NB-Public
/
user_saml
mirror of https://github.com/netzbegruenung/user_saml.git
14
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,215 Commits 27 Branches 58 Tags 9.4 MiB
Commit Graph

92 Commits

Author SHA1 Message Date
Roeland Jago Douma 140100b23e
Actually add error page 
* The base route now has a function as well so it is not just some empty
route
* We now actually have an error page

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2018-10-11 11:56:55 +02:00
Björn Schiessle 425173365e
adjust Nextcloud app to php-saml 3.0 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-10-09 22:08:33 +02:00
Björn Schiessle b80b94e408
we need to store some basic user information, even in the global scale scenario 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-10-09 16:57:03 +02:00
Björn Schiessle 53fe18a99f
allow redirect to the logout if it comes from the same server 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-09-25 15:56:36 +02:00
Björn Schiessle 4f852af4ce
don't auto provision the user on a global scale setup 
with global scale the authentication happens on the master node
and then the user is forward to the node they are located.
Therefore no user should be created on the master node after the
authentication at the idp was successful

Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-09-25 15:51:22 +02:00
Jean-Baptiste PIN 3f3cd68ef4
added redirection to originalUrl when using SSO 
Signed-off-by: Jean-Baptiste PIN <jeanbaptiste@idruide.com>
 2018-08-17 16:14:19 +02:00
Jean-Baptiste 0828185832
Added copyright 
Signed-off-by: Jean-Baptiste <jibet.pin@gmail.com>
 2018-08-17 16:14:09 +02:00
Björn Schiessle 2ac9adaf79
add missing parameter to function call 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-13 17:06:54 +02:00
Björn Schiessle 73ae008f6c
fix documentation 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 18:31:14 +02:00
Björn Schiessle d055a0dafb
fix property name 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 12:43:20 +02:00
Björn Schiessle 2d62533eac
fix unit tests 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 12:43:20 +02:00
Julius Härtl 00711b8fbb
Fix attribute mapping config fetching 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2018-08-03 12:43:19 +02:00
Björn Schiessle 20757e9f0e
make sure to always use the right idp config 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 12:43:19 +02:00
Björn Schiessle dafaf016a6
skip the 'type' if we build the settings page 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 12:43:19 +02:00
Julius Härtl da69ddd5e3
Fix missing config values when switching idp 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2018-08-03 12:43:19 +02:00
Björn Schiessle e378f22d10
always read the right idp config 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 12:43:19 +02:00
Björn Schiessle 39b3d52746
make sure to redirect to correct idp 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 12:43:19 +02:00
Björn Schiessle afeee8beaa
show all configured IdP's on the login screen 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-08-03 12:43:19 +02:00
Julius Härtl 174234a14e
Fix issue when removing and adding the first idp 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2018-08-03 12:42:09 +02:00
Julius Härtl 1b4b4ee188
Add controller method to delete all idp config keys 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2018-08-03 12:42:08 +02:00
Julius Härtl ee5308382b
Allow to configure multiple SAML providers 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2018-08-03 12:42:06 +02:00
Roeland Jago Douma b6531dbca7
Follow the redirect url on direct login 
This makes sure the auth flow also works with the direct login.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2018-07-11 13:35:15 +02:00
Roeland Jago Douma 82102c6f18
Merge pull request #196 from nextcloud/multiple-user-back-ends 
Multiple user back ends
 2018-03-19 14:01:07 +01:00
Björn Schiessle 02cde8030b
fix function documentation 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-03-19 12:51:39 +01:00
Björn Schiessle 8bc343da6f
make display name of SSO identity provider configurable 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-03-19 12:51:38 +01:00
Björn Schiessle 7daab97ace
add landing page to chose between SSO and direct login 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-03-19 12:51:30 +01:00
Arthur Schiwon bed32b460f
try to lookup a user if the uid does not resolve and autoprov is disabled 
it might well may be that the user exists but is not yet known to the
specific backend in Nextcloud and need to be mapped first.

This assumes that searching for the uid will actually find the user. This
is not necessarily given by the backend configuration.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2018-03-14 17:53:07 +01:00
Björn Schiessle 4b8558522b
detect disabled user and show a appropriated error message 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-03-13 19:06:41 +01:00
Björn Schiessle b9d5f56d25
add a meaningful error message in case a empty uid is given 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-01-16 12:14:21 +01:00
Roeland Jago Douma f05649f554
Use @NoSameSiteCookieRequired annotation 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2017-09-26 15:36:20 +02:00
Lukas Reschke cbc0ecd918
Read appname out of variable 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-09-21 17:13:20 +02:00
Lukas Reschke 6a00897841
More logging for debugging 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-09-21 17:08:17 +02:00
Lukas Reschke 082ae7ffd7
Redirect to `/` if CSRF check does not pass 
Some IDPs redirect to the SLS page after pressing the logout link. While this is a questionable behaviour it is unlikely we can change that, so let's work around this by forcing a proper redirect.

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-08-30 17:02:11 +02:00
Lukas Reschke 940bcd30a3
Redirect users to previous page 
This change ensures that users will be sent to the previous page.

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-08-18 13:58:03 +02:00
Lukas Reschke a1986b46b0
Also update timestamp for environment variable auth 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-08-04 18:19:34 +02:00
Lukas Reschke 3a3eb261aa
Fix order of session actions 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-08-04 17:24:01 +02:00
Lukas Reschke 5a4d327c0a
Perform logic in ACS 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-08-04 16:55:01 +02:00
Lukas Reschke 1a1a11c8e9
Add support for mapping attributes 
This adds support for mapping attributes for full name and email

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-02-16 15:23:46 +01:00
Lukas Reschke c1ab62ddac
Log last error reason 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-02-14 16:24:17 +01:00
Lukas Reschke 29c60c3869
Add better error handling 
1. Enable `debug` mode if debug mode is enabled in config.php
2. Log errors to the log file

Also I fixed the unit tests that broke with https://github.com/nextcloud/user_saml/pull/81

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-02-03 12:30:10 +01:00
Lukas Reschke dd4ebe6e3d
Add integration test for Environment Variable 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-01-19 01:46:26 +01:00
Lukas Reschke 314ae475f6
Add support for environment variable login 2016-11-14 13:47:30 +01:00