Commit 4cf3762f authored by Xavier Guimard's avatar Xavier Guimard

Update documentation

parent 463f497a
......@@ -90,7 +90,7 @@
<form action="/start" accept-charset="utf-8" class="search" id="dw__search" method="get" role="search"><div class="no"><input type="hidden" name="do" value="search" /><input type="text" id="qsearch__in" accesskey="f" name="id" class="edit" title="[F]" /><input type="submit" value="Search" class="button" title="Search" /><div id="qsearch__out" class="ajax_qsearch JSpopup"></div></div></form>
<ul class="nav navbar-nav">
<li><a href="/documentation/2.0/applications/img/icons.png?do=login&amp;sectok=68b5cb03080e7ca22e1a6430f03e7332" class="action login" rel="nofollow" title="Login"><i class="glyphicon glyphicon-log-in"></i> Login</a></li> </ul>
<li><a href="/documentation/2.0/applications/img/icons.png?do=login&amp;sectok=680699e3c0234f8feda99a5fd3910f13" class="action login" rel="nofollow" title="Login"><i class="glyphicon glyphicon-log-in"></i> Login</a></li> </ul>
</div>
......@@ -204,7 +204,7 @@ You&#039;ve followed a link to a topic that doesn&#039;t exist yet. If permissio
</div><!-- /site -->
<div class="no"><img src="/lib/exe/indexer.php?id=documentation%3A2.0%3Aapplications%3Aimg%3Aicons.png&amp;1488637738" width="2" height="1" alt="" /></div>
<div class="no"><img src="/lib/exe/indexer.php?id=documentation%3A2.0%3Aapplications%3Aimg%3Aicons.png&amp;1488909657" width="2" height="1" alt="" /></div>
<div id="screen__mode" class="no">
<span class="visible-xs"></span>
<span class="visible-sm"></span>
......
......@@ -90,7 +90,7 @@
<form action="/start" accept-charset="utf-8" class="search" id="dw__search" method="get" role="search"><div class="no"><input type="hidden" name="do" value="search" /><input type="text" id="qsearch__in" accesskey="f" name="id" class="edit" title="[F]" /><input type="submit" value="Search" class="button" title="Search" /><div id="qsearch__out" class="ajax_qsearch JSpopup"></div></div></form>
<ul class="nav navbar-nav">
<li><a href="/documentation/2.0/applications/img/loader.gif?do=login&amp;sectok=68b5cb03080e7ca22e1a6430f03e7332" class="action login" rel="nofollow" title="Login"><i class="glyphicon glyphicon-log-in"></i> Login</a></li> </ul>
<li><a href="/documentation/2.0/applications/img/loader.gif?do=login&amp;sectok=680699e3c0234f8feda99a5fd3910f13" class="action login" rel="nofollow" title="Login"><i class="glyphicon glyphicon-log-in"></i> Login</a></li> </ul>
</div>
......@@ -204,7 +204,7 @@ You&#039;ve followed a link to a topic that doesn&#039;t exist yet. If permissio
</div><!-- /site -->
<div class="no"><img src="/lib/exe/indexer.php?id=documentation%3A2.0%3Aapplications%3Aimg%3Aloader.gif&amp;1488637738" width="2" height="1" alt="" /></div>
<div class="no"><img src="/lib/exe/indexer.php?id=documentation%3A2.0%3Aapplications%3Aimg%3Aloader.gif&amp;1488909657" width="2" height="1" alt="" /></div>
<div id="screen__mode" class="no">
<span class="visible-xs"></span>
<span class="visible-sm"></span>
......
<!DOCTYPE html>
<html lang="en" dir="ltr">
<head>
<meta charset="utf-8" />
<title>documentation:2.0:authcustom</title>
<meta name="generator" content="DokuWiki"/>
<meta name="robots" content="noindex,nofollow"/>
<meta name="keywords" content="documentation,2.0,authcustom"/>
<link rel="search" type="application/opensearchdescription+xml" href="lib/exe/opensearch.html" title="LemonLDAP::NG"/>
<link rel="start" href="authcustom.html"/>
<link rel="contents" href="authcustom.html" title="Sitemap"/>
<link rel="stylesheet" type="text/css" href="lib/exe/css.php.t.bootstrap3.css"/>
<!-- //if:usedebianlibs
<link rel="stylesheet" type="text/css" href="/javascript/bootstrap/css/bootstrap.min.css" />
//elsif:useexternallibs
<link rel="stylesheet" type="text/css" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css"></script>
//elsif:cssminified
<link rel="stylesheet" type="text/css" href="/static/bwr/bootstrap/dist/css/bootstrap.min.css" />
//else -->
<link rel="stylesheet" type="text/css" href="/static/bwr/bootstrap/dist/css/bootstrap.css" />
<!-- //endif -->
<script type="text/javascript">/*<![CDATA[*/var NS='documentation:2.0';var JSINFO = {"id":"documentation:2.0:authcustom","namespace":"documentation:2.0"};
/*!]]>*/</script>
<script type="text/javascript" charset="utf-8" src="lib/exe/js.php.t.bootstrap3.js"></script>
<!-- //if:usedebianlibs
<script type="text/javascript" src="/javascript/jquery/jquery.min.js"></script>
//elsif:useexternallibs
<script type="text/javascript" src="http://code.jquery.com/jquery-2.2.0.min.js"></script>
//elsif:jsminified
<script type="text/javascript" src="/static/bwr/jquery/dist/jquery.min.js"></script>
//else -->
<script type="text/javascript" src="/static/bwr/jquery/dist/jquery.js"></script>
<!-- //endif -->
<!-- //if:usedebianlibs
<script type="text/javascript" src="/javascript/jquery-ui/jquery-ui.min.js"></script>
//elsif:useexternallibs
<script type="text/javascript" src="http://code.jquery.com/ui/1.10.4/jquery-ui.min.js"></script>
//elsif:jsminified
<script type="text/javascript" src="/lib/scripts/jquery-ui.min.js"></script>
//else -->
<script type="text/javascript" src="/lib/scripts/jquery-ui.js"></script>
<!-- //endif -->
</head>
<body>
<div class="dokuwiki export container">
<h1 class="sectionedit1" id="custom_authentication_modules">Custom authentication modules</h1>
<div class="level1">
<div class="table sectionedit2"><table class="inline table table-bordered table-striped">
<thead>
<tr class="row0 roweven">
<th class="col0 centeralign"> Authentication </th><th class="col1 centeralign"> Users </th><th class="col2 centeralign"> Password </th>
</tr>
</thead>
<tr class="row1 rowodd">
<td class="col0 centeralign"></td><td class="col1 centeralign"></td><td class="col2 centeralign"></td>
</tr>
</table></div>
<!-- EDIT2 TABLE [46-115] -->
</div>
<!-- EDIT1 SECTION "Custom authentication modules" [1-116] -->
<h2 class="sectionedit3" id="presentation">Presentation</h2>
<div class="level2">
<p>
This artifact allows one to define its own modules (authentication, user database, password or register DB).
</p>
</div>
<!-- EDIT3 SECTION "Presentation" [117-252] -->
<h2 class="sectionedit4" id="configuration">Configuration</h2>
<div class="level2">
<p>
You just have to define class names of your custom modules in “Custom module names”.
</p>
</div>
<!-- EDIT4 SECTION "Configuration" [253-] --></div>
</body>
</html>
......@@ -4,7 +4,7 @@
<meta charset="utf-8" />
<title>documentation:2.0:authssl</title>
<meta name="generator" content="DokuWiki"/>
<meta name="robots" content="noindex,nofollow"/>
<meta name="robots" content="index,follow"/>
<meta name="keywords" content="documentation,2.0,authssl"/>
<link rel="search" type="application/opensearchdescription+xml" href="lib/exe/opensearch.html" title="LemonLDAP::NG"/>
<link rel="start" href="authssl.html"/>
......
......@@ -4,7 +4,7 @@
<meta charset="utf-8" />
<title>documentation:2.0:captcha</title>
<meta name="generator" content="DokuWiki"/>
<meta name="robots" content="noindex,nofollow"/>
<meta name="robots" content="index,follow"/>
<meta name="keywords" content="documentation,2.0,captcha"/>
<link rel="search" type="application/opensearchdescription+xml" href="lib/exe/opensearch.html" title="LemonLDAP::NG"/>
<link rel="start" href="captcha.html"/>
......
......@@ -4,7 +4,7 @@
<meta charset="utf-8" />
<title>documentation:2.0:extendedfunctions</title>
<meta name="generator" content="DokuWiki"/>
<meta name="robots" content="index,follow"/>
<meta name="robots" content="noindex,nofollow"/>
<meta name="keywords" content="documentation,2.0,extendedfunctions"/>
<link rel="search" type="application/opensearchdescription+xml" href="lib/exe/opensearch.html" title="LemonLDAP::NG"/>
<link rel="start" href="extendedfunctions.html"/>
......@@ -61,6 +61,7 @@
<li class="level2"><div class="li"><a href="#iso2unicode">iso2unicode</a></div></li>
<li class="level2"><div class="li"><a href="#groupmatch">groupMatch</a></div></li>
<li class="level2"><div class="li"><a href="#encrypt">encrypt</a></div></li>
<li class="level2"><div class="li"><a href="#token">token</a></div></li>
</ul></li>
</ul>
</div>
......@@ -362,7 +363,7 @@ Simple usage example:
<!-- EDIT11 SECTION "groupMatch" [5395-5753] -->
<h3 class="sectionedit12" id="encrypt">encrypt</h3>
<div class="level3">
<div class="noteimportant">This function is not compliant with <a href="safejail.html" class="wikilink1" title="documentation:2.0:safejail">Safe jail</a>, you will need to disable the jail to use it.
<div class="notetip">Since version 2.0, this function is now compliant with <a href="safejail.html" class="wikilink1" title="documentation:2.0:safejail">Safe jail</a>.
</div>
<p>
This function uses the secret key of LLNG configuration to crypt a data. This can be used to anonymize identifier given to the protected application.
......@@ -370,6 +371,16 @@ This function uses the secret key of LLNG configuration to crypt a data. This ca
<pre class="code">encrypt($_whatToTrace)</pre>
</div>
<!-- EDIT12 SECTION "encrypt" [5754-] --></div>
<!-- EDIT12 SECTION "encrypt" [5754-6059] -->
<h3 class="sectionedit13" id="token">token</h3>
<div class="level3">
<p>
This function generates token used to <a href="servertoserver.html" class="wikilink1" title="documentation:2.0:servertoserver">handle server webservice calls</a>.
</p>
<pre class="code">token($_session_id,&#039;webapp1.example.com&#039;,&#039;webapp2.example.com&#039;)</pre>
</div>
<!-- EDIT13 SECTION "token" [6060-] --></div>
</body>
</html>
......@@ -4,7 +4,7 @@
<meta charset="utf-8" />
<title>documentation:2.0:handlerauthbasic</title>
<meta name="generator" content="DokuWiki"/>
<meta name="robots" content="noindex,nofollow"/>
<meta name="robots" content="index,follow"/>
<meta name="keywords" content="documentation,2.0,handlerauthbasic"/>
<link rel="search" type="application/opensearchdescription+xml" href="lib/exe/opensearch.html" title="LemonLDAP::NG"/>
<link rel="start" href="handlerauthbasic.html"/>
......
This diff is collapsed.
......@@ -53,6 +53,7 @@
<li class="level1"><div class="li"><a href="#perl">Perl</a></div>
<ul class="toc">
<li class="level2"><div class="li"><a href="#core">Core</a></div></li>
<li class="level2"><div class="li"><a href="#old_notifications_format">Old Notifications format</a></div></li>
<li class="level2"><div class="li"><a href="#saml2">SAML2</a></div></li>
<li class="level2"><div class="li"><a href="#cas_authentication_module">CAS (authentication module)</a></div></li>
<li class="level2"><div class="li"><a href="#openid">OpenID</a></div></li>
......@@ -111,30 +112,20 @@ For Apache2, you can use all workers mpm-worker, mpm-prefork and mpm-event. Mpm-
</li>
<li class="level1"><div class="li"> MIME::Base64</div>
</li>
<li class="level1"><div class="li"> CGI</div>
</li>
<li class="level1"><div class="li"> LWP::UserAgent</div>
</li>
<li class="level1"><div class="li"> Cache::Cache</div>
</li>
<li class="level1"><div class="li"> <abbr title="Database Interface">DBI</abbr></div>
</li>
<li class="level1"><div class="li"> XML::Simple</div>
</li>
<li class="level1"><div class="li"> CGI::Session</div>
</li>
<li class="level1"><div class="li"> Regexp::Assemble</div>
</li>
<li class="level1"><div class="li"> Regexp::Common</div>
</li>
<li class="level1"><div class="li"> XML::LibXML</div>
</li>
<li class="level1"><div class="li"> Crypt::Rijndael</div>
</li>
<li class="level1"><div class="li"> IO::String</div>
</li>
<li class="level1"><div class="li"> XML::LibXSLT</div>
</li>
<li class="level1"><div class="li"> <abbr title="HyperText Markup Language">HTML</abbr>::Template</div>
</li>
<li class="level1"><div class="li"> SOAP::Lite</div>
......@@ -161,34 +152,45 @@ For Apache2, you can use all workers mpm-worker, mpm-prefork and mpm-event. Mpm-
</li>
<li class="level1"><div class="li"> Unicode::String</div>
</li>
<li class="level1"><div class="li"> Log::Log4perl::Logger</div>
</li>
<li class="level1"><div class="li"> Net::CIDR::Lite</div>
</li>
<li class="level1"><div class="li"> Cache::Memcached</div>
</li>
<li class="level1"><div class="li"> Mouse</div>
</li>
<li class="level1"><div class="li"> Plack::Handler</div>
<li class="level1"><div class="li"> Plack</div>
</li>
<li class="level1"><div class="li"> GD::SecurityImage</div>
</li>
</ul>
</div>
<!-- EDIT4 SECTION "Core" [655-1267] -->
<h3 class="sectionedit5" id="saml2">SAML2</h3>
<!-- EDIT4 SECTION "Core" [655-1158] -->
<h3 class="sectionedit5" id="old_notifications_format">Old Notifications format</h3>
<div class="level3">
<ul>
<li class="level1"><div class="li"> XML::LibXML</div>
</li>
<li class="level1"><div class="li"> XML::LibXSLT</div>
</li>
</ul>
</div>
<!-- EDIT5 SECTION "Old Notifications format" [1159-1228] -->
<h3 class="sectionedit6" id="saml2">SAML2</h3>
<div class="level3">
<ul>
<li class="level1"><div class="li"> <a href="http://lasso.entrouvert.org/" class="urlextern" title="http://lasso.entrouvert.org/" rel="nofollow">Lasso</a></div>
</li>
<li class="level1"><div class="li"> GLib</div>
</li>
<li class="level1"><div class="li"> XML::Simple</div>
</li>
</ul>
</div>
<!-- EDIT5 SECTION "SAML2" [1268-1337] -->
<h3 class="sectionedit6" id="cas_authentication_module">CAS (authentication module)</h3>
<!-- EDIT6 SECTION "SAML2" [1229-1314] -->
<h3 class="sectionedit7" id="cas_authentication_module">CAS (authentication module)</h3>
<div class="level3">
<ul>
<li class="level1"><div class="li"> <a href="http://sourcesup.cru.fr/projects/perlcas/" class="urlextern" title="http://sourcesup.cru.fr/projects/perlcas/" rel="nofollow">AuthCAS</a></div>
......@@ -196,8 +198,8 @@ For Apache2, you can use all workers mpm-worker, mpm-prefork and mpm-event. Mpm-
</ul>
</div>
<!-- EDIT6 SECTION "CAS (authentication module)" [1338-1435] -->
<h3 class="sectionedit7" id="openid">OpenID</h3>
<!-- EDIT7 SECTION "CAS (authentication module)" [1315-1412] -->
<h3 class="sectionedit8" id="openid">OpenID</h3>
<div class="level3">
<ul>
<li class="level1"><div class="li"> Net::OpenID::Consumer &gt; 1.00</div>
......@@ -207,8 +209,8 @@ For Apache2, you can use all workers mpm-worker, mpm-prefork and mpm-event. Mpm-
</ul>
</div>
<!-- EDIT7 SECTION "OpenID" [1436-1518] -->
<h3 class="sectionedit8" id="twitter">Twitter</h3>
<!-- EDIT8 SECTION "OpenID" [1413-1495] -->
<h3 class="sectionedit9" id="twitter">Twitter</h3>
<div class="level3">
<ul>
<li class="level1"><div class="li"> Net::OAuth</div>
......@@ -216,8 +218,8 @@ For Apache2, you can use all workers mpm-worker, mpm-prefork and mpm-event. Mpm-
</ul>
</div>
<!-- EDIT8 SECTION "Twitter" [1519-1553] -->
<h3 class="sectionedit9" id="pod_unit_tests">POD unit tests</h3>
<!-- EDIT9 SECTION "Twitter" [1496-1530] -->
<h3 class="sectionedit10" id="pod_unit_tests">POD unit tests</h3>
<div class="level3">
<ul>
<li class="level1"><div class="li"> Test::POD</div>
......@@ -227,8 +229,8 @@ For Apache2, you can use all workers mpm-worker, mpm-prefork and mpm-event. Mpm-
</ul>
</div>
<!-- EDIT9 SECTION "POD unit tests" [1554-1615] -->
<h3 class="sectionedit10" id="smtpreset_password_by_mail">SMTP / Reset password by mail</h3>
<!-- EDIT10 SECTION "POD unit tests" [1531-1592] -->
<h3 class="sectionedit11" id="smtpreset_password_by_mail">SMTP / Reset password by mail</h3>
<div class="level3">
<ul>
<li class="level1"><div class="li"> MIME::Lite</div>
......@@ -246,8 +248,8 @@ For Apache2, you can use all workers mpm-worker, mpm-prefork and mpm-event. Mpm-
</ul>
</div>
<!-- EDIT10 SECTION "SMTP / Reset password by mail" [1616-1763] -->
<h2 class="sectionedit11" id="other">Other</h2>
<!-- EDIT11 SECTION "SMTP / Reset password by mail" [1593-1740] -->
<h2 class="sectionedit12" id="other">Other</h2>
<div class="level2">
<ul>
<li class="level1"><div class="li"> Jquery (javascript framework) is included in tarball and RPMs, but is a dependency on Debian official releases</div>
......@@ -257,13 +259,13 @@ For Apache2, you can use all workers mpm-worker, mpm-prefork and mpm-event. Mpm-
</ul>
</div>
<!-- EDIT11 SECTION "Other" [1764-1980] -->
<h2 class="sectionedit12" id="install_dependencies_on_your_system">Install dependencies on your system</h2>
<!-- EDIT12 SECTION "Other" [1741-1957] -->
<h2 class="sectionedit13" id="install_dependencies_on_your_system">Install dependencies on your system</h2>
<div class="level2">
</div>
<!-- EDIT12 SECTION "Install dependencies on your system" [1981-2030] -->
<h3 class="sectionedit13" id="apt-get">APT-GET</h3>
<!-- EDIT13 SECTION "Install dependencies on your system" [1958-2007] -->
<h3 class="sectionedit14" id="apt-get">APT-GET</h3>
<div class="level3">
<p>
......@@ -282,8 +284,8 @@ For Nginx:
<pre class="code">apt-get install nginx nginx-extras</pre>
</div>
<!-- EDIT13 SECTION "APT-GET" [2031-3025] -->
<h3 class="sectionedit14" id="yum">YUM</h3>
<!-- EDIT14 SECTION "APT-GET" [2008-3002] -->
<h3 class="sectionedit15" id="yum">YUM</h3>
<div class="level3">
<div class="notetip">You need <a href="http://fedoraproject.org/wiki/EPEL/" class="urlextern" title="http://fedoraproject.org/wiki/EPEL/" rel="nofollow">EPEL</a> repository. See how you can activate this repository: <a href="http://fedoraproject.org/wiki/EPEL/FAQ#howtouse" class="urlextern" title="http://fedoraproject.org/wiki/EPEL/FAQ#howtouse" rel="nofollow">http://fedoraproject.org/wiki/EPEL/FAQ#howtouse</a>
</div>
......@@ -304,6 +306,6 @@ For Nginx:
<div class="noteimportant">As you need a recent version of Nginx, the best is to install <a href="https://www.nginx.com/resources/wiki/start/topics/tutorials/install/#official-red-hat-centos-packages" class="urlextern" title="https://www.nginx.com/resources/wiki/start/topics/tutorials/install/#official-red-hat-centos-packages" rel="nofollow">Nginx official packages</a>.
</div>
</div>
<!-- EDIT14 SECTION "YUM" [3026-] --></div>
<!-- EDIT15 SECTION "YUM" [3003-] --></div>
</body>
</html>
......@@ -90,7 +90,7 @@
<form action="/start" accept-charset="utf-8" class="search" id="dw__search" method="get" role="search"><div class="no"><input type="hidden" name="do" value="search" /><input type="text" id="qsearch__in" accesskey="f" name="id" class="edit" title="[F]" /><input type="submit" value="Search" class="button" title="Search" /><div id="qsearch__out" class="ajax_qsearch JSpopup"></div></div></form>
<ul class="nav navbar-nav">
<li><a href="/documentation/2.0/restserverplugin?do=login&amp;sectok=68b5cb03080e7ca22e1a6430f03e7332" class="action login" rel="nofollow" title="Login"><i class="glyphicon glyphicon-log-in"></i> Login</a></li> </ul>
<li><a href="/documentation/2.0/restserverplugin?do=login&amp;sectok=680699e3c0234f8feda99a5fd3910f13" class="action login" rel="nofollow" title="Login"><i class="glyphicon glyphicon-log-in"></i> Login</a></li> </ul>
</div>
......@@ -204,7 +204,7 @@ You&#039;ve followed a link to a topic that doesn&#039;t exist yet. If permissio
</div><!-- /site -->
<div class="no"><img src="/lib/exe/indexer.php?id=documentation%3A2.0%3Arestserverplugin&amp;1488637753" width="2" height="1" alt="" /></div>
<div class="no"><img src="/lib/exe/indexer.php?id=documentation%3A2.0%3Arestserverplugin&amp;1488909673" width="2" height="1" alt="" /></div>
<div id="screen__mode" class="no">
<span class="visible-xs"></span>
<span class="visible-sm"></span>
......
......@@ -4,7 +4,7 @@
<meta charset="utf-8" />
<title>documentation:2.0:restsessionbackend</title>
<meta name="generator" content="DokuWiki"/>
<meta name="robots" content="index,follow"/>
<meta name="robots" content="noindex,nofollow"/>
<meta name="keywords" content="documentation,2.0,restsessionbackend"/>
<link rel="search" type="application/opensearchdescription+xml" href="lib/exe/opensearch.html" title="LemonLDAP::NG"/>
<link rel="start" href="restsessionbackend.html"/>
......@@ -142,10 +142,19 @@ Then, set <code>Lemonldap::NG::Common::Apache::Session::REST</code> in <code>Gen
<tr class="row2 roweven">
<td class="col0 centeralign"> <strong>baseUrl</strong> </td><td class="col1"> <abbr title="Uniform Resource Locator">URL</abbr> of sessions REST end point </td><td class="col2"> http://auth.example.com/sessions/global </td>
</tr>
<tr class="row3 rowodd">
<th class="col0 centeralign" colspan="3"> Optional parameters </th>
</tr>
<tr class="row4 roweven">
<td class="col0 centeralign"> <strong>user</strong> </td><td class="col1"> Username to use for auth basic mechanism </td><td class="col2 leftalign"> </td>
</tr>
<tr class="row5 rowodd">
<td class="col0 centeralign"> <strong>password</strong> </td><td class="col1"> Password to use for auth basic mechanism </td><td class="col2 leftalign"> </td>
</tr>
</table></div>
<!-- EDIT4 TABLE [1758-1917] -->
<!-- EDIT4 TABLE [1758-2073] -->
</div>
<!-- EDIT3 SECTION "Manager" [1410-1918] -->
<!-- EDIT3 SECTION "Manager" [1410-2074] -->
<h3 class="sectionedit5" id="apache">Apache</h3>
<div class="level3">
......@@ -158,7 +167,7 @@ Sessions REST end points access must be allowed in Apache portal configuration (
&lt;/<span class="kw3">Location</span>&gt;</pre>
</div>
<!-- EDIT5 SECTION "Apache" [1919-2208] -->
<!-- EDIT5 SECTION "Apache" [2075-2364] -->
<h3 class="sectionedit6" id="real_session_backend">Real session backend</h3>
<div class="level3">
......@@ -175,6 +184,6 @@ For example, if real sessions are stored in <a href="filesessionbackend.html" cl
<div class="notetip">Session explorer and “single session” features can&#039;t be used using this backend. Session explorer and portal must be launched with real backend.
</div>
</div>
<!-- EDIT6 SECTION "Real session backend" [2209-] --></div>
<!-- EDIT6 SECTION "Real session backend" [2365-] --></div>
</body>
</html>
......@@ -70,20 +70,19 @@ Insert a header containing this value:
<pre class="code file perl">token<span class="br0">&#40;</span> <span class="re0">$_session_id</span><span class="sy0">,</span> <span class="st_h">'webapp2.example.com'</span><span class="sy0">,</span> <span class="st_h">'webapp3.example.com'</span> <span class="br0">&#41;</span></pre>
<p>
Webapp1 can read this header and use it in its requests in the <code>X-Llng-Token</code> header. The token is build using the session ID and the list of authorized virtualhosts. The token is available only 30 and only the listed virtualhosts.
Webapp1 can read this header and use it in its requests in the <code>X-Llng-Token</code> header. The token is build using the session ID and the list of authorized virtualhosts. The token is available only 30 seconds and only the listed virtualhosts.
</p>
</div>
<!-- EDIT2 SECTION "Webapp1 handler configuration" [448-854] -->
<!-- EDIT2 SECTION "Webapp1 handler configuration" [448-861] -->
<h2 class="sectionedit3" id="webapp2_handler_configuration">Webapp2 handler configuration</h2>
<div class="level2">
<p>
Change handler type to “ServiceToken”. So it is able to manage both user and server connections. And that&#039;s all !
</p>
<div class="noteimportant">If you use “Server” platform (Nginx), don&#039;t forget to give the <code>X-Llng-Token</code> header to the FastCGI handler (formatted as <code>HTTP_X_LLNG_TOKEN</code>).
</div>
</div>
<!-- EDIT3 SECTION "Webapp2 handler configuration" [855-] --></div>
<!-- EDIT3 SECTION "Webapp2 handler configuration" [862-] --></div>
</body>
</html>
......@@ -4,7 +4,7 @@
<meta charset="utf-8" />
<title>documentation:2.0:soapminihowto</title>
<meta name="generator" content="DokuWiki"/>
<meta name="robots" content="index,follow"/>
<meta name="robots" content="noindex,nofollow"/>
<meta name="keywords" content="documentation,2.0,soapminihowto"/>
<link rel="search" type="application/opensearchdescription+xml" href="lib/exe/opensearch.html" title="LemonLDAP::NG"/>
<link rel="start" href="soapminihowto.html"/>
......@@ -52,8 +52,12 @@
</p>
<div class="notetip">This mechanism can be used to secure access for remote servers that cross an unsecured network to access to <abbr title="LemonLDAP::NG">LL::NG</abbr> databases.
</div>
<p>
Since version 2.0, same services are available by REST.
</p>
</div>
<!-- EDIT1 SECTION "Configure LemonLDAP::NG to use SOAP proxy mechanism" [1-383] -->
<!-- EDIT1 SECTION "Configure LemonLDAP::NG to use SOAP proxy mechanism" [1-439] -->
<h2 class="sectionedit2" id="use_soap_for_lemonldapng_configuration">Use SOAP for Lemonldap::NG configuration</h2>
<div class="level2">
......@@ -70,7 +74,7 @@ Steps:
</ul>
</div>
<!-- EDIT2 SECTION "Use SOAP for Lemonldap::NG configuration" [384-649] -->
<!-- EDIT2 SECTION "Use SOAP for Lemonldap::NG configuration" [440-705] -->
<h2 class="sectionedit3" id="use_soap_for_lemonldapng_sessions">Use SOAP for Lemonldap::NG sessions</h2>
<div class="level2">
......@@ -85,6 +89,6 @@ Steps:
</ul>
</div>
<!-- EDIT3 SECTION "Use SOAP for Lemonldap::NG sessions" [650-] --></div>
<!-- EDIT3 SECTION "Use SOAP for Lemonldap::NG sessions" [706-] --></div>
</body>
</html>
......@@ -4,7 +4,7 @@
<meta charset="utf-8" />
<title>documentation:2.0:soapservices</title>
<meta name="generator" content="DokuWiki"/>
<meta name="robots" content="index,follow"/>
<meta name="robots" content="noindex,nofollow"/>
<meta name="keywords" content="documentation,2.0,soapservices"/>
<link rel="search" type="application/opensearchdescription+xml" href="lib/exe/opensearch.html" title="LemonLDAP::NG"/>
<link rel="start" href="soapservices.html"/>
......@@ -48,17 +48,11 @@
<div class="level1">
<p>
Lemonldap::NG provides 2 SOAP servers :
Lemonldap::NG portal provide a SOAP server that can be enable to give configuration and/or session. These features can be enabled using the manager.
</p>
<ul>
<li class="level1"><div class="li"> the <a href="portal.html" class="wikilink1" title="documentation:2.0:portal">portal</a></div>
</li>
<li class="level1"><div class="li"> the manager (for internal use only)</div>
</li>
</ul>
</div>
<!-- EDIT1 SECTION "SOAP services" [1-129] -->
<!-- EDIT1 SECTION "SOAP services" [1-179] -->
<h2 class="sectionedit2" id="portal_soap_services">Portal SOAP services</h2>
<div class="level2">
......@@ -131,6 +125,6 @@ SOAP functions are not accessible by network by default. SOAP functions are prot
</div>
</div>
<!-- EDIT2 SECTION "Portal SOAP services" [130-] --></div>
<!-- EDIT2 SECTION "Portal SOAP services" [180-] --></div>
</body>
</html>
This diff is collapsed.
......@@ -4,7 +4,7 @@
<meta charset="utf-8" />
<title>documentation:2.0:u2f</title>
<meta name="generator" content="DokuWiki"/>
<meta name="robots" content="index,follow"/>
<meta name="robots" content="noindex,nofollow"/>
<meta name="keywords" content="documentation,2.0,u2f"/>
<link rel="search" type="application/opensearchdescription+xml" href="lib/exe/opensearch.html" title="LemonLDAP::NG"/>
<link rel="start" href="u2f.html"/>
......@@ -92,10 +92,12 @@ In the manager (advanced parameters), you just have to enable it:
</li>
<li class="level1"><div class="li"> U2F ⇒ Self registration: set it to “on” <em>(to display this application on the menu, create an application that points to <a href="http://auth.your.domain/u2fregister" class="urlextern" title="http://auth.your.domain/u2fregister" rel="nofollow">http://auth.your.domain/u2fregister</a>)</em></div>
</li>
<li class="level1"><div class="li"> U2F ⇒ Authentication level: you can overwrite here auth level for U2F registered users. Leave it blank keeps auth level provided by first authentication module <em>(default: 2 for user/password based modules)</em></div>
</li>
</ul>
</div>
<!-- EDIT3 SECTION "Configuration" [812-1108] -->
<!-- EDIT3 SECTION "Configuration" [812-1322] -->
<h2 class="sectionedit4" id="assistance">Assistance</h2>
<div class="level2">
......@@ -104,7 +106,7 @@ If a user lost its key, you may remove it&#039;s persistent session using the se
</p>
</div>
<!-- EDIT4 SECTION "Assistance" [1109-1224] -->
<!-- EDIT4 SECTION "Assistance" [1323-1438] -->
<h2 class="sectionedit5" id="developer_corner">Developer corner</h2>
<div class="level2">
......@@ -124,12 +126,12 @@ If you have another U2F registration interface, you have to populate session (us
<td class="col0"> _u2fUserKey </td><td class="col1"> user key value, base64 encoded </td>
</tr>
</table></div>
<!-- EDIT6 TABLE [1379-1497] -->
<!-- EDIT6 TABLE [1593-1711] -->
<p>
Note that both “origin” and “appId” are fixed to portal <abbr title="Uniform Resource Locator">URL</abbr>.
</p>
</div>
<!-- EDIT5 SECTION "Developer corner" [1225-] --></div>
<!-- EDIT5 SECTION "Developer corner" [1439-] --></div>
</body>
</html>
......@@ -50,6 +50,7 @@
<ul class="toc">
<li class="level1"><div class="li"><a href="#configuration">Configuration</a></div></li>
<li class="level1"><div class="li"><a href="#logs">Logs</a></div></li>
<li class="level1"><div class="li"><a href="#security">Security</a></div></li>
<li class="level1"><div class="li"><a href="#handlers">Handlers</a></div></li>
<li class="level1"><div class="li"><a href="#rules_and_headers">Rules and headers</a></div></li>
......@@ -80,15 +81,26 @@
<li class="level1"><div class="li"> <strong>“Multi” doesn&#039;t exist anymore</strong>: it is replaced by the more powerful <a href="authcombination.html" class="wikilink1" title="documentation:2.0:authcombination">Combination</a></div>
</li>
</ul>
<div class="notewarning">Apache-ModPerl is no longer usable since version 2.4 <em>(many segfaults,…)</em>. LLNG doesn&#039;t use anymore ModPerl::Registry: all is now handle by FastCGI <em>(portal and manager)</em>.
<div class="noteimportant">Apache-ModPerl is no longer usable since version 2.4 <em>(many segfaults,…)</em>, especially when using mpm-worker. That&#039;s why LLNG doesn&#039;t use anymore ModPerl::Registry: all is now handle by FastCGI <em>(portal and manager)</em>.
<p>
<strong>For handlers, it is now recommended to migrate to Nginx</strong>, but Apache-2 is still supported
<strong>For handlers, it is now recommended to migrate to Nginx</strong>, but Apache-2.X is still supported
</p>
</div>
</div>
<!-- EDIT2 SECTION "Configuration" [163-823] -->
<h2 class="sectionedit3" id="security">Security</h2>
<!-- EDIT2 SECTION "Configuration" [163-873] -->
<h2 class="sectionedit3" id="logs">Logs</h2>
<div class="level2">
<ul>
<li class="level1"><div class="li"> <strong>Syslog</strong>: logs are now configured only in <code>lemonldap-ng.ini</code> file. If you use Syslog, you must reconfigure it. See <a href="logs.html" class="wikilink1" title="documentation:2.0:logs">logs</a> for more.</div>
</li>
<li class="level1"><div class="li"> <strong>Apache2</strong>: Portal doesn&#039;t use anymore Apache2 logger. Logs continue to be written to Apache error.log but Apache “LogLevel” parameter has no effet on it: portal is now a FastCGI application and doesn&#039;t use anymore ModPerl. See <a href="logs.html" class="wikilink1" title="documentation:2.0:logs">logs</a> for more.</div>
</li>
</ul>
</div>
<!-- EDIT3 SECTION "Logs" [874-1285] -->
<h2 class="sectionedit4" id="security">Security</h2>
<div class="level2">
<p>
......@@ -102,8 +114,8 @@ LLNG portal now embeds the following features:
</ul>
</div>
<!-- EDIT3 SECTION "Security" [824-1391] -->
<h2 class="sectionedit4" id="handlers">Handlers</h2>
<!-- EDIT4 SECTION "Security" [1286-1853] -->
<h2 class="sectionedit5" id="handlers">Handlers</h2>
<div class="level2">
<p>
......@@ -111,8 +123,8 @@ Now, <a href="cda.html" class="wikilink1" title="documentation:2.0:cda">CDA</a>,
</p>
</div>
<!-- EDIT4 SECTION "Handlers" [1392-1740] -->
<h2 class="sectionedit5" id="rules_and_headers">Rules and headers</h2>
<!-- EDIT5 SECTION "Handlers" [1854-2202] -->
<h2 class="sectionedit6" id="rules_and_headers">Rules and headers</h2>
<div class="level2">
<ul>
<li class="level1"><div class="li"> pseudo variable <code>$ip</code> is replaced by <code><a href="extendedfunctions.html#request_information" class="wikilink1" title="documentation:2.0:extendedfunctions">remote_ip()</a></code> function in <a href="writingrulesand_headers.html" class="wikilink1" title="documentation:2.0:writingrulesand_headers">rules and headers</a>. Note that session variable <code>$ipAddr</code> <em>(remote address seen by portal)</em> is still available</div>
......@@ -120,8 +132,8 @@ Now, <a href="cda.html" class="wikilink1" title="documentation:2.0:cda">CDA</a>,
</ul>
</div>
<!-- EDIT5 SECTION "Rules and headers" [1741-2026] -->
<h2 class="sectionedit6" id="supported_servers">Supported servers</h2>