Upgrading STF for security reasons (#813)

* Upgrading STF for security reasons Signed-off-by: Denis barbaron <denis.barbaron@orange.com> * update semaphore files Signed-off-by: Denis barbaron <denis.barbaron@orange.com> * upgrading STF for security reasons v2 Signed-off-by: Denis barbaron <denis.barbaron@orange.com> * update yarn.lock file Signed-off-by: Denis barbaron <denis.barbaron@orange.com> --------- Signed-off-by: Denis barbaron <denis.barbaron@orange.com>
2026-04-18 08:03:30 +02:00 · 2024-11-22 11:41:20 +01:00
parent e204b03661
commit 2f54e40206
48 changed files with 2443 additions and 1167 deletions
--- a/lib/units/auth/ldap.js
+++ b/lib/units/auth/ldap.js
@@ -1,5 +1,5 @@
 /**
-* Copyright © 2019 contains code contributed by Orange SA, authors: Denis Barbaron - Licensed under the Apache license 2.0
+* Copyright © 2019-2024 contains code contributed by Orange SA, authors: Denis Barbaron - Licensed under the Apache license 2.0
 **/

 var http = require('http')
@@ -56,6 +56,8 @@ module.exports = function(options) {
    next()
  })

+  app.disable('x-powered-by')
+
  app.get('/', function(req, res) {
    res.redirect('/auth/ldap/')
  })
--- a/lib/units/auth/mock.js
+++ b/lib/units/auth/mock.js
@@ -82,6 +82,8 @@ module.exports = function(options) {
    app.use(basicAuthMiddleware)
  }

+  app.disable('x-powered-by')
+
  app.get('/', function(req, res) {
    res.redirect('/auth/mock/')
  })
--- a/lib/units/auth/oauth2/index.js
+++ b/lib/units/auth/oauth2/index.js
@@ -1,3 +1,7 @@
+/**
+* Copyright © 2024 contains code contributed by Orange SA, authors: Denis Barbaron - Licensed under the Apache license 2.0
+**/
+
 var http = require('http')

 var express = require('express')
@@ -48,6 +52,8 @@ module.exports = function(options) {
  , session: false
  }))

+  app.disable('x-powered-by')
+
  function isEmailAllowed(email) {
    if (email) {
      if (options.domain) {
--- a/lib/units/auth/openid.js
+++ b/lib/units/auth/openid.js
@@ -1,3 +1,7 @@
+/**
+* Copyright © 2024 contains code contributed by Orange SA, authors: Denis Barbaron - Licensed under the Apache license 2.0
+**/
+
 var http = require('http')

 var openid = require('openid')
@@ -27,6 +31,8 @@ module.exports = function(options) {
  app.set('strict routing', true)
  app.set('case sensitive routing', true)

+  app.disable('x-powered-by')
+
  app.get('/', function(req, res) {
    res.redirect('/auth/openid/')
  })
--- a/lib/units/auth/saml2.js
+++ b/lib/units/auth/saml2.js
@@ -1,3 +1,7 @@
+/**
+* Copyright © 2024 contains code contributed by Orange SA, authors: Denis Barbaron - Licensed under the Apache license 2.0
+**/
+
 var fs = require('fs')
 var http = require('http')

@@ -88,6 +92,8 @@ module.exports = function(options) {
  , session: false
  }))

+  app.disable('x-powered-by')
+
  app.post(
    '/auth/saml/callback'
  , function(req, res) {