safebox/guacamole-client
4
0
Fork 0
mirror of https://github.com/gyurix1968/guacamole-client.git synced 2025-10-28 23:53:08 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,608 Commits 1 Branch 0 Tags
d7e91a8ebe294712c031699a9fe4b0ba233c9d1e
Commit Graph

54 Commits

Author SHA1 Message Date
Mike Jumper
e46d06e6b8 GUACAMOLE-1780: Merge changes adding MFA compatibility to SSO support. 2023-07-06 08:27:31 -07:00
James Muehlner
e804e8f95d GUACAMOLE-1829: Correct versions of dependencies for remaining 1.5.2 versioned extensions. 2023-07-05 23:28:34 +00:00
Mike Jumper
993cde2545 Merge 1.5.3 changes back to master. 2023-07-04 09:11:34 -07:00
Virtually Nick
49300d17b4 GUACAMOLE-1816: Bump client versions to 1.5.3. 2023-07-03 13:51:40 -04:00
James Muehlner
97f93fa5c5 GUACAMOLE-1780: Unify session reactivation/invalidation behavior. 2023-06-30 15:35:31 +00:00
James Muehlner
0de694c912 GUACAMOLE-1780: Allow SAML, SSL sessions to be resumed after another auth provider vetoes the auth attempt. 2023-06-27 23:28:09 +00:00
Mike Jumper
d2d9631571 Merge 1.5.3 changes back to master. 2023-06-10 21:22:11 -07:00
Inperpetuammemoriam
846c507ba7 GUACAMOLE-1806: Update Java dependencies to patched versions 
These changes should address the following (potentially relevant)
vulnerabilities:
  - CVE-2022-21724
  - CVE-2022-26520
  - CVE-2022-31197
  - CVE-2022-40151
  - CVE-2022-40152
  - CVE-2022-41946
  - CVE-2023-20861
  - CVE-2023-20862
  - CVE-2023-20863
  - GHSA-673j-qm5f-xpv8
 2023-06-10 09:58:49 +02:00
Mike Jumper
54cea4e80b GUACAMOLE-1790: Bump version numbers of components not within 1.5.2. 2023-05-17 17:00:46 -07:00
James Muehlner
f355c5cfee Merge 1.5.2 changes back to master. 2023-05-17 23:57:32 +00:00
Mike Jumper
0631ff9689 GUACAMOLE-1785: Bump version numbers to 1.5.2. 2023-05-17 16:43:01 -07:00
Mike Jumper
520edb32ee GUACAMOLE-1767: Correct parent project version (bumped to 1.5.1). 2023-04-10 09:12:56 -07:00
Virtually Nick
56c6e5022d Merge 1.5.1 changes back to master. 2023-04-10 10:22:47 -04:00
Mike Jumper
0b4468ba24 GUACAMOLE-1752: Bump version numbers to 1.5.1. 2023-04-09 19:54:19 -07:00
James Muehlner
b980648808 Merge 1.5.1 changes back to master. 2023-04-03 21:40:44 +00:00
Michael Jumper
8ee9ee40dc GUACAMOLE-1763: Update Java dependencies to latest compatible versions. 2023-04-03 14:24:58 -07:00
Michael Jumper
08e5938493 GUACAMOLE-839: Redirect user to proper URI for SSL/TLS client auth (rather than just refuse). 2023-03-28 13:36:15 -07:00
Michael Jumper
e6449d2c57 GUACAMOLE-1757: Ensure SSO provider list is added to login UI only once. 2023-03-23 12:30:58 -07:00
Michael Jumper
f98901f933 GUACAMOLE-839: Add sanity checks around parsed PEM data, which may indeed be null. 2023-03-08 09:34:52 -08:00
Michael Jumper
6424b063f2 GUACAMOLE-839: Correct WildcardURIGuacamoleProperty to correctly handle missing (null) properties. 2023-03-08 09:34:26 -08:00
Michael Jumper
82073a5976 GUACAMOLE-839: Correct typo in JavaDoc of decode() - "valid", not "value". 2023-03-07 16:38:51 -08:00
Michael Jumper
9f8bb71b0e GUACAMOLE-839: Correct JavaDoc for parameters of getUsername(). 2023-03-07 16:37:00 -08:00
Michael Jumper
d0574f8d82 GUACAMOLE-839: Use BouncyCastle for retrieval of certificate details. 
Java's build-in support for reading X.509 certificates does not deal
well with PIV certificates containing the username as a "serialNumber"
attribute. Rather than exposing the string value of that attribute, the
Java implementation exposes a byte array that does not fully match the
string value shown by a tool like OpenSSL.

BouncyCastle, on the other hand, _does_ match the output of OpenSSL, and
provides a predictable means of decoding the certificate.
 2023-03-07 16:36:37 -08:00
Michael Jumper
b9958fa331 GUACAMOLE-839: Include SSL/TLS auth support within SSO dist archive. 2023-03-05 21:38:30 -08:00
Michael Jumper
0b5b82cc48 GUACAMOLE-839: Allow accepted subject DNs to be restricted via configuration. 2023-03-01 09:10:53 -08:00
Michael Jumper
8255326512 GUACAMOLE-839: Move SSL/TLS client auth logic to separate service. 2023-03-01 09:10:53 -08:00
Michael Jumper
38f1360dec GUACAMOLE-839: Ensure SSL/TLS client auth failures are reflected in the Guacamole UI. 2023-03-01 09:10:53 -08:00
Michael Jumper
e2a6947ff6 GUACAMOLE-839: Implement base support for SSO using SSL/TLS authentication (certificates / smart cards). 2023-03-01 09:10:52 -08:00
Michael Jumper
6bf0b8cf63 GUACAMOLE-839: Allow testing of null nonce values. 2023-03-01 09:10:52 -08:00
Michael Jumper
2e8cf82234 GUACAMOLE-839: As with NonceService, ensure each auth session manager instance has its own context and will not validate the sessions of other session managers. 2023-03-01 09:10:52 -08:00
Michael Jumper
e51d548995 GUACAMOLE-839: Ensure each NonceService instance has its own context (will not validate the nonces of other contexts). 2023-03-01 09:10:52 -08:00
Michael Jumper
841190df5a GUACAMOLE-839: Generate case-insensitive nonce values that can safely be used in domains. 2023-03-01 09:10:52 -08:00
Michael Jumper
f2c7d746ea GUACAMOLE-839: Move authentication session management service to internal common SSO library. 2023-03-01 09:10:52 -08:00
Michael Jumper
1015df6b47 GUACAMOLE-839: Move nonce-generation service to internal common SSO library. 2023-03-01 09:10:52 -08:00
Mike Jumper
72b0634a5f GUACAMOLE-1730: Merge Polish translation. 2023-02-04 13:08:30 -08:00
Mike Jumper
9f176ed489 Merge 1.5.0 changes back to master. 2023-01-10 21:52:26 -08:00
Mike Jumper
5ecee2efaa GUACAMOLE-1604: Bump version numbers of all projects to 1.5.0. 2023-01-10 16:40:19 -08:00
jbochenski
c375e6fcee GUACAMOLE-1730: Add polish translation. 2023-01-04 15:32:34 +01:00
James Muehlner
88d9f40a3d Merge 1.5.0 changes back to master. 2022-10-28 21:30:19 +00:00
Mike Jumper
ce9922e08c GUACAMOLE-1594: Update all Java and JavaScript dependencies to latest compatible. 
NOTE: Several WebPack plugins could not be updated as all plugins within
WebPack's "webpack-contrib" have dropped support for WebPack v4
entirely, but Closure Compiler only supports WebPack v4.
 2022-10-27 12:54:58 -07:00
James Muehlner
b35b4d509f GUACAMOLE-1372: Modify usage of SAML library to allow signed requests. 2022-07-28 18:28:58 +00:00
James Muehlner
616cb39682 GUACAMOLE-1372: Throw fatal exception if files are specified but unreadable. 2022-07-05 20:38:11 +00:00
James Muehlner
025e831b3d GUACAMOLE-1372: Add configuration properties for setting private key and cert. 2022-07-05 19:49:54 +00:00
Virtually Nick
52d10b2ba0 GUACAMOLE-773: Merge latest update of Java and JavaScript dependencies. 2021-12-27 07:18:17 -07:00
Michael Jumper
b8d23962d6 GUACAMOLE-773: Update Java dependencies to latest stable, compatible versions. 2021-12-26 17:50:43 -08:00
Michael Jumper
f1e9ee6876 GUACAMOLE-1364: Correct rendering of SSO provider list during invalid login animation. 
The SSO provider list unexpectedly shrinks when the invalid login
"shake" animation plays due to the use of "display: table-row" vs. the
login form's own use of "display: table-cell". Migrating the SSO
provider list to a simple absolutely-positioned div corrects this and
matches the way the Guacamole version is rendered.
 2021-12-26 00:00:38 -08:00
Michael Jumper
5e9e215356 GUACAMOLE-1411: Bump version numbers to 1.4.0. 2021-12-11 16:27:00 -08:00
Michael Jumper
b6696b9dba GUACAMOLE-1364: Extract common SSO resource for IdP redirect. 2021-12-03 21:18:04 -08:00
Michael Jumper
0e9860ecf7 GUACAMOLE-1364: Allow both traditional username/password and SSO. 2021-12-03 20:36:34 -08:00
Michael Jumper
7dc0b3b509 GUACAMOLE-1364: Extract common base SSO classes. 2021-12-03 20:33:32 -08:00