new configuration version
This commit is contained in:
haburger
parent
6b091b12ac
commit
a92639f998
|
|
@ -45,7 +45,7 @@ spec:
|
|||
podDisruptionBudget:
|
||||
maxUnavailable: "50%"
|
||||
git:
|
||||
tag: "r-d6689c49db9000249e5cdb88008dd4a767ab0b79"
|
||||
tag: "r-868174843070c36c5da54e3a43d558da046b6ce7"
|
||||
dir: "DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/auth"
|
||||
credentials: "git-credentials"
|
||||
keystores:
|
||||
|
|
|
|||
|
|
@ -38,7 +38,7 @@ fido2_auth.instruction2=An authentication window will appear
|
|||
fido2_auth.instruction3=Follow the instructions
|
||||
fido2_auth.skipInstructions=Skip instructions next time
|
||||
fido2_auth.switchLogin=SWITCH TO LOGIN WITH
|
||||
footer.link=https://agov.ch/?c=contact&l=en
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Authentication service of Swiss authorities AGOV - a collaboration between cantons, their municipalities, and the federal administration. -
|
||||
general.AGOVAccessApp=AGOV access app
|
||||
|
|
|
|||
|
|
@ -38,7 +38,7 @@ fido2_auth.instruction2=Ein Authentifizierungsfenster wird erscheinen
|
|||
fido2_auth.instruction3=Folgen Sie den Anweisungen
|
||||
fido2_auth.skipInstructions=Anweisungen nächstes Mal überspringen
|
||||
fido2_auth.switchLogin=WECHSEL ZU LOGIN MIT
|
||||
footer.link=https://agov.ch/?c=contact&l=de
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Kontakt
|
||||
footer.text=Authentifizierungsdienst der Schweizer Behörden AGOV – eine Zusammenarbeit zwischen den Kantonen, deren Gemeinden und der Bundesverwaltung. -
|
||||
general.AGOVAccessApp=AGOV access App
|
||||
|
|
|
|||
|
|
@ -38,7 +38,7 @@ fido2_auth.instruction2=An authentication window will appear
|
|||
fido2_auth.instruction3=Follow the instructions
|
||||
fido2_auth.skipInstructions=Skip instructions next time
|
||||
fido2_auth.switchLogin=SWITCH TO LOGIN WITH
|
||||
footer.link=https://agov.ch/?c=contact&l=en
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Authentication service of Swiss authorities AGOV - a collaboration between cantons, their municipalities, and the federal administration. -
|
||||
general.AGOVAccessApp=AGOV access app
|
||||
|
|
|
|||
|
|
@ -38,7 +38,7 @@ fido2_auth.instruction2=Une fenêtre d'authentification s'affichera
|
|||
fido2_auth.instruction3=Suivez les instructions
|
||||
fido2_auth.skipInstructions=Passer les instructions la fois suivante
|
||||
fido2_auth.switchLogin=S'AUTHENTIFIER AVEC
|
||||
footer.link=https://agov.ch/?c=contact&l=fr
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Service d'authentification des autorités suisses AGOV - une collaboration entre les cantons, leurs communes et l'administration fédérale. -
|
||||
general.AGOVAccessApp=Application AGOV access
|
||||
|
|
|
|||
|
|
@ -38,7 +38,7 @@ fido2_auth.instruction2=A breve si aprirà una finestra per l'autenticazio
|
|||
fido2_auth.instruction3=Seguire le istruzioni.
|
||||
fido2_auth.skipInstructions=Non mostrare più le istruzioni
|
||||
fido2_auth.switchLogin=ACCEDERE CON
|
||||
footer.link=https://agov.ch/?c=contact&l=it
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contatto
|
||||
footer.text=Servizio di autenticazione delle autorità Svizzere AGOV - una collaborazione tra Cantoni, Comuni e l'Amministrazione federale. -
|
||||
general.AGOVAccessApp=App AGOV access
|
||||
|
|
|
|||
|
|
@ -594,13 +594,13 @@
|
|||
<!-- source: pattern://24cbc652d3166c8374eda3cd -->
|
||||
<Response value="AUTH_ERROR"/>
|
||||
<!-- source: pattern://24cbc652d3166c8374eda3cd -->
|
||||
<property name="condition:emailaddressDidntChange" value="#{ notes.getProperty('saml.attributes.http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress', 'missing').equals(sess.get('ch.nevis.idm.User.email')) }"/>
|
||||
<property name="condition:emailaddressDidntChange" value="#{ !sess.containsKey('idp.email') or sess.get('idp.email').equals(sess.get('ch.nevis.idm.User.email')) }"/>
|
||||
<!-- source: pattern://24cbc652d3166c8374eda3cd -->
|
||||
<property name="condition:givennameDidntChange" value="#{ notes.getProperty('saml.attributes.http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname', 'missing').equals(sess.get('ch.nevis.idm.User.firstName')) }"/>
|
||||
<property name="condition:givennameDidntChange" value="#{ !sess.containsKey('idp.firstName') or sess.get('idp.firstName').equals(sess.get('ch.nevis.idm.User.firstName')) }"/>
|
||||
<!-- source: pattern://24cbc652d3166c8374eda3cd -->
|
||||
<property name="condition:surnameDidntChange" value="#{ notes.getProperty('saml.attributes.http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname', 'missing').equals(sess.get('ch.nevis.idm.User.lastName')) }"/>
|
||||
<property name="condition:surnameDidntChange" value="#{ !sess.containsKey('idp.lastName') or sess.get('idp.lastName').equals(sess.get('ch.nevis.idm.User.lastName')) }"/>
|
||||
<!-- source: pattern://24cbc652d3166c8374eda3cd -->
|
||||
<property name="condition:languageDidntChange" value="#{ notes.getProperty('saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/languageOfCorrespondance', 'missing').equals(sess.get('ch.nevis.idm.User.language')) }"/>
|
||||
<property name="condition:languageDidntChange" value="#{ !sess.containsKey('idp.language') or sess.get('idp.language').equals(sess.get('ch.nevis.idm.User.language')) }"/>
|
||||
</AuthState>
|
||||
<AuthState name="SAML_SP_nevisidm_operations_Realm_UpdateUserIfNeeded_Update" class="ch.nevis.idm.authstate.IdmSetPropertiesState" final="false" resumeState="false">
|
||||
<!-- source: pattern://24cbc652d3166c8374eda3cd -->
|
||||
|
|
|
|||
|
|
@ -1,10 +1,10 @@
|
|||
try {
|
||||
def s = request.getAuthSession(true)
|
||||
|
||||
LOG.info("operationsExtId: ${notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/operationsUserExtId']}")
|
||||
LOG.info("operationsUserProfileExtIdList: ${notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/operationsUserProfileExtId']}")
|
||||
|
||||
LOG.debug("operationsExtId: ${notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/operationsUserExtId']}")
|
||||
LOG.debug("operationsUserProfileExtIdList: ${notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/operationsUserProfileExtId']}")
|
||||
|
||||
// set operation's account extId and profile extid
|
||||
if (notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/operationsUserExtId'] == null || notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/operationsUserProfileExtId'] == null) {
|
||||
LOG.error("[OPACCESS] User ${notes['saml.assertion.subject']} tried to access without operations account or profile")
|
||||
response.setResult('error');
|
||||
|
|
@ -13,6 +13,20 @@ try {
|
|||
|
||||
response.setSessionAttribute('operationsExtId', notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/operationsUserExtId'])
|
||||
|
||||
// extract additional attributes from assertion in session
|
||||
if (notes['saml.attributes.http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname']) {
|
||||
response.setSessionAttribute('idp.firstName', notes['saml.attributes.http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname'])
|
||||
}
|
||||
if (notes['saml.attributes.http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname']) {
|
||||
response.setSessionAttribute('idp.lastName', notes['saml.attributes.http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname'])
|
||||
}
|
||||
if (notes['saml.attributes.http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress']) {
|
||||
response.setSessionAttribute('idp.email', notes['saml.attributes.http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress'])
|
||||
}
|
||||
if (notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/languageOfCorrespondance']) {
|
||||
response.setSessionAttribute('idp.language', notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/languageOfCorrespondance'])
|
||||
}
|
||||
|
||||
// we take the first one, if there is no profile in the operations unit
|
||||
def unitAndProfileExtidPar = notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/operationsUserProfileExtId']
|
||||
.split(',').find{pairstr -> pairstr.split("\\\\")[1] == "130274ee-7e24-4050-9b94-d5717ef52ade" }
|
||||
|
|
@ -22,8 +36,21 @@ try {
|
|||
{
|
||||
LOG.info("[OPACCESS] User ${notes['saml.assertion.subject']} with opaccount ${notes['saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/operationsUserExtId']} has no operations profile, we use the first one")
|
||||
}
|
||||
|
||||
response.setSessionAttribute('operationsProfileExtId', unitAndProfileExtidPar.split("\\\\")[0])
|
||||
|
||||
// ad role based on agov aq level
|
||||
def acrToRoleMap = [ 'urn:qa.agov.ch:names:tc:ac:classes:100':'AGOV-Loi.level100',
|
||||
'urn:qa.agov.ch:names:tc:ac:classes:200':'AGOV-Loi.level200',
|
||||
'urn:qa.agov.ch:names:tc:ac:classes:300':'AGOV-Loi.level300',
|
||||
'urn:qa.agov.ch:names:tc:ac:classes:400':'AGOV-Loi.level400',
|
||||
'urn:qa.agov.ch:names:tc:ac:classes:500':'AGOV-Loi.level500'
|
||||
]
|
||||
|
||||
if (acrToRoleMap[session['ch.nevis.auth.saml.assertion.authnContextClassRef']?='none']) {
|
||||
response.addActualRole(acrToRoleMap[session['ch.nevis.auth.saml.assertion.authnContextClassRef']])
|
||||
}
|
||||
|
||||
|
||||
response.setResult('ok');
|
||||
|
||||
} catch(Exception ex) {
|
||||
|
|
|
|||
|
|
@ -46,7 +46,7 @@ spec:
|
|||
podDisruptionBudget:
|
||||
maxUnavailable: "50%"
|
||||
git:
|
||||
tag: "r-85921ce48ff2018a206d8d347bce4588d9d5e8a1"
|
||||
tag: "r-868174843070c36c5da54e3a43d558da046b6ce7"
|
||||
dir: "DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/idm-job"
|
||||
credentials: "git-credentials"
|
||||
keystores:
|
||||
|
|
|
|||
|
|
@ -5,12 +5,14 @@
|
|||
<list>
|
||||
<ref bean="IDM_Prune_History_Job"/>
|
||||
<ref bean="pruneShadowAccountsJob"/>
|
||||
<ref bean="pruneOperationsAccountsJob"/>
|
||||
</list>
|
||||
</property>
|
||||
<property name="triggers">
|
||||
<list>
|
||||
<ref bean="IDM_Prune_History_Job_Trigger"/>
|
||||
<ref bean="pruneShadowAccountsJobTrigger"/>
|
||||
<ref bean="pruneOperationsAccountsJobTrigger"/>
|
||||
</list>
|
||||
</property>
|
||||
<property name="dataSource">
|
||||
|
|
@ -72,6 +74,29 @@
|
|||
</bean>
|
||||
</property>
|
||||
</bean>
|
||||
<bean class="org.springframework.scheduling.quartz.JobDetailFactoryBean" id="pruneOperationsAccountsJob">
|
||||
<property name="description" value="Archive and delete obsolete shadow accounts"/>
|
||||
<property name="jobClass" value="ch.nevis.idm.batch.jobs.UpdateUserStateJob"/>
|
||||
<property name="durability" value="true"/>
|
||||
<property name="jobDataMap">
|
||||
<bean class="org.quartz.JobDataMap">
|
||||
<constructor-arg>
|
||||
<map>
|
||||
<entry key="daysNoActivity" value="-1"/>
|
||||
<entry key="considerUsersNeverLoggedIn" value="true"/>
|
||||
<entry key="sendWarning" value="false"/>
|
||||
<entry key="daysGracePeriod" value="1"/>
|
||||
<entry key="daysStatusDisabled" value="30"/>
|
||||
<entry key="daysStatusArchived" value="335"/>
|
||||
<entry key="disableOutdatedUsers" value="true"/>
|
||||
<entry key="disableNotYetActiveUsers" value="false"/>
|
||||
<entry key="excludeTechnicalUsers" value="true"/>
|
||||
<entry key="restrictToClients" value="d9a334a6-b6f5-4982-a24e-13ae095a60fa"/>
|
||||
</map>
|
||||
</constructor-arg>
|
||||
</bean>
|
||||
</property>
|
||||
</bean>
|
||||
<bean class="org.springframework.scheduling.quartz.CronTriggerFactoryBean" id="IDM_Prune_History_Job_Trigger">
|
||||
<property name="name" value="IDM_Prune_History_Job_Trigger"/>
|
||||
<property name="description" value="Generated by nevisAdmin 4 pattern 0957497767812057fbf138cf"/>
|
||||
|
|
@ -84,4 +109,9 @@
|
|||
<property name="jobDetail" ref="pruneShadowAccountsJob"/>
|
||||
<property name="cronExpression" value="30 0 0 * * ?"/>
|
||||
</bean>
|
||||
<bean class="org.springframework.scheduling.quartz.CronTriggerFactoryBean" id="pruneOperationsAccountsJobTrigger">
|
||||
<property name="description" value="Archive and delete obsolete operations accounts"/>
|
||||
<property name="jobDetail" ref="pruneOperationsAccountsJob"/>
|
||||
<property name="cronExpression" value="30 1 0 * * ?"/>
|
||||
</bean>
|
||||
</beans>
|
||||
|
|
|
|||
|
|
@ -46,7 +46,7 @@ spec:
|
|||
podDisruptionBudget:
|
||||
maxUnavailable: "50%"
|
||||
git:
|
||||
tag: "r-85921ce48ff2018a206d8d347bce4588d9d5e8a1"
|
||||
tag: "r-868174843070c36c5da54e3a43d558da046b6ce7"
|
||||
dir: "DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/idm"
|
||||
credentials: "git-credentials"
|
||||
keystores:
|
||||
|
|
|
|||
|
|
@ -3,9 +3,9 @@
|
|||
"scope": "USER_GLOBAL",
|
||||
"encrypted": false,
|
||||
"propagated": false,
|
||||
|
||||
"uniquenessScope": "ABSOLUTE",
|
||||
"accessCreate": "READ_WRITE",
|
||||
"accessModify": "READ_WRITE",
|
||||
"accessModify": "READ_ONLY",
|
||||
"clientExtId": "9f30aa08-4c53-458c-b144-90c16dc5ed6e",
|
||||
|
||||
"maxLength": "50",
|
||||
|
|
|
|||
|
|
@ -44,7 +44,7 @@ spec:
|
|||
podDisruptionBudget:
|
||||
maxUnavailable: "50%"
|
||||
git:
|
||||
tag: "r-85921ce48ff2018a206d8d347bce4588d9d5e8a1"
|
||||
tag: "r-868174843070c36c5da54e3a43d558da046b6ce7"
|
||||
dir: "DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/logrend"
|
||||
credentials: "git-credentials"
|
||||
podSecurity:
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=An authentication window will appear
|
|||
fido2_auth.instruction3=Follow the instructions
|
||||
fido2_auth.skipInstructions=Skip instructions next time
|
||||
fido2_auth.switchLogin=SWITCH TO LOGIN WITH
|
||||
footer.link=https://agov.ch/?c=contact&l=en
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Authentication service of Swiss authorities AGOV - a collaboration between cantons, their municipalities, and the federal administration. -
|
||||
general.AGOVAccessApp=AGOV access app
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=Ein Authentifizierungsfenster wird erscheinen
|
|||
fido2_auth.instruction3=Folgen Sie den Anweisungen
|
||||
fido2_auth.skipInstructions=Anweisungen nächstes Mal überspringen
|
||||
fido2_auth.switchLogin=WECHSEL ZU LOGIN MIT
|
||||
footer.link=https://agov.ch/?c=contact&l=de
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Kontakt
|
||||
footer.text=Authentifizierungsdienst der Schweizer Behörden AGOV – eine Zusammenarbeit zwischen den Kantonen, deren Gemeinden und der Bundesverwaltung. -
|
||||
general.AGOVAccessApp=AGOV access App
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=An authentication window will appear
|
|||
fido2_auth.instruction3=Follow the instructions
|
||||
fido2_auth.skipInstructions=Skip instructions next time
|
||||
fido2_auth.switchLogin=SWITCH TO LOGIN WITH
|
||||
footer.link=https://agov.ch/?c=contact&l=en
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Authentication service of Swiss authorities AGOV - a collaboration between cantons, their municipalities, and the federal administration. -
|
||||
general.AGOVAccessApp=AGOV access app
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=Une fenêtre d'authentification s'affichera
|
|||
fido2_auth.instruction3=Suivez les instructions
|
||||
fido2_auth.skipInstructions=Passer les instructions la fois suivante
|
||||
fido2_auth.switchLogin=S'AUTHENTIFIER AVEC
|
||||
footer.link=https://agov.ch/?c=contact&l=fr
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Service d'authentification des autorités suisses AGOV - une collaboration entre les cantons, leurs communes et l'administration fédérale. -
|
||||
general.AGOVAccessApp=Application AGOV access
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=A breve si aprirà una finestra per l'autenticazio
|
|||
fido2_auth.instruction3=Seguire le istruzioni.
|
||||
fido2_auth.skipInstructions=Non mostrare più le istruzioni
|
||||
fido2_auth.switchLogin=ACCEDERE CON
|
||||
footer.link=https://agov.ch/?c=contact&l=it
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contatto
|
||||
footer.text=Servizio di autenticazione delle autorità Svizzere AGOV - una collaborazione tra Cantoni, Comuni e l'Amministrazione federale. -
|
||||
general.AGOVAccessApp=App AGOV access
|
||||
|
|
|
|||
|
|
@ -3,7 +3,7 @@
|
|||
$text.get("footer.text")
|
||||
<a target="_blank" class='text-hyperlink dark:text-dark-hyperlink underline' href='$text.get("footer.link")'>$text.get("footer.link.label")</a>
|
||||
</div>
|
||||
<p>1.7.1.27-20241029T194727Z</p>
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="${login.appDataPath}/static/bundle.js"></script>
|
||||
</body>
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=An authentication window will appear
|
|||
fido2_auth.instruction3=Follow the instructions
|
||||
fido2_auth.skipInstructions=Skip instructions next time
|
||||
fido2_auth.switchLogin=SWITCH TO LOGIN WITH
|
||||
footer.link=https://agov.ch/?c=contact&l=en
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Authentication service of Swiss authorities AGOV - a collaboration between cantons, their municipalities, and the federal administration. -
|
||||
general.AGOVAccessApp=AGOV access app
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=Ein Authentifizierungsfenster wird erscheinen
|
|||
fido2_auth.instruction3=Folgen Sie den Anweisungen
|
||||
fido2_auth.skipInstructions=Anweisungen nächstes Mal überspringen
|
||||
fido2_auth.switchLogin=WECHSEL ZU LOGIN MIT
|
||||
footer.link=https://agov.ch/?c=contact&l=de
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Kontakt
|
||||
footer.text=Authentifizierungsdienst der Schweizer Behörden AGOV – eine Zusammenarbeit zwischen den Kantonen, deren Gemeinden und der Bundesverwaltung. -
|
||||
general.AGOVAccessApp=AGOV access App
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=An authentication window will appear
|
|||
fido2_auth.instruction3=Follow the instructions
|
||||
fido2_auth.skipInstructions=Skip instructions next time
|
||||
fido2_auth.switchLogin=SWITCH TO LOGIN WITH
|
||||
footer.link=https://agov.ch/?c=contact&l=en
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Authentication service of Swiss authorities AGOV - a collaboration between cantons, their municipalities, and the federal administration. -
|
||||
general.AGOVAccessApp=AGOV access app
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=Une fenêtre d'authentification s'affichera
|
|||
fido2_auth.instruction3=Suivez les instructions
|
||||
fido2_auth.skipInstructions=Passer les instructions la fois suivante
|
||||
fido2_auth.switchLogin=S'AUTHENTIFIER AVEC
|
||||
footer.link=https://agov.ch/?c=contact&l=fr
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Service d'authentification des autorités suisses AGOV - une collaboration entre les cantons, leurs communes et l'administration fédérale. -
|
||||
general.AGOVAccessApp=Application AGOV access
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=A breve si aprirà una finestra per l'autenticazio
|
|||
fido2_auth.instruction3=Seguire le istruzioni.
|
||||
fido2_auth.skipInstructions=Non mostrare più le istruzioni
|
||||
fido2_auth.switchLogin=ACCEDERE CON
|
||||
footer.link=https://agov.ch/?c=contact&l=it
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contatto
|
||||
footer.text=Servizio di autenticazione delle autorità Svizzere AGOV - una collaborazione tra Cantoni, Comuni e l'Amministrazione federale. -
|
||||
general.AGOVAccessApp=App AGOV access
|
||||
|
|
|
|||
|
|
@ -3,7 +3,7 @@
|
|||
$text.get("footer.text")
|
||||
<a target="_blank" class='text-hyperlink dark:text-dark-hyperlink underline' href='$text.get("footer.link")'>$text.get("footer.link.label")</a>
|
||||
</div>
|
||||
<p>1.7.1.27-20241029T194727Z</p>
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="${login.appDataPath}/static/bundle.js"></script>
|
||||
</body>
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=An authentication window will appear
|
|||
fido2_auth.instruction3=Follow the instructions
|
||||
fido2_auth.skipInstructions=Skip instructions next time
|
||||
fido2_auth.switchLogin=SWITCH TO LOGIN WITH
|
||||
footer.link=https://agov.ch/?c=contact&l=en
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Authentication service of Swiss authorities AGOV - a collaboration between cantons, their municipalities, and the federal administration. -
|
||||
general.AGOVAccessApp=AGOV access app
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=Ein Authentifizierungsfenster wird erscheinen
|
|||
fido2_auth.instruction3=Folgen Sie den Anweisungen
|
||||
fido2_auth.skipInstructions=Anweisungen nächstes Mal überspringen
|
||||
fido2_auth.switchLogin=WECHSEL ZU LOGIN MIT
|
||||
footer.link=https://agov.ch/?c=contact&l=de
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Kontakt
|
||||
footer.text=Authentifizierungsdienst der Schweizer Behörden AGOV – eine Zusammenarbeit zwischen den Kantonen, deren Gemeinden und der Bundesverwaltung. -
|
||||
general.AGOVAccessApp=AGOV access App
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=An authentication window will appear
|
|||
fido2_auth.instruction3=Follow the instructions
|
||||
fido2_auth.skipInstructions=Skip instructions next time
|
||||
fido2_auth.switchLogin=SWITCH TO LOGIN WITH
|
||||
footer.link=https://agov.ch/?c=contact&l=en
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Authentication service of Swiss authorities AGOV - a collaboration between cantons, their municipalities, and the federal administration. -
|
||||
general.AGOVAccessApp=AGOV access app
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=Une fenêtre d'authentification s'affichera
|
|||
fido2_auth.instruction3=Suivez les instructions
|
||||
fido2_auth.skipInstructions=Passer les instructions la fois suivante
|
||||
fido2_auth.switchLogin=S'AUTHENTIFIER AVEC
|
||||
footer.link=https://agov.ch/?c=contact&l=fr
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contact
|
||||
footer.text=Service d'authentification des autorités suisses AGOV - une collaboration entre les cantons, leurs communes et l'administration fédérale. -
|
||||
general.AGOVAccessApp=Application AGOV access
|
||||
|
|
|
|||
|
|
@ -33,7 +33,7 @@ fido2_auth.instruction2=A breve si aprirà una finestra per l'autenticazio
|
|||
fido2_auth.instruction3=Seguire le istruzioni.
|
||||
fido2_auth.skipInstructions=Non mostrare più le istruzioni
|
||||
fido2_auth.switchLogin=ACCEDERE CON
|
||||
footer.link=https://agov.ch/?c=contact&l=it
|
||||
footer.link=https://agov.ch
|
||||
footer.link.label=Contatto
|
||||
footer.text=Servizio di autenticazione delle autorità Svizzere AGOV - una collaborazione tra Cantoni, Comuni e l'Amministrazione federale. -
|
||||
general.AGOVAccessApp=App AGOV access
|
||||
|
|
|
|||
|
|
@ -3,7 +3,7 @@
|
|||
$text.get("footer.text")
|
||||
<a target="_blank" class='text-hyperlink dark:text-dark-hyperlink underline' href='$text.get("footer.link")'>$text.get("footer.link.label")</a>
|
||||
</div>
|
||||
<p>1.7.1.27-20241029T194727Z</p>
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="${login.appDataPath}/static/bundle.js"></script>
|
||||
</body>
|
||||
|
|
|
|||
|
|
@ -46,7 +46,7 @@ spec:
|
|||
podDisruptionBudget:
|
||||
maxUnavailable: "50%"
|
||||
git:
|
||||
tag: "r-85921ce48ff2018a206d8d347bce4588d9d5e8a1"
|
||||
tag: "r-868174843070c36c5da54e3a43d558da046b6ce7"
|
||||
dir: "DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/proxy-idm"
|
||||
credentials: "git-credentials"
|
||||
keystores:
|
||||
|
|
|
|||
|
|
@ -61,10 +61,10 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">You are not authorised to access this
|
||||
application.</p>
|
||||
</div>
|
||||
|
||||
<!-- TODO update here when italian is available -->
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -58,10 +58,10 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">The page you are looking for does not
|
||||
exist.</p>
|
||||
</div>
|
||||
|
||||
<!-- TODO update here when italian is available -->
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -59,10 +59,10 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">We are working on it. Please try again
|
||||
later.</p>
|
||||
</div>
|
||||
|
||||
<!-- TODO update here when italian is available -->
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -60,10 +60,10 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">We are working on it. Please try again
|
||||
later.</p>
|
||||
</div>
|
||||
|
||||
<!-- TODO update here when italian is available -->
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -58,7 +58,9 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">You have been successfully logged out.</p>
|
||||
</div>
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -64,10 +64,10 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">Your session has timed out. Please close
|
||||
this window and try logging in again.</p>
|
||||
</div>
|
||||
|
||||
<!-- TODO update here when italian is available -->
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -62,7 +62,9 @@
|
|||
later.</p>
|
||||
</div>
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -46,7 +46,7 @@ spec:
|
|||
podDisruptionBudget:
|
||||
maxUnavailable: "50%"
|
||||
git:
|
||||
tag: "r-85921ce48ff2018a206d8d347bce4588d9d5e8a1"
|
||||
tag: "r-868174843070c36c5da54e3a43d558da046b6ce7"
|
||||
dir: "DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/proxy-sp"
|
||||
credentials: "git-credentials"
|
||||
keystores:
|
||||
|
|
|
|||
|
|
@ -116,6 +116,21 @@
|
|||
<param-value>false</param-value>
|
||||
</init-param>
|
||||
</filter>
|
||||
<!-- source: pattern://088e03c92ee8a5168b030e9e -->
|
||||
<filter>
|
||||
<filter-name>Authorization_Required_Roles_AGOV-Loi.level300_AGOV-Loi.level400_AGOV-Loi.level500_SAML_SP_nevisidm_operations_Realm</filter-name>
|
||||
<filter-class>ch::nevis::isiweb4::filter::auth::SecurityRoleFilter</filter-class>
|
||||
<!-- source: pattern://088e03c92ee8a5168b030e9e -->
|
||||
<init-param>
|
||||
<param-name>DynamicRoleAcquire</param-name>
|
||||
<param-value>false</param-value>
|
||||
</init-param>
|
||||
<!-- source: pattern://088e03c92ee8a5168b030e9e -->
|
||||
<init-param>
|
||||
<param-name>RolesRequired</param-name>
|
||||
<param-value>AGOV-Loi.level300 AGOV-Loi.level400 AGOV-Loi.level500</param-value>
|
||||
</init-param>
|
||||
</filter>
|
||||
<!-- source: pattern://13ea034de32c190083ba9e35, pattern://13ea034de32c190083ba9e35#nevisIDM -->
|
||||
<filter>
|
||||
<filter-name>CSRFRewrite_nevisIDM_Operations_Administration_GUI</filter-name>
|
||||
|
|
@ -582,6 +597,11 @@
|
|||
<filter-name>Requirement_NEVIS_SecToken_SAML_SP_nevisidm_operations_Realm</filter-name>
|
||||
<url-pattern>/nevisidm/*</url-pattern>
|
||||
</filter-mapping>
|
||||
<!-- source: pattern://088e03c92ee8a5168b030e9e -->
|
||||
<filter-mapping>
|
||||
<filter-name>Authorization_Required_Roles_AGOV-Loi.level300_AGOV-Loi.level400_AGOV-Loi.level500_SAML_SP_nevisidm_operations_Realm</filter-name>
|
||||
<url-pattern>/nevisidm/*</url-pattern>
|
||||
</filter-mapping>
|
||||
<!-- source: pattern://7518c6cc61e47eec6322ae17 -->
|
||||
<filter-mapping>
|
||||
<filter-name>Token_NEVIS_SecToken</filter-name>
|
||||
|
|
|
|||
|
|
@ -61,10 +61,10 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">You are not authorised to access this
|
||||
application.</p>
|
||||
</div>
|
||||
|
||||
<!-- TODO update here when italian is available -->
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -58,10 +58,10 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">The page you are looking for does not
|
||||
exist.</p>
|
||||
</div>
|
||||
|
||||
<!-- TODO update here when italian is available -->
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -59,10 +59,10 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">We are working on it. Please try again
|
||||
later.</p>
|
||||
</div>
|
||||
|
||||
<!-- TODO update here when italian is available -->
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -60,10 +60,10 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">We are working on it. Please try again
|
||||
later.</p>
|
||||
</div>
|
||||
|
||||
<!-- TODO update here when italian is available -->
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -58,7 +58,9 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">You have been successfully logged out.</p>
|
||||
</div>
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -64,10 +64,10 @@
|
|||
<p class="font-body text-body-l text-black dark:text-white mx-auto text-center">Your session has timed out. Please close
|
||||
this window and try logging in again.</p>
|
||||
</div>
|
||||
|
||||
<!-- TODO update here when italian is available -->
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -62,7 +62,9 @@
|
|||
later.</p>
|
||||
</div>
|
||||
</div>
|
||||
|
||||
<footer class="hidden sm:flex mt-auto font-body text-body-s text-disabled-grey dark:text-silver w-full p-2 justify-end">
|
||||
<p>1.7.3.19-20241106T155949Z</p>
|
||||
</footer>
|
||||
<script src="/resources/static/bundle.js"></script>
|
||||
</body>
|
||||
</html>
|
||||
|
|
|
|||
Loading…
Reference in New Issue