NEWS 3.52 KB
Newer Older
Xavier Guimard's avatar
Xavier Guimard committed
1 2 3 4 5 6 7 8
lemonldap-ng (1.9.3-1) unstable; urgency=medium

  liblemonldap-ng-handler-perl package has been split into:
  - lemonldap-ng-handler that provides web server configuration
  - liblemonldap-ng-handler-perl that provides Perl libraries only

 -- Xavier Guimard <x.guimard@free.fr>  Sat, 17 May 2016 22:25:43 +0200

9
lemonldap-ng (1.9.0-1) unstable; urgency=low
10

Xavier Guimard's avatar
Xavier Guimard committed
11 12
  1) Configuration and sessions storage

13
  From now, Lemonldap::NG uses JSON serialization to store configuration and
Xavier Guimard's avatar
Typo  
Xavier Guimard committed
14
  sessions instead of Storable::nfreeze Perl function. This permits one to have
15 16 17 18 19 20 21 22
  heterogenous servers connected to the same LLNG organization (32/64 bits or
  different Perl versions). Old format still works but:
   * configuration backends: new format is applied at first configuration
     save,
   * sessions storages: new format is applied for each new session or when
     updating an existing session. You can force LemonLDAP::NG to keep the old
     serialization method by setting useStorable to 1 in sessions backend
     options if you have some custom hooks.
Xavier Guimard's avatar
Xavier Guimard committed
23 24
     Note that this behaviour only affects modules Apache::Session::File, SQL
     database and Apache::Session::LDAP
25 26 27

  If you have more than one server and don't want to stop the SSO service, start
  upgrading in the following order:
Xavier Guimard's avatar
Xavier Guimard committed
28 29
   * servers that have only handlers;
   * portal servers (all together if your load balancer doesn't keep state by
30
     user or client IP and if users use the menu);
Xavier Guimard's avatar
Xavier Guimard committed
31
   * manager server
32

Xavier Guimard's avatar
Xavier Guimard committed
33 34
  2) Manage Ajax requests when sessions expires

35
  To request for authentication, handlers sent a 302 HTTP code even if request
36 37
  was an Ajax one. From now, after redirection, portal will send a 401 code
  with a WWW-Authenticate header containing "SSO portal-URL". This is a little
Xavier Guimard's avatar
Typo  
Xavier Guimard committed
38
  HTTP protocol hook created because browsers follow redirection transparently.
39 40
  If you want to keep old behaviour, set noAjaxHook to 1 (in General Parameters
  -> Advanced -> Handler redirections -> Keep redirections for Ajax).
Xavier Guimard's avatar
Xavier Guimard committed
41

Xavier Guimard's avatar
Xavier Guimard committed
42 43
  3) New "Multi" authentication scheme

Xavier Guimard's avatar
Xavier Guimard committed
44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59
  The Multi backend configuration has changed. Now the stacks are defined in
  separate attributes:
   * multiAuthStack
   * multiUserDBStack

  So an old configuration like this:

    authentication = Multi LDAP;DBI
    userDB         = Multi LDAP;DBI

  Must be replaced by:

    authentication   = Multi
    userDB           = Multi
    multiAuthStack   = LDAP;DBI
    multiUserDBStack = LDAP;DBI
Xavier Guimard's avatar
Xavier Guimard committed
60 61 62 63 64

  4) Form replay

  Management of form replay has been rewritten. If you uses this experimental
  feature, you must edit your configuration and rewrite it.
65 66 67

 -- Xavier Guimard <x.guimard@free.fr>  Thu, 21 Jan 2016 17:13:07 +0100

68 69 70 71 72 73 74 75 76 77
lemonldap-ng (1.4.6-1) unstable; urgency=medium

  Handler files "My::Package" are no longer installed by default as a module
  "Lemonldap::NG::Handler" generic is now available. It is therefore
  necessary either to modify Apache configuration files to use
  "Lemonldap::NG::Handler" or create your own Perl modules using the provided
  examples files.

 -- Xavier Guimard <x.guimard@free.fr>  Mon, 29 Dec 2014 17:10:00 +0100

Xavier Guimard's avatar
Xavier Guimard committed
78
lemonldap-ng (1.2.2-1) unstable; urgency=low
79 80 81 82

  Examples files (Apache configuration and default handler files) are now not
  installed in /var/lib/lemonldap-ng/handler but available as examples files

83 84 85 86 87 88
  Since 1.2.2, LemonLDAP::NG uses 'Demo' authentication backend by default
  and the manager is protected by default by LemonLDAP::NG. So for an
  unconfigured installation, you have to use dwho account to access to the
  manager (password dwho)

 -- Xavier Guimard <x.guimard@free.fr>  Thu, 29 Nov 2012 06:22:45 +0100