lemonldap-ng merge requests
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests
2018-04-17T20:48:37Z
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/24
Portal multi u2f registration
2018-04-17T20:48:37Z
Christophe Maudoux
chrmdx@gmail.com
Portal multi u2f registration
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/471
Split refresh session function (#3101)
2024-03-26T13:21:11Z
Maxime Besson
Split refresh session function (#3101)
This lets other plugins, such as the OIDC issuer, reuse the "refresh"
logic.
I have refactored Refresh Token user refresh to reuse this new method. It means that new Offline refresh sessions will keep more attributes from now on
This lets other plugins, such as the OIDC issuer, reuse the "refresh"
logic.
I have refactored Refresh Token user refresh to reuse this new method. It means that new Offline refresh sessions will keep more attributes from now on
2.19.0
Maxime Besson
Maxime Besson
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/469
New special values for "domain" parameter
2024-03-19T07:56:39Z
Maxime Besson
New special values for "domain" parameter
This MR is preliminary work for #3040
it introduces new options for "domain":
* empty string: means cookies are only valid for the portal itself. This might be used in some extremely specific situations (SAML/OIDC/CAS only + no manager...
This MR is preliminary work for #3040
it introduces new options for "domain":
* empty string: means cookies are only valid for the portal itself. This might be used in some extremely specific situations (SAML/OIDC/CAS only + no manager)
* #PORTAL#: use the same domain as the portal such as auth.example.com *including subdomains*
* #PORTALDOMAIN#: use the parent domain of the portal, such as example.com
Once #3040 is complete, this work will allow the cookie domain to be completely derived from `$req`
We could even already make `#PORTALDOMAIN#` the default in new installs ? This way users will only have to change the "portal" variable in most situations.
2.19.0
Maxime Besson
Maxime Besson
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/467
Fix configuration cache
2024-03-19T07:58:26Z
Maxime Besson
Fix configuration cache
This MR addresses #3112 by no longer storing ini overrides in the shared configuration cache, but instead reapplying overrides (and default values) after reading from cache.
This means default values are copied every time we call getCon...
This MR addresses #3112 by no longer storing ini overrides in the shared configuration cache, but instead reapplying overrides (and default values) after reading from cache.
This means default values are copied every time we call getConf, but thanks to checkTime, it happens at most 1 time per second
2.19.0
Maxime Besson
Maxime Besson
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/466
Render session cache more resilient (#3121)
2024-03-27T09:08:26Z
Yadd
Render session cache more resilient (#3121)
Related to #3121
To kind of errors managed here:
| Error | Previous behavior | New behavior | Change |
| ---------------------------------- | ----------------- | --------------------------- |...
Related to #3121
To kind of errors managed here:
| Error | Previous behavior | New behavior | Change |
| ---------------------------------- | ----------------- | --------------------------- | ------ |
| Cache works but data was corrupted | Failure | Warn and call central cache | In [Common::Apache::Session::Store](lemonldap-ng-common/lib/Lemonldap/NG/Common/Apache/Session/Store.pm), try to unserialize data |
| Cache fail | Failure | Warn and call central cache | In [Common::Apache::Session::Store](lemonldap-ng-common/lib/Lemonldap/NG/Common/Apache/Session/Store.pm), `eval` all cache calls |
2.19.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/465
#3102: Adding ordering to login history columns.
2024-03-18T11:01:43Z
Abhishek Pai
#3102: Adding ordering to login history columns.
#3102
#3102
2.19.0
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/464
Add a request correlation ID to $req
2024-03-12T15:12:10Z
Maxime Besson
Add a request correlation ID to $req
This MR attempts to help make logs more useable by providing a `request_id` field in `$req`.
This request ID is set by mod_unique_id (Apache), or by a new configuration directive in Nginx.
It allows to correlate access logs and error l...
This MR attempts to help make logs more useable by providing a `request_id` field in `$req`.
This request ID is set by mod_unique_id (Apache), or by a new configuration directive in Nginx.
It allows to correlate access logs and error logs.
This new feature is not enabled by default, but easy to configured by changing the web server log format + enabling and configuring log4perl.
It will also be used in #2941
2.19.0
Maxime Besson
Maxime Besson
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/463
Drop optional deps already mandated by common subpackage
2024-03-11T16:45:49Z
Xavier Bachelot
Drop optional deps already mandated by common subpackage
See #3108
See #3108
2.19.0
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/461
Set current time in login history (#3115)
2024-03-13T17:11:51Z
philippe lhardy
philha@worteks.com
Set current time in login history (#3115)
- force _utime to current time
- force _utime to current time
2.19.0
Maxime Besson
Maxime Besson
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/460
Add sfBeforeRetry hook
2024-03-08T09:51:26Z
Maxime Besson
Add sfBeforeRetry hook
#3117
#3117
2.19.0
Maxime Besson
Maxime Besson
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/458
Add Conf::Backend::Overlay to be able to store secrets outside configuration ...
2024-03-27T09:09:26Z
Yadd
Add Conf::Backend::Overlay to be able to store secrets outside configuration (#3113)
Related to #3113
Related to #3113
2.19.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/457
[OIDC] Use refreshSession id as sid when offline (#2902)
2024-03-08T10:10:33Z
Yadd
[OIDC] Use refreshSession id as sid when offline (#2902)
Part of !436
Related to #2902
Part of !436
Related to #2902
2.19.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/456
Add oidcGenerateTokenResponse hook (#2902)
2024-02-29T06:11:56Z
Yadd
Add oidcGenerateTokenResponse hook (#2902)
Part of !436 for better review
Related to #2902
Part of !436 for better review
Related to #2902
2.19.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/455
Warn if auth is Choice and not userDB (fixes #3109)
2024-02-29T06:35:33Z
Yadd
Warn if auth is Choice and not userDB (fixes #3109)
Related to #3109
Related to #3109
2.19.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/453
fix diff or variables named with top-level configuration keys (#3107)
2024-03-27T09:43:55Z
philippe lhardy
philha@worteks.com
fix diff or variables named with top-level configuration keys (#3107)
- check value is a HASH before getting its hash length
leaf variable value is a string
Related to #3107
- check value is a HASH before getting its hash length
leaf variable value is a string
Related to #3107
2.19.0
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/451
Fix issue when transmitting tied hash subkey to Lasso binding
2024-02-19T10:09:59Z
Maxime Besson
Fix issue when transmitting tied hash subkey to Lasso binding
I have no idea what this is needed and I'm curious if you have an explanation for this strange behavior
Related to #3105
I have no idea what this is needed and I'm curious if you have an explanation for this strange behavior
Related to #3105
2.19.0
Maxime Besson
Maxime Besson
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/450
Add PKCE into Auth::OpenIDConnect (#3100)
2024-02-28T04:17:48Z
Yadd
Add PKCE into Auth::OpenIDConnect (#3100)
Related to #3100
Related to #3100
2.19.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/449
Add llngUserAttributes tool (#3095)
2024-03-01T03:54:38Z
Yadd
Add llngUserAttributes tool (#3095)
Related to #3095
Related to #3095
2.19.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/448
Don't hardcode Perl::Tidy version in output
2024-02-09T15:15:55Z
Xavier Bachelot
Don't hardcode Perl::Tidy version in output
Pretty self explanatory I would say :-)
Pretty self explanatory I would say :-)
Maxime Besson
Maxime Besson
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/merge_requests/447
[OIDC Dynamic Registration] Drop bad redirect_uris (closes #3070)
2024-02-06T16:45:01Z
Clément OUDOT
[OIDC Dynamic Registration] Drop bad redirect_uris (closes #3070)
(cherry picked from commit bef7fa8f2375488724a9795a764df777cd0c9633)
(cherry picked from commit bef7fa8f2375488724a9795a764df777cd0c9633)
2.18.2