aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* QT-1900 Update the setup script.Matthias Benkard2015-04-231-0/+6
| | | | | | | The setup script was unaware of the OAuth2 credentials that have to be set in the configuration. This made it delete them whenever it was run. This patch fixes the setup script and makes it ask for the credentials, too.
* QT-1900 Add a CSRF token to the OIDC login flow.Matthias Benkard2015-04-235-14/+54
| | | | | | This improves security by generating a CSRF token, passing it to the OIDC IdP, and validating it afterwards. The token is stored in a cookie reverse-encrypted with MulkyID's private key.
* Support Google OpenID Connect.Matthias Benkard2015-04-234-23/+69
|
* Make reverse-proxyable.Matthias Benkard2015-04-232-6/+2
| | | | | | MulkyID used to be unable to run behind a reverse proxy. This is fixed by using the real_domain configuration value for redirects instead of the domain name sent by the client.
* Make stateless.Matthias Benkard2015-04-236-62/+62
| | | | | | MulkyID does not use session state stored in /tmp anymore. Instead, it uses a cookie encrypted with the private part of the MulkyID instance's RSA key.
* sign.pl: Make $::MULKONF->{real_domain} the issuer.Matthias Benkard2015-04-231-3/+1
|
* Fix bugs introduced by the previous patch.Matthias Andreas Benkard2014-05-138-108/+151
|
* Support Google Apps authentication.Matthias Andreas Benkard2014-05-0413-34/+171
|
* README.md: Add Crypt::OpenSSL::Bignum dependency.Matthias Andreas Benkard2012-10-091-0/+1
|
* build.PL: Fix dependencies.Matthias Andreas Benkard2012-10-093-2/+8
|
* Make use of Module::Build for the build script.Matthias Andreas Benkard2012-10-097-116/+220
|
* setup.pl: Make use of File::Slurp::write_file.Matthias Andreas Benkard2012-10-031-19/+13
|
* Update README.md.Matthias Andreas Benkard2012-10-031-10/+10
|
* Fix login.Matthias Andreas Benkard2012-10-031-1/+1
|
* Update branding (BrowserID --> Persona).Matthias Andreas Benkard2012-10-032-16/+6
|
* Fix session user matching.Matthias Andreas Benkard2012-10-033-3/+3
|
* Make the configuration map a dynamic variable.Matthias Andreas Benkard2012-10-034-18/+19
|
* Make /etc/aliases optional. Add configurability through setup.pl.Matthias Andreas Benkard2012-10-035-42/+84
|
* Make PEM file location configurable.Matthias Andreas Benkard2012-10-032-9/+44
|
* setup.pl: Add copyright notice, fix a typo.Matthias Andreas Benkard2012-10-031-1/+2
|
* Remove obsolete script generate_specfile.pl.Matthias Andreas Benkard2012-10-031-14/+0
|
* setup.pl: Remove external OpenSSL tool dependency, avoid overwriting ↵Matthias Andreas Benkard2012-10-031-18/+26
| | | | existing keys and redownloading jQuery.
* setup.sh ==> setup.pl.Matthias Andreas Benkard2012-10-033-24/+58
|
* Move public files to www/.Matthias Andreas Benkard2012-10-037-0/+0
|
* Add missing “typ” key to generated JWS objects.Matthias Andreas Benkard2012-06-281-1/+1
|
* Fix a copy&paste error.Matthias Andreas Benkard2012-06-281-1/+1
|
* Adapt to recent protocol change.Matthias Andreas Benkard2012-06-281-1/+3
|
* Rename README -> README.md.Matthias Andreas Benkard2012-04-021-0/+0
|
* Initial commit.Matthias Andreas Benkard2012-04-0211-0/+1154