dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
11,598 Commits 3 Branches 0 Tags 75 MiB
cc08c992c4
Commit Graph

4651 Commits

Author SHA1 Message Date
Christophe Maudoux
152855bb84 Improve unit test (#2564) 2021-07-27 20:25:18 +02:00
Christophe Maudoux
13a62b4dde Append unit test (#2564) 2021-07-27 20:12:35 +02:00
Christophe Maudoux
e3674d7d1a Typos 2021-07-27 10:40:28 +02:00
Christophe Maudoux
984df5c0c8 Allow to configure mail body for account registration 2021-07-26 23:06:47 +02:00
Christophe Maudoux
a6ecbf1ec8 Fix version & comment 2021-07-26 22:55:27 +02:00
Maxime Besson
0aa78fead7 Unit tests for CORS on OIDC endpoints (#2567) 2021-07-26 15:44:20 +02:00
Maxime Besson
0d513ce5b7 Fix CORS on userinfo error response (#2567) 2021-07-26 15:44:20 +02:00
Clément OUDOT
a7809f10fe Update version in main modules 2021-07-22 17:53:50 +02:00
Clément OUDOT
b3aa5462e1 Do not use dashes in 'mot de passe' 2021-07-22 14:34:32 +02:00
Clément OUDOT
6a6a41b007 Use regexp to replace values in email only for text body (#2495) 2021-07-18 17:20:39 +02:00
David Coutadeur
53b459c136 fix RGAA : accessing logout menu with tab (#2561) 2021-07-16 17:27:11 +02:00
Yadd
fe6ad903f1 Update manifests 2021-07-12 19:00:03 +02:00
David Coutadeur
c6033a35dc test logout forward url pointing to a protected application (#2153) 2021-07-12 18:16:10 +02:00
Maxime Besson
71e4115875 Make sure empty referers are valid during logout 2021-07-09 15:02:46 +02:00
Yadd
e4bf28906f Update tr translation from Transifex 2021-07-09 13:48:57 +02:00
Maxime Besson
2816586afe Fix regression from 3732cdcc (#2477) 2021-07-09 11:49:29 +02:00
Yadd
959a4349a2 Merge branch '2328-propagate-logout-through-chaining' into 'v2.0' 
test chained SAML login with 2 IDP + logout in SOAP (#2328)

See merge request lemonldap-ng/lemonldap-ng!203
 2021-07-09 09:44:08 +00:00
David Coutadeur
70af572c4a test chained SAML login with 2 IDP + logout in SOAP (#2328) 2021-07-09 10:23:17 +02:00
Christophe Maudoux
a85e47ecca Allow to display password with dontStorePassword option & Update unit test (#2454) 2021-07-08 23:55:03 +02:00
Clément OUDOT
82dc1de87f Unit test for portalEnablePasswordDisplay (#2454) 2021-07-07 19:43:56 +02:00
David Coutadeur
5b59eeb2e5 remove useless test on saml signature for test logout through OIDC and SAML chaining (#2328) 2021-07-05 17:43:07 +02:00
David Coutadeur
98b05eb885 test logout through OIDC and SAML chaining (#2328) 2021-07-05 17:09:35 +02:00
Christophe Maudoux
1d2db0594f Tidy 2021-07-04 22:13:32 +02:00
Christophe Maudoux
466b6a3241 Avoid to store passwords (#2557) 2021-07-04 22:07:21 +02:00
Christophe Maudoux
c084cc28d9 Improve code (#2521) 2021-07-04 15:27:12 +02:00
Christophe Maudoux
547d809852 Display placeholder (#2521) 2021-07-04 14:38:31 +02:00
Christophe Maudoux
0634fcaf98 Typos & tidy 2021-07-01 22:50:32 +02:00
Marek Wójtowicz
80a364839a Fix yubikey from session. 2021-07-01 11:36:44 +00:00
Marek Wójtowicz
48f934045e Support for multiple yubikeys. 2021-06-30 20:33:50 +00:00
Yadd
4a61606ee8 typo 2021-06-29 16:55:29 +02:00
Yadd
b0e7ba5d8a Fix URIRE 2021-06-29 16:50:39 +02:00
Yadd
83b45db614 Fix versions 2021-06-28 15:36:29 +02:00
Maxime Besson
6a70596ec0 Unit tests for #2544 2021-06-28 13:57:22 +02:00
Maxime Besson
7de1793386 Let users specify a longer timeout for totp reg (#2544) 2021-06-28 11:36:44 +02:00
Yadd
8b5638640c Fix translations 2021-06-26 23:00:22 +02:00
Yadd
f5b78e7e6a Restore lost translation 2021-06-26 22:49:21 +02:00
Christophe Maudoux
7f91820224 Display removed SF name (#1782) 2021-06-26 22:38:42 +02:00
Christophe Maudoux
71ed63a999 Fix unit tests (#2539) 2021-06-26 22:38:41 +02:00
Yadd
3d35c6454f Update manifests 2021-06-26 20:28:03 +02:00
Maxime Besson
316c734bbc Merge branch 'fix-totp-options-2541' into v2.0 2021-06-25 13:55:53 +02:00
Clément OUDOT
262210398d Remove OIDC check session iframe from metadata (#2554) 2021-06-25 12:49:51 +02:00
Maxime Besson
d287efb343 Unit test for #2535 2021-06-25 11:43:53 +02:00
Yadd
3b8222ae8a Fix trusted domains regex (#2535) 2021-06-25 08:59:52 +02:00
Maxime Besson
15054b9038 Extra precaution for #2539 2021-06-25 07:54:03 +02:00
Maxime Besson
cf70ebe293 Stop triggering XSS protection on escaped commas 
Commas are safe in HTML and JS, so there is no risk of XSS
 2021-06-24 20:16:20 +02:00
Maxime Besson
1d80c262ab Make unit test for #2539 less noisy 2021-06-24 19:05:11 +02:00
Maxime Besson
70bd06bc32 Fix unit test for #2534 2021-06-24 19:02:34 +02:00
Maxime Besson
4a2a786598 Fix CDA wildcard regexp (#2534) 2021-06-24 19:02:17 +02:00
Maxime Besson
3d1cc3f499 Unit test for #2534 2021-06-24 16:59:20 +02:00
Maxime Besson
dbd65d1b2b Handle wildcards in CDA check (#2534) 2021-06-24 16:59:20 +02:00
Christophe Maudoux
71fa5d09f7 Be more strict with URL (#2477) 2021-06-24 14:33:27 +02:00
Yadd
3732cdcc19 Better URL parsing (#2477) 2021-06-24 14:33:27 +02:00
Yadd
8a18543f55 Remove TODO loop 2021-06-24 14:04:31 +02:00
Maxime Besson
9a2dc48b56 Unit test for #2550 2021-06-21 09:38:03 +02:00
Maxime Besson
8db02a693f Only release IDtoken when scope contains openid (#2550) 2021-06-21 09:38:03 +02:00
Maxime Besson
ee51e010dc Unit test for #2548 2021-06-21 09:38:03 +02:00
Maxime Besson
e1b7f61d13 Update ID token unit tests 2021-06-21 09:38:03 +02:00
Maxime Besson
beaacca9a0 Refactor _handleRefreshTokenGrant to use _generateIDToken (#2550) 2021-06-21 09:38:03 +02:00
Maxime Besson
c931b30263 Refactor _generateIDToken (#2550) 2021-06-21 09:38:03 +02:00
Yadd
b6a1f946b2 Fix handler cache corruption (#2539) 2021-06-19 18:43:41 +02:00
Maxime Besson
2de2cbf454 Fix 2F unit test (#2539) 2021-06-19 18:25:07 +02:00
Clément OUDOT
bdeb1e70d9 Allow to display password value in login form (#2454) 2021-06-16 20:50:11 +02:00
Maxime Besson
b35bd70646 totp: add more instructions 2021-06-16 09:48:28 +02:00
Maxime Besson
3c37565eb9 Improve TOTP error reporting (#2541) 2021-06-15 18:07:03 +02:00
Maxime Besson
699943365b Improve messages on TOTP registration (#2541) 2021-06-15 15:56:18 +02:00
Maxime Besson
95fe0512c0 Display TOTP key in a readable form (#2541) 2021-06-15 15:48:10 +02:00
Maxime Besson
3ff680aceb Update templates for #2541 2021-06-15 14:54:33 +02:00
Maxime Besson
89b6215d9d Update translations for #2541 2021-06-15 14:54:33 +02:00
Maxime Besson
14548b9a1f Remove "new totp" from portal js 2021-06-15 14:54:33 +02:00
Maxime Besson
50ef67b678 Fix error display in 2F registration screens 2021-06-15 14:54:32 +02:00
Maxime Besson
7b0990addd Remove totp options from code (#2541) 2021-06-15 14:54:32 +02:00
Maxime Besson
dae4293ecf Unit test for #2518 2021-06-15 14:26:23 +02:00
Maxime Besson
77f5577dc4 Improve SAML test lib 2021-06-15 12:40:15 +02:00
Maxime Besson
cf59bb915e refactor expectAuthenticatedAs 2021-06-15 12:40:15 +02:00
Maxime Besson
6f5cd3b645 Fix some undef warnings 2021-06-15 12:40:15 +02:00
Maxime Besson
75b81fcb5a Fix NameID value when unspecified is requested by SP (#2518) 2021-06-15 11:27:37 +02:00
Maxime Besson
63cd5ffb40 Revert 652d8ba9bc 
See #2482
 2021-06-11 08:53:26 +02:00
Christophe Maudoux
469d2a40aa Fix warning (#2538) 2021-06-09 23:06:03 +02:00
Christophe Maudoux
86f46ebc5b Fix some warnings (#2538) 2021-06-08 23:03:54 +02:00
Yadd
5fc0b6f002 Update tr translation from transifex 2021-06-07 18:34:06 +02:00
Maxime Besson
87295178e0 optimize SingleSession to avoid unneeded session fetches (#2536) 2021-06-04 16:17:18 +02:00
Maxime Besson
275567436e Unit test for #2496 2021-06-03 18:31:38 +02:00
Maxime Besson
b8e8bbcedd Ignore unknown scopes (#2496) 2021-06-03 18:24:55 +02:00
Maxime Besson
50225ce438 Add option to only allow declared oidc scopes (#2496) 2021-06-03 17:40:49 +02:00
Maxime Besson
55cdfefd7b Workaround for #2472 2021-06-02 15:36:05 +02:00
Maxime Besson
2414fb4751 Unit tests for (#2510) 2021-06-02 11:08:07 +02:00
Maxime Besson
3b76479bda Add expectPdata function to test lib 2021-06-02 11:07:53 +02:00
Maxime Besson
fad337c58c Add hooks on password change (#2510) 2021-06-02 11:07:28 +02:00
Maxime Besson
d4aed0b332 Tidy test lib 2021-06-02 11:07:28 +02:00
Maxime Besson
91cfba275a Skip registration of SAML SP when config has errors (#2525) 2021-06-02 08:34:02 +02:00
Maxime Besson
71a8fc6d16 Skip registration of CAS App when config has errors (#2525) 2021-06-02 08:34:02 +02:00
Maxime Besson
e50db3f083 Skip registration of OIDC RP when config has errors (#2525) 2021-06-02 08:34:01 +02:00
Maxime Besson
6ef522c193 Unit tests for #2533 2021-06-01 11:28:34 +02:00
Maxime Besson
cf3809a0de Add CAS hooks (#2533) 2021-06-01 11:27:45 +02:00
Maxime Besson
ec2b904f4f Unit test for #2532 2021-05-31 11:23:38 +02:00
Maxime Besson
e98aafd6f7 add oidcGenerateCode hook (#2532) 2021-05-31 11:16:28 +02:00
Maxime Besson
8992b3e789 Unit test for #2529 2021-05-31 09:52:26 +02:00
Maxime Besson
15298466ea Fix JWT userinfo in Auth::OpenIDConnect (#2529) 2021-05-31 09:52:02 +02:00
Yadd
0f11d7c06e Finish BrowserID/Persona removal 2021-05-22 16:16:38 +02:00
Christophe Maudoux
66f428b474 Improve notifications display (Thx @antoinerosier) 2021-05-20 19:22:18 +02:00
Christophe Maudoux
7860e18034 Append unit test (#1976) 2021-05-08 21:38:13 +02:00
Christophe Maudoux
a3c48af972 Append unit test (#1976) 2021-05-07 08:15:32 +02:00
Christophe Maudoux
cf55716825 Allow findUser with UpgradeSession (#1976) 2021-05-06 23:16:26 +02:00
Yadd
a24ed7bc41 Fix GrantSession rules sort 2021-05-04 15:50:38 +02:00
Christophe Maudoux
de3164fea7 Fix button top margin (#1976) 2021-05-01 22:35:56 +02:00
Yadd
d1d3cfa3f2 Update tr translation from transifex 2021-05-01 07:57:04 +02:00
Christophe Maudoux
fc481d40d2 Rename param (#1976) 2021-04-30 22:36:31 +02:00
Maxime Besson
2142b90caa Unit test for #2513 2021-04-23 09:02:24 +02:00
Maxime Besson
16557f3965 Refactor child-src unit tests (#2513) 2021-04-23 09:02:24 +02:00
Maxime Besson
cd97d3b922 Refactor $req->{cspFormAction} (#2513) 2021-04-23 09:02:24 +02:00
Maxime Besson
a876d978af Suggest improvement for next major version 2021-04-23 09:02:24 +02:00
Maxime Besson
913ebbd556 fix missing domain in child-src during SAML POST logout (#2513) 2021-04-23 09:02:24 +02:00
Maxime Besson
5ba0c11b58 Add helper to build CSP host list (#2513) 2021-04-23 09:02:24 +02:00
Christophe Maudoux
b54c95ccd2 Improve unit tests & Fix regex (#2509) 2021-04-21 22:14:47 +02:00
Maxime Besson
8695a633a7 Force type of JSON fields in token response (#2511) 2021-04-20 11:31:32 +02:00
Christophe Maudoux
21ced5dbad Fix speChars test, typos & display (#2509) 2021-04-14 13:28:12 +02:00
Maxime Besson
d4c1c3c7de Unit test for #2506 2021-04-09 17:52:24 +02:00
Maxime Besson
a94fb616bd Allow admin to disallow host-based match (#2506) 2021-04-09 17:51:54 +02:00
Maxime Besson
1253effa29 Unit test for #2502 2021-04-07 16:40:32 +02:00
Maxime Besson
c1e059eeb3 Use authChoiceAuthBasic to select Choice (#2502) 2021-04-07 16:40:32 +02:00
Yadd
e6a2706c85 Update languages from transifex 2021-04-07 14:36:25 +02:00
Yadd
f930e449ab Order language keys 2021-04-07 13:46:32 +02:00
Christophe Maudoux
64dffcf4d0 Send only technical and exported attributes (#2503) 2021-04-03 16:46:43 +02:00
Christophe Maudoux
9f77e89f96 Send exported attributes with REST session server & typos (#2503) 2021-04-02 23:57:30 +02:00
Christophe Maudoux
4751427105 Fix error level & Improve doc (#1976) 2021-04-01 23:31:48 +02:00
Christophe Maudoux
c0db322ef0 Perl critic 2021-04-01 23:07:58 +02:00
Christophe Maudoux
bcfb075f63 Be more consistent with REST params & Update doc (#1976) 2021-04-01 22:48:08 +02:00
Christophe Maudoux
6eda19c112 Fix test (#2501) 2021-04-01 19:02:46 +02:00
Christophe Maudoux
b67d11c58a Update manifest 2021-04-01 14:49:44 +02:00
Christophe Maudoux
654184dd66 Fix bad request (#2501) 2021-04-01 14:49:44 +02:00
Maxime Besson
297dc830af Update mail templates to no longer use string substitution (#2495) 2021-03-31 14:27:23 +02:00
Maxime Besson
d696853556 Factor MAIN_LOGO variable in loadMailTemplate (#2495) 2021-03-31 14:27:23 +02:00
Christophe Maudoux
89111859a0 Typos (#1976) 2021-03-30 23:54:06 +02:00
Maxime Besson
20e1f9ded0 Hash JWT to catch tampering (#2419) 
This mechanism's only purpose is to make the introsection endpoint fail
to verify the token when the JWT itself has been tampered with.
 2021-03-30 16:32:14 +02:00
Maxime Besson
2c8cbbefe6 "xxx is allowed to update 2FA" should be a debug message 2021-03-30 16:32:14 +02:00
Clément OUDOT
55ab4b5a5f Fix CAS log message on service ticket validation error (#2494) 2021-03-25 16:33:48 +01:00
Maxime Besson
02b680df30 fix #2489 2021-03-19 16:45:37 +01:00
Maxime Besson
96a667cf2e clarify REST log messages 2021-03-17 14:24:47 +01:00
Maxime Besson
9fda75edc5 Unit test for #2488 2021-03-17 14:24:47 +01:00
Maxime Besson
ca6c98c26c Allow selection of saml ACS during idp initiated (#2488) 2021-03-17 14:24:47 +01:00
Maxime Besson
c0f8e8f46b Skip serializing psgi streams when saving request 
It can interfere with unit tests in some cases, like #2000
 2021-03-15 21:18:08 +01:00
Maxime Besson
fc693184dc Unit test for #2484 2021-03-10 15:47:46 +01:00
Maxime Besson
44abc1e889 Add hook for client credentials (#2484) 2021-03-10 15:47:19 +01:00
Maxime Besson
6a3479ea3c unit tests: Try to find templateDir in path 
This change makes running the testsuite from an external directory
easier. Which is useful if you want to unit test a custom module
 2021-03-08 18:45:13 +01:00
Maxime Besson
0f626ad94c Add expiration time to Client Credential sessions (#2481) 2021-03-03 15:43:18 +01:00
Maxime Besson
a70051e3fe Remove deprecated base64url implementation 
All our target distros now have base64url in Mime::Base64
 2021-03-03 11:03:19 +01:00
Maxime Besson
e3ecddb8c9 Unit tests for #2424 2021-03-03 11:03:19 +01:00
Maxime Besson
bb95e681e6 Tidy 2021-03-03 11:03:19 +01:00
Maxime Besson
e10d1e291c Return granted scopes if different from requested scopes (#2424) 2021-03-03 11:03:19 +01:00
Maxime Besson
6b9670c29d Use computed scopes to fill claims in ID token (#2424) 2021-03-03 11:03:19 +01:00