NB-Public/user_saml
14
0
Fork 0
mirror of https://github.com/netzbegruenung/user_saml.git synced 2024-05-05 10:33:41 +02:00
Code Issues Projects Releases Wiki Activity
1215 commits 27 branches 58 tags 9.4 MiB
Commit graph

54 commits

Author SHA1 Message Date
Arthur Schiwon 52ac9efe56
No SAML config chooser on env mode 
- in env mode, only one provider is supported
- choosing any provider would trigger env mode mechanis anyway

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2022-07-28 14:31:35 +02:00
blizzz 988ef8f7da
Merge pull request #595 from nextcloud/dependabot/composer/nextcloud/coding-standard-1.0.0 
Bump nextcloud/coding-standard from 0.5.0 to 1.0.0
 2022-07-05 12:37:25 +02:00
dependabot[bot] b7b402d55d Bump nextcloud/coding-standard from 0.5.0 to 1.0.0 
Bumps [nextcloud/coding-standard](https://github.com/nextcloud/coding-standard) from 0.5.0 to 1.0.0.
- [Release notes](https://github.com/nextcloud/coding-standard/releases)
- [Changelog](https://github.com/nextcloud/coding-standard/blob/master/CHANGELOG.md)
- [Commits](https://github.com/nextcloud/coding-standard/compare/v0.5.0...v1.0.0)

---
updated-dependencies:
- dependency-name: nextcloud/coding-standard
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-30 11:41:54 +02:00
Carl Schwan d58d532a68
Merge pull request #614 from nextcloud/fix/mobile-login 
Revert "Handle mobile login flow with direct=1"
 2022-05-12 20:59:23 +02:00
Carl Schwan 0f5e1ac352 Revert "Handle mobile login flow with direct=1" 
This reverts commit 86684d6c54.

Signed-off-by: Carl Schwan <carl@carlschwan.eu>
 2022-05-12 14:49:11 +02:00
Carl Schwan 06b6f33159 Stricter check for direct=1 login 
Signed-off-by: Carl Schwan <carl@carlschwan.eu>
 2022-05-09 13:16:43 +02:00
Julius Härtl df218717c7 Cover UserChangedEvent in unit tests 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2022-04-11 10:14:20 +00:00
Arthur Schiwon 0000691857 do not evaluate SAML cfg every time app is loaded 
- it tests only the first configuration, others were not taken into
  account
- the configuration check is also only needed when SAML auth is actually
  happening

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2022-04-07 20:29:03 +00:00
Arthur Schiwon be6a8e97fe Move SAML configurations to a table of their own 
- adds user_saml_configurations table and migrates existing configuration
- Controller methods are added since appconfig endpoints cannot be used
  anymore. THIS IS A BREAKING CHANGE.
- Frontend code is adjusted to use new endpoints.
- security-sloWebServerDecode was changed from global to provider specific
  setting. It being global seemed to be unintended. A migration path is yet
  missing.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2022-04-07 20:29:03 +00:00
Carl Schwan 86684d6c54 Handle mobile login flow with direct=1 
Signed-off-by: Carl Schwan <carl@carlschwan.eu>
 2022-01-25 16:06:57 +00:00
John Molakvoæ 4510f70ff7
cs:fix 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
 2021-12-10 09:28:16 +01:00
Arthur Schiwon a7aabdd71f
introduces a single point of saml attribute interpretations 
- solved code duplication on uid mapping attribute determiniation
- a single point for user id normalization
- slightly reduces logic in the Controller

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2021-01-26 14:32:19 +01:00
Roeland Jago Douma 2e8f668830
Ignore the oauth token path in login with the environment variables 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2020-07-24 15:07:04 +02:00
Julius Härtl 943acf88a2
Setup Application class using query() 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2020-03-04 14:46:58 +01:00
blizzz 42b09e96f0
Merge pull request #301 from nextcloud/fix/desktop_login_flow 
If the login flow is used (by default) we should not redirect desktopclients
 2019-08-02 11:04:41 +02:00
Julius Härtl 900e1d99d9
Catch exceptions happening during service setup to avoid auto-disabling the app 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-07-04 11:23:34 +02:00
Roeland Jago Douma ed8f7502e4
Honour login flow used by 2.5 clients 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-05-09 11:23:03 +02:00
Julius Härtl 4856025863
Catch exception during parameter fetching 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-05-02 14:35:36 +02:00
Robin Appelman 57c0a4d474 allow anonymous options request 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2018-11-20 15:12:51 +01:00
Robin Appelman a7f0e35225 Add sabredav plugin to register environment auth for dav requests 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2018-11-20 15:12:51 +01:00
Björn Schiessle e653762bb2
only call handleApacheAuth() if we login via environment variables 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-10-29 23:05:34 +01:00
Björn Schiessle 425173365e
adjust Nextcloud app to php-saml 3.0 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-10-09 22:08:33 +02:00
Björn Schiessle 4cbd3e0fe6
format user data before sending it to the client node 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-09-25 15:51:22 +02:00
Björn Schiessle 3f5fd1cdac
show default login screen as long as saml is not configured 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-14 09:56:16 +02:00
Björn Schiessle c046cc1dd8
set default idp id if only one idp is configured 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-06 10:49:52 +02:00
Björn Schiessle 20757e9f0e
make sure to always use the right idp config 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 12:43:19 +02:00
Björn Schiessle 39b3d52746
make sure to redirect to correct idp 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 12:43:19 +02:00
Björn Schiessle afeee8beaa
show all configured IdP's on the login screen 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 12:43:19 +02:00
bne86 18aa824206 first version for group-mapping. groups are added and user assigned to groups. until now no group removal 
Signed-off-by: bne86 <b.von.st.vieth@fz-juelich.de>
 2018-03-19 16:07:33 +00:00
Björn Schiessle 7daab97ace
add landing page to chose between SSO and direct login 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-03-19 12:51:30 +01:00
Björn Schiessle 4b8558522b
detect disabled user and show a appropriated error message 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-03-13 19:06:41 +01:00
Lukas Reschke 940bcd30a3
Redirect users to previous page 
This change ensures that users will be sent to the previous page.

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-08-18 13:58:03 +02:00
Lukas Reschke 69a6484257
baseurl is expected to be the host name and protocol without path 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-08-01 17:17:32 +02:00
Lukas Reschke 1a1a11c8e9
Add support for mapping attributes 
This adds support for mapping attributes for full name and email

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-02-16 15:23:46 +01:00
Lukas Reschke dd4ebe6e3d
Add integration test for Environment Variable 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-01-19 01:46:26 +01:00
Lukas Reschke 9980a80100
Add integration tests 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-01-04 22:47:19 +01:00
Joas Schilling a0662caf61
Do not use deprecated class anymore 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2016-12-14 11:45:50 +01:00
Lukas Reschke 314ae475f6
Add support for environment variable login 2016-11-14 13:47:30 +01:00
Lukas Reschke 6cdc174fdd
Add switch to configure whether SAML auth is used for desktop clients 2016-09-26 22:06:17 +02:00
Lukas Reschke 638e5f2c41
Handle redirect in PHP and not in JS 
Since Nextcloud 10 we have a proper login endpoint that we can match on
 2016-09-26 21:40:59 +02:00
Lukas Reschke 85364aeb34
Use new admin page module 
Makes this page a single page as implemented in https://github.com/nextcloud/server/pull/796
 2016-08-10 16:27:21 +02:00
Lukas Reschke 131c8652bf Remove registered personal page 2016-08-04 14:09:30 +02:00
Lukas Reschke 07a98d66f1
Add Shibboleth users to DB 
So search etc. works fine
 2016-07-04 11:34:20 +02:00
Lukas Reschke 1abff7050e
Add workaround for stable9 non-stable entry URL 2016-06-30 00:31:11 +02:00
Lukas Reschke b9a157e36d
Add wantsnameid 2016-06-29 21:50:09 +02:00
Lukas Reschke f734958836
Add possibility to enforce local user account 
Fixes https://github.com/nextcloud/user_saml/issues/12
Fixes https://github.com/nextcloud/user_saml/issues/5
 2016-06-29 20:34:10 +02:00
Lukas Reschke 487bf76165
Heuristic for stable9 
Nextcloud 10 will have a way better logic...
 2016-06-29 20:01:15 +02:00
Lukas Reschke 84c1547c85
Add application specific passwords 
Fixes https://github.com/nextcloud/user_saml/issues/1
 2016-06-29 18:50:02 +02:00
Lukas Reschke 03646e6159
Make compatible with desktop clients 
The cookie "_SHIBSESSION_" is expected.

Fixes https://github.com/nextcloud/user_saml/issues/9
 2016-06-29 12:06:50 +02:00
Lukas Reschke 943797c329
Use IRequest 2016-06-29 11:38:00 +02:00