safebox/guacamole-client
4
0
Fork 0
mirror of https://github.com/gyurix1968/guacamole-client.git synced 2025-09-06 05:07:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,770 Commits 1 Branch 0 Tags
13bb5f0e30d396f9e0aa70f367fe8cbc3c4a5fc1
Commit Graph

1702 Commits

Author SHA1 Message Date
Virtually Nick
23a5c9476f GUACAMOLE-839: Merge add webapp SSO support for certificates / smart cards. 2023-03-07 20:59:57 -05:00
Michael Jumper
82073a5976 GUACAMOLE-839: Correct typo in JavaDoc of decode() - "valid", not "value". 2023-03-07 16:38:51 -08:00
Michael Jumper
9f8bb71b0e GUACAMOLE-839: Correct JavaDoc for parameters of getUsername(). 2023-03-07 16:37:00 -08:00
Michael Jumper
d0574f8d82 GUACAMOLE-839: Use BouncyCastle for retrieval of certificate details. 
Java's build-in support for reading X.509 certificates does not deal
well with PIV certificates containing the username as a "serialNumber"
attribute. Rather than exposing the string value of that attribute, the
Java implementation exposes a byte array that does not fully match the
string value shown by a tool like OpenSSL.

BouncyCastle, on the other hand, _does_ match the output of OpenSSL, and
provides a predictable means of decoding the certificate.
 2023-03-07 16:36:37 -08:00
Michael Jumper
b9958fa331 GUACAMOLE-839: Include SSL/TLS auth support within SSO dist archive. 2023-03-05 21:38:30 -08:00
Virtually Nick
e0b59bfcd0 GUACAMOLE-1730: Fix missing comma guacamole-history-recording-storage guac-manifest.json 2023-03-02 19:48:41 -05:00
Michael Jumper
0b5b82cc48 GUACAMOLE-839: Allow accepted subject DNs to be restricted via configuration. 2023-03-01 09:10:53 -08:00
Michael Jumper
8255326512 GUACAMOLE-839: Move SSL/TLS client auth logic to separate service. 2023-03-01 09:10:53 -08:00
Michael Jumper
38f1360dec GUACAMOLE-839: Ensure SSL/TLS client auth failures are reflected in the Guacamole UI. 2023-03-01 09:10:53 -08:00
Michael Jumper
e2a6947ff6 GUACAMOLE-839: Implement base support for SSO using SSL/TLS authentication (certificates / smart cards). 2023-03-01 09:10:52 -08:00
Michael Jumper
6bf0b8cf63 GUACAMOLE-839: Allow testing of null nonce values. 2023-03-01 09:10:52 -08:00
Michael Jumper
2e8cf82234 GUACAMOLE-839: As with NonceService, ensure each auth session manager instance has its own context and will not validate the sessions of other session managers. 2023-03-01 09:10:52 -08:00
Michael Jumper
e51d548995 GUACAMOLE-839: Ensure each NonceService instance has its own context (will not validate the nonces of other contexts). 2023-03-01 09:10:52 -08:00
Michael Jumper
841190df5a GUACAMOLE-839: Generate case-insensitive nonce values that can safely be used in domains. 2023-03-01 09:10:52 -08:00
Michael Jumper
f2c7d746ea GUACAMOLE-839: Move authentication session management service to internal common SSO library. 2023-03-01 09:10:52 -08:00
Michael Jumper
1015df6b47 GUACAMOLE-839: Move nonce-generation service to internal common SSO library. 2023-03-01 09:10:52 -08:00
Mike Jumper
72b0634a5f GUACAMOLE-1730: Merge Polish translation. 2023-02-04 13:08:30 -08:00
Mike Jumper
56b4cc436d GUACAMOLE-1731: Correct parent project version (bumped to 1.5.0). 2023-01-10 23:30:47 -08:00
Mike Jumper
9f176ed489 Merge 1.5.0 changes back to master. 2023-01-10 21:52:26 -08:00
James Muehlner
5966dcae63 GUACAMOLE-1604: Merge version number bumps to 1.5.0. 2023-01-10 17:14:29 -08:00
Mike Jumper
5ecee2efaa GUACAMOLE-1604: Bump version numbers of all projects to 1.5.0. 2023-01-10 16:40:19 -08:00
Mike Jumper
9262a2b33b GUACAMOLE-1594: Update Java dependencies to latest compatible versions. 2023-01-10 16:28:08 -08:00
jbochenski
c375e6fcee GUACAMOLE-1730: Add polish translation. 2023-01-04 15:32:34 +01:00
Mike Jumper
1ea6968882 GUACAMOLE-1488: Merge support for configuring LDAP SSL protocol. 2022-12-11 13:11:49 -08:00
James Muehlner
89945caa5f GUACAMOLE-1723: Simplify active window check; do not refresh from DB during active sessions. 2022-12-09 23:46:59 +00:00
James Muehlner
18d971a837 GUACAMOLE-1723: Enforce access time restrictions for logged in users. 2022-12-02 03:47:18 +00:00
James Muehlner
b9044caf65 GUACAMOLE-1772: Allow user configuration of KSM API call timeout. 2022-11-30 16:37:44 +00:00
James Muehlner
c82ca370e2 GUACAMOLE-1656: Fix user preferences permissioning. 2022-11-22 20:32:18 +00:00
James Muehlner
2f6687cd78 Merge changes from 1.5.0 back to master. 2022-11-09 23:55:35 +00:00
Mike Jumper
4c8ba81c10 GUACAMOLE-1594: Override transitive common-text for LDAP with latest release (1.10.0). 2022-11-06 22:06:22 -08:00
Mike Jumper
6637f4911d GUACAMOLE-1594: Update to Spring Security 5.7.5. 2022-11-06 22:06:17 -08:00
James Muehlner
88d9f40a3d Merge 1.5.0 changes back to master. 2022-10-28 21:30:19 +00:00
Mike Jumper
ce9922e08c GUACAMOLE-1594: Update all Java and JavaScript dependencies to latest compatible. 
NOTE: Several WebPack plugins could not be updated as all plugins within
WebPack's "webpack-contrib" have dropped support for WebPack v4
entirely, but Closure Compiler only supports WebPack v4.
 2022-10-27 12:54:58 -07:00
Michael Jumper
818471ac84 GUACAMOLE-1224: Migrate existing auth-related logging to global event listener. 2022-10-14 16:08:46 -07:00
James Muehlner
b8d2a9edc1 GUACAMOLE-1656: Check if user KSM config is null before constructing a client. 2022-09-29 03:12:20 +00:00
Mike Jumper
6c43611f51 GUACAMOLE-1656: Merge support for per-user KSM vaults. 2022-09-28 15:06:40 -07:00
James Muehlner
06d321fe5d GUCAMOLE-1656: Do not expose the KSM config blob through the REST API. 2022-09-28 21:55:32 +00:00
James Muehlner
8a7bde8e9c GUACAMOLE-1656: Simplify, clean up, and improve documentation of KSM code. 2022-09-23 23:19:41 +00:00
Michael Jumper
719e957be1 GUACAMOLE-990: Guarantee auth banning occurs before all other auth processing. 2022-09-12 09:17:32 -07:00
James Muehlner
dfc7e6dd90 GUACAMOLE-1656: Simplify auto-refresh behavior in JDBC auth provider. 2022-08-26 18:12:23 +00:00
James Muehlner
3790d76fc9 GUACAMOLE-1656: Force refresh the user context on updateUserContext to ensure that any modified user attributes are picked up. 2022-08-26 18:12:21 +00:00
James Muehlner
33f2b499ef GUACAMOLE-1656: Fall back to user KSM config for single value fetch. 2022-08-26 18:11:40 +00:00
James Muehlner
87cd7fbe22 GUACAMOLE-1656: Remove user attributes header; it does not look good. 2022-08-26 18:07:46 +00:00
James Muehlner
e4c65cba19 GUACAMOLE-1656: Add per-user KSM vault functionality. 2022-08-26 18:07:43 +00:00
Mike Jumper
6b03b113a9 GUACAMOLE-1661: Merge support for indexing KSM records by user domain. 2022-08-25 09:07:45 -07:00
James Muehlner
c7bb1cb50c GUACAMOLE-1661: Parse config only once when iterating records. 2022-08-25 00:03:18 +00:00
James Muehlner
2b997a9992 GUACAMOLE-1661: Restore logic to not index records by login if hostname is already defined. 2022-08-24 19:03:16 +00:00
James Muehlner
e0a9364dde GUACAMOLE-1661: Simplify and clarify KSM domain search code. 2022-08-24 18:53:21 +00:00
James Muehlner
a99a76568b GUACAMOLE-990: Merge new guacamole-auth-ban extension to block brute-force auth attempts. 2022-08-22 15:57:33 -07:00
Michael Jumper
2e5d3f4faf GUACAMOLE-990: Disable tracking if max addresses is not a positive integer. 2022-08-22 15:16:46 -07:00