lemonldap-ng issues
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues
2018-12-01T21:44:18Z
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1561
Configuration save generates bad warnings
2018-12-01T21:44:18Z
Clément OUDOT
Configuration save generates bad warnings
We have an annoying issue in the 2.0.0 version, when saving configuration in Manager or with lemonldap-ng-cli, we have a lot of warnings:
```
{
'message' => 'totp2fActivation: __badExpression__: \'require\' trapped ...
We have an annoying issue in the 2.0.0 version, when saving configuration in Manager or with lemonldap-ng-cli, we have a lot of warnings:
```
{
'message' => 'totp2fActivation: __badExpression__: \'require\' trapped by operation mask at (eval 166) line 1, <STDIN> line 1.'
},
{
'message' => 'issuerDBCASRule: __badExpression__: \'require\' trapped by operation mask at (eval 168) line 1, <STDIN> line 1.'
},
{
'message' => 'portalDisplayChangePassword: __badExpression__: \'require\' trapped by operation mask at (eval 170) line 1, <STDIN> line 1.'
},
{
'message' => 'portalSkinRules/1: __badExpression__: \'require\' trapped by operation mask at (eval 172) line 1, <STDIN> line 1.'
},
{
'message' => 'portalDisplayAppslist: __badExpression__: \'require\' trapped by operation mask at (eval 174) line 1, <STDIN> line 1.'
},
{
'message' => 'sfRequired: __badExpression__: \'require\' trapped by operation mask at (eval 176) line 1, <STDIN> line 1.'
},
{
'message' => 'utotp2fActivation: __badExpression__: \'require\' trapped by operation mask at (eval 178) line 1, <STDIN> line 1.'
},
{
'message' => 'portalDisplayLogout: __badExpression__: \'require\' trapped by operation mask at (eval 180) line 1, <STDIN> line 1.'
},
{
'message' => 'u2fActivation: __badExpression__: \'require\' trapped by operation mask at (eval 182) line 1, <STDIN> line 1.'
},
{
'message' => 'yubikey2fActivation: __badExpression__: \'require\' trapped by operation mask at (eval 184) line 1, <STDIN> line 1.'
},
{
'message' => 'totp2fSelfRegistration: __badExpression__: \'require\' trapped by operation mask at (eval 186) line 1, <STDIN> line 1.'
},
{
'message' => 'jsRedirect: __badExpression__: \'require\' trapped by operation mask at (eval 188) line 1, <STDIN> line 1.'
},
{
'message' => 'ext2fActivation: __badExpression__: \'require\' trapped by operation mask at (eval 190) line 1, <STDIN> line 1.'
},
{
'message' => 'rest2fActivation: __badExpression__: \'require\' trapped by operation mask at (eval 192) line 1, <STDIN> line 1.'
},
{
'message' => 'u2fSelfRegistration: __badExpression__: \'require\' trapped by operation mask at (eval 194) line 1, <STDIN> line 1.'
},
{
'message' => 'yubikey2fSelfRegistration: __badExpression__: \'require\' trapped by operation mask at (eval 196) line 1, <STDIN> line 1.'
},
{
'message' => 'issuerDBSAMLRule: __badExpression__: \'require\' trapped by operation mask at (eval 198) line 1, <STDIN> line 1.'
}
```
Should be linked to a recent change in the code?
2.0.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1560
Do not require to edit /etc/hosts to add reload vhost
2018-11-29T17:58:01Z
Clément OUDOT
Do not require to edit /etc/hosts to add reload vhost
We don't need to edit /etc/hosts, we should instead set the reload URL key to localhost, so it works by default at first installation. We then have a documentation to explain how configure reload URLs for cluster or complex installations.
We don't need to edit /etc/hosts, we should instead set the reload URL key to localhost, so it works by default at first installation. We then have a documentation to explain how configure reload URLs for cluster or complex installations.
2.0.0
Clément OUDOT
Clément OUDOT
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1559
Warning in test suite when building on EL7
2018-11-29T20:38:31Z
Xavier Bachelot
Warning in test suite when building on EL7
### Concerned version
Version: 2.0.0
Platform: N/A
### Summary
When building an RPM for EL7, the test suite is giving a number of warnings.
Building the same SRPM on Fedora 29 is clean of any warning, so this is likely an issue tied ...
### Concerned version
Version: 2.0.0
Platform: N/A
### Summary
When building an RPM for EL7, the test suite is giving a number of warnings.
Building the same SRPM on Fedora 29 is clean of any warning, so this is likely an issue tied to different perl version (5.28 on F29 vs 5.16 on EL7) or perl modules versions (too many to list..).
### Logs
Extracts from the full log, which is attached below.
```
Missing argument in sprintf at /builddir/build/BUILD/lemonldap-ng-2.0.0/lemonldap-ng-handler/blib/lib/Lemonldap/NG/Handler/Main/Jail.pm line 11.
Missing argument in sprintf at /builddir/build/BUILD/lemonldap-ng-2.0.0/lemonldap-ng-common/blib/lib/Lemonldap/NG/Common/Session.pm line 16.
```
```
"my" variable $id masks earlier declaration in same scope at t/20-Auth-and-password-DBI-dynamic-hash.t line 193.
```
```
Use of uninitialized value $_[0] in substr at /usr/share/perl5/vendor_perl/IO/String.pm line 313, <FILE> line 2.
t/20-Auth-DBI-utf8.t .............................................. ok
```
```
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_auth in string eq at (eval 132) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_user in string at (eval 132) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_auth in pattern match (m//) at (eval 133) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::uid in string eq at (eval 141) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_auth in string eq at (eval 146) line 1.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_user in string at (eval 146) line 1.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_auth in pattern match (m//) at (eval 154) line 1.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::uid in string eq at (eval 157) line 1.
t/24-AuthApache.t ................................................. ok
```
```
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_auth in string eq at (eval 132) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_user in string at (eval 132) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_auth in pattern match (m//) at (eval 140) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::uid in string eq at (eval 143) line 1, <FILE> line 3.
t/12-save-changed-conf.t .... ok
```
```
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_auth in string eq at (eval 132) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_user in string at (eval 132) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_auth in pattern match (m//) at (eval 140) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::uid in string eq at (eval 143) line 1, <FILE> line 3.
t/14-bad-changes-in-conf.t .. o
```
```
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_auth in string eq at (eval 133) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_user in string at (eval 133) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::_auth in pattern match (m//) at (eval 140) line 1, <FILE> line 3.
Use of uninitialized value $Lemonldap::NG::Manager::Attributes::uid in string eq at (eval 143) line 1, <FILE> line 3.
t/15-combination.t .......... ok
```
```
Use of uninitialized value $_[0] in substr at /usr/share/perl5/vendor_perl/IO/String.pm line 313, <FILE> line 2.
Use of uninitialized value $_[0] in substr at /usr/share/perl5/vendor_perl/IO/String.pm line 313.
t/50-notifications.t ........ ok
```
```
Illegal namespace identifier 'lemonldap/ng/common/psgi/soapservice' for URN 'urn:Lemonldap/NG/Common/PSGI/SOAPService' at /usr/share/perl5/vendor_perl/SOAP/Lite.pm line 2760.
```
Full test suite output: [lemonldap-ng-testsuite.log](/uploads/880c42e7a105bb17bd54a5f35bcad2a5/lemonldap-ng-testsuite.log)
2.0.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1557
Uninitialized vars errors with FCGIClient handler
2018-11-29T09:05:50Z
Xavier Bachelot
Uninitialized vars errors with FCGIClient handler
### Concerned version
Version: 2.0
Platform: Apache
### Summary
When using the httpd FCGIClient handler, uninitialized variables errors are logged on each call to the handler.
This is on CentOS 7 with FCGI::Client 0.08 from EPEL 7.
...
### Concerned version
Version: 2.0
Platform: Apache
### Summary
When using the httpd FCGIClient handler, uninitialized variables errors are logged on each call to the handler.
This is on CentOS 7 with FCGI::Client 0.08 from EPEL 7.
Conf extract:
```
PerlHeaderParserHandler Lemonldap::NG::Handler::ApacheMP2::FCGIClient
PerlSetVar LLNG_SERVER host.domain.tld:8080
PerlSetVar VHOSTTYPE DevOps
```
### Logs
```
Use of uninitialized value $vlen in numeric lt (<) at /usr/share/perl5/vendor_perl/FCGI/Client/RecordFactory.pm line 91.
Use of uninitialized value $vlen in pack at /usr/share/perl5/vendor_perl/FCGI/Client/RecordFactory.pm line 92.
Use of uninitialized value $v in concatenation (.) or string at /usr/share/perl5/vendor_perl/FCGI/Client/RecordFactory.pm line 98.
```
2.0.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1555
Do not remember choice in pdata when redirecting user for logout
2018-11-28T10:37:52Z
Clément OUDOT
Do not remember choice in pdata when redirecting user for logout
For example in CAS protocol, the user is redirected back to the CAS server when the logout has ended. When LL::NG is a CAS client configured with Choice, we get well redirected to CAS server, but the CAS authentication is remembered, so ...
For example in CAS protocol, the user is redirected back to the CAS server when the logout has ended. When LL::NG is a CAS client configured with Choice, we get well redirected to CAS server, but the CAS authentication is remembered, so when using the portal page, we are always redirected back to CAS server, we can not select another authentication Choice.
2.0.0
Clément OUDOT
Clément OUDOT
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1554
Parameter portalRequireOldPassword is not restored after mail reset
2018-11-24T11:04:36Z
Clément OUDOT
Parameter portalRequireOldPassword is not restored after mail reset
In Mail Reset plugin, we modify portalRequireOldPassword so that the password change form do not require the old password, but we need to restore this parameter after.
In Mail Reset plugin, we modify portalRequireOldPassword so that the password change form do not require the old password, but we need to restore this parameter after.
2.0.0
Clément OUDOT
Clément OUDOT
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1553
Read timeout when configuration reload is too long
2018-11-26T13:18:26Z
Clément OUDOT
Read timeout when configuration reload is too long
When we have a big configuration (for example after loading all IDPs of Renater), the reload is a little longer.
In this case after saving a configuration, we have :
```
[notice] Apply configuration for 134.158.39.71: ok
[error] Apply c...
When we have a big configuration (for example after loading all IDPs of Renater), the reload is a little longer.
In this case after saving a configuration, we have :
```
[notice] Apply configuration for 134.158.39.71: ok
[error] Apply configuration for 134.158.39.70: error 500 (read timeout)
Status : [
{
'134.158.39.70' => 'Error 500 (read timeout)',
'134.158.39.71' => 'OK'
}
];
```
We should be able to adjust timeout value for reload.
2.0.0
Clément OUDOT
Clément OUDOT
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1550
Error when enables "SSL, Custom " Auth modules with Choice
2018-11-29T20:19:44Z
Christophe Maudoux
chrmdx@gmail.com
Error when enables "SSL, Custom " Auth modules with Choice
### Concerned version
Version: 2.0
### Summary
Append SSL / LDAP / LDAP / / /
### Logs
[Wed Nov 21 20:37:46.066332 2018] [fcgid:warn] [pid 104980] [client 77.136.14.47:38540] mod_fcgid: stderr: Can't call method "conf" on an undefi...
### Concerned version
Version: 2.0
### Summary
Append SSL / LDAP / LDAP / / /
### Logs
[Wed Nov 21 20:37:46.066332 2018] [fcgid:warn] [pid 104980] [client 77.136.14.47:38540] mod_fcgid: stderr: Can't call method "conf" on an undefined value at /usr/share/perl5/Lemonldap/NG/Portal/Auth/SSL.pm line 66.
[Wed Nov 21 20:45:16.196593 2018] [fcgid:warn] [pid 105473] [client 77.136.14.47:38642] mod_fcgid: stderr: Can't use an undefined value as a subroutine reference at /usr/share/perl5/Lemonldap/NG/Portal/Lib/Choice.pm line 236.
2.0.0
Christophe Maudoux
chrmdx@gmail.com
Christophe Maudoux
chrmdx@gmail.com
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1547
Confirmation password not verified in menu password change form
2018-11-19T18:58:11Z
Clément OUDOT
Confirmation password not verified in menu password change form
When putting different passwords in new password/confirm password, the password is changed with the first value, the second value is not verified
When putting different passwords in new password/confirm password, the password is changed with the first value, the second value is not verified
2.0.0
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1546
Configuration comparator does not work
2018-11-20T11:48:17Z
Christophe Maudoux
chrmdx@gmail.com
Configuration comparator does not work
### Concerned version
Version: 2.0
### Summary
Seems config. comparator (diff.pm) dos not work if more than 3 sub levels keys are used.
Modified : General Parameters > Portal > Customization > Buttons on login page > Reset Password ...
### Concerned version
Version: 2.0
### Summary
Seems config. comparator (diff.pm) dos not work if more than 3 sub levels keys are used.
Modified : General Parameters > Portal > Customization > Buttons on login page > Reset Password ....
Diff and "waiting for datas" always displayed
### Possible fixes
May be a recursive call issue...
2.0.0
Christophe Maudoux
chrmdx@gmail.com
Christophe Maudoux
chrmdx@gmail.com
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1545
Issue with Debian packages built with pipelines
2018-11-19T13:23:57Z
Clément OUDOT
Issue with Debian packages built with pipelines
Hello,
here is an error we get when using Apache2 Handler from the packages built with gitlab pipelines:
```
[Fri Nov 16 15:38:58.099590 2018] [perl:debug] [pid 32503:tid 140025647814400] Check configuration for Lemonldap::NG::Handler::...
Hello,
here is an error we get when using Apache2 Handler from the packages built with gitlab pipelines:
```
[Fri Nov 16 15:38:58.099590 2018] [perl:debug] [pid 32503:tid 140025647814400] Check configuration for Lemonldap::NG::Handler::ApacheMP2::Main
[Fri Nov 16 15:38:58.116866 2018] [perl:debug] [pid 32503:tid 140025647814400] Lemonldap::NG::Common::Conf::Backends::File loaded.\nGet configuration from cache without verification.
[Fri Nov 16 15:38:58.117096 2018] [perl:debug] [pid 32503:tid 140025647814400] Get configuration 159
[Fri Nov 16 15:38:58.117242 2018] [perl:info] [pid 32503:tid 140025647814400] Loading configuration 159 for process 32503
[Fri Nov 16 15:38:58.117354 2018] [perl:debug] [pid 32503:tid 140025647814400] Process 32503 calls defaultValuesInit
[Fri Nov 16 15:38:58.117528 2018] [perl:debug] [pid 32503:tid 140025647814400] Options maintenance for vhost xxxx: 0
[Fri Nov 16 15:38:58.117667 2018] [perl:debug] [pid 32503:tid 140025647814400] Process 32503 calls jailInit
[Fri Nov 16 15:38:58.118826 2018] [perl:error] [pid 32503:tid 140025647814400] [client 86.207.130.142:53048] No package name defined for metaclass at /usr/lib/x86_64-linux-gnu/perl5/5.24/Mouse/Meta/Class.pm line 269.\n
```
I can't reproduce this with packages built from sources with make ubuntu-install-for-apache
I suspect some troubles with Mouse/Moose. Any idea?
2.0.0
Yadd
Yadd
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1544
Issue with CDA
2018-11-15T14:17:27Z
Clément OUDOT
Issue with CDA
The CDA does not seem to work:
```
[debug] CDA request
[debug] Try to get a new CDA session
[debug] Check session validity -> 700s
[debug] Return CDA session 9ebd303f7932ba327369cc887d02c33e
[debug] Update sessionInfo _utime with 154228...
The CDA does not seem to work:
```
[debug] CDA request
[debug] Try to get a new CDA session
[debug] Check session validity -> 700s
[debug] Return CDA session 9ebd303f7932ba327369cc887d02c33e
[debug] Update sessionInfo _utime with 1542288651
[debug] Update sessionInfo cookie_value with 2b36c148951a7ab6673a5deb044c7b35
[debug] Update sessionInfo cookie_name with lemonldap
[debug] Try to get SSO session 9ebd303f7932ba327369cc887d02c33e
[debug] Get session 9ebd303f7932ba327369cc887d02c33e from Portal::Main::Run
[debug] Check session validity -> 700s
[debug] Return SSO session 9ebd303f7932ba327369cc887d02c33e
[debug] CDA redirection to https://test1.openid.cda/?lemonldapcda=9ebd303f7932ba327369cc887d02c33e
[debug] Processing code ref
[debug] Launching ::Plugins::Notifications::checkNotifDuringAuth
[debug] Processing code ref
[debug] Launching ::Plugins::History::run
[debug] Processing code ref
[debug] Launching ::Password::Choice::_endAuth
[debug] Unable to find enabledMods2 in this context: endAuth
[debug] Processing code ref
[debug] Cleaning pdata
[debug] Calling autoredirect
[debug] Building redirection to https://test1.openid.cda/?lemonldapcda=9ebd303f7932ba327369cc887d02c33e
[Thu Nov 15 14:30:51.295452 2018] [perl:debug] [pid 102179] Check configuration for Lemonldap::NG::Handler::ApacheMP2::Main
[Thu Nov 15 14:30:51.296960 2018] [perl:debug] [pid 102179] Lemonldap::NG::Common::Conf::Backends::File loaded.\nGet configuration from cache without verification.
[Thu Nov 15 14:30:51.297064 2018] [perl:debug] [pid 102179] Get configuration 285
[Thu Nov 15 14:30:51.297186 2018] [perl:info] [pid 102179] Loading configuration 285 for process 102179
[Thu Nov 15 14:30:51.297271 2018] [perl:debug] [pid 102179] Process 102179 calls defaultValuesInit
[Thu Nov 15 14:30:51.297430 2018] [perl:debug] [pid 102179] Options maintenance for vhost test1.openid.cda: 0
[Thu Nov 15 14:30:51.297538 2018] [perl:debug] [pid 102179] Process 102179 calls jailInit
[Thu Nov 15 14:30:51.299478 2018] [perl:debug] [pid 102179] Process 102179 calls portalInit
[Thu Nov 15 14:30:51.299620 2018] [perl:debug] [pid 102179] Process 102179 calls locationRulesInit
[Thu Nov 15 14:30:51.300857 2018] [perl:debug] [pid 102179] Process 102179 calls sessionStorageInit
[Thu Nov 15 14:30:51.304438 2018] [perl:debug] [pid 102179] Process 102179 calls headersInit
[Thu Nov 15 14:30:51.305920 2018] [perl:debug] [pid 102179] Process 102179 calls postUrlInit
[Thu Nov 15 14:30:51.306030 2018] [perl:debug] [pid 102179] Process 102179 calls aliasInit
[Thu Nov 15 14:30:51.306153 2018] [perl:debug] [pid 102179] Lemonldap::NG::Handler::ApacheMP2::Main: configuration is up to date
[Thu Nov 15 14:30:51.307165 2018] [perl:debug] [pid 102179] CDA request with id 9ebd303f7932ba327369cc887d02c33e
[Thu Nov 15 14:30:51.308751 2018] [perl:debug] [pid 102179] Get CDA session 9ebd303f7932ba327369cc887d02c33e
[Thu Nov 15 14:30:51.309846 2018] [perl:debug] [pid 102179] Build URL https://test1.openid.cda/
[Thu Nov 15 14:30:51.310001 2018] [perl:error] [pid 102179] [client 92.184.112.17:43320] Undefined subroutine &Lemonldap::NG::Handler::Lib::CDA::expires called at /usr/share/perl5/Lemonldap/NG/Handler/Lib/CDA.pm line 44.\n, referer: https://auth.openid.club/
```
2.0.0
Clément OUDOT
Clément OUDOT
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1542
Provide sessions attributes in template
2018-11-15T10:54:39Z
Clément OUDOT
Provide sessions attributes in template
For customization, we need to be able to display some user informations in portal. So it would be great to load as template parameters all sessions attributes, with a prefix in key, for example : 'session_'
So to display 'cn', we can ca...
For customization, we need to be able to display some user informations in portal. So it would be great to load as template parameters all sessions attributes, with a prefix in key, for example : 'session_'
So to display 'cn', we can call this in template:
```html
<TMPL_VAR NAME="session_cn">
```
2.0.0
Clément OUDOT
Clément OUDOT
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1540
Wrong LDAP DN encoding when modifying password
2018-11-15T09:41:53Z
Clément OUDOT
Wrong LDAP DN encoding when modifying password
The LDAP DN is well stored in session after authentication:
```
$ cat e2e-tests/conf/sessions/805a2f0620a1839d5d4d18a2b67cc94f9af58708a17c88f42b9fba8f3f40c3b7 | json_pp
```
```js
{
"UA" : "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:6...
The LDAP DN is well stored in session after authentication:
```
$ cat e2e-tests/conf/sessions/805a2f0620a1839d5d4d18a2b67cc94f9af58708a17c88f42b9fba8f3f40c3b7 | json_pp
```
```js
{
"UA" : "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:61.0) Gecko/20100101 Firefox/61.0",
"_dn" : "cn=Clément OUDOT,ou=users,dc=example,dc=com",
"_session_kind" : "SSO",
"_loginHistory" : {
"successLogin" : [
{
"_utime" : 1542126092,
"ipAddr" : "127.0.0.1"
}
]
},
"ipAddr" : "127.0.0.1",
"_session_id" : "805a2f0620a1839d5d4d18a2b67cc94f9af58708a17c88f42b9fba8f3f40c3b7",
"_auth" : "LDAP",
"_lastAuthnUTime" : 1542126092,
"_utime" : 1542126092,
"authenticationLevel" : 1,
"_userDB" : "LDAP",
"uid" : "coudot2",
"_user" : "coudot2",
"_whatToTrace" : "coudot2",
"_startTime" : "20181113172132",
"mail" : "clement@oodo.net",
"cn" : "Clément OUDOT",
"_choice" : "2LDAP",
"_updateTime" : "20181113172132"
}
```
But we have an error when modifying password:
```
Nov 13 17:22:06 ader-worteks slapd[1205]: conn=1020 op=1 BIND anonymous mech=implicit ssf=0
Nov 13 17:22:06 ader-worteks slapd[1205]: conn=1020 op=1 BIND dn="cn=Clément OUDOT,ou=users,dc=example,dc=com" method=128
Nov 13 17:22:06 ader-worteks slapd[1205]: conn=1020 op=1 RESULT tag=97 err=49 text=
Nov 13 17:22:06 ader-worteks slapd[1205]: conn=1020 op=2 UNBIND
Nov 13 17:22:06 ader-worteks slapd[1205]: conn=1020 fd=16 closed
```
2.0.0
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1539
Option to enable / disable languages choice display
2018-11-08T21:58:18Z
Christophe Maudoux
chrmdx@gmail.com
Option to enable / disable languages choice display
Manager boolean
Manager boolean
2.0.0
Christophe Maudoux
chrmdx@gmail.com
Christophe Maudoux
chrmdx@gmail.com
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1536
Yubikey always valid if no internet connection
2018-11-06T21:07:22Z
Christophe Maudoux
chrmdx@gmail.com
Yubikey always valid if no internet connection
### Concerned version
Version: 2.0
### Summary
I register second factors (totp, yubikey…), then at the first user connexion, after the login / password prompt, a register prompt is asked (very good feature). Then after registering it...
### Concerned version
Version: 2.0
### Summary
I register second factors (totp, yubikey…), then at the first user connexion, after the login / password prompt, a register prompt is asked (very good feature). Then after registering it and going back to the login page, any second factor value is accepted as correct.
Portal is displayed but session not granted
Of course, I’ve restarted services, and check from others computers to avoid cache source issues.
### Possible fixes
Send error tpl
2.0.0
Christophe Maudoux
chrmdx@gmail.com
Christophe Maudoux
chrmdx@gmail.com
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1535
Append Portal parameter to modify Handler Internal Cache
2018-11-10T19:32:25Z
Christophe Maudoux
chrmdx@gmail.com
Append Portal parameter to modify Handler Internal Cache
### Summary
Be able to modify handler Internal Cache from ini file to customize unit tests
### Summary
Be able to modify handler Internal Cache from ini file to customize unit tests
2.0.0
Christophe Maudoux
chrmdx@gmail.com
Christophe Maudoux
chrmdx@gmail.com
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1534
Provide ipAddr in $req->env for rules
2018-11-09T11:05:49Z
Clément OUDOT
Provide ipAddr in $req->env for rules
We had in 1.9 the $ipAddr that could be used in rules, we need the same in 2.0.
We had in 1.9 the $ipAddr that could be used in rules, we need the same in 2.0.
2.0.0
Clément OUDOT
Clément OUDOT
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1533
OIDC Consent always required
2018-10-30T22:26:54Z
Christophe Maudoux
chrmdx@gmail.com
OIDC Consent always required
### Concerned version
Version: 2.0
Platform: Apache2
### Summary
OIDC Consent always required despite user already gave it
### Concerned version
Version: 2.0
Platform: Apache2
### Summary
OIDC Consent always required despite user already gave it
2.0.0
Christophe Maudoux
chrmdx@gmail.com
Christophe Maudoux
chrmdx@gmail.com
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1532
The source list for CSP directive 'form-action' contains an invalid source
2018-11-03T22:31:21Z
Christophe Maudoux
chrmdx@gmail.com
The source list for CSP directive 'form-action' contains an invalid source
### Concerned version
Version: 2.0
Platform: Apache2
### Summary
The source list for Content Security Policy directive 'form-action' contains an invalid source: '/?cancel=1'. It will be ignored.
### Log
```
[debug] Display type logo...
### Concerned version
Version: 2.0
Platform: Apache2
### Summary
The source list for Content Security Policy directive 'form-action' contains an invalid source: '/?cancel=1'. It will be ignored.
### Log
```
[debug] Display type logo for module Twitter
[debug] Authentication choice Twitter will be displayed
[debug] Displaying authentication choice 5_Facebook
[debug] Use URL /?cancel=1
[debug] Display type logo for module Facebook
[debug] Authentication choice Facebook will be displayed
[debug] Displaying authentication choice 6_SAML
[debug] Use URL /?cancel=1
[debug] Display type logo for module SAML
[debug] Authentication choice SAML will be displayed
[debug] Displaying authentication choice 7_OpenID_Connect
[debug] Use URL /?cancel=1
[debug] Display type logo for module OpenIDConnect
[debug] Authentication choice OpenID Connect will be displayed
[debug] Displaying authentication choice 8_CAS
[debug] Use URL /?cancel=1
[debug] Display type logo for module CAS
[debug] Authentication choice CAS will be displayed
[debug] Skin returned: login
[debug] Calling sendHtml with template login
[debug] Starting HTML generation using /usr/share/lemonldap-ng/portal/templates/bootstrap/login.tpl
[debug] Sending /usr/share/lemonldap-ng/portal/templates/bootstrap/login.tpl
[debug] Set CSP form-action with request URL: /?cancel=1 /?cancel=1 /?cancel=1 /?cancel=1 /?cancel=1 /?cancel=1 /?cancel=1
[debug] Apply following CSP : default-src 'self';img-src 'self' data:;style-src 'self';font-src 'self';connect-src 'self';form-action 'self' * /?cancel=1 /?cancel=1 /?cancel=1 /?cancel=1 /?cancel=1 /?cancel=1 /?cancel=1;frame-ancestors 'none';
```
![Capture_d_écran_2018-10-29_21-40-00](/uploads/7f3416d84b44f2e753ebc2649bf9f911/Capture_d_écran_2018-10-29_21-40-00.png)
2.0.0
Christophe Maudoux
chrmdx@gmail.com
Christophe Maudoux
chrmdx@gmail.com