Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | QT-1900 Add a CSRF token to the OIDC login flow. | Matthias Benkard | 2015-04-23 | 5 | -14/+54 |
| | | | | | | This improves security by generating a CSRF token, passing it to the OIDC IdP, and validating it afterwards. The token is stored in a cookie reverse-encrypted with MulkyID's private key. | ||||
* | Support Google OpenID Connect. | Matthias Benkard | 2015-04-23 | 4 | -23/+69 |
| | |||||
* | Make reverse-proxyable. | Matthias Benkard | 2015-04-23 | 2 | -6/+2 |
| | | | | | | MulkyID used to be unable to run behind a reverse proxy. This is fixed by using the real_domain configuration value for redirects instead of the domain name sent by the client. | ||||
* | Make stateless. | Matthias Benkard | 2015-04-23 | 6 | -62/+62 |
| | | | | | | MulkyID does not use session state stored in /tmp anymore. Instead, it uses a cookie encrypted with the private part of the MulkyID instance's RSA key. | ||||
* | sign.pl: Make $::MULKONF->{real_domain} the issuer. | Matthias Benkard | 2015-04-23 | 1 | -3/+1 |
| | |||||
* | Fix bugs introduced by the previous patch. | Matthias Andreas Benkard | 2014-05-13 | 8 | -108/+151 |
| | |||||
* | Support Google Apps authentication. | Matthias Andreas Benkard | 2014-05-04 | 13 | -34/+171 |
| | |||||
* | README.md: Add Crypt::OpenSSL::Bignum dependency. | Matthias Andreas Benkard | 2012-10-09 | 1 | -0/+1 |
| | |||||
* | build.PL: Fix dependencies. | Matthias Andreas Benkard | 2012-10-09 | 3 | -2/+8 |
| | |||||
* | Make use of Module::Build for the build script. | Matthias Andreas Benkard | 2012-10-09 | 7 | -116/+220 |
| | |||||
* | setup.pl: Make use of File::Slurp::write_file. | Matthias Andreas Benkard | 2012-10-03 | 1 | -19/+13 |
| | |||||
* | Update README.md. | Matthias Andreas Benkard | 2012-10-03 | 1 | -10/+10 |
| | |||||
* | Fix login. | Matthias Andreas Benkard | 2012-10-03 | 1 | -1/+1 |
| | |||||
* | Update branding (BrowserID --> Persona). | Matthias Andreas Benkard | 2012-10-03 | 2 | -16/+6 |
| | |||||
* | Fix session user matching. | Matthias Andreas Benkard | 2012-10-03 | 3 | -3/+3 |
| | |||||
* | Make the configuration map a dynamic variable. | Matthias Andreas Benkard | 2012-10-03 | 4 | -18/+19 |
| | |||||
* | Make /etc/aliases optional. Add configurability through setup.pl. | Matthias Andreas Benkard | 2012-10-03 | 5 | -42/+84 |
| | |||||
* | Make PEM file location configurable. | Matthias Andreas Benkard | 2012-10-03 | 2 | -9/+44 |
| | |||||
* | setup.pl: Add copyright notice, fix a typo. | Matthias Andreas Benkard | 2012-10-03 | 1 | -1/+2 |
| | |||||
* | Remove obsolete script generate_specfile.pl. | Matthias Andreas Benkard | 2012-10-03 | 1 | -14/+0 |
| | |||||
* | setup.pl: Remove external OpenSSL tool dependency, avoid overwriting ↵ | Matthias Andreas Benkard | 2012-10-03 | 1 | -18/+26 |
| | | | | existing keys and redownloading jQuery. | ||||
* | setup.sh ==> setup.pl. | Matthias Andreas Benkard | 2012-10-03 | 3 | -24/+58 |
| | |||||
* | Move public files to www/. | Matthias Andreas Benkard | 2012-10-03 | 7 | -0/+0 |
| | |||||
* | Add missing “typ” key to generated JWS objects. | Matthias Andreas Benkard | 2012-06-28 | 1 | -1/+1 |
| | |||||
* | Fix a copy&paste error. | Matthias Andreas Benkard | 2012-06-28 | 1 | -1/+1 |
| | |||||
* | Adapt to recent protocol change. | Matthias Andreas Benkard | 2012-06-28 | 1 | -1/+3 |
| | |||||
* | Rename README -> README.md. | Matthias Andreas Benkard | 2012-04-02 | 1 | -0/+0 |
| | |||||
* | Initial commit. | Matthias Andreas Benkard | 2012-04-02 | 11 | -0/+1154 |