summaryrefslogtreecommitdiffstats
path: root/lasso
Commit message (Collapse)AuthorAgeFilesLines
* saml-2.0/provider: when looking for endpoints take a null role as meanning ↵Benjamin Dauvergne2013-10-111-6/+11
| | | | « take the first one »
* saml-2.0/profile: fix typo in commit 8de55Benjamin Dauvergne2013-10-101-1/+1
|
* saml-2.0/profile: add warning message when unable to build an artifact ↵Benjamin Dauvergne2013-10-101-0/+4
| | | | response message due to an unfound artifact resolution endpoint
* lasso/xml/tools.c: fix misuse of xmlURIUnescapeStringBenjamin Dauvergne2013-09-271-2/+10
| | | | | If the length argument is NULL, the full string is unescaped; the behaviour we expected is to return a 0 length string.
* id-ff/login.c: initialize role status of sp and idp in ↵Benjamin Dauvergne2013-09-271-1/+10
| | | | lasso_login_init_authn_request
* saml2/profile.c: add resolving of the endpoint index in artifactsBenjamin Dauvergne2013-09-083-8/+22
| | | | | | | | * lasso/saml-2.0/profile.c: add new argument role to lasso_saml20_profile_init_artifact_resolve() for looking up ArtifactResolutionService location; extract endpoint index from artifact and use it to resolve the endpoint location. * login.c: pass new argument ; force msg_url as it is preinitialized by lasso_saml20_profile_init_artifact_resolve()
* saml2/provider.c: add new function lasso_saml20_provider_get_endpoint_url() ↵Benjamin Dauvergne2013-09-082-0/+60
| | | | for retrieving endpoint locations using the new endpoints list
* errors.{c,h}: add new error LASSO_PROFILE_ERROR_ENDPOINT_INDEX_NOT_FOUND for ↵Benjamin Dauvergne2013-09-082-0/+9
| | | | reporting when a recevied artifact does match any declared endpoint
* saml2/profile: fix missing ArtifactResolutionService index in artifactsBenjamin Dauvergne2013-09-084-8/+42
|
* saml2/login: fix role of providers in process_authn_request() and ↵Benjamin Dauvergne2013-09-081-0/+9
| | | | | | idp_initiated_authn_request() It is necessary for endpoint resolution to know the role of providers.
* fix compilation errors on 64bits architecturesBenjamin Dauvergne2013-09-083-3/+3
| | | | | * sizeof(unsigned int) != sizeof(size_t) * INT_MAX != LONG_MAX
* fix warnings about unused but set variablesBenjamin Dauvergne2013-09-089-42/+13
|
* Merge remote-tracking branch 'origin/libxml2.9-compat'Benjamin Dauvergne2013-07-305-83/+34
|\
| * Rewrite all xmlNode serialization code to be compatible with libxml 2.9.0Benjamin Dauvergne2012-09-285-83/+34
| | | | | | | | | | | | | | | | | | | | Libxml stopped exposing the internal of the xmlOutputBuffer structure; it was replace by proper use of the API and of the xmlBuffer structure. There could be regression for older version of libxml as some functions appeared in recent version of libxml; but the reference API document does not give any introduction date for functions so it's hard to be sure.
* | saml-2.0: fix missing signature on logout responsesBenjamin Dauvergne2013-03-201-0/+3
| |
* | xml-saml-2.0: ManageNameIDRequest must have a NameIDBenjamin Dauvergne2013-01-251-0/+18
| |
* | xml-saml-2.0: LogoutRequest must have a NameIDBenjamin Dauvergne2013-01-251-0/+8
| |
* | xml: really enforce elements cardinality when parsing messagesBenjamin Dauvergne2013-01-252-35/+78
| | | | | | | | | | | | | | | | - add a new SNIPPET_MANDATORY: we could only indicate 0-1 and 0-* cardinalities, now we can also indicate 1-1 and 1-* cardinalities. - repect cadinalities when parsing an xmlNode tree into a LassoNode tree.
* | xml-saml-2.0: add missing namespace declaration for the ↵Benjamin Dauvergne2013-01-251-1/+2
| | | | | | | | KeyInfoSujectConfirmationData sub-type
* | fix memory leak in lasso_node_impl_init_from_xml: release the class_listBenjamin Dauvergne2013-01-251-6/+12
| |
* | utils: add a lasso_release_slist macroBenjamin Dauvergne2013-01-251-1/+1
| |
* | add a lasso_release_slistBenjamin Dauvergne2013-01-251-0/+3
| |
* | fix potential segfault in lasso_node_impl_init_from_xmlBenjamin Dauvergne2013-01-251-8/+10
|/
* fix segfault in saml-2.0/provider.c:load_endpoint_type2Benjamin Dauvergne2012-09-261-1/+1
| | | | Thanks to Hiromitsu Fujita for the patch. fixes #1582.
* Fix compilation on solarisBenjamin Dauvergne2012-06-211-0/+1
| | | | | | Thanks Wojciech Lichota for the patch. Fixes #1516
* fix SIGSEGV when loading metadata filesBenjamin Dauvergne2012-06-211-1/+2
| | | | | | Thanks Wojciech Lichota for the patch. Fixes #1516
* [xml] fix wrong forward declarationBenjamin Dauvergne2012-05-051-2/+2
|
* [xml] add missing includeBenjamin Dauvergne2012-05-051-0/+2
|
* [xml] fix typosBenjamin Dauvergne2012-05-052-5/+5
|
* [lasso] add missing GObjectIntrospection annotations to ↵Benjamin Dauvergne2012-05-051-1/+1
| | | | lasso_node_get_original_xmlnode
* [lasso] add missing GObjectIntrospection annotations to ↵Benjamin Dauvergne2012-05-051-1/+1
| | | | lasso_misc_text_node_get_xml_content
* Merge branch 'release-2.4.0'Benjamin Dauvergne2012-05-058-75/+402
|\
| * [saml2] modify behaviour of lasso_saml2_assertion_add_attribute_with_nodeBenjamin Dauvergne2012-04-061-2/+10
| | | | | | | | If an AttributeStatement already exists, we add the new attribute to it.
| * [core] including glib headers directly is deprecated, we must only use ↵Benjamin Dauvergne2012-03-252-2/+2
| | | | | | | | <glib.h> now
| * [key] add methods to send message using SAML 2.0 redirect and post bindingsBenjamin Dauvergne2012-03-176-71/+368
| |
| * [saml2] fix handling of SingleSignOnServer in ↵Benjamin Dauvergne2012-03-171-2/+24
| | | | | | | | | | | | | | | | | | lasso_saml20_provider_get_first_http_method When checking if a synchronous http method can be used for sending a request to the SingleSignOnService we must check if the response can received by the AssertionConsumerService with a synchronous binding not the SingleSignOnService.
* | fix wrong EXTRA_DIST in lasso/xml/dsig/Makefile.amBenjamin Dauvergne2012-04-272-2/+36
| |
* | fix compilation error with xmlsec 1.2.18 / freebsd (#1365)Thomas NOEL2012-04-261-0/+1
| | | | | | | | see http://dev.entrouvert.org/issues/1365
* | build: do not include multiple glib headersFrédéric Péters2012-04-023-3/+2
|/
* Incompatibility with clang: local functions with closure does not workBenjamin Dauvergne2011-12-291-4/+6
|
* [id-ff 1.2] change websso with artifact binding to work as SAML 2.0Benjamin Dauvergne2011-12-231-21/+48
| | | | | | | | | | | | | | | | | The old way of transmiting the assertion to return via the session is kept, but a new way more semblable to the one used in the SAML 2.0 code is added. After lasso_login_build_artifact_msg() you must save the return of lasso_profile_get_artifact_message() linked to the value of the artifact obtained via lasso_profile_get_artifact(). In the artifact-resolve endpoint you must find the artifact message corresponding to the return value of lasso_profile_get_artifact() reinstall the artifact message using lasso_profile_set_artifact_message() just before calling lasso_login_build_response_msg(). This change is necessary for ID-FF 1.2 SSO profile to work with the thin-sessions.
* [id-ff 1.2] in lasso_login_build_assertion() always add the assertion to the ↵Benjamin Dauvergne2011-12-221-7/+4
| | | | response
* [doc] do some documentation fixingBenjamin Dauvergne2011-12-223-4/+7
|
* [id-ff 1.2] provision the SessionIndex into the assertionsBenjamin Dauvergne2011-12-221-0/+6
| | | | Without it SLO session management is broken.
* [id-ff 1.1] add support for multiple SessionIndex to lib:LogoutRequestBenjamin Dauvergne2011-12-223-80/+103
| | | | | Combined with the new LassoSession storage for SessionIndex, it should fix many bugs when doing SLO.
* [saml 2.0] use the new SessionIndex storage for SLO managementBenjamin Dauvergne2011-12-222-115/+89
| | | | | It shoulf fix any missing functionnalities regarding missing session indexes in logout requests sent by identity providers or service providers.
* [core] add support for thin-sessions environment flag, to reduce size of ↵Benjamin Dauvergne2011-12-223-0/+9
| | | | LassoSession dumps
* [core] add simpler storage for SessionIndexes in the LassoSessionBenjamin Dauvergne2011-12-223-30/+400
|
* [id-ff 1.2] add lasso_saml_name_identifier_equals() to compare NameIDsBenjamin Dauvergne2011-12-192-0/+17
|
* [saml2] fix lasso_saml20_logout_validate_request when more than one ↵Benjamin Dauvergne2011-12-161-7/+20
| | | | SessionIndex is sent
generated by cgit (git 2.34.1) at 2024-06-03 05:30:47 +0000