lemonldap-ng

History

Maxime Besson e1f927a195 Check service= parameter on CAS logout (#1795 ) service= redirect URL is not checked when logging out from CAS, to avoid insecure redirect attacks. The verification is only made if CAS access control is enabled. In order for this to work in common cases (applications redirects to an unprotected page after logout), we add CAS App domains to the list of globally trusted domains. If your application wants to redirect to a third-party domain, it needs to be added to LLNG's trustedDomains		2019-06-27 12:40:40 +02:00
..
Auth.pm	Move Auth::Base to Main::Auth	2018-02-19 22:11:43 +01:00
Constants.pm	Please use our .perltidyrc	2019-03-07 18:22:58 +01:00
Display.pm	Fix typo: s/templatesDir/templateDir/g (#1819 )	2019-06-26 11:59:13 +02:00
Init.pm	Check service= parameter on CAS logout (#1795 )	2019-06-27 12:40:40 +02:00
Issuer.pm	Tydy	2019-05-11 20:18:43 +02:00
Menu.pm	Tidy	2019-06-14 17:23:26 +02:00
Plugin.pm	Provide to plugins message display functions (#1796 )	2019-06-18 22:00:03 +02:00
Plugins.pm	Update versions	2019-04-05 09:54:43 +02:00
Process.pm	Use Id	2019-06-25 19:30:06 +02:00
Request.pm	Avoid to renew double cookie sessions for refresh request (#1747 )	2019-05-20 23:03:10 +02:00
Run.pm	In REST, PE_LOGOUT_OK must return 200	2019-06-24 23:06:15 +02:00
SecondFactor.pm	Add authenticated routes to 2FA for session upgrade (#1822 )	2019-06-26 23:33:00 +02:00