Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | saml-2.0/provider: when looking for endpoints take a null role as meanning ↵ | Benjamin Dauvergne | 2013-10-11 | 1 | -6/+11 |
| | | | | « take the first one » | ||||
* | saml-2.0/profile: fix typo in commit 8de55 | Benjamin Dauvergne | 2013-10-10 | 1 | -1/+1 |
| | |||||
* | saml-2.0/profile: add warning message when unable to build an artifact ↵ | Benjamin Dauvergne | 2013-10-10 | 1 | -0/+4 |
| | | | | response message due to an unfound artifact resolution endpoint | ||||
* | lasso/xml/tools.c: fix misuse of xmlURIUnescapeString | Benjamin Dauvergne | 2013-09-27 | 1 | -2/+10 |
| | | | | | If the length argument is NULL, the full string is unescaped; the behaviour we expected is to return a 0 length string. | ||||
* | id-ff/login.c: initialize role status of sp and idp in ↵ | Benjamin Dauvergne | 2013-09-27 | 1 | -1/+10 |
| | | | | lasso_login_init_authn_request | ||||
* | saml2/profile.c: add resolving of the endpoint index in artifacts | Benjamin Dauvergne | 2013-09-08 | 3 | -8/+22 |
| | | | | | | | | * lasso/saml-2.0/profile.c: add new argument role to lasso_saml20_profile_init_artifact_resolve() for looking up ArtifactResolutionService location; extract endpoint index from artifact and use it to resolve the endpoint location. * login.c: pass new argument ; force msg_url as it is preinitialized by lasso_saml20_profile_init_artifact_resolve() | ||||
* | saml2/provider.c: add new function lasso_saml20_provider_get_endpoint_url() ↵ | Benjamin Dauvergne | 2013-09-08 | 2 | -0/+60 |
| | | | | for retrieving endpoint locations using the new endpoints list | ||||
* | errors.{c,h}: add new error LASSO_PROFILE_ERROR_ENDPOINT_INDEX_NOT_FOUND for ↵ | Benjamin Dauvergne | 2013-09-08 | 2 | -0/+9 |
| | | | | reporting when a recevied artifact does match any declared endpoint | ||||
* | saml2/profile: fix missing ArtifactResolutionService index in artifacts | Benjamin Dauvergne | 2013-09-08 | 4 | -8/+42 |
| | |||||
* | saml2/login: fix role of providers in process_authn_request() and ↵ | Benjamin Dauvergne | 2013-09-08 | 1 | -0/+9 |
| | | | | | | idp_initiated_authn_request() It is necessary for endpoint resolution to know the role of providers. | ||||
* | fix compilation errors on 64bits architectures | Benjamin Dauvergne | 2013-09-08 | 3 | -3/+3 |
| | | | | | * sizeof(unsigned int) != sizeof(size_t) * INT_MAX != LONG_MAX | ||||
* | fix warnings about unused but set variables | Benjamin Dauvergne | 2013-09-08 | 9 | -42/+13 |
| | |||||
* | Merge remote-tracking branch 'origin/libxml2.9-compat' | Benjamin Dauvergne | 2013-07-30 | 5 | -83/+34 |
|\ | |||||
| * | Rewrite all xmlNode serialization code to be compatible with libxml 2.9.0 | Benjamin Dauvergne | 2012-09-28 | 5 | -83/+34 |
| | | | | | | | | | | | | | | | | | | | | Libxml stopped exposing the internal of the xmlOutputBuffer structure; it was replace by proper use of the API and of the xmlBuffer structure. There could be regression for older version of libxml as some functions appeared in recent version of libxml; but the reference API document does not give any introduction date for functions so it's hard to be sure. | ||||
* | | saml-2.0: fix missing signature on logout responses | Benjamin Dauvergne | 2013-03-20 | 1 | -0/+3 |
| | | |||||
* | | xml-saml-2.0: ManageNameIDRequest must have a NameID | Benjamin Dauvergne | 2013-01-25 | 1 | -0/+18 |
| | | |||||
* | | xml-saml-2.0: LogoutRequest must have a NameID | Benjamin Dauvergne | 2013-01-25 | 1 | -0/+8 |
| | | |||||
* | | xml: really enforce elements cardinality when parsing messages | Benjamin Dauvergne | 2013-01-25 | 2 | -35/+78 |
| | | | | | | | | | | | | | | | | - add a new SNIPPET_MANDATORY: we could only indicate 0-1 and 0-* cardinalities, now we can also indicate 1-1 and 1-* cardinalities. - repect cadinalities when parsing an xmlNode tree into a LassoNode tree. | ||||
* | | xml-saml-2.0: add missing namespace declaration for the ↵ | Benjamin Dauvergne | 2013-01-25 | 1 | -1/+2 |
| | | | | | | | | KeyInfoSujectConfirmationData sub-type | ||||
* | | fix memory leak in lasso_node_impl_init_from_xml: release the class_list | Benjamin Dauvergne | 2013-01-25 | 1 | -6/+12 |
| | | |||||
* | | utils: add a lasso_release_slist macro | Benjamin Dauvergne | 2013-01-25 | 1 | -1/+1 |
| | | |||||
* | | add a lasso_release_slist | Benjamin Dauvergne | 2013-01-25 | 1 | -0/+3 |
| | | |||||
* | | fix potential segfault in lasso_node_impl_init_from_xml | Benjamin Dauvergne | 2013-01-25 | 1 | -8/+10 |
|/ | |||||
* | fix segfault in saml-2.0/provider.c:load_endpoint_type2 | Benjamin Dauvergne | 2012-09-26 | 1 | -1/+1 |
| | | | | Thanks to Hiromitsu Fujita for the patch. fixes #1582. | ||||
* | Fix compilation on solaris | Benjamin Dauvergne | 2012-06-21 | 1 | -0/+1 |
| | | | | | | Thanks Wojciech Lichota for the patch. Fixes #1516 | ||||
* | fix SIGSEGV when loading metadata files | Benjamin Dauvergne | 2012-06-21 | 1 | -1/+2 |
| | | | | | | Thanks Wojciech Lichota for the patch. Fixes #1516 | ||||
* | [xml] fix wrong forward declaration | Benjamin Dauvergne | 2012-05-05 | 1 | -2/+2 |
| | |||||
* | [xml] add missing include | Benjamin Dauvergne | 2012-05-05 | 1 | -0/+2 |
| | |||||
* | [xml] fix typos | Benjamin Dauvergne | 2012-05-05 | 2 | -5/+5 |
| | |||||
* | [lasso] add missing GObjectIntrospection annotations to ↵ | Benjamin Dauvergne | 2012-05-05 | 1 | -1/+1 |
| | | | | lasso_node_get_original_xmlnode | ||||
* | [lasso] add missing GObjectIntrospection annotations to ↵ | Benjamin Dauvergne | 2012-05-05 | 1 | -1/+1 |
| | | | | lasso_misc_text_node_get_xml_content | ||||
* | Merge branch 'release-2.4.0' | Benjamin Dauvergne | 2012-05-05 | 8 | -75/+402 |
|\ | |||||
| * | [saml2] modify behaviour of lasso_saml2_assertion_add_attribute_with_node | Benjamin Dauvergne | 2012-04-06 | 1 | -2/+10 |
| | | | | | | | | If an AttributeStatement already exists, we add the new attribute to it. | ||||
| * | [core] including glib headers directly is deprecated, we must only use ↵ | Benjamin Dauvergne | 2012-03-25 | 2 | -2/+2 |
| | | | | | | | | <glib.h> now | ||||
| * | [key] add methods to send message using SAML 2.0 redirect and post bindings | Benjamin Dauvergne | 2012-03-17 | 6 | -71/+368 |
| | | |||||
| * | [saml2] fix handling of SingleSignOnServer in ↵ | Benjamin Dauvergne | 2012-03-17 | 1 | -2/+24 |
| | | | | | | | | | | | | | | | | | | lasso_saml20_provider_get_first_http_method When checking if a synchronous http method can be used for sending a request to the SingleSignOnService we must check if the response can received by the AssertionConsumerService with a synchronous binding not the SingleSignOnService. | ||||
* | | fix wrong EXTRA_DIST in lasso/xml/dsig/Makefile.am | Benjamin Dauvergne | 2012-04-27 | 2 | -2/+36 |
| | | |||||
* | | fix compilation error with xmlsec 1.2.18 / freebsd (#1365) | Thomas NOEL | 2012-04-26 | 1 | -0/+1 |
| | | | | | | | | see http://dev.entrouvert.org/issues/1365 | ||||
* | | build: do not include multiple glib headers | Frédéric Péters | 2012-04-02 | 3 | -3/+2 |
|/ | |||||
* | Incompatibility with clang: local functions with closure does not work | Benjamin Dauvergne | 2011-12-29 | 1 | -4/+6 |
| | |||||
* | [id-ff 1.2] change websso with artifact binding to work as SAML 2.0 | Benjamin Dauvergne | 2011-12-23 | 1 | -21/+48 |
| | | | | | | | | | | | | | | | | | The old way of transmiting the assertion to return via the session is kept, but a new way more semblable to the one used in the SAML 2.0 code is added. After lasso_login_build_artifact_msg() you must save the return of lasso_profile_get_artifact_message() linked to the value of the artifact obtained via lasso_profile_get_artifact(). In the artifact-resolve endpoint you must find the artifact message corresponding to the return value of lasso_profile_get_artifact() reinstall the artifact message using lasso_profile_set_artifact_message() just before calling lasso_login_build_response_msg(). This change is necessary for ID-FF 1.2 SSO profile to work with the thin-sessions. | ||||
* | [id-ff 1.2] in lasso_login_build_assertion() always add the assertion to the ↵ | Benjamin Dauvergne | 2011-12-22 | 1 | -7/+4 |
| | | | | response | ||||
* | [doc] do some documentation fixing | Benjamin Dauvergne | 2011-12-22 | 3 | -4/+7 |
| | |||||
* | [id-ff 1.2] provision the SessionIndex into the assertions | Benjamin Dauvergne | 2011-12-22 | 1 | -0/+6 |
| | | | | Without it SLO session management is broken. | ||||
* | [id-ff 1.1] add support for multiple SessionIndex to lib:LogoutRequest | Benjamin Dauvergne | 2011-12-22 | 3 | -80/+103 |
| | | | | | Combined with the new LassoSession storage for SessionIndex, it should fix many bugs when doing SLO. | ||||
* | [saml 2.0] use the new SessionIndex storage for SLO management | Benjamin Dauvergne | 2011-12-22 | 2 | -115/+89 |
| | | | | | It shoulf fix any missing functionnalities regarding missing session indexes in logout requests sent by identity providers or service providers. | ||||
* | [core] add support for thin-sessions environment flag, to reduce size of ↵ | Benjamin Dauvergne | 2011-12-22 | 3 | -0/+9 |
| | | | | LassoSession dumps | ||||
* | [core] add simpler storage for SessionIndexes in the LassoSession | Benjamin Dauvergne | 2011-12-22 | 3 | -30/+400 |
| | |||||
* | [id-ff 1.2] add lasso_saml_name_identifier_equals() to compare NameIDs | Benjamin Dauvergne | 2011-12-19 | 2 | -0/+17 |
| | |||||
* | [saml2] fix lasso_saml20_logout_validate_request when more than one ↵ | Benjamin Dauvergne | 2011-12-16 | 1 | -7/+20 |
| | | | | SessionIndex is sent |