Commit 291c5679 authored by Yadd's avatar Yadd
Browse files

LEMONLDAP::NG : * Liberty alliance module from FederID project

                * Debian integration in progress
parent a6077277
lemonldap-ng (0.9) unstable; urgency=low
* Liberty Alliance module issued of the FederID project is now included.
-- Xavier Guimard <x.guimard@free.fr> Sun, 14 Oct 2007 12:02:33 +0200
lemonldap-ng (0.8.3) unstable; urgency=high lemonldap-ng (0.8.3) unstable; urgency=high
* Syntax errors in configuration are now displayed * Syntax errors in configuration are now displayed
......
lemonldap-ng (0.8.3-0) unstable; urgency=low
* Local build
-- Xavier Guimard <x.guimard@free.fr> Sun, 14 Oct 2007 09:11:36 +0200
...@@ -55,8 +55,7 @@ Description: Lemonldap::NG apache manager part ...@@ -55,8 +55,7 @@ Description: Lemonldap::NG apache manager part
Package: liblemonldap-ng-portal-perl Package: liblemonldap-ng-portal-perl
Architecture: all Architecture: all
Depends: libapache-session-perl, libnet-ldap-perl, liblemonldap-ng-conf-perl (>=0.8.2.3) Depends: libapache-session-perl, libnet-ldap-perl, liblemonldap-ng-conf-perl (>=0.8.2.3), liblasso-perl
Recommends: liblasso-perl
Description: Lemonldap::NG apache authentication portal part Description: Lemonldap::NG apache authentication portal part
Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies Lemonldap::NG is a complete Web-SSO system that can run with reverse-proxies
or directly on application apache servers. or directly on application apache servers.
......
...@@ -6,13 +6,12 @@ Copyright: ...@@ -6,13 +6,12 @@ Copyright:
Copyright 2004, 2005, 2006 by Xavier Guimard Copyright 2004, 2005, 2006 by Xavier Guimard
Licence: Licence:
Lemonldap::NG is distributed under your choice under the GNU General Public
Lemonldap::NG is distributed under your choice of the GNU General Public License or the Artistic License.
License or the Artistic License. On Debian GNU/Linux systems, the copyright On Debian GNU/Linux systems, the complete text of the GNU General Public
terms for Perl itself are located in `/usr/share/doc/perl/copyright'. On Debian License version 2 can be found in `/usr/share/common-licenses/GPL' and the
GNU/Linux systems, the complete text of the GNU General Public License version Artistic Licence in `/usr/share/common-licenses/Artistic'.
2 can be found in `/usr/share/common-licenses/GPL' and the Artistic Licence in
`/usr/share/common-licenses/Artistic'.
File lemonldap-ng-manager/example/lemonldap-ng-manager.js is distributed under File lemonldap-ng-manager/example/lemonldap-ng-manager.js is distributed under
GNU General Public License version 2. GNU General Public License version 2.
...@@ -67,7 +67,7 @@ binary-indep: build install ...@@ -67,7 +67,7 @@ binary-indep: build install
binary-arch: build install binary-arch: build install
dh_testdir dh_testdir
dh_testroot dh_testroot
dh_installchangelogs changelogs dh_installchangelogs changelog
dh_installdocs dh_installdocs
mkdir debian/tmp/var/lib/lemonldap-ng/protected mkdir debian/tmp/var/lib/lemonldap-ng/protected
cp _example/index.pl debian/tmp/var/lib/lemonldap-ng/protected cp _example/index.pl debian/tmp/var/lib/lemonldap-ng/protected
......
Changes Changes
example/AuthLA/idps.xml
example/AuthLA/index.pl
example/AuthLA/la.log
example/AuthLA/liberty/assertionConsumer.pl
example/AuthLA/liberty/federationTermination.pl
example/AuthLA/liberty/federationTerminationReturn.pl
example/AuthLA/liberty/singleLogout.pl
example/AuthLA/liberty/singleLogoutReturn.pl
example/AuthLA/liberty/soapCall.pl
example/AuthLA/liberty/soapEndpoint.pl
example/AuthLA/ressources/db/liberty_tables.sql
example/AuthLA/ressources/db/taccounts.sql
example/AuthLA/ressources/db/tnameid.sql
example/AuthLA/ressources/db/tsessions.sql
example/AuthLA/ressources/lemonsp-metadata.xml
example/AuthLA/tpl/auth.tpl
example/AuthLA/tpl/themes/bouton_authentic.png
example/AuthLA/tpl/themes/bouton_federid.png
example/AuthLA/tpl/themes/bouton_interldap.png
example/AuthLA/tpl/themes/bouton_lemonldap::ng.png
example/AuthLA/tpl/themes/CHANGELOG
example/AuthLA/tpl/themes/dc2/button-hover.png
example/AuthLA/tpl/themes/dc2/button-normal.png
example/AuthLA/tpl/themes/dc2/default.css
example/AuthLA/tpl/themes/dc2/dotclear-logo.png
example/AuthLA/tpl/themes/dc2/drag.png
example/AuthLA/tpl/themes/dc2/head-bg.png
example/AuthLA/tpl/themes/dc2/head-logo.png
example/AuthLA/tpl/themes/dc2/magnifier.png
example/AuthLA/tpl/themes/dc2/msg-error.png
example/AuthLA/tpl/themes/dc2/msg-std.png
example/AuthLA/tpl/themes/dc2/page-bg.png
example/AuthLA/tpl/themes/dc2/tab-bg.png
example/AuthLA/tpl/themes/dc2/tab-c-l.png
example/AuthLA/tpl/themes/dc2/tab-c-r.png
example/AuthLA/tpl/themes/dc2/tab-l-l.png
example/AuthLA/tpl/themes/dc2/tab-l-r.png
example/AuthLA/tpl/themes/dc2/tab-n-l.png
example/AuthLA/tpl/themes/dc2/tab-n-r.png
example/AuthLA/tpl/themes/federid-dc2/button-hover.png
example/AuthLA/tpl/themes/federid-dc2/button-normal.png
example/AuthLA/tpl/themes/federid-dc2/default.css
example/AuthLA/tpl/themes/federid-dc2/head-bg.png
example/AuthLA/tpl/themes/federid-dc2/head-logo.png
example/AuthLA/tpl/themes/federid-dc2/msg-error.png
example/AuthLA/tpl/themes/federid-dc2/msg-std.png
example/AuthLA/tpl/themes/federid-dc2/page-bg.png
example/AuthLA/tpl/themes/federid/button-hover.png
example/AuthLA/tpl/themes/federid/button-normal.png
example/AuthLA/tpl/themes/federid/default.css
example/AuthLA/tpl/themes/federid/fond.jpg
example/AuthLA/tpl/themes/federid/head-bg.png
example/AuthLA/tpl/themes/federid/head-logo.png
example/AuthLA/tpl/themes/federid/idp.css
example/AuthLA/tpl/themes/federid/laap.css
example/AuthLA/tpl/themes/federid/msg-error.png
example/AuthLA/tpl/themes/federid/msg-std.png
example/AuthLA/tpl/themes/federid/page-bg.png
example/AuthLA/tpl/themes/federid/sso.css
example/AuthLA/tpl/themes/federid/wui.css
example/AuthLA/tpl/themes/README
example/AuthLA/tpl/themes/styleswitcher.js
example/AuthLA/tpl/themes/template.html
example/index.pl example/index.pl
example/scripts/purgeCentralCache example/scripts/purgeCentralCache
example/scripts/purgeCentralCache.cron.d example/scripts/purgeCentralCache.cron.d
......
<laIdpList>
<idp name="Identity Provider 1 : Authentic">
<url>http://idp1/liberty/metadata</url>
<metadata>/path/to/idp1-metadata.xml</metadata>
<pubkey>/path/to/idp1-key-public.pem</pubkey>
<certificate>/path/to/idp1-key-public.pem</certificate>
</idp>
<idp name="Identity Provider 2 : Other">
<url>http://idp2/liberty/metadata</url>
<metadata>/path/to/idp2-metadata.xml</metadata>
<pubkey>/path/to/idp2-key-public.pem</pubkey>
<certificate>/path/to/idp2-key-public.pem</certificate>
</idp>
</laIdpList>
#!/usr/bin/perl
use strict ;
use warnings ;
use HTML::Template ;
use Lemonldap::NG::Portal::AuthLA;
my $portal = Lemonldap::NG::Portal::AuthLA->new({
configStorage => {
type => 'File' ,
dirName => '/var/lib/lemonldap-ng/config' ,
} ,
# Liberty Parameters
laSp => {
certificate => '/var/lib/lemonldap-ng/web/portal/ressources/lemonsp-key-public.pem' ,
metadata => '/var/lib/lemonldap-ng/web/portal/ressources/lemonsp-metadata.xml' ,
privkey => '/var/lib/lemonldap-ng/web/portal/ressources/lemonsp-key-private.pem' ,
secretkey => '/var/lib/lemonldap-ng/web/portal/ressources/lemonsp-key-private.pem' ,
} ,
laIdpsFile => '/var/lib/lemonldap-ng/web/portal/idps.xml' ,
laStorage => 'Apache::Session::File',
laStorageOptions => {
Directory => '/var/lib/lemonldap-ng/var/assertion' ,
LockDirectory => '/var/lib/lemonldap-ng/var/lock' ,
} ,
laDebug => 1 ,
laLdapLoginAttribute => 'uid' ,
# Parameters that permit to access lemonldap::NG::Handler local cache
localStorage => 'Cache::FileCache' ,
localStorageOptions => {} ,
});
if( $portal->process() ) {
# Print protected URLs
print $portal->header ;
print "<a href=\"http://$_\"> $_</a><br/>"
foreach ($portal->getProtectedURLs) ;
} else {
# Retrieve IDP list.
my @idps = () ;
foreach ($portal->getIdpIDs) {
my %row_data ;
$row_data{IDPNAME} = $_ ;
push (@idps, \%row_data) ;
}
@idps = sort {$a cmp $b} @idps ;
# Print template
print $portal->header ;
my $template = HTML::Template->new( filename => '/var/lib/lemonldap-ng/web/portal/tpl/auth.tpl' ) ;
$template->param( AUTH_ERROR => $portal->error ) ;
$template->param( AUTH_URL => $portal->param('url') ) ;
$template->param( AUTH_IDPS => \@idps ) ;
print $template->output ;
}
create table taccounts
(
id_account int NOT NULL AUTO_INCREMENT,
uid blob NOT NULL,
identity_dump blob NOT NULL,
timestamp TIMESTAMP,
divers blob NULL,
unique index (id_account),
primary key (id_account)
);
create table tnameid
(
id_nameid int NOT NULL AUTO_INCREMENT,
nameid varchar(100) NOT NULL,
id_account int NOT NULL,
timestamp TIMESTAMP,
divers blob NULL,
unique index (id_nameid),
primary key (id_nameid)
);
create table tsessions
(
id_session int NOT NULL AUTO_INCREMENT,
session_nb blob NOT NULL,
id_account int NOT NULL,
id_nameid int NOT NULL,
session_dump blob NULL,
timestamp TIMESTAMP,
divers blob NULL,
unique index (id_session),
primary key (id_session)
);
create table taccounts
(
id_account int NOT NULL AUTO_INCREMENT,
uid blob NOT NULL,
identity_dump blob NULL,
timestamp TIMESTAMP,
divers blob NULL,
unique index (id_account),
primary key (id_account)
);
create table tnameid
(
id_nameid int NOT NULL AUTO_INCREMENT,
nameid varchar(100) NOT NULL,
id_account int NOT NULL,
timestamp TIMESTAMP,
divers blob NULL,
unique index (id_nameid),
primary key (id_nameid)
);
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment