summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Remove useless codeBenjamin Dauvergne2009-04-303-12/+2
| | | | | | | * lasso/xml/lib_authentication_statement.c: * lasso/xml/saml-2.0/samlp2_name_id_policy.c: * lasso/xml/saml_name_identifier.c: remove useless initialization code.
* Fix leak in lasso_url_add_parametersBenjamin Dauvergne2009-04-301-0/+3
| | | | | * lasso/xml/tools.c: in lasso_url_add_parameters free intermediate strings.
* Fix debug echo on stdoutBenjamin Dauvergne2009-04-301-1/+1
| | | | | * lasso/utils.h: make lasso_mem_debug output on stderr and not stdout
* Add new valgrind memleak suppression filesBenjamin Dauvergne2009-04-302-0/+468
| | | | | | | | | | * tests/valgrind/glib.supp: suppress all "static" allocation by glib, usually for the type system. * tests/valgrind/lasso.supp: suppress allocations from lasso that we cannot actually remove, they are all from "called only once" code, so it should not really be a problem for embedded codes.
* More work on signature validation for SAML 2.0Benjamin Dauvergne2009-04-274-7/+56
| | | | | | | | | | | | | | | | | * lasso/saml-2.0/profile.c: in lasso_saml20_profile_process_any_request and lasso_saml20_profile_process_any_response do not make signature validation failure as call failure, just store the result in profile->signature_status and let the upper level functions handle what to do with it. also add documentation about those two functions. * lasso/saml-2.0/logout.c: * lasso/saml-2.0/name_id_management.c: handle new signature_status semantic. * lasso/saml-2.0/login.c: add internal documentation for lasso_saml20_login_process_authn_response_msg.
* Update signature_status when checking signature on assertionsBenjamin Dauvergne2009-04-271-1/+1
| | | | | | * lasso/saml-2.0/login.c: if signature_status is SIGNATURE_NOT_FOUND, check one on the assertion and keep the result in signature_status.
* Increase wait time for integration testBenjamin Dauvergne2009-04-271-1/+1
| | | | | * tests/integration/saml2/__init__.py: wait 5 seconds for dameons to start.
* review laterBenjamin Dauvergne2009-04-271-0/+6
|
* FIX: verify assertion signature for SAML 2.0 when response is not signedBenjamin Dauvergne2009-04-271-1/+5
| | | | | * lasso/saml-2.0/login.c: if response was not signed, check the signature on the assertion.
* new function lasso_saml20_login_check_assertion_signature()Benjamin Dauvergne2009-04-271-0/+63
| | | | | | | * lasso/saml-2.0/login.c: lasso_saml20_login_check_assertion_signature() find the issuer of an assertion, look it up in the server object and try to validate its signature. It returns an error code if any of this step fails.
* Test: Remove spurious debugging printfBenjamin Dauvergne2009-04-271-2/+0
| | | | | * tests/login_tests_saml2.c: remove debug code.
* Add keep_xmlnode flag to SAML 2.0 req, resp and assertionsBenjamin Dauvergne2009-04-274-0/+4
| | | | | | | | * lasso/xml/saml-2.0/saml2_assertion.c: * lasso/xml/saml-2.0/samlp2_request_abstract.c: * lasso/xml/saml-2.0/samlp2_response.c: * lasso/xml/saml-2.0/samlp2_status_response.c: set keep_xmlnode flag to 1 in class_init.
* new function lasso_profile_get_server()Benjamin Dauvergne2009-04-273-0/+28
| | | | | | | | | | * lasso/id-ff/profile.c: * lasso/id-ff/profile.h: in a move to try to remove direct access to object content, add a function to retrieve the LassoServer object of a LassoProfile. * bindings/overrides.xml: it conflicts with direct access to the public field server, so we do not export it in the binding for now.
* fix: in lasso_verify_signature() only look for the first direct child ↵Benjamin Dauvergne2009-04-271-2/+2
| | | | | | | | Signature element * lasso/xml/tools.c: in SAML message signatures are usually envelopped signatures, so just lookup for the first direct child which is a Signature node.
* fix: handle non-LHS argument for lasso_extract_node_or_fail()Benjamin Dauvergne2009-04-271-5/+8
| | | | | | * lasso/utils.h: create a temporary varaible to store result of second argument evaluation to prevent spurious side effects.
* lasso_saml20_profile_init_artifact_resolve(): check http_methodBenjamin Dauvergne2009-04-271-1/+3
| | | | | | | * lasso/saml-2.0/profile.c: check the given http_method it must one in - LASSO_HTTP_METHOD_ARTIFACT_POST, - LASSO_HTTP_METHOD_ARTIFACT_GET.
* lasso_login_init_request(): change error code for invalid artifactsBenjamin Dauvergne2009-04-271-2/+2
| | | | | | * lasso/id-ff/login.c: if artifact is invalid return LASSO_PROFILE_ERROR_INVALID_ARTIFACT as in lasso_saml20_profile_init_artifact_resolve().
* Complete documentation of lasso_login_init_requestBenjamin Dauvergne2009-04-271-2/+18
| | | | | * lasso/id-ff/login.c: add precision on usage. add all possible return codes with meanings.
* lasso_login_init_authn_request: complete docBenjamin Dauvergne2009-04-271-1/+10
| | | | | * lasso/id-ff/login.c: add all possible return codes and their meaning.
* lasso_login_init_authn_request: change error code for missing remote provider IDBenjamin Dauvergne2009-04-271-1/+1
| | | | | | | | * lasso/id-ff/login.c: change the return code for when no remote provider ID could be defined (because the argument is NULL and the server object contains no providers) so that we can distingish the case where the given provider is unknown or if there is no providers configured.
* Add a deprecated tag to lasso_login_destroy docBenjamin Dauvergne2009-04-271-0/+2
| | | | | | * lasso/id-ff/login.c: all destroy functions are deprecated, g_object_unref() should be used instead.
* Complete documentation of lasso_login_byuld_response_msgBenjamin Dauvergne2009-04-271-0/+5
| | | | | * lasso/id-ff/login.c: add all possible return codes with meaning.
* Complete documentation of lasso_login_build_request_msgBenjamin Dauvergne2009-04-271-3/+11
| | | | | * lasso/id-ff/login.c: add all possible return codes with meaning.
* Complet documentation for lasso_login_build_authn_response_msgBenjamin Dauvergne2009-04-271-1/+9
| | | | | * lasso/id-ff/login.c: add all possible return codes with meaning.
* Complete documentation of lasso_login_build_authn_requestBenjamin Dauvergne2009-04-271-6/+18
| | | | | * lasso/id-ff/login.c: add all possible return codes with meaning.
* Complete documentation for lasso_login_build_artifact_msgBenjamin Dauvergne2009-04-271-1/+11
| | | | | * lasso/id-ff/login.c: add all possible return codes with meaning.
* Complet documentation of lasso_login_accept_ssoBenjamin Dauvergne2009-04-271-1/+9
| | | | | * lasso/id-ff/login.c: add all possible return codes.
* Complete doc for static function lasso_login_musk_ask_for_consentBenjamin Dauvergne2009-04-271-1/+1
| | | | | * lasso/id-ff/login.c: precise return value meaning.
* Complete document of lasso_login_build_assertionBenjamin Dauvergne2009-04-271-1/+5
| | | | | * lasso/id-ff/login.c: add possible return codes.
* Complete doc of lasso_logout_validate_requestBenjamin Dauvergne2009-04-271-1/+15
| | | | | * lasso/id-ff/logout.c: add description of all possible return codes.
* Rework cleanup handlingBenjamin Dauvergne2009-04-2210-116/+162
| | | | | | | | | | | | | | | | | | | | | | * lasso/utils.h: change 'goto exit' for 'goto cleanup'. rename all goto_exit macros to goto_cleanup_. rename goto_cleanup_if_fail to goto_cleanup_if_fail_with_rc and add a goto_cleanup_if_fail for function which do not return an integer value. add documentation for goto_cleanup macro family. * lasso/id-ff/login.c: * lasso/id-ff/provider.c: * lasso/id-ff/server.c: * lasso/id-ff/session.c: * lasso/id-wsf/discovery.c: * lasso/id-wsf/wsf_profile.c: * lasso/saml-2.0/profile.c: * lasso/utils.h: * lasso/xml/lib_logout_request.c: * lasso/xml/tools.c: * lasso/xml/xml.c: update name of goto_exit_if_fail macros. rename 'exit' labels to 'cleanup'.
* XML: Fix prefix clobbering by xsi:type handlingBenjamin Dauvergne2009-04-221-4/+7
| | | | | | | * lasso/xml/xml.c: if xsi:type is not able to find a GObject typename for the current node, then do not erase the actual prefix value. change prefix type to const char.
* SAML 2.0: Use new API lasso_url_add_parameterBenjamin Dauvergne2009-04-222-20/+17
| | | | | | * lasso/saml-2.0/profile.c: use new API lasso_url_add_parameter to handle RelayState parameter creation.
* SAML 2.0: Check http_method in build_artifact_msgBenjamin Dauvergne2009-04-221-0/+4
| | | | | | * lasso/saml-2.0/login.c: if http_method is not among ARTIFACT_GET and ARTIFACT_POST, return an INVALID_HTTP_METHOD error.
* Tests: Add test parsing a Ping Federate assertion.Benjamin Dauvergne2009-04-221-0/+19
| | | | | * tests/basic_tests.c: load data/response-1 and try to parse it.
* Add a new internal API for parameters buildingBenjamin Dauvergne2009-04-222-0/+65
| | | | | | | | * xml/tools.c: add lasso_url_add_parameter that concat the string &key=value to an existing URL where key and value are url-encoded. * xml/private.h: declare lasso_url_add_parameter.
* Tests: Add a SAML2 login testBenjamin Dauvergne2009-04-223-1/+467
| | | | | | | * tests/login_tests_saml2.c: add a C login test for SAML 2. * tests/Makefile.am: add the new test to dependencies.
* If no typename could be determined, stop parsing.Benjamin Dauvergne2009-04-211-2/+3
| | | | | | * lasso/xml/xml.c: in lasso_node_new_from_xmlNode if no typename is found for the given xmlNode, return NULL.
* Fix python 2.4 binding buildJerome Schneider2009-04-171-0/+6
|
* Core: Add cast to first argument of isalnumBenjamin Dauvergne2009-04-142-2/+2
| | | | | | * lasso/xml/xml.c: * lasso/xml/tools.c: isalnum takes a int as first arg.
* Core: add an header file for backward compatibilityBenjamin Dauvergne2009-04-144-22/+50
| | | | | | | | | | | * lasso/backward_comp.h: this header will contain substitue function, defines or types for compatibility with older versions of dependencies. * lasso/utils.h: remove declaration of g_strcmp0 * lasso.c: * tests/login_tests.c: use backward_comp.h
* Fix build issues on amd64 / gcc 4.3Jerome Schneider2009-04-093-4/+4
| | | | | | | | | * bindings/java/lang.py: fix cast issue * bindings/python/wrapper_top.c fix type issue * lasso/registry.c fix cast issue
* Tests&Core: add g_strcmp0 if glib is oldBenjamin Dauvergne2009-04-022-0/+8
| | | | | | | | * lasso/utils.h: if glib is older than 2.16, export g_strcmp0 as part of internal headers, in order to use it in login_tests.c * tests/login_tests.c: include utils.h
* Update website download pageBenjamin Dauvergne2009-03-272-3/+19
| | | | | | | * website/web/download/index.xml: update link for last release download * website/web/news/13-release-2.2.2.xml: add news about release 2.2.2
* Update lasso version to 2.2.2Benjamin Dauvergne2009-03-273-5/+17
| | | | | | | | * configure.ac: * fedora/lasso.spec: * lasso.doap: update lasso version to 2.2.2, this commit will be the reference for the 2.2.2 release.
* Makefile: change dependencies to pass distcheckBenjamin Dauvergne2009-03-271-2/+2
| | | | | | | * lasso/Makefile.am: source dependencies must refer to $(srcdir) in order to pass distcheck, I forgot to do it in types.c and symbols.sym target changes.
* ID-FF 1.2: if logout request parsing fails, take a shortcutBenjamin Dauvergne2009-03-271-1/+3
| | | | | | * lasso/xml/lib_logout_request.c: immediately return from init_from_query if overloaded parent method fails.
* SAML 2.0: Update generic relaystate handlingBenjamin Dauvergne2009-03-271-27/+10
| | | | | | | * lasso/saml-2.0/profile.c: in lasso_saml20_profile_build_redirect_request_msg and lasso_saml20_profile_build_redirect_response, use new function lasso_saml20_profile_build_http_redirect.
* Core: add a add-signature flagBenjamin Dauvergne2009-03-272-0/+7
| | | | | | | | * lasso/debug.h: * lasso/lasso.c: add a lasso_flag_add_signature flag variable (default to TRUE), and parsing code to change it from LASSO_FLAG environment variable. ("env LASSO_FLAG=no-add-signature test").
* ID-FF 1.2: Only verify InResponseTo if strict checking is onBenjamin Dauvergne2009-03-271-0/+21
| | | | | | | * lasso/id-ff/login.c: add condition upon checking of the InResponseTo field: checks only if strict checking is activated as it could stop old code using Lasso from working.
generated by cgit (git 2.34.1) at 2025-09-29 19:59:57 +0000