dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,242 Commits 3 Branches 0 Tags 75 MiB
f187851ba6
Commit Graph

1080 Commits

Author SHA1 Message Date
Clément Oudot
f187851ba6 SAML: signatures on SSO/SLO messages issued from IDP (#66) 2010-05-20 13:08:07 +00:00
Clément Oudot
bc618ce075 SAML: check SSO/SLO messages signature in IDP (#66) 2010-05-20 10:25:00 +00:00
Clément Oudot
fdc84aac52 SAML: get SessionIndex before validating SLO request (closes #64) 2010-05-20 08:59:59 +00:00
Clément Oudot
ef3faf7d3e SAML: eval SessionIndex call to prevent server error (#64) 2010-05-19 15:54:20 +00:00
Clément Oudot
4d0a5a651d SAML: IssuerDB Activation Rule (#52) 2010-05-19 14:59:43 +00:00
Clément Oudot
df4198399f * Add a new process step (authFinish) run after session store 
* Create SAML session linked to real session to store NameID and SessionIndex, in order to use searchOn on them (will not force globalStorage to be compatible with searchOn)
* Control SessionIndex sent by IDP on a SLO request is now managed in SP to get the correct local session
* This solves issue #51
 2010-05-17 16:02:21 +00:00
Clément Oudot
18bda4be2e SAML: SLO request without SessionIndex are rejected (#51) 2010-05-17 12:44:26 +00:00
Clément Oudot
6f0dde1bac SAML: correct unit test if no Lasso available 2010-05-17 09:36:03 +00:00
Clément Oudot
a3cc63ac90 SAML: skip all tests if Lasso no available 2010-05-17 07:43:37 +00:00
Clément Oudot
be742cfac6 SAML: use encrypt/decrypt to match session_index and session_id (#51) 2010-05-12 15:56:27 +00:00
Clément Oudot
c6dd158903 SAML: map SAML authentication context and authentication level (#47) 2010-05-12 15:14:07 +00:00
Clément Oudot
7f427610fe SAML: typo in #53 correction 2010-05-12 12:56:16 +00:00
Clément Oudot
01f928504d SAML: correct date to timestamp conversion (#62) and add unit test 2010-05-12 12:46:47 +00:00
Thomas CHEMINEAU
14c23cea6d fix #53 - use sendLogoutResponseToServiceProvider in IssuerDBSAML 2010-05-12 09:41:54 +00:00
Xavier Guimard
3844ba4192 "make tidy" 2010-05-12 04:04:10 +00:00
Xavier Guimard
c7c093b46d Closes: #20 2010-05-11 11:05:24 +00:00
Xavier Guimard
67e480217c Timeout for thread cache 2010-05-11 10:16:05 +00:00
Xavier Guimard
2a8db1c3d6 Closes: #54 2010-05-11 07:47:51 +00:00
Xavier Guimard
034e5a0142 Some little things 2010-05-11 07:09:10 +00:00
Clément Oudot
798498befc Zimbra: timestamp was missing in preauth URL 2010-05-10 16:05:30 +00:00
Clément Oudot
0ae986296a Clean all UserDBEnv related files 2010-05-08 15:55:27 +00:00
Clément Oudot
2d88be8222 Portal: catch ENV exportedVars for all UserDB modules (#58) 2010-05-07 21:33:57 +00:00
Clément Oudot
f7fc51100c Zimbra Handler: 
* Parameters are now read from main configuration
* Zimbra parameters in Manager
* Add zimbraSsoUrl to catch the local SSO URL (Apache configuration is now very easy)
 2010-05-07 10:42:38 +00:00
Thomas CHEMINEAU
d262a95744 fix little bug in Manager::Help.pm 2010-05-07 10:13:13 +00:00
Thomas CHEMINEAU
adf7e8158a Add activity timeout on SSO sessions 2010-05-07 10:00:55 +00:00
Thomas CHEMINEAU
f60e65166d adding Lemonldap::NG::Handler::UpdateCookie.pm and associated files 2010-05-05 16:49:26 +00:00
Xavier Guimard
810505b1cb (Closes: #46) 2010-05-05 16:42:22 +00:00
Xavier Guimard
1b1cb88f14 Local macros (Closes: #57) 2010-05-05 16:40:23 +00:00
Clément Oudot
2007ac3814 Typo in Zimbra doc 2010-05-05 13:11:26 +00:00
Clément Oudot
bec0831f2d Zimbra preAuth is now an independent Handler (#12) 2010-05-05 08:13:44 +00:00
Xavier Guimard
cdad662b0e Warning for classes properties 2010-05-05 07:33:20 +00:00
Clément Oudot
a04ff6e964 SAML: 
* OneTimeUse is no more used in SP (#50)
* Compile regexp for SAML URLs
* Move sendLogoutRequestToServiceProviders in _SAML
* In AuthSAML, do not predefined variables outside loops
 2010-05-05 07:10:13 +00:00
Thomas CHEMINEAU
c935584300 informations is correctly stored into session but not well displayed by manager (add _utime, remove useless code) 2010-05-04 15:55:48 +00:00
Clément Oudot
5eb7895dac SAML: manage SP conf key 2010-05-04 10:10:34 +00:00
Clément Oudot
1b81ccd96f SAML: use get_signature_status from Lasso::Profile 2010-05-03 21:12:14 +00:00
Thomas CHEMINEAU
c4ea39fae4 UserDB* modules should store user in sessionInfo 2010-05-03 17:42:42 +00:00
Thomas CHEMINEAU
a963e83dc2 add optional session identifier to update existing session with a valid user via SOAP 2010-05-03 16:49:57 +00:00
Thomas CHEMINEAU
1ba9f9ecf1 cleaning wsdl file, fix little bug in a wrong function name 2010-05-03 15:45:59 +00:00
Clément Oudot
cbf1401f1e Declare Zimbra preauth in other grant subroutines 2010-05-03 14:18:40 +00:00
Clément Oudot
4bd444d427 Handler: first implementation of Zimbra preauth 2010-05-03 12:48:39 +00:00
Clément Oudot
9a5512bdf2 Bad test rule for logout_app_sso, correct #45 2010-05-03 08:59:22 +00:00
Clément Oudot
9832b9fdab Sessions explorer: active sessions button in interface 2010-05-03 07:54:49 +00:00
Xavier Guimard
408365bc5f strftime is defined in POSIX 2010-05-02 17:40:21 +00:00
Xavier Guimard
5ceb94e612 Correct errors 2010-05-02 13:41:12 +00:00
Xavier Guimard
c53bdf0edc Little error 2010-05-02 13:30:04 +00:00
Xavier Guimard
cf0ece9aa2 Reformating 2010-05-02 11:37:25 +00:00
Xavier Guimard
5d2b50e905 Modif for XSS: for logout URL, we test now Referer field 2010-05-01 13:12:28 +00:00
Clément Oudot
2523fc5cf5 SAML: check IDP value from IDP cookie (LEMONLDAP-44) 2010-04-30 15:21:10 +00:00
Clément Oudot
a9c5d000fd SAML: 
* IDP list key is now entityID
* Do not trust IDP cookie to find current IDP (use SAML message remote provider ID)
* Ignore signature before processing SAML message, and check it after (work in progress)
 2010-04-30 14:55:40 +00:00
Clément Oudot
b182e74247 Sessions explorer: set default skin, and do not converted already converted & 2010-04-30 08:02:27 +00:00