09-13 15:08:29 +00:00
Clément Oudot	3304885bf0	Register dn in session even if no UserDBLDAP selected	2010-09-13 14:09:07 +00:00
Clément Oudot	a9ab38424d	Dark skin: mail reset form	2010-09-13 14:08:20 +00:00
Clément Oudot	c004e6363d	Load correct authentication module on issuer logout process	2010-09-10 20:27:14 +00:00
Clément Oudot	0fb130e29e	Correct UserDBSAML init test	2010-09-10 20:17:08 +00:00
Clément Oudot	17b3c15466	Code authentication choice like multiple authentication (#19 )	2010-09-10 19:52:44 +00:00
Clément Oudot	974b4377f7	Dark theme in progress	2010-09-09 20:45:57 +00:00
Clément Oudot	18e62ab725	Work on a new skin (dark), based on pastel templates	2010-09-09 15:49:10 +00:00
Clément Oudot	1a7c6e5e77	Modify file organization for skins	2010-09-09 15:00:59 +00:00
Clément Oudot	789b726225	Some enhancements on skins	2010-09-08 20:17:56 +00:00
Clément Oudot	61a73e59dd	Work on authentication choice (#19 )	2010-09-08 20:16:32 +00:00
Clément Oudot	a565dd555a	Display user login in impact theme	2010-09-07 14:02:18 +00:00
Clément Oudot	1f4a6e6450	#19 : * Dedicated AuthChoice.pm * Authentication choice parameters in Manager	2010-09-06 15:05:54 +00:00
Clément Oudot	7bcbdaa318	Manage auth choice and OpenID in impact skin (#19 )	2010-09-06 12:43:33 +00:00
Clément Oudot	13da8acd79	* Confirmation data are always resend to portal (form action=#) * Transport authentication choice in info and confirm steps (#19)	2010-09-06 11:48:41 +00:00
Clément Oudot	d2549c2fbe	Always display authentication choices if any (#19 )	2010-09-06 09:35:05 +00:00
Xavier Guimard	c8a2b8c5e0	"_safe" instead of "safe" in Menu	2010-09-06 09:23:23 +00:00
Clément Oudot	b5361c1175	Specific templates for standard from and OpenID form (#19 )	2010-09-06 08:45:22 +00:00
Clément Oudot	45bd8a6872	Use global_vars in template to see template vars inside loops (#19 )	2010-09-05 13:57:07 +00:00
Xavier Guimard	29640f3829	test wrapper for Safe	2010-09-04 11:49:03 +00:00
Clément Oudot	09b06fecbf	Add SSL and Apache in authentication choices (#19 )	2010-09-03 16:02:10 +00:00
Xavier Guimard	d00f68a54b	Try to close LEMONLDAP-117	2010-09-03 15:58:57 +00:00
Clément Oudot	b57ae4f34a	Add logos for authentication choice (#19 )	2010-09-03 15:43:41 +00:00
Clément Oudot	82b4ea080e	Load correct authentication module for authLogout (#LEMONDLAP-19)	2010-09-03 15:23:08 +00:00
Xavier Guimard	8663fd29e9	AddUserDBOpenID	2010-09-03 15:20:38 +00:00
Clément Oudot	615f0ba259	Transport authChoice in OpenID workflow	2010-09-03 14:58:25 +00:00
Clément Oudot	a8cc940774	Manage authChoice in CAS proxy callback	2010-09-03 14:53:31 +00:00
Clément Oudot	9e38c5ea2a	Transport authChoice in CAS authentication	2010-09-03 14:24:19 +00:00
Clément Oudot	41151228ff	Typo in checkXSSAttack call	2010-09-03 14:23:54 +00:00
Clément Oudot	f47388bc32	Update MANIFEST for UserDBOpenID	2010-09-03 14:23:30 +00:00
Clément Oudot	ec8eb57b1f	* Common XSS attack check method * Check XSS attack on authChoice parameter	2010-09-03 14:15:44 +00:00
Xavier Guimard	eacdc8e2dd	Typo	2010-09-03 13:37:49 +00:00
Xavier Guimard	47cb5c1a59	OpenID consumer now supports "OpenID Simple Registration Extension"	2010-09-03 13:34:35 +00:00
Clément Oudot	c10f1a96db	Authentication choice in progress (#19 )	2010-09-03 13:21:03 +00:00
Clément Oudot	0f4212abc2	URL param to choose authentication module (#LEMONLDAP19)	2010-09-02 15:32:40 +00:00
Xavier Guimard	0e1f5f4217	According to OpenID-2.0 specs, HTML field should be called "openid_identifier"	2010-09-02 10:38:28 +00:00
Clément Oudot	9992c56f43	Configure mapping between SAML authentication contexts and authentication levels (#152 )	2010-09-02 09:09:10 +00:00
Clément Oudot	8d6899c2b2	Configuration keys for authentication levels (#152 )	2010-09-01 16:06:01 +00:00
Xavier Guimard	06beaa6ff4	« make tidy »	2010-09-01 12:56:15 +00:00
Xavier Guimard	dd597a7cce	OpenID federation message	2010-09-01 12:52:56 +00:00
Clément Oudot	a5ac6ee02b	Recreate an ARRAY ref for ldapGroupAttributeNameSearch (#1 )	2010-09-01 10:59:11 +00:00
Clément Oudot	6dd0c45e61	Add fake authFinish in Portal unit test 01	2010-09-01 10:29:24 +00:00
Clément Oudot	0f973b7b87	Set external authenticationLevel to 1	2010-09-01 09:53:55 +00:00
Xavier Guimard	7770f58ab2	Error using Lemonldap::NG::Common::Crypt	2010-09-01 09:16:02 +00:00
Clément Oudot	e5bbac08de	Add authFinish, authLogout and authForce in authentication modules (#149 )	2010-09-01 08:59:39 +00:00
Xavier Guimard	f7bc27e310	Typo	2010-09-01 08:13:44 +00:00
Xavier Guimard	ebc6609da9	Typo	2010-09-01 08:11:34 +00:00
Xavier Guimard	f6f09f635c	IssuerOpenID in progress	2010-08-31 15:36:32 +00:00
Clément Oudot	038f57d7b5	SAML Issuer: redirect on logout page after logout process initiated by IDP	2010-08-31 15:21:17 +00:00
Clément Oudot	0d5faacc0a	Manage // in path when checking IssuerDB path	2010-08-31 15:14:44 +00:00
Clément Oudot	88272cce87	Use _saml_id key in SAML sessions to rattach them to main SSO session_id (#148 )	2010-08-31 14:36:45 +00:00
Clément Oudot	35935c5b7f	Little bug in controlExistingSession	2010-08-31 12:23:11 +00:00
Clément Oudot	1e1f9bf5ea	Modify binmode to bytes for SOAP responses (closes #144 )	2010-08-31 10:34:28 +00:00
Xavier Guimard	2295d560f8	"make manifest"	2010-08-31 06:53:04 +00:00
Clément Oudot	a73968cd84	AuthCAS: use logoutServices to register CAS logout URL	2010-08-30 16:01:25 +00:00
Clément Oudot	92352246ee	Support from logout services: they are deconnected with a GET request after portal logout (#121 )	2010-08-30 15:46:26 +00:00
Clément Oudot	611d252ebc	AuthCAS: renew and gateway flags can now been configured	2010-08-30 13:41:45 +00:00
Clément Oudot	9a4df749fe	CAS: Manage renew flag in VALIDATE and SERVICE VALIDATE URL (#101 )	2010-08-30 09:24:04 +00:00
Clément Oudot	d3aefd81b8	AuthCAS: declare authForce method	2010-08-30 09:01:15 +00:00
Clément Oudot	60296f0143	CAS: Manage renew flag in LOGIN URL (#101 )	2010-08-30 08:56:16 +00:00
Clément Oudot	8e7c112181	AuthCAS: declare authLogout and authFinish methods	2010-08-30 08:38:53 +00:00
Clément Oudot	e3010de6e5	CAS Issuer (#101 ): * Manage gateway parameter (refused unauthenticated user) * Display CAS logout URL message * Do not check base64 encoded URL for CAS (mandatory for logout URL management)	2010-08-27 16:07:19 +00:00
Xavier Guimard	7eb813fbca	Little TODO	2010-08-27 15:35:53 +00:00
Xavier Guimard	cd00bf3b62	OpenID server in progress	2010-08-27 15:34:03 +00:00
Clément Oudot	6045909d1f	AuthCAS: collect PT for each registered CAS proxied service (#146 )	2010-08-27 14:42:07 +00:00
Clément Oudot	832f7050eb	Add activation parameter for each IssuerDB module (#147 )	2010-08-27 13:01:54 +00:00
Clément Oudot	ac47c65adb	AuthCAS: remove unused parameters and add debug information (#146 )	2010-08-27 08:50:09 +00:00
Clément Oudot	f4514c41e7	Manage all proxy workflow for CAS (#101 )	2010-08-26 16:16:13 +00:00
Clément Oudot	b4f5adde99	Manage proxy granting ticket for CAS service validate URL (#101 )	2010-08-26 14:43:32 +00:00
Clément Oudot	b721763e23	Manage CAS service validate URL (#101 )	2010-08-26 12:24:38 +00:00
Clément Oudot	cf282a3c25	Add sample CAS client script (#101 )	2010-08-26 10:25:58 +00:00
Clément Oudot	a19067e5a2	Delete CAS secondary sessions on logout (#101 )	2010-08-26 08:42:28 +00:00
Clément Oudot	b819f75f9e	Remove HTTP-Redirect binding for SAML authentication response because not supported in SAML 2.0 conformance document (#144 )	2010-08-26 08:05:25 +00:00
Clément Oudot	04ede0a918	CAS: * Check the ticket is a service ticket * Add _utime in CAS service sessions * Add some debug messages	2010-08-25 15:57:21 +00:00
Clément Oudot	2b1e09d09c	Manage CAS logout and validate URL (#101 )	2010-08-25 15:33:33 +00:00
Clément Oudot	a6acf86f4e	Generate CAS Service Ticket (#101 )	2010-08-25 14:23:45 +00:00
Clément Oudot	c6c8024326	Manage CAS URLs (#101 )	2010-08-23 16:41:38 +00:00
Clément Oudot	5877fa95d6	CAS IssuerDB skeleton (#101 )	2010-08-23 15:47:53 +00:00
Clément Oudot	dca8b923ac	* Add setUserDBValue method for LDAP and DBI userDB * Add samlUserDBIdentityKey * IssuerDBSAML now try to store Lasso identity in UserDB * References #123	2010-08-23 14:52:53 +00:00
Clément Oudot	240c2b56eb	SAML: * Use request path to choose IssuerDB module to load * Store all used IssuerDB module in user session * Launch issuerLogout method for all used IssuerDB module * References #102	2010-08-23 13:27:16 +00:00
Clément Oudot	503fd5d9c3	Correct bug in javascript when action URL has no '?' (#125 )	2010-08-20 15:36:06 +00:00
Clément Oudot	4fa2f6318e	Build removeOther link with javascript, to get the final redirection URL and method (#125 )	2010-08-20 15:07:55 +00:00
Clément Oudot	a9a2106e89	Add a back URL in removeOther link (#125 )	2010-08-20 13:48:09 +00:00
Clément Oudot	a85958f90f	Always clear previous hidden form value when PE_INFO is returned by autoRedirect and autoPost (#125 )	2010-08-20 10:52:52 +00:00
Clément Oudot	5e6efebab1	Manage info form hidden fields for autoRedirect and autoPost (#125 )	2010-08-20 10:31:20 +00:00
Clément Oudot	ead9413dd8	Possibility to control form method of info and confirm screen (references #125 )	2010-08-19 16:19:30 +00:00
Clément Oudot	f0af83546a	Correct bug for artifact resolution on IDP side (#143 )	2010-08-19 14:17:25 +00:00
Clément Oudot	e29a65e92b	Disable timer on IDP list (#141 )	2010-08-18 15:10:30 +00:00
Clément Oudot	6781054397	Return error when SAML authentication is refused by user (#132 )	2010-08-18 14:26:18 +00:00
Xavier Guimard	b09b37566d	Update to Jquery 1.4.2	2010-08-18 13:54:50 +00:00
Clément Oudot	33403f3396	Display a link to go back to SP on IDP login page (#140 )	2010-08-18 13:39:15 +00:00
Xavier Guimard	45aaa41cee	Split extractFormInfo => create getIDP()	2010-08-18 10:07:42 +00:00
Clément Oudot	6c534022f4	Use #PORTAL# macro in SAML URL to ease SAML configuration (#139 )	2010-08-18 09:49:55 +00:00
Xavier Guimard	7cf902d9e2	Debian packaging requires "/skins" due to symbolic links	2010-08-16 16:29:16 +00:00
Xavier Guimard	d32e31e5bd	Perl dependency + typo	2010-08-05 08:21:31 +00:00
Clément Oudot	1dc1f926e4	Add timeout, version and binary attributes options for LDAP configuration (closes #129 )	2010-07-28 10:00:30 +00:00
Clément Oudot	5cc3a3057a	Update MailReset doxygen documentation (#7 )	2010-07-22 09:06:50 +00:00
Clément Oudot	a32502b8f7	Do use st when browsing backends (authentication, userDB, ...) to prevent from a bug in Perl-LDAP 0.40 (#128 )	2010-07-21 12:13:12 +00:00
Clément Oudot	6792a1350c	Store replay protection for SAML SLO request sent by IDP	2010-07-05 21:24:34 +00:00
Clément Oudot	d475674b4c	* Modify some default conf values * Add missing SAML error codes to portal CGI	2010-07-05 21:09:55 +00:00
Clément Oudot	192dd9c8e1	Preparation for 1.0rc2 release	2010-07-05 16:20:17 +00:00
Clément Oudot	15cb8f6e29	SAML error codes for IDP and UserDBSAML (#40 )	2010-07-05 15:58:03 +00:00
Clément Oudot	abfc445f38	SAML Error codes for SP (#40 )	2010-07-05 15:38:02 +00:00
Clément Oudot	6fb21c669b	Use private key passwords (#97 )	2010-07-05 11:50:12 +00:00
Clément Oudot	3ed02a09b8	* Set noInfo flag when updating session * Get sessionIndex from SLO request before validating the request * Use NameID dump in debug message	2010-07-05 09:36:52 +00:00
Clément Oudot	5c406c5381	Counter is never negative (#124 )	2010-07-04 14:05:20 +00:00
Clément Oudot	1c4d8535f7	SAML: Issuer can send SLO requests to SP and IDP when in proxy mode (#31 )	2010-07-03 14:38:46 +00:00
Clément Oudot	c0548bab70	Modify XML namespace for Lasso Session empty object	2010-07-03 13:55:43 +00:00
Clément Oudot	0dac2f1374	* authInit should be called before issuerForAuthUser when we catch SLO URL in IDP proxy mode * do not 'return' sendSLOErrorMessage	2010-07-02 15:42:22 +00:00
Clément Oudot	b635d87761	* authInit should be called before issuerForAuthUser when we catch SLO URL in IDP proxy mode * do not 'return' sendSLOErrorMessage	2010-07-02 15:14:54 +00:00
Clément Oudot	f193d0b66d	Really exit if sendSLOErrorMessage fail	2010-07-02 14:17:01 +00:00
Clément Oudot	a6c60ec1a7	Keep and restore SAML request for IDP proxy (#31 )	2010-07-02 11:29:00 +00:00
Clément Oudot	e0bbb1c9d0	Delete SAML sessions on local logout (#122 )	2010-07-02 09:05:46 +00:00
Clément Oudot	1f28b97cd8	Wrong error level in debug message	2010-07-02 08:54:54 +00:00
Clément Oudot	e359e1a7d1	SAML: use correct method to build artifact message (#32 )	2010-07-02 08:14:26 +00:00
Clément Oudot	5754d86ff5	* Add a troolean type in Manager * Sign SAML Message options can accept the default value (#88)	2010-07-01 16:05:57 +00:00
Clément Oudot	2ce4e19a0d	SAML: catch SSO artifact URL in IssuerDBSAML (#32 )	2010-07-01 11:31:24 +00:00
Clément Oudot	90debded1d	SAML: add Artifact binding in metadata (#32 )	2010-07-01 09:58:39 +00:00
Clément Oudot	f46c3b4224	SAML: artifact for sending authn request, work in progress (#32 )	2010-07-01 09:48:50 +00:00
Clément Oudot	edb345f23c	SAML: * Correct a SLO bug when only one SP in session * Check NotOnOrAfter in SLO request (#36)	2010-06-30 08:05:20 +00:00
Clément Oudot	b2381101d7	SAML: use getSamlSession whenever it's possible	2010-06-28 16:22:07 +00:00
Clément Oudot	758c133f81	SAML: encode metadata flag was not honored for attribute authority	2010-06-28 15:04:40 +00:00
Clément Oudot	d07eaab83f	SAML: keep SAML request in memory for IDP Proxy management (#31 )	2010-06-28 15:00:14 +00:00
Clément Oudot	3ee1e9b393	Add an option to encode Metadata in UTF-8 (#119 )	2010-06-28 09:11:59 +00:00
Clément Oudot	f5367d4dc9	* Create sendSLOErrorResponse subroutine * Send SLO error if REDIRECT or POST SLO request on a closed session (#107) * Send SLO error instead of empty SOAP message, or local error page	2010-06-28 08:34:15 +00:00
Clément Oudot	dee65a4d00	SAML: cache Lasso::Server object to increase performances (#86 )	2010-06-25 15:38:14 +00:00
Clément Oudot	d114827e70	Store metadata in raw format (#104 )	2010-06-25 13:51:09 +00:00
Clément Oudot	b32d4e8f52	Remove HttpRedirect and HttpDisableSubmit options in info.tpl, and use hidden fields to store URL parameters, for form GET to work (#115 )	2010-06-23 14:03:18 +00:00
Clément Oudot	07f648cd7e	SLO termination complete (#111 )	2010-06-23 09:58:14 +00:00
Xavier Guimard	0e082b1d8f	Closes: #114 : Bad usage of Apache::Session::searchOn() on portal	2010-06-22 16:30:38 +00:00
Clément Oudot	33699a6d40	SAML: build a SLO termination state (#111 )	2010-06-21 16:24:50 +00:00
Clément Oudot	174026f44c	SAML: validate SLO request before building other SP SLO request (#111 )	2010-06-21 15:44:18 +00:00
Xavier Guimard	aa190c7f35	make tidy	2010-06-21 15:29:59 +00:00
Clément Oudot	58419de458	Portal: we can have information message for unauthenticated users	2010-06-21 15:20:51 +00:00
Xavier Guimard	8139248c15	Closes: #113 : Lemonldap::NG is not compatible with the use of a LDAP server using a different encoding than UTF-8 for storing passwords	2010-06-21 14:47:27 +00:00
Clément Oudot	8b23a63fb3	SAML: use a SLO status session to store SLO status on IDP side (#111 )	2010-06-21 14:28:42 +00:00
Clément Oudot	3b6e0567ee	SAML: store SAML Token in session (#110 )	2010-06-18 13:07:20 +00:00
Clément Oudot	11761807f4	SAML: do not send empty Attribute Statement (#109 )	2010-06-18 07:50:37 +00:00
Clément Oudot	af0f4ef88e	SAML: force NameID format if requested format is unspecified (#108 )	2010-06-17 13:29:53 +00:00
Clément Oudot	e33f7c2efc	SAML: * Use table instead of list for SP SLO status * Catch SLO response and display status logo (#106)	2010-06-16 16:17:05 +00:00
Clément Oudot	885966f04b	SAML: error in SAML POST field name (#56 )	2010-06-16 13:08:18 +00:00
Clément Oudot	1aec1902f5	SAML: create POST relay mechanism to send POST SLO requests (#56 )	2010-06-16 10:32:43 +00:00
Clément Oudot	8ffd3e6244	Display status of SLO request in debug level (#78 )	2010-06-14 15:42:32 +00:00
Clément Oudot	d1d0accae6	Rebuild logout object before sending SLO response (#78 )	2010-06-14 15:29:37 +00:00
Clément Oudot	ebc421d335	Return directly if no local session (#105 )	2010-06-14 14:52:52 +00:00
Clément Oudot	021f89d918	Check session before closing it (#105 )	2010-06-14 14:18:27 +00:00
Xavier Guimard	22387615fb	Permit direct OpenID server side direct authentication	2010-06-14 06:19:34 +00:00
Clément Oudot	6bc5246690	Send SOAP SLO request to other entities when receiving a SOAP SLO request on IDP (#78 )	2010-06-11 14:50:28 +00:00
Clément Oudot	98a9b6ef40	SAML: delete secondary SAML sessions (#100 )	2010-06-11 14:13:26 +00:00
Clément Oudot	a570447179	SAML: use another method to set NameID in Attribute request (#83 )	2010-06-11 13:49:33 +00:00
Clément Oudot	a62484dc91	SAML: manage SOAP SLO request - work in progress (#78 )	2010-06-11 10:17:43 +00:00
Clément Oudot	c6ff319439	SAML: add unit test for SAML date with milliseconds	2010-06-11 08:48:00 +00:00
Clément Oudot	2b7cbd4d83	SAML: * IDP Option to check conditions (#98) * Extend SAML date format (add milliseconds)	2010-06-10 15:01:05 +00:00
Clément Oudot	a2921f9d10	SAML: add encryption key in attribute authority metadata (#96 )	2010-06-10 10:06:42 +00:00
Thomas CHEMINEAU	3fb6a0ccd1	SAML #89 - Now use a different private key for encryption when creation Lasso::Server object	2010-06-09 08:42:30 +00:00
Thomas CHEMINEAU	a410b90dc4	SAML #89 - metadata file of the service now use newly defined public keys parameter	2010-06-08 16:20:17 +00:00
Clément Oudot	2ab40fea15	Soap is not required for SAML (#91 )	2010-06-08 13:19:00 +00:00
Xavier Guimard	11dd597a41	Some Lintian tips	2010-06-08 10:39:34 +00:00
Clément Oudot	7e031e199a	SAML: minor corrections for forceAuthn flag management (#34 )	2010-06-07 15:36:45 +00:00
Clément Oudot	783d88eabb	SAML: manage ForceAuthn flag from SP (#34 )	2010-06-07 14:48:59 +00:00
Clément Oudot	05637bf0c4	SAML: set encryption mode on providers (none, nameid or assertion) (#49 )	2010-06-04 15:54:52 +00:00
Clément Oudot	dd615d0678	SAML: * Check values of requested attributes (#85) * Refactor some code in _SAML (createAttribute and createAttributeValue)	2010-06-04 14:23:41 +00:00
Xavier Guimard	208a4f34d2	Closes #82 : CDA always use secured cookie even if requested site is a http one	2010-06-04 08:43:42 +00:00
Xavier Guimard	47d38c7e3f	New debconf translation (Closes: #584453 / bugs.debian.org)	2010-06-04 08:35:53 +00:00
Thomas CHEMINEAU	160c5f670a	fix #35 - include more checks to test contents on identity dump	2010-06-03 14:02:15 +00:00
Clément Oudot	cc1eb344a7	SAML: get attributes in attribute response	2010-06-02 15:21:39 +00:00
Clément Oudot	101442179d	Check format and friendly name from attribute (#84 )	2010-06-02 14:51:39 +00:00
Clément Oudot	e928b770f7	SAML: browse SP authorized attributes and build attribute response (#2 )	2010-06-02 13:45:37 +00:00
Clément Oudot	5ded22db86	Do not return errors in POST or SOAP response process, just quit if something is wrong	2010-06-02 09:12:35 +00:00
Clément Oudot	82b350a397	SAML: check NameID before extracting content	2010-06-02 09:08:33 +00:00
Clément Oudot	5444a9d3b4	SAML: * Grab NameID from attribute request and find corresponding session (#2) * create a getSamlSession subroutine	2010-06-02 09:04:07 +00:00
Clément Oudot	a27464e277	SAML: process and validate attribute request (#2 )	2010-06-02 08:09:59 +00:00
Clément Oudot	67e3e0ee6b	was not set	2010-06-01 15:42:35 +00:00
Clément Oudot	608e5e6b0a	Little corrections for make test	2010-06-01 15:39:18 +00:00
Clément Oudot	8fe3e749a3	SAML: catch attribute service URL (#2 )	2010-06-01 15:34:08 +00:00
Clément Oudot	e8c514f794	SAML: set NameID in attribute query (#2 )	2010-06-01 14:43:49 +00:00
Clément Oudot	8c14ba24bf	SAML: keep NameID in a SAML session to answer later attribute queries (#2 )	2010-06-01 13:27:02 +00:00
Clément Oudot	00a952a372	SAML: create a new Lasso::Server object to manage attribute queries (#2 )	2010-06-01 12:23:11 +00:00
Clément Oudot	d7cee9a4f9	Use redirection message in page title (#80 )	2010-06-01 10:11:35 +00:00
Clément Oudot	bb9c7435cc	POST fields are now hidden (#80 )	2010-06-01 09:59:37 +00:00
Clément Oudot	6c1dc91ff0	SAML: set SessionNotOnOrAfter (#81 )	2010-06-01 08:03:24 +00:00
Clément Oudot	ffeb9e3134	SAML: adjust HTTP-POST artifact binding (#75 )	2010-05-31 15:46:41 +00:00
Xavier Guimard	aa06d53bcf	New dependency not inserted in control files (Crypt::OpenSSL::X509)	2010-05-31 15:44:40 +00:00
Thomas CHEMINEAU	3cef8ecf0a	SAML: fix #10 - support certificate into metadata	2010-05-31 14:57:34 +00:00
Clément Oudot	ec8892ef7f	SAML: * Identity is no more required in attribute query * Mandatory attributes are requested if not defined in SSO assertion (#79)	2010-05-31 14:54:24 +00:00
Clément Oudot	b678ab454f	SAML: test SessionNotOnOrAfter before converting it (#77 )	2010-05-31 13:50:26 +00:00
Clément Oudot	9d3fd0ebd0	SAML: * Add Attribute Authority metadata (#3) * Clean existing metadata (remove NameID management, and set NameIDFormat directly in XML)	2010-05-31 10:37:43 +00:00
Clément Oudot	c0edd943db	SAML: add an IDP option to force attribute value in UTF-8 (#72 )	2010-05-28 15:31:20 +00:00
Clément Oudot	6964b09eb2	SAML: use HTTP method string in debug messages	2010-05-28 12:17:05 +00:00
Clément Oudot	b91cba9f32	SAML: adapt metadata to new Post bindings (#75 )	2010-05-28 11:51:53 +00:00
Clément Oudot	82ff667d57	SAML: add POST binding to SAML services (#75 )	2010-05-28 10:35:24 +00:00
Clément Oudot	b8c3f5e6ff	SAML: transport url parameter in IDP choice screens (closes #73 )	2010-05-28 08:03:13 +00:00
Clément Oudot	cfec37d111	SAML: * Error message when no artifact resolution URL in profile * Manage XML boolean values in metadata	2010-05-27 12:39:32 +00:00
Clément Oudot	8789b5d131	SAML: do not throw error if no SP or no IDP configured (closes #70 )	2010-05-26 15:32:09 +00:00
Clément Oudot	a2cd83aea9	* - in domain (closes #69 ) * securedCookie select box * bad abort arguments number * manager/index.pl comments	2010-05-26 15:17:51 +00:00
Clément Oudot	d1b4541a4d	SAML: check Destination attribute (closes #33 )	2010-05-21 13:44:16 +00:00
Clément Oudot	58bec95435	SAML: map NameID formats to local session keys (closes #67 )	2010-05-21 09:03:29 +00:00
Clément Oudot	0817e9918f	SAML: Option to configure default NameID format for a SP (#67 )	2010-05-20 15:57:51 +00:00
Clément Oudot	f187851ba6	SAML: signatures on SSO/SLO messages issued from IDP (#66 )	2010-05-20 13:08:07 +00:00
Clément Oudot	bc618ce075	SAML: check SSO/SLO messages signature in IDP (#66 )	2010-05-20 10:25:00 +00:00
Clément Oudot	fdc84aac52	SAML: get SessionIndex before validating SLO request (closes #64 )	2010-05-20 08:59:59 +00:00
Clément Oudot	ef3faf7d3e	SAML: eval SessionIndex call to prevent server error (#64 )	2010-05-19 15:54:20 +00:00
Clément Oudot	4d0a5a651d	SAML: IssuerDB Activation Rule (#52 )	2010-05-19 14:59:43 +00:00
Clément Oudot	df4198399f	* Add a new process step (authFinish) run after session store * Create SAML session linked to real session to store NameID and SessionIndex, in order to use searchOn on them (will not force globalStorage to be compatible with searchOn) * Control SessionIndex sent by IDP on a SLO request is now managed in SP to get the correct local session * This solves issue #51	2010-05-17 16:02:21 +00:00
Clément Oudot	18bda4be2e	SAML: SLO request without SessionIndex are rejected (#51 )	2010-05-17 12:44:26 +00:00
Clément Oudot	6f0dde1bac	SAML: correct unit test if no Lasso available	2010-05-17 09:36:03 +00:00
Clément Oudot	a3cc63ac90	SAML: skip all tests if Lasso no available	2010-05-17 07:43:37 +00:00
Clément Oudot	be742cfac6	SAML: use encrypt/decrypt to match session_index and session_id (#51 )	2010-05-12 15:56:27 +00:00
Clément Oudot	c6dd158903	SAML: map SAML authentication context and authentication level (#47 )	2010-05-12 15:14:07 +00:00
Clément Oudot	7f427610fe	SAML: typo in #53 correction	2010-05-12 12:56:16 +00:00
Clément Oudot	01f928504d	SAML: correct date to timestamp conversion (#62 ) and add unit test	2010-05-12 12:46:47 +00:00
Thomas CHEMINEAU	14c23cea6d	fix #53 - use sendLogoutResponseToServiceProvider in IssuerDBSAML	2010-05-12 09:41:54 +00:00
Xavier Guimard	3844ba4192	"make tidy"	2010-05-12 04:04:10 +00:00
Clément Oudot	0ae986296a	Clean all UserDBEnv related files	2010-05-08 15:55:27 +00:00
Clément Oudot	2d88be8222	Portal: catch ENV exportedVars for all UserDB modules (#58 )	2010-05-07 21:33:57 +00:00
Thomas CHEMINEAU	adf7e8158a	Add activity timeout on SSO sessions	2010-05-07 10:00:55 +00:00
Thomas CHEMINEAU	f60e65166d	adding Lemonldap::NG::Handler::UpdateCookie.pm and associated files	2010-05-05 16:49:26 +00:00
Xavier Guimard	810505b1cb	(Closes: #46 )	2010-05-05 16:42:22 +00:00
Clément Oudot	bec0831f2d	Zimbra preAuth is now an independent Handler (#12 )	2010-05-05 08:13:44 +00:00
Clément Oudot	a04ff6e964	SAML: * OneTimeUse is no more used in SP (#50) * Compile regexp for SAML URLs * Move sendLogoutRequestToServiceProviders in _SAML * In AuthSAML, do not predefined variables outside loops	2010-05-05 07:10:13 +00:00
Thomas CHEMINEAU	c935584300	informations is correctly stored into session but not well displayed by manager (add _utime, remove useless code)	2010-05-04 15:55:48 +00:00
Clément Oudot	5eb7895dac	SAML: manage SP conf key	2010-05-04 10:10:34 +00:00
Clément Oudot	1b81ccd96f	SAML: use get_signature_status from Lasso::Profile	2010-05-03 21:12:14 +00:00
Thomas CHEMINEAU	c4ea39fae4	UserDB* modules should store user in sessionInfo	2010-05-03 17:42:42 +00:00
Thomas CHEMINEAU	a963e83dc2	add optional session identifier to update existing session with a valid user via SOAP	2010-05-03 16:49:57 +00:00

... 3 4 5 6 7 ...

1058 Commits