dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
4,571 Commits 3 Branches 0 Tags 75 MiB
d32d9646f8
Commit Graph

493 Commits

Author SHA1 Message Date
Xavier Guimard
ef48301771 Spelling errors 2016-03-05 08:42:06 +00:00
Xavier Guimard
7ac07074ae Update versions 2016-03-03 20:25:16 +00:00
Xavier Guimard
9d779015c0 Set pivotal variables (needed for status) 2016-03-01 14:26:37 +00:00
Clément Oudot
fff8ba5baa Block redirection when error must be displayed (#958) 2016-03-01 10:40:45 +00:00
Xavier Guimard
8134295c05 Clean strange hook (probably added for experimental Perl Nginx (#583) 2016-02-29 21:10:47 +00:00
Xavier Guimard
8c1bd8efeb Avoid using each(): it tries to delete key 2016-02-13 10:06:48 +00:00
Xavier Guimard
584de6373b Update portal to use modified status (#897) 2016-02-12 17:08:09 +00:00
Clément Oudot
59a262aa00 Force decoding of LDAP Manager password (#827) 2016-02-10 15:38:40 +00:00
Clément Oudot
e19bb1e192 Do not import encode_base64url and decode_base64url from MIME::Base64 (#932) 2016-02-09 11:13:25 +00:00
Xavier Guimard
9097135ecd Spelling errors 2016-02-06 18:41:21 +00:00
Clément Oudot
1843fe7434 Create stop method for AD backend (#914) 2016-02-02 14:57:49 +00:00
Clément Oudot
cd56a89b9e Create a stop method to know if the Multi process should stop (#914) 2016-02-02 13:58:54 +00:00
Clément Oudot
333403dfd0 Possibility to override Portal standard messages (#915) 2016-02-02 11:24:44 +00:00
Clément Oudot
607641dcfd Possibility to use certificate in SAML response (#836) 2016-02-01 16:42:15 +00:00
Clément Oudot
7d7e5a6717 Decode internal perl encoding for SAML attribute (#864) 2016-01-29 17:21:23 +00:00
Xavier Guimard
b6f7b2a96a Move Ajax hook from handler to portal (Closes: #790) 2016-01-28 22:25:46 +00:00
Clément Oudot
ce188e628e Manage logo customization in Choice (#911) 2016-01-22 13:09:05 +00:00
Xavier Guimard
5bef7284b3 Update copyright years 2016-01-21 21:15:19 +00:00
Clément Oudot
fd11f7f814 Import forgotten sha functions (#184) 2016-01-21 13:10:08 +00:00
Clément Oudot
6165ac1e59 Add _utime in persistent session (#495) 2016-01-20 09:33:27 +00:00
Clément Oudot
412420267d Remove back to SP link (#891) 2016-01-14 15:55:34 +00:00
Xavier Guimard
d2fcb5083a Back from JSON::MaybeXS to JSON (#877) 2016-01-13 19:47:56 +00:00
Xavier Guimard
6eaea5081a Avoid double utf8 management (#827) 2016-01-11 20:32:44 +00:00
Clément Oudot
c90e91b9d5 Set main identifier in persistent session (#495) 2016-01-07 13:46:15 +00:00
Xavier Guimard
c0e5e0010e utf8 anywhere in conf 2016-01-07 12:34:34 +00:00
Xavier Guimard
eb6bfa7107 Insert 'remoteCookieName' as known exception 2016-01-06 06:02:51 +00:00
Clément Oudot
196c59c027 Update session activity when receiving IssuerDB request (#870) 2016-01-05 16:44:59 +00:00
Xavier Guimard
103e3da144 make tidy 2016-01-02 09:35:40 +00:00
Xavier Guimard
e8dac0fe6b Replace 'splice' by copy (Closes: #534) 2016-01-02 09:29:05 +00:00
Xavier Guimard
0b52c97cfe Use JSON::MaybeXS instead of JSON 
JSON::Any used before as been deprecated
 2015-12-28 16:35:32 +00:00
Xavier Guimard
ae675692c4 +Attribute to change LDAP alias dereference (Closes: #787) 2015-12-28 11:58:53 +00:00
Xavier Guimard
10323d6b76 Check conditions in AuthSlave and UserDBSlave 
Closes: #865
 2015-12-27 12:29:32 +00:00
Xavier Guimard
8f78863dcf Change OIDC(JSON|JWKS) key storage 
Due to old manager behavior, they were stored as key->partner->key. Now
it's simply key->partner
 2015-12-20 07:04:38 +00:00
Xavier Guimard
355b298a3a Better regexp 2015-12-19 06:56:59 +00:00
Clément Oudot
c257baddd9 Fix session management (bug introduced in r4024) 2015-12-18 18:01:15 +00:00
Clément Oudot
4a1f957fdd Set trunk version to 1.9.0 2015-12-18 09:31:36 +00:00
Xavier Guimard
2df6075dfa Persistent sessions explorer in progress 2015-12-18 06:17:30 +00:00
Xavier Guimard
6daa0bc77b Strange bug 
It happends when serveur is restarted and the first call to portal uses
"?logout=1" with a valid session
 2015-12-16 20:44:27 +00:00
Xavier Guimard
3372341fec Start authChoice management 2015-12-12 13:18:48 +00:00
Xavier Guimard
5a3fc1bfed Adapt "multi" system to the new manager 
IMPORTANT: auth and userDB stacks are now in distinct keys
 2015-12-10 20:05:29 +00:00
Clément Oudot
8c109061a9 Return error if no OpenID Provider configured (#183) 2015-10-22 13:40:11 +00:00
Clément Oudot
a6821a7fca Fix trailing slash in post logout URL (#183) 2015-10-22 09:24:18 +00:00
Clément Oudot
df59540d22 make tidy 2015-10-22 08:40:12 +00:00
David COUTADEUR
7fd8390c85 correcting typo for #822 feature (checking pwdLastSet in AD is not sufficient) 2015-10-08 12:49:32 +00:00
Clément Oudot
d1540c280f Move AD specific code in AuthAD and check userAccountControl before displaying expiration warning (#822) 2015-10-06 09:39:23 +00:00
Clément Oudot
ad0c56cb84 Manage password expiration for AD authentication backend (#822) 2015-10-05 14:07:24 +00:00
Clément Oudot
b05fab6eac Dump variables stored in session in debug mode (#792) 2015-09-25 15:29:57 +00:00
Clément Oudot
b8d8b01ea4 Create hGroups to store groups as an HashRef: 
* Allows to store multivaluated attributes of groups (#792)
* Remove duplicate groups when using recursive groups (#823)
 2015-09-25 09:43:04 +00:00
Clément Oudot
f8d9274a2c Store multi full module name in another session variable (#715) 2015-09-24 06:58:21 +00:00
Clément Oudot
62a8fb17ac Fix SOAP data formatting (#850) 2015-09-23 09:02:47 +00:00
Clément Oudot
99953c14eb Add _lastSeen to default exported attributes with SOAP (#845) 2015-09-23 08:31:46 +00:00
Xavier Guimard
9298c07510 Typo 2015-09-22 05:38:23 +00:00
Clément Oudot
fa95ab2ee7 Possibility to define extra claims (#184) 2015-06-19 09:06:13 +00:00
Clément Oudot
c5a6d3f31c Force Base64 URL for JWT signature (#184) 2015-06-18 12:47:35 +00:00
Xavier Guimard
87fd52a0ab Update copyrights 2015-06-18 11:00:24 +00:00
Clément Oudot
13dc6d5755 Fix 'exp' field in ID Token (#184) 2015-06-18 10:20:15 +00:00
Clément Oudot
96207ab19d Support URL for application logo (#183) 2015-06-16 15:43:07 +00:00
Clément Oudot
15cfb0ed43 Support URL for application logo (#184) 2015-06-16 15:34:11 +00:00
Clément Oudot
ef43679ce1 Manage session not found in portal (#825) 2015-06-12 10:56:38 +00:00
Clément Oudot
12890c4512 Fix oidcStorageOptions initialization (#184) 2015-06-12 07:51:37 +00:00
Clément Oudot
e3af829e5a Remove portalAutocomplete configuration (#824) 2015-06-11 12:59:20 +00:00
Clément Oudot
b81aea14b4 Define an ID for public key (#184) 2015-06-05 12:55:06 +00:00
Clément Oudot
fe77ab4dbb CHeck session iframe with CORS for session management (#184) 2015-06-01 18:22:36 +00:00
Clément Oudot
05ecd34598 Parameter to define allowed flows (#184) 2015-05-29 16:49:32 +00:00
Clément Oudot
121e578b7e Parameter to allow dynamic client registration (#184) 2015-05-29 10:07:54 +00:00
Clément Oudot
b66a90e197 Register dynamic client in configuration (#184) 2015-05-29 08:50:51 +00:00
Clément Oudot
ab0b6e7190 Display correct skin in register page (#818) 2015-05-11 14:06:20 +00:00
Clément Oudot
f82a7319be Display correct skin in mail reset page (#818) 2015-05-11 13:50:55 +00:00
Clément Oudot
fe2ad66a29 Add attributes in CAS serviceValidate response (#773) 2015-05-09 17:49:56 +00:00
Clément Oudot
ad2c67c2ba Support Request URI (#184) 2015-04-30 06:09:51 +00:00
Clément Oudot
159f71fd25 Verify Request JWT signature (#184) 2015-04-25 15:19:12 +00:00
Clément Oudot
94f1065e5d Accept 'request' parameter in authorization requests (#184) 2015-04-22 17:16:32 +00:00
Clément Oudot
0b3f9a78ff Parse UserInfo response as JWT (#183) 2015-04-18 08:36:42 +00:00
Clément Oudot
1c0df34268 Replace version 2.00 by 2.0.0 2015-04-15 14:18:38 +00:00
Clément Oudot
9520bef489 Manager UserInfo signature (JWT response) (#184) 2015-04-14 18:42:02 +00:00
Clément Oudot
572636ead1 Use Base64 URL to decode JWT (#184) 2015-04-11 11:15:01 +00:00
Clément Oudot
a63918d28f Return session state for session management (#184) 2015-04-07 09:04:17 +00:00
Clément Oudot
ac5f76f898 Option to deactivate nonce (#183) 2015-04-03 13:45:38 +00:00
Clément Oudot
a17159f105 Don't send max_age if value is 0 (#183) 2015-04-03 13:23:52 +00:00
Clément Oudot
3ad495f824 Call endsession point in authLogout (#183) 2015-04-03 13:00:30 +00:00
Clément Oudot
328a280601 Work on implementation of OIDC logout (#184) 2015-04-03 09:05:36 +00:00
Clément Oudot
841f057c25 Work on implementation of OIDC logout (#184) 2015-04-02 16:54:00 +00:00
Clément Oudot
85650ae3be Start implementation of OIDC logout (#184) 2015-04-02 07:02:21 +00:00
Clément Oudot
72aecd6cf1 Configuration of Authentication Class Ref (#184) 2015-04-01 15:45:08 +00:00
Clément Oudot
b9494d1b0a Check iat (#183) 2015-04-01 15:10:08 +00:00
Clément Oudot
0fa5cf2614 Use max_age, ui_locales and acr_values (#183) 2015-04-01 14:51:49 +00:00
Clément Oudot
01aec28467 Use prompt (#183) 2015-04-01 13:00:31 +00:00
Clément Oudot
865551989b Use display (#183) 2015-04-01 12:53:18 +00:00
Clément Oudot
9936ade26b Use nonce (#183) 2015-03-31 16:07:50 +00:00
Clément Oudot
2e0f1b7088 Start of registration endpoint implementation (#184) 2015-03-30 15:57:23 +00:00
Clément Oudot
b14ec43a88 Check redirect_uri (#184) 2015-03-30 12:58:56 +00:00
Clément Oudot
da31a15cb9 Add support for RS256/RS384/RS512 to sign ID Tokens (#184) 2015-03-27 15:13:00 +00:00
Clément Oudot
895d7f3ef1 Display pretty JSON (#184) 2015-03-27 14:33:13 +00:00
Clément Oudot
d22853d775 Support for JWKS URI and signing public key (#184) 2015-03-27 14:21:43 +00:00
Clément Oudot
f8e37c0c8b Use SAML message creation time to set netBefore and notOnOrAfter (#799) 2015-03-27 08:29:12 +00:00
Clément Oudot
6c5487ab0e Check prompt parameter when displaying consent (#184) 2015-03-27 08:25:36 +00:00
Clément Oudot
9f06668eef Check id_token_hint request parameter for authenticated user (#184) 2015-03-25 16:13:09 +00:00
Clément Oudot
46e3b460c1 Check max_age request parameter for authenticated user (#184) 2015-03-25 16:11:45 +00:00
Clément Oudot
e1794d1be7 Check prompt request parameter for authenticated user (#184) 2015-03-25 14:55:46 +00:00
Clément Oudot
80480e302c Prompt parameter is a space delimited value (#184) 2015-03-25 13:48:36 +00:00