Christophe Maudoux
81aa2fb37b
Improve test-lib & unit test ( #1851 )
2019-07-21 23:23:20 +02:00
Christophe Maudoux
3972861ba4
WIP - Improve unit test & need to fix list notifications feature!!! ( #1851 )
2019-07-21 22:47:48 +02:00
Christophe Maudoux
3e50fbca20
Improve unit test ( #1851 )
2019-07-21 22:35:23 +02:00
Christophe Maudoux
34039ef7ef
Improve test-lib & unit test ( #1851 )
2019-07-21 21:56:09 +02:00
Clément OUDOT
f15e8bd108
Possibility to list notifications ( #1851 )
2019-07-21 20:47:16 +02:00
Christophe Maudoux
ca7ebe09f7
WIP - REST service to remove notification ( #1851 )
2019-07-20 22:25:03 +02:00
Christophe Maudoux
21c1d83df3
Typo
2019-07-20 13:28:48 +02:00
Christophe Maudoux
27116ca1af
Improve unit tests & update version ( #1853 )
2019-07-19 10:09:07 +02:00
Christophe Maudoux
b9aa198188
Improve unit test ( #1856 )
2019-07-18 13:38:10 +02:00
Christophe Maudoux
36a547cba5
Typo ( #1857 )
2019-07-18 13:12:12 +02:00
Christophe Maudoux
b6be20f988
Improve unit test ( #1857 )
2019-07-18 13:05:16 +02:00
Christophe Maudoux
4eecd90230
Typo ( #1857 )
2019-07-17 12:20:30 +02:00
Christophe Maudoux
b99b76e2d6
Improve code ( #1857 )
2019-07-17 12:18:15 +02:00
Christophe Maudoux
304e511b66
Improve unit test ( #1857 )
2019-07-17 12:06:21 +02:00
Christophe Maudoux
24a1fdcdb9
Improve unit test ( #1857 )
2019-07-17 11:58:49 +02:00
Christophe Maudoux
b56331c649
Typo
2019-07-17 11:58:22 +02:00
Christophe Maudoux
d8b3eb2a34
Remove cipher cookie if notification refused ( #1857 )
2019-07-16 13:51:01 +02:00
Clément OUDOT
e12cb3a905
Fix loop on notifications ( #1856 )
2019-07-15 10:55:33 +02:00
Xavier
64c587417b
Improvement
2019-07-12 19:09:55 +02:00
Clément OUDOT
c024ed0fe6
Improve logging when a notification is added by REST ( #1853 )
2019-07-12 18:34:55 +02:00
Xavier Guimard
0b5fc64b0e
Keep original PATH_INFO during notification process ( Fixes : #1852 )
2019-07-12 10:34:38 +02:00
Xavier Guimard
3c6a301785
Keep original PATH_INFO during notification process ( Fixes : #1852 )
2019-07-12 10:33:36 +02:00
Xavier Guimard
966eef33ee
Fix df96168c
error: _example/conf/lmConf-1.json is auto-generated ( #1850 )
2019-07-10 17:15:40 +02:00
Xavier Guimard
a1df1157f4
Render CDA compatible with Try ( Fixes : #1849 )
2019-07-10 10:40:32 +02:00
Christophe Maudoux
e877982253
Send pathname with AJAX ( #1829 )
2019-07-09 10:40:52 +02:00
Clément OUDOT
c76dc52436
Adapt response_types_supported attribute in OpenID Connect metadata depending on configured flows ( #1846 )
2019-07-08 15:38:57 +02:00
Clément OUDOT
9b98893c44
Manage claims in ID token if no access token requested ( #1846 )
2019-07-08 15:15:13 +02:00
Clément OUDOT
ac618f551e
Prepare unit test for #1838
2019-07-08 14:26:13 +02:00
Christophe Maudoux
240617d8d8
Fix unit tests
2019-07-06 23:27:45 +02:00
Christophe Maudoux
d0da10b375
Improve code ( #1664 )
2019-07-06 23:00:35 +02:00
Christophe Maudoux
619ea8258f
Improve unit test & fix warning - Expired sessions ( #1783 )
2019-07-06 23:00:24 +02:00
Christophe Maudoux
2d6c46920e
Fix & improve unit test ( #1844 )
2019-07-05 22:53:48 +02:00
Christophe Maudoux
3e08f8bc08
Fix langs ( #1844 )
2019-07-05 22:53:22 +02:00
Xavier
88f75c42ed
Set pdata domain also when removing cookie ( #1829 )
2019-07-05 06:43:11 +02:00
Christophe Maudoux
6a579644f8
Fix warning ( #1842 )
2019-07-04 23:20:11 +02:00
Christophe Maudoux
f38a583967
Improve code
2019-07-04 22:50:46 +02:00
Christophe Maudoux
2016abd2ee
Send pdata cookie to cross domain ( #1829 )
2019-07-04 21:49:28 +02:00
Xavier
9cdfd4c9a6
Add notice when user is connected
2019-07-04 21:22:06 +02:00
Clément OUDOT
1ebbde9a50
Tidy code and add missing check on hash_level ( #1835 )
2019-07-04 09:49:01 +02:00
Xavier
a104db2f2d
Clean logs
2019-07-04 07:24:50 +02:00
Xavier
d4fedbdfcf
Duplicate log rules in Plugin manpage
2019-07-04 07:09:39 +02:00
Christophe Maudoux
6df12176de
Disable secondFactor ( #1783 )
2019-07-03 23:21:19 +02:00
Christophe Maudoux
2f541370a6
perltidy ( #1783 )
2019-07-03 23:12:15 +02:00
Christophe Maudoux
03f2d89d0c
ContextSwitching: Check (expiration) errors & Improve logs ( #1783 )
2019-07-03 23:08:50 +02:00
Xavier
ff6a3369a7
Fix warning
2019-07-03 22:34:48 +02:00
Xavier
2354a52e5f
Fix warning
2019-07-03 22:32:36 +02:00
Christophe Maudoux
161d6cee0f
Fix unit test warning (Auth-and-issuer-OIDC-authorization_code-with-none-alg.t)
2019-07-03 22:17:22 +02:00
Maxime Besson
6f058fb2fa
Add manager manpages to deb
2019-07-03 15:17:16 +02:00
Maxime Besson
396e61491e
Improve mail2F display in outlook
2019-07-03 11:03:37 +02:00
Xavier
78a4bb4987
ContextSwitching: Check (expiration) errors ( #1783 )
2019-07-03 06:47:33 +02:00
Christophe Maudoux
5a53fee2db
WIP - Improve log ( #1783 )
2019-07-03 00:09:14 +02:00
Christophe Maudoux
42bc5efdb3
Use skin rules in plugins ( #1828 )
2019-07-02 22:17:53 +02:00
Christophe Maudoux
9c62a04f22
Improve code ( #1783 )
2019-07-02 22:08:17 +02:00
Christophe Maudoux
12e0853b51
Improve log ( #1783 )
2019-07-02 21:33:32 +02:00
Xavier Guimard
c1137edba8
make tidy with perltidy-20181120
2019-07-02 20:03:40 +02:00
Clément OUDOT
26c107cddb
Add unit test ( #1835 )
2019-07-02 17:47:27 +02:00
Clément OUDOT
7c7dad9ab6
Enforce ID token signature verification in unit test ( #1835 )
2019-07-02 17:27:17 +02:00
Clément OUDOT
e04a6f1983
Reject none algorithm when checking JWT signature ( #1835 )
2019-07-02 16:36:43 +02:00
Xavier Guimard
f370255c3a
Fix Perl dependencies (see RT#129960)
2019-07-02 08:56:12 +02:00
Clément OUDOT
60c03010ce
Use Base64URL for JWT generation ( #1834 )
2019-07-01 17:29:35 +02:00
Xavier Guimard
360db2b5d5
Update manifest
2019-07-01 16:15:25 +02:00
Christophe Maudoux
b94cbe0144
Fix default value ( #1825 )
2019-07-01 13:28:01 +02:00
Christophe Maudoux
69d2a2db0c
Fix default value ( #1825 )
2019-07-01 12:56:10 +02:00
Christophe Maudoux
a1f5791e06
Merge branch '1783' into v2.0
2019-06-30 19:00:41 +02:00
Christophe Maudoux
bcbea7bee0
Update version ( #1825 )
2019-06-29 21:48:52 +02:00
Christophe Maudoux
eda8151432
Don t mix && with and ( #1825 )
2019-06-29 21:35:13 +02:00
Christophe Maudoux
5054f5ac95
Append unit test ( #1825 )
2019-06-29 21:13:08 +02:00
Christophe Maudoux
11d2909b0a
WIP - Disable persistent sessions storage ( #1825 )
2019-06-29 21:10:16 +02:00
Christophe Maudoux
acd6e5513c
Improve unit test ( #1783 )
2019-06-29 00:16:37 +02:00
Christophe Maudoux
d97c36a97e
Disable spoofed sessions ( #1783 )
2019-06-28 23:53:43 +02:00
Christophe Maudoux
897d04ac93
Merge branch 'v2.0' into 1783
2019-06-28 22:05:48 +02:00
Xavier Guimard
43d5139040
Update versions
2019-06-28 17:04:14 +02:00
Xavier Guimard
f59caf3ea1
Merge branch 'ssl-button-race-fix' into 'v2.0'
...
Avoid race when clicking the login button in SSL form (#1826 )
See merge request lemonldap-ng/lemonldap-ng!82
2019-06-28 16:56:46 +02:00
Clément OUDOT
b0a69d3473
Use skin rules in 2F plugins ( #1828 )
2019-06-28 15:56:57 +02:00
Xavier
c921c295ed
Use user skin in loadTemplate ( Fixes : #1828 )
2019-06-28 13:40:56 +02:00
Christophe Maudoux
87329a26a1
Make manifest
2019-06-28 11:22:23 +02:00
Xavier Guimard
44a6e25851
Improve cryptographic functions ( #1823 )
2019-06-28 10:30:37 +02:00
Christophe Maudoux
6519695797
Tidy ( #1783 )
2019-06-27 22:02:11 +02:00
Christophe Maudoux
bb39dca317
Append & update unit tests ( #1783 )
2019-06-27 21:54:14 +02:00
Christophe Maudoux
6510f854c8
Append unit test ( #1783 )
2019-06-27 21:13:10 +02:00
Christophe Maudoux
8ad895c3b8
Merge branch 'v2.0' into 1783
2019-06-27 21:11:56 +02:00
Maxime Besson
a7c7c51bba
Avoid race when clicking the login button in SSL form ( #1826 )
2019-06-27 17:05:29 +02:00
Xavier Guimard
264410409d
Move CAS service verification from main to Issuer::CAS ( #1795 )
2019-06-27 16:55:12 +02:00
Maxime Besson
e1f927a195
Check service= parameter on CAS logout ( #1795 )
...
service= redirect URL is not checked when logging out from CAS, to avoid
insecure redirect attacks. The verification is only made if CAS access
control is enabled.
In order for this to work in common cases (applications redirects to an
unprotected page after logout), we add CAS App domains to the list of
globally trusted domains.
If your application wants to redirect to a third-party domain, it needs
to be added to LLNG's trustedDomains
2019-06-27 12:40:40 +02:00
Maxime Besson
5f9c4c231d
Add authenticated routes to 2FA for session upgrade ( #1822 )
2019-06-26 23:33:00 +02:00
Maxime Besson
98650cd9f0
Add unit test for #1821
2019-06-26 22:13:12 +02:00
Xavier
3582cfb12b
Don't keep pdata on upgrade ( Fixes : #1821 )
2019-06-26 21:47:01 +02:00
Xavier Guimard
a42c5f9f71
Clean tests ( #1819 )
2019-06-26 13:17:26 +02:00
Xavier Guimard
e15a41bc66
Fix typo: s/templatesDir/templateDir/g ( #1819 )
2019-06-26 11:59:13 +02:00
Xavier Guimard
45a0b68c3b
Disable external entities in XML parsers ( Fixes : #1818 )
2019-06-26 11:32:10 +02:00
Christophe Maudoux
f11c34e9cd
Cleaning code ( #1783 & #1658 )
2019-06-25 23:04:27 +02:00
Christophe Maudoux
f5587ac477
Improve code ( #1783 )
2019-06-25 22:01:20 +02:00
Christophe Maudoux
73cd751bfd
Update manifest & copying ( #1783 )
2019-06-25 20:52:40 +02:00
Christophe Maudoux
0b567d6c15
Merge branch 'v2.0' into 1783
2019-06-25 20:23:48 +02:00
Christophe Maudoux
b9af5d1adc
Use Id
2019-06-25 19:30:06 +02:00
Christophe Maudoux
7a97bc46c4
Improve code ( #1783 )
2019-06-25 19:28:05 +02:00
Christophe Maudoux
13ed1589e4
Update lang
2019-06-25 19:03:04 +02:00
Xavier Guimard
e91f6df254
Fix test count ( #1813 )
2019-06-25 10:00:46 +02:00
Xavier Guimard
390ccb4f5b
Fix Apache::Session::REST::get_key_from_all_sessions when using CODE ( #1813 )
2019-06-25 09:48:15 +02:00
Xavier Guimard
93ccb9fd76
Set Content-Length in Apache::Session::REST requests ( #1813 )
2019-06-25 09:37:37 +02:00
Xavier Guimard
ddde26fa1c
Add searchOn() in Apache::Session::REST ( #1813 )
2019-06-25 09:18:58 +02:00
Christophe Maudoux
32cb9e3a8f
Delete session ( #1783 )
2019-06-24 23:52:39 +02:00
Christophe Maudoux
266f2fdf02
Merge branch 'v2.0' into 1783
2019-06-24 23:36:54 +02:00
Christophe Maudoux
786e136754
Create session with ContextSwitching plugin ( #1783 )
2019-06-24 23:36:23 +02:00
Christophe Maudoux
28fd7ea0b8
Change log level ( #1664 )
2019-06-24 23:35:33 +02:00
Xavier
c5d6bc42b6
Add get_key_from_all_sessions in Apache::Session::REST ( #1813 )
2019-06-24 23:07:34 +02:00
Xavier
9df3d57bc9
In REST, PE_LOGOUT_OK must return 200
2019-06-24 23:06:15 +02:00
Xavier Guimard
1c17c6b077
Update portal JS
2019-06-24 11:38:00 +02:00
Christophe Maudoux
5efa6c111a
Append log ( #1783 )
2019-06-23 22:56:05 +02:00
Christophe Maudoux
8d2367c6d7
Typo
2019-06-23 22:55:46 +02:00
Christophe Maudoux
e5f03f34d9
Append ContextSwitching plugin ( #1783 )
2019-06-23 22:19:40 +02:00
Christophe Maudoux
c24ff711a0
WIP - ContextSwitching ( #1783 )
2019-06-23 10:51:10 +02:00
Christophe Maudoux
6e029c413f
Merge branch 'v2.0' into 1783
2019-06-23 10:19:13 +02:00
Christophe Maudoux
bdc5007e43
Update sort condition ( #1658 )
2019-06-23 10:18:05 +02:00
Christophe Maudoux
dd94351f35
WIP - ContextSwitching ( #1783 )
2019-06-22 23:46:02 +02:00
Christophe Maudoux
8c47c913fe
WIP - ContextSwitching ( #1783 )
2019-06-21 16:24:50 +02:00
Christophe Maudoux
b69ffc0ff8
WIP - ContextSwitching ( #1783 )
2019-06-21 15:23:06 +02:00
Xavier
750eaafe65
Fix test rule to hide some warnings
2019-06-20 21:48:13 +02:00
Xavier
38bb0cedf6
Typo
2019-06-20 21:27:49 +02:00
Xavier
8bd2a6c244
Prove that sessionInfo() is launched by each UserDB in combination ( #1809 )
2019-06-20 21:17:29 +02:00
Christophe Maudoux
a2ebaf31b1
WIP - AdminImpersonation skeleton ( #1783 )
2019-06-19 18:13:17 +02:00
Xavier
2d5b38fb95
Fix LDAP schema path for Debian. This permits to enable LDAP tests during build
2019-06-19 09:22:44 +02:00
Xavier
05f2dc6993
Fix t/28-AuthChoice-and-password.t
2019-06-19 09:14:03 +02:00
Christophe Maudoux
c4d4b482a5
Provide to plugins message display functions ( #1796 )
2019-06-18 22:00:03 +02:00
Christophe Maudoux
86b305d19b
Typo ( #1664 )
2019-06-18 21:57:40 +02:00
Christophe Maudoux
9fa11709e6
Append options to use Notifications plugin & set notification reference ( #1796 )
2019-06-17 22:31:44 +02:00
Xavier
8b488e4d51
Move LDAP::getUser() to Lib::LDAP ( Fixes : #1805 )
2019-06-17 21:15:38 +02:00
Christophe Maudoux
e0b593152f
Merge branch 'bootstrap' into 'v2.0'
...
Improve displaying checkuser template and rewrite tests #1806
See merge request lemonldap-ng/lemonldap-ng!79
2019-06-17 21:00:41 +02:00
Xavier
aff7527580
Fix bad call in LDAP ( #1805 )
2019-06-17 19:21:48 +02:00
Antoine ROSIER
dab5a9c3df
Improve displaying checkuser template and rewrite tests #1806
2019-06-17 14:56:31 +02:00
Christophe Maudoux
862116245d
Fix unit tests ( #1796 )
2019-06-16 23:01:13 +02:00
Christophe Maudoux
1b4d1b5bdf
Avoid notification reference to be truncated ( #1796 )
2019-06-16 20:57:53 +02:00
Christophe Maudoux
c3b3c281ad
Hide _2fDevices with REST services
2019-06-16 20:33:34 +02:00
Christophe Maudoux
d6f3dd459a
Display message ( #1796 )
2019-06-16 16:02:48 +02:00
Xavier
8cc2beb976
Fix #1799 test
2019-06-15 08:42:21 +02:00
Xavier
e30cf69053
Add #1799 test
2019-06-15 08:29:36 +02:00
Christophe Maudoux
5218944bf2
Improve unit tests ( #1796 )
2019-06-14 23:11:10 +02:00
Christophe Maudoux
ecf84e8a4d
WIP ( #1796 )
2019-06-14 23:09:32 +02:00
Christophe Maudoux
fde6ff2cc8
WIP ( #1796 )
2019-06-14 23:09:32 +02:00
Xavier Guimard
5fbff01b27
Update versions
2019-06-14 17:27:54 +02:00
Xavier Guimard
65eaefa75f
Tidy
2019-06-14 17:23:26 +02:00
Clément OUDOT
4e5c450b8b
Return error if no code provided on token endpoint ( #1802 )
2019-06-14 16:05:39 +02:00
Xavier Guimard
e7bc7b3f4e
Add restExportSecretKeys option ( #1799 )
2019-06-14 08:51:58 +02:00
Xavier
5dc5b88daa
Permit to show $_password in REST session server ( #1799 )
2019-06-14 07:09:55 +02:00
Xavier
4ad0da0315
Fix syntax error ( #1794 )
2019-06-14 06:33:27 +02:00
Christophe Maudoux
73f689eca4
Fix 2F types ( #1782 )
2019-06-13 23:28:57 +02:00
Christophe Maudoux
c8295b60b5
Fix 2F types ( #1782 )
2019-06-13 23:27:30 +02:00
Xavier
c7ef665bf9
Fix #1782
2019-06-13 22:23:20 +02:00
Xavier
bb0784b843
Typo
2019-06-13 22:15:46 +02:00
Xavier
8d642da8cb
Improve #1782
2019-06-13 22:10:30 +02:00