WIP - Logins history not displayed when U2F is required (#1442)

7 years ago · 5a7d1b0041
parent 506aba052c
commit 5a7d1b0041
4 changed files with 44 additions and 39 deletions
--- a/lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Attributes.pm
+++ b/lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Attributes.pm
@ -8,12 +8,12 @@ sub types {
        'authParamsText' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'blackWhiteList' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'bool' => {
            'msgFail' => '__notABoolean__',
@ -36,17 +36,17 @@ sub types {
                        split( /\n/, $@, 0 ) )
                );
                return $err ? ( 1, "__badExpression__: $err" ) : 1;
-            }
+              }
        },
        'catAndAppList' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'file' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'hostname' => {
            'form'    => 'text',
@ -80,48 +80,48 @@ qr/^(?:(?:(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][-a-
                      if $_ =~ /exportedvars$/i and defined $conf->{$_}{$val};
                }
                return 1, "__unknownAttrOrMacro__: $val";
-            }
+              }
        },
        'longtext' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'menuApp' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'menuCat' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'oidcmetadatajson' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'oidcmetadatajwks' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'oidcOPMetaDataNode' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'oidcRPMetaDataNode' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'password' => {
            'msgFail' => '__malformedValue__',
            'test'    => sub {
                1;
-            }
+              }
        },
        'pcre' => {
            'form' => 'text',
@ -132,7 +132,7 @@ qr/^(?:(?:(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][-a-
                      }
                };
                return $@ ? ( 0, "__badRegexp__: $@" ) : 1;
-            }
+              }
        },
        'PerlModule' => {
            'form'    => 'text',
@ -142,17 +142,17 @@ qr/^(?:(?:(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][-a-
        'portalskin' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'portalskinbackground' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'post' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'RSAPrivateKey' => {
            'test' => sub {
@ -160,7 +160,7 @@ qr/^(?:(?:(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][-a-
 m[^(?:(?:\-+\s*BEGIN\s+(?:RSA\s+)?PRIVATE\s+KEY\s*\-+\r?\n)?(?:Proc-Type:.*\r?\nDEK-Info:.*\r?\n[\r\n]*)?[a-zA-Z0-9/\+\r\n]+={0,2}(?:\r?\n\-+\s*END\s+(?:RSA\s+)PRIVATE\s+KEY\s*\-+)?[\r\n]*)?$]s
                  ? 1
                  : ( 1, '__badPemEncoding__' );
-            }
+              }
        },
        'RSAPublicKey' => {
            'test' => sub {
@ -168,7 +168,7 @@ m[^(?:(?:\-+\s*BEGIN\s+(?:RSA\s+)?PRIVATE\s+KEY\s*\-+\r?\n)?(?:Proc-Type:.*\r?\n
 m[^(?:(?:\-+\s*BEGIN\s+PUBLIC\s+KEY\s*\-+\r?\n)?[a-zA-Z0-9/\+\r\n]+={0,2}(?:\r?\n\-+\s*END\s+PUBLIC\s+KEY\s*\-+)?[\r\n]*)?$]s
                  ? 1
                  : ( 1, '__badPemEncoding__' );
-            }
+              }
        },
        'RSAPublicKeyOrCertificate' => {
            'test' => sub {
@ -176,37 +176,37 @@ m[^(?:(?:\-+\s*BEGIN\s+PUBLIC\s+KEY\s*\-+\r?\n)?[a-zA-Z0-9/\+\r\n]+={0,2}(?:\r?\
 m[^(?:(?:\-+\s*BEGIN\s+(?:PUBLIC\s+KEY|CERTIFICATE)\s*\-+\r?\n)?[a-zA-Z0-9/\+\r\n]+={0,2}(?:\r?\n\-+\s*END\s+(?:PUBLIC\s+KEY|CERTIFICATE)\s*\-+)?[\r\n]*)?$]s
                  ? 1
                  : ( 1, '__badPemEncoding__' );
-            }
+              }
        },
        'rule' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'samlAssertion' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'samlAttribute' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'samlIDPMetaDataNode' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'samlService' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'samlSPMetaDataNode' => {
            'test' => sub {
                1;
-            }
+              }
        },
        'select' => {
            'test' => sub {
@ -216,19 +216,19 @@ m[^(?:(?:\-+\s*BEGIN\s+(?:PUBLIC\s+KEY|CERTIFICATE)\s*\-+\r?\n)?[a-zA-Z0-9/\+\r\
                return $test
                  ? 1
                  : ( 1, "Invalid value '$_[0]' for this select" );
-            }
+              }
        },
        'subContainer' => {
            'keyTest' => qr/\w/,
            'test'    => sub {
                1;
-            }
+              }
        },
        'text' => {
            'msgFail' => '__malformedValue__',
            'test'    => sub {
                1;
-            }
+              }
        },
        'trool' => {
            'msgFail' => '__authorizedValues__: -1, 0, 1',
@ -1041,7 +1041,7 @@ qr/^(?:\*\.)?(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][
                            split( /\n/, $@, 0 ) )
                    );
                    return $err ? ( 1, "__badExpression__: $err" ) : 1;
-                }
+                  }
            },
            'type' => 'keyTextContainer'
        },
@ -1216,7 +1216,7 @@ qr/^(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][-a-zA-Z0-
                          and defined $conf->{$_}{$val};
                    }
                    return 1, "__unknownAttrOrMacro__: $val";
-                }
+                  }
            },
            'type' => 'doubleHash'
        },
@ -1504,7 +1504,7 @@ qr/^(?:\*\.)?(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.])*(?:[a-zA-Z][
                            split( /\n/, $@, 0 ) )
                    );
                    return $err ? ( 1, "__badExpression__: $err" ) : 1;
-                }
+                  }
            },
            'type' => 'ruleContainer'
        },
@ -3019,19 +3019,19 @@ qr/(?:(?:https?):\/\/(?:(?:(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.]
            'default' => 0,
            'select'  => [
                {
-                    'k' => '0',
+                    'k' => 0,
                    'v' => 'unsecuredCookie'
                },
                {
-                    'k' => '1',
+                    'k' => 1,
                    'v' => 'securedCookie'
                },
                {
-                    'k' => '2',
+                    'k' => 2,
                    'v' => 'doubleCookie'
                },
                {
-                    'k' => '3',
+                    'k' => 3,
                    'v' => 'doubleCookieForSingleSession'
                }
            ],
--- a/lemonldap-ng-manager/site/htdocs/static/js/conftree.min.js
+++ b/lemonldap-ng-manager/site/htdocs/static/js/conftree.min.js
--- a/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/2F/U2F.pm
+++ b/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/2F/U2F.pm
@ -50,6 +50,9 @@ sub init {
 # Main method
 sub run {
    my ( $self, $req, $token ) = @_;
+    
+    my $checkLogins = $req->param('checkLogins');
+    $self->logger->debug("checkLogins ? $checkLogins");

    # Check if user is registered
    if ( my $res = $self->loadUser( $req, $req->sessionInfo ) ) {
@ -91,7 +94,8 @@ sub run {
            params => {
                SKIN  => $self->conf->{portalSkin},
                DATA  => $data,
-                TOKEN => $token
+                TOKEN => $token,
+                CHECKLOGINS => $checkLogins
            }
        );
        $self->logger->debug("Prepare U2F verification");
--- a/lemonldap-ng-portal/site/templates/bootstrap/u2fcheck.tpl
+++ b/lemonldap-ng-portal/site/templates/bootstrap/u2fcheck.tpl
@ -11,6 +11,7 @@
    <input type="hidden" id="verify-data" name="signature" value="">
    <input type="hidden" id="verify-challenge" name="challenge" value="">
    <input type="hidden" id="token" name="token" value="<TMPL_VAR NAME="TOKEN">">
+    <input type="hidden" id="checkLogins" name="checkLogins" value="<TMPL_VAR NAME="CHECKLOGINS">">
  </form>
  <script type="application/init">
  <TMPL_VAR NAME="DATA">