3f0d9484b7
If is user using 2FA the basic URL user and pass method fails.
...
https://github.com/Ylianst/MeshCentral/issues/4870
If user has 2FA enabled and tries to login with URL parameters then the login should fail.
2023-07-05 19:15:18 +02:00
181d4db0fe
add oidc options from config if they exist
2023-05-21 22:18:53 -03:00
775568c7a7
Added Windows ARM 64bit support.
2023-04-14 13:36:34 -07:00
d698760d30
Fix pluginHandler access
2023-02-01 14:04:23 +01:00
a8f89e1068
Add hook to allow adding custom api endpoints to Express routing
2023-01-27 12:28:33 +01:00
b52385406f
Removed debug line.
2022-12-15 19:45:45 -08:00
79faaaee1f
Fixed various server exceptions.
2022-12-10 12:02:33 -08:00
b5338b746a
fix: AMT Direct TLS connection and Digest authentication
...
- fix: ensure TLS is used when TLS is enabled
- add constants.SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION for TLS client connection for newer Nodejs
- ensure nc of AMT redirection Digest authentication to have at 8 bytes length
2022-11-15 14:12:12 -07:00
c1b59294cf
Added displayname handling to SAML strategy
2022-11-06 09:50:24 +03:00
99fc690f4b
Tuned HTTPS cipher suites to get A+ on SSL labs testing."
2022-11-02 22:36:03 -07:00
3a22bfbc24
Fixed issue with TLS certificate that had an no issuer CN ( #4681 )
2022-11-02 10:45:10 -07:00
e74a308113
Added relay right and fixed relay permissions ( #4682 )
2022-11-01 16:05:36 -07:00
0c2c55726e
Fixed web relay when used with local device group.
2022-11-01 14:23:46 -07:00
6f234f83fc
Fixed handleStrategyLogin() server exception.
2022-10-26 14:45:22 -07:00
41fb7d4f42
Fixed guest web relay session revocation ( #4667 )
2022-10-25 11:14:26 -07:00
392c34bbd0
Updated MeshCentral Router to support messaging 2FA ( #4650 )
2022-10-24 07:13:20 -07:00
e2cf723c6a
Added support for 2FA messaging ( #4650 )
2022-10-22 12:59:12 -07:00
7e3dce0ef7
First pass at adding Telegram support ( #4650 )
2022-10-22 07:23:55 -07:00
1abaa54b62
Merge pull request #4521 from mstrhakr/bug-4520
...
BUG: Fix handleStrategyLogin checking undefined property.
2022-09-07 08:10:28 -07:00
8a34b88151
Typo???? Please check!
2022-09-07 10:41:20 -04:00
597c67bb1f
typo squashing
2022-09-07 10:40:36 -04:00
b0ec3af9bb
Fix checking sub property before parent property
...
fixes bug 4520
2022-09-07 10:31:02 -04:00
25345fe6b5
fix bug with required group + debug cleanup
2022-09-06 17:58:37 -04:00
1ae01b2113
Added LDAP site admin support, OpenID samples and schema and more ( #4506 )
2022-09-06 00:30:07 -07:00
5619948d31
Added Group Support to OIDC
...
Supports choosing groups to..
-Allow or restrict login to server
-Sync with user groups (with / without filter)
-Grant or revoke site admin privileges
2022-09-06 00:29:22 -04:00
60ee315b79
actually working discovery
2022-09-04 19:41:14 -04:00
7ec476ec4d
initial working discovery
...
if user is missing info, we will discover it automatically using well-known endpoints
2022-09-04 15:18:53 -04:00
c8774e700b
update oidc scope
...
passport-openidconnect adds the 'openid' scope to the request, regardless of if its already there.
removed 'openid' scope
removed unused 'groups' scope
2022-09-03 18:22:26 -04:00
d1e04a7ca7
Fixed SSPI authentication exception.
2022-09-03 00:32:49 -07:00
49e04bd454
Improved user authentication log and added 'authlog' tracing.
2022-09-01 22:06:08 -07:00
03e15c6be1
update oidc passport module
...
Updated to official passport-openidconnect module, removed custom module.
2022-08-31 23:51:24 -04:00
d4d1f7d454
MeshCMD is now signed using the MeshCentral code signing cert.
2022-08-31 01:36:23 -07:00
0bf459bb51
Many web relay improvements and fixes ( #4467 , #4456 )
2022-08-30 17:53:27 -07:00
f7dc1d749b
Added 'keepcerts' option to force keeping HTTPS/MPS cert.
2022-08-26 15:43:12 -07:00
4fe394226c
Improved web relay sharing ( #4413 )
2022-08-25 21:10:09 -07:00
5d7fabfc21
Added guest web sharing of HTTP/HTTPS ( #4413 )
2022-08-25 20:11:47 -07:00
6b1b034c61
Fixed device sharing links when using in LAN mode.
2022-08-24 14:10:40 -07:00
fcfe4d964e
Intel AMT tab will now show up in the correct language if available.
2022-08-22 13:06:25 -07:00
334a9b8321
Added LDAPSyncWithUserGroups to config.json schema ( #4415 )
2022-08-22 11:57:11 -07:00
00765288e6
Added LDAP membership user group sync options ( #4415 )
2022-08-22 11:43:45 -07:00
6b4179c20c
Added LDAP debug improvements.
2022-08-21 22:19:57 -07:00
8dd07495f5
MeshCentral will now auto-create LDAP user groups and sync users to their membership groups when the login using LDAP. ( #4415 )
2022-08-21 21:19:34 -07:00
daa4c60b77
You can now restrict what LDAP users can login based on LDAP membership groups ( #4415 )
2022-08-21 14:05:51 -07:00
8d1eab20e5
Logout will not redirect to /login ( #4420 )
2022-08-21 00:41:17 -07:00
ab84719afe
Fixed saving run command dialog state on the server.
2022-08-19 13:42:44 -07:00
0ae91ede62
Fix for SAML ( #4408 )
2022-08-18 00:37:39 -07:00
4092615c63
Fixed auth strategies when using with a second domain with a DNS ( #4404 )
2022-08-17 14:14:56 -07:00
2c9fcdbfd0
Fixed U2F server exception ( #4346 )
2022-07-31 11:25:28 -07:00
c8d8fc422c
When doing session IP address checkingin default 'lax' mode, if both addresses are private/loopback, it's now accepted as a match.
2022-07-28 15:12:28 -07:00
ddbd76e254
Fix for #4307
...
Added missing equals sign when checking null session
2022-07-22 23:01:43 +00:00
jirijanata
Gaston Meghinasso
Ylian Saint-Hilaire
Martin Mädler
Joko Sastriawan
Антон Мороз
silversword411
mstrhakr
Daniel Castellanos