aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* QT-1900 Add a CSRF token to the OIDC login flow.Matthias Benkard2015-04-235-14/+54
| | | | | | This improves security by generating a CSRF token, passing it to the OIDC IdP, and validating it afterwards. The token is stored in a cookie reverse-encrypted with MulkyID's private key.
* Support Google OpenID Connect.Matthias Benkard2015-04-234-23/+69
|
* Make reverse-proxyable.Matthias Benkard2015-04-232-6/+2
| | | | | | MulkyID used to be unable to run behind a reverse proxy. This is fixed by using the real_domain configuration value for redirects instead of the domain name sent by the client.
* Make stateless.Matthias Benkard2015-04-236-62/+62
| | | | | | MulkyID does not use session state stored in /tmp anymore. Instead, it uses a cookie encrypted with the private part of the MulkyID instance's RSA key.
* sign.pl: Make $::MULKONF->{real_domain} the issuer.Matthias Benkard2015-04-231-3/+1
|
* Fix bugs introduced by the previous patch.Matthias Andreas Benkard2014-05-138-108/+151
|
* Support Google Apps authentication.Matthias Andreas Benkard2014-05-0413-34/+171
|
* README.md: Add Crypt::OpenSSL::Bignum dependency.Matthias Andreas Benkard2012-10-091-0/+1
|
* build.PL: Fix dependencies.Matthias Andreas Benkard2012-10-093-2/+8
|
* Make use of Module::Build for the build script.Matthias Andreas Benkard2012-10-097-116/+220
|
* setup.pl: Make use of File::Slurp::write_file.Matthias Andreas Benkard2012-10-031-19/+13
|
* Update README.md.Matthias Andreas Benkard2012-10-031-10/+10
|
* Fix login.Matthias Andreas Benkard2012-10-031-1/+1
|
* Update branding (BrowserID --> Persona).Matthias Andreas Benkard2012-10-032-16/+6
|
* Fix session user matching.Matthias Andreas Benkard2012-10-033-3/+3
|
* Make the configuration map a dynamic variable.Matthias Andreas Benkard2012-10-034-18/+19
|
* Make /etc/aliases optional. Add configurability through setup.pl.Matthias Andreas Benkard2012-10-035-42/+84
|
* Make PEM file location configurable.Matthias Andreas Benkard2012-10-032-9/+44
|
* setup.pl: Add copyright notice, fix a typo.Matthias Andreas Benkard2012-10-031-1/+2
|
* Remove obsolete script generate_specfile.pl.Matthias Andreas Benkard2012-10-031-14/+0
|
* setup.pl: Remove external OpenSSL tool dependency, avoid overwriting ↵Matthias Andreas Benkard2012-10-031-18/+26
| | | | existing keys and redownloading jQuery.
* setup.sh ==> setup.pl.Matthias Andreas Benkard2012-10-033-24/+58
|
* Move public files to www/.Matthias Andreas Benkard2012-10-037-0/+0
|
* Add missing “typ” key to generated JWS objects.Matthias Andreas Benkard2012-06-281-1/+1
|
* Fix a copy&paste error.Matthias Andreas Benkard2012-06-281-1/+1
|
* Adapt to recent protocol change.Matthias Andreas Benkard2012-06-281-1/+3
|
* Rename README -> README.md.Matthias Andreas Benkard2012-04-021-0/+0
|
* Initial commit.Matthias Andreas Benkard2012-04-0211-0/+1154