Christophe Maudoux
|
68e2e81898
|
Fix warning if error is undefined (#2126 & #1625)
|
2020-03-28 17:59:37 +01:00 |
|
Xavier Montagutelli
|
9c0e09f89d
|
Update OpenIDConnect.pm - Correct typo staticPrefi*x*
|
2020-03-26 16:48:31 +01:00 |
|
Maxime Besson
|
34928123f3
|
OIDC refactoring
split token method by response type
factor ID token generation between implicit and hybrid flows
still a lot to do!
|
2020-03-18 21:14:54 +01:00 |
|
Maxime Besson
|
4ae628bfcd
|
Avoid generatin a bogus ID token when generation fails (#2105)
|
2020-02-24 16:28:41 +01:00 |
|
Xavier Guimard
|
a76cba3856
|
Update versions
|
2020-02-20 23:37:01 +01:00 |
|
Maxime Besson
|
5758e371bf
|
Improve introspection endpoint (#2096)
|
2020-02-19 21:49:51 +01:00 |
|
Maxime Besson
|
68be974e51
|
Add option to compute userdb groups before macros (#1877)
|
2020-02-05 15:39:45 +01:00 |
|
Clément OUDOT
|
f5c2b81051
|
Possibility to add extra claims and extra vars in OIDC register (#2003)
|
2019-12-21 12:08:48 +01:00 |
|
Maxime Besson
|
f7f526b825
|
Fix #1882 in refresh token code
|
2019-12-17 10:59:45 +01:00 |
|
Maxime Besson
|
32ecf37be4
|
OIDC per-service macros portal code (#2042)
|
2019-12-16 17:26:34 +01:00 |
|
Maxime Besson
|
75559bfb15
|
Fix TTL of offline session (#813)
|
2019-11-27 12:12:47 +01:00 |
|
Maxime Besson
|
713737c11f
|
Add an option to return claims in ID token
|
2019-11-04 18:27:28 +01:00 |
|
Maxime Besson
|
68704955d2
|
Apply suggestion to lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Issuer/OpenIDConnect.pm
|
2019-11-04 10:47:35 +01:00 |
|
Maxime Besson
|
a386a7502a
|
Allow refresh tokens to be emitted for regular sessions (#813)
|
2019-11-04 10:44:54 +01:00 |
|
Maxime Besson
|
ea2365cc98
|
Implement OIDC Offline sessions through refresh tokens (#813)
|
2019-11-04 10:44:54 +01:00 |
|
Clément OUDOT
|
a239091553
|
Load String::Random (#1963)
|
2019-10-01 14:49:41 +02:00 |
|
Clément OUDOT
|
dc0a8f7848
|
Add some log when user is authorized to access to service (#1702)
|
2019-09-19 16:52:08 +02:00 |
|
Clément OUDOT
|
e446e09a7f
|
Improve log (#1702)
|
2019-09-19 16:07:10 +02:00 |
|
Christophe Maudoux
|
92c8e6791f
|
Typo (#1702)
|
2019-09-18 19:49:22 +02:00 |
|
Maxime Besson
|
d61935ab6e
|
Implement introspection endpoint for access tokens (#1843)
|
2019-08-29 19:10:51 +02:00 |
|
Maxime Besson
|
fd7453b7a5
|
Refactor endpoint auth
|
2019-08-29 18:57:26 +02:00 |
|
Maxime Besson
|
661a007b4a
|
Check OIDC access token expiration (#1879)
|
2019-08-21 12:18:55 +02:00 |
|
Maxime Besson
|
2e9f57ab6f
|
Better default behavior for oidcServiceMetaDataIssuer (#1882)
|
2019-08-13 18:09:59 +02:00 |
|
Maxime Besson
|
daa03a9a9c
|
OIDC: tie client_id to authorization code (#1881)
|
2019-08-09 13:54:53 +02:00 |
|
Clément OUDOT
|
4ee49de4c2
|
Adapt grant_types_supported attribute (#1846)
|
2019-07-25 19:06:53 +02:00 |
|
Clément OUDOT
|
c76dc52436
|
Adapt response_types_supported attribute in OpenID Connect metadata depending on configured flows (#1846)
|
2019-07-08 15:38:57 +02:00 |
|
Clément OUDOT
|
9b98893c44
|
Manage claims in ID token if no access token requested (#1846)
|
2019-07-08 15:15:13 +02:00 |
|
Clément OUDOT
|
1ebbde9a50
|
Tidy code and add missing check on hash_level (#1835)
|
2019-07-04 09:49:01 +02:00 |
|
Christophe Maudoux
|
161d6cee0f
|
Fix unit test warning (Auth-and-issuer-OIDC-authorization_code-with-none-alg.t)
|
2019-07-03 22:17:22 +02:00 |
|
Xavier Guimard
|
c1137edba8
|
make tidy with perltidy-20181120
|
2019-07-02 20:03:40 +02:00 |
|
Xavier
|
c921c295ed
|
Use user skin in loadTemplate (Fixes: #1828)
|
2019-06-28 13:40:56 +02:00 |
|
Clément OUDOT
|
4e5c450b8b
|
Return error if no code provided on token endpoint (#1802)
|
2019-06-14 16:05:39 +02:00 |
|
Xavier
|
db2ee96bc8
|
Update versions (#1777)
|
2019-05-28 22:04:45 +02:00 |
|
Xavier
|
acd6ba50e8
|
Fix some missing $req (#1777)
|
2019-05-28 19:52:08 +02:00 |
|
Clément OUDOT
|
926262170b
|
Implement PKCE in OIDC provider (#1722)
|
2019-04-29 17:18:16 +02:00 |
|
Clément OUDOT
|
8e6f678be7
|
Create a configuration option to allow a Relying Party to be a public client
Allow unauthenticated requests on OAuth2 token endoint
#1725
|
2019-04-29 10:02:16 +02:00 |
|
Clément OUDOT
|
8859fe342b
|
Fix setHiddenFormValue (#1692)
|
2019-04-03 17:54:58 +02:00 |
|
Christophe Maudoux
|
0690a0c7ab
|
Improve code (#1625)
|
2019-02-14 22:12:40 +01:00 |
|
Christophe Maudoux
|
29c4a44975
|
Update version (#1625)
|
2019-02-07 17:22:14 +01:00 |
|
Xavier Guimard
|
c7b4eb5051
|
tidy with new conf
|
2019-02-07 09:27:56 +01:00 |
|
Christophe Maudoux
|
5055b18087
|
Restore OIDC activation global rule (#1625) & Improve unit test
|
2019-02-06 23:10:10 +01:00 |
|
Clément OUDOT
|
1a2de167d1
|
Reject invalid OIDC scopes (#1599)
|
2018-12-21 14:32:01 +01:00 |
|
Xavier Guimard
|
11857d9f8a
|
make tidy
|
2018-11-26 14:40:21 +01:00 |
|
Christophe Maudoux
|
304216bd52
|
Improve code (#1533)
|
2018-10-30 19:42:54 +01:00 |
|
Christophe Maudoux
|
93d16407e6
|
Fix debug messages (#1533)
|
2018-10-29 23:25:19 +01:00 |
|
Christophe Maudoux
|
78423bf151
|
Update persistent session only if oidcConsents are converted (#1533)
|
2018-10-29 23:10:34 +01:00 |
|
Clément OUDOT
|
7690a56843
|
Put simple values in buil_urlencoded args (#1527)
|
2018-10-19 11:29:11 +02:00 |
|
Xavier Guimard
|
62d5c7836c
|
make tidy
|
2018-09-02 17:31:58 +02:00 |
|
Christophe Maudoux
|
6799ca9281
|
WIP - Fix debug message (#1480)
|
2018-08-08 23:46:15 +02:00 |
|
Christophe Maudoux
|
45216d2ed8
|
WIP - Test (#480)
|
2018-08-08 23:20:52 +02:00 |
|
Christophe Maudoux
|
942499cd66
|
Fix comments typo
|
2018-07-26 20:54:19 +02:00 |
|
Christophe Maudoux
|
9464c47a13
|
Cleaning code + perltidy (#1464)
|
2018-07-20 20:19:27 +02:00 |
|
Christophe Maudoux
|
bcd876924c
|
Fix mistake (#1464)
|
2018-07-20 19:41:26 +02:00 |
|
Christophe Maudoux
|
9efe2f3161
|
Add debug info (#1464)
|
2018-07-20 19:33:23 +02:00 |
|
Christophe Maudoux
|
8ee066b706
|
Delete old consent (#1464)
|
2018-07-20 00:02:35 +02:00 |
|
Christophe Maudoux
|
9403990a8c
|
perltidy (#1464)
|
2018-07-19 23:38:44 +02:00 |
|
Christophe Maudoux
|
8eb1b8674c
|
Add OIDC Consents convert function (#1464)
|
2018-07-19 23:02:06 +02:00 |
|
Xavier Guimard
|
a5efca5388
|
Remove trailing whitespaces (#1464)
|
2018-07-19 07:55:55 +02:00 |
|
Christophe Maudoux
|
d269db6346
|
WIP - Delete revoked consents (#1464)
|
2018-07-17 21:36:51 +02:00 |
|
Christophe Maudoux
|
344c7a644f
|
WIP - Delete revoked consents (#1464)
|
2018-07-17 19:12:35 +02:00 |
|
Christophe Maudoux
|
da44a7c83e
|
perltidy (#1464)
|
2018-07-17 18:18:50 +02:00 |
|
Christophe Maudoux
|
e1917a59de
|
Delete revoked consents (#1464)
|
2018-07-17 18:15:17 +02:00 |
|
Christophe Maudoux
|
72920d1ede
|
Modify oidcConsents key structure (#1464) - perltidy
|
2018-07-16 23:00:44 +02:00 |
|
Christophe Maudoux
|
eff2b66cf2
|
WIP - Modify oidcConsents key structure
|
2018-07-15 19:17:48 +02:00 |
|
Christophe Maudoux
|
8d5693dc1d
|
WIP - Modify oidcConsents key structure
|
2018-07-15 17:53:06 +02:00 |
|
Christophe Maudoux
|
814b571fa9
|
WIP - Modify oidcConsents key structure
|
2018-07-15 17:31:58 +02:00 |
|
Christophe Maudoux
|
d9607ae32c
|
WIP - Modify oidcConsents key structure
|
2018-07-15 16:10:27 +02:00 |
|
Xavier Guimard
|
b2620c2679
|
s/datas/data
datas => des données
data => les données
|
2018-07-05 22:56:16 +02:00 |
|
Xavier Guimard
|
b6154f1ba4
|
Add ssoMatch sub for OIDC (#1468)
|
2018-06-30 08:21:48 +02:00 |
|
Xavier Guimard
|
1cd5a706c9
|
Avoid session conflict between Issuer and Auth OIDC (#1468)
|
2018-06-30 07:51:22 +02:00 |
|
Xavier Guimard
|
5129647d04
|
Don't add RP if already connected (#1431)
|
2018-06-21 17:43:36 +02:00 |
|
Xavier Guimard
|
e0d83f5268
|
Fix some errors (#1395)
|
2018-03-12 06:43:47 +01:00 |
|
Xavier Guimard
|
0d491e96f4
|
Use same name for SP rules (#1330)
|
2017-11-11 13:51:48 +01:00 |
|
Xavier Guimard
|
a09af34412
|
Missing $req in updatePersistentSession calls (fixes: #1319)
|
2017-10-31 12:04:05 +00:00 |
|
Xavier Guimard
|
2dbdf55404
|
Typo (#1302)
|
2017-10-26 08:14:58 +00:00 |
|
Xavier Guimard
|
6072a31152
|
Move OIDC HTML fragments to tpl (#1302)
|
2017-10-11 11:51:50 +00:00 |
|
Xavier Guimard
|
2787c33c01
|
Revert r6726 (#1305)
|
2017-09-26 19:54:45 +00:00 |
|
Xavier Guimard
|
69ece7740d
|
Update debian/control
|
2017-09-26 19:11:04 +00:00 |
|
Xavier Guimard
|
89f5783d16
|
More tests (#1305)
|
2017-09-26 17:50:38 +00:00 |
|
Xavier Guimard
|
fefd723226
|
Avoid some warnings
|
2017-07-11 11:50:21 +00:00 |
|
Clément Oudot
|
ab3661fbf9
|
Fix translation of OIDC items in confirm.tpl (#1250)
|
2017-06-28 15:41:31 +00:00 |
|
Xavier Guimard
|
012cb3c23e
|
May fix #1236
|
2017-06-12 19:10:37 +00:00 |
|
Clément Oudot
|
318d43e07f
|
Check logout redirect URI (#1233)
|
2017-05-18 14:52:38 +00:00 |
|
Clément Oudot
|
851311ffe0
|
Prevent redirect before verifying authorized URI (#1233)
|
2017-05-16 15:26:28 +00:00 |
|
Xavier Guimard
|
8e4dc89918
|
Some errors (#595)
|
2017-04-07 04:39:55 +00:00 |
|
Xavier Guimard
|
e7c3561451
|
Some errors (#595)
|
2017-04-07 04:39:53 +00:00 |
|
Xavier Guimard
|
2e59ea441a
|
Replace request management in handler (#1044)
Note: this is a big change, more tests needed
|
2017-03-28 21:07:49 +00:00 |
|
Xavier Guimard
|
775f1da607
|
Reauth for OIDC (#1204)
|
2017-03-28 17:09:46 +00:00 |
|
Xavier Guimard
|
c761cc5781
|
Mark some properties "lazy" to be sure conf is intialized (#595)
|
2017-03-27 16:51:18 +00:00 |
|
Xavier Guimard
|
7e81e1b1e0
|
Add OIDC-RP rule (#1161)
|
2017-03-22 20:47:07 +00:00 |
|
Xavier Guimard
|
51665b41f8
|
Validate OIDC-RP-to-SAML-IdP with POST (#1113)
|
2017-03-21 19:36:10 +00:00 |
|
Xavier Guimard
|
6dba4fd1c2
|
Better request management in issuers (#595)
|
2017-03-21 06:23:58 +00:00 |
|
Xavier Guimard
|
c73dce5c3f
|
Typo (#1194)
|
2017-03-11 07:16:27 +00:00 |
|
Xavier Guimard
|
7f460429e1
|
OIDC OP2RP logout in progress (#1194)
|
2017-03-10 11:39:19 +00:00 |
|
Xavier Guimard
|
8a5f8d96ef
|
Front-channel logout (#1032)
|
2017-03-09 21:56:51 +00:00 |
|
Xavier Guimard
|
4d9a8da274
|
Register OIDC associations (#1032)
|
2017-03-09 21:56:47 +00:00 |
|
Xavier Guimard
|
179f6e0381
|
Follow OIDC spec: bad error codes (closes: #1191)
|
2017-03-09 21:56:43 +00:00 |
|
Xavier Guimard
|
6c042c5660
|
Launch other logouts in OIDC (#1032)
|
2017-03-08 22:49:00 +00:00 |
|
Xavier Guimard
|
f63e5eaca1
|
Add version in conf (to be used later with #797)
|
2017-03-07 17:49:46 +00:00 |
|
Xavier Guimard
|
64e5b3c53c
|
Import local configuration for conf access (#595)
|
2017-03-06 12:18:06 +00:00 |
|