Maxime Besson
f9cdb5497a
Only clean _url part of pdata when redirecting to issuer (#1878,#2124)
2020-09-04 17:17:04 +02:00
Maxime Besson
00da613dfc
Unit tests for #2124
2020-09-04 17:17:04 +02:00
Maxime Besson
b2bfa38d5a
Handle errors when no 2FA is available during upgrade ( #2124 )
2020-09-04 17:17:04 +02:00
Maxime Besson
eb191be72e
Add error message when no sf available during upgrade ( #2124 )
2020-09-04 17:17:02 +02:00
Maxime Besson
0c9e3d1da3
Fix unit tests for new renew session URL ( #2124 )
2020-09-04 17:16:11 +02:00
Maxime Besson
f69babadef
Differentiate renew and upgrade in Upgrade plugin ( #2124 )
2020-09-04 17:16:11 +02:00
Maxime Besson
1cf1990fe2
Add portal code for session upgrade
2020-09-04 17:15:34 +02:00
Maxime Besson
bd110e7de6
cas issuer: check auth level and reauth if insufficient ( #2124 )
2020-09-04 17:15:34 +02:00
Maxime Besson
ce5c19e3f4
saml issuer: check auth level and reauth if insufficient ( #2124 )
2020-09-04 17:15:34 +02:00
Maxime Besson
7a36489b73
oidc issuer: check auth level and reauth if insufficient ( #2124 )
2020-09-04 17:15:34 +02:00
Maxime Besson
e811ea3b2d
Skip 2FA if target level is enough ( #2124 )
2020-09-04 17:15:34 +02:00
Maxime Besson
ef6b8587ee
Remember target authlevel in handler ( #2124 )
2020-09-04 17:14:05 +02:00
Maxime Besson
8bfa5179cc
Issuers: Store required auth level in pdata ( #2124 )
2020-09-04 17:14:04 +02:00
Clément OUDOT
e86293e165
Merge branch 'v2.0' of gitlab.ow2.org:lemonldap-ng/lemonldap-ng into v2.0
2020-09-04 16:14:37 +02:00
Clément OUDOT
828ecd7bfb
Show password form with change password after reset ( #2307 )
2020-09-04 16:14:17 +02:00
Maxime Besson
ffb7c7430d
Fix encoding workaround in recursive group search ( #2306 )
2020-09-03 15:59:18 +02:00
Christophe Maudoux
e4a458633d
Append unit test ( #2266 )
2020-08-30 14:34:24 +02:00
Christophe Maudoux
215efc4334
Improve unit test ( #2266 )
2020-08-30 14:22:49 +02:00
Christophe Maudoux
05096327c0
Re-order menu & Update langs ( #2266 )
2020-08-29 22:50:29 +02:00
Christophe Maudoux
01beb5d48b
Allow all special chars ( #2266 )
2020-08-29 22:12:09 +02:00
Christophe Maudoux
7a9020ff25
Modify type ( #2266 )
2020-08-29 20:13:11 +02:00
Christophe Maudoux
0a4812203c
Allowed all special chars and rule to disable local password policy ( #2266 )
2020-08-29 19:08:47 +02:00
Christophe Maudoux
39ba25f91d
Improve unit test ( #2289 )
2020-08-29 18:02:19 +02:00
Christophe Maudoux
28e7e632af
Fix unit test
2020-08-29 12:25:13 +02:00
Christophe Maudoux
b4222b50f3
Tidy & Update doc
2020-08-28 23:50:57 +02:00
Christophe Maudoux
779fd983e5
Typo ( #2302 )
2020-08-28 21:56:54 +02:00
Christophe Maudoux
317172c8ac
Fix unit tests ( #2276 )
2020-08-28 14:44:03 +02:00
Christophe Maudoux
525eab006d
Improve unit test ( #2276 )
2020-08-28 10:41:40 +02:00
Christophe Maudoux
8b6ab584cf
WIP: Update langs & append conf test ( #2276 )
2020-08-27 14:38:11 +02:00
Christophe Maudoux
4d52fedfe5
WIP - Incremental tempo
2020-08-25 22:58:47 +02:00
Maxime Besson
c5900ece14
Kerberos: fail with an explicit message on NTLM ticket ( #2295 )
2020-08-25 20:01:28 +02:00
Maxime Besson
bcb6c428f1
Fix unit test ( #2271 )
2020-08-25 18:27:25 +02:00
Clément OUDOT
f158961fa6
Fix bad reference usage on hash
2020-08-25 00:27:06 +02:00
Clément OUDOT
3a52c220b5
Adapt unit tests to new HTML code ( #2271 )
2020-08-25 00:24:54 +02:00
Clément OUDOT
fd42b1a319
Close input tags ( #2271 )
2020-08-25 00:09:10 +02:00
Clément OUDOT
1655b35fcc
Improve labels in all forms ( #2271 )
2020-08-25 00:06:12 +02:00
Clément OUDOT
b5a61310cd
Better HTML code for notifications checkboxes ( #2271 )
2020-08-24 23:31:35 +02:00
Clément OUDOT
a1c202141e
Keep font awesome classes in dedicated markups ( #2271 )
2020-08-24 23:30:44 +02:00
Christophe Maudoux
e84b29aca4
Display special chars password policy with expired password form ( #2289 )
2020-08-24 22:43:15 +02:00
Maxime Besson
a7b09f8dbb
Auth::SAML: fix warning on empty session index ( #2291 )
2020-08-24 17:24:55 +02:00
Maxime Besson
3bec9351f0
Add js code to check ppolicy ( #2249 )
2020-08-21 16:40:09 +02:00
Maxime Besson
cdafab6bfe
Unit test fix for #2249
2020-08-21 16:38:31 +02:00
Maxime Besson
93fdff4f08
Modify ppolicy template for feedback ( #2249 )
2020-08-21 16:38:31 +02:00
Maxime Besson
e24d808586
Export ppolicy config to JS ( #2249 )
2020-08-21 16:34:14 +02:00
Maxime Besson
b85072251a
Unit tests for #2280
2020-08-17 22:08:08 +02:00
Maxime Besson
5e78464d7f
Resolve nameid session attribute from local macros ( #2280 )
2020-08-17 22:06:09 +02:00
Maxime Besson
9ac49b881a
Lookup casAppMetaDataOptionsUserAttribute in per-app macros ( #2280 )
2020-08-17 22:06:09 +02:00
Maxime Besson
52c6edb453
Lookup oidcRPMetaDataOptionsUserIDAttr in per-RP macros ( #2280 )
2020-08-17 22:06:09 +02:00
Maxime Besson
4497f39efe
Factor psession id calculation into Common
2020-08-17 18:43:29 +02:00
Maxime Besson
77b4dff20d
Unit tests for #2281
2020-08-17 18:05:09 +02:00
Maxime Besson
26cd1945fb
Try to compute the correct value of SameSite by default ( #2281 )
2020-08-17 18:05:09 +02:00
Christophe Maudoux
192861d639
Improve unit tests ( #2275 )
2020-08-16 12:11:31 +02:00
Maxime Besson
7a02fdf8e5
rollback caa346d075
( #2179 )
...
No longer needed since #2261
2020-08-12 09:49:14 +02:00
Maxime Besson
9d9e16e3f9
Remove setAuthSessionInfo from refresh process ( #2261 )
2020-08-12 09:49:14 +02:00
Christophe Maudoux
ca514f69e5
Fix version ( #2274 )
2020-08-11 22:43:32 +02:00
Christophe Maudoux
08ad68824e
Fix 500 error ( #2274 )
2020-08-11 22:03:32 +02:00
Maxime Besson
b2a2575896
Fix incorrect SOAP content type in SAML issuer ( #2263 )
2020-08-10 15:06:00 +02:00
Maxime Besson
9aa3b9b03f
Add correct secure flag to pdata cookie ( #2272 )
2020-08-10 12:10:33 +02:00
Maxime Besson
a96820d6f6
Set secure flag when removing cookie ( #2272 )
2020-08-10 12:10:33 +02:00
Christophe Maudoux
2d4a145a73
Improve unit test ( #2273 )
2020-08-09 12:36:04 +02:00
Christophe Maudoux
a1ebb0ee02
Fix ContextSwitching redirect & update unit tests ( #2273 )
2020-08-08 20:00:41 +02:00
Maxime Besson
f4ec555ca0
Fix unit tests for #2271
2020-08-07 10:16:24 +02:00
Maxime Besson
de34b6ed79
Improve labels on login form ( #2271 )
2020-08-07 09:49:43 +02:00
dcoutadeur
0045daa592
fix increase log level for mail sending and password reset ( #2265 )
2020-07-28 15:04:55 +02:00
Maxime Besson
dac0300aa5
Remove self closing spans ( #2248 )
2020-07-28 14:17:33 +02:00
Maxime Besson
c9639d201c
Replace URLSearchParams with a simpler method ( #2230 )
...
For IE compat :(
2020-07-24 18:11:07 +02:00
Xavier Guimard
9e28948d40
Update Turkish translation from transifex
2020-07-16 20:21:16 +02:00
Clément OUDOT
d1418952eb
Convert mutli-valued attributes into arrays for OIDC UserInfo ( #2256 )
2020-07-16 20:19:41 +02:00
Clément OUDOT
c5db3bc8bd
Add country to address claim ( #2257 )
2020-07-16 19:58:53 +02:00
Xavier Guimard
036b919b6b
Update translations
2020-07-14 18:35:07 +02:00
Baptiste Pecatte
5fbf7ae533
Remove useless variable
2020-07-05 13:11:28 +02:00
Baptiste Pecatte
2816bed66e
Add host to logs for use with fail2ban
2020-07-05 13:11:28 +02:00
Xavier Guimard
cb3c6ef779
Update manifest
2020-06-25 15:24:44 +02:00
Maxime Besson
5df1850847
Add cache-control headers to sendJSONresponse ( #2234 )
2020-06-24 15:49:50 +02:00
Clément OUDOT
e544ee7778
Adapt user log in SAML issuer ( #2244 )
2020-06-18 18:40:13 +02:00
Clément OUDOT
5d5eda9799
Adapt user log in CAS issuer ( #2244 )
2020-06-18 18:39:53 +02:00
Clément OUDOT
0b3908e6dc
Add user log in GET issuer ( #2244 )
2020-06-18 18:01:33 +02:00
Clément OUDOT
2da914cc90
Publish support for refresh_token grant_type ( #2242 )
2020-06-18 09:43:56 +02:00
Clément OUDOT
7d327f0e2e
Do not remove mail token before form has been submitted ( #2239 )
2020-06-17 16:29:31 +02:00
Christophe Maudoux
b86c3431c2
Append setSession info step ( #2172 )
2020-06-07 13:25:07 +02:00
Christophe Maudoux
61b10ce67a
Improve unit test ( #2229 )
2020-06-07 11:28:04 +02:00
Christophe Maudoux
b04b2076de
Preserve real_hGroups ( #2229 )
2020-06-06 23:27:37 +02:00
Maxime Besson
568c28d707
Fix REST clock tolerance ( #2225 )
...
plus a bit of refactoring
2020-06-03 10:47:37 +02:00
Xavier Guimard
767b4ceeef
Some little things
2020-05-31 09:23:40 +02:00
Maxime Besson
33a5496e55
Fix regression in #2085 ( #2224 )
...
Clearing all hidden form values was a mistake as it breaks SAML when the
redirection URL contains a query string. We should keep existing hidden
fields. In the context of OIDC request, we clear them before redirection
to avoid #2085
2020-05-29 15:51:51 +02:00
Maxime Besson
827d06cded
refactor unit test
2020-05-29 15:51:51 +02:00
Maxime Besson
ceb01796cd
Add unit test for #2189
2020-05-25 18:57:07 +02:00
Maxime Besson
e9c05a63b2
Yubikey: use userdb-provisionned session field ( #2189 )
2020-05-25 18:57:07 +02:00
Maxime Besson
959f17ac1e
Add yubikey unit test
2020-05-25 18:57:07 +02:00
Christophe Maudoux
dc00b94589
Fix unit test (bad tidy?)
2020-05-24 01:13:44 +02:00
Christophe Maudoux
bb9e03d1e5
Tidy
2020-05-24 00:04:33 +02:00
Christophe Maudoux
372b95fba9
Improve unit test ( #2212 )
2020-05-23 23:43:06 +02:00
Christophe Maudoux
53e16eca8c
Append unit tests ( #2207 )
2020-05-23 23:02:37 +02:00
Clément OUDOT
f00753e5e5
Make manifest
2020-05-22 17:34:27 +02:00
Clément OUDOT
203b3d21e2
New unit test for portal url parameter check ( #2217 )
2020-05-22 17:34:13 +02:00
Clément OUDOT
39d7344f75
Add userLogger message in Demo backend ( #2216 )
2020-05-22 14:52:58 +02:00
Clément OUDOT
4b5670a723
Fetch Public keys and GPG keys from GitHub ( #2203 )
2020-05-21 22:55:42 +02:00
Christophe Maudoux
1113fab014
Append ContextSwitching unrestrictedUsers rule ( #2207 )
2020-05-20 21:53:13 +02:00
Christophe Maudoux
312445d543
Append checkUser unrestrictedUsers rule & Fix idRule ( #2207 & #2215 )
2020-05-20 21:23:31 +02:00
Christophe Maudoux
eb65264d5d
Append Impersonation unrestrictedUsers rule & Update langs ( #2207 )
2020-05-19 23:33:07 +02:00
Maxime Besson
9d7e5c61cc
handle empty string value for yubikey parameters ( #2211 )
2020-05-18 12:34:34 +02:00
Clément OUDOT
3ebbfae7c6
Do not use arrays in REST sessions ( #2190 )
2020-05-12 16:05:38 +02:00
Christophe Maudoux
2ecd0b18a8
Skip bad GrantSession rules & Improve unit test ( #2201 )
2020-05-10 14:26:08 +02:00
Maxime Besson
db9e862843
Merge branch 'feature-userdb-password-restserver' into v2.0
2020-05-09 20:07:24 +02:00
Christophe Maudoux
9bf915b5dc
Fix unit tests & Version
2020-05-08 23:03:16 +02:00
Xavier Guimard
1e629053e1
Fix StayConnected plugin
2020-05-06 16:28:20 +02:00
Xavier Guimard
ff50cc5cd9
Fix Fingerprint use with Fingerprint ≥ 2
2020-05-06 15:57:08 +02:00
Xavier Guimard
b217f529a6
Fix sourcemaps
2020-05-06 15:31:10 +02:00
Xavier Guimard
234da90be9
Update JS libs (fixes at least a low-level jQuery CVE)
2020-05-06 15:09:17 +02:00
Xavier Guimard
894098835c
Add missing build dependency to Time::Fake (Closes: RT-132508)
2020-05-06 04:18:06 +02:00
Clément OUDOT
193c80b1d4
Update MANIFEST
2020-05-05 15:41:03 +02:00
Xavier Guimard
573d734b12
Update Polish translation
2020-05-05 07:38:44 +02:00
Clément OUDOT
7efaf9d5cd
User not always known in try subroutine ( #2165 )
2020-05-04 22:20:17 +02:00
Clément OUDOT
0bf1bfb7dd
Do not stop logout process on error in Combination ( #2165 )
2020-05-04 21:53:14 +02:00
Clément OUDOT
7ed251ce3f
Better log messages ( #2165 )
2020-05-04 21:48:06 +02:00
Xavier Guimard
6caf88a174
Better warning fix
2020-05-04 16:42:41 +02:00
Xavier Guimard
5d10695a79
Fix warning
2020-05-04 16:40:57 +02:00
Xavier Guimard
60127070de
Remove debug hook
2020-05-04 16:39:35 +02:00
Xavier Guimard
0f4ed9ecbe
Add a test in combination to catch error when combination rule is unstable ( #2165 )
2020-05-04 16:37:15 +02:00
Maxime Besson
9464bd2503
Merge branch 'fix-oidc-consent-2fa-2142' into 'v2.0'
...
Fix #2142
See merge request lemonldap-ng/lemonldap-ng!135
2020-05-04 16:00:35 +02:00
Xavier Guimard
317bfcd97d
Clean all issuer when issuerTs expires ( fixes : #2186 )
2020-05-04 15:42:25 +02:00
Xavier Guimard
52938222a5
Fix combination logout if condition changed ( Fixes : #2165 )
2020-05-04 15:29:16 +02:00
Christophe Maudoux
d7dc218bca
Typo ( #2184 )
2020-05-02 13:31:36 +02:00
Christophe Maudoux
3981ee002c
Append unit test ( #2184 )
2020-05-02 13:20:38 +02:00
Xavier Guimard
20f6fc7072
Revert bad translations
2020-05-01 21:22:13 +02:00
Xavier Guimard
d952ccb80f
Restore lost translation fields
2020-05-01 21:18:02 +02:00
Christophe Maudoux
46bb6fea4f
Return PE_SESSIONEXPIRED instead of 400 bad request ( #2184 )
2020-05-01 19:52:32 +02:00
Maxime Besson
98e813fe12
Add unit test for REST auth + REST session
2020-05-01 13:44:23 +02:00
Maxime Besson
dfc4411eae
Add UserDB methods to REST server ( #1659 )
2020-05-01 13:44:23 +02:00
Maxime Besson
b5d461da47
Add password methods to REST server ( #1598 )
2020-05-01 13:44:23 +02:00
Maxime Besson
6adb0e17b3
Use req->data instead of req->userData to retrieve LDAP dn ( #1598 )
2020-05-01 13:44:23 +02:00
Maxime Besson
0c77c0b46d
Add missing SetSecurity in UserDB::REST ( #1659 )
2020-05-01 13:43:12 +02:00
Maxime Besson
172993fcd6
Add useMail to UserDB::REST ( #1659 )
2020-05-01 13:43:12 +02:00
Maxime Besson
29d44121d7
Add useMail to Password::REST ( #1598 )
2020-05-01 13:43:12 +02:00
Christophe Maudoux
067d6ca6c4
Improve unit tests ( #2185 )
2020-04-30 22:26:50 +02:00
Christophe Maudoux
7014327232
Append an option to display sfManager link ( #2185 )
2020-04-30 20:50:10 +02:00
Clément OUDOT
ac9769ff69
Prepare release 2.0.8
2020-04-30 19:59:37 +02:00
Xavier Guimard
4eed4a2704
Fix debug leve
2020-04-30 14:14:36 +02:00
Xavier Guimard
d801070a8f
Clean also pdata in Main::Issuer::_redirect() ("1939) and add @maxbes test
2020-04-30 12:56:28 +02:00
Xavier Guimard
e8fd3264b2
Update langs
2020-04-30 12:56:28 +02:00
Christophe Maudoux
dc672c2d1f
Force FF to submit forms ( #2158 )
2020-04-30 12:43:06 +02:00
Christophe Maudoux
153971fd45
Append Show/Hide button ( #2182 )
2020-04-29 23:45:25 +02:00
Christophe Maudoux
c8eaf8978d
Append unit test ( #2180 )
2020-04-29 21:15:55 +02:00
Christophe Maudoux
bd28760bd7
Change plugins loading order ( #2180 )
2020-04-29 19:36:18 +02:00
Maxime Besson
8eb9120af7
RESTServer: Clarify error message when time skew is too great
...
deab21e091
did only half the job
2020-04-29 18:41:11 +02:00
Christophe Maudoux
393a8f831e
Improve unit test ( #2179 ) & Update manifest
2020-04-29 13:20:57 +02:00
Christophe Maudoux
a7a0f25321
Update function signature and params list
2020-04-28 18:24:55 +02:00
Christophe Maudoux
591f953d5e
Merge branch 'v2.0' into 2178-new
2020-04-28 18:20:49 +02:00
Clément OUDOT
9cd079e8fe
Manage multi valued attributes in CAS authentication module ( #2118 )
2020-04-28 12:44:16 +02:00
Maxime Besson
a7e94b5a99
test-ldap: avoid PID race condition when stopping slapd
2020-04-28 11:27:57 +02:00