Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | removed unused lasso_g_ptr_array_index | Frederic Peters | 2004-10-28 | 2 | -23/+0 |
| | |||||
* | removal of \n at end of error messages | Frederic Peters | 2004-10-27 | 13 | -84/+84 |
| | |||||
* | removed useless casts | Frederic Peters | 2004-10-27 | 15 | -15/+15 |
| | |||||
* | indented lasso.c | Frederic Peters | 2004-10-27 | 1 | -98/+87 |
| | |||||
* | cleaning up | Frederic Peters | 2004-10-27 | 12 | -25/+21 |
| | |||||
* | removed unused code | Frederic Peters | 2004-10-27 | 2 | -233/+108 |
| | |||||
* | Done with the move to structures and the removal of protocols/ (lasso branched | Frederic Peters | 2004-10-27 | 129 | -12137/+10452 |
| | | | | | | | | on October 2nd; occasional merges since then). - Compatible with current souk test suites. - Missing memory management for everything in xml/ - Missing xmlsec support for SOAP messages. | ||||
* | Removed wrong test and changed a comment. | Emmanuel Raviart | 2004-10-03 | 1 | -2/+1 |
| | |||||
* | Integrated scalp_is_liberty_query into Lasso. Consequently, | Emmanuel Raviart | 2004-10-02 | 8 | -12/+50 |
| | | | | | LASSO_PROFILE_ERROR_INVALID_QUERY is now a negative error code and a critical message is displayed when this error occurs. | ||||
* | Removed function lasso_login_process_without_authn_request_msg. | Emmanuel Raviart | 2004-10-02 | 5 | -131/+124 |
| | | | | | | | | | | | | It has been replaced with: lasso_login_init_self_addressed_authn_request(remote_providerID); /* ...Set protocolProfile, isPassive, consent, relayState here... */ lasso_login_process_authn_request_message(NULL, lassoHttpMethodSelfAddressed); This change was needed because there was no way to set isPassive, consent, etc, before. Standardized some error codes and messages. | ||||
* | Homogeneized error handling for HTTP methods in requests. | Emmanuel Raviart | 2004-10-02 | 7 | -64/+71 |
| | | | | | | | Reworked error codes, so that positive and negative numbers don't overlap: It will be easier to change the sign of an error code without break API. Realigned error codes definitions. | ||||
* | Removed consent from fake authnRequest created by | Emmanuel Raviart | 2004-10-02 | 1 | -2/+0 |
| | | | | | | lasso_login_process_without_authn_request_msg: Since the nameIDPolicy is "any", must_ask_for_consent must return true and if the user doesn't give its consent, a one-time nameidentifier should be used. | ||||
* | In lasso_login_process_without_authn_request_msg, set the isPassive flag of | Emmanuel Raviart | 2004-10-02 | 1 | -0/+1 |
| | | | | the fake authnRequest to false, so that must_authenticate() returns true. | ||||
* | Corrected handling of NULL remote_providerID in | Emmanuel Raviart | 2004-10-02 | 1 | -10/+11 |
| | | | | lasso_login_process_without_authn_request_msg. | ||||
* | Fixed a bug in lasso_login_process_without_authn_request_msg() | Valery Febvre | 2004-10-02 | 1 | -12/+32 |
| | | | | | | and lasso_login_build_assertion() When Identity provider initiates SSO, response assertion MUST not include an InResponseTo attribute. | ||||
* | Fixed a bug in lasso_query_to_dict() function | Valery Febvre | 2004-10-02 | 1 | -1/+1 |
| | | | | It occurred when a parameter didn't have a value. | ||||
* | Added documentation | Valery Febvre | 2004-10-01 | 1 | -2/+18 |
| | |||||
* | Modified lasso_login_process_without_authn_request_msg() | Valery Febvre | 2004-10-01 | 1 | -3/+11 |
| | | | | The 'remote_providerID' param is now optional (can be NULL). | ||||
* | Added methods comments | Valery Febvre | 2004-10-01 | 1 | -19/+53 |
| | | | | Fixed a bug in lasso_login_accept_sso() | ||||
* | Removed federation test, because for one-time single sign-on, there is no | Emmanuel Raviart | 2004-10-01 | 1 | -2/+0 |
| | | | | federation. | ||||
* | Correction in consent handling for login when testing IsPassive. | Emmanuel Raviart | 2004-10-01 | 1 | -2/+2 |
| | |||||
* | Fixed a bug in lasso_login_ask_for_consent() | Valery Febvre | 2004-10-01 | 1 | -52/+100 |
| | | | | Some cases had been forgotten. | ||||
* | Fixed a bug in instance_init() methods of LassoIdentity and LassoSession classes | Valery Febvre | 2004-10-01 | 2 | -2/+2 |
| | | | | is_dirty flag was initialized to TRUE instead of FALSE. | ||||
* | English correction. | Emmanuel Raviart | 2004-10-01 | 2 | -2/+2 |
| | |||||
* | Synchronized SWIG error codes with those in errors.h (Shame on the | Emmanuel Raviart | 2004-10-01 | 1 | -1/+3 |
| | | | | developper who forgot to update them in Lasso.i :-) | ||||
* | Fixed a bug in lasso_query_verify_signature() | Valery Febvre | 2004-10-01 | 2 | -22/+37 |
| | | | | It was impossible to verify queries signed with the DSA-SHA1 algorithm. | ||||
* | Added one error code | Valery Febvre | 2004-10-01 | 2 | -5/+8 |
| | |||||
* | Added a param 'is_consent_obtained' in method: | Valery Febvre | 2004-09-30 | 4 | -95/+281 |
| | | | | | | | | | | | | | | | | | lasso_login_build_artifact_msg(), lasso_login_build_authn_response_msg(), lasso_login_process_federation(), lasso_lecp_build_authn_response_envelope_msg() AuthnRequest message accepts now all possible values for the NameIDPolicy: none, onetime, federated, any Added lasso_login_must_ask_for_consent() method This method must be called after lasso_login_process_authn_request_msg() Added lasso_login_process_without_authn_request_msg() method This method is useful to initiate SSO from IDP. Lasso.i was updated according to the changes. | ||||
* | Updated registation profile : now it supports multiple registration from SP ↵ | Nicolas Clapies | 2004-09-30 | 1 | -55/+78 |
| | | | | and IDP. This profile has been tested only with SOAP method in souk. Test must be added with Redirect method. | ||||
* | Fixed a critical segfault bug when parsing an invalid SOAP message in ↵ | Nicolas Clapies | 2004-09-30 | 6 | -31/+21 |
| | | | | private method lasso_{protocol_type}_new_from_soap(). | ||||
* | Fixed critical bug when parsing an invalid SOAP message in private method ↵ | Nicolas Clapies | 2004-09-30 | 1 | -1/+5 |
| | | | | lasso_name_identifier_mapping_response_new_from_soap() | ||||
* | Added 3 error codes | Valery Febvre | 2004-09-30 | 2 | -0/+14 |
| | |||||
* | Added 3 lassoLibConsent | Valery Febvre | 2004-09-30 | 1 | -5/+8 |
| | |||||
* | Fixed critical bug when parsing an invalid SOAP message in private method ↵ | Nicolas Clapies | 2004-09-30 | 1 | -1/+5 |
| | | | | lasso_name_identifier_mapping_new_from_soap() | ||||
* | Added a parameter 'content' (optional) in ↵ | Valery Febvre | 2004-09-30 | 2 | -24/+38 |
| | | | | | | lasso_federation_build_local_nameIdentifier() and lasso_federation_build_remote_nameIdentifier() methods | ||||
* | Added lasso_federation_build_remote_nameIdentifier() | Valery Febvre | 2004-09-30 | 2 | -0/+46 |
| | | | | and lasso_federation_build_local_nameIdentifier() methods | ||||
* | Added better support for name registration. There is still problem with ↵ | Nicolas Clapies | 2004-09-29 | 2 | -40/+85 |
| | | | | multiple registration needed to be fixed | ||||
* | Replaced 2 lassoLibMinorVersion by 2 lassoSamlMinorVersion | Valery Febvre | 2004-09-29 | 2 | -4/+4 |
| | | | | and 2 lassoLibMajorVersion by 2 lassoSamlMajorVersion | ||||
* | Added comments in lasso_register_name_identifier_response_new() | Nicolas Clapies | 2004-09-28 | 1 | -1/+6 |
| | |||||
* | Added support of RelayState. Now if the requester wants to get back th ↵ | Nicolas Clapies | 2004-09-28 | 1 | -0/+6 |
| | | | | RelayState, it has to acces to profile->msg_relayState | ||||
* | Added an error code: LASSO_DS_ERROR_CA_CERT_CHAIN_LOAD_FAILED | Valery Febvre | 2004-09-27 | 1 | -0/+1 |
| | |||||
* | Improved lasso_node_verify_signature() method | Valery Febvre | 2004-09-27 | 1 | -16/+25 |
| | | | | The 'public_key_file' param can now be either a public_key or a certificate | ||||
* | Added dump support in name registration. Fixed a bug in ↵ | Nicolas Clapies | 2004-09-27 | 1 | -7/+111 |
| | | | | lasso_process_request_msg() : removed a free of node | ||||
* | Fixed bug #303 | Valery Febvre | 2004-09-27 | 2 | -6/+6 |
| | |||||
* | lasso_profile_set_session_from_dump() and lasso_profile_set_identity_from_dump() | Valery Febvre | 2004-09-27 | 1 | -2/+7 |
| | | | | methods log now a critical message if dumps are NULL. | ||||
* | Renamed 'ca_certificate' property of LassoProvider object to 'ca_cert_chain' | Valery Febvre | 2004-09-27 | 6 | -80/+128 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | Added a new property 'secret_key' in LassoServer object Changed prototype of lasso_server_new() method BEFORE: LassoServer * lasso_server_new(gchar *metadata, gchar *public_key, gchar *private_key, gchar *certificate, lassoSignatureMethod signature_method) AFTER: LassoServer * lasso_server_new(const gchar *metadata, const gchar *private_key, const gchar *secret_key, const gchar *certificate) public_key param was removed because it was useless. secret_key was added to decrypt private_key signature_method was removed (default value is lassoSignatureMethodRsaSha1). 2 new methods was added to access 'signature_method' property of LassoServer: lasso_server_get_signature_method() and lasso_server_set_signature_method() Update Lasso.i | ||||
* | Fixed bug #294 : memory leak on name identifiers local variables in ↵ | Nicolas Clapies | 2004-09-27 | 1 | -1/+30 |
| | | | | lasso_name_registration_init_request(). | ||||
* | Removed lasso_node_verify_x509_signature() method. This method isn't useful ↵ | Valery Febvre | 2004-09-27 | 2 | -160/+47 |
| | | | | | | | anymore. lasso_node_verify_signature() can now verify signatures with or without X509Data. Added a new param "ca_cert_chain_file" in lasso_node_verify_signature() | ||||
* | Fixed bug #293 : memory leak on content local variable in ↵ | Nicolas Clapies | 2004-09-27 | 1 | -2/+7 |
| | | | | lasso_logout_init_request(). | ||||
* | Added lasso_load_certs_from_pem_certs_chain_file() function | Valery Febvre | 2004-09-27 | 2 | -22/+113 |
| |